---------- Forwarded message ----------
From:
Brad Alexander <storm16@gmail.com>
Date: Mon, Mar 28, 2011 at 1:09 PM
Subject: Re: Managing updates for a large number of hosts running unstable/sid
To: Andrei Popescu <
andreimpopescu@gmail.com>
I'm not looking to do partial updates. I just need to be alerted when a package on one of the machines has a DSA filed against lt.
I'm doing snapshots against sid when needed, and if a package we need has a dsa filed against it, we can make a decision when to re-snapshot and upgrade. Its more a way to keep up with the vulnerabilities.
On Mon, Mar 28, 2011 at 8:55 AM, Andrei Popescu
<andreimpopescu@gmail.com> wrote:
On Vi, 25 mar 11, 12:26:42, Brad Alexander wrote:
...
> have run into problems with both of these solutions. Nessus only performs
> local security checks against stable, and all of the hosts in question are
> running a snapshot of unstable.
...
> What are others using for this type of checks on a large number of servers?
I'm not sure what you are trying to do is even doable on a machine
running unstable.
As I understand you only want to do partial updates (for security
updates or something). I'd say you will very soon run into
Dependency Hell (tm), because the new packages will depend on newer
libraries or newer libraries will enforce upgrade of all reverse
dependencies and so on.
This is what stable is for ;)
Regards,
Andrei
--
Offtopic discussions among Debian users and developers:
http://lists.alioth.debian.org/mailman/listinfo/d-community-offtopic