On Wed, Jan 10, 2007 at 07:23:36PM +0100, Moritz Muehlenhoff wrote:
> > Do you think there is a need for them?
>
> No, too much beaucracy for too little gain.
What bureaucracy? Unlike CVE names, each vendor can generate their own OVAL
signatures. For example:
http://people.redhat.com/mjc/oval/
fo
On Tue, Jan 09, 2007 at 08:08:36PM +0100, Florian Weimer wrote:
> Does anyone publish Debian-specific OVAL signatures? Do you think
> there is a need for them?
Not that I know of, but I have a converter to OVAL signatures that can
generate the XML files from the website contents. But somebody has
On 2007-01-09, Florian Weimer <[EMAIL PROTECTED]> wrote:
> * Javier Fernández-Sanguino Peña:
>
>> If your installation where slightly bigger (maybe 100 systems) I would
>> suggest you invest your time working with OVAL [1] and CVE [2]:
>>
>> a) deploy an OVAL agent at the nodes with apt-capabilitie
* Javier Fernández-Sanguino Peña:
> If your installation where slightly bigger (maybe 100 systems) I would
> suggest you invest your time working with OVAL [1] and CVE [2]:
>
> a) deploy an OVAL agent at the nodes with apt-capabilities
>
> b) have a central OVAL server send new signatures to nodes
Dear George,
A setup that works well, is to work with your own Debian and/or Ubuntu
repository, to which you only commit (apt-move) packages when you
tested and approved beforehand.
On your test setup you will see exactly what the impact will be from
update X on configuration Y and you will have
On Tue, Nov 28, 2006 at 05:32:35PM -0500, Joe Bouchard wrote:
> I would say that if you let your machines blindly to an "apt-get update;
> apt-get upgrade" every day, most of the time it won't be a problem, but
> someday it may be a problem and you might render half your cluster
> unbootable. Ther
On Mon, Nov 27, 2006 at 08:37:42PM +0100, mario wrote:
> Do you have a strategy or anything to automate this task a little more?
> The server farm is growing and i might have to look after 20 or 30
> installations soon. I can already see myself updating ubuntu/debian
> installations all day long :(
I would say that if you let your machines blindly to an "apt-get update;
apt-get upgrade" every day, most of the time it won't be a problem, but
someday it may be a problem and you might render half your cluster
unbootable. There are various modifications to this "blind update" theme
as others hav
On Mon, Nov 27, 2006 at 03:37:22PM -0500, George Georgalis wrote:
>
> for n in host1 host2 hostz; do
> ssh [EMAIL PROTECTED] "$ENV && $UPD ; $UPG && $UPC"
> done
Check out "dsh" and its option "-c" instead of this step :-)
Marcin
--
Marcin Owsiany <[EMAIL PROTECTED]> http://marcin.
On Tue, 2006-11-28 at 00:38 +0200, Mikko Rapeli wrote:
> On Mon, Nov 27, 2006 at 03:52:40PM -0500, Morgan Walker wrote:
> > There is also a package called cron-apt which will automatically update
> > your debian machines and send you an email regarding what it updated.
>
> And upgraded, if you rea
On Mon, Nov 27, 2006 at 03:52:40PM -0500, Morgan Walker wrote:
> There is also a package called cron-apt which will automatically update
> your debian machines and send you an email regarding what it updated.
And upgraded, if you really trust your package sources:
$ cat /etc/cron-apt/action.d/9-d
On Mon, Nov 27, 2006 at 08:37:42PM +0100, mario wrote:
> i am responsible for 10 (ubuntu and debian) installations so far.
> I have installed apticron which informs me about updates frequently.
> Actually, its that often that i sometimes need to invest 1h a day just
> doing updates.
Given the
@lists.debian.org
Subject: Re: Mass update deployment strategy
On Mon, Nov 27, 2006 at 08:37:42PM +0100, mario wrote:
>Hello List,
>
>i am responsible for 10 (ubuntu and debian) installations so far.
>I have installed apticron which informs me about updates frequently.
>Actually, its th
On Mon, Nov 27, 2006 at 08:37:42PM +0100, mario wrote:
>Hello List,
>
>i am responsible for 10 (ubuntu and debian) installations so far.
>I have installed apticron which informs me about updates frequently.
>Actually, its that often that i sometimes need to invest 1h a day just
>doing updates.
>
>
-- Forwarded message --
From: Manuel García <[EMAIL PROTECTED]>
Date: Nov 27, 2006 3:46 PM
Subject: Re: Mass update deployment strategy
To: mario <[EMAIL PROTECTED]>
Well, if every machine have the same hardware you may use systemimager
to do the upgrade, read about
Hello List,
i am responsible for 10 (ubuntu and debian) installations so far.
I have installed apticron which informs me about updates frequently.
Actually, its that often that i sometimes need to invest 1h a day just
doing updates.
Do you have a strategy or anything to automate this task a litt
16 matches
Mail list logo
