On Mon, Apr 21, 2003 at 07:16:01PM +0200, Javier Fern?ndez-Sanguino Pe?a wrote:
> That's what Tiger calls 'signatures'. It's pretty easy to do at the moment, > but I have not updated signatures for Debian for quite some time. If you > intend to keep a database you also have to consider that for every patch > (i.e. security update in a DSA) you need to regenerate it.. I was thinking of several forms of this, to do it properly on a WORM and a nightly cronjob that could highlight differences and changes throught the preceding day. > Well, we discussed about this but no-one stepped over to implement it. I > believe the cron package maintainer would be very grateful if someone > implemented a 'checksecurity' package which fixed all its current bugs > (#102186, #171980, #177120, #31902, #46779, #54376, #59809, #138484, > #154390, #163813, #176090) taking over its maintenance. I agreed to take over this checksecurity package, when the maintain finds the time to split it out from cron. There was some discussion about it recently upon debian-devel. I'll mail Steve Greenland about it tonight to see how it's going, or if I can help. Steve ---
