From owner-freebsd-security Thu Aug 30 21: 4:26 2001 Delivered-To: freebsd-security@freebsd.org Received: from obsecurity.dyndns.org (adsl-63-207-60-54.dsl.lsan03.pacbell.net [63.207.60.54]) by hub.freebsd.org (Postfix) with ESMTP id 968E637B405 for ; Thu, 30 Aug 2001 21:04:19 -0700 (PDT) (envelope-from kris@obsecurity.org) Received: by obsecurity.dyndns.org (Postfix, from userid 1000) id 9992E66D0B; Thu, 30 Aug 2001 20:30:17 -0700 (PDT) Date: Thu, 30 Aug 2001 20:30:17 -0700 From: Kris Kennaway To: Andrew Kenneth Milton Cc: Kris Kennaway , Blaz Zupan , security@FreeBSD.ORG Subject: Re: Security update packages don't recognized patched 4.3-RELEASE Message-ID: <20010830203017.A29026@xor.obsecurity.org> References: <20010830222555.M49399-100000@gold.inlimbo.org> <20010830184700.D27546@xor.obsecurity.org> <20010831132554.T21855@zeus.theinternet.com.au> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-md5; protocol="application/pgp-signature"; boundary="ibTvN161/egqYuK8" Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <20010831132554.T21855@zeus.theinternet.com.au>; from akm@theinternet.com.au on Fri, Aug 31, 2001 at 01:25:54PM +1000 Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org --ibTvN161/egqYuK8 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Fri, Aug 31, 2001 at 01:25:54PM +1000, Andrew Kenneth Milton wrote: > +-------[ Kris Kennaway ]---------------------- > | On Thu, Aug 30, 2001 at 10:28:55PM +0200, Blaz Zupan wrote: > | > I usually cvsup RELENG_4_3 to update our servers, but this time I wan= ted to > | > quickly patch the lpd hole by simply installing the update package. > | > Unfortunatelly it complains that it can only be installed on 4.3-RELE= ASE. > | > Well, I *am* running 4.3-RELEASE, but patched up to 4.3-RELEASE-p14. = I believe > | > the +INSTALL script should support this, what do others think? > |=20 > | It was a deliberate decision to only support 4.3-RELEASE, not > | arbitrary cvsup dates of RELENG_4_3 so we don't have to worry about > | possible weird package interactions with changes on that branch at > | some point. Basically, we expect that if you can cvsup once, you can > | cvsup twice :) >=20 > Do they work with arbitrary combinations of binary updates ? Yes, because I know what packages have been installed and can introduce appropriate dependencies to ensure correct ordering, if we have the need. I can't do that if someone cvsups and then installs a binary upgrade. Kris --ibTvN161/egqYuK8 Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (FreeBSD) Comment: For info see http://www.gnupg.org iD8DBQE7jwTJWry0BWjoQKURAqpGAJ9tGg4mz1tEryyzhc88RPlBUeNGgwCg8MW2 nWpHEN7Qrg7JFV8RtJyEnFE= =ST77 -----END PGP SIGNATURE----- --ibTvN161/egqYuK8-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message