Skip site navigation (1)Skip section navigation (2)
Date:      Wed, 11 Aug 2004 10:21:13 -0500
From:      Paul Schmehl <pauls@utdallas.edu>
To:        Eric Crist <ecrist@secure-computing.net>, 'Rail mail' <railmail@gmail.com>, freebsd-questions@freebsd.org
Subject:   RE: upgrade
Message-ID:  <DFAF7222F7BB05854F8E3587@utd49554.utdallas.edu>
In-Reply-To: <037901c47f68$6cd60c30$6401a8c0@Nomad>
References:  <037901c47f68$6cd60c30$6401a8c0@Nomad>

next in thread | previous in thread | raw e-mail | index | archive | help
--On Wednesday, August 11, 2004 12:59:46 AM -0500 Eric Crist 
<ecrist@secure-computing.net> wrote:
>
> The difference between a binary upgrade and an upgrade via CVS or cvsup
> is the time between creation of the sources.  Binary upgrades generally
> come out durning major releases, for example, from 4.9 to 4.10.  Any
> security patches added between that time were only available with a
> CVS/cvsup upgrade, followed by a system rebuild.
>
This is simply not true.  You can upgrade all the sources using 
freebsd-update.  Look in /usr/ports/security/freebsd-update.  I use this on 
production servers now to lessen downtime.  All you have to do is a fetch, 
then an install, then reboot, and you're done.  On a production webserver 
getting millions of hits a month, this is a godsend.

Paul Schmehl (pauls@utdallas.edu)
Adjunct Information Security Officer
The University of Texas at Dallas
AVIEN Founding Member
http://www.utdallas.edu/ir/security/



Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?DFAF7222F7BB05854F8E3587>