From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <gentoo-dev-return-1778-arch-gentoo-dev=gentoo.org@gentoo.org>
Received: (qmail 17016 invoked by uid 1002); 11 Mar 2003 17:43:00 -0000
Mailing-List: contact gentoo-dev-help@gentoo.org; run by ezmlm
Precedence: bulk
List-Post: <mailto:gentoo-dev@gentoo.org>
List-Help: <mailto:gentoo-dev-help@gentoo.org>
List-Unsubscribe: <mailto:gentoo-dev-unsubscribe@gentoo.org>
List-Subscribe: <mailto:gentoo-dev-subscribe@gentoo.org>
List-Id: Gentoo Linux mail <gentoo-dev.gentoo.org>
X-BeenThere: gentoo-dev@gentoo.org
Received: (qmail 20553 invoked from network); 11 Mar 2003 17:43:00 -0000
From: Karl Peters <karl.h.peters@gmx.net>
To: <gentoo-dev@gentoo.org>
Date: Tue, 11 Mar 2003 18:42:54 +0100
User-Agent: KMail/1.5
MIME-Version: 1.0
Content-Type: text/plain;
  charset="us-ascii"
Content-Transfer-Encoding: 7bit
Content-Disposition: inline
Message-Id: <200303111842.54584.karl.h.peters@gmx.net>
Subject: [gentoo-dev] Does a automatic security package tool exists?
X-Archives-Salt: 32492d2a-f906-4543-bc7d-313d0ba9fda8
X-Archives-Hash: 58ea201a32948a79816f14bf80934039

Hi,

the GLSAs to the announce mailinglist are really ok, but if you have more 
gentoo systems, manually updating security related packages is not so much 
fun, and quickly you may forget something.

I imagine a GLSA database like the package.mask file, where information about 
package versions is kept, which packages are insecure and prehaps which 
version are suggested for updating.

Then I could think of a comman tool like qpkg, e.g. secure_check:
# emerge sync
# secure_check //print out secure packages version, if insecure are found
# secure_check | xargs emerge -p //would feed emerge with this information, to 
do a security update of all needed packages with one command


So far so good, does something like this already exists? Is someone already 
working on it?

Regards
Karl Peters

--
gentoo-dev@gentoo.org mailing list