Q. While installing any FreeBSD port I’m getting following error message:
….
===> FreeBSD WARNING: Vulnerability Database Out of Date, Checking Anyway
…
How do I fix this warning message?
A. You need to install portaudit package to get rid of this error message. portaudit command checks installed packages for known vulnerabilities and generates reports including references to security advisories. If you have a vulnerable package installed, you are advised to update or deinstall it immediately. his package also installs a script into /usr/local/etc/periodic/security that regularly updates this database and includes a report of vulnerable packages in the daily security report.
Login as the root and type the following command to fix this issue:
# cd /usr/ports/ports-mgmt/portaudit
# make install clean
# /usr/local/sbin/portaudit -Fda
Now you should able to install any port without vulnerability database out of date error.
4 comment
shouldn’t that be
cd /usr/ports/ports-mgmt/portaudit
Guy,
Thanks for the heads up. The FAQ has been updated.
How long can this be experted to take, on say, a 2007 laptop? And with 500 ports installed? Thank you.
@Rianav Not long.
portaudit checks the database of installed packages/ports against a list of known to be vulnerable ports. It doesn’t necessarily have to check every file every port installs every time its run. On a VM I have running right now, it took about 2 seconds to report anything back. It has appx 300 ports installed.