From owner-freebsd-stable@FreeBSD.ORG  Tue Jul  8 13:42:13 2003
Return-Path: <owner-freebsd-stable@FreeBSD.ORG>
Delivered-To: freebsd-stable@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 4F12637B401
	for <freebsd-stable@freebsd.org>;
	Tue,  8 Jul 2003 13:42:13 -0700 (PDT)
Received: from main.gmane.org (main.gmane.org [80.91.224.249])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 4712443F93
	for <freebsd-stable@freebsd.org>;
	Tue,  8 Jul 2003 13:42:12 -0700 (PDT)
	(envelope-from freebsd-stable@m.gmane.org)
Received: from list by main.gmane.org with local (Exim 3.35 #1 (Debian))
	id 19ZzGT-0007lo-00
	for <freebsd-stable@freebsd.org>; Tue, 08 Jul 2003 22:40:41 +0200
X-Injected-Via-Gmane: http://gmane.org/
To: freebsd-stable@freebsd.org
Received: from news by main.gmane.org with local (Exim 3.35 #1 (Debian))
	id 19ZzFw-0007kB-00	for <gmane-os-freebsd-stable@m.gmane.org>;
	Tue, 08 Jul 2003 22:40:08 +0200
From: Samuel Tardieu <sam@rfc1149.net>
Date: Tue, 08 Jul 2003 22:40:35 +0200
Organization: Avian Carrier & Friends
Lines: 24
Message-ID: <877k6swy4c.fsf@inf.enst.fr>
References: <20030708200104.GA66624@cnt.org> <3F0B2AAE.5080708@mac.com>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
X-Complaints-To: usenet@main.gmane.org
Mail-Copies-To: sam@rfc1149.net
User-Agent: Gnus/5.090007 (Oort Gnus v0.07) XEmacs/21.5 (cauliflower,
 i386--freebsd)
Cancel-Lock: sha1:SqkBIAjETmBC/L9CnV7urKpwXV4=
Sender: news <news@main.gmane.org>
Subject: Re: Hardening production servers
X-BeenThere: freebsd-stable@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: Production branch of FreeBSD source code
	<freebsd-stable.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-stable>,
	<mailto:freebsd-stable-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-stable>
List-Post: <mailto:freebsd-stable@freebsd.org>
List-Help: <mailto:freebsd-stable-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-stable>,
	<mailto:freebsd-stable-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 08 Jul 2003 20:42:13 -0000

>>>>> "Chuck" == Chuck Swiger <cswiger@mac.com> writes:

Chuck> Beyond that, you should consider sharing /usr/src and /usr/obj
Chuck> from your buildserver onto the other machines for performing
Chuck> upgrades.  You can copy all of your kernel config files to the
Chuck> build server, and do:

Chuck> make buildkernel KERNCONF=machine1
Chuck> make buildkernel KERNCONF=machine2

Chuck> ...etc, for each distinct kernel config file you have.

Even better: make buildkernel KERNCONF="machine1 machine2 ..."

Typically, in the server's /etc/make.conf, use:

  KERNCONF="SERVER CLIENT1 CLIENT2 CLIENT3 ..."

A buildkernel will make all of them and a installkernel will install
only the first one (SERVER).

  Sam
-- 
Samuel Tardieu -- sam@rfc1149.net -- http://www.rfc1149.net/sam