From owner-freebsd-security  Sat Dec 16 12:47: 4 2000
From owner-freebsd-security@FreeBSD.ORG  Sat Dec 16 12:47:02 2000
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Delivered-To: freebsd-security@freebsd.org
Received: from homer.softweyr.com (bsdconspiracy.net [208.187.122.220])
	by hub.freebsd.org (Postfix) with ESMTP id 1762337B400
	for <security@freebsd.org>; Sat, 16 Dec 2000 12:47:01 -0800 (PST)
Received: from [127.0.0.1] (helo=softweyr.com ident=Fools trust ident!)
	by homer.softweyr.com with esmtp (Exim 3.16 #1)
	id 147OIH-0000Tz-00; Sat, 16 Dec 2000 13:51:01 -0700
Sender: wes@FreeBSD.ORG
Message-ID: <3A3BD5B4.B1B10FEE@softweyr.com>
Date: Sat, 16 Dec 2000 13:51:00 -0700
From: Wes Peters <wes@softweyr.com>
Organization: Softweyr LLC
X-Mailer: Mozilla 4.75 [en] (X11; U; Linux 2.2.12 i386)
X-Accept-Language: en
MIME-Version: 1.0
To: Mikhail Kruk <meshko@cs.brandeis.edu>
Cc: Anil Jangity <aj@entic.net>, jrz <jrz@cnmnetwork.com>,
	security@FreeBSD.ORG
Subject: Re: Security Update Tool..
References: <Pine.LNX.4.30.0012151959380.1733-100000@daedalus.cs.brandeis.edu>
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

Mikhail Kruk wrote:
> 
> I'm not sure that many people would like that kind of automation, but what
> is really missing IMHO is ability to mark ports whichs are insecure and
> add some option to pkg_info which will check all installed packages. I
> think OpenBSD has exacty this, no?
> 
> > I think he was looking for something a little more "automated". Something
> > like IE's "Window's update" for freebsd ;-)
> >
> > I don't think its too difficult to do this, all you do is do ident on any
> > binaries that are on the local system and compare the version with the
> > version string in the advisories... the advisory might need some
> > formatting changes?

The way to keep the operating system up to date is with CVSup and make world.

A tool to scan all the installed ports and compare against the current ports
tree, plus security advisories for ports, would be nice.

-- 
            "Where am I, and what am I doing in this handbasket?"

Wes Peters                                                         Softweyr LLC
wes@softweyr.com                                           http://softweyr.com/


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message