Date: Fri, 14 Jul 2000 17:43:46 -0400 (EDT) From: Matt Heckaman <matt@ARPA.MAIL.NET> To: Bengt Richter <bokr@accessone.com> Cc: freebsd-security@FreeBSD.ORG Subject: Re: RFC for Advisories? (Was Re: Newer/Two kinds of advisories?) Message-ID: <Pine.BSF.4.21.0007141739001.76164-100000@epsilon.lucida.qc.ca> In-Reply-To: <3.0.5.32.20000714142038.00908650@mail.accessone.com>
next in thread | previous in thread | raw e-mail | index | archive | help
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On Fri, 14 Jul 2000, Bengt Richter wrote:
...
: Ideally, one could visualize logging in and seeing an automatically edited
: MOTD
: or additional message something like:
:
: "NOTICE: vulnscand has received and authenticated advisory <advisory ID>,
: and has (per vulnscand.conf auto option) disabled execution of
: /<path to executable>
: due to a level 7.2 ('Immediate Action Urgent') vulnerability.
: Type vulnscan -i <advisory ID> for full info."
Can I just say: "wow" - I like this alot, alot, alot, and .. you get the
idea. This would just be wonderful, being that we're all human and don't
always see an advisory the minute it comes out, I'm sure we've all had a
system running something vulnerable for a good 12-24 hours because of
that, something like this would.. Really set us apart.
: The RFC should not exclude the possibility of an NT-based vulnscand.exe
: service
: whereby possibly seeing something relevant to NT in the security log of the
: NT event viewer, with automated email to the system administrator.
*nods*
: For those writing cgi for score-keeping web presentation, perhaps a simple
: numeric scale of seriousness like the earth quake Richter (no relation :)
: scale would help keep things in perspective.
What do you mean no relation? Come on, I can't be the only one invisoning
a building (read; system) falling down, can I? :)
: HTIU (Hope this is useful)
I should hope so, time for me to go ponder about the possibility and get
my hopes up for some reason :)
: Regards,
: Bengt Richter
* Matt Heckaman - mailto:matt@lucida.qc.ca http://www.lucida.qc.ca/ *
* GPG fingerprint - A9BC F3A8 278E 22F2 9BDA BFCF 74C3 2D31 C035 5390 *
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.1 (FreeBSD)
Comment: http://www.lucida.qc.ca/pgp
iD8DBQE5b4mTdMMtMcA1U5ARAoBKAJ9Wt8zgvQsdNbHMT7NhM9j/MppjAwCg0pty
8+jHAOEOnj+PEC3NeCdrV54=
=PVn+
-----END PGP SIGNATURE-----
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.21.0007141739001.76164-100000>