Date: Wed, 11 Aug 2004 10:21:13 -0500 From: Paul Schmehl <pauls@utdallas.edu> To: Eric Crist <ecrist@secure-computing.net>, 'Rail mail' <railmail@gmail.com>, freebsd-questions@freebsd.org Subject: RE: upgrade Message-ID: <DFAF7222F7BB05854F8E3587@utd49554.utdallas.edu> In-Reply-To: <037901c47f68$6cd60c30$6401a8c0@Nomad> References: <037901c47f68$6cd60c30$6401a8c0@Nomad>
next in thread | previous in thread | raw e-mail | index | archive | help
--On Wednesday, August 11, 2004 12:59:46 AM -0500 Eric Crist <ecrist@secure-computing.net> wrote: > > The difference between a binary upgrade and an upgrade via CVS or cvsup > is the time between creation of the sources. Binary upgrades generally > come out durning major releases, for example, from 4.9 to 4.10. Any > security patches added between that time were only available with a > CVS/cvsup upgrade, followed by a system rebuild. > This is simply not true. You can upgrade all the sources using freebsd-update. Look in /usr/ports/security/freebsd-update. I use this on production servers now to lessen downtime. All you have to do is a fetch, then an install, then reboot, and you're done. On a production webserver getting millions of hits a month, this is a godsend. Paul Schmehl (pauls@utdallas.edu) Adjunct Information Security Officer The University of Texas at Dallas AVIEN Founding Member http://www.utdallas.edu/ir/security/
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?DFAF7222F7BB05854F8E3587>