Messages

1

24.7 Production Series / Re: Stalled upgrade to 24.7.6 shutting down crowdsec

« on: October 10, 2024, 07:43:52 pm »

From this thread: https://forum.opnsense.org/index.php?topic=43309.0

Open a terminal command line and then

killall -9 crowdsec

I'll give this a shot next time.  Thanks for the quick reply

2

24.7 Production Series / Re: Stalled upgrade to 24.7.6 shutting down crowdsec

« on: October 10, 2024, 07:42:01 pm »

Rebooting seemed to resolve the immediate issue and I will keep an eye out for any oddities it may have created

3

24.7 Production Series / Stalled upgrade to 24.7.6 shutting down crowdsec

« on: October 10, 2024, 07:23:12 pm »

Upgrading from 24.7.5_3 to 24.7.6 and the upgrade appears to be stalled while trying to shutdown crowdsec.  Has anyone else experienced this?  Any fixes or work-arounds?

Logs indicate upgrading crowdsec form 1.6.3_1 to 1.6.3_2 and extracting the new package which finished.  It then attempted to shutdown the crowdsec app and stopped two PIDS after which it essentially stalled.  I've been at that screen for the past 10 to 15 minutes.  OPNsense continues to run with Internet access.

I have not tried a reboot yet and don't want to if it will impact the upgrade.

4

23.1 Legacy Series / Re: Security Audit Log Issues

« on: March 10, 2023, 11:50:14 pm »

I noticed the same issue still exists; I'm running 23.1.3.

My security audit output:
  ***GOT REQUEST TO AUDIT SECURITY***
  Currently running OPNsense 23.1.3 at Fri Mar 10 14:30:15 PST 2023
  vulnxml file up-to-date
  curl-7.87.0_1 is vulnerable:
    curl -- multiple vulnerabilities
    CVE: CVE-2023-23916
    CVE: CVE-2023-23915
    CVE: CVE-2023-23914
    WWW: https://vuxml.FreeBSD.org/freebsd/be233fc6-bae7-11ed-a4fb-080027f5fec9.html

  1 problem(s) in 1 installed package(s) found.
  ***DONE***

The last CVE listed, CVE-2023-23914, is a 9.1 critical