From owner-freebsd-questions@FreeBSD.ORG Sat Mar 11 08:50:55 2006 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id E857916A420 for ; Sat, 11 Mar 2006 08:50:55 +0000 (GMT) (envelope-from lars@gmx.at) Received: from mail.gmx.net (mail.gmx.net [213.165.64.20]) by mx1.FreeBSD.org (Postfix) with SMTP id 1EFC343D4C for ; Sat, 11 Mar 2006 08:50:54 +0000 (GMT) (envelope-from lars@gmx.at) Received: (qmail invoked by alias); 11 Mar 2006 08:50:54 -0000 Received: from 126.49.79.83.cust.bluewin.ch (EHLO [192.168.1.10]) [83.79.49.126] by mail.gmx.net (mp033) with SMTP; 11 Mar 2006 09:50:54 +0100 X-Authenticated: #912863 Message-ID: <44128F70.60607@gmx.at> Date: Sat, 11 Mar 2006 09:50:56 +0100 From: "lars@gmx.at" User-Agent: Thunderbird 1.5 (X11/20060203) MIME-Version: 1.0 CC: FreeBSD Questions Mailing List References: <226ae0c60603101111r75775ea9n3c791d933c5954da@mail.gmail.com> In-Reply-To: <226ae0c60603101111r75775ea9n3c791d933c5954da@mail.gmail.com> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-Y-GMX-Trusted: 0 Subject: Re: Local portaudit server. X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: lars@gmx.at List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 11 Mar 2006 08:50:56 -0000 David Robillard wrote: > Hello, > > We use the port security/portaudit on all of our FreeBSD servers. > Currently, every machine has to out on the internet to download the > portaudit vulnerability database from the FreeBSD server. > > Since all of the machines are downloading the exact same file, we > would like to setup a local portaudit server. This server would fetch > the vulnerabilty file and all the rest of our servers would fetch it > from the local portaudit server. > > Has anyone done this setup? Any help/pointers would be great. Hi I haven't done it but I don't think it should be a problem: If you look at the portaudit script /usr/local/sbin/portaudit you'll find that the auditfile is located here: http://www.freebsd.org/ports/auditfile.tbz You can get it manually, try. So by changing some variables in portaudit_confs() { : ${portaudit_dir="/var/db/portaudit"} : ${portaudit_filename="auditfile.tbz"} : ${portaudit_fetch_env=""} : ${portaudit_fetch_cmd="fetch -1mp"} : ${portaudit_sites="http://www.FreeBSD.org/ports/"} : ${portaudit_fixed=""} if [ -r /usr/local/etc/portaudit.conf ]; then . /usr/local/etc/portaudit.conf fi } on each machine you should be able to guide them to your local machine. hth lars.