Date: Sat, 1 Dec 2001 11:03:12 -0600 From: Mike Meyer <mwm@mired.org> To: Kevin Golding <kevin@caomhin.demon.co.uk> Cc: questions@freebsd.org Subject: Re: patching systems using pkg_add Message-ID: <15369.3408.391407.207170@guru.mired.org> In-Reply-To: <87471076@toto.iv>
next in thread | previous in thread | raw e-mail | index | archive | help
Kevin Golding <kevin@caomhin.demon.co.uk> types: > Having used the binary patches from a couple of security advisories on a > 4.3 release system I now find myself pondering what to do next. The > issue is that I'm intending to cvsup and I'm not sure how to deal with > the patches. > > I figure I shouldn't run pkg_delete after I upgrade since I'm paranoid > I'll delete something I need from the new setup and I'd rather not just > leave them sitting around for no reason. > > That leaves 2 options in my mind, firstly I could run pkg_delete before > doing make world etc. or maybe I could just upgrade then manually delete > the entries from /var/db/pkg > > I think I prefer the sound of the latter since it seems the least > intrusive and I feel it should reduce the chance or troubles. > > So, how far off the mark am I? I think I agree with you. Installing the new world will presumably overwrite the binary patches, so the information in /var/db/pkg is unneeded. You might try asking security@freebsd.org - I think that's the address of the security officer - to see what they think. <mike -- Mike Meyer <mwm@mired.org> http://www.mired.org/home/mwm/ Independent WWW/Perforce/FreeBSD/Unix consultant, email for more information. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?15369.3408.391407.207170>