freebsd-ports/ports-mgmt/portaudit/pkg-descr

portaudit provides a system to check if installed ports are listed in a 
database of published security vulnerabilities.

After installation it will update this security database automatically and 
include its reports in the output of the daily security run.

If you have found a vulnerability not listed in the database, please contact 
the FreeBSD Security Officer <security-officer@FreeBSD.org>. Refer to

  http://www.freebsd.org/security/#sec

for more information.

WWW: http://people.freebsd.org/~eik/portaudit/

Oliver Eikemeier <eik@FreeBSD.org>
update to 0.2: - new command line tool - new man page - reworked database update code, incorporating feedback from Max Khon <fjoe>, Radim Kolar <hsn@netmag.cz> (PR 63066) and Ion-Mihai Tetcu <itetcu@apropo.ro> (PR 62655) 2004-02-21 22:19:41 +01:00			`portaudit provides a system to check if installed ports are listed in a`
			`database of published security vulnerabilities.`
portaudit provides a list of published security vulnerabilities of FreeBSD ports and tools to check if installed ports are listed. Since this is a prerelease version, it is mostly usable for committers that want to contribute to the project, and can currently not be relied upon as an extensive security auditing tool. 2004-01-27 20:24:52 +01:00
update to 0.2: - new command line tool - new man page - reworked database update code, incorporating feedback from Max Khon <fjoe>, Radim Kolar <hsn@netmag.cz> (PR 63066) and Ion-Mihai Tetcu <itetcu@apropo.ro> (PR 62655) 2004-02-21 22:19:41 +01:00			`After installation it will update this security database automatically and`
			`include its reports in the output of the daily security run.`
portaudit provides a list of published security vulnerabilities of FreeBSD ports and tools to check if installed ports are listed. Since this is a prerelease version, it is mostly usable for committers that want to contribute to the project, and can currently not be relied upon as an extensive security auditing tool. 2004-01-27 20:24:52 +01:00
grammar Submitted by: will, nectar 2004-02-25 15:12:03 +01:00			`If you have found a vulnerability not listed in the database, please contact`
			`the FreeBSD Security Officer <security-officer@FreeBSD.org>. Refer to`
add a security contact 2004-02-25 13:47:13 +01:00
			`http://www.freebsd.org/security/#sec`

			`for more information.`

Update to 0.3. Since we are using the official VuXML database the auditing should be pretty complete. - mention web page - add more mirrors, disabling .ru mirror (too much lag) - allow combined options in portaudit shell script - add sample configuration file - use absolute paths for binaries, to ease use in crontab scripts [1] - correct type in man page [2] PR: 64005 [2] Submitted by: Tomasz Pilat <poncki@axelspringer.com.pl> [1] Nathan Dove <njdove@wafer.sandia.gov> [2] 2004-03-11 12:11:59 +01:00			`WWW: http://people.freebsd.org/~eik/portaudit/`
portaudit provides a list of published security vulnerabilities of FreeBSD ports and tools to check if installed ports are listed. Since this is a prerelease version, it is mostly usable for committers that want to contribute to the project, and can currently not be relied upon as an extensive security auditing tool. 2004-01-27 20:24:52 +01:00
			`Oliver Eikemeier <eik@FreeBSD.org>`