HPE Community
Operating System - HP-UX
1829759 Members
21664 Online
109992 Solutions
New Discussion

security_patch_check

 
SOLVED
Go to solution
Asya
Regular Advisor

‎04-21-2005 07:55 AM

‎04-21-2005 07:55 AM

security_patch_check

Hello,

I'm trying to find a better way to stay on top of security patches required by HP.

security_patch_check gives me a list of missing patches. Is there any other software or an option that i could use for a script that would automatically ftp or download patches from the website and create a depot.

I have about 15 servers that need to be checked..and doing them one by one will take me a while..

Thank you!
0 Kudos
Reply
5 REPLIES 5
Alex Lavrov.
Honored Contributor

‎04-21-2005 08:46 AM

‎04-21-2005 08:46 AM

Re: security_patch_check

You can write a script that executes this script on each server once a week and send you the results by email.
I don't give a damn for a man that can only spell a word one way. (M. Twain)
0 Kudos
Reply
Uday_S_Ankolekar
Honored Contributor

‎04-21-2005 08:48 AM

‎04-21-2005 08:48 AM

Re: security_patch_check

You can do this with 'run patch assessment'

From the left hand side select Maintenance and Supoort for Hp products' and in the next screen from Patching group select Custom Patch bundle and Run patch assessment' and follow the instruction.

-USA..
Good Luck..
Reply
Alex Lavrov.
Honored Contributor

‎04-21-2005 08:53 AM

‎04-21-2005 08:53 AM

Re: security_patch_check

I doubt that "patch assessment" for 115 servers, one by one, will cheer up Asya ... ;)
I don't give a damn for a man that can only spell a word one way. (M. Twain)
0 Kudos
Reply
Asya
Regular Advisor

‎04-21-2005 09:17 AM

‎04-21-2005 09:17 AM

Re: security_patch_check

Uday,

Thank you very much. This is a pretty good option and i've seen this before, but I guess forgot about it. I'll try to use it.

Alex..yes, in the future i will create a cron job that will email me nightly results..but for now... Unfortunately, each server has about 30 patches missing..therefore, i need to have it fixed first, and only then have a cronjob....

Thanks again everyone,
Asya
0 Kudos
Reply
Keith Buck
Respected Contributor

‎04-22-2005 03:30 AM

‎04-22-2005 03:30 AM

Solution

Re: security_patch_check

Asya,

Just to let you know, we do have this on our list of requested features.

A few additional hints:

- You should start with the quality pack. That will get you a lot closer to up-to-date on patches, and is a well-tested bundle of patches that have few or no issues reported against them.

- Security Patch Check does have a Systems Insight Manager (aka service control manager) integration that will let you scan multiple servers at once and browse the reports.

- itrc does have a security patch bundle that can be downloaded and applied.

- Someone already suggested the itrc patch assessment as another option. This is certainly the best way to gather your dependencies and get a single download. You can also use the patch selection in conjunction with SPC...run SPC with "-o m" to get the "minimum" patches, then paste those into the search form on itrc and it will give you the recommended set of patches as a bundle.

- Don't forget about manual actions and product updates, which are only reported by Security Patch Check B.02.00 or subsequent.

Hope that helps.

-Keith
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.