Skip site navigation (1)Skip section navigation (2)
Date:      Tue, 6 Mar 2007 17:20:24 +0100 (CET)
From:      Udo Schweigert <udo.schweigert@siemens.com>
To:        FreeBSD-gnats-submit@FreeBSD.org
Subject:   ports/109999: maintainer-update of security/nessus-*
Message-ID:  <200703061620.l26GKOtP099165@alaska.cert.siemens.com>
Resent-Message-ID: <200703061630.l26GU3oB073573@freefall.freebsd.org>

next in thread | raw e-mail | index | archive | help

>Number:         109999
>Category:       ports
>Synopsis:       maintainer-update of security/nessus-*
>Confidential:   no
>Severity:       non-critical
>Priority:       low
>Responsible:    freebsd-ports-bugs
>State:          open
>Quarter:        
>Keywords:       
>Date-Required:
>Class:          maintainer-update
>Submitter-Id:   current-users
>Arrival-Date:   Tue Mar 06 16:30:03 GMT 2007
>Closed-Date:
>Last-Modified:
>Originator:     Udo Schweigert
>Release:        FreeBSD 6.2-RELEASE-p1 i386
>Organization:
>Environment:


>Description:

Maintainer-update of the security/nessus-* ports:

	- Unbreak the ports.

The ports were broken because of an false entry in the pkg-plist of the nessus
port, which only got executed if installing the port as a dependency from
a package in a clean environment without the leftover X509-certificate of a 
previous installation.

Now the certifcate creation is done as part of the rc-script.


>How-To-Repeat:
>Fix:

diff -ru /usr/ports/security/nessus/files/nessusd.sh.in nessus/files/nessusd.sh.in
--- /usr/ports/security/nessus/files/nessusd.sh.in	Fri May 26 21:24:10 2006
+++ nessus/files/nessusd.sh.in	Tue Mar  6 17:10:21 2007
@@ -30,8 +30,16 @@
 name="nessusd"
 rcvar=`set_rcvar`
 command="${prefix}/sbin/nessusd"
-pidfile="/usr/local/var/nessus/nessusd.pid"
+pidfile="${prefix}/var/nessus/nessusd.pid"
 required_files="${prefix}/etc/nessus/nessusd.conf"
+start_precmd="nessus_check_certificate"
+
+nessus_check_certificate()
+{
+	if [ ! -f ${prefix}/var/CA/serverkey.pem ]; then
+		 ${prefix}/sbin/nessus-mkcert
+	fi
+}
 
 load_rc_config $name
 run_rc_command "$1"
diff -ru /usr/ports/security/nessus/pkg-plist nessus/pkg-plist
--- /usr/ports/security/nessus/pkg-plist	Fri May 26 21:24:10 2006
+++ nessus/pkg-plist	Tue Mar  6 16:34:49 2007
@@ -29,9 +29,9 @@
 @dirrmtry var/nessus/jobs
 @dirrmtry var/nessus/logs
 @dirrmtry var/nessus/users
+var/nessus/nessus-services
 @dirrmtry var/nessus
 @dirrmtry etc/nessus
 @exec mkdir -p %D/lib/nessus/plugins
 @dirrmtry lib/nessus/plugins
 @dirrmtry lib/nessus
-@exec if [ ! -f %D/var/CA/serverkey.pem ]; then %D/sbin/nessus-mkcert; fi
diff -ru /usr/ports/security/nessus-plugins/Makefile nessus-plugins/Makefile
--- /usr/ports/security/nessus-plugins/Makefile	Sun Feb  4 06:10:25 2007
+++ nessus-plugins/Makefile	Tue Mar  6 17:12:58 2007
@@ -22,8 +22,6 @@
 RUN_DEPENDS=	${LOCALBASE}/include/nessus/nessus-devel.h:${PORTSDIR}/security/nessus \
 		nmap:${PORTSDIR}/security/nmap
 
-BROKEN=		Incomplete pkg-plist
-
 DIST_SUBDIR=	nessus
 WRKSRC=		${WRKDIR}/nessus-plugins
 
>Release-Note:
>Audit-Trail:
>Unformatted:



Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200703061620.l26GKOtP099165>