This is great. Has anybody already written chef automation to handle automatic updating to fix vulns?
> On 21 Oct 2014, at 07:26, Jonathan Perkin via smartos-discuss > <[email protected]> wrote: > > * On 2014-10-20 at 16:53 PDT, Joe Malcolm via smartos-discuss wrote: > >> Is there a way using pkgin to check packages against the pkgsrc >> vulnerabilities list? >> >> ftp://ftp.netbsd.org/pub/pkgsrc/distfiles/vulnerabilities > > No, it's pkg_admin(1)'s job to do that. The normal usage is: > > # Download latest vulnerabilities file > $ pkg_admin fetch-pkg-vulnerabilities > > # Show current vulnerabilities in installed packages > $ pkg_admin audit > >> This file does not seem to be in the githib joyent pkgsrc repository, >> which may or may not be relevant. > > It is distributed outside of pkgsrc deliberately, so that it can > easily be updated and downloaded independently across branches. > > -- > Jonathan Perkin - Joyent, Inc. - www.joyent.com > > > ------------------------------------------- > smartos-discuss > Archives: https://www.listbox.com/member/archive/184463/=now > RSS Feed: https://www.listbox.com/member/archive/rss/184463/26679658-d7bb2457 > Modify Your Subscription: https://www.listbox.com/member/?&; > Powered by Listbox: http://www.listbox.com ------------------------------------------- smartos-discuss Archives: https://www.listbox.com/member/archive/184463/=now RSS Feed: https://www.listbox.com/member/archive/rss/184463/25769125-55cfbc00 Modify Your Subscription: https://www.listbox.com/member/?member_id=25769125&id_secret=25769125-7688e9fb Powered by Listbox: http://www.listbox.com
