Marc, I have a couple of questions.
You use hostname and IP as a unique identifier for each host. For that
reason, I have not submitted any of our systems. We use FreeBSD for
sensitive security-related tasks, and we're loath to reveal that
information. (When I submit or update ports, I always alter the uname
information to "hostname.utdallas.edu" for that reason.)
Can you tell me exactly what you do with those two pieces of data? Is
there any way that information would be accessible from the internet?
Finally, it looks like your number one problem is going to be
maintainence. Right now you're showing a ".x" and a "F.x" release. Not
sure if that's tampering or what, but it's obviously not legit. You
also have a sudden influx of hosts from Armenia. Again, don't know if
they're legit or not, but keeping up with that stuff is going to require
eyes-on type manual labor. I hope you've planned for that.
Pending your (statisfactory) answer to the hostname-IP questions above,
I'll submit our stuff.
--
Paul Schmehl (pauls@utdallas.edu)
Adjunct Information Security Officer
The University of Texas at Dallas
http://www.utdallas.edu/ir/security/