Re: Linux offline patching

[Zate Berg <zate75 () gmail com>]

And on top of that, you said you are scanning with Nessus, how does the
nessus box get it's updates?  Just curious.

Zate


On Tue, Nov 23, 2010 at 3:51 PM, Kenneth Voort <listbounce-01 () voort ca>wrote:

> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> Okay I'm going to ask the obvious...
>
> Why is it not possible to allow this server access to the Redhat
> repositories while it checks and
> downloads patches, and then seal it off again?
>
> Surely it can't entail /that/ much risk?
>
> Otherwise, I've used Michael's idea before, but in my case it was for
> missing and unknown network
> drivers.
>
> > On Tue, Nov 23, 2010 at 2:45 AM, k41zen Me <k41zen () me com> wrote:
> > > I've run a Nessus patch audit on a Red Hat Enterprise 5.2 server and it
> tells me there 161 missing patches. This server does not have internet
> connectivity.
> > > My question is how do I apply all of these patches offline?
> > > _______________________________________________
> > > Pauldotcom mailing list
> > > Pauldotcom () mail pauldotcom com
> > > http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
> > > Main Web Site: http://pauldotcom.com
>
> - --
> Kenneth Voort - kenneth {at} voort <SPAMGUARD> {dot} ca
> FDF1 6265 EBAB C05C FD06 1AED 158E 14D6 37CD E87F | pgp encrypted email
> preferred
> -----BEGIN PGP SIGNATURE-----
>
> iEYEARECAAYFAkzsKUIACgkQFY4U1jfN6H+wsACaA73RO18RIPnWFPrp9AOlDcm7
> FSUAoJWLtMYrVcEt/mafiHwom7p6OWgz
> =YS92
> -----END PGP SIGNATURE-----
> _______________________________________________
> Pauldotcom mailing list
> Pauldotcom () mail pauldotcom com
> http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
> Main Web Site: http://pauldotcom.com
_______________________________________________
Pauldotcom mailing list
Pauldotcom () mail pauldotcom com
http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
Main Web Site: http://pauldotcom.com