Project

General

Profile

Actions
Copy link

Bug #9279

closed

security/acme: acme pf sense package processes unnecessary notifications due to using stdout

Added by Derek Schrock over 5 years ago. Updated over 5 years ago.

Status:
Duplicate
Priority:
Low
Assignee:
-
Category:
-
Target version:
-
Start date:
01/20/2019
Due date:
% Done:

0%

Estimated time:
Plus Target Version:
Affected Version:
Affected Plus Version:
Affected Architecture:

Description

When email notifications enabled and pfsense acme (0.5.1) package installed and cron enabled, acme client will product stdout output when checking to see if it should attempt a renew.

This stdout data will result in an email:

Subject: XXX - Arpwatch Notification : Cron <root@XXX> /usr/local/pkg/acme/acme_command.sh "renewall"
...
X-Cron-Env: <SHELL=/bin/sh>
X-Cron-Env: <PATH=/etc:/bin:/sbin:/usr/bin:/usr/sbin>
X-Cron-Env: <HOME=/root>
X-Cron-Env: <LOGNAME=root>
X-Cron-Env: <USER=root>
...
Checking if renewal is needed for: XXX
Renewal number of days not yet reached.

acme client shouldn't produce a notification for a non-actionable non-changing stats.

Actions
Copy link
 #1

Updated by Jim Pingle over 5 years ago

  • Status changed from New to Duplicate

This will be solved by the fix for #8211 so I'm marking this as a duplicate for now.

Actions
Copy link

Also available in: Atom PDF