Document security/portaudit.

Submitted by: Xin LI <delphij@frontfree.net>
svn path=/head/; revision=20485
2004-04-03 17:55:24 +00:00 · 2004-04-03 17:55:24 +00:00 · bc7876f394 · 2020-12-08 03:00:23 +00:00
commit bc7876f394
parent a79af1fbfc
1 changed files with 20 additions and 0 deletions
--- a/en_US.ISO8859-1/books/handbook/ports/chapter.sgml
+++ b/en_US.ISO8859-1/books/handbook/ports/chapter.sgml
@ -218,6 +218,14 @@
      <para>Before installing any application, you should check <ulink
 	url="http://vuxml.freebsd.org/"></ulink> for security issues
 	related to your application.</para>
+
+      <para>You can also install <filename
+	role="package">security/portaudit</filename> which will
+	automatically check all installed applications for known
+	vulnerabilities, a check will be also performed before any port
+	build.  Meanwhile, you can use the command <command>portaudit
+	-F -a</command> after you have installed some
+	packages.</para>
    </warning>

    <para>The remainder of this chapter will explain how to use
@ -754,6 +762,18 @@ R-deps: </screen>
 	  an up-to-date ports collection and you should check <ulink
 	  url="http://vuxml.freebsd.org/"></ulink> for security issues
 	  related to your port.</para>
+
+	<para>A security vulnerabilities check can be automatically
+	  done by <application>portaudit</application> before any new
+	  application installation.  This tool can be found in the
+	  ports collection (<filename
+	  role="package">security/portaudit</filename>).  Consider
+	  running <command>portaudit -F</command> before installing a
+	  new port, to fetch the current vulnerabilities database.  A
+	  security audit and an update of the database will be
+	  performed during the daily security system check.  For more
+	  informations read the &man.portaudit.1; and &man.periodic.8;
+	  manual pages.</para>
      </warning>

      <sect3 id="ports-cd">