HP-UX Reference (11i v2 07/12) - 1M System Administration Commands N-Z (vol 4)

ManualsBrandsHP ManualsSoftwareHP-UX Reference Manuals

381

382

383

384

385

386

387

388

389

390

swa-report(1M) swa-report(1M)

NAME

swa-report: swa - report software and security issues, and resolutions.

SYNOPSIS

swa report [-a analyzer][

-r stdout_report_type][

-s inventory_source]

[

-q[q[q

]]] [-v[v]] [[-option] -?][

-x option=[value|-?]] [-X option_ﬁle]

DESCRIPTION

The

swa report command inventories and analyzes a host system or some types of depots against a

catalog of HP software and known issues (security and other defects). HP-UX Software Assistant (SWA)

then generates three results:

• a comprehensive HTML report saved in a ﬁle

• a text report printed to standard output (report types include "action", "issue", or "detail")

• an analysis results ﬁle that the

swa get command uses

Each of these results indicates the issues found and/or new software and ﬁxes that Hewlett Packard recom-

mends.

Note: The format of these results is subject to change in a subsequent release of SWA.

Security Considerations

The analysis that

swa report performs relies on the integrity of the inventory to determine the

appropriate patches to install on the system. It is important that all protocols used to transmit the inven-

tory data are integrity protected and that the host used to generate the inventory data is accurately

represented. For example, use of swlist for gathering an inventory of a remote system uses a clear-text,

unauthenticated protocol that does not protect the integrity of the data. Using Secure Shell to gather an

inventory of a remote system uses an integrity protected (and encrypted) protocol. Even when using

Secure Shell, the analysis still relies on the source of the data (the remote host) to accurately represent the

software contents installed on that system.

Options

swa report recognizes the following options:

-a analyzer

Speciﬁes an analyzer to use. Each analyzer represents a different type of analysis that

swa can

perform. You may specify multiple

-a options. The supported analyzers are as follows:

CRIT patches that ﬁx critical problems

PCW patches with critical warnings

PW patches with warnings (a superset of PCW)

QPK latest quality pack

SEC security bulletins that may apply

CHAIN=patchID[,patchID]* include patch or recommended successor

PATCH=patchID[,patchID]* include speciﬁc patch.

Note: Use of CHAIN is generally preferred.

If the -a option is not speciﬁed, the QPK, SEC, and PCW analyzers are used. See also the

-x analyzers extended option.

-r stdout_report_type

Speciﬁes the type of report to display to standard output. Legal values are as follows:

action (Default) Summary of recommended actions

issue Summary of identiﬁed issues

detail Recommended actions with issue justiﬁcation

html Comprehensive report in HTML format

none No report is generated on standard output

-s inventory_source

388 Hewlett-Packard Company − 1 − HP-UX 11i Version 2: December 2007 Update