From owner-freebsd-jail@FreeBSD.ORG Mon Dec 24 18:04:38 2007 Return-Path: Delivered-To: freebsd-jail@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id B978016A418 for ; Mon, 24 Dec 2007 18:04:38 +0000 (UTC) (envelope-from andrew.hotlab@hotmail.com) Received: from bay0-omc3-s26.bay0.hotmail.com (bay0-omc3-s26.bay0.hotmail.com [65.54.246.226]) by mx1.freebsd.org (Postfix) with ESMTP id 8B22213C46E for ; Mon, 24 Dec 2007 18:04:38 +0000 (UTC) (envelope-from andrew.hotlab@hotmail.com) Received: from BAY138-DS1 ([64.4.49.28]) by bay0-omc3-s26.bay0.hotmail.com with Microsoft SMTPSVC(6.0.3790.3959); Mon, 24 Dec 2007 10:04:38 -0800 X-Originating-IP: [217.133.1.92] X-Originating-Email: [andrew.hotlab@hotmail.com] Message-ID: From: "Andrew Hotlab" In-Reply-To: <20071220083441.uo6hmypq84ssoowc@webmail.leidinger.net> <20071220164656.1acd2b45@deskjail> To: "FreeBSD-Jail" References: <20071220083441.uo6hmypq84ssoowc@webmail.leidinger.net> <20071220164656.1acd2b45@deskjail> Date: Mon, 24 Dec 2007 19:04:31 +0100 X-Unsent: 1 MIME-Version: 1.0 Content-Type: text/plain; format=flowed; charset="iso-8859-1"; reply-type=original Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal Importance: Normal X-Mailer: Microsoft Windows Live Mail 12.0.1606 X-MimeOLE: Produced By Microsoft MimeOLE V12.0.1606 X-OriginalArrivalTime: 24 Dec 2007 18:04:38.0185 (UTC) FILETIME=[72C7B990:01C84657] Cc: Alexander@Leidinger.net Subject: Re: How to better update a jail host system X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 24 Dec 2007 18:04:38 -0000 -------------------------------------------------- From: "Alexander Leidinger" Sent: Thursday, December 20, 2007 4:46 PM To: ; "Andrew Hotlab" Subject: Re: How to better update a jail host system >> > Regarding the distributions which you haven't installed: you can >> > exclude parts from building/installation. If you have a 7.x system, >> > you can do "man src.conf" for all the options >> > (http://www.freebsd.org/cgi/man.cgi?query=src.conf&apropos=0&sektion=0& >> > manpath=FreeBSD+7.0-RELEASE&format=html). 6.x has similar options, but >> > IIRC you have to specify them in >> > make.conf. I've spent some time on the past days to find how to build a world which contains only the "Binary base" and "man" distributions (as I always select from the sysinstall menu options during the first server setup), but I didn't found any article or man page which helped me. When I'll upgrade my host system with the make world method, I wish build only the FreeBSD components that were installed by the first binary setup. Anyone can kindly redirect me to the right place to find how to do it? (if you think it makes sense doing such a procedure, of course). Andrew I wish a Merry Christmas to everyone who read this list! From owner-freebsd-jail@FreeBSD.ORG Tue Dec 25 01:09:57 2007 Return-Path: Delivered-To: freebsd-jail@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 4514116A418 for ; Tue, 25 Dec 2007 01:09:57 +0000 (UTC) (envelope-from root@dragon.doktercom.nl) Received: from dragon.doktercom.nl (doktercom.xs4all.nl [80.126.43.171]) by mx1.freebsd.org (Postfix) with ESMTP id 0471413C478 for ; Tue, 25 Dec 2007 01:09:56 +0000 (UTC) (envelope-from root@dragon.doktercom.nl) Received: by dragon.doktercom.nl (Postfix, from userid 0) id 9871F21C839; Tue, 25 Dec 2007 01:50:41 +0100 (CET) Mime-Version: 1.0 X-Newsreader: knews 1.0b.1 X-realFrom: Yes, it's not .invalid References: In-Reply-To: From: root@dragon.doktercom.nl (Operator) X-Original-Newsgroups: lists.freebsd.jail To: "Andrew Hotlab" Content-Type: text/plain; charset=us-ascii Message-Id: <20071225005041.9871F21C839@dragon.doktercom.nl> Date: Tue, 25 Dec 2007 01:50:41 +0100 (CET) Cc: freebsd-jail@freebsd.org Subject: Re: How to better update a jail host system X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 25 Dec 2007 01:09:57 -0000 In article , "Andrew Hotlab" writes: [...] > I've spent some time on the past days to find how to build a world which > contains only the "Binary base" and "man" distributions (as