Greetings!
I wondered if anyone has seen this behavior before? I've been thru the archives
and
have not found anything that helps so far.
I'm running a remote data collection of all of the Solaris clients in my
environment
and storing them off on a directory in my machine running Red Hat.
What I'm seeing is this.
pca -f ./ahost_ --minimal -l missingr
and it consistently returns patches that are not in the recommended set. A
sample
is below:
List: missingr-minimal (105/32541)
Patch IR CR RSB Age Synopsis
------ -- - -- --- --- -------------------------------------------------------
118666 34 < 53 RS- 52 JavaSE 5.0: update 51 patch (equivalent to JDK 5.0u51)
118667 34 < 53 RS- 52 JavaSE 5.0: update 51 patch (equivalent to JDK 5.0u51),
64bit
119059 60 < 61 RS- 435 Obsoleted by: 119059-62 X11 6.6.2: Xsun patch
119213 26 < 27 RS- 547 NSS_NSPR_JSS 3.13.1: NSPR 4.8.9 / NSS 3.13.1 / JSS 4.3.2
119757 21 < 27 RS- 111 SunOS 5.10: Samba patch
119764 06 < 07 RS- 373 Obsoleted by: 119764-08 SunOS 5.10 : ipmitool patch
119783 21 < 25 RS- 293 Obsoleted by: 119783-26 SunOS 5.10: BIND patch
119810 06 < 07 RS- 387 SunOS 5.10: International Components for Unicode Patch
120460 19 < 20 RS- 609 Obsoleted by: 120460-21 GNOME 2.6.0: Gnome libs Patch
119812 13 < 16 RS- 435 Obsoleted by: 119812-17 X11 6.6.2: FreeType patch
119900 13 < 16 RS- 271 GNOME 2.6.0: GNOME libtiff - library for reading and
writing
TIFF
120543 25 < 31 RS- 70 SunOS 5.10: Apache 2 Patch
What concerns me are the lines similar to patch 119213 where the age exceeds
the last set of patches that were installed. This is giving my auditors issues
as they
keep asking why we are not fully patching the systems.
Other than suppressing all patches with dates older than the last patch date,
is
there any way to not display these patches? Or with PCA is this just an
expected
result?
Thanks!
Terry
