[Nix-dev] Security channel proposal

Christian Theune ct at gocept.com
Fri Sep 26 19:01:35 CEST 2014


On 26. Sep2014, at 18:55, Domen Kožar <domen at dev.si> wrote:

> 
> 
> On Fri, Sep 26, 2014 at 6:53 PM, Christian Theune <ct at gocept.com> wrote:
> 
> On 25. Sep2014, at 20:00, Domen Kožar <domen at dev.si> wrote:
> 
> > Note that from business perspective server admin usually wants to do following two things:
> >
> > 1) to be notified if any of software packages has a security vuln
> > 2) to take automated/manual actions to upgrade ONLY those packages and not bump and versions
> >
> > Having faster hydra doesn't solve 2)
> 
> I might be missing something from a newbie perspective: how would it solve 1)?
> 
> It doesn't, but that issue has nothing to do with hydra. More with mapping CVEs to packages in nix store and sending notifications. 

Thought so, but wanted to make sure I’m not missing something obvious. Thanks :)


-- 
Christian Theune · gocept gmbh & co. kg
flyingcircus.io · operations as a service
Forsterstraße 29 · 06112 Halle (Saale) · Tel +49 345 1229889-7

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 496 bytes
Desc: Message signed with OpenPGP using GPGMail
Url : http://lists.science.uu.nl/pipermail/nix-dev/attachments/20140926/bfcd69e2/attachment-0001.bin 


More information about the nix-dev mailing list