Date: Tue, 24 Jun 2003 10:14:16 +0100 From: Matthew Seaman <m.seaman@infracaninophile.co.uk> To: Jim Xochellis <dxoch@escape.gr> Cc: freebsd-questions@freebsd.org Subject: Re: About Patches Message-ID: <20030624091416.GA79006@happy-idiot-talk.infracaninophile.co.uk> In-Reply-To: <57B9C36C-A621-11D7-A760-003065C4E486@escape.gr> References: <200306232048.h5NKmF700943@sheol.localdomain> <57B9C36C-A621-11D7-A760-003065C4E486@escape.gr>
next in thread | previous in thread | raw e-mail | index | archive | help
--u3/rZRmxL6MmkK24 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Tue, Jun 24, 2003 at 11:53:36AM +0300, Jim Xochellis wrote: > Hi, >=20 > On Monday, June 23, 2003, at 11:48 PM, D J Hawkey Jr wrote: >=20 > >In article <5BC51B1E-A558-11D7-B54A-003065C4E486_escape.gr@ns.sol.net>, > > dxoch@escape.gr writes: > >>Hi List, > >> > >>I need to apply some security patches to my FreeBSD(i386) 4.7-RELEASE > >>box and I am concerned about the possibility that I could actually=20 > >>harm > >>my system while trying to apply this patches. (I am not a Unix guru > >>actually) > > > >Is there any particular reason you don't want to use cvsup(1) against > >the "security" or "current" branches? Release 4.7 is still supported by > >the Security Team, after all. See the Handbook if you don't know what > >this means. > > >=20 > Recompiling the whole system seems a little scary to me, but I thing=20 > that I am going to do it anyway! Yes -- if you apply patches or you use cvsup(1), you get updated source code, which you've got to compile and install -- either the whole system or just the parts affected by the patch. This seems alarming to the uninitiated, but once you've done it a few times, it becomes routine. On the other hand, check out the security/freebsd-update port and it's associated web site at http://www.daemonology.net/freebsd-update/ -- this isn't an 'official' part of FreeBSD yet (surely only a matter of time, though). This is a very interesting system for generating minimally sized binary patches that can be applied directly to a system without requiring a compilation step. Cheers, Matthew --=20 Dr Matthew J Seaman MA, D.Phil. 26 The Paddocks Savill Way PGP: http://www.infracaninophile.co.uk/pgpkey Marlow Tel: +44 1628 476614 Bucks., SL7 1TH UK --u3/rZRmxL6MmkK24 Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.2 (FreeBSD) iD8DBQE++BZodtESqEQa7a0RAvPmAJ9mEKqs/xP7bUebviNRJ+0AR5ZwDQCeP5xD 8yMPbhJSJcDHz7/BKn297BY= =veim -----END PGP SIGNATURE----- --u3/rZRmxL6MmkK24--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20030624091416.GA79006>