Date: Fri, 10 Aug 2012 19:53:49 +0200 From: olli hauer <ohauer@gmx.de> To: freebsd-security@freebsd.org Subject: Re: getting the running patch level Message-ID: <50254AAD.40003@gmx.de> In-Reply-To: <CAC8HS2FU1hrbh_m4P6h%2BSpUAJREfCeynHPD3QnNx6XuzSb3T-g@mail.gmail.com> References: <0B65D7562F9DA04FAC3F15C508BF67136B90E09E1F@ESESSCMS0355.eemea.ericsson.se> <001701cd7648$c2520350$46f609f0$@com> <5024f984.45ca320a.1838.4155SMTPIN_ADDED@mx.google.com> <CAC8HS2FU1hrbh_m4P6h%2BSpUAJREfCeynHPD3QnNx6XuzSb3T-g@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On 2012-08-10 16:40, Simon L. B. Nielsen wrote: > On Fri, Aug 10, 2012 at 1:06 PM, Roberto <robertot@redix.it> wrote: >> >> So as far I understand, if the kernel is not updated by the update process, it >> is not possible to get via "uname" the currently patch level. > > Correct. > > This has been discussed a number of time, but there are no nice and > simple solution. There is a simple solution if we just update the > kernel always, but that's a hack IMO. > > While the problem seems rather simple, there are many corner cases > making it hard to solve. It should be solved so people can get this > information, personally I just haven't had the time to work on it. > Maybe this information can be hold in an additional file, see http://cpe.mitre.org/ There is no guaranty root modifies the cpe files but thats the same for all systems which have cpe already implemented. -- Regards, olli
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?50254AAD.40003>