Re: List of installed software packages: pkg_info?
- From: "Siem Korteweg" <siem@xxxxxxxxx>
- Date: Sat, 23 Jun 2007 20:19:38 +0200
"Joachim Schipper" <jdNoOtSPAMschipper@xxxxxxxxxx> schreef in bericht
news:467d43b0$0$32263$dbd43001@xxxxxxxxxxxxxxxxxx
Siem Korteweg <siem@xxxxxxxxx> wrote:The server part already has been implemented:
"Joachim Schipper" <jdNoOtSPAMschipper@xxxxxxxxxx> schreef in
bericht
news:467c24b3$0$49489$dbd4f001@xxxxxxxxxxxxxxxxxx
Did you have a look at the logbook?DoOn a semi-related note, I'd find your software tremendously more
security upgrades for OpenBSD upgrade separate programs to higher
versions? Is sendmail version 8.14.0 the only possible version
for
all
systems with OpenBSD 4.1?
useful if it could be told not to show configuration files that
have
not been modified from the default; the listing you have now is
extremely verbose and far less informative than it could be.
(Exactly
how to implement this is another question; including checksums is
easy, but time-consuming.)
http://www.openeyet.nl/scc/examples/scc.openbsd41.log.html
Well, evidently not. Sorry!
It shows only the changes that have been recorded during all runs.
It
only shows the lines that actually changed.
Wading through such a snapshot is not my favorite passtime.
Snapshots
are sent to a server where they can be searched and compared.
That sounds like a sensible idea - that will take quite a bit of
work.
http://www.openeyet.nl/scc/download.html
In the snapshot the kern.version data is already at the bottom of theFrom the release notes I know that all OpenBSD 4.1 systems startIf that is the case, registrating the
OpenBSD version would imply the contents of the software
inventory.
I am afraid I do not understand this sentence.
with:
- sendmail 8.14.0
- apache 1.3.29
- xxxx a.b.c
and so on. The names and versions of these products are what I
meant
with the contents of the software inventory. Rephrasing the
sentence:
When it is impossible to increase the version of any of these
products
without upgrading to 4.2, registration of release 4.1 in the
snapshot
would be sufficient to deduce the versions of all of these
products.
Not entirely, ISTR a new OpenSSH version getting imported
into -stable
once.
Also, it depends on what you call 'version'. A sendmail that is not
vulnerable to a remote root hole is meaningfully different from the
same
version of sendmail with an unpatched vulnerability allowing anyone
to
take over the box.
Ideally, you'd capture kern.version (-stable, -current, and finding
out
what version it's running) and a patchlevel, but the latter is
almost
impossible to figure out (write an auto-patching script and update
/etc/patchlevel?)
menu: kernel -> sysctl
kern.version=OpenBSD 4.1 (GENERIC) #1435: Sat Mar 10 19:07:45 MST
2007I guess that recording the versions of the base system is not
feasable.Siem Korteweg
.
- Follow-Ups:
- Re: List of installed software packages: pkg_info?
- From: Marco S Hyman
- Re: List of installed software packages: pkg_info?
- References:
- List of installed software packages: pkg_info?
- From: Siem Korteweg
- Re: List of installed software packages: pkg_info?
- From: Helmut Schneider
- Re: List of installed software packages: pkg_info?
- From: Siem Korteweg
- Re: List of installed software packages: pkg_info?
- From: Joachim Schipper
- Re: List of installed software packages: pkg_info?
- From: Siem Korteweg
- Re: List of installed software packages: pkg_info?
- From: Joachim Schipper
- Re: List of installed software packages: pkg_info?
- From: Siem Korteweg
- Re: List of installed software packages: pkg_info?
- From: Joachim Schipper
- List of installed software packages: pkg_info?
- Prev by Date: Re: List of installed software packages: pkg_info?
- Next by Date: Is Beginner Friendly Overrated?
- Previous by thread: Re: List of installed software packages: pkg_info?
- Next by thread: Re: List of installed software packages: pkg_info?
- Index(es):
Relevant Pages
|
