Date: Wed, 19 Nov 2003 23:08:06 -0800 From: "Kevin McKay" <kevin@dhap.com> To: "Bryan Cassidy" <b_cassidy@bellsouth.net>, "Kevin McKay" <kevin@dhapdigital.com> Cc: freebsd-questions@freebsd.org Subject: Re: Security question Message-ID: <001201c3af35$0f565730$0599a440@linuxops.com> References: <000801c3ae5b$44595cf0$0599a440@linuxops.com><44fzgk4egj.fsf@be-well.ilk.org><3FBBA719.5010404@dhap.com> <20031120011849.644d36fb.b_cassidy@bellsouth.net>
next in thread | previous in thread | raw e-mail | index | archive | help
Thanks Bryan, Two other questions, if I do a pkg_add -r openssh today and then the same command in 6 months will it always be the same precompiled binary sitting on the server? Or are they updated with patches from time to time? how does the openssh port binary differ from the oepnssh system binary? I have looked all through the handbook and faq's but could not find a definitive answer. Thanks Kevin McKay ----- Original Message ----- From: "Bryan Cassidy" <b_cassidy@bellsouth.net> To: "Kevin McKay" <kevin@dhapdigital.com> Cc: <freebsd-questions@freebsd.org> Sent: Wednesday, November 19, 2003 11:18 PM Subject: Re: Security question > I don't know anything about using sysinstall for security > patches/upgrades etc. WHat your looking for I think is cvsup. Please > read the handbook on Using CVSUP to get the latests source updates, > security patches for your release and even updating to a different > RELEASE or -CURRENT or -STABLE. > > On Wed, 19 Nov 2003 09:23:37 -0800 > Kevin McKay <kevin@dhapdigital.com> wrote: > > > So it will not just grab the latest patched binaries for 5.1? I am not > > > > sure I understand. Is it just for updating between releases and not > > for keeping the current release up to date? > > > > Kevin > > > > Lowell Gilbert wrote: > > > > >"Kevin McKay" <kevin@dhap.com> writes: > > > > > > > > > > > >>I have read through the documentation but have not been able to find > > >>a definite answer. I am running a pretty core install of 5.1 minimal > > >>+ bind9, postfix, apache, ssh, no ports collection. Here is my > > >>question. When I run the binary update from sysinstall will that > > >>take care of the earlier ssh vulnerability and update apache postfix > > >>and bind to the most current version? > > >> > > >> > > > > > >You normally need to run the sysinstall from the version you're > > >updating to. You could configure your system's sysinstall to load in > > >the later version, and it should be compatible, but I don't know the > > >syntax for that offhand... > > > > > > > > > > _______________________________________________ > > freebsd-questions@freebsd.org mailing list > > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > > To unsubscribe, send any mail to > > "freebsd-questions-unsubscribe@freebsd.org" >
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?001201c3af35$0f565730$0599a440>