From owner-freebsd-questions Mon Dec 9 8:52:41 2002 Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 0ECFA37B401 for ; Mon, 9 Dec 2002 08:52:40 -0800 (PST) Received: from mcesr.etat.lu (dynamic4.etat.lu [194.154.200.100]) by mx1.FreeBSD.org (Postfix) with ESMTP id D7D0343EC2 for ; Mon, 9 Dec 2002 08:52:38 -0800 (PST) (envelope-from didier.wiroth@mcesr.etat.lu) Received: from [148.110.43.149] (HELO lucifer) by mcesr.etat.lu (CommuniGate Pro SMTP 3.5.9) with ESMTP id 689198 for freebsd-questions@FreeBSD.ORG; Mon, 09 Dec 2002 17:46:39 +0100 Reply-To: From: "Didier Wiroth" To: Subject: Jail source patching question Date: Mon, 9 Dec 2002 17:52:25 +0100 Organization: MCESR Message-ID: <000101c29fa3$59c2cee0$952b6e94@lucifer> X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook, Build 10.0.4024 Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1106 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG Hey, When you have a security issue or you have to modify the source code of a daemon, you have to patch the source recompile and install the new daemon. How do you do that? Let's take an example: The ssh daemon I have patched the daemon with: cd /usr/src/crypto/openssh diff < /pathtopatch/file.diff And now, how can I install the new daemon to the host and the different jails? Would this work (after having applied the patches to the source code of course) for example for sshd? Installing at the host first: 1) make 2) make install I assume that this would work without problems but now up to the jails: The first jail now: (We are still in /usr/src/crypto/openssh) 1) make DESTDIR=/jail/first_jail/ 2) make DESTDIR=/jail/first_jail/ install The second jail: 1) make DESTDIR=/jail/second_jail/ 2) make DESTDIR=/jail/second_jail/ install Would this fail and render my ssh daemon unusable, or would this work and would this work for +/- every daemon? To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message