1 |
On Friday 03 June 2011 11:37:28 Christian Kauhaus wrote: |
2 |
> Am 02.06.2011 21:31, schrieb Sven Vermeulen: |
3 |
> > I wrote (and still maintain) a package called cvechecker |
4 |
> > (http://cvechecker.sourceforge.net) whose purpose is to scan the system |
5 |
> > for installed software (or you use a simple file that tells the |
6 |
> > application what is installed so systemwide scans aren't needed then |
7 |
> > anymore) and pull in information from NVD about CVE entries. It then |
8 |
> > matches the CVE entries with the detected software/versions on your |
9 |
> > system and report which ones might be affected by a known |
10 |
> > vulnerability. |
11 |
> |
12 |
> This looks really interesting. As an admin in a larger installation, I must |
13 |
> evaluate the impact of possible security problems on our infrastructure by |
14 |
> myself anyway. This tool could give a good basis in form of early warnings. |
15 |
> |
16 |
> Has anyone already written an ebuild? |
17 |
|
18 |
Yes, the location for this is listed on the website: |
19 |
http://cvechecker.sourceforge.net/install.html#gentoo |
20 |
|
21 |
-- |
22 |
Joost |