From owner-freebsd-ports-bugs@FreeBSD.ORG Thu Oct 9 12:00:35 2003 Return-Path: Delivered-To: freebsd-ports-bugs@hub.freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id DB03216A4DB for ; Thu, 9 Oct 2003 12:00:35 -0700 (PDT) Received: from freefall.freebsd.org (freefall.freebsd.org [216.136.204.21]) by mx1.FreeBSD.org (Postfix) with ESMTP id E622F43FF9 for ; Thu, 9 Oct 2003 12:00:32 -0700 (PDT) (envelope-from gnats@FreeBSD.org) Received: from freefall.freebsd.org (gnats@localhost [127.0.0.1]) by freefall.freebsd.org (8.12.9/8.12.9) with ESMTP id h99J0WFY095597 for ; Thu, 9 Oct 2003 12:00:32 -0700 (PDT) (envelope-from gnats@freefall.freebsd.org) Received: (from gnats@localhost) by freefall.freebsd.org (8.12.9/8.12.9/Submit) id h99J0Wrq095596; Thu, 9 Oct 2003 12:00:32 -0700 (PDT) (envelope-from gnats) Resent-Date: Thu, 9 Oct 2003 12:00:32 -0700 (PDT) Resent-Message-Id: <200310091900.h99J0Wrq095596@freefall.freebsd.org> Resent-From: FreeBSD-gnats-submit@FreeBSD.org (GNATS Filer) Resent-To: freebsd-ports-bugs@FreeBSD.org Resent-Reply-To: FreeBSD-gnats-submit@FreeBSD.org, Udo Schweigert Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 38D2716A4B3 for ; Thu, 9 Oct 2003 11:51:05 -0700 (PDT) Received: from goliath.siemens.de (goliath.siemens.de [192.35.17.28]) by mx1.FreeBSD.org (Postfix) with ESMTP id 942A343FB1 for ; Thu, 9 Oct 2003 11:51:03 -0700 (PDT) (envelope-from udo.schweigert@siemens.com) Received: from mail1.siemens.de (mail1.siemens.de [139.23.33.14]) by goliath.siemens.de (8.11.7/8.11.7) with ESMTP id h99Ip2h23537 for ; Thu, 9 Oct 2003 20:51:02 +0200 (MEST) Received: from mars.cert.siemens.de (ust.mchp.siemens.de [139.23.201.17]) by mail1.siemens.de (8.11.7/8.11.7) with ESMTP id h99Ip1x23419 for ; Thu, 9 Oct 2003 20:51:01 +0200 (MEST) Received: from alaska.cert.siemens.de (alaska.cert.siemens.de [139.23.202.134]) mail/cert.mc.pre,v 1.51 2003/10/08 13:21:15 ust Exp $) with ESMTP id h99Ip16S056372 for ; Thu, 9 Oct 2003 20:51:01 +0200 (CEST) Received: from alaska.cert.siemens.de (alaska.cert.siemens.de [127.0.0.1]) hosts/alaska/mail/config.mc,v 1.15 2002/12/31 15:32:17 ust Exp $) with ESMTP id h99Ip1La000845 for ; Thu, 9 Oct 2003 20:51:01 +0200 (CEST) (envelope-from ust@alaska.cert.siemens.de) Received: (from ust@localhost) hosts/alaska/mail/submit.mc,v 1.4 2002/12/31 15:32:17 ust Exp $) id h99Ip1EL087200; Thu, 9 Oct 2003 20:51:01 +0200 (CEST) (envelope-from ust) Message-Id: <200310091851.h99Ip1EL087200@alaska.cert.siemens.de> Date: Thu, 9 Oct 2003 20:51:01 +0200 (CEST) From: Udo Schweigert To: FreeBSD-gnats-submit@FreeBSD.org X-Send-Pr-Version: 3.113 Subject: ports/57813: maintainer-update of security/nessus-* and security/nessus-*-devel X-BeenThere: freebsd-ports-bugs@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: Udo Schweigert List-Id: Ports bug reports List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 09 Oct 2003 19:00:36 -0000 >Number: 57813 >Category: ports >Synopsis: maintainer-update of security/nessus-* and security/nessus-*-devel >Confidential: no >Severity: non-critical >Priority: low >Responsible: freebsd-ports-bugs >State: open >Quarter: >Keywords: >Date-Required: >Class: maintainer-update >Submitter-Id: current-users >Arrival-Date: Thu Oct 09 12:00:32 PDT 2003 >Closed-Date: >Last-Modified: >Originator: Udo Schweigert >Release: FreeBSD 4.9-STABLE i386 >Organization: >Environment: >Description: Maintainer-update of the security/nessus-* and the security/nessus-*-devel ports: - Fix the README.BPF >How-To-Repeat: >Fix: