Date: Thu, 18 Sep 2003 12:28:08 -0700 (PDT) From: John Kozubik <john@kozubik.com> To: "V. Jones" <vjones62@earthlink.net> Cc: freebsd-security@freebsd.org Subject: Re: Patching jails Message-ID: <20030918122317.C82609-100000@kozubik.com> In-Reply-To: <13458237.1063904367933.JavaMail.root@thecount.psp.pas.earthlink.net>
next in thread | previous in thread | raw e-mail | index | archive | help
Hello, On Thu, 18 Sep 2003, V. Jones wrote: > I'm going to apply the ssh patch. Applying it to the "real" server > seems straightforward enough, but I'm wondering what the right procedure > is to apply this patch to my jailed servers. No special procedure is necessary. Log into the jail, su to root, and follow the instructions in the SA - they will work just fine. You may or may not have a populated /usr/src/secure though - you can get it with cvsup, however it is faster and easier to simply tar up the /usr/src/secure on the base system and untar it in the jail. I presume this to be safe, as there should never be a version mismatch between the base system and the jails running on it. The procedure in the sendmail SA that was released yesterday will also work fine inside of a jail. Again, make sure you have /usr/src/usr.sbin and /usr/src/lib, and so on in the jail. ----- John Kozubik - john@kozubik.com - http://www.kozubik.com
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20030918122317.C82609-100000>