net-mgmt/nagios-check_ports and jails
Andrea Venturoli
ml at netfence.it
Wed Jun 21 09:52:16 UTC 2017
Hello.
I can't seem to get net-mgmt/nagios-check_ports for jails to work.
Example:
> # pkg audit -F
> vulnxml file up-to-date
> 0 problem(s) in the installed packages found.
> # /usr/local/libexec/nagios/check_ports -j cacti
> pkg: vulnxml file (null) does not exist. Try running 'pkg audit -F' first
> [: -gt: unexpected operator
> PORTS OK - security problem(s). | total_updates=0;0;0 security_problems=;0;0
> # /usr/local/etc/periodic/security/410.jailaudit
>
> Downloading a current audit database:
> pkgng support enabled, using /usr/local/sbin/pkg version 1.10.1.
>
> portaudit for jails on xxxx.xxxxx - 5 problem(s) found.
>
> portaudit for jail: cacti (JID: 3)
>
> apache24-2.4.25_1 is vulnerable:
> Apache httpd -- several vulnerabilities
> CVE: CVE-2017-7679
> CVE: CVE-2017-7668
> CVE: CVE-2017-7659
> CVE: CVE-2017-3169
> CVE: CVE-2017-3167
> WWW: https://vuxml.FreeBSD.org/freebsd/0c2db2aa-5584-11e7-9a7d-b499baebfeaf.html
>
> 1 problem(s) found.
> ...
This host is using UFS and the jails on are created with EZJail.
Any hint?
bye & Thanks
av.
More information about the freebsd-ports
mailing list