[pkgsrc/trunk]: pkgsrc/security/audit-packages Update audit-packages to 1.28.

[agc <agc%pkgsrc.org@localhost>]

details:   https://anonhg.NetBSD.org/pkgsrc/rev/10ecc6b15b90
branches:  trunk
changeset: 465563:10ecc6b15b90
user:      agc <agc%pkgsrc.org@localhost>
date:      Thu Jan 01 23:35:28 2004 +0000

description:
Update audit-packages to 1.28.

By popular demand, add a -v switch to audit-packages(8) which enables the
check for a package vulnerabilities file being unchanged for over 7 days.
To enable the check, -v must be specified on the command line:

        % audit-packages
        % audit-packages -v
        *** WARNING - /usr/distfiles/pkg-vulnerabilities more than a week old, continuing...
        %

diffstat:

 security/audit-packages/Makefile               |   4 ++--
 security/audit-packages/files/audit-packages   |  16 +++++++++++++---
 security/audit-packages/files/audit-packages.8 |   8 +++++---
 3 files changed, 20 insertions(+), 8 deletions(-)

diffs (79 lines):

diff -r 5b8952fe5e00 -r 10ecc6b15b90 security/audit-packages/Makefile
--- a/security/audit-packages/Makefile  Thu Jan 01 21:46:55 2004 +0000
+++ b/security/audit-packages/Makefile  Thu Jan 01 23:35:28 2004 +0000
@@ -1,6 +1,6 @@
-# $NetBSD: Makefile,v 1.38 2003/12/12 21:40:32 erh Exp $
+# $NetBSD: Makefile,v 1.39 2004/01/01 23:35:28 agc Exp $
 
-DISTNAME=      audit-packages-1.27
+DISTNAME=      audit-packages-1.28
 WRKSRC=                ${WRKDIR}
 CATEGORIES=    security pkgtools
 MASTER_SITES=  # empty
diff -r 5b8952fe5e00 -r 10ecc6b15b90 security/audit-packages/files/audit-packages
--- a/security/audit-packages/files/audit-packages      Thu Jan 01 21:46:55 2004 +0000
+++ b/security/audit-packages/files/audit-packages      Thu Jan 01 23:35:28 2004 +0000
@@ -1,6 +1,6 @@
 #! @SH@
 #
-# $NetBSD: audit-packages,v 1.15 2003/12/11 17:10:21 agc Exp $
+# $NetBSD: audit-packages,v 1.16 2004/01/01 23:35:28 agc Exp $
 #
 # Copyright (c) 2000-2003 Alistair Crooks.  All rights reserved.
 #
@@ -37,14 +37,24 @@
 
 vuls=${PKGVULNDIR}/pkg-vulnerabilities 
 
+verbose=no
+while [ $# -gt 0 ]; do
+       case "$1" in
+       -v)     verbose=yes ;;
+       esac
+       shift
+done
+
 errmsg=""
 
 # check for missing vulnerabilities file
 [ ! -f $vuls ] && errmsg="** Missing $vuls"
 
 case "$errmsg" in
-"")    # check for old vulnerabilities file
-       [ -n "$(find $vuls -ctime +7)" ] && echo "*** WARNING - $vuls more than a week old, continuing..."
+"")    # check for old vulnerabilities file if we're being verbose
+       case "$verbose" in
+       yes)    [ -n "$(find $vuls -ctime +7)" ] && echo "*** WARNING - $vuls more than a week old, continuing..." ;;
+       esac
        ;;
 esac
 
diff -r 5b8952fe5e00 -r 10ecc6b15b90 security/audit-packages/files/audit-packages.8
--- a/security/audit-packages/files/audit-packages.8    Thu Jan 01 21:46:55 2004 +0000
+++ b/security/audit-packages/files/audit-packages.8    Thu Jan 01 23:35:28 2004 +0000
@@ -1,5 +1,5 @@
-.\" $NetBSD: audit-packages.8,v 1.5 2003/12/03 09:31:01 wiz Exp $
-.Dd December 3, 2003
+.\" $NetBSD: audit-packages.8,v 1.6 2004/01/01 23:35:28 agc Exp $
+.Dd January 1, 2004
 .Os
 .Dt AUDIT-PACKAGES 8
 .Sh NAME
@@ -8,6 +8,7 @@
 .Nd show vulnerabilities in installed packages
 .Sh SYNOPSIS
 .Nm
+.Op Fl v
 .Nm download-vulnerability-list
 .Sh DESCRIPTION
 The
@@ -32,7 +33,8 @@
 .Pp
 Each line lists the package and vulnerable versions, the type of exploit,
 and an Internet address for further information.
-Commonly, the types of exploits listed are:
+The type of exploit can be any text, although
+some common types of exploits listed are:
 .Bl -bullet -compact -offset indent
 .It
 cross-site-html