Re: Allow_vulnerable_packages= yes

To: Matthias Scheler <tron%zhadum.org.uk@localhost>
Subject: Re: Allow_vulnerable_packages= yes
From: Edgar Rodolfo <rodolfobsd%gmail.com@localhost>
Date: Tue, 28 Feb 2012 17:46:08 -0500

On 2/27/12, Matthias Scheler <tron%zhadum.org.uk@localhost> wrote:
> On Tue, Feb 21, 2012 at 02:40:29AM -0500, Edgar Rodolfo wrote:
>> Then i put in /usr/pkgsrc/mk/default/mk.conf
>
>> ALLOW_VULNERABLE_PACKAGES= yes
>> is a risk it?, if i don't put it i can't use squid and other packages
>> :(, currently i am using my small  server (squid and dns and other)
>> Thank in advance for your recommendation
>
> The Squid security problem only affects setups were Squid is used as
> a transport proxy. It also cannot be exploited if people from the
> outside cannot connect to Squid in the first place.
>
> About the PHP problem:
> PHP constantly has problems. "lang/php53" currently only has one
> known vulnerability with handling archives. As this doesn't
> affect my use case I live with it.
>

Thanks a lot!

>       Kind regards
>
> --
> Matthias Scheler                                  http://zhadum.org.uk/
>

References:
- Allow_vulnerable_packages= yes
  - From: Edgar Rodolfo
- Re: Allow_vulnerable_packages= yes
  - From: Matthias Scheler

Prev by Date: Re: Spontaneous reboots on 5.99.59/i386 on a Thinkpad X41
Next by Date: Openssh build with old SSL ?
Previous by Thread: Re: Allow_vulnerable_packages= yes
Next by Thread: NetBSD-6 build failure related to ACPI's UINTxxx
Indexes:

Home | Main Index | Thread Index | Old Index