How does security_patch_check work?
The tool analyzes filesets and patches installed on a system and recommends security patches that should be added. To do the analysis, the tool uses a catalog of security-related patches, so it must have access to the security patch catalog. The security patch catalog is a listing of HP patches that address security vulnerabilities. HP updates the catalog nightly and stores it on an IT Resource Center ftp server. security_patch_check must have local access to a security patch catalog to run its analysis, therefore, you must download the catalog from the HP server. There are three ways to download the catalog: • 1. use ‘security_patch_check -r’ to automatically download the most recent catalog. • 2. manually download the catalog through a web browser using ftp://ftp.itrc.hp.com/export/patches/security_catalog Note: Internet Explorer (IE) may interpret the file name as a directory since it does not contain an extension. • 3. manually download the catalog using anonymous ftp if the browse
Related Questions
- I followed the recommendations of security_patch_check to chmod go-w the world-writable directories in my path, and now swverify fails. What should I do?
- When assigning roles for security_patch_check (SPC) in Service Control Manager (SCM), who should I let run the Security Patch Check tool?
- Does security_patch_check run on HP-UX 10.x?
