Date: Mon, 7 Nov 2005 08:47:03 +0100 From: jimmy@inet-solutions.be To: "Simon L. Nielsen" <simon@FreeBSD.org> Cc: freebsd-security@freebsd.org, =?iso-8859-1?b?S/Z2ZXNk4W4g?= =?iso-8859-1?b?R+Fib3I=?= <gabor.kovesdan@t-hosting.hu>, freebsd-questions@freebsd.org Subject: Re: What happened with portaudit? Message-ID: <1131349623.436f06779cbc1@webmail.boxke.be> In-Reply-To: <20051106220942.GC904@zaphod.nitro.dk> References: <436E2F88.3010300@t-hosting.hu> <20051106204852.GB25399@ada.devbox.be> <20051106220942.GC904@zaphod.nitro.dk>
next in thread | previous in thread | raw e-mail | index | archive | help
Quoting "Simon L. Nielsen" <simon@FreeBSD.org>: > On 2005.11.06 21:48:52 +0100, Jimmy Scott wrote: > > On Sun, Nov 06, 2005 at 05:30:00PM +0100, Kövesdán Gábor wrote: > > > Hello, > > > > > > One of my machines I got a report about 3 vulnerable packages (php4, > > > ruby, openssl) in tomorrows security run output, but in today's security > > > run output all of them disappeared, but nobody upgraded or removed the > > > affected packages. I reinstalled portaudit, refreshd its database, but > > > now it reports 0 affected pakages. The pkg_info command lists that three > > > packages, so they are still installed. Does anybody suspect what's wrong? > > > > I noticed the same, but didn't had the time to look for a possible > > answer on that question. > > It does seem to work for me now. Could people having this problem > please check the size of /var/db/portaudit/auditfile.tbz and try to > run portaudit -Fa to refetch the database and check again? > > For reference: > > [simon@zaphod:/tmp] ls -l /var/db/portaudit/auditfile.tbz > -r--r--r-- 1 root wheel 31762 6 Nov 22:40 /var/db/portaudit/auditfile.tbz > > There have been one previous report where a problem with the portaudit > database build resulted in an incomplete auditfile which was then > fixed after the next portaudit database rebuild. > > -- > Simon L. Nielsen > FreeBSD Security Team > Everything seems fine today, I can't check the size of the file from then since it's being run every night by periodic/security. If you are really interrested in the file I could restore it from a backup somehow, but it will be a lot of work. I should have checked it from the moment I noticed in the emails. Kind regards, Jimmy Scott ---------------------------------------------------------------- This message has been sent through ihosting.be To report spamming or other unaccepted behavior by a iHosting customer, please send a message to abuse@ihosting.be ----------------------------------------------------------------
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?1131349623.436f06779cbc1>