Linux Server - Last OS Patch Date

Shweta1 2022-02-18 17:04:05 UTC #1

Can anyone please help me to relevance which can be utilized to pull data from the Linux system for the Last OS Patch Date?

MatthiasW 2022-02-20 10:52:22 UTC #2

Some ideas:
at point in time of patching, create a textfile containing date and import it using an analysis.
Or use something like output from yum history in case of having yum/dnf as packetmanager.

RichCampbell 2022-02-22 18:45:07 UTC #3

I think you need to define what an OS Patch is, since Linux doesn’t have a patch Tuesday. I’ve been toying with the idea of writing an analysis that would look for any systems with a kernel version that is less than the version that I would consider current. This would have to be updated manually on a regular basis but I think it would be a good indicator of a system that hasn’t been kept up to date.

JasonWalker 2022-02-22 19:00:05 UTC #4

apt-get and yum both keep log files…maybe checking the date of the logs would be useful? Generally I think “Last Patch Date” doesn’t provide a lot of useful information, since it wouldn’t show which patches were installed on that date.

I usually prefer to measure compliance in terms of which fixlets are relevant, and the severities and ages of the fixlets.