Date: Thu, 22 Jun 2017 08:15:11 +0200 From: Andrea Venturoli <ml@netfence.it> To: Ryan Frederick <ryanrfrederick@gmail.com> Cc: ports@freebsd.org Subject: Re: net-mgmt/nagios-check_ports and jails Message-ID: <1c9c0c88-eca5-7278-e498-50172bc5ef70@netfence.it> In-Reply-To: <23a5901a-75e0-2624-066f-563fa0b181d3@gmail.com> References: <2cfd5c8c-b8b4-720a-5950-02bb59fe070b@netfence.it> <CAHPWjgegj25AXWYnmKpnShLiVhrz11L1-c9D4=X-1=4J8wTqOw@mail.gmail.com> <23a5901a-75e0-2624-066f-563fa0b181d3@gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On 06/21/17 20:09, Ryan Frederick wrote: > Andrea, > > I took a look at ports-mgmt/jailaudit, and it works a bit differently > than ports-mgmt/nagios-check_ports. jailaudit makes a list of packages > installed in the jail and runs pkg(8) audit outside of the jail against > the list. nagios-check_ports, on the other hand, calls pkg(8) audit with > the -j option to run inside the jail and thus requires a copy of > vuln.xml within the jail. That's what I suspected. > I would suggest running `pkg audit -F` within the jails regularly or > setup something to copy vuln.xml into the jails. > > That being said I do have a bugfix to commit upstream that unbreaks > checking for updates within a jail from outside the jail. I'll hopefully > get that released soon. I'm in no hurry, so I can wait for soon :) Thanks for your work. bye av.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?1c9c0c88-eca5-7278-e498-50172bc5ef70>