https://github.com/osquery/osquery logo
Join Slack
Powered by
I know the vulnerability information is a work in ...
# fleet
t
I know the vulnerability information is a work in progress, but does anyone know why ubuntu hosts appear to be reported on, but plain old debian does not? Just curious.
z
Does the software inventory for the debian host show up? Was it recently added when you checked that? The vulnerability matching runs on an interval, so it's possible it had not yet run.
t
I have had them all registered and online for about a week? (First with orbit, now using plain osquery.) But I will keep watching.
z
That should be long enough. Do you have the software inventory for the Debian host?
t
None of the debian hosts are listed in the "Software" area of the main page -- I am assuming this is what you mean when you are referring the software inventory? (I can do deb_packages searches for all hosts.)
z
If you go to the "details" page for one of those hosts is there any software table?
t
No, just for the Ubuntu hosts
z
What Debian version are you using? I'd like to try to reproduce this locally.
+ osquery version + Fleet version
t
online Debian GNU/Linux 10.0.0 5.0.1
What's the easiest way to get the fleet version?
z
Click the avatar in the top right then go to account settings
Sorry, "my account"
it shows up on the right
t
Sorry for the lag; I was looking through the docker logs 🙂 Fleet 4.6.0 • Go go1.17.2
But I can upgrade to 4.6.2 if you would like
z
Okay thank you for all that. It seems I can reproduce the missing software inventory on Debian hosts locally.
👍🏽 1
👍 1
We'll look to get a fix for this in 4.7.0
t
OK! 🙂
z
(This week)
t
Well thanks for the super helpful responses
z
Thanks for the report!
Turns out this was an easy fix: https://github.com/fleetdm/fleet/issues/3211
🙌 2
🙌🏽 1
3 Views
Open in Slack
PreviousNext
Powered by