Date: Sat, 16 Dec 2000 13:51:00 -0700 From: Wes Peters <wes@softweyr.com> To: Mikhail Kruk <meshko@cs.brandeis.edu> Cc: Anil Jangity <aj@entic.net>, jrz <jrz@cnmnetwork.com>, security@FreeBSD.ORG Subject: Re: Security Update Tool.. Message-ID: <3A3BD5B4.B1B10FEE@softweyr.com> References: <Pine.LNX.4.30.0012151959380.1733-100000@daedalus.cs.brandeis.edu>
next in thread | previous in thread | raw e-mail | index | archive | help
Mikhail Kruk wrote:
>
> I'm not sure that many people would like that kind of automation, but what
> is really missing IMHO is ability to mark ports whichs are insecure and
> add some option to pkg_info which will check all installed packages. I
> think OpenBSD has exacty this, no?
>
> > I think he was looking for something a little more "automated". Something
> > like IE's "Window's update" for freebsd ;-)
> >
> > I don't think its too difficult to do this, all you do is do ident on any
> > binaries that are on the local system and compare the version with the
> > version string in the advisories... the advisory might need some
> > formatting changes?
The way to keep the operating system up to date is with CVSup and make world.
A tool to scan all the installed ports and compare against the current ports
tree, plus security advisories for ports, would be nice.
--
"Where am I, and what am I doing in this handbasket?"
Wes Peters Softweyr LLC
wes@softweyr.com http://softweyr.com/
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3A3BD5B4.B1B10FEE>