Date: Mon, 10 Apr 2006 16:03:00 -0300 From: "Ricardo A. Reis" <ricardo_bsd@yahoo.com.br> To: freebsd-security@freebsd.org Subject: [RFC] Ideas and Questions in security updates ( portaudit, freebsd-update) Message-ID: <op.s7s27acfp1tyz6@localhost>
next in thread | raw e-mail | index | archive | help
Hi all,
I use FreeBSD for severals years and this Project now have a
possibility the full security update (src) with
freebsd-update, is really great for Release users but is break for Stable
user.
Ok !!! Exist a possibility for apply manual patch and compile issue,
but for me problem existe in fix kernel issue in stable branch because is
require a update for last stable and this result in {make
buildworld,kernel,installworld) large time for correct a security issue,
in large enviroment with jails and critical applications like
administrative ldap e high webservers.
Correct issue in large enviroment is a tormento, and result in full
downtime, what the recomendation for security update in large enviroment
with jail ?
About Ports security issues, one idea is integrate portaudit and
portupgrade or create another tool for update ports,
this ideia is based in Gentoo glsa-check
( http://www.gentoo.org/doc/en/security/security-handbook.xml?part=1&chap=14
)
Thanks for Attention and sorry for my bad english.
Ricardo A. Reis
UNIFESP
Unix and Network Admin
_______________________________________________________
Abra sua conta no Yahoo! Mail: 1GB de espaço, alertas de e-mail no celular e anti-spam realmente eficaz.
http://br.info.mail.yahoo.com/
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?op.s7s27acfp1tyz6>