AIX

 View Only
  • 1.  CVE tracking

    Posted 26 days ago

    hi there,

    I would like to get some ideas on how AIX System Administrators track their CVE patching in their AIX environments? For example, multiple LPARs with different AIX OS version in multiple environments such as test, uat, prod, etc?

    Is there a simple way to manage that?

    Thanks in advance,

    Allan S.



    ------------------------------
    Allan Song
    ------------------------------



  • 2.  RE: CVE tracking

    Posted 23 days ago
    Check out BigFix 

    https://www.hcl-software.com/bigfix/home

    --

    Joe Zoda

    Infrastructure & Systems Support
    Division of Information Technology


    The School District of Palm Beach County
    3300 Forest Hill Blvd., Suite B-332
    West Palm Beach, FL 33406

    (561) 649-6810 

    http://www.PalmBeachSchools.org


    Disclaimer: Under Florida law, e-mail addresses are public records. If you do not want your e-mail address released in response to a public records request, do not send electronic mail to this entity. Instead, contact this office by phone or in writing.






  • 3.  RE: CVE tracking

    Posted 16 days ago

    Hi!

    That depends on your requirements.  For most of our use cases, the FLRTVC Script is good enough.

    We basically use ansible flrtvc module to distribution script and the meta data file, run it periodically and have a  check in our general monitoring (Icinga), to report missing patches / updates to us.

    With that we can in theory also always create a report of known open issues and their cvss score for a system, or a group of systems; but we rarely have that requirement.

    Best regards,

      Alexander



    ------------------------------
    Alexander Reichle-Schmehl
    ------------------------------