On Fri, Jun 15, 2007 at 10:07:54AM +0100, Liam O'Toole wrote: > On Fri, 15 Jun 2007 09:27:54 +0200 > "Philippe Lang" <[EMAIL PROTECTED]> wrote: > > > > 2) Under freebsd, ports can be checked against vulnerabilities with a > > simple command: > > > > -- > > Portaudit -Fda > > > > If there is anything wrong, you get: > > > > server# portaudit -Fda > > auditfile.tbz 100% of 42 kB 62 > > kBps New database installed. > > Database created: Fri Jun 15 09:10:07 CEST 2007 > > Affected package: awstats-6.6 > > Type of problem: awstats -- arbitrary command execution vulnerability. > > Reference: > > <http://www.FreeBSD.org/ports/portaudit/2df297a2-dc74-11da-a22b-000c6ec7 > > 75d9.html> > > > > 1 problem(s) in your installed packages found. > > > > You are advised to update or deinstall the affected package(s) > > immediately. > > -- > > > > Is there that on debian too? > > The approach in Debian is to synchronise the list of available packages > (and their versions, including security fixes) against a central > software repository. The administrator can then choose to upgrade > installed packages to their latest versions. It is possible to automate > some or all of this, and to arrange for notification in various ways. > See http://www.debian.org/doc/manuals/apt-howto/ for more information.
Debian has 3 streams of development: stable, testing and unstable. Stable and testing have repos for 'security updates' that you can check and install new package updates, this is just for security issues. If you are concerned with security above all else, then it is not advised to use testing and unstable. If you need newer software for stable, then you can use backports.org, although it is not as tested as official debian packages. Also, there are security lists at lists.debian.org and there is security info on the debian wiki (wiki.debian.org). Debian also has support for SELinux which is a security layer, although the policies are functional but not complete. -- | .''`. == Debian GNU/Linux == | my web site: | | : :' : The Universal |mysite.verizon.net/kevin.mark/| | `. `' Operating System | go to counter.li.org and | | `- http://www.debian.org/ | be counted! #238656 | | my keyserver: subkeys.pgp.net | my NPO: cfsg.org | |join the new debian-community.org to help Debian! | |_______ Unless I ask to be CCd, assume I am subscribed _______|
pgpi0TBMHoXUh.pgp
Description: PGP signature
