Is there any way to know if userland is patched?
Bruce M Simpson
bms at spc.org
Thu Nov 11 04:52:14 PST 2004
On Wed, Nov 10, 2004 at 03:15:06PM -0500, Peter C. Lai wrote:
> On Wed, Nov 10, 2004 at 01:52:59PM -0600, Jacques A. Vidrine wrote:
> > In the end, what we want is for a user to type `uname -r' and to see
> > what patch level is running. Anything more complicated (checking RCS
> > Ids and such) just gets in the way, I think.
>
> That is how many other major unix suppliers do it (sun/solaris, and sgi/irix).
Actually no; Solaris can have many different system patches installed.
See the showrev manpage, in particular the -p option. Or docs:
http://docs.sun.com/db/doc/817-1985/6mhm8o5va?a=view
In particular, the ability to manage base system patches under Solaris
much like packages is very useful.
BMS
More information about the freebsd-security
mailing list