pkg/27026: pkg audit in daily security check

To: gnats-bugs%gnats.NetBSD.org@localhost
Subject: pkg/27026: pkg audit in daily security check
From: Markus Illenseer <markus%beaver.core.de@localhost>
Date: Fri, 24 Sep 2004 18:32:20 +0200 (CEST)

>Number:         27026
>Category:       pkg
>Synopsis:       Feauture request
>Confidential:   no
>Severity:       serious
>Priority:       low
>Responsible:    pkg-manager
>State:          open
>Class:          change-request
>Submitter-Id:   net
>Arrival-Date:   Fri Sep 24 16:33:00 UTC 2004
>Closed-Date:
>Last-Modified:
>Originator:     Markus Illenseer
>Release:        NetBSD 2.0_BETA
>Organization:
        
>Environment:
System: NetBSD beaver.core.de 2.0_BETA NetBSD 2.0_BETA (BEAVER) #1: Sat Sep 11 
15:26:25 CEST 2004 
tron%beaver.core.de@localhost:/usr/src/sys/arch/i386/compile/BEAVER i386
Architecture: i386
Machine: i386
>Description:
The daily /etc/security script should optionally download the vulnarability 
list and then audit the packages and report this in the security summary mail. 
Of course only as option configured in /etc/rc.conf and only when packages are 
actually installed.
>How-To-Repeat:
>Fix:

Example script:

#!/usr/pkg/bin/bash
filename="/tmp/audit.$$"
download-vulnerability-list >/dev/null 2>&1
audit-packages >${filename} 2>&1

if test -s ${filename} ; then
  mail -s "Audit Warning"  root < ${filename}
fi

rm -rf ${filename} >/dev/null 2>&1
 
>Release-Note:
>Audit-Trail:
>Unformatted:
 >SeveriTy:     non-critical

Prev by Date: pkg/27025: www/epiphany does not build
Next by Date: pkg/27033: firefox-1.0 does not build on macppc
Previous by Thread: pkg/27025: www/epiphany does not build
Next by Thread: pkg/27033: firefox-1.0 does not build on macppc
Indexes:

Home | Main Index | Thread Index | Old Index