Is pkg quarterly really needed?
Michelle Sullivan
michelle at sorbs.net
Thu Apr 20 13:02:09 UTC 2017
Miroslav Lachman wrote:
>
> It is not just about updates but about new installs too - if you have
> dozens of machines for customers and you need them all in the same
> version. Then some customer need some package not installed on his
> machine and you cannot run "pkg install somepackage" because then you
> will end up with upgrade of already installed packages (dependencies)
> before new package from current quaterly branch is installed.
>
> (I do not use this scheme, but I understand the environment where
> somebody needs frozen pkg repo for much longer time than 3 months)
Create your own snapshot... it has 2 immediate and distinct advantages:
1/ Its frozen across all your systems (which means when random updates
on how the ports system works are applied breaking everything you're not
affected.)
2/ You can apply patches (security patches) as you need them instead of
having to upgrade/re-snapshot because the port manager refuses/ignores
requests to update the previous snapshot (the one you settled on)..
Then when all that is done, you can do as I did, fork the entire lot
into a secure, up to date and working tree/build system (for OS and
ports) where you actually have a working and reliable production system
rather than a moving target... then you can remove all the bloat and
unnecessary crap from the base OS and replace it all with ports stuff so
that the base OS doesn't need upgrading unless there is a
libc/kernel/etc security issue... Oh wait - that's exactly what I did
as well... you get the idea.. don't argue for it, just do it yourself
its a lot less of a waste of energy and you get exactly what you want/need.
Regards,
--
Michelle Sullivan
http://www.mhix.org/
More information about the freebsd-ports
mailing list