[BACK]Return to audit-packages.conf CVS log [TXT][DIR] Up to [cvs.NetBSD.org] / src / etc

File: [cvs.NetBSD.org] / src / etc / Attic / audit-packages.conf (download)

Revision 1.1, Sat Jul 14 19:53:52 2007 UTC (12 years, 6 months ago) by adrianp
Branch: MAIN
CVS Tags: yamt-pf42-baseX, yamt-pf42-base4, yamt-pf42-base3, yamt-pf42-base2, yamt-pf42-base, yamt-pf42, wrstuden-revivesa-base-3, wrstuden-revivesa-base-2, wrstuden-revivesa-base-1, wrstuden-revivesa-base, wrstuden-revivesa, netbsd-5-base, netbsd-5-0-RELEASE, netbsd-5-0-RC4, netbsd-5-0-RC3, netbsd-5-0-RC2, netbsd-5-0-RC1, netbsd-5-0-1-RELEASE, mjf-devfs2-base2, mjf-devfs2-base, mjf-devfs2, mjf-devfs-base, mjf-devfs, matt-nb5-mips64-u2-k2-k4-k7-k8-k9, matt-nb5-mips64-u1-k1-k5, matt-nb5-mips64-premerge-20091211, matt-nb4-mips64-k7-u2a-k9b, matt-mips64-base2, matt-mips64-base, matt-mips64, matt-armv6-prevmlocking, matt-armv6-nbase, matt-armv6-base, matt-armv6, keiichi-mipv6-base, keiichi-mipv6, hpcarm-cleanup-nbase, hpcarm-cleanup-base, hpcarm-cleanup, cube-autoconf-base, cube-autoconf
Branch point for: netbsd-5-0, netbsd-5, matt-nb5-mips64, jym-xensuspend

Add a default audit-packages configuration file for audit-packages
(part of pkg_install-20070714)

# $NetBSD: audit-packages.conf,v 1.1 2007/07/14 19:53:52 adrianp Exp $

#
# sample configuration file for audit-packages(8) and 
# download-vulnerability-list(8)
#

# GPG
#
# Specifies the full path to the gpg tool that will be used for verifying
# the signature on the downloaded pkg-vulnerabilities file.
#
# Used by:	audit-packages download-vulnerability-list
# Supported: 	/path/to/gpg
# Default: 	GPG="/usr/pkg/bin/gpg"

# PKGVULNDIR
#
# Specifies the directory the pkg-vulnerabilities file is located in.
#
# Used by:	audit-packages download-vulnerability-list
# Supported:	/path/to/pkg-vulnerabilities/
# Default: 	PKGVULNDIR="/var/db/pkg"

# COMPRESS_TYPE
#
# Specifies which type of compressed pkg-vulnerabilities file to
# download.  You can also specify COMPRESS_TYPE="" to use
# and uncompressed version of the file.
#
# If you change this from the default you must specify a COMPRESS_TOOL.
#
# Used by:	download-vulnerability-list
# Supported: 	gzip bzip2 (none)
# Default: 	COMPRESS_TYPE="gzip"

# COMPRESS_TOOL
#
# Specifies which tool will be used when dealing with the compressed
# pkg-vulnerabilities file.
#
# Used by:	download-vulnerability-list
# Supported: 	Any local binary that can decompress the
#		pkg-vulnerabilities file to stdout
# Default: 	COMPRESS_TOOL="/usr/bin/gzcat"

# FETCH_CMD
#
# Specifies the tool that will be used to fetch the pkg-vulnerabilities
# file.
#
# Used by:	download-vulnerability-list
# Supported: 	/path/to/curl /path/to/ftp /path/to/wget /path/to/fetch 
# Default: 	FETCH_CMD="/usr/bin/ftp"

# FETCH_ARGS
#
# Specifies optional arguments for the download-vulnerability-list client.
#
# Used by:	download-vulnerability-list
# Supported:	Any valid arguments for FETCH_CMD
# Default: 	FETCH_ARGS=

# FETCH_PROTO
#
# Specifies the protocol to use when fetching the pkg-vulnerabilities file.
#
# Used by:	download-vulnerability-list
# Supported: 	ftp http
# Default: 	FETCH_PROTO="ftp"

# IGNORE_URLS
#
# A list of vulnerability URLs to be ignored.
#
# Used by:	audit-packages
# Supported:	Valid URL(s) from pkg-vulnerabilities
# Default: 	IGNORE_URLS=