Re: www/flock port fails to install
On Mon, Jan 28, 2008 at 04:48:49AM -0700, Chad Perrin wrote: On Mon, Jan 28, 2008 at 06:41:46AM -0500, Gerard wrote: On Mon, 28 Jan 2008 11:57:07 +0100 Pieter Baele [EMAIL PROTECTED] wrote: When there are (security) vulnerabilities, ports won't install. You can override this, but I don't remember how. (and I don't want to know it as I trust FreeBSD package maintainers ;-) Place this in the /etc/make.conf file: DISABLE_VULNERABILITIES=yes Use at your own peril. Considering there is a version 1.0.7 of Flock, and the security warning is for versions 1.0.2, my preference would be to simply install a secure version (preferably without having to rely on Linux compatibility libraries). Is this not currently possible in FreeBSD for some reason? Since I didn't get a response to this question before, I figured I'd just call attention to it again. Does anyone know of any reason there shouldn't be a version of www/flock newer than 1.0.2 in ports? For reference, the version in ports is still 0.7_7, which seems absurdly old, considering the Flock project is up to 1.1 now. -- CCD CopyWrite Chad Perrin [ http://ccd.apotheon.org ] print substr(Just another Perl hacker, 0, -2); pgpGpGH3XMom2.pgp Description: PGP signature
Re: www/flock port fails to install
Chad Perrin [EMAIL PROTECTED] writes: On Mon, Jan 28, 2008 at 04:48:49AM -0700, Chad Perrin wrote: On Mon, Jan 28, 2008 at 06:41:46AM -0500, Gerard wrote: On Mon, 28 Jan 2008 11:57:07 +0100 Pieter Baele [EMAIL PROTECTED] wrote: When there are (security) vulnerabilities, ports won't install. You can override this, but I don't remember how. (and I don't want to know it as I trust FreeBSD package maintainers ;-) Place this in the /etc/make.conf file: DISABLE_VULNERABILITIES=yes Use at your own peril. Considering there is a version 1.0.7 of Flock, and the security warning is for versions 1.0.2, my preference would be to simply install a secure version (preferably without having to rely on Linux compatibility libraries). Is this not currently possible in FreeBSD for some reason? Since I didn't get a response to this question before, I figured I'd just call attention to it again. Does anyone know of any reason there shouldn't be a version of www/flock newer than 1.0.2 in ports? Try asking the maintainer. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
www/flock port fails to install
When I try to install the Flock browser from the www/flock port, I get the following error messages: === flock-0.7_7 has known vulnerabilities: = firefox -- multiple remote unspecified memory corruption vulnerabilities. Reference: http://www.FreeBSD.org/ports/portaudit/f1f6f6da-9d2f-11dc-9114-001c2514716c.html = Please update your ports tree and try again. *** Error code 1 Stop in /usr/ports/www/flock. *** Error code 1 Stop in /usr/ports/www/flock. ** Command failed [exit code 1]: /usr/bin/script -qa /tmp/portinstall.80063.1 env make ** Fix the problem and try again. Unfortunately, it's already up to date, according to my output from portsnap: # portsnap fetch update Looking up portsnap.FreeBSD.org mirrors... 4 mirrors found. Fetching snapshot tag from portsnap1.FreeBSD.org... done. Latest snapshot on server matches what we already have. No updates needed. Ports tree is already up to date. Am I missing something here? Is the linux-flock port the only Flock browser port that is currently maintained, for some reason? Why is the www/flock port still there if it's uninstallable without overriding dire warnings about the End Of The World As We Know It? Have I done something dumb to my system so that it won't update the Flock port to a version I can install? I'm on FreeBSD 6.2-RELEASE for i386 on this machine. Thanks in advance for your time. -- CCD CopyWrite Chad Perrin [ http://ccd.apotheon.org ] Patrick J. LoPresti: Emacs has been replaced by a shell script which 1) Generates a syslog message at level LOG_EMERG; 2) reduces the user's disk quota by 100K; and 3) RUNS ED!! ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: www/flock port fails to install
On Mon, 2008-01-28 at 02:48 -0700, Chad Perrin wrote: I'm on FreeBSD 6.2-RELEASE for i386 on this machine. Thanks in advance for your time. When there are (security) vulnerabilities, ports won't install. You can override this, but I don't remember how. (and I don't want to know it as I trust FreeBSD package maintainers ;-) -- Pieter Baele [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: www/flock port fails to install
On Mon, Jan 28, 2008 at 06:41:46AM -0500, Gerard wrote: On Mon, 28 Jan 2008 11:57:07 +0100 Pieter Baele [EMAIL PROTECTED] wrote: On Mon, 2008-01-28 at 02:48 -0700, Chad Perrin wrote: I'm on FreeBSD 6.2-RELEASE for i386 on this machine. Thanks in advance for your time. When there are (security) vulnerabilities, ports won't install. You can override this, but I don't remember how. (and I don't want to know it as I trust FreeBSD package maintainers ;-) Place this in the /etc/make.conf file: DISABLE_VULNERABILITIES=yes Use at your own peril. Considering there is a version 1.0.7 of Flock, and the security warning is for versions 1.0.2, my preference would be to simply install a secure version (preferably without having to rely on Linux compatibility libraries). Is this not currently possible in FreeBSD for some reason? -- CCD CopyWrite Chad Perrin [ http://ccd.apotheon.org ] Phillip J. Haack: Productivity is not about speed. It's about velocity. You can be fast, but if you're going in the wrong direction, you're not helping anyone. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: www/flock port fails to install
On Mon, 28 Jan 2008 11:57:07 +0100 Pieter Baele [EMAIL PROTECTED] wrote: On Mon, 2008-01-28 at 02:48 -0700, Chad Perrin wrote: I'm on FreeBSD 6.2-RELEASE for i386 on this machine. Thanks in advance for your time. When there are (security) vulnerabilities, ports won't install. You can override this, but I don't remember how. (and I don't want to know it as I trust FreeBSD package maintainers ;-) Place this in the /etc/make.conf file: DISABLE_VULNERABILITIES=yes Use at your own peril. -- Gerard [EMAIL PROTECTED] PARTY: A gathering where you meet people who drink so much you can't even remember their names. signature.asc Description: PGP signature
Re: www/flock port fails to install
On Mon, 28 Jan 2008, Gerard wrote: On Mon, 28 Jan 2008 11:57:07 +0100 Pieter Baele [EMAIL PROTECTED] wrote: On Mon, 2008-01-28 at 02:48 -0700, Chad Perrin wrote: I'm on FreeBSD 6.2-RELEASE for i386 on this machine. Thanks in advance for your time. When there are (security) vulnerabilities, ports won't install. You can override this, but I don't remember how. (and I don't want to know it as I trust FreeBSD package maintainers ;-) Place this in the /etc/make.conf file: DISABLE_VULNERABILITIES=yes Use at your own peril. You might find an unsecure port has been installed without realizing it. That much peril isn't necessary. If you must install a port with security vulnerabilities, you can define the flag on the command line at that time and only for that port: make -DDISABLE_VULNERABILITIES install -Warren Block * Rapid City, South Dakota USA ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]