[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Security notification script

On Mon, Aug 26, 2002 at 09:31:34PM +0100, Rob Bradford wrote:
> I have written a python script that allows you to compares locally
> installed  packages with those on security.debian.org. Furthermore it
> provides a description of the problem/DSA name if the package is
> mentioned in the DSA RDF.

That looks really interesting for the harden packages. Especially for
the harden-*flaws packages. It is probably a better approach than 
uploading new harden-fooflaws everytime. Is it possible for your script
to differentiate between local and remote flaws?

> The script is intended to be run as a normal user in a crontab, and thus
> produces no output if the system is completely upto date.
> You will need to install python2.2 and python2.2-xml prior to using the
> script which can be found at
> http://www.robster.org.uk/files/security-update-check.py
> Any feedbacl/ideas would be much appreciated. I plan to make some minor
> changes and package this up later this week :)

Maybe you want to have it in the harden-*flaws package or simply make
these depend on your package. The later is maybe better.


// Ola

> Cheers
> Rob
> -- 
> Rob 'robster' Bradford
> Founder: http://www.debianplanet.org/
> Developer: http://www.debian.org/
> Monkey with keyboard: http://www.robster.org.uk/

 --------------------- Ola Lundqvist ---------------------------
/  opal@debian.org                     Björnkärrsgatan 5 A.11   \
|  opal@lysator.liu.se                 584 36 LINKÖPING         |
|  +46 (0)13-17 69 83                  +46 (0)70-332 1551       |
|  http://www.opal.dhs.org             UIN/icq: 4912500         |
\  gpg/f.p.: 7090 A92B 18FE 7994 0C36  4FE4 18A1 B1CF 0FE5 3DD9 /

Reply to: