Date: Tue, 16 Nov 2004 07:57:59 +0000 From: No Spam Please <nobody@example.com> To: FreeBSD-gnats-submit@FreeBSD.org Subject: misc/73992: periodic security not showing faily firewall diffs Message-ID: <E1CTyDv-000BYU-8u@elfgate.demon.co.uk> Resent-Message-ID: <200411160800.iAG80rJj062637@freefall.freebsd.org>
next in thread | raw e-mail | index | archive | help
>Number: 73992 >Category: misc >Synopsis: periodic security not showing faily firewall diffs >Confidential: no >Severity: non-critical >Priority: low >Responsible: freebsd-bugs >State: open >Quarter: >Keywords: >Date-Required: >Class: sw-bug >Submitter-Id: current-users >Arrival-Date: Tue Nov 16 08:00:53 GMT 2004 >Closed-Date: >Last-Modified: >Originator: No Spam Please >Release: FreeBSD 6.0-CURRENT i386 >Organization: >Environment: System: FreeBSD example.com 6.0-CURRENT FreeBSD 6.0-CURRENT #0: Fri Nov 12 09:56:54 GMT 2004 nobody@example.com:/usr/obj/usr/src/sys/GENERIC i386 >Description: The default periodic.conf value for "daily_status_security_diff_flags" includes the "-u" flag, which doesn't produce output with lines prefixed with '>' which is what the grep pipeline checks for. This means that the daily security report doesn't include firewall denied log changes. >How-To-Repeat: Run: "periodic security" after some changes to the firewall log >Fix: Remove the '-u' option to 'daily_status_security_diff_flags' in /usr/src/etc/defaults/periodic.conf >Release-Note: >Audit-Trail: >Unformatted:
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?E1CTyDv-000BYU-8u>