From owner-freebsd-questions@FreeBSD.ORG Tue Jan 20 11:49:54 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id AA53016A4CE for ; Tue, 20 Jan 2004 11:49:54 -0800 (PST) Received: from wrzx28.rz.uni-wuerzburg.de (wrzx28.rz.uni-wuerzburg.de [132.187.3.28]) by mx1.FreeBSD.org (Postfix) with ESMTP id 7E82043D41 for ; Tue, 20 Jan 2004 11:49:28 -0800 (PST) (envelope-from elessar@galgenberg.net) Received: from wrzx34.rz.uni-wuerzburg.de (wrzx34.rz.uni-wuerzburg.de [132.187.3.34]) by wrzx28.rz.uni-wuerzburg.de (Postfix) with ESMTP id 19952B499A for ; Tue, 20 Jan 2004 20:49:27 +0100 (CET) Received: from virusscan (localhost [127.0.0.1]) by wrzx34.rz.uni-wuerzburg.de (Postfix) with ESMTP id EB51460D26 for ; Tue, 20 Jan 2004 20:49:26 +0100 (CET) Received: from wrzx28.rz.uni-wuerzburg.de (wrzx28.rz.uni-wuerzburg.de [132.187.3.28]) by wrzx34.rz.uni-wuerzburg.de (Postfix) with ESMTP id C1B9860CF4 for ; Tue, 20 Jan 2004 20:49:26 +0100 (CET) Received: from frodo.galgenberg.net (wwsx14.win-screen.uni-wuerzburg.de [132.187.253.14]) by mailmaster.uni-wuerzburg.de (Postfix) with SMTP id 781C3B4995 for ; Tue, 20 Jan 2004 20:49:26 +0100 (CET) Received: (qmail 18097 invoked from network); 20 Jan 2004 19:49:26 -0000 Received: from gb-21-249.galgenberg.net (HELO aragorn) (172.16.21.249) by frodo.galgenberg.net with SMTP; 20 Jan 2004 19:49:26 -0000 Date: Tue, 20 Jan 2004 20:48:50 +0100 From: Joerg Pernfuss To: freebsd-questions@freebsd.org Message-Id: <20040120204850.47824009@aragorn> In-Reply-To: <5.2.1.1.0.20040120104942.00b1e480@pop.courtesymortgage.com> References: <5.2.1.1.0.20040120104942.00b1e480@pop.courtesymortgage.com> X-Mailer: Sylpheed version 0.9.8claws (GTK+ 1.2.10; i386-portbld-freebsd5.1) Mime-Version: 1.0 Content-Type: multipart/signed; protocol="application/pgp-signature"; micalg="pgp-sha1"; boundary="Signature=_Tue__20_Jan_2004_20_48_50_+0100_V5GxNctgkf2eXuUg" X-Virus-Scanned: by amavisd-new (Rechenzentrum Universitaet Wuerzburg) Subject: Re: Proper way to upgrade OpenSSH on FreeBSD 4.9 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 20 Jan 2004 19:49:54 -0000 --Signature=_Tue__20_Jan_2004_20_48_50_+0100_V5GxNctgkf2eXuUg Content-Type: text/plain; charset=US-ASCII Content-Disposition: inline Content-Transfer-Encoding: 7bit On Tue, 20 Jan 2004 10:50:06 -0800 Jason Williams wrote: > My question is, what is the proper method in doing so? > I see that, currently in the ports tree, openssh 3.7.1p2 is available > for install. > There is also the possibility of installing from source. > I would think that using the ports tree may be a very good option, as > you can upgrade later with portupgrade. >From ports should be better imho. It's a source install too. Additionally it is automated and integrated. > > With that in mind, what is the best method in doing this? You have (at least) two possibilities when installing from ports. a) "normal" installation will install the new sshd to /usr/local/sbin/ and leave the old version as it is. then change rc.conf : sshd_program="/usr/local/sbin/sshd" sshd_flags="-f /usr/local/etc/ssh/sshd_config" or whereever you install the files to. This way you can change back to the old version by changing the rc.conf back to its defaults. b) "overwrite" installation specify OPENSSH_OVERWRITE_BASE (check the Makefile, but that should be it) when installing the port. This overwrites the old base system sshd. No need for rc.conf changes, but be sure to define NO_OPENSSH= YES in your make.conf - otherwise the next buildworld will overwrite your port installed sshd again. Joerg --Signature=_Tue__20_Jan_2004_20_48_50_+0100_V5GxNctgkf2eXuUg Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.4 (FreeBSD) iD8DBQFADYYtIrY0CTTJX8ARAgs2AJ0TtJRmaR8yPUaN7Y/+ABgBO8cL4QCfdD5X ETCeQciZ2t9XqiFDyyvFhzE= =Y+2L -----END PGP SIGNATURE----- --Signature=_Tue__20_Jan_2004_20_48_50_+0100_V5GxNctgkf2eXuUg--