From owner-freebsd-questions@FreeBSD.ORG Wed Nov 19 23:00:13 2003 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id D1D0816A4E1 for ; Wed, 19 Nov 2003 23:00:13 -0800 (PST) Received: from roadkill.linuxops.com (roadkill.linuxops.com [64.164.153.2]) by mx1.FreeBSD.org (Postfix) with ESMTP id 78A7143FDF for ; Wed, 19 Nov 2003 23:00:12 -0800 (PST) (envelope-from kevin@dhap.com) Received: from stinky.linuxops.com ([64.164.153.5] helo=stinky) by roadkill.linuxops.com with smtp (Exim 3.35 #1 (Debian)) id 1AMbIl-0000hf-00; Wed, 19 Nov 2003 14:59:59 -0800 Message-ID: <001201c3af35$0f565730$0599a440@linuxops.com> From: "Kevin McKay" To: "Bryan Cassidy" , "Kevin McKay" References: <000801c3ae5b$44595cf0$0599a440@linuxops.com><44fzgk4egj.fsf@be-well.ilk.org><3FBBA719.5010404@dhap.com> <20031120011849.644d36fb.b_cassidy@bellsouth.net> Date: Wed, 19 Nov 2003 23:08:06 -0800 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2800.1158 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1165 cc: freebsd-questions@freebsd.org Subject: Re: Security question X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 20 Nov 2003 07:00:14 -0000 Thanks Bryan, Two other questions, if I do a pkg_add -r openssh today and then the same command in 6 months will it always be the same precompiled binary sitting on the server? Or are they updated with patches from time to time? how does the openssh port binary differ from the oepnssh system binary? I have looked all through the handbook and faq's but could not find a definitive answer. Thanks Kevin McKay ----- Original Message ----- From: "Bryan Cassidy" To: "Kevin McKay" Cc: Sent: Wednesday, November 19, 2003 11:18 PM Subject: Re: Security question > I don't know anything about using sysinstall for security > patches/upgrades etc. WHat your looking for I think is cvsup. Please > read the handbook on Using CVSUP to get the latests source updates, > security patches for your release and even updating to a different > RELEASE or -CURRENT or -STABLE. > > On Wed, 19 Nov 2003 09:23:37 -0800 > Kevin McKay wrote: > > > So it will not just grab the latest patched binaries for 5.1? I am not > > > > sure I understand. Is it just for updating between releases and not > > for keeping the current release up to date? > > > > Kevin > > > > Lowell Gilbert wrote: > > > > >"Kevin McKay" writes: > > > > > > > > > > > >>I have read through the documentation but have not been able to find > > >>a definite answer. I am running a pretty core install of 5.1 minimal > > >>+ bind9, postfix, apache, ssh, no ports collection. Here is my > > >>question. When I run the binary update from sysinstall will that > > >>take care of the earlier ssh vulnerability and update apache postfix > > >>and bind to the most current version? > > >> > > >> > > > > > >You normally need to run the sysinstall from the version you're > > >updating to. You could configure your system's sysinstall to load in > > >the later version, and it should be compatible, but I don't know the > > >syntax for that offhand... > > > > > > > > > > _______________________________________________ > > freebsd-questions@freebsd.org mailing list > > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > > To unsubscribe, send any mail to > > "freebsd-questions-unsubscribe@freebsd.org" >