Re: Security question

2003-11-20 Thread Kevin McKay 
Thanks Bryan,

Two other questions, if I do a pkg_add -r openssh today and then the same
command in 6 months will it always be the same precompiled binary sitting on
the server? Or are they updated with patches from time to time?  how does
the openssh port binary differ from the oepnssh system binary? I have looked
all through the handbook and faq's but could not find a definitive answer.

Thanks
Kevin McKay

- Original Message - 
From: Bryan Cassidy [EMAIL PROTECTED]
To: Kevin McKay [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]
Sent: Wednesday, November 19, 2003 11:18 PM
Subject: Re: Security question


 I don't know anything about using sysinstall for security
 patches/upgrades etc. WHat your looking for I think is cvsup. Please
 read the handbook on Using CVSUP to get the latests source updates,
 security patches for your release and even updating to a different
 RELEASE or -CURRENT or -STABLE.

 On Wed, 19 Nov 2003 09:23:37 -0800
 Kevin McKay [EMAIL PROTECTED] wrote:

  So it will not just grab the latest patched binaries for 5.1? I am not
 
  sure I understand. Is it just for updating between releases and not
  for keeping the current release up to date?
 
  Kevin
 
  Lowell Gilbert wrote:
 
  Kevin McKay [EMAIL PROTECTED] writes:
  
  
  
  I have read through the documentation but have not been able to find
  a definite answer. I am running a pretty core install of 5.1 minimal
  + bind9, postfix, apache, ssh, no ports collection. Here is my
  question. When I run the binary update from sysinstall will that
  take care of the earlier ssh vulnerability and update apache postfix
  and bind to the most current version?
  
  
  
  You normally need to run the sysinstall from the version you're
  updating to.  You could configure your system's sysinstall to load in
  the later version, and it should be compatible, but I don't know the
  syntax for that offhand...
  
  
 
  ___
  [EMAIL PROTECTED] mailing list
  http://lists.freebsd.org/mailman/listinfo/freebsd-questions
  To unsubscribe, send any mail to
  [EMAIL PROTECTED]


___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Binary port question

2003-11-20 Thread Kevin McKay 
Are the binary ports obtained via pkg_add -r for 5.1 ever updated on the sever or is 
the contents static? 

Thanks
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: Security question

2003-11-19 Thread Kevin McKay 
So it will not just grab the latest patched binaries for 5.1? I am not 
sure I understand. Is it just for updating between releases and not for 
keeping the current release up to date?

Kevin

Lowell Gilbert wrote:

Kevin McKay [EMAIL PROTECTED] writes:

 

I have read through the documentation but have not been able to find
a definite answer. I am running a pretty core install of 5.1 minimal
+ bind9, postfix, apache, ssh, no ports collection. Here is my
question. When I run the binary update from sysinstall will that
take care of the earlier ssh vulnerability and update apache postfix
and bind to the most current version?
   

You normally need to run the sysinstall from the version you're
updating to.  You could configure your system's sysinstall to load in
the later version, and it should be compatible, but I don't know the
syntax for that offhand...
 

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Security question

2003-11-18 Thread Kevin McKay 
Hello,

I have read through the documentation but have not been able to find a definite 
answer. I am running a pretty core install of 5.1 minimal + bind9, postfix, apache, 
ssh, no ports collection. Here is my question. When I run the binary update from 
sysinstall will that take care of the earlier ssh vulnerability and update apache 
postfix and bind to the most current version? 

Thanks
Kevin McKay
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]