From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from lists.gentoo.org ([140.105.134.102] helo=robin.gentoo.org) by nuthatch.gentoo.org with esmtp (Exim 4.43) id 1EEHjx-0005kp-4u for garchives@archives.gentoo.org; Sun, 11 Sep 2005 02:38:45 +0000 Received: from robin.gentoo.org (localhost [127.0.0.1]) by robin.gentoo.org (8.13.4/8.13.4) with SMTP id j8B2X5Bx001303; Sun, 11 Sep 2005 02:33:05 GMT Received: from zproxy.gmail.com (zproxy.gmail.com [64.233.162.192]) by robin.gentoo.org (8.13.4/8.13.4) with ESMTP id j8B2X3H1025380 for ; Sun, 11 Sep 2005 02:33:04 GMT Received: by zproxy.gmail.com with SMTP id v1so1585231nzb for ; Sat, 10 Sep 2005 19:37:11 -0700 (PDT) DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:mime-version:in-reply-to:references:content-type:message-id:content-transfer-encoding:from:subject:date:to:x-mailer; b=LYYp6MPq0B5LCYKZtrtlSunDVg7lpF7/xhFzpfokAQybnDe+CSmyGQRCji09UzQMhepnbVwV+C9Kz48Tqy77SCPkLjLgHBulGjDr3hvP0Lu6Nw+YNI+ImKBned2SFB6Ua/cnoaVCm07YG4aDbnZ5g4B8+/pKsqeA/nPV8ViEBXA= Received: by 10.36.90.8 with SMTP id n8mr1764889nzb; Sat, 10 Sep 2005 19:37:11 -0700 (PDT) Received: from ?192.168.0.3? ( [67.40.72.108]) by mx.gmail.com with ESMTP id 20sm11909658nzp.2005.09.10.19.37.11; Sat, 10 Sep 2005 19:37:11 -0700 (PDT) Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-server@gentoo.org Reply-to: gentoo-server@lists.gentoo.org Mime-Version: 1.0 (Apple Message framework v734) In-Reply-To: <1126395465.18094.36.camel@bunyip> References: <43232AC3.9030706@munat.com> <1126381452.17265.4.camel@spider.hotmonkeyporn.com> <43235FC1.7000100@munat.com> <1126395465.18094.36.camel@bunyip> Content-Type: text/plain; charset=US-ASCII; delsp=yes; format=flowed Message-Id: Content-Transfer-Encoding: 7bit From: Sam Halicke Subject: Re: [gentoo-server] glsa-check and unused packages Date: Sat, 10 Sep 2005 19:37:04 -0700 To: gentoo-server@lists.gentoo.org X-Mailer: Apple Mail (2.734) X-Archives-Salt: 1c37aca6-22ec-4372-b7e0-2711347747d6 X-Archives-Hash: 8e14f34b809e95eca30e6551e80b2c3b On Sep 10, 2005, at 4:37 PM, W.Kenworthy wrote: > use "glsa-check -f package" on each offender first. It will safely > remove the bad packages. > > Due to its history of breaking systems, depclean should be left until > absolutely necessary. > > BillK > > On Sat, 2005-09-10 at 15:35 -0700, Ben Munat wrote: > >> Owen Ford wrote: >> >>> On Sat, 2005-09-10 at 11:49 -0700, Ben Munat wrote: >>> >>> >>>> First, glsa-check claims that I'm vulnerable to 200412-02 and >>>> 200505-01. The first is >>>> pdflib and the second is various horde packages. However, I have >>>> the current versions of >>>> these installed -- the versions that the glsa says I need to >>>> solve the vulnerability. So, >>>> why would glsa-check say I'm vulnerable when I'm not? >>>> >>> >>> >>> There are probably versions of those packages slotted. I use >>> emerge -Cp >>> package to see which are installed. >>> >>> >> >> Very good... exactly the problem. Thanks. >> >> As for dealing with all my orphaned packages, I'm figuring on >> going through the output of >> "emerge --depclean" and unmerging everything that comes up with no >> dependencies under >> "equery depends" and is something that I don't think I'll use. >> Does that sound reasonable? >> >> Oh, and I'm assuming that "equery depends" just checks for >> installed packages that depend >> on the given package... anyone know any way to check a package's >> dependency against the >> entire portage tree? >> >> b >> > -- > gentoo-server@gentoo.org mailing list > > Absolutely agreed with BillK. As I said in my first mail, I have had BAD experiences with --depclean. His solution is best. However, glsa- check --fix is not the most trustworthy of solutions. On a production system always check the ChangeLog and use your own best judgment. -- gentoo-server@gentoo.org mailing list