Subject: Re: Reading the netbsd quarterly report
To: None <tech-pkg@netbsd.org>
From: Wolfgang S. Rupprecht <wolfgang+gnus20050410T102641@dailyplanet.dontspam.wsrcc.com>
List: tech-pkg
Date: 04/10/2005 12:04:43
Marc Espie <espie@nerim.net> writes:
> Well, I'll take the paranoid approach of OpenBSD over the `proactive
> approach of NetBSD any day. We've had this for over 6 years:

Much more important to me than having extra digests for the build
process is the pkg infrastructure that keeps pkgs up to date and
automatically flags security vulnerabilities.  See:

        /usr/pkg/sbin/audit-packages

        /usr/pkg/sbin/pkg_chk

What good are nightly /etc/security runs if they fail to mention a
swiss-cheese pkg that needs to be upgraded or removed *now*?

-wolfgang