Re: Mass update deployment strategy

To: mario <ml@bortal.de>
Cc: debian-security@lists.debian.org
Subject: Re: Mass update deployment strategy
From: Florian Weimer <fw@deneb.enyo.de>
Date: Tue, 09 Jan 2007 20:08:36 +0100
Message-id: <[🔎] 874pr09fwr.fsf@mid.deneb.enyo.de>
In-reply-to: <20061201001333.GA11534@javifsp.no-ip.org> (Javier Fernández-Sanguino Peña's message of "Fri, 1 Dec 2006 01:13:34 +0100")
References: <1164656262.3985.33.camel@linux.site> <20061201001333.GA11534@javifsp.no-ip.org>

* Javier Fernández-Sanguino Peña:

> If your installation where slightly bigger (maybe 100 systems) I would
> suggest you invest your time working with OVAL [1] and CVE [2]:
>
> a) deploy an OVAL agent at the nodes with apt-capabilities
>
> b) have a central OVAL server send new signatures to nodes so they can tell
>   you wether they are vulnerable or not (and need to have a DSA applied or
>   not)

Does anyone publish Debian-specific OVAL signatures?  Do you think
there is a need for them?

Reply to:

Follow-Ups:
- Re: Mass update deployment strategy
  - From: Moritz Muehlenhoff <jmm@inutil.org>
- Re: Mass update deployment strategy
  - From: Javier Fernández-Sanguino Peña <jfs@computer.org>

Prev by Date: Re: Mass update deployment strategy
Next by Date: Re: Mass update deployment strategy
Previous by thread: Re: Mass update deployment strategy
Next by thread: Re: Mass update deployment strategy
Index(es):
- Date
- Thread