Vulnerability check disabled, database not found

January 19, 2005 8:12 am

Link: CVSup.

Tracking ports security

You may also notice that when you’re building ports you may end up with this error:

===> Vulnerability check disabled, database not found

This is because ports is looking for a tool called portaudit in security/portaudit. You may want to install it from ports, and run portaudit -Fa to fetch the portaudit database and give you a report on which ports have known vulnerabilities. FreeBSD will also use portaudit as part of its daily security report e-mailed to you (or whomever is assigned the root address).

Thus, based on the above, an appropriate crontab to update your ports tree daily would be:

0 3 * * * /usr/local/bin/cvsup /root/ports-supfile && cd /usr/ports/ && make fetchindex && portsdb -u && /usr/local/sbin/portaudit -F

Bookmark and Share
 FreeBSD
Related posts:
  • Frank
    Actually it is located in /usr/ports/ports-mgmt/portaudit/ since february 5th 2007.
  • I noticed this today, gave a quick google search and came across this. Im running 7.0-CURRENT
blog comments powered by Disqus