Patching SSH

Matthew Seaman m.seaman at infracaninophile.co.uk
Thu Sep 18 04:38:14 PDT 2003 

On Wed, Sep 17, 2003 at 04:01:40PM -0800, Jon Reynolds wrote:
> I have SSH installed with the base install of 4.7. I downloaded the
> patch and followed the directions: cd /usr/src - patch < /path/to/patch.
> when I issue that command it asks me which file I would like to patch I
> type in buffer.c and it tells me this file cannot be found. What file do
> I need to patch if not buffer.c?

If that is an otherwise unpatched 4.7-RELEASE system, then there are
more security patches to apply than just the latest fun'n'games with
openssh.

The simplest way to get a fully patched source tree is to use cvsup(1)
with a sup-file like this (should be substantially the same as
/usr/share/examples/cvsup/standard-supfile):

    *default host=cvsup7.us.FreeBSD.org
    *default base=/usr
    *default prefix=/usr
    *default release=cvs tag=RELENG_4_7
    *default delete use-rel-suffix
    *default compress
    
    src-all

Then either do a complete build,install world+kernel or just rebuild
the selected parts of the source tree as intructed in the security
advisories.

	Cheers,

	Matthew


-- 
Dr Matthew J Seaman MA, D.Phil.                       26 The Paddocks
                                                      Savill Way
PGP: http://www.infracaninophile.co.uk/pgpkey         Marlow
Tel: +44 1628 476614                                  Bucks., SL7 1TH UK
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 187 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/freebsd-questions/attachments/20030918/a18ea73b/attachment.bin

More information about the freebsd-questions mailing list