PKG_INSTALL.CONF(5)       NetBSD File Formats Manual       PKG_INSTALL.CONF(5)

NNAAMMEE
     ppkkgg__iinnssttaallll..ccoonnff -- configuration file for package installation tools

DDEESSCCRRIIPPTTIIOONN
     The file ppkkgg__iinnssttaallll..ccoonnff contains system defaults for the package
     installation tools as a list of variable-value pairs.  Each line has the
     format VARIABLE=VALUE.  If the value consists of more than one line, each
     line is prefixed with VARIABLE=.

     The current value of a variable can be checked by running
           ppkkgg__aaddmmiinn ccoonnffiigg--vvaarr VVAARRIIAABBLLEE

     The following variables are supported:

     ACTIVE_FTP
             Force the use of active FTP.

     CERTIFICATE_ANCHOR_PKGS
             Path to the file containing the certificates used for validating
             binary packages.  A package is trusted when a certificate chain
             ends in one of the certificates contained in this file.  The cer-
             tificates must be PEM-encoded.

     CERTIFICATE_ANCHOR_PKGVULN
             Analogous to CERTIFICATE_ANCHOR_PKGS.  The _p_k_g_-_v_u_l_n_e_r_a_b_i_l_i_t_i_e_s is
             trusted when a certificate chain ends in one of the certificates
             contained in this file.

     CERTIFICATE_CHAIN
             Path to a file containing additional certificates that can be
             used for completing certicate chains when validating binary pack-
             ages or pkg-vulnerabilities files.  CHECK_VULNERABILITIES Check
             for vulnerabilities when installating packages.  Supported values
             are:

             never          No check is performed.

             always         Passing the vulnerability check is required.  A
                            missing pkg-vulnerabilities file is considered an
                            error.

             interactive    The user is always asked to confirm installation
                            of vulnerable packages.

     GPG     Deprecated.  Path to gpg(1), which can be used to verify the sig-
             nature in the _p_k_g_-_v_u_l_n_e_r_a_b_i_l_i_t_i_e_s file when running
                   ppkkgg__aaddmmiinn cchheecckk--ppkkgg--vvuullnneerraabbiilliittiieess --ss
             or
                   ppkkgg__aaddmmiinn ffeettcchh--ppkkgg--vvuullnneerraabbiilliittiieess --ss

     IGNORE_PROXY
             Use direct connections and ignore FTP_PROXY and HTTP_PROXY.

     IGNORE_URL
             One line per advisory which should be ignored when running
                   ppkkgg__aaddmmiinn aauuddiitt
             The URL from the _p_k_g_-_v_u_l_n_e_r_a_b_i_l_i_t_i_e_s file should be used as
             value.

     PKGVULNDIR
             Directory name in which the _p_k_g_-_v_u_l_n_e_r_a_b_i_l_i_t_i_e_s file resides.
             Default is _$_{_P_K_G___D_B_D_I_R_}.

     PKGVULNURL
             URL which is used for updating the local _p_k_g_-_v_u_l_n_e_r_a_b_i_l_i_t_i_e_s file
             when running
                   ppkkgg__aaddmmiinn ffeettcchh--ppkkgg--vvuullnneerraabbiilliittiieess
             The default is
             _f_t_p_:_/_/_f_t_p_._N_e_t_B_S_D_._o_r_g_/_p_u_b_/_N_e_t_B_S_D_/_p_a_c_k_a_g_e_s_/_v_u_l_n_s_/_p_k_g_-_v_u_l_n_e_r_a_b_i_l_i_t_i_e_s_._g_z
             _N_o_t_e: Usually, only the compression type should be changed.  Cur-
             rently supported are uncompressed files and files compressed by
             bzip2(1) (_._b_z_2) or gzip(1) (_._g_z).

     VERBOSE_NETIO
             Log details of network IO to stderr.

     VERIFIED_INSTALLATION
             Set trust level used when installation.  Supported values are:

             never          No signature checks are performed.

             always         A valid signature is required.  If the binary
                            package can not be verified, the installation is
                            terminated

             trusted        A valid signature is required.  If the binary
                            package can not be verified, the user is asked
                            interactively.

             interactive    The user is always asked interactively when
                            installing a package.

FFIILLEESS
     @SYSCONFDIR@/pkg_install.conf     Default location for the file described
                                       in this manual page.

SSEEEE AALLSSOO
     pkg_add(1), pkg_admin(1)

NetBSD 5.0                      January 8, 2009                     NetBSD 5.0