Re: Mass update deployment strategy

To: debian-security@lists.debian.org
Subject: Re: Mass update deployment strategy
From: Moritz Muehlenhoff <jmm@inutil.org>
Date: Wed, 10 Jan 2007 19:23:36 +0100
Message-id: <[🔎] slrneqabp8.3bc.jmm@inutil.org>
References: <1164656262.3985.33.camel@linux.site> <20061201001333.GA11534@javifsp.no-ip.org> <[🔎] 874pr09fwr.fsf@mid.deneb.enyo.de>

On 2007-01-09, Florian Weimer <fw@deneb.enyo.de> wrote:
> * Javier Fernández-Sanguino Peña:
>
>> If your installation where slightly bigger (maybe 100 systems) I would
>> suggest you invest your time working with OVAL [1] and CVE [2]:
>>
>> a) deploy an OVAL agent at the nodes with apt-capabilities
>>
>> b) have a central OVAL server send new signatures to nodes so they can tell
>>   you wether they are vulnerable or not (and need to have a DSA applied or
>>   not)
>
> Does anyone publish Debian-specific OVAL signatures?

Not to my knowledge.

> Do you think there is a need for them?

No, too much beaucracy for too little gain.

Cheers,
        Moritz

Reply to:

Follow-Ups:
- Re: Mass update deployment strategy
  - From: Javier Fernández-Sanguino Peña <jfs@computer.org>

References:
- Re: Mass update deployment strategy
  - From: Florian Weimer <fw@deneb.enyo.de>

Prev by Date: Re: Mass update deployment strategy
Next by Date: xfree86 security preview
Previous by thread: Re: Mass update deployment strategy
Next by thread: Re: Mass update deployment strategy
Index(es):
- Date
- Thread