From owner-freebsd-questions@FreeBSD.ORG Thu Mar 18 07:49:24 2010 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 476FC1065673 for ; Thu, 18 Mar 2010 07:49:24 +0000 (UTC) (envelope-from tajudd@gmail.com) Received: from mail-pz0-f198.google.com (mail-pz0-f198.google.com [209.85.222.198]) by mx1.freebsd.org (Postfix) with ESMTP id 1B1DB8FC08 for ; Thu, 18 Mar 2010 07:49:24 +0000 (UTC) Received: by pzk36 with SMTP id 36so1430862pzk.8 for ; Thu, 18 Mar 2010 00:49:23 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:in-reply-to:references :date:message-id:subject:from:to:cc:content-type :content-transfer-encoding; bh=89p9SesWPYCFvPpr1drj9V29PJrhH1Tn8Eq1y10pN8U=; b=Q+ziglqCShC+AUq6yvbSrcJpEZOKXkIK6PzLcrF8NIVKTvLWAre9B6JyoYhmxFzlAc rc8XcnvzpUc/PoJFASM72mCXleFFMxp9vnzdBlenJQT2hlNIp3jrvzed6BUBcH3jW/Um FBVrVmKLkrjbtLYldvGtEHR5AyjYnV9eF+AiQ= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type:content-transfer-encoding; b=gwMf733aUt0SPeTCBIBQOREFpWydNGPm9HG5gVabqboZ2TK+ecd/Jcr9Lmx041ik3+ 2sWonFyU3j8Vc99InvPjXNTOCHcSZBui38mFj0kfp83FjHGLaBav48U8gEv4Kt/2EXSC D5qUaAk3Dmthy4fSVzILd47pr2mrj/hVO83wg= MIME-Version: 1.0 Received: by 10.114.188.30 with SMTP id l30mr869243waf.134.1268898563640; Thu, 18 Mar 2010 00:49:23 -0700 (PDT) In-Reply-To: <3f1c29e71003170745u55a4fad2rd8c6f39d02fa968f@mail.gmail.com> References: <3f1c29e71003170656u1b932fd2v37f5062440653e3b@mail.gmail.com> <0b9982274818d454f23bc89ac74d30f5@asterix.area536.com> <3f1c29e71003170745u55a4fad2rd8c6f39d02fa968f@mail.gmail.com> Date: Thu, 18 Mar 2010 01:49:23 -0600 Message-ID: From: Tim Judd To: =?KOI8-R?B?4c7Uz84g68zF09M=?= Content-Type: text/plain; charset=KOI8-R Content-Transfer-Encoding: quoted-printable Cc: freebsd-questions@freebsd.org Subject: Re: Which version of FreeBSD is it? X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 18 Mar 2010 07:49:24 -0000 On 3/17/10, =E1=CE=D4=CF=CE =EB=CC=C5=D3=D3 wrote: > That is what I suspected for. > > What is the most safe way to upgrade it, remembering that this is product= ion > server and I have to keep it working properly? > > 6.2-RC1 -> 6.2 RELEASE -> 7.2 RELEASE -> 8.0 RELEASE, or somehow in this > style? Honestly, if a system is going to go through that large of a change, here's what I'd recommend. First scenario is the quickest running, then continue with the second to keep it up-to-date Since *ALL* configuration of base and ports is done by /etc and /usr/local/etc, back up those two directories to a tarball. they're all text files so it should compress very well. Note the packages currently on your system with a simple pkg_info. This gets you a prime data set that can restore 99%+ functionality if used. Scenario 1: pkg_info >/root/pkg_info.txt tar -cPpzf /root/62rc1-config.tgz /etc /usr/local/etc /root/pkg_info.txt ** keep this /root/62rc1-config.tgz archive in a safe 2 spots. 2 spots. fresh install of 8.0R on the box. extract, at minimum, the /etc entries from the tarball kept safely away from the box for each package listed in pkg_info.txt, install from packages that package (just the QUICK way to bring a box to a usable state) extract the /usr/local/etc from the tarball. **TRY** to restart your services. The reason I state 'try' is that config files may have changed from a package version a.b to x.y, so you may need to tweak your config files to match the current package. Now that you have a live box again, able to serve requests, it's time to keep it maintained. Scenario 2: install portaudit run portaudit, fix any vulnerabilities ** at this time, your system is safe from most vulnerabilities run your favorite port management software to update the rest of the ports who do not have vulnerability advisories. I've used this tactic before, works well and WILL be faster than you updating your system from 6.2 to 6.4 to 7.2 to 8.0 Let me know if you have questions. --TJ