cp ~/.profile ~/.profile.dist chmod u+w ~/.profile vi ~/.profile export PKG_PATH="http://cdn.NetBSD.org/pub/pkgsrc/packages/NetBSD/$(uname -p)/$(uname -r|cut -f '1 2' -d.|cut -f 1 -d_)/All" . ~/.profile echo $PKG_PATH/
pkg_add curl pkg_add wget pkg_add git pkg_add screen pkg_add ca-certificates mv -i /usr/pkg/etc/ca-certificates-dir.conf /usr/pkg/etc/ca-certificates-dir.conf.dist echo ETCCERTSDIR=/etc/openssl/certs > /usr/pkg/etc/ca-certificates-dir.conf update-ca-certificates pkg_add mozilla-rootcerts pkg_add mozilla-rootcerts-openssl ls -alhF /etc/openssl/certs/
pkg_add \
alpine \
iftop \
iperf3 \
netcat \
nmap \
trafshow
#tmux \
#dsniff-nox11 \
as of today Apr 2019 glib2 dep is missing for dsniff
cp -i /usr/share/examples/openssl/openssl.cnf /etc/openssl ll /etc/openssl/certs/ mozilla-rootcerts install ll /etc/openssl/certs/ca-certificates.crt curl -I https://os3.su/
pkg_add \
e2fsprogs \
lftp \
lynx \
mc \
pwgen
#vim \
echo $PKG_PATH pkg_add python38 pkg_add py38-setuptools pkg_add py38-pip pkg_add py38-curses pkg_add py38-cursespanel cd /usr/pkg/bin/ ln -s python3.8 python ln -s pip3.8 pip
ls -lhF /usr/pkg/etc/audit-packages.conf # no exist ls -lhF ls -lhF /usr/pkg/pkgdb/pkg-vulnerabilities # no exist mkdir -p /usr/pkg/etc/ echo 'VUL_SOURCE="ftp://ftp.fr.netbsd.org/pub/NetBSD/packages/distfiles/pkg-vulnerabilities"' > /usr/pkg/etc/audit-packages.conf /usr/sbin/pkg_admin fetch-pkg-vulnerabilities -u -s /usr/sbin/pkg_admin check-pkg-vulnerabilities /usr/pkg/pkgdb/pkg-vulnerabilities /usr/sbin/pkg_admin audit # gnu/linux #/usr/pkg/sbin/pkg_admin grep run_security /etc/defaults/daily.conf grep vulnerabilities /etc/daily.conf # empty vi /etc/daily.conf fetch_pkg_vulnerabilities=YES check_pkg_vulnerabilities=YES
and eventually
crontab -e 20 3 * * * /usr/sbin/pkg_admin audit
Security and NetBSD http://www.netbsd.org/support/security/
5.1.5. Checking for security vulnerabilities in installed packages https://www.netbsd.org/docs/pkgsrc/using.html#vulnerabilities