Comment 7 for bug 493607
Revision history for this message
| furicle (furicle) wrote Re: [Bug 493607] Re: rkhunter reports openssl and sshd versions out of date | #7 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
0e1f616
(Get the code!)
On Thu, Dec 17, 2009 at 12:23 PM, Andrew Cholakian <email address hidden> wrote:
> furicle,
>
> It looks to me that every security release would require an update to
> the white list unless I'm mistaken.
I don't so. The problem is because they (Debian based distros like
Ubuntu) PATCH the current version INSTEAD of updating.
So the version number never changes. The .deb gets updated, but the
base version number is static.
The config file would change for every release - but it does anyway
because they package the new version for every release.
It's not any more work than currently *as I understand the process*
Brian