In message , Bob F
riesenhahn writes:
>I notice that pkgsrc offers a feature whereby known defects against
>the installed versions may be listed. This is querying some sort of
>remote database.
I find FreeBSD's security announcements helpful reminders that
its time to create a new BE and run pk
On Tue, Dec 8, 2015 at 11:14 AM, Jim Klimov wrote:
>
> >From: Tim Mooney [mailto:tim.moo...@ndsu.edu]
>
> >
> >I'm trying to find a way to verify component security that doesn't rely
> >on more work from the few people that are already doing the security
> >work, but it's not clear what a good me
On Tue, 8 Dec 2015, Jim Klimov wrote:
Might it make sense to use some pkg(5) metadata to list the cve's
known covered by a particular release+patch recipe used in the
build? I know i'd quickly stop maintaining such data though, but
there may be even pedantical people than mysekf out there ;)
7 декабря 2015 г. 17:24:31 CET, Paul Johnston
пишет:
>You around tomorrow?
>
>Paul
>
>-Original Message-
>From: Tim Mooney [mailto:tim.moo...@ndsu.edu]
>Sent: 07 December 2015 15:28
>To: Discussion list for OpenIndiana
>Subject: Re: [OpenIndiana-discuss] OI roadmap (for production)
>
>In