Hi, Is there anything in a suse security rpm that identifies itself as a "security fix"? I was reviewing in YAST the installed software. I searched and looked at samba, susehelp, cups, and mysql... all of which had security announcements. Just by looking at YAST's presentation of the rpm data, I was trying to determine if I could tell if the fix was a "security fix". I couldn't, and I just wanted to verify that this is correct with the experts on this list. Thank you. -- __________________________ DJ mailto: linux_programmer@hotmail.com
Is there anything in a suse security rpm that identifies itself as a "security fix"? If you use YOU or fou4s, the description of the update is in the patch description.
Markus -- __________________ /"\ Markus Gaugusch \ / ASCII Ribbon Campaign markus@gaugusch.at X Against HTML Mail / \
Sorry for this posting, I realised that my last postings didn't passed through... Just wanted to check what is going wrong. -- "The Man, he is not; he becomes." - NEHER. .-. e-SecureNet /v\ We Run SuSE Project Manager // \\ *The LINUX Experts* c/o Miguel Albuquerque /( )\ Av. Miremont 46 ^^-^^ 1202 - GE, SWITZERLAND NATEL 079 543 1935 http://counter.li.org Linux user #301007 mailto:mfoacs@e-workshop.ch http://mfoacs.e-workshop.ch ________________________________________________________________
Grüezi Miguel Albuquerque,
Sorry for this posting, I realised that my last postings didn't passed through...
you see this one comes through. Possible your posting runs on a timeoutsign on a host or the sendqueue of the mailserver was full. Regards, Ruprecht ---------------------------------- Ruprecht Helms IT-Service und Softwareentwicklung Tel/Fax.: +49[0]7621 16 99 16 Homepage: http://www.rheyn.de email: info@rheyn.de ----------------------------------
Dear DJ, This information is in the patches directory on the FTP site. But these files are complicated to parse, frequently contain errors and the format keeps changing. It would be really really helpful if SuSE created a directory called (say) 'security' containing links to all the security related RPMs in a given release. Then in order to keep your system up-to-date with security patches all you would need to do is mirror that directory and execute rpm -Fhv *.rpm whenever you hear of a security update. I have a script which attempts to reverse-engineer this directory from the patch information files, but it needs a lot of manual assistance to resolve errors in the patch files. YOU and fou4s also suffer because they are dependent on parsing these patch files. You really don't want unnecessary complexity in the infrastructure for security updates, you want something simple that works. Bob On Thu, 23 Jan 2003, DJ wrote:
Hi,
Is there anything in a suse security rpm that identifies itself as a "security fix"?
I was reviewing in YAST the installed software. I searched and looked at samba, susehelp, cups, and mysql... all of which had security announcements. Just by looking at YAST's presentation of the rpm data, I was trying to determine if I could tell if the fix was a "security fix". I couldn't, and I just wanted to verify that this is correct with the experts on this list.
Thank you.
-- __________________________ DJ mailto: linux_programmer@hotmail.com
-- Check the headers for your unsubscription address For additional commands, e-mail: suse-security-help@suse.com Security-related bug reports go to security@suse.de, not here
============================================================== Bob Vickers R.Vickers@cs.rhul.ac.uk Dept of Computer Science, Royal Holloway, University of London WWW: http://www.cs.rhul.ac.uk/home/bobv Phone: +44 1784 443691
participants (6)
-
Bob Vickers -
DJ -
Markus Gaugusch -
Miguel Albuquerque -
Peter Wiersig -
Ruprecht Helms