Choffee/ Ideas/ PatchManagement
Social Media

@choffee on twitter
ThoughtSplurge
Blog posts and the like
More thoughts
Some more thoughts in a blog type thing
Ideas
Some Things that I am thinking about
JohnCooper
Tis a page all about me.
Playlists
Some music playlists.
Quotes
Some random quotes that I have collected.
code
Some code that I have created.
SheffieldPeople
A list of tradesmen in Sheffield that I have found useful.
HowTo
will try to document it here.
tools
Some useful tools I use.
WishList
would not be offended if you got me anything on this list!)
Posterous
My old posterous blog post archiveChoffee and Work

Idea for patch management:

Looking into patch management for a group of Unix Servers I am trying to gather my thoughts here.

My current thinking is to gather all the patch requirements into a central database. So things like Security patches can be placed as a critial against a server.

  • Fetchmail script down loads the mail from a mailbox.
  • procmail sorts that mail and takes the relevent info
  • Script loads the relevent info in Trac as a critical bug.
  • User looks a bug and decides what real priority to give it.
  • If it's of no use then ditch it.
  • If it's real important then mark it as so and run a script to make sub bugs for affected systems ( Pkg list from all systems should be checked to find which systems are affected and a sub bug raised for each)

Steps to do it for the Linux Boxes.

  • All systems to do a dpkg --get-packagelist and upload to central repo (email/syslog/scp?)
  • Security email to be forwarded bugdb. - write script to forward.
  • Bugdb to be looked at - any critical bugs still open - check against package lists and create/close bugs that are affected by the systems.
blog comments powered by Disqus