Hi,
Like how RHEL provides the OVAL content for checking against security patches, does CentOS provides something?
https://www.redhat.com/security/data/oval/
Basically, how do I assess a CentOS system for missing patches and generate a report around it?
Thanks and regards,
Pravin Goyal
CentOS 7 CVE Repository
Re: CentOS 7 CVE Repository
As far as I know, the CentOS Project has never published OVAL data for CentOS.
yum check-update should show which packages are available for updating. Perhaps you could write some wrapper around that, if you don't want to apply the updates automatically.
The yum-cron package can also be used to mail reports of pending updates.
yum check-update should show which packages are available for updating. Perhaps you could write some wrapper around that, if you don't want to apply the updates automatically.
The yum-cron package can also be used to mail reports of pending updates.
Re: CentOS 7 CVE Repository
As far as I know, the situation is unchanged since my last reply to this topic.
Re: CentOS 7 CVE Repository
As far as I know there are no plans for it to change either.
The future appears to be RHEL or Debian. I think I'm going Debian.
Info for USB installs on http://wiki.centos.org/HowTos/InstallFromUSBkey
CentOS 5 and 6 are deadest, do not use them.
Use the FAQ Luke
Info for USB installs on http://wiki.centos.org/HowTos/InstallFromUSBkey
CentOS 5 and 6 are deadest, do not use them.
Use the FAQ Luke