From owner-freebsd-questions@FreeBSD.ORG Mon Oct 6 15:32:01 2008 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id D954E10656E8 for ; Mon, 6 Oct 2008 15:32:01 +0000 (UTC) (envelope-from freebsd@optiksecurite.com) Received: from tomts52-srv.bellnexxia.net (tomts52-srv.bellnexxia.net [209.226.175.177]) by mx1.freebsd.org (Postfix) with ESMTP id 7373A8FC27 for ; Mon, 6 Oct 2008 15:32:01 +0000 (UTC) (envelope-from freebsd@optiksecurite.com) Received: from toip37-bus.srvr.bell.ca ([67.69.240.38]) by tomts52-srv.bellnexxia.net (InterMail vM.5.01.06.13 201-253-122-130-113-20050324) with ESMTP id <20081006153200.BGIY1589.tomts52-srv.bellnexxia.net@toip37-bus.srvr.bell.ca>; Mon, 6 Oct 2008 11:32:00 -0400 X-IronPort-Anti-Spam-Filtered: true X-IronPort-Anti-Spam-Result: ApoEADfG6UhKD7BS/2dsb2JhbAC2HoUzgWo Received: from mtrlpq02-1242542162.sdsl.bell.ca (HELO [69.69.69.183]) ([74.15.176.82]) by toip37-bus.srvr.bell.ca with ESMTP; 06 Oct 2008 11:31:40 -0400 Message-ID: <48EA2F6C.20907@optiksecurite.com> Date: Mon, 06 Oct 2008 11:31:56 -0400 From: FreeBSD User-Agent: Thunderbird 2.0.0.17 (Windows/20080914) MIME-Version: 1.0 To: matt donovan References: <48E8F253.6010206@optiksecurite.com> <28283d910810051047i30de4c4bsd1e8526474009c40@mail.gmail.com> <48E91947.4080204@optiksecurite.com> <48E98751.10605@optiksecurite.com> In-Reply-To: <48E98751.10605@optiksecurite.com> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 8bit Cc: freebsd-questions@freebsd.org Subject: Re: Freebsd-update with a custom kernel and jails X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 06 Oct 2008 15:32:01 -0000 FreeBSD a écrit : > FreeBSD a écrit : >> matt donovan a écrit : >>> On Sun, Oct 5, 2008 at 12:58 PM, FreeBSD >>> wrote: >>> >>> >>>> There is my situation: >>>> I want to be able to use freebsd-update to update a FreeBSD 7.0-Release >>>> installation to the latest security patches (I want an update and >>>> not an >>>> upgrade if I understand correctly). Where this gets more complicated >>>> is that >>>> I need a custom kernel (for ULE, pf and ALTQ while also disabling some >>>> devices I'll never need) and I want to use jails to isolate every >>>> services >>>> (Apache and MySQL by now). >>>> >>>> So, I read at some places that you can't use freebsd-update with a >>>> custom >>>> kernel, but I'm not sure if this apply only in the case of an upgrade >>>> between release or if I'll need to manually recompile the kernel >>>> with every >>>> use of freebsd-update. >>>> >>>> I also read that it's possible to update the jails from the host system >>>> with the -b flag. In this case, I supposed that I need to update the >>>> host >>>> system before the jail, but is the procedure going to be exactly the >>>> same? >>>> >>>> yes all you need to do is freebsd-update fetch install your kernel >>>> won't be >>>> updated but your userland will >>>> >>>> >> So it is right to say that the custom kernel "problem" applies only >> when upgrading to a newer release? >> >> All I have to do is 'freebsd-update fetch install' to update the base >> system then 'freebsd-update -b /usr/jail/jail_name fetch install' to >> update the jails? >> >> I hope so because it would be very impressing :) >> >> Martin > Another question just came to my head: May I update the src before > compiling my custom kernel or should I keep the original src that > shipped with the release to be able to use freebsd-update? > > Thank you very much for your help! > > Martin > I just tried it (freebsd-update fetch install) and after a reboot uname -a still shows FreeBSD 7.0-RELEASE #0 while freebsd-update told me I was going to update to 7.0-RELEASE-p5. But, I noticed that the files that needed to be updated were updated. I'm a little confused...can someone explain this behaviour to me? Thanks, Martin