[CentOS] A couple of security questions

Ralph Angenendt ra+centos at br-online.de
Fri Jun 20 08:59:16 UTC 2008


Luigi Perroti wrote:
> One thing I will probably miss is the debsecan tool.
> This utility sends me a mail whenever there is a change regarding the
> vulnerabilities' status on my system.
> It lists new ones, resolved ones and current ones.
> 
> Is there anything similar for CentOS?

Not yet (there is a security-updates plugin for yum which we try to
incorporate).

> 2) I read that RHEL packages are compiled with various security
> technologies including Exec Shield, FORTIFY_SOURCE and
> fstack-protector.
> 
> Does this apply to CentOS too?

Of course >:)

Cheers,

Ralph
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url : http://lists.centos.org/pipermail/centos/attachments/20080620/825d4705/attachment.bin


More information about the CentOS mailing list