From owner-freebsd-isp@FreeBSD.ORG Fri May 22 11:24:06 2009 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 2E449106564A for ; Fri, 22 May 2009 11:24:06 +0000 (UTC) (envelope-from "e1019@network-i.net"@relay.network-i.net) Received: from relay.network-i.net (relay.network-i.net [212.21.121.179]) by mx1.freebsd.org (Postfix) with ESMTP id E97A48FC1C for ; Fri, 22 May 2009 11:24:05 +0000 (UTC) (envelope-from "e1019@network-i.net"@relay.network-i.net) Received: from nat1.network-i.net ([212.21.99.52] helo=[10.1.1.134]) by relay.network-i.net with esmtpsa (TLSv1:AES256-SHA:256) (Exim 4.69 (FreeBSD)) (envelope-from <"e1019@network-i.net"@relay.network-i.net>) id 1M7SQn-000PKC-GY; Fri, 22 May 2009 11:56:53 +0100 Message-ID: <4A1684E7.4050108@thingy.com> Date: Fri, 22 May 2009 11:56:39 +0100 From: Howard Jones User-Agent: Thunderbird 2.0.0.21 (Windows/20090302) MIME-Version: 1.0 To: "Tonix (Antonio Nati)" References: <4A166B29.1070202@interazioni.it> In-Reply-To: <4A166B29.1070202@interazioni.it> Content-Type: text/plain; charset=ISO-8859-15 Content-Transfer-Encoding: 7bit Sender: "e1019@network-i.net"@relay.network-i.net Cc: freebsd-isp@freebsd.org Subject: Re: [freebsd-isp] Avoiding source code on production servers X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 22 May 2009 11:24:06 -0000 Tonix (Antonio Nati) wrote: > I'm in the phase of planning my new generation of FreeBSD servers, and > I would love to make them more easy to upgrade. > Main problem I have currently is I do not want any source code on > production server, so freebsd-update is welcome, but... what about > packages? > I would use packages, but they are not easy to upgrade, while ports > can be easy to upgrade, but need to have sources an servers. > > What do you suggest me? What is currently done on other environments? We have a local build server, which is the source for PXE installation of FreeBSD with our chosen set of packages, and also the server that builds local packages (things that don't have packages in the standard distro). It doesn't have to be anything fancy, and in fact ours is a VM since it gets used fairly rarely. I haven't got a nice way to do distribution of the packages though (like portsnap/freebsd-update/yum). That would make it more useful! As it is, we still update servers the 'old way'.