From owner-freebsd-security@FreeBSD.ORG Wed May 24 19:40:27 2006 Return-Path: X-Original-To: freebsd-security@freebsd.org Delivered-To: freebsd-security@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 3BC3D16A44D for ; Wed, 24 May 2006 19:40:27 +0000 (UTC) (envelope-from drosih@rpi.edu) Received: from smtp5.server.rpi.edu (smtp1.server.rpi.edu [128.113.2.1]) by mx1.FreeBSD.org (Postfix) with ESMTP id CCB2743D46 for ; Wed, 24 May 2006 19:40:26 +0000 (GMT) (envelope-from drosih@rpi.edu) Received: from [128.113.24.47] (gilead.netel.rpi.edu [128.113.24.47]) by smtp5.server.rpi.edu (8.13.1/8.13.1) with ESMTP id k4OJeOSD003590; Wed, 24 May 2006 15:40:25 -0400 Mime-Version: 1.0 Message-Id: In-Reply-To: <20060524144537.46463a90@hydrocodone.org> References: <20060523120100.37D2B16A54F@hub.freebsd.org> <20060523083944.H96736@eboyr.pbz> <20060523160051.GA78620@kierun.org> <44741A43.40302@kernel32.de> <20060524144537.46463a90@hydrocodone.org> Date: Wed, 24 May 2006 15:40:23 -0400 To: Allen , freebsd-security@freebsd.org From: Garance A Drosihn Content-Type: text/plain; charset="us-ascii" ; format="flowed" X-CanItPRO-Stream: default X-RPI-SA-Score: undef - spam-scanning disabled X-Scanned-By: CanIt (www . canit . ca) Cc: Subject: Re: FreeBSD Security Survey X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 24 May 2006 19:40:27 -0000 At 2:45 PM -0400 5/24/06, Allen wrote: > > > > It really depends on how many machines you have, on how > > many different tasks they have and on which archictures > > you're running. > > >> The answer is: build host + jails for a testing environment... >> This'll reduce your actual downtime. >> > >Did you just tell him to get another computer for each arch >to have as a build machine??? > >Being a broke college student I don't think that's something >I'd ever do to install updates on my boxes. I can't afford >another computer just to build updates when every other OS >I use does updates in another way.... If you are a college student with a few machines that you work with, then you can afford some downtime. Note that the person was talking about the problems of doing source updates on TEN machines. If you own ten machines, and if all of those ten machines must have zero downtime and rock-solid reliability, then you really have to find the money for an eleventh machine. That is just the cost of doing business. Find the money to do the job right, or expect to go out of business the first day that Murphy's Law comes knockin' at your door. That issue of ten or more machines is completely separate from the issue of how well the ports collection itself should work, of course. But you can't complain about the cost of one machine *WHEN* you are moaning about the problems of owning ten machines which must be up 24/7. "Pity the poor college student, with their personally- owned data center of 50 machines split across five different architectures." Uh, no. I won't. Anyone who can afford that much hardware has more money than I do! -- Garance Alistair Drosehn = gad@gilead.netel.rpi.edu Senior Systems Programmer or gad@freebsd.org Rensselaer Polytechnic Institute or drosih@rpi.edu