Comments (9)
Normally, when a BugTraq Id doesn't exist, the Security Focus web page return the 404 HTTP status code. However, your exception looks that Security Focus web page didn't work fine in that moment.
Anyway, I have added a try-catch for logging this error if it occurs again.
Please, try to initialize your database and give me feedback if the error persists.
from dagda.
sounds better, still initialization is taking too much time :(
it lacks an ending message, so we know initialization is complete
from dagda.
I agree with you. At the moment, I'm trying fixing the initialization time and improving the information about BugTraqs in the reports as I have done with the CVEs and the Exploits.
If you want to know if initialization is completed, you have the next endpoint for checking it.
from dagda.
At the moment, I'm trying fixing the initialization time and improving the information about BugTraqs in the reports as I have done with the CVEs and the Exploits.
Been working on dagda this week-end, init fails many times, perhaps because you scrap bugtracks and CVE database.
Perhaps a better solution would be to generate a mongodb pre initialize that would reduce sync time for users.
I can help on this topic around Docker integration if you like :)
from dagda.
I'm still working for improving the data model and fixing the issues when the bugTracks are scrapped from Security Focus web pages.
I think that your idea could be fine but I have some doubts about:
- If the mongoDB is generated with a pre initialization, I must force a concrete MongoDB version because I think all BSON stored by MongoDB are not full compatible through its versions.
- Following with the previous reasoning, I think it would be better generate a MongoDB export but the export should be hosted in a different place than GitHub, I guess.
Anyway, only the first init
take several minutes for populating the MongoDB because Dagda must to create the whole database. The next runs of the init
method, the population is incremental so it should not take more than one or two minutes.
Has the init
method failed yet after the commit that I did 6 days ago?
from dagda.
Has the initmethod failed yet after the commit that I did 6 days ago?
It did because securityfocus wasn't apparently unavailable
from dagda.
I've just modified the data model for including the BugTraq ID details. That is way, I have another github repository as my personal PoC about Security Focus web scrapping:
Anyway, I had not any problem with the web scrapping and I uploaded the result in the previous github repo.
Please, remove your current Dagda data model in your MongoDB, upgrade to the last version and try again. I hope my last changes fixing your issue.
from dagda.
will do as advised and let you know ASAP :)
from dagda.
Could you give me some feedback about this issue? Else I suppose the issue was fixed with the last comment that I wrote.
from dagda.
Related Issues (20)
- docker-compose instructions unclear and db error HOT 1
- docker-compose.yaml unfriendly to macos version of docker?
- dagda crashing when sent check job?
- Is it possible to run dagda as a container? HOT 1
- Unexpected exception of type RecursionError occurred: ('maximum recursion depth exceeded',)
- Unable to use python3 dagda.py vuln --init HOT 4
- Scanning image with included NPM project does not show NPM vulnerabilities HOT 1
- The problem of using docker-compose to build and deploy dagda is suspected to be a bug
- How to add custom falco rules HOT 1
- Vuln --init_status has been initializing and is never finishd
- docker image scan with dagda in standalone server mode. HOT 1
- Vuln --init fails HOT 2
- check result remains Analyzing HOT 1
- Dagda issue HOT 1
- Error while starting dagda (TypeError: an integer is required - got type bytes) HOT 3
- Scan containers running in K8s? HOT 1
- Many false-positives HOT 1
- Falcosecurity/ falco output file not found. HOT 4
- Publicly Accessible CVE Database
- docker compose build doesn't work: markupsafe dependency missing
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from dagda.