debsecan in Ubuntu
Martin Pitt
martin.pitt at ubuntu.com
Wed Jan 18 16:01:39 GMT 2006
Hi!
Jamie Jones [2006-01-19 1:36 +1100]:
> Martin, assuming we can generate a data feed, what do you think ? Would
> you use it ?
I already have a per-release data feed at [1] (source code is linked
at the bottom of the page), so this might be suitable as input for
that package. For my current security work I use this system
exclusively, I don't think that the package would help me for doing
security review. OTOH it's not meant for distro security team dudes,
but for server admins. :)
Wrt. tracking, the long term goal is to move CVE tracking to
Launchpad, which would allow tracking Debian vulns, too. My own system
is a bit Ubuntu-centric right now (mainly because it tracks release
names and not versions), but since we'll switch to Launchpad
eventually anyway, I don't want to invest major efforts into it any
more.
Thanks,
Martin
[1] http://people.ubuntu.com/~pitti/ubuntu-cve
--
Martin Pitt http://www.piware.de
Ubuntu Developer http://www.ubuntu.com
Debian Developer http://www.debian.org
In a world without walls and fences, who needs Windows and Gates?
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
Url : http://lists.ubuntu.com/archives/ubuntu-devel/attachments/20060118/895c27e4/attachment.pgp
More information about the ubuntu-devel
mailing list