On Thu, Nov 13, 2008 at 11:19:45AM -0600, Brian Drain wrote: > So I am curious, what IS the best way to stay up to date? Is manually > checking the errata page every day really correct (seems like there > would be an automated solutuion such as the lynx dump aforementioned)? > It seems to me that even if there is a security flaw in OpenBSD most of > them (from reading prior patches) would be exceedingly hard to exploit > anyway so maybe it's not as big of a deal as, say, Windows B.S. (which > is exactly the reason I am learning something else).
I'm not sure this is the best way, but what I do to keep up with -stable is to have a cronjob do a cvs (or csup) update every day. Most days there is nothing updated, so it's quite noticeable when there's a change. These are the two changes since 4.4 release: ----- Forwarded message from Cron Daemon <[EMAIL PROTECTED]> ----- Date: 2 Nov 2008 11:00:02 -0000 From: Cron Daemon <[EMAIL PROTECTED]> To: [EMAIL PROTECTED] Subject: Cron <[EMAIL PROTECTED]> /home/eperea/Bin/updsrc Starting /home/eperea/Bin/updsrc: Sun Nov 2 05:00:02 CST 2008 P sys/conf/newvers.sh P sys/dev/pci/if_vr.c P sys/netinet6/in6.c P sys/netinet6/in6_var.h P sys/netinet6/nd6_nbr.c Finished updating source: Sun Nov 2 05:15:24 CST 2008 *======================================================================* Date: 6 Nov 2008 11:00:02 -0000 From: Cron Daemon <[EMAIL PROTECTED]> To: [EMAIL PROTECTED] Subject: Cron <[EMAIL PROTECTED]> /home/eperea/Bin/updsrc Starting /home/eperea/Bin/updsrc: Thu Nov 6 05:00:02 CST 2008 P sys/netinet/tcp_input.c P usr.sbin/httpd/src/ap/ap_hook.c P usr.sbin/httpd/src/modules/proxy/proxy_http.c Finished updating source: Thu Nov 6 05:14:56 CST 2008 ----- End forwarded message ----- When I see these, I check to see if it's something that requires patching immediately (but haven't seen any of those yet). Otherwise, I build a release and install it after hours on the remote sites.
