package auditing in fedora
Todd Zullinger
tmz at pobox.com
Fri Aug 3 06:44:48 UTC 2007
Jaigh Jaddo wrote:
> Is there a tool similar to freeBSD's portaudit? Something that will
> report packages that have known vulnerabilities.
Someone may well have a better answer, but... you can look at:
http://cvs.fedora.redhat.com/viewcvs/fedora-security/audit/?root=fedora
$ cvs -d:pserver:anonymous at cvs.fedora.redhat.com:/cvs/fedora co \
fedora-security/audit
will pull it locally where you could parse it for things you're
interested in.
You might get a better answer on the fedora-security list:
https://www.redhat.com/mailman/listinfo/fedora-security-list
--
Todd OpenPGP -> KeyID: 0xBEAF0CE3 | URL: www.pobox.com/~tmz/pgp
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Ambition is a poor excuse for not having enough sense to be lazy.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 542 bytes
Desc: not available
Url : http://lists.fedoraproject.org/pipermail/users/attachments/20070803/7f6c9856/attachment-0002.bin
More information about the users
mailing list