Has anybody developed relevance for checking Samba versions prior to the release of BadLock?
Have you looked at any of the existing Samba fixlets for Red Hat and CentOS?
I have taken a look at some, but they seem to be specific to the Samba package. I am concerned with how many binaries will have to be updated because of BadLock that fall outside of the standard ‘Samba’ binaries.
Only another hour or so to go until we find out.
Here is the code I ended up using for tracking the Samba versions.
Samba Version (for Linux)
https://bigfix.me/relevance/details/3007554
(relevance spaced for easier viewing)
if (exists file "/bin/rpm") then ((version of it) of packages whose (name of it = "samba") of rpm) else
if (exists file "/usr/bin/dpkg") then
if (exists packages whose ((currently installed of it = true) and (name of it = "samba") and (((version of it) as string) contains ":")) of debianpackage)
then (following text of first ":" of ((version of it) as string)) of packages whose ((currently installed of it = true) and (name of it = "samba")) of debianpackage
else ((version of it) as string) of packages whose ((currently installed of it = true) and (name of it = "samba")) of debianpackage
else ""