Q. When I run make install clean for php5-extensions port, I'm dumped with the following error:
/usr/ports/sysutils/php5-posix
===> php5-posix-5.2.6 has known vulnerabilities:
=> php -- input validation error in posix_access function.
Reference: < http://www.FreeBSD.org/ports/portaudit/ee6fa2bd-406a-11dd-936a-0015af872849.html >
=> Please update your ports tree and try again.
*** Error code 1
Stop in /usr/ports/sysutils/php5-posix.
*** Error code 1
Stop in /usr/ports/lang/php5-extensions.
*** Error code 1
Stop in /usr/ports/lang/php5-extensions.
How do I fix this error?
A. Try upgrading your port tree by typing the following commands:
# portsnap fetch update
# portaudit -Fda
If you still see the error, temporarily disable error by adding following code to /etc/make.conf file:
# get around php5-posix error .if !empty(.CURDIR:M*sysutils/php5-posix*) DISABLE_VULNERABILITIES=yes .endif
Save and close the file. Try to rebuild port again:
# cd /usr/ports/lang/php5-extensions
# make install clean
Another option is build /usr/ports/lang/php5-extensions port without looking at VULNERABILITIES:
# make -DDISABLE_VULNERABILITIES install
According to FreeBSD security team:
It should be noted that this vulnerability is not considered to be serious by the FreeBSD Security Team, since safe_mode and open_basedir are insecure by design and should not be relied upon.
Featured Articles:
- 20 Linux System Monitoring Tools Every SysAdmin Should Know
- 20 Linux Server Hardening Security Tips
- My 10 UNIX Command Line Mistakes
- Linux: 20 Iptables Examples For New SysAdmins
- 25 PHP Security Best Practices For Sys Admins
- The Novice Guide To Buying A Linux Laptop
- 10 Greatest Open Source Software Of 2009
- Top 5 Email Client For Linux, Mac OS X, and Windows Users
- Top 20 OpenSSH Server Best Security Practices
- Top 10 Open Source Web-Based Project Management Software
- Top 5 Linux Video Editor Software
Facebook it - Tweet it - Print it -