I always select > from the sysinstall menu options during the first server setup), but I > didn't found any article or man page which helped me. Follow /usr/src/Makefile to build the host. Follow /etc/defaults/make.conf for tuning and stripping... Ehhh!!! Its gone on my 6.3, It was there in 6.2 and stil is on my 5.5. > When I'll upgrade my host system with the make world method, I wish build > only the FreeBSD components that were installed by the first binary setup. > Anyone can kindly redirect me to the right place to find how to do it? (if > you think it makes sense doing such a procedure, of course). You can update your jail with "ezjail-admin update -i" (from /usr/obj) Put things like: NO_ATM=true NO_GAMES=true NO_I4B=true NO_PROFILE=true NO_SHAREDOCS=true in your hosts /etc/make.conf Mumble... where is my /etc/defaults/make.conf on my 6.3.... Ah, found it! man make.conf /usr/share/examples/etc/make.conf From owner-freebsd-jail@FreeBSD.ORG Tue Dec 25 05:14:00 2007 Return-Path: Delivered-To: freebsd-jail@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 0033816A468 for ; Tue, 25 Dec 2007 05:13:59 +0000 (UTC) (envelope-from jon.passki@hursk.com) Received: from fk-out-0910.google.com (fk-out-0910.google.com [209.85.128.191]) by mx1.freebsd.org (Postfix) with ESMTP id 9CC0113C455 for ; Tue, 25 Dec 2007 05:13:59 +0000 (UTC) (envelope-from jon.passki@hursk.com) Received: by fk-out-0910.google.com with SMTP id b27so2878241fka.11 for ; Mon, 24 Dec 2007 21:13:58 -0800 (PST) Received: by 10.78.200.20 with SMTP id x20mr6407876huf.16.1198558137348; Mon, 24 Dec 2007 20:48:57 -0800 (PST) Received: by 10.78.192.11 with HTTP; Mon, 24 Dec 2007 20:48:57 -0800 (PST) Message-ID: Date: Mon, 24 Dec 2007 22:48:57 -0600 From: "Jon Passki" To: "Andrew Hotlab" In-Reply-To: MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Content-Disposition: inline References: Cc: FreeBSD-Jail Subject: Re: How to better update a jail host system X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 25 Dec 2007 05:14:00 -0000 On 12/19/07, Andrew Hotlab wrote: [snip] > All that is working fine now, but I wonder if I could speed up the whole process, by switching to the binary update method. By using the freebsd-update(8) utility on the host I think to maintain the system cleaner (this utility only updates the installed distributions) and to reduce the administrative effort (no mergemaster(8) required, I'm right?). > > Do you think my thinking is right, or there are some aspects I'm missing? (As I said, I'm not a very experienced FreeBSD sysadmin) :) I've wrestled with jail update schemes for a while now. Here's what I've tried: --) jail(8) method (direct output of make world) --) Taking make world and creating a tarball. Use that tarball for a custom port input and use the port to create the jail (make JAIL_IP=1.2.3.4 JAIL_NAME=blah), recording everything as a package (still in use) --) Use subversion to store the binaries and have subversion drive things (not very complex w/ base, but becomes highly complex with ports and one-off integration; got my docs, but never went into production) I've come to realize I had the "Not Invented Here" [1] syndrome. This still existed even though I mainly track RELENG_6_2 (6.2-RELEASE Security branch) and have maybe 5 human hours a week at most to devote to FreeBSD sysadmin. Colin Percival has already solved how to update the base system with minimal effort via freebsd-update(8). I'm now embracing the FreeBSD way of doing things. You can re-create your binary jail setup easily from sysinstall: sysinstall _ftpPath=ftp://ftp.FreeBSD.org/pub/FreeBSD/ nonInteractive=yes mediaSetFTP releaseName=6.2-RELEASE dists=base distSetCustom installRoot=/path/to/jail installCommit Then, the only thing you have to manage is packages. With a patched freebsd-update [2], you can even update from 6.2 to 6.3. If ezjail supports a binary tarball update, it would be trivial to take the output of the sysinstall and freebsd-update and roll one. I dunno if your thinking is OK, but mine