The FreeBSD Ports system has a few checks on files to be installed.
These checks are not useful in any most cases and can be easily lost in the noise.
A) The notice is not shown for packages
B) Too many ports result in this notice resulting in it being ignored
C) It is lost in the middle for dependencies
D) Sometimes the 'insecure' functions are actually used security (pkg itself used to use mktemp)
E) World writable folders are not always a problem
If this functionality is desired it should probably be a plugin to pkg instead.
Please commit this: http://people.freebsd.org/~eadler/files/no-need-for-security-check.diff
Discussed with: cperciva, jilles
I totally agree:
how ever the patch isn't totally correct, I discussed the details with Eitan on
irc so he should come back to that patch once the bsd.fpc.mk and bsd.php.mk are
if someone it missing those message then we can move part (not all anyway)
into qa.sh, but for now just drop it.
Fix synopsis and assign.
I think we should have replacements in place before removing this. I
find these notices useful, even if not well implemented currently.
Ping? Is this still being worked on?
Given the lack on interested in the last 4 years for this port, I will close it.