* Using oeaudit.py to check for known security issues
@ 2010-03-23 9:33 Holger Hans Peter Freyther
2010-03-23 10:02 ` Petr Štetiar
0 siblings, 1 reply; 3+ messages in thread
From: Holger Hans Peter Freyther @ 2010-03-23 9:33 UTC (permalink / raw)
To: openembedded-devel
Hi,
here is a rather simple howto:
$ bitbake -s > available
$ export PYTHONPATH=/bitbake/lib
$ /OE/contrib/oeaudit/oeaudit.py -f
This will call wget, tar to get the audifile and place it in the local dir
$ /OE/contrib/oeaudit/oeaudit.py -a auditfile -p available
Now you get a nice list of issues...
TODO items:
- Sometimes the latest upstream version has the bug and we need to
apply a patch. Right now this will still be displayed as
vulnerable.. I will add another file where one can claim to have fixed
certain issues..
- Rewrite in GNU smalltalk
^ permalink raw reply [flat|nested] 3+ messages in thread
* Re: Using oeaudit.py to check for known security issues
2010-03-23 9:33 Using oeaudit.py to check for known security issues Holger Hans Peter Freyther
@ 2010-03-23 10:02 ` Petr Štetiar
2010-03-23 11:45 ` Holger Hans Peter Freyther
0 siblings, 1 reply; 3+ messages in thread
From: Petr Štetiar @ 2010-03-23 10:02 UTC (permalink / raw)
To: openembedded-devel
Holger Hans Peter Freyther <holger+oe@freyther.de> [2010-03-23 10:33:40]:
> Hi,
Hi,
> here is a rather simple howto:
>
> $ bitbake -s > available
> $ export PYTHONPATH=/bitbake/lib
> $ /OE/contrib/oeaudit/oeaudit.py -f
> This will call wget, tar to get the audifile and place it in the local dir
> $ /OE/contrib/oeaudit/oeaudit.py -a auditfile -p available
> Now you get a nice list of issues...
Neat! I just wonder how to check linux kernel(s) and embedded stuff not used
in FBSD. The kernel is quite mission impossible because of the patch hell...
-- ynezz
^ permalink raw reply [flat|nested] 3+ messages in thread
* Re: Using oeaudit.py to check for known security issues
2010-03-23 10:02 ` Petr Štetiar
@ 2010-03-23 11:45 ` Holger Hans Peter Freyther
0 siblings, 0 replies; 3+ messages in thread
From: Holger Hans Peter Freyther @ 2010-03-23 11:45 UTC (permalink / raw)
To: openembedded-devel
On Tuesday 23 March 2010 11:02:14 Petr Štetiar wrote:
> Holger Hans Peter Freyther <holger+oe@freyther.de> [2010-03-23 10:33:40]:
>
> Neat! I just wonder how to check linux kernel(s) and embedded stuff not
> used in FBSD. The kernel is quite mission impossible because of the patch
> hell...
Yeah glibc, udev, linux is not covered by it at all. The idea is to extend the
script to use Gentoo GLSA database, maybe debian...
z.
^ permalink raw reply [flat|nested] 3+ messages in thread
end of thread, other threads:[~2010-03-23 11:48 UTC | newest]
Thread overview: 3+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2010-03-23 9:33 Using oeaudit.py to check for known security issues Holger Hans Peter Freyther
2010-03-23 10:02 ` Petr Štetiar
2010-03-23 11:45 ` Holger Hans Peter Freyther
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.