[RFC] Ideas and Questions in security updates ( portaudit,
freebsd-update)
Ricardo A. Reis
ricardo_bsd at yahoo.com.br
Mon Apr 10 22:25:08 UTC 2006
Hi all,
I use FreeBSD for severals years and this Project now have a
possibility the full security update (src) with
freebsd-update, is really great for Release users but is break for Stable
user.
Ok !!! Exist a possibility for apply manual patch and compile issue,
but for me problem existe in fix kernel issue in stable branch because is
require a update for last stable and this result in {make
buildworld,kernel,installworld) large time for correct a security issue,
in large enviroment with jails and critical applications like
administrative ldap e high webservers.
Correct issue in large enviroment is a tormento, and result in full
downtime, what the recomendation for security update in large enviroment
with jail ?
About Ports security issues, one idea is integrate portaudit and
portupgrade or create another tool for update ports,
this ideia is based in Gentoo glsa-check
( http://www.gentoo.org/doc/en/security/security-handbook.xml?part=1&chap=14
)
Thanks for Attention and sorry for my bad english.
Ricardo A. Reis
UNIFESP
Unix and Network Admin
_______________________________________________________
Abra sua conta no Yahoo! Mail: 1GB de espaço, alertas de e-mail no celular e anti-spam realmente eficaz.
http://br.info.mail.yahoo.com/
More information about the freebsd-security
mailing list