Avoiding source code on production servers
Eric W. Bates
ericx at ericx.net
Fri May 22 14:45:21 UTC 2009
Tonix (Antonio Nati) wrote:
> I'm in the phase of planning my new generation of FreeBSD servers, and I
> would love to make them more easy to upgrade.
> Main problem I have currently is I do not want any source code on
> production server, so freebsd-update is welcome, but... what about
> packages?
> I would use packages, but they are not easy to upgrade, while ports can
> be easy to upgrade, but need to have sources an servers.
No source is a nice ideal; but you may not be able to stick to that and
still get what you need. e.g. you may not want to always have the
default options for every port. Just off the top of my head, I like SSL
and English collation for mysql.
You might consider using a single machine as your build machine and
rsync your binaries out of it. If you really want to get rigorous and
are maintaining a number of machines, then cfengine might help.
> What do you suggest me? What is currently done on other environments?
>
> Thanks,
>
> Tonino
>
--
Eric W. Bates
ericx at ericx.net (please note new address)
More information about the freebsd-isp
mailing list