wasn't. Now, hopefully mine will be :-) [1] http://en.wikipedia.org/wiki/Not_Invented_Here [2] http://www.daemonology.net/blog/2007-11-10-freebsd-minor-version-upgrade.html Cheers, Jon From owner-freebsd-jail@FreeBSD.ORG Sat Dec 29 23:41:59 2007 Return-Path: Delivered-To: freebsd-jail@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id CE65116A421 for ; Sat, 29 Dec 2007 23:41:59 +0000 (UTC) (envelope-from alexander@leidinger.net) Received: from redbull.bpaserver.net (redbullneu.bpaserver.net [213.198.78.217]) by mx1.freebsd.org (Postfix) with ESMTP id 84FA113C467 for ; Sat, 29 Dec 2007 23:41:59 +0000 (UTC) (envelope-from alexander@leidinger.net) Received: from outgoing.leidinger.net (p54A5416D.dip.t-dialin.net [84.165.65.109]) by redbull.bpaserver.net (Postfix) with ESMTP id 95EB62E133; Sun, 30 Dec 2007 00:41:43 +0100 (CET) Received: from webmail.leidinger.net (webmail.Leidinger.net [192.168.1.102]) by outgoing.leidinger.net (Postfix) with ESMTP id EEE427B636; Sun, 30 Dec 2007 00:41:39 +0100 (CET) Received: (from www@localhost) by webmail.leidinger.net (8.14.1/8.13.8/Submit) id lBTNfdco041458; Sun, 30 Dec 2007 00:41:39 +0100 (CET) (envelope-from Alexander@Leidinger.net) Received: from router1.Leidinger.net (router1.Leidinger.net [192.168.1.42]) by webmail.leidinger.net (Horde MIME library) with HTTP; Sun, 30 Dec 2007 00:41:39 +0100 Message-ID: <20071230004139.yvolsno8gsks0k0g@webmail.leidinger.net> X-Priority: 3 (Normal) Date: Sun, 30 Dec 2007 00:41:39 +0100 From: Alexander Leidinger To: Andrew Hotlab References: <20071220083441.uo6hmypq84ssoowc@webmail.leidinger.net> <20071220164656.1acd2b45@deskjail> In-Reply-To: MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8; DelSp="Yes"; format="flowed" Content-Disposition: inline Content-Transfer-Encoding: quoted-printable User-Agent: Internet Messaging Program (IMP) H3 (4.1.4) / FreeBSD-7.0 X-BPAnet-MailScanner-Information: Please contact the ISP for more information X-BPAnet-MailScanner: Found to be clean X-BPAnet-MailScanner-SpamCheck: not spam, SpamAssassin (not cached, score=-13.504, required 6, BAYES_00 -15.00, MIME_QP_LONG_LINE 1.40, RDNS_DYNAMIC 0.10) X-BPAnet-MailScanner-From: alexander@leidinger.net X-Spam-Status: No Cc: FreeBSD-Jail Subject: Re: How to better update a jail host system X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 29 Dec 2007 23:41:59 -0000 Quoting Andrew Hotlab (from Mon, 24 Dec =20 2007 19:04:31 +0100): > -------------------------------------------------- > From: "Alexander Leidinger" > Sent: Thursday, December 20, 2007 4:46 PM > To: ; "Andrew Hotlab" > Subject: Re: How to better update a jail host system > >>>> Regarding the distributions which you haven't installed: you can >>>> exclude parts from building/installation. If you have a 7.x system, >>>> you can do "man src.conf" for all the options >>>> (http://www.freebsd.org/cgi/man.cgi?query=3Dsrc.conf&apropos=3D0&sektio= n=3D0& >>>> manpath=3DFreeBSD+7.0-RELEASE&format=3Dhtml). 6.x has similar options, = but >>>> IIRC you have to specify them in >>>> make.conf. > > I've spent some time on the past days to find how to build a world > which contains only the "Binary base" and "man" distributions (as I > always select from the sysinstall menu options during the first server > setup), but I didn't found any article or man page which helped me. I don't know exactly what is in the binary and man dists, but what you =20 need to do is either to just grab the new dists from an FTP server and =20 extract them over the old ones, or to have a look what is installed by =20 a make world what is not in those dists and have a look for WITHOUT_ =20 knobs which exclude those parts from the build/install. There may be =20 not enough WITHOU_ knobs to produce those dists, as they are generated =20 in a different way (make release). Bye, Alexander. --=20 LOVE: =09I'll let you play with my life if you'll let me play with yours. http://www.Leidinger.net Alexander @ Leidinger.net: PGP ID =3D B0063FE7 http://www.FreeBSD.org netchild @ FreeBSD.org : PGP ID =3D 72077137