Re: tailored security annoucements for Debian Stable

To: debian-security@lists.debian.org
Subject: Re: tailored security annoucements for Debian Stable
From: Paul Wise <pabs@debian.org>
Date: Thu, 3 Mar 2016 07:41:31 +0800
Message-id: <[🔎] CAKTje6ESSu1-9J9FekcC54QfoAbs1rFsKo5b3iC6XUkqWqqoRw@mail.gmail.com>
In-reply-to: <[🔎] 56D7170F.3090004@jerome.cc>
References: <[🔎] 56D703F0.3000003@jerome.cc> <[🔎] CA++ReY9xRMJK4Y9Py=bkz8twKFf9bQaFXWei76fYxATUM1zG=Q@mail.gmail.com> <[🔎] 56D7170F.3090004@jerome.cc>

On Thu, Mar 3, 2016 at 12:38 AM, Jérôme Pinguet wrote:

> I already knew about unattended upgrades but they sound a bit too risky
> for production.
> apticron is not security oriented and, as far as i know, it needs lots
> of tweaking to limit itself to security updates.

apticron supports sending email without doing the upgrades.

> debsecan offers a daily email warning by default but I couldn't
> understand if it is sent at a fixed time or as soon as new security
> fixes get available...

Fixed time.

> I ended up adding an @hourly cron job with this command:
> debsecan --suite wheezy --only-fixed --format report --mailto
> my@email.com --update-history
>
> I wonder if I will be warned only once when new security fixes appear or
> on an hourly basis until I upgrade the server...

Hourly basis.

-- 
bye,
pabs

https://wiki.debian.org/PaulWise

Reply to:

References:
- tailored security annoucements for Debian Stable
  - From: Jérôme Pinguet <jerome@jerome.cc>
- Re: tailored security annoucements for Debian Stable
  - From: Andrew Deck <andrew.hastings.deck@gmail.com>
- Re: tailored security annoucements for Debian Stable
  - From: Jérôme Pinguet <jerome@jerome.cc>

Prev by Date: Re: Changing the "Reply-To:" for debian-security-announce
Next by Date: Re: Changing the "Reply-To:" for debian-security-announce
Previous by thread: Re: tailored security annoucements for Debian Stable
Next by thread: Re: [listes] tailored security annoucements for Debian Stable
Index(es):
- Date
- Thread