Re: Keeping FreeBSD updated (the binary way)
Svein Halvor Halvorsen wrote: I want to make sure I have better routines this time around, when I'm starting a-fresh. I'd like to keep my system and packages fairly up to date, and still keep the compiling to a minimum. Is it possible to pkg_add -r packages from -STABLE on the latest -RELEASE? That is, will the following work, or slowly render my system to an incoherent state: Tim Judd wrote: This was once not the way to do it. I read on the handbook recently that they actually advertize to use -STABLE packages if you want more up-to-date programs. Ok. I also realized that portsnap is more updated than the -STABLE precompiled packages. I should perhaps get the INDEX file off the ftp server as well. Is there a way to fetch the actual ports tree used to produce the current -STABLE package set? Why is it you wnat to remove the compiling part of it? portupgrade, portmaster or any other port management tool will take care of that for you. Just curious on this one. The compilation takes forever. Ok, so my new computer (which isn't exactly new) will be a lot faster than the one it replaces, but still. I can always compile coreutils and stuff like that, but larger applications, I would want to install binary. Also, there is little advantage nowadays in compiling yourself. Svein Halvor ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Keeping FreeBSD updated (the binary way)
Svein Halvor Halvorsen svei...@lvor.halvorsen.cc wrote: Is it possible to pkg_add -r packages from -STABLE on the latest -RELEASE? That is, will the following work, or slowly render my system to an incoherent state: RW wrote: It'll work most of the time, but occasionally it will fail, when a STABLE package relies on a library or other feature that's not in the release. A compromise might be to stick to the release packages, until portaudit reveals a significant vulnerability and then switch to Stable until the next release. But when that happens, should I upgrade just the one affected package, or grab updates for all my installed packages, to make sure all packages on the system is concurrent? That is, made from the same ports tree at some point in time. Svein Halvor ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Keeping FreeBSD updated (the binary way)
Since I started using FreeBSD with 6.2 on my home server, I studied this problem very well. In the default installation, there are a daily system check script and a daily security check script included in periodic. You can easily configure your system so e-mails are sent to you every days with the output of the execution of those scripts (usually sent to root). Also, freebsd-update can also be configured as a cron job that will fetch the latest update and send you an e-mail if core system updates are available. portsnap cron job will be executed in the security periodic job and will tell you if any of your installed ports need to be updated for security reasons. So... I always check the output of those runs in my e-mails every morning or every few days. If there is an update available from freebsd-update, I install it and I reboot the complete server if there is an update for the kernel or a used kernel module, or only a few services that depend on the updated files (often sshd). About my ports, I only upgrade those that get security notices. This way my system has been very stable, up to date and it doesn't take too much time to maintain it in this state. The only time where I upgrade all my ports is when I update my entire system to a newer FreeBSD revision (7.0 - 7.1, etc.). I'll also likely stay on a particular revision of FreeBSD until the security updates are ended for it. I first went from 6.2 to 6.3 on my old server because 6.3 was flagged for long term support (2 years). Went from 6.3 to 7.0 because I replaced my old server (Dual Pentium II) with new hardware. And I went from 7.0 to 7.1 because some new drivers were available to better support my new hardware (EIST on 45nm Intel CPUs, Atheros L1E network adapter). Now my hardware is well supported, my system is very stable and I will likely stay on 7.1 until January 2011 (end of support for security updates). I hope it helps, Gabriel 2009/1/23 Svein Halvor Halvorsen svei...@lvor.halvorsen.cc: Svein Halvor Halvorsen svei...@lvor.halvorsen.cc wrote: Is it possible to pkg_add -r packages from -STABLE on the latest -RELEASE? That is, will the following work, or slowly render my system to an incoherent state: RW wrote: It'll work most of the time, but occasionally it will fail, when a STABLE package relies on a library or other feature that's not in the release. A compromise might be to stick to the release packages, until portaudit reveals a significant vulnerability and then switch to Stable until the next release. But when that happens, should I upgrade just the one affected package, or grab updates for all my installed packages, to make sure all packages on the system is concurrent? That is, made from the same ports tree at some point in time. Svein Halvor ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org -- Gabriel Lavoie glav...@gmail.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Keeping FreeBSD updated (the binary way)
Svein Halvor Halvorsen skrev: Hi, list! I have just acquired a new computer to replace an old server. This older server has been running FreeBSD 5.3 since 2004 and most of its packages are way out of date. I've been scared of changing something in fear of rendering the machine unbootable, or some core applications unrunnable. I want to make sure I have better routines this time around, when I'm starting a-fresh. I'd like to keep my system and packages fairly up to date, and still keep the compiling to a minimum. Is it possible to pkg_add -r packages from -STABLE on the latest -RELEASE? That is, will the following work, or slowly render my system to an incoherent state: 1) Regularly run freebsd-update 2) Regularly run portsnap 3) Set my PACKAGESITE to the -STABLE location 4) Regularly run portupgrade -P Will the postsnap'ed index always be in sync with what's available as precompiled packages for -STABLE? Will these -STABLE packages always run on my freebsd-update'd -RELEASE system? If some ports have the NO_PACKAGE bit set, will compiling them against dependencies from -STABLE work, as long as I've run portsnap? Svein Halvor ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org No virus found in this incoming message. Checked by AVG - http://www.avg.com Version: 8.0.176 / Virus Database: 270.10.12/1909 - Release Date: 2009-01-22 07:08 Hello Svein, When I recently went from 6 to 7 I realized that it is less time-consuming to wipe the machine clean and install fresh from the cd. The pre-condition for this is separated disks for system and data. /R ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Keeping FreeBSD updated (the binary way)
On Fri, 23 Jan 2009 01:58:13 +0100 Svein Halvor Halvorsen svei...@lvor.halvorsen.cc wrote: Is it possible to pkg_add -r packages from -STABLE on the latest -RELEASE? That is, will the following work, or slowly render my system to an incoherent state: 1) Regularly run freebsd-update 2) Regularly run portsnap 3) Set my PACKAGESITE to the -STABLE location 4) Regularly run portupgrade -P It'll work most of the time, but occasionally it will fail, when a STABLE package relies on a library or other feature that's not in the release. A compromise might be to stick to the release packages, until portaudit reveals a significant vulnerability and then switch to Stable until the next release. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Keeping FreeBSD updated (the binary way)
Svein Halvor Halvorsen wrote: Hi, list! I have just acquired a new computer to replace an old server. This older server has been running FreeBSD 5.3 since 2004 and most of its packages are way out of date. I've been scared of changing something in fear of rendering the machine unbootable, or some core applications unrunnable. I want to make sure I have better routines this time around, when I'm starting a-fresh. I'd like to keep my system and packages fairly up to date, and still keep the compiling to a minimum. Is it possible to pkg_add -r packages from -STABLE on the latest -RELEASE? That is, will the following work, or slowly render my system to an incoherent state: snip This was once not the way to do it. I read on the handbook recently that they actually advertize to use -STABLE packages if you want more up-to-date programs. Why is it you wnat to remove the compiling part of it? portupgrade, portmaster or any other port management tool will take care of that for you. Just curious on this one. --Tim ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
