2e23771c68
*** NOTE *** The preferences file format has changed, as have the periodic.conf(5) names. Normally the default settings should be adequate, except when you need to configure a proxy. Use $PREFIX/etc/portaudit.conf.sample as an example. - moved portaudit to sbin - clean up, merging stuff into the portaudit script - better return codes and errors to stderr - -f can check stdin now - dropped ports tree auditing - merged the periodic(8) scripts into one - run daily auditing as `nobody'
61 lines
2.2 KiB
Bash
61 lines
2.2 KiB
Bash
#!/bin/sh -f
|
|
#
|
|
# Copyright (c) 2004 Oliver Eikemeier. All rights reserved.
|
|
#
|
|
# Redistribution and use in source and binary forms, with or without
|
|
# modification, are permitted provided that the following conditions are
|
|
# met:
|
|
#
|
|
# 1. Redistributions of source code must retain the above copyright notice
|
|
# this list of conditions and the following disclaimer.
|
|
#
|
|
# 2. Redistributions in binary form must reproduce the above copyright
|
|
# notice, this list of conditions and the following disclaimer in the
|
|
# documentation and/or other materials provided with the distribution.
|
|
#
|
|
# 3. Neither the name of the author nor the names of its contributors may be
|
|
# used to endorse or promote products derived from this software without
|
|
# specific prior written permission.
|
|
#
|
|
# THIS SOFTWARE IS PROVIDED "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES,
|
|
# INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY
|
|
# AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE
|
|
# COPYRIGHT OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT,
|
|
# INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
|
|
# NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
|
|
# DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
|
|
# THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
|
|
# (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
|
|
# THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
|
|
#
|
|
# $FreeBSD$
|
|
#
|
|
|
|
# If there is a global system configuration file, suck it in.
|
|
#
|
|
if [ -r /etc/defaults/periodic.conf ]; then
|
|
. /etc/defaults/periodic.conf
|
|
source_periodic_confs
|
|
fi
|
|
|
|
rc=0
|
|
case "${daily_status_security_portaudit_enable:-YES}" in
|
|
[Nn][Oo])
|
|
;;
|
|
*)
|
|
echo
|
|
echo "Checking for a current audit database:"
|
|
echo
|
|
%%PREFIX%%/sbin/portaudit -X "${daily_status_security_portaudit_expiry:-2}" || rc=$?
|
|
if [ $rc -lt 2 ]; then
|
|
%%PREFIX%%/sbin/portaudit -d
|
|
echo
|
|
echo "Checking for packages with security vulnerabilities:"
|
|
echo
|
|
echo %%PREFIX%%/sbin/portaudit -a |
|
|
su -fm "${daily_status_security_portaudit_user:-nobody}" || rc=$?
|
|
fi
|
|
;;
|
|
esac
|
|
|
|
exit "$rc"
|