From owner-freebsd-security  Sat Dec 16 22:34:16 2000
From owner-freebsd-security@FreeBSD.ORG  Sat Dec 16 22:34:14 2000
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Delivered-To: freebsd-security@freebsd.org
Received: from roble.com (mx0.roble.com [206.40.34.14])
	by hub.freebsd.org (Postfix) with ESMTP id 44DFE37B400
	for <security@FreeBSD.ORG>; Sat, 16 Dec 2000 22:34:14 -0800 (PST)
Received: from localhost (marquis@localhost)
	by roble.com  with ESMTP id eBH6Y9F12654
	for <security@FreeBSD.ORG>; Sat, 16 Dec 2000 22:34:09 -0800 (PST)
Date: Sat, 16 Dec 2000 22:34:07 -0800 (PST)
From: Roger Marquis <marquis@roble.com>
To: security@FreeBSD.ORG
Subject: Re: Security Update Tool..
Message-ID: <Pine.BSF.4.21.0012162228020.12522-100000@roble.com>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

> My question is, is there a util yet that in theory (maybe if so, or if 
> someone writes one would work differently than what I'm imagining) queries a 
> central database with all the security advisories, checks the local system 
> for comparisons and vulnerabilities against that database and reports to the 
> user who ran the util.

Before reinventing the wheel interested developers might check the
reference implementation, Sun's Patchdiag:

 http://sunsolve.Sun.COM/private-cgi/show.pl?target=resources/patchdiag

(NOTE: this URL does require a SunSolve account)

-- 
Roger Marquis
Roble Systems Consulting
http://www.roble.com/



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message