From owner-freebsd-stable@FreeBSD.ORG Mon Aug 22 09:47:09 2005 Return-Path: X-Original-To: freebsd-stable@freebsd.org Delivered-To: freebsd-stable@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 1F40B16A41F for ; Mon, 22 Aug 2005 09:47:09 +0000 (GMT) (envelope-from cperciva@freebsd.org) Received: from pd4mo3so.prod.shaw.ca (shawidc-mo1.cg.shawcable.net [24.71.223.10]) by mx1.FreeBSD.org (Postfix) with ESMTP id B59DB43D46 for ; Mon, 22 Aug 2005 09:47:08 +0000 (GMT) (envelope-from cperciva@freebsd.org) Received: from pd5mr1so.prod.shaw.ca (pd5mr1so-qfe3.prod.shaw.ca [10.0.141.232]) by l-daemon (Sun ONE Messaging Server 6.0 HotFix 1.01 (built Mar 15 2004)) with ESMTP id <0ILM00A0QAOIBH20@l-daemon> for freebsd-stable@freebsd.org; Mon, 22 Aug 2005 03:36:18 -0600 (MDT) Received: from pn2ml8so.prod.shaw.ca ([10.0.121.152]) by pd5mr1so.prod.shaw.ca (Sun ONE Messaging Server 6.0 HotFix 1.01 (built Mar 15 2004)) with ESMTP id <0ILM00FV3AOI9F90@pd5mr1so.prod.shaw.ca> for freebsd-stable@freebsd.org; Mon, 22 Aug 2005 03:36:18 -0600 (MDT) Received: from [192.168.0.60] (S0106006067227a4a.vc.shawcable.net [24.87.209.6]) by l-daemon (iPlanet Messaging Server 5.2 HotFix 1.18 (built Jul 28 2003)) with ESMTP id <0ILM0063OAOHOG@l-daemon> for freebsd-stable@freebsd.org; Mon, 22 Aug 2005 03:36:18 -0600 (MDT) Date: Mon, 22 Aug 2005 02:36:17 -0700 From: Colin Percival In-reply-to: <43098526.10904@vwsoft.com> To: Volker Message-id: <43099C91.1030007@freebsd.org> MIME-version: 1.0 Content-type: text/plain; charset=ISO-8859-1 Content-transfer-encoding: 7bit X-Accept-Language: en-us, en References: <43098526.10904@vwsoft.com> User-Agent: Mozilla Thunderbird 1.0.6 (X11/20050724) Cc: freebsd-stable@freebsd.org Subject: Re: RELENG_6 periodic security default problem X-BeenThere: freebsd-stable@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Production branch of FreeBSD source code List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 22 Aug 2005 09:47:09 -0000 Volker wrote: > After inspecting the problem I found that the default of > daily_status_security_diff_flags in /etc/defaults/periodic.conf is "-b > -u" but the ${filter} expression in /etc/periodic/security.functions is > being set to grep '^>' > > diff produces a +/- diff format but the output is being filtered for ^> > so no output comes from any of the /etc/periodic/security scripts. This > should be either changed to daily_status_security_diff_flags="-b" in > /etc/defaults/periodic.conf or ${filter} being changed to 'grep ^+' in > /etc/periodic/security/security.functions. Thanks for reporting this; I've changed the grep regex to '^[>+]' in order to catch lines from both unified and non-unified diffs. This change isn't going to be in 6.0-BETA3, but hopefully I can get it MFCed before 6.0-RELEASE. Colin Percival