[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: [d-security] script for security update notification

On Fri, May 24, 2002 at 09:41:46AM -0400, Nathan Valentine wrote:
> 1) Check the Debian security announcement list.
> 2) Compare new announcements to the local package database.
> 3) If vulnerable packages installed, send an 'I need updated' email to
> an address defined by the SysAdmin.
Another nice approach would be to archive all changelog entries (maybe the
installer could extract them for you), scan them for tag=security or 
severity=high and build a database of "unwanted" packages that can be
compared with "dpkg -l" by the admins. This way you could attach the
relevant changelog entry to your "I need an update" mail.

Even more nice would be an extension to "apt-cache show" that shows all
changelog entries after the installed version. Could then be used as source
for your program to, but needs more work as the changelogs would have to be
distributed alongside the package descriptions, too.

Just some thoughts..

bye,

-christian-


-- 
To UNSUBSCRIBE, email to debian-security-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
Reply to: