Import advchk, a tool for monitoring the security of installed softwares.

ok jasper@

security/advchk/Makefile

@@ -0,0 +1,31 @@
+# $OpenBSD: Makefile,v 1.1.1.1 2006/10/20 11:32:07 ajacoutot Exp $
+
+COMMENT=	"tool for monitoring the security of installed softwares"
+
+DISTNAME=	advchk-1.00
+CATEGORIES=	security
+
+HOMEPAGE=	http://advchk.unixgu.ru/
+
+MAINTAINER=	Antoine Jacoutot <ajacoutot@openbsd.org>
+
+# 2-clause BSD
+PERMIT_PACKAGE_CDROM=	Yes
+PERMIT_PACKAGE_FTP=	Yes
+PERMIT_DISTFILES_CDROM= Yes
+PERMIT_DISTFILES_FTP=	Yes
+
+MASTER_SITES=	${HOMEPAGE}
+
+RUN_DEPENDS=	::www/p5-libwww
+
+NO_BUILD=	Yes
+NO_REGRESS=	Yes
+PKG_ARCH=	*
+
+do-install:
+	${INSTALL_SCRIPT} ${WRKSRC}/advchk ${PREFIX}/bin
+	${INSTALL_SCRIPT} ${WRKSRC}/addfeeds.sh ${PREFIX}/bin
+	${INSTALL_DATA} ${WRKSRC}/advchk.1 ${PREFIX}/man/man1
+
+.include <bsd.port.mk>

security/advchk/distinfo

@@ -0,0 +1,4 @@
+MD5 (advchk-1.00.tar.gz) = 4b383f6126e6fef8d76607cae8e9f5df
+RMD160 (advchk-1.00.tar.gz) = 9e5730073ed6305105ef56101bc404467afbec1a
+SHA1 (advchk-1.00.tar.gz) = 8eb74aea6e823a6380ccfcd978a432b3f71a2237
+SIZE (advchk-1.00.tar.gz) = 8693

security/advchk/patches/patch-advchk

@@ -0,0 +1,12 @@
+$OpenBSD: patch-advchk,v 1.1.1.1 2006/10/20 11:32:07 ajacoutot Exp $
+--- advchk.orig	Mon Oct 16 14:44:50 2006
++++ advchk	Mon Oct 16 14:45:07 2006
+@@ -535,7 +535,7 @@ sub loadDb {
+                         $dbFile = "$ENV{'HOME'}/.advchk/advchk.db";
+                         mkdir "$ENV{'HOME'}/.advchk"
+                                 unless -d "ENV{'HOME'}/.advchk";
+-                        my $cmd = "/bin/touch $dbFile";
++                        my $cmd = "/usr/bin/touch $dbFile";
+                         &error( "Oops, this happened:", $!,
+                                 "while executing:", $cmd  )
+                                 if system $cmd;

security/advchk/patches/patch-advchk_1

@@ -0,0 +1,48 @@
+$OpenBSD: patch-advchk_1,v 1.1.1.1 2006/10/20 11:32:07 ajacoutot Exp $
+--- advchk.1.orig	Thu Oct 12 19:48:48 2006
++++ advchk.1	Fri Oct 20 13:29:11 2006
+@@ -47,19 +47,32 @@ Enabling SSH-Update for a vanilla host i
+ The following
+ .B package managers
+ are supported:
+-.TS
+-tab (@);
+-l l l.
+-MANAGER@OPERATING SYSTEM@COMMAND
+-pkg_info@Open-, Net-, FreeBSD, Darwin/MacOS X@pkg_info
+-dpkg@Debian, Ubuntu, ...@dpkg -l
+-rpm@Redhat/Fedora, SuSE, Turbolinux, ...@rpm -qa
+-lpp@AIX@lslpp -Lc
+-pkginfo@Solaris@pkginfo -x
+-portage@Gentoo@equery list -i
+-\ @Equery is included in "gentoolkit".@\ 
+-.TE
++.TP
++.I pkg_info
++.B pkg_info
++Open-, Net-, FreeBSD, Darwin/MacOS X
++.TP
++.I dpkg
++.B dpkg -l
++Debian, Ubuntu, ...
++.TP
++.I rpm
++.B rpm -qa
++Redhat/Fedora, SuSE, Turbolinux, ...
++.TP
++.I lpp
++.B lslpp -Lc
++AIX
++.TP
++.I pkginfo
++.B pkginfo -x
++Solaris
++.TP
++.I portage
++.B equery list -i
++Gentoo (Equery is included in "gentoolkit")
+ 
++.P
+ Think of 
+ .B advchk
+ as your

security/advchk/pkg/DESCR

@@ -0,0 +1,12 @@
+Advchk (Advisory Check) reads security advisories so you don't have to.
+Advisory Check gathers security advisories using RSS / RDF / XML feeds,
+compares them against a list of known softwares, and alerts you if
+you're vulnerable.
+
+Software installed on remote systems can be monitored using SSH-Update.
+SSH-Update retrieves packages list by executing the remote package
+manager as an SSH ForcedCommand using Public-key authentication.
+
+Quite a few CERTs and vendors offer security-relevant feeds. Mailing
+lists can be monitored using feeds provided by some web archives. Some
+usenet gateways like Google Groups also offer RSS subscriptions.

security/advchk/pkg/PLIST

@@ -0,0 +1,4 @@
+@comment $OpenBSD: PLIST,v 1.1.1.1 2006/10/20 11:32:07 ajacoutot Exp $
+bin/addfeeds.sh
+bin/advchk
+@man man/man1/advchk.1