Re: [d-security] script for security update notification
On Fri, May 24, 2002 at 09:41:46AM -0400, Nathan Valentine wrote:
> 1) Check the Debian security announcement list.
> 2) Compare new announcements to the local package database.
> 3) If vulnerable packages installed, send an 'I need updated' email to
> an address defined by the SysAdmin.
Another nice approach would be to archive all changelog entries (maybe the
installer could extract them for you), scan them for tag=security or
severity=high and build a database of "unwanted" packages that can be
compared with "dpkg -l" by the admins. This way you could attach the
relevant changelog entry to your "I need an update" mail.
Even more nice would be an extension to "apt-cache show" that shows all
changelog entries after the installed version. Could then be used as source
for your program to, but needs more work as the changelogs would have to be
distributed alongside the package descriptions, too.
Just some thoughts..
To UNSUBSCRIBE, email to email@example.com
with a subject of "unsubscribe". Trouble? Contact firstname.lastname@example.org