Re: Patching / Updating / Upgrading

2009-02-03 Thread Akenner 
*Snipping for those who don't want to have an inbox full of my text, and 
out of being polite*


Thanks very much! I've been thinking about setting up another FreeBSD 
machine so I can test both CVS and FreeBSD-update without mixing the two 
together which from what I hear is a bad idea, and I think that would 
also help me learn both ways of doing it.


Thanks again for the help! I think first I'll test out the 
freebsd-update way of things since, well, that's the closest to what I'm 
used to and will have a much smaller learning curve if any at all. Ad 
then I can set up a machine to do it with cvsup. I was really having 
some trouble understanding what they meant by RELEASE VS STABLE in the 
context of fixes and so on. The idea of it wasn't new as Slackware uses 
a very VERY similar method for talking about versions of their stuff, 
which I guess is a good thing. And my Slackware books used to have BSDi 
logos on them so I guess it's nice to see a Linux distro and BSD getting 
along. Patrick seems to be more appreciative of BSD than other Linux 
distros as it is. (If you read up on Slackware, he flat out tells you to 
just look for BSD texts because they are more technical and better 
written than the PR style Linux stuff you generally find) which leads me 
to believe that Patrick likes BSD quite a bit.


Thanks again,

-Allen
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org

Re: Patching / Updating / Upgrading

2009-02-03 Thread RW 
On Tue, 03 Feb 2009 14:30:14 +0200
DA Forsyth d.fors...@ru.ac.za wrote:


 use RELEASE for a production server, STABLE on a desktop or test 
 machine.  IMHO

I'd say follow what it says in the handbook and use a release unless you
have a good reason to use stable, such as support for a particular
piece of hardware. 

If you use stable then every time you update for an advisory, you may
pick-up new features, which means you should pay as much attention as
you would with 7.0 - 7.1. With point releases you are only getting
minor patches, so there is no need for mergemaster. I just run a single
script that does the full update. 

Also you can't use freebsd-update with stable.

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org

re: Patching / Updating / Upgrading

2009-02-03 Thread DA Forsyth 
Message: 4
Date: Mon, 02 Feb 2009 16:37:14 -0500
From: Akenner slackwarew...@comcast.net
Subject: Patching / Updating / Upgrading
To: freebsd-questions@freebsd.org

Hello all,

 So if anyone could lend a little but in typing out what they use for
 updates and how they go about it, I'd appreciate it. I've already
 gotten a full CVSup file sent to me by a member on here which was a
 great help in deciding how to set up the file. I'm more or less
 wondering with CVSup if I keep using RELEASE or do I use Stable. 

use RELEASE for a production server, STABLE on a desktop or test 
machine.  IMHO

use CVS if you have to build a custom kernel, I do this on my two 
production servers.  On my minimal install print servers, I use 
freebsd-update about once a month.   it is a bit fiddly to get 
through a proxy that needs auth, but it can be done.

 And of course if anyone uses freebsd-update if they have suggestions
 I'd love to hear those as well :) 

it works, it is quick, if you use the generic kernel.

 -Allen

--
   DA Fo rsythNetwork Supervisor
Principal Technical Officer -- Institute for Water Research
http://www.ru.ac.za/institutes/iwr/


___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org

Re: Patching / Updating / Upgrading

2009-02-02 Thread Manolis Kiagias 
Akenner wrote:
 Hello all,

 I've been using this list to my advantage for a while to learn things
 I can't seem to grasp, and I've gotten great amounts of help.

 I have a question in regards to the process of patching / Updating /
 Upgrading I'd like a hand with. I have two machines running FreeBSD
 7.1-RELEASE and I'd like to make sure I've got security fixes on my
 test machine. I'm saying test amchine because the box I'm typing this
 from is an active needed desktop system I'm using for a lot of things
 right now, and I figured my best bet would be to set up another
 machine with a similar installation set so I could test out new ideas
 on that instead of risking breaking something on this one.

Definitely a good idea, if you have machines to spare.


 Anyway, I've been reading up on the CVS idea and asking things about
 freebsd-update, and I guess my question is more along these lines:

 If I wanted to just make sure I've got bug fixes and security patches,
 would CVS or FreeBSD-Update be best for this? Or are they both good
 for this? I know in the Unix world there are generally a lot of things
 that do one thing very well but can generally do other things too.

For getting just the security fixes for your -RELEASE version,
freebsd-update is by far the easiest way to go. Only thing you need to
do is run:

# freebsd-update fetch
# freebsd-update install

These can even be combined into one:

# freebsd-update fetch install

Depending on whether a new kernel was installed, you may or may not have
to reboot.  (it is easy to see on the messages whether a new
/boot/kernel/kernel file was installed). If you are using a custom
kernel, the process is slightly more involved: Every time the updates
touch the kernel, you will have to rebuild your custom kernel. If you
know nothing on custom kernels (yet) you are running GENERIC and you
just need the above procedure.

For details, please refer to:

http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/updating-upgrading-freebsdupdate.html

(esp. sect 24.2.2)


 I'm reading on CVS right now and it seems I could use this to keep the
 machine updated, but I'm having some issues understanding the idea of
 how it works. Basically, if I'm running 7.1-RELEASE, isn't that
 already the updated version? Or, have I maybe misunderstood something,
 and the tree RELEASE for 7.1 has bug fixes and security patches added
 to it, and I could CVSup to the newest release of 7.1 ?


7.1 is the latest RELEASE. Although new feature will not be added into
it, you could use csup/cvsup to get the security fixes. These would be
the same as the ones you can get (without recompiling anything) with
freebsd-update as described above. If you really wish to track a
development version of FreeBSD, you can use CVSup to get 7-STABLE (this
is the continuing development branch, based on the work of 7.1. In the
future, developments from this branch will get us to 7.2-RELEASE). Or,
if you are really adventurous, you could try running -CURRENT  (which
will in time become FreeBSD 8.0-RELEASE). More info is here:

http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/current-stable.html

If you just need the security updates for 7.1-RELEASE, freebsd-update is
really the painless way to go. But CVSup can also do it, and it will be
a nice exercise ;)

 Also, FreeBSD-update came across my reading, and it seems to be
 similar to swaret in the Slackware world. I know it isn't the same
 thing as BSD seems much more source based than other OSs, but I would
 like to get at least one of the ways to keep updated picked out, and
 started using on the test machine to make sure I fully understand it
 before using it to update my main box.


Go ahead and  use it on your main system. Freebsd-update is safe (you
can even rollback the updates if need be). As I said, unless you are
running a custom kernel (and you are not probably), this is just two
commands. And there no other settings needed beforehand.


 One of the things I did was make two copies of the example CVS
 standard supfile; one I made in that directory as standard.bak and
 then I copied a copy of it to the /root directory to look at and maybe
 edit as well, but as I said, I could use a hand in deciding which
 option is going to work best.


If you decide to go the CVSup way for the security fixes, you would need
to make sure you have this line:

*default release=cvs tag=RELENG_7_1

(This is already in the standard supfile normally)

To move to 7-STABLE, you would need to change it to:

*default release=cvs tag=RELENG_7

(You will find this in the sample stable-supfile)

Then, follow the instructions in chapter 24. If you are getting confused
with the many different possible tags, this will probably make them clear:

http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/cvs-tags.html

 So if anyone could lend a little but in typing out what they use for
 updates and how they go about it, I'd appreciate it. I've already
 gotten a full CVSup file