ports security updates branch
Hi :) This might be a dumb question, but I was wondering if a king of stable branch existed for the ports tree. Under OpenBSD I think you can follow the ports tree stable branch so you only get security updates for your ports. This does not seem possible under FreeBSD, if I understood correctly only the current branch (tag=.) is used for ports; at least this is what I always used... Now, here are my questions about that: - is there a way to only get the security updates for ports ? (are security updates for ports included in the FreeBSD security advisories) - when upgrading to a new release, can I use the release branch for ports ? The reason I'm asking this is that I don't want to update my ports everytime a new version comes out... except if it has a security issue. Thanks for reading me. Antoine ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ports security updates branch
On Fri, Oct 17, 2003 at 09:47:40AM +0200, Antoine Jacoutot wrote: Hi :) This might be a dumb question, but I was wondering if a king of stable branch existed for the ports tree. Under OpenBSD I think you can follow the ports tree stable branch so you only get security updates for your ports. This does not seem possible under FreeBSD, if I understood correctly only the current branch (tag=.) is used for ports; at least this is what I always used... Now, here are my questions about that: - is there a way to only get the security updates for ports ? (are security updates for ports included in the FreeBSD security advisories) - when upgrading to a new release, can I use the release branch for ports ? The reason I'm asking this is that I don't want to update my ports everytime a new version comes out... except if it has a security issue. FreeBSD doesn't provide this. Since our ports collection is about 5 times the size of OpenBSD's it's too much work. Kris pgp0.pgp Description: PGP signature
Re: ports security updates branch
Kris Kennaway wrote: The reason I'm asking this is that I don't want to update my ports everytime a new version comes out... except if it has a security issue. FreeBSD doesn't provide this. Since our ports collection is about 5 times the size of OpenBSD's it's too much work. Oh I know that :) Ok, I can totally understand why it does not exist then. However, is there a way to know if one of my installed packages has a security alert ? I guess not... but we never know... Thanks for the reply by the way. Antoine ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ports security updates branch
On Fri, Oct 17, 2003 at 01:22:05PM +0200, Antoine Jacoutot wrote: Kris Kennaway wrote: The reason I'm asking this is that I don't want to update my ports everytime a new version comes out... except if it has a security issue. FreeBSD doesn't provide this. Since our ports collection is about 5 times the size of OpenBSD's it's too much work. Oh I know that :) Ok, I can totally understand why it does not exist then. However, is there a way to know if one of my installed packages has a security alert ? I guess not... but we never know... Subscribe to [EMAIL PROTECTED] -- FreeBSD security notices cover problems with ported applications, as do security alerts when the software in question appears in both ports and the base system. Security notices tend to come out fairly infrequently and gather together notices about several different problems. Other ways of finding out about potential problems are to subscribe to such mailing lists as Bugtraq (see http://www.securityfocus.com/) and development mailing lists for individual software packages. Cheers, Matthew -- Dr Matthew J Seaman MA, D.Phil. 26 The Paddocks Savill Way PGP: http://www.infracaninophile.co.uk/pgpkey Marlow Tel: +44 1628 476614 Bucks., SL7 1TH UK pgp0.pgp Description: PGP signature
Re: ports security updates branch
Matthew Seaman wrote: However, is there a way to know if one of my installed packages has a security alert ? I guess not... but we never know... Subscribe to [EMAIL PROTECTED] -- FreeBSD security notices cover problems with ported applications, as do security alerts when the software in question appears in both ports and the base system. I am subscribed :) Whenever I use an OS in production, this is the first thing I do... Security notices tend to come out fairly infrequently Yes, it seemed like it. Ok then, I guess I'll subscribe to one og the security lists on the Net. The thing is that it is again a bit more work since I have a lot of servers to admin and they don't all have the same softwares installed. Thanks. Antoine ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ports security updates branch
I'd recommend signing up to www.zone-h.org's daily advisory report doesn't solve the problem for you, but has most advisories in a single daily email, which you can eye ball or use mail filters to high light ones that apply to you. - Original Message - From: Antoine Jacoutot [EMAIL PROTECTED] To: Matthew Seaman [EMAIL PROTECTED] Cc: [EMAIL PROTECTED]; Kris Kennaway [EMAIL PROTECTED] Sent: Friday, October 17, 2003 2:35 PM Subject: Re: ports security updates branch Matthew Seaman wrote: However, is there a way to know if one of my installed packages has a security alert ? I guess not... but we never know... Subscribe to [EMAIL PROTECTED] -- FreeBSD security notices cover problems with ported applications, as do security alerts when the software in question appears in both ports and the base system. I am subscribed :) Whenever I use an OS in production, this is the first thing I do... Security notices tend to come out fairly infrequently Yes, it seemed like it. Ok then, I guess I'll subscribe to one og the security lists on the Net. The thing is that it is again a bit more work since I have a lot of servers to admin and they don't all have the same softwares installed. Thanks. Antoine ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ports security updates branch
Selon Simon Gray [EMAIL PROTECTED]: I'd recommend signing up to www.zone-h.org's daily advisory report doesn't solve the problem for you, but has most advisories in a single daily email, which you can eye ball or use mail filters to high light ones that apply to you. That is a very good idea. Thank you very much. Regards. Antoine ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