diff -ru /usr/ports/security/nessus-libraries/files/README.BPF nessus-libraries/files/README.BPF --- /usr/ports/security/nessus-libraries/files/README.BPF Sat Apr 19 22:40:12 2003 +++ nessus-libraries/files/README.BPF Thu Oct 9 20:43:17 2003 @@ -1,22 +1,13 @@ -Nessus uses the pcap library, which uses the -berkeley packet filter (bpf) to do its job. +Nessus uses the pcap library, which uses the berkeley packet filter (bpf) +to do its job. Since Nessus used multiple processes, several pcap-aware plugins will need to access the the bpf at the same time. -This means that you need to recompile your kernel with the -following option : +This means that you need to recompile your kernel with the following option: -For FreeBSD 5.x: -pseudo-device bpfilter +pseudo-device bpf -For FreeBSD 4.x: -pseudo-device bpfilter NUM - -Where 'NUM' is the number of bpf you want -- it should be equal to -the 'max hosts number' option you enter in nessusd x the -'max plugins' option. - If for instance you want to have 10 nessusd running at the same time, each running 5 plugins in parallel, you should create 50 (10 * 5) bpfs (as nessusd is extremely lightweight, you can expect to have this amount @@ -26,18 +17,11 @@ 100 of them. Once your kernel has been rebuilt, get root, cd to /dev -and do : - - i=0; while [ $i -lt 100]; - do - ./MAKEDEV bpf$i - let i=$i+1 - done +and do: -On FreeBSD, you can directly do : ./MAKEDEV bpf+100 -(For FreeBSD 5.x this is not needed since the devfs creates devices when needed) +For FreeBSD 5.x this is not needed since the devfs creates devices when needed. If you can not recompile your kernel, you can try to run the configure script with the option --enable-bpf-sharing. In this case, nessusd will diff -ru /usr/ports/security/nessus-libraries-devel/files/README.BPF nessus-libraries-devel/files/README.BPF --- /usr/ports/security/nessus-libraries-devel/files/README.BPF Sat Apr 19 22:37:39 2003 +++ nessus-libraries-devel/files/README.BPF Thu Oct 9 20:43:23 2003 @@ -1,22 +1,13 @@ -Nessus uses the pcap library, which uses the -berkeley packet filter (bpf) to do its job. +Nessus uses the pcap library, which uses the berkeley packet filter (bpf) +to do its job. Since Nessus used multiple processes, several pcap-aware plugins will need to access the the bpf at the same time. -This means that you need to recompile your kernel with the -following option : +This means that you need to recompile your kernel with the following option: -For FreeBSD 5.x: -pseudo-device bpfilter +pseudo-device bpf -For FreeBSD 4.x: -pseudo-device bpfilter NUM - -Where 'NUM' is the number of bpf you want -- it should be equal to -the 'max hosts number' option you enter in nessusd x the -'max plugins' option. - If for instance you want to have 10 nessusd running at the same time, each running 5 plugins in parallel, you should create 50 (10 * 5) bpfs (as nessusd is extremely lightweight, you can expect to have this amount @@ -26,18 +17,11 @@ 100 of them. Once your kernel has been rebuilt, get root, cd to /dev -and do : - - i=0; while [ $i -lt 100]; - do - ./MAKEDEV bpf$i - let i=$i+1 - done +and do: -On FreeBSD, you can directly do : ./MAKEDEV bpf+100 -(For FreeBSD 5.x this is not needed since the devfs creates devices when needed) +For FreeBSD 5.x this is not needed since the devfs creates devices when needed. If you can not recompile your kernel, you can try to run the configure script with the option --enable-bpf-sharing. In this case, nessusd will >Release-Note: >Audit-Trail: >Unformatted: