From owner-freebsd-hackers@FreeBSD.ORG Sun May 11 08:10:24 2003 Return-Path: Delivered-To: freebsd-hackers@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 48A4237B401 for ; Sun, 11 May 2003 08:10:24 -0700 (PDT) Received: from segfault.kiev.ua (segfault.kiev.ua [193.193.193.4]) by mx1.FreeBSD.org (Postfix) with ESMTP id 6244743FDD for ; Sun, 11 May 2003 08:10:22 -0700 (PDT) (envelope-from netch@iv.nn.kiev.ua) Received: (from uucp@localhost) by segfault.kiev.ua (8) with UUCP id h5BFA3fZ023715; Sun, 11 May 2003 18:10:03 +0300 (EEST) (envelope-from netch@iv.nn.kiev.ua) Received: (from netch@localhost) by iv.nn.kiev.ua (8.12.8p1/8.12.8) id h4BF8D7N002156; Sun, 11 May 2003 18:08:13 +0300 (EEST) (envelope-from netch) Date: Sun, 11 May 2003 18:08:13 +0300 From: Valentin Nechayev To: Giorgos Keramidas Message-ID: <20030511150813.GB405@iv.nn.kiev.ua> References: <20030503204938.GA3907@gothmog.gr> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20030503204938.GA3907@gothmog.gr> X-42: On Organization: Dark side of coredump cc: freebsd-hackers@freebsd.org Subject: Re: Periodic email about security notifications X-BeenThere: freebsd-hackers@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Technical Discussions relating to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 11 May 2003 15:10:24 -0000 Sat, May 03, 2003 at 23:49:38, keramida (Giorgos Keramidas) wrote about "Periodic email about security notifications": GK> A friend asked me a while ago on IRC if it was possible to receive GK> periodic email notifications with new security advisories. GK> The following script for /etc/periodic/security implements exactly this GK> idea. It depends on lynx(1) to run, which isn't part of the base GK> system, so I'm not sure if it's ok to add it to the base system at all. GK> Here it is for anyone who might find it useful though: It has the huge administrative disadvantage: it triggers notification for "something being happened in security area" before advisory is sent via official channels. It is good for crackers (which, of course, use this possibility for many years and automated it for a long time), but bad for usual admins. OTOH, it notifies later than :0H * ^Sender: owner-cvs-all@freebsd.org * ^X-FreeBSD-CVS-Branch: RELENG_[0-9]_ ! mail_to_pager --prefix='fixing releng, check for security issues!' and hence is much less useful than cvs-all. -netch-