Hi folks,
since running on RELENG_6 starting last week on my home server, I'm not
getting any useful periodic security output anymore.
After inspecting the problem I found that the default of
daily_status_security_diff_flags in /etc/defaults/periodic.conf is "-b
-u" but the ${filter} expression in /etc/periodic/security.functions is
being set to grep '^>'
diff produces a +/- diff format but the output is being filtered for ^>
so no output comes from any of the /etc/periodic/security scripts. This
should be either changed to daily_status_security_diff_flags="-b" in
/etc/defaults/periodic.conf or ${filter} being changed to 'grep ^+' in
/etc/periodic/security/security.functions.
Bye,
Volker
--
GPG/PGP fingerprint:
FF93 13A1 2477 B631 E953 06DF 4C49 ADD9 E4BF 79B1
Volker wrote:> After inspecting the problem I found that the default of > daily_status_security_diff_flags in /etc/defaults/periodic.conf is "-b > -u" but the ${filter} expression in /etc/periodic/security.functions is > being set to grep '^>' > > diff produces a +/- diff format but the output is being filtered for ^> > so no output comes from any of the /etc/periodic/security scripts. This > should be either changed to daily_status_security_diff_flags="-b" in > /etc/defaults/periodic.conf or ${filter} being changed to 'grep ^+' in > /etc/periodic/security/security.functions.Thanks for reporting this; I've changed the grep regex to '^[>+]' in order to catch lines from both unified and non-unified diffs. This change isn't going to be in 6.0-BETA3, but hopefully I can get it MFCed before 6.0-RELEASE. Colin Percival