freebsd security - May 2004 - Way to ignore portaudit results?

Hello,

The mysql40-client port currently reports a security
problem when I try to install it:

neely:/usr/ports/databases/mysql40-client$ make
===>  mysql-client-4.0.18_1 has known
vulnerabilities:
>> MySQL insecure temporary file creation (mysqlbug).
   Reference:
<http://people.freebsd.org/~eik/portaudit/2e129846-8fbb-11d8-8b29-0020ed76ef5a.html>
>> Please update your ports tree and try again.
This is a minor problem affecting only the 'mysqlbug'
script, not core mysql client functionality.  We may
not see a fix in the MySQL distribution until 4.0.19.

Is there a way to force installation of a port, even
though portaudit reports a security problem?

Thank you,

Richard
http://www.taosecurity.com


	
		
__________________________________
Do you Yahoo!?
SBC Yahoo! - Internet access at a great low price.
http://promo.yahoo.com/sbc/

On Sunday 16 May 2004 16:12, Richard Bejtlich wrote:
> Is there a way to force installation of a port, even
> though portaudit reports a security problem?
make -DDISABLE_VULNERABILITIES

-- 
   ,_,   | Michael Nottebrock               | lofi@freebsd.org
 (/^ ^\) | FreeBSD - The Power to Serve     | http://www.freebsd.org
   \u/   | K Desktop Environment on FreeBSD | http://freebsd.kde.org
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 187 bytes
Desc: signature
Url :
http://lists.freebsd.org/pipermail/freebsd-security/attachments/20040516/d02a2f80/attachment.bin