Date: Sun, 13 Jun 2004 01:08:32 +0300 From: Haim Ashkenazi <haim@babysnakes.org> To: David Wolfskill <david@catwhisker.org> Cc: freebsd-stable@freebsd.org Subject: Re: keeping my freebsd secure... Message-ID: <1087078111.18155.2.camel@parker.babysnakes.org> In-Reply-To: <200406121255.i5CCtIpS009426@bunrab.catwhisker.org> References: <200406121255.i5CCtIpS009426@bunrab.catwhisker.org>
next in thread | previous in thread | raw e-mail | index | archive | help
--=-s5Phkg/GG/ogI7Uyurgo
Content-Type: text/plain
Content-Transfer-Encoding: quoted-printable
On Sat, 2004-06-12 at 15:55, David Wolfskill wrote:
> First, there will be *some* downtime. However, it should be a matter of
> seconds, not minutes (or more), as it is quite possible to compile a new
> port before uninstalling the old one.
>=20
> Indeed, "portupgrade" (in the ports) does just that.
>=20
> Another way you can help yourself is have another system for doing builds=
,
> one that does not provide "externally visible" services. You could then
> build packages on that system, for installation on your "production"
> systems.
>=20
> That said, if you really want *no* downtime, you will need to investigate
> HA ("high availability") system design, and have multiple (at least 2)
> machines providing any given service, with a mechanism for failover.
well, I guess I can live with a few seconds of downtime.=20
thanx
--=20
Haim
--=-s5Phkg/GG/ogI7Uyurgo
Content-Type: application/pgp-signature; name=signature.asc
Content-Description: This is a digitally signed message part
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)
iD8DBQBAy37ehwMtGgRKzT0RAh0yAKCEtNQ92ZpSSxDA4Q3+B9JJdfFnuQCdEZZq
ilI6P0gXVxPV/XOq+pwckRU=
=98JN
-----END PGP SIGNATURE-----
--=-s5Phkg/GG/ogI7Uyurgo--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?1087078111.18155.2.camel>