Re: FreeBSD upgrade on production server
On Sun, Sep 07, 2003 at 05:48:42PM +0200, SUPPORT wrote: > > Hello everybody, > > > > I wish to upgrade my production firewall / mailserver / DNS server from > > 4.3 to 4.8. The simplest way seems to be use of CVSUP. OK, but... > > > > Is it safe ? What should I backup ? There is running well-configured > > sendmail - are there some changes in its configuration between > > versions 8.11.3 used in FreeBSD 4.3 and 8.12.8p1 used in > > FreeBSD 4.8. > > This is my only mailserver and I don't have an secondary > > if something fails... > > > > Please, advice if you have some know-how :-))) > > > > Peter Rosa > > P.S. Sorry for duplicate mail, I'm not sure it is sending it to the list. > I only saw one, so i guess you only send it one time to the list. Is it safe? Yes, but there's always a chance that something goes wrong. If you can't take any change then don't update. You don't have a secondary procution server, but do you have a secondary computer? If so use this a test server. (Go for the most identical one) Install 4.3 on this one and then update this one, using the same source. Also set it up to sepport the most critical functions. This not only gives you the change to gain some experinace but also let you test it. You won't upgrade the production computer if this fails. ( On later version (4.6 or 4.7) you could let your production computer compile the source and use its /usr/src/ and /usr/obj/ through nfs. ) You wan't to backup /etc/ /usr/local/etc/ and you data. -- Alex Articles based on solutions that I use: http://www.kruijff.org/alex/index.php?dir=docs/FreeBSD/ ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: FreeBSD upgrade on production server - Solved
"Peter Rosa" <[EMAIL PROTECTED]> writes: > Of course, I have read the Handbook, but there are very "wide" solution, not > so specific as I tried to find. There is never said e.g. "Backup file > /etc/fstab" or "After installation mergemaster your previously backed > sendmail.cf with the new one to include your old changes". There *is* no way to have such a comprehensive list that would be accurate for everybody. You need all of the locally-modified files, which can include nearly anything in /etc, most of /var, locally created data (including user directories, but possibly many other things, like a web server root, as well), tuning files for ports, and on and on. If in doubt, the best thing is to back up the *entire* system and you know you'll have a backup of anything you need. You don't need to worry too much about what to merge, because mergemaster takes care of finding the normal system configuration files and helping you merge them -- but you need to know how the system is set up, and how you *want* it to be set up. > However, I upgraded that machine and all works fine (finally the sendmail, > too). Except when I login, I get following errors (written twice): > Sep 8 08:35:01 ns login: ROOT LOGIN (root) ON ttyv1 > Sep 8 08:35:01 ns login: no modules loaded for `login' service > Sep 8 08:35:01 ns login: pam_open_session: Permission denied > > What is it ? Is it I have misconfigured pam ? And how can I repair it ? Sure looks like a PAM misconfiguration. The configuration is /etc/pam.conf and the default file is /usr/src/etc/pam.conf and unless you have intentional configuration changes, they should probably be identical. mergemaster(8) should have caught that for you. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: FreeBSD upgrade on production server - Solved
Looks like you forgot to run mergemaster. man mergemaster Peter Elsner At 03:48 PM 9/8/2003 +0200, you wrote: Many thanks to everybody. Of course, I have read the Handbook, but there are very "wide" solution, not so specific as I tried to find. There is never said e.g. "Backup file /etc/fstab" or "After installation mergemaster your previously backed sendmail.cf with the new one to include your old changes". And I am so busy, that I tried to find such very specific type of information. Yes, yes, yes, it is bad idea to disturb you, but the list is the only "live" forum I have found. Once again, thanks a lot. However, I upgraded that machine and all works fine (finally the sendmail, too). Except when I login, I get following errors (written twice): Sep 8 08:35:01 ns login: ROOT LOGIN (root) ON ttyv1 Sep 8 08:35:01 ns login: no modules loaded for `login' service Sep 8 08:35:01 ns login: pam_open_session: Permission denied What is it ? Is it I have misconfigured pam ? And how can I repair it ? Please, help. Peter Rosa - Original Message - From: "Lowell Gilbert" <[EMAIL PROTECTED]> To: "SUPPORT" <[EMAIL PROTECTED]> Cc: "FreeBSD Questions" <[EMAIL PROTECTED]> Sent: Monday, September 08, 2003 3:28 PM Subject: Re: FreeBSD upgrade on production server > "SUPPORT" <[EMAIL PROTECTED]> writes: > > > I wish to upgrade my production firewall / mailserver / DNS server from > > 4.3 to 4.8. The simplest way seems to be use of CVSUP. OK, but... > > Right, so far. > > > Is it safe ? > > It's not completely safe. Of course, neither is running a > two-and-a-half year-old release of any operating system > connected to the Internet. Risk is something you have to > manage, not avoid. > > > What should I backup ? > > Everything you'd mind losing. For me, that's mostly /etc, > /usr/local/etc, user data, kernel configs, and the log directory. > > > There is running well-configured > > sendmail - are there some changes in its configuration between > > versions 8.11.3 used in FreeBSD 4.3 and 8.12.8p1 used in > > FreeBSD 4.8. > > There certainly are some changes. Some of them are related to > important security fixes. You will need to merge your configuration > into the updates. > > > This is my only mailserver and I don't have an secondary > > if something fails... > > Well, the safest approach is to have a spare system, and build the > modifications on that. If you can't do that, then almost as safe (and > actually safer from your own oversights) is to have a spare machine to > try out the upgrade on so you get used to the procedure. If you > really can't spare a machine for any of these things, accept some > downtime and make sure you're *very* careful as you go through the > documented procedure. > > > Please, advice if you have some know-how :-))) > > All of my specific advice is *in* the Handbook. If I had any more > advice, I'd submit it to, well, the Handbook. > > Good luck. > ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]" Peter Elsner <[EMAIL PROTECTED]> Vice President Of Customer Service (And System Administrator) 1835 S. Carrier Parkway Grand Prairie, Texas 75051 (972) 263-2080 - Voice (972) 263-2082 - Fax (972) 489-4838 - Cell Phone ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: FreeBSD upgrade on production server - Solved
