I have a few SUSE server that I have inherited. We would like to create a comprehensive inventory of installed software on each server. The main issue to separate what is part of the base installation and commercial. We are looking to be able to confirm that we are licensed properly for what we are using.
Can anyone point to me to some resources for scanning each server? Or is there a Tool that you like to use that can create an inventory of software on an openSUSE server. We have a mixed bag of 9.3 up to 10.3 servers.
Don’t quote me, but if they have a .3 at the end then they are the openSUSE version… Novell’s which requires money per year for updates and a ton of add’l money a year for support are SLES 9 & SLES 10…
I’m pretty sure that they are openSUSE. I was more concerned about what is installed on them. I ran rpm -q -a > rmp.log to see what RPM installs there are but I don’t know what is part of the base install and what is an admin install. I’m guessing that there could be other software that was not an RPM install but from source or some other method on the server.
When you go to YaST > software > Software management at the left top you can choose Repositories. Then you can click one by one the repositories and see what is installed from them (not the grey ones, they are available on that repository, but installed from another one).
You can decide for yourself what are openSUSE repositories and what are onthers (like Packman, etc.)
Then your RPM list contains the same packets plus RPMs loaded outside YaST say from RPMs downloaded from somewhere.
Then you talk about software installed but not from RPMs. There you are on your own. This can be any file put somewhere on the system. When there is no documentation what the Systems Administratot did … then he may not be called and Administrator, but a … (censored).
I think that should work for now. I think that we have to consider the servers as compromised, backup data and rebuild the server from a fresh OS. I appreciate your input.
>
> hcvv;1820257 Wrote:
> > When you go to YaST > software > Software management at the left
> > top you can choose Repositories. Then you can click one by one the
> > repositories and see what is installed from them (not the grey
> > ones, they are available on that repository, but installed from
> > another one).
> >
> > You can decide for yourself what are openSUSE repositories and what
> > are onthers (like Packman, etc.)
> >
> > Then your RPM list contains the same packets plus RPMs loaded
> > outside YaST say from RPMs downloaded from somewhere.
> >
> > Then you talk about software installed but not from RPMs. There you
> > are on your own. This can be any file put somewhere on the system.
> > When there is no documentation what the Systems Administratot
> > did … then he may not be called and Administrator, but a …
> > (censored).
>
> Hi Henk,
>
> I think that should work for now. I think that we have to consider the
> servers as compromised, backup data and rebuild the server from a
> fresh OS. I appreciate your input.
>
> Mike
>
>
Hi
You may also like to try the supportconfig rpm it collect lots of
information about your setup (search at following link for you release) http://software.opensuse.org/search
> On Wed, 18 Jun 2008 20:16:04 GMT
> jikometrix <jikometrix@no-mx.forums.opensuse.org> wrote:
>
> >
> > hcvv;1820257 Wrote:
> > > When you go to YaST > software > Software management at the left
> > > top you can choose Repositories. Then you can click one by one the
> > > repositories and see what is installed from them (not the grey
> > > ones, they are available on that repository, but installed from
> > > another one).
> > >
> > > You can decide for yourself what are openSUSE repositories and
> > > what are onthers (like Packman, etc.)
> > >
> > > Then your RPM list contains the same packets plus RPMs loaded
> > > outside YaST say from RPMs downloaded from somewhere.
> > >
> > > Then you talk about software installed but not from RPMs. There
> > > you are on your own. This can be any file put somewhere on the
> > > system. When there is no documentation what the Systems
> > > Administratot did … then he may not be called and
> > > Administrator, but a … (censored).
> >
> > Hi Henk,
> >
> > I think that should work for now. I think that we have to consider
> > the servers as compromised, backup data and rebuild the server from
> > a fresh OS. I appreciate your input.
> >
> > Mike
> >
> >
> Hi
> You may also like to try the supportconfig rpm it collect lots of
> information about your setup (search at following link for you
> release) http://software.opensuse.org/search
>
>
Hi
I see it’s now called NTSutils for 10.3 and 11.0 http://en.opensuse.org/NTSutils
ntsutils is the RPM that contains supportconfig, yes, as well as
‘chkbin’ as I recall.
Good luck.
Malcolm wrote:
| On Wed, 18 Jun 2008 20:30:58 GMT
| Malcolm <malcolm_nospamlewis@bellsouth.net> wrote:
|
|> On Wed, 18 Jun 2008 20:16:04 GMT
|> jikometrix <jikometrix@no-mx.forums.opensuse.org> wrote:
|>
|>> hcvv;1820257 Wrote:
|>>> When you go to YaST > software > Software management at the left
|>>> top you can choose Repositories. Then you can click one by one the
|>>> repositories and see what is installed from them (not the grey
|>>> ones, they are available on that repository, but installed from
|>>> another one).
|>>>
|>>> You can decide for yourself what are openSUSE repositories and
|>>> what are onthers (like Packman, etc.)
|>>>
|>>> Then your RPM list contains the same packets plus RPMs loaded
|>>> outside YaST say from RPMs downloaded from somewhere.
|>>>
|>>> Then you talk about software installed but not from RPMs. There
|>>> you are on your own. This can be any file put somewhere on the
|>>> system. When there is no documentation what the Systems
|>>> Administratot did … then he may not be called and
|>>> Administrator, but a … (censored).
|>> Hi Henk,
|>>
|>> I think that should work for now. I think that we have to consider
|>> the servers as compromised, backup data and rebuild the server from
|>> a fresh OS. I appreciate your input.
|>>
|>> Mike
|>>
|>>
|> Hi
|> You may also like to try the supportconfig rpm it collect lots of
|> information about your setup (search at following link for you
|> release) http://software.opensuse.org/search
|>
|>
| Hi
| I see it’s now called NTSutils for 10.3 and 11.0
| http://en.opensuse.org/NTSutils
|
| http://www.novell.com/communities/node/4097/basic-server-health-check-supportconfig
|
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
jikometrix wrote:
> Hi,
>
> I have a few SUSE server that I have inherited. We would like to create
> a comprehensive inventory of installed software on each server. The main
> issue to separate what is part of the base installation and commercial.
> We are looking to be able to confirm that we are licensed properly for
> what we are using.
>
> Can anyone point to me to some resources for scanning each server? Or
> is there a Tool that you like to use that can create an inventory of
> software on an openSUSE server. We have a mixed bag of 9.3 up to 10.3
> servers.
>
> I appreciate your help.
>
> Mike
>
>
If SNMP is enabled on the hosts, you can query the software
via SNMP to get the list. ZenOSS does this btw… if you like
that tool for SNMP monitoring, etc.