#include <infodrom.style>
#include <linux.style>
#include <db.style>
#include <addresses.inc>

<define-tag size_report>-1</define-tag>
#include "security.inc"

<page title="Linux-Security">

<blockquote>

<p>These are security incidents that were reported publically and of
which I (Joey) am aware of.  This page contains all incidents for
which not all major Linux vendors have issued an advisory.  Once the
last has issued an advisory and it gets added here, the incident will
disappear from this page.  If I should miss an advisory, please drop
me a <a href="mailto:<joey mail>">mail</a> containing the
proper URL.

<p>Please note that this is a private service which costs time to
maintain.

</blockquote>

<?
  $vendor[] = "Debian";
  #$vendor[] = "Progeny";
  $vendor[] = "SuSE";
  $vendor[] = "RedHat";
  $vendor[] = "Mandrake";
  #$vendor[] = "Immunix";
  sort ($vendor);
?>

<center>
<table cellpadding=1 cellspacing=0 border=0>
<tr bgcolor="<colh>">
  <th><ifont><font size="-1">Date</font></ifont></th>
  <th><ifont><font size="-1">Incidence</font></ifont>></th>
<?
  for ($i=0; $i < count ($vendor); $i++) {
    printf ('<th><ifont>font size="<size_title>">%s</font></ifont></th>', $vendor[$i]);
  }
?>
</tr>

<?
  pg_exec ($dbh, "SET DateStyle = 'ISO'") or die("Datenbank-Abfrage!");
# WHERE done IS NOT NULL 
  $query = "SELECT * FROM incident ORDER by date,subject";
  $sth = pg_exec ($dbh, $query); // or die("Datenbank-Abfrage!");

  $color = "<cold>";
  for ($nr=0; $nr < pg_NumRows ($sth); $nr++) {
    $row = pg_fetch_array ($sth, $nr);

    $report = fixed ($row['id'], $vendor);

    if (count ($report) < count ($vendor)) {
      $color = $color == "<cold>"?"<coln>":"<cold>";

      print format_incident ($vendor, $report, $row, $color);
    }
  }

?>

</table>
</center>

</page>

# Local variables:
# mode: indented-text
# mode: auto-fill
# end: