Date: Wed, 20 Nov 1996 11:02:22 +1030 (CST) From: Michael Smith <msmith@atrad.adelaide.edu.au> To: cschuber@orca.gov.bc.ca Cc: pst@shockwave.com, cschuber@orca.gov.bc.ca, security-officer@FreeBSD.org, freebsd-security@FreeBSD.org Subject: Re: Futile rexecd holes Message-ID: <199611200032.LAA03928@genesis.atrad.adelaide.edu.au> In-Reply-To: <199611191816.KAA06551@passer.osg.gov.bc.ca> from Cy Schubert - ITSD Open Systems Group at "Nov 19, 96 10:16:18 am"
next in thread | previous in thread | raw e-mail | index | archive | help
Cy Schubert - ITSD Open Systems Group stands accused of saying: > This is the first I've heard of a "service pack update." What is a "service > pack update?" Is it similar in concept to Sun's SunSolve CDROM or IBM's PUT > (Program Update Tape)? It sounds to me like a concept-in-progress. > How does one get a "service pack update?" I would say that if someone were to produce binary update kits for things like this, that people would be very happy. Basically you do something like this : - Install your reference system (eg. 2.1.6). - Make an MD5 listing of all the files in the system, save this as the "2.1.6 MD5 fingerprint". - Patch your sources, make world, so now you have 2.1.6p1. Make another MD5 listing of all the files in the system, save this as the "2.1.6p1 fingerprint". Make a note of the checkout time of the tree you did your build from so that you can reproduce it later. - Compare the two listings, produce a list of files that have changed between the two patchlevels. Seperate the files based on their dist categories (bin, manpages, etc). - Make tarballs of the changed files, advertise them as the "level 1 patchkit". - Repeat the process when more changes appear. Don't be afraid to require that all kits be applied in order. -- ]] Mike Smith, Software Engineer msmith@gsoft.com.au [[ ]] Genesis Software genesis@gsoft.com.au [[ ]] High-speed data acquisition and (GSM mobile) 0411-222-496 [[ ]] realtime instrument control. (ph) +61-8-8267-3493 [[ ]] Unix hardware collector. "Where are your PEZ?" The Tick [[
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199611200032.LAA03928>