From owner-freebsd-security Thu Nov 29 21:13:16 2001 Delivered-To: freebsd-security@freebsd.org Received: from mail.gmx.net (mail.gmx.net [213.165.64.20]) by hub.freebsd.org (Postfix) with SMTP id 8AD0E37B405 for ; Thu, 29 Nov 2001 21:13:06 -0800 (PST) Received: (qmail 28295 invoked by uid 0); 30 Nov 2001 05:13:05 -0000 Received: from p3ee20a89.dip.t-dialin.net (HELO mail.gsinet.sittig.org) (62.226.10.137) by mail.gmx.net (mp011-rz3) with SMTP; 30 Nov 2001 05:13:05 -0000 Received: (qmail 56989 invoked from network); 30 Nov 2001 02:42:43 -0000 Received: from shell.gsinet.sittig.org (192.168.11.153) by mail.gsinet.sittig.org with SMTP; 30 Nov 2001 02:42:43 -0000 Received: (from sittig@localhost) by shell.gsinet.sittig.org (8.11.3/8.11.3) id fATJ4S248879 for freebsd-security@FreeBSD.ORG; Thu, 29 Nov 2001 20:04:28 +0100 (CET) (envelope-from sittig) Date: Thu, 29 Nov 2001 20:04:28 +0100 From: Gerhard Sittig To: freebsd-security@freebsd.org Subject: Re: Updating ssh Message-ID: <20011129200427.C21918@shell.gsinet.sittig.org> Mail-Followup-To: freebsd-security@FreeBSD.ORG References: <4.3.2.7.2.20011128151923.041d0710@localhost> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <4.3.2.7.2.20011128151923.041d0710@localhost>; from brett@lariat.org on Wed, Nov 28, 2001 at 03:26:40PM -0700 Organization: System Defenestrators Inc. Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Wed, Nov 28, 2001 at 15:26 -0700, Brett Glass wrote: > > This reflects a common problem in FreeBSD. When you install a port or > compile a newer version of an application which is included in the base > install, it usually goes into /usr/local, so the system keeps on using > the old version (which is ahead of the newer one in the path). What's > more, the configuration files are often required to be in different > places. [ ... ] > > Perhaps FreeBSD should put these things in /usr/local from the get-go? How sick is the idea of having some mailwrapper alike for those program suites (ssh, perl, named, cc, who else?) while keeping the actual programs in some libexec directory (the base system versions) or /usr/local (the ports)? So that the executable always can be found in the one and only known and persistent location (/usr/bin) while the "redirection mess" at installation or update time is reduced to a port's "make install" and editing just *one* config file (the wrapper conf). The only downside I can see is increased complexity (the company(id?) of flexibility, I guess ...) and increased chances for somebody of those who didn't like mailwrapper to begin with screaming "bloat!" ... The other approach -- installing ports in a location where base components reside -- will always be troublesome. An "make installworld" will clobber the installed port. While "make install" of a port with a destination in /usr/bin will clobber base components. In my book editing config files is the most natural way of administering a UNIX box and changing behaviour. :) Not compiling certain base components by means of NO* in make.conf seems to be just a bonus and time saving option. BTW: Those who are familiar with and like replacing base components with executables from the ports collection are still free to replace the wrappers. :> virtually yours 82D1 9B9C 01DC 4FB4 D7B4 61BE 3F49 4F77 72DE DA76 Gerhard Sittig true | mail -s "get gpg key" Gerhard.Sittig@gmx.net -- If you don't understand or are scared by any of the above ask your parents or an adult to help you. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message