I've been experimenting with FreeNAS and am pretty happy. I'm using 11.2rc2, which is of course close to bleeding edge. I just discovered the FreeBSD "pkg audit -F" command and was surprised/disappointed to see so many packages are out of date and vulnerable to known security issues. ex:
Is an admin of a FreeNAS system expected/recommended to update these things between FreeNAS updates? Will doing so break future FreeNAS updates?
Code:
samba47-4.7.6_12 is vulnerable: samba -- multiple vulnerabilities CVE: CVE-2018-10919 CVE: CVE-2018-10918 CVE: CVE-2018-10858 CVE: CVE-2018-1140 CVE: CVE-2018-1139 WWW: https://vuxml.FreeBSD.org/freebsd/c4e9a427-9fc2-11e8-802a-000c29a1e3ec.html
Is an admin of a FreeNAS system expected/recommended to update these things between FreeNAS updates? Will doing so break future FreeNAS updates?