NetBSD-Users archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

Re: Allow_vulnerable_packages= yes



On 2/27/12, Matthias Scheler <tron%zhadum.org.uk@localhost> wrote:
> On Tue, Feb 21, 2012 at 02:40:29AM -0500, Edgar Rodolfo wrote:
>> Then i put in /usr/pkgsrc/mk/default/mk.conf
>
>> ALLOW_VULNERABLE_PACKAGES= yes
>> is a risk it?, if i don't put it i can't use squid and other packages
>> :(, currently i am using my small  server (squid and dns and other)
>> Thank in advance for your recommendation
>
> The Squid security problem only affects setups were Squid is used as
> a transport proxy. It also cannot be exploited if people from the
> outside cannot connect to Squid in the first place.
>
> About the PHP problem:
> PHP constantly has problems. "lang/php53" currently only has one
> known vulnerability with handling archives. As this doesn't
> affect my use case I live with it.
>

Thanks a lot!

>       Kind regards
>
> --
> Matthias Scheler                                  http://zhadum.org.uk/
>


Home | Main Index | Thread Index | Old Index