Package: debsecan Version: 0.4.20.1 Followup-For: Bug #1038952 X-Debbugs-Cc: cqu...@arcor.de
Hi, in addition to adding support for newer suites I think it would make sense to default to the suite from which this package has been installed, if that's possible. The problem I see with the current behaviour is that you get an email with an awful long list of CVEs which are not relevant to the current installation. That can easily lead to users ignoring the list completely or removing this package. I was actually going to do that when I realized that it is possible to have some reasonable settings. If you manage a handful of machines it would be beneficial if the default installation has a useful configuration. -- System Information: Debian Release: 12.5 APT prefers stable-updates APT policy: (500, 'stable-updates'), (500, 'stable-security'), (500, 'stable'), (100, 'bookworm-fasttrack'), (100, 'bookworm-backports-staging') Architecture: amd64 (x86_64) Kernel: Linux 6.1.0-18-amd64 (SMP w/4 CPU threads; PREEMPT) Kernel taint flags: TAINT_FIRMWARE_WORKAROUND, TAINT_OOT_MODULE, TAINT_UNSIGNED_MODULE Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE=en_US:en Shell: /bin/sh linked to /usr/bin/dash Init: systemd (via /run/systemd/system) LSM: AppArmor: enabled Versions of packages debsecan depends on: ii ca-certificates 20230311 ii debconf [debconf-2.0] 1.5.82 ii python3 3.11.2-1+b1 ii python3-apt 2.6.0 Versions of packages debsecan recommends: ii cron [cron-daemon] 3.0pl1-162 ii exim4-daemon-light [mail-transport-agent] 4.96-15+deb12u4 debsecan suggests no packages. -- debconf information: debsecan/report: true debsecan/source: debsecan/suite: GENERIC debsecan/mailto: root