Many thanks to everybody. Of course, I have read the Handbook, but there are very "wide" solution, not so specific as I tried to find. There is never said e.g. "Backup file /etc/fstab" or "After installation mergemaster your previously backed sendmail.cf with the new one to include your old changes". And I am so busy, that I tried to find such very specific type of information. Yes, yes, yes, it is bad idea to disturb you, but the list is the only "live" forum I have found. Once again, thanks a lot. However, I upgraded that machine and all works fine (finally the sendmail, too). Except when I login, I get following errors (written twice): Sep 8 08:35:01 ns login: ROOT LOGIN (root) ON ttyv1 Sep 8 08:35:01 ns login: no modules loaded for `login' service Sep 8 08:35:01 ns login: pam_open_session: Permission denied What is it ? Is it I have misconfigured pam ? And how can I repair it ? Please, help. Peter Rosa - Original Message - From: "Lowell Gilbert" <[EMAIL PROTECTED]> To: "SUPPORT" <[EMAIL PROTECTED]> Cc: "FreeBSD Questions" <[EMAIL PROTECTED]> Sent: Monday, September 08, 2003 3:28 PM Subject: Re: FreeBSD upgrade on production server > "SUPPORT" <[EMAIL PROTECTED]> writes: > > > I wish to upgrade my production firewall / mailserver / DNS server from > > 4.3 to 4.8. The simplest way seems to be use of CVSUP. OK, but... > > Right, so far. > > > Is it safe ? > > It's not completely safe. Of course, neither is running a > two-and-a-half year-old release of any operating system > connected to the Internet. Risk is something you have to > manage, not avoid. > > > What should I backup ? > > Everything you'd mind losing. For me, that's mostly /etc, > /usr/local/etc, user data, kernel configs, and the log directory. > > > There is running well-configured > > sendmail - are there some changes in its configuration between > > versions 8.11.3 used in FreeBSD 4.3 and 8.12.8p1 used in > > FreeBSD 4.8. > > There certainly are some changes. Some of them are related to > important security fixes. You will need to merge your configuration > into the updates. > > > This is my only mailserver and I don't have an secondary > > if something fails... > > Well, the safest approach is to have a spare system, and build the > modifications on that. If you can't do that, then almost as safe (and > actually safer from your own oversights) is to have a spare machine to > try out the upgrade on so you get used to the procedure. If you > really can't spare a machine for any of these things, accept some > downtime and make sure you're *very* careful as you go through the > documented procedure. > > > Please, advice if you have some know-how :-))) > > All of my specific advice is *in* the Handbook. If I had any more > advice, I'd submit it to, well, the Handbook. > > Good luck. > ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: FreeBSD upgrade on production server
"SUPPORT" <[EMAIL PROTECTED]> writes: > I wish to upgrade my production firewall / mailserver / DNS server from > 4.3 to 4.8. The simplest way seems to be use of CVSUP. OK, but... Right, so far. > Is it safe ? It's not completely safe. Of course, neither is running a two-and-a-half year-old release of any operating system connected to the Internet. Risk is something you have to manage, not avoid. > What should I backup ? Everything you'd mind losing. For me, that's mostly /etc, /usr/local/etc, user data, kernel configs, and the log directory. > There is running well-configured > sendmail - are there some changes in its configuration between > versions 8.11.3 used in FreeBSD 4.3 and 8.12.8p1 used in > FreeBSD 4.8. There certainly are some changes. Some of them are related to important security fixes. You will need to merge your configuration into the updates. > This is my only mailserver and I don't have an secondary > if something fails... Well, the safest approach is to have a spare system, and build the modifications on that. If you can't do that, then almost as safe (and actually safer from your own oversights) is to have a spare machine to try out the upgrade on so you get used to the procedure. If you really can't spare a machine for any of these things, accept some downtime and make sure you're *very* careful as you go through the documented procedure. > Please, advice if you have some know-how :-))) All of my specific advice is *in* the Handbook. If I had any more advice, I'd submit it to, well, the Handbook. Good luck. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: FreeBSD upgrade on production server
I reckon you have not even bothered to read the docs available at the FreeBSD website nor the information that is generally available on the system itself. Whilst I am at it, don't double / triple post the same question. - Original Message - From: "SUPPORT" <[EMAIL PROTECTED]> To: "FreeBSD Questions" <[EMAIL PROTECTED]> Sent: Saturday, September 06, 2003 12:43 AM Subject: FreeBSD upgrade on production server > Hello everybody, > > I wish to upgrade my production firewall / mailserver / DNS server from > 4.3 to 4.8. The simplest way seems to be use of CVSUP. OK, but... > > Is it safe ? What should I backup ? There is running well-configured > sendmail - are there some changes in its configuration between > versions 8.11.3 used in FreeBSD 4.3 and 8.12.8p1 used in > FreeBSD 4.8. > This is my only mailserver and I don't have an secondary > if something fails... > > Please, advice if you have some know-how :-))) > > Peter Rosa > ___ > [EMAIL PROTECTED] mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "[EMAIL PROTECTED]" > ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"