|
FreeBSD Security Securing FreeBSD. |
|
Thread Tools | Display Modes |
|
||||
have you installed /usr/ports/security/portaudit and ran
Code:
portaudit -Fda -a to print the vulnerabilities or all installed packages -d print the creation of the database ^ from the man page all the best, v |
|
||||
Quote:
refreshing the database should be done automatically from daily periodic scripts. Quote:
all the best, v |
|
||||
Well, you should see if the issues affect you, and uprade as neccesary.
The "Vulnerability database out of date" should be gone now, portaudit is now run on every port installation to make sure you're not installing ports with know security issues. portaudit also added /usr/local/etc/periodic/security/410.portaudit This script automatically updates the portaudit database and checks all ports for known vulnerabilities when periodic daily is run (usually from cron, it's in /etc/crontab by default). To enable it add: Code:
daily_status_security_portaudit_enable="YES" See periodic(8) and periodic.conf(5), and portaudit(1) for more information. |
|
||||
Quote:
strange thing now that you mention it. i don't have an /etc/periodic.conf file and never added Code:
daily_status_security_portaudit_enable="YES" all the best, v |
|
||||
Quote:
I see that portaudit is enabled by default, usually periodic scripts are disabled by default ... I'm not sure why 410.portaudit didn't run for mfaridi then, maybe he disabled the periodic entries in crontab? Or disabled 410.portaudit in /etc/periodic.conf? |
|
||||
Quote:
Code:
/etc/ |
|
||||
As I said before:
periodic.conf works like rc.conf, the defaults are in /etc/defaults/periodic.conf and /etc/periodic.conf overrides these settings. So this means the /etc/periodic.conf does not exist by default, and that you will have to create the file. |
Thread Tools | |
Display Modes | |
|
|
Similar Threads | ||||
Thread | Thread Starter | Forum | Replies | Last Post |
cvs warning message inquiry | revzalot | OpenBSD Installation and Upgrading | 1 | 4th September 2009 12:12 PM |
Vulnerability | OldCoot | OpenBSD Security | 5 | 20th March 2009 07:44 PM |
tcpdump snaplen WARNING | bsdnewbie999 | OpenBSD General | 1 | 17th March 2009 03:24 AM |
checking upgrade worked? | carpman | FreeBSD Installation and Upgrading | 2 | 6th February 2009 11:37 PM |
checking if UIC has KDE plugins available... | ccc | FreeBSD Ports and Packages | 14 | 14th June 2008 09:36 PM |