Project

General

Profile

sec-updater

Synopsis

sec-updater [--debug level] [--quiet] [--security] --product name --file filename

sec-updater -h | --help

Description

sec-updater extracts information about security updates and backports of Linux repositories (e.g. Debian or Ubuntu). This information is used to update the package version information stored in the strongTNC SQLite database. The dbkg --compare-versions command is used to determine which package versions are affected by a given security update.

Options

-h, --help
      Prints usage information and a short summary of the available commands.

-v, --debug level
      Set debug level, default: 1.

-q, --quiet
      Disable debug output to stderr.

-s, --security
      Set when parsing a distributions file with security updates.

-p, --product name
      Name of Linux version as stored in database. eg. "Ubuntu 16.04 x86_64".

-f, --file filename
      Linux package information file to parse.

Configuration

The following parameters must be configured in the sec-updater section of strongswan.conf:

sec-updater {
    database = sqlite:///etc/pts/config.db
}

Example

sec-updater --product "Ubuntu 16.04 x86_64" --file xenial-security/binary-amd64/Packages-main