AIX

 View Only
  • 1.  CVE tracking

    Posted Fri May 17, 2024 06:50 AM

    hi there,

    I would like to get some ideas on how AIX System Administrators track their CVE patching in their AIX environments? For example, multiple LPARs with different AIX OS version in multiple environments such as test, uat, prod, etc?

    Is there a simple way to manage that?

    Thanks in advance,

    Allan S.



    ------------------------------
    Allan Song
    ------------------------------



  • 2.  RE: CVE tracking

    Posted Mon May 20, 2024 10:11 AM
    Check out BigFix 

    https://www.hcl-software.com/bigfix/home

    --

    Joe Zoda

    Infrastructure & Systems Support
    Division of Information Technology


    The School District of Palm Beach County
    3300 Forest Hill Blvd., Suite B-332
    West Palm Beach, FL 33406

    (561) 649-6810 

    http://www.PalmBeachSchools.org


    Disclaimer: Under Florida law, e-mail addresses are public records. If you do not want your e-mail address released in response to a public records request, do not send electronic mail to this entity. Instead, contact this office by phone or in writing.






  • 3.  RE: CVE tracking

    Posted Mon May 27, 2024 08:27 AM

    Hi!

    That depends on your requirements.  For most of our use cases, the FLRTVC Script is good enough.

    We basically use ansible flrtvc module to distribution script and the meta data file, run it periodically and have a  check in our general monitoring (Icinga), to report missing patches / updates to us.

    With that we can in theory also always create a report of known open issues and their cvss score for a system, or a group of systems; but we rarely have that requirement.

    Best regards,

      Alexander



    ------------------------------
    Alexander Reichle-Schmehl
    ------------------------------