Re: security holes
In response to Nerius Landys : > When and if I upgrade, I will be doing it by compiling the system from > source (buildworld or what it's called) according to: > http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/makeworld.html > For the installworld and mergemaster steps, it's strongly recommended > to drop into single user mode. However, since my server is in a data > center, it's a bit of trouble to do so (requires the "boss" there to > hook up some sort of keyboard-input over a web browser application). > I'm wondering if for the upgrade from 7.0 to 7.1 it would be OK to NOT > drop into single user mode during these steps. You've got to make that call for yourself, but it's the reason serial console and 1000 different brands of "lights out management" addon cards exist. Personally, I haven't done the "drop to single user mode" thing in a long time and I've never had problems. -- Bill Moran http://www.potentialtech.com http://people.collaborativefusion.com/~wmoran/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: security holes
When and if I upgrade, I will be doing it by compiling the system from source (buildworld or what it's called) according to: http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/makeworld.html For the installworld and mergemaster steps, it's strongly recommended to drop into single user mode. However, since my server is in a data center, it's a bit of trouble to do so (requires the "boss" there to hook up some sort of keyboard-input over a web browser application). I'm wondering if for the upgrade from 7.0 to 7.1 it would be OK to NOT drop into single user mode during these steps. On Thu, Jan 29, 2009 at 4:36 AM, Bill Moran wrote: > Nerius Landys wrote: >> >> > Ascertaining what security holes will affect your system is complicated. >> > If you have to ask this question, then I recommend that you apply all >> > security updates immediately and always assume that every vulnerability >> > is a potential problem for you. >> >> Because 7.0 updates will no longer be made about a month from now, I >> guess this means that I should upgrade to 7.1? > > That would be my opinion. The good news is that you have a month to > plan and schedule the upgrade, and the change from 7.0 to 7.1 is pretty > minor. I upgraded 3 systems with no manual intervention aside from > mergemaster. > > -- > Bill Moran > http://www.potentialtech.com > ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: security holes
Nerius Landys wrote: > > > Ascertaining what security holes will affect your system is complicated. > > If you have to ask this question, then I recommend that you apply all > > security updates immediately and always assume that every vulnerability > > is a potential problem for you. > > Because 7.0 updates will no longer be made about a month from now, I > guess this means that I should upgrade to 7.1? That would be my opinion. The good news is that you have a month to plan and schedule the upgrade, and the change from 7.0 to 7.1 is pretty minor. I upgraded 3 systems with no manual intervention aside from mergemaster. -- Bill Moran http://www.potentialtech.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: security holes
> Ascertaining what security holes will affect your system is complicated. > If you have to ask this question, then I recommend that you apply all > security updates immediately and always assume that every vulnerability > is a potential problem for you. Because 7.0 updates will no longer be made about a month from now, I guess this means that I should upgrade to 7.1? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: security holes
Nerius Landys wrote: > > I'm running 7.0-RELEASE and I want to defer upgrading to the current > update (currently p9) and/or upgrading to 7.1 for as long as possible. > I occasionally csup /usr/src and have a gander at /usr/src/UPDATING, > but I don't understand to the fullest extent what security holes may > affect my system. > > What do you suggest that I do so that I am informed immediately when I > need to upgrade from 7.0-RELEASE to something else because of a > security hole that affects my system? How will I know? Ascertaining what security holes will affect your system is complicated. If you have to ask this question, then I recommend that you apply all security updates immediately and always assume that every vulnerability is a potential problem for you. -- Bill Moran http://www.potentialtech.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: security holes
Nerius Landys wrote: > What do you suggest that I do so that I am informed immediately when I > need to upgrade from 7.0-RELEASE to something else because of a > security hole that affects my system? How will I know? subscribe to security-advisor...@freebsd.org check past ones here: http://www.freebsd.org/security/advisories.html -- Eitan Adler "Security is increased by designing for the way humans actually behave." -Jakob Nielsen ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"