security advisories and the creating time of my system

Nathan Kinkade nkinkade at ub.edu.bz
Wed Mar 2 09:45:53 PST 2005 

On Wed, Mar 02, 2005 at 06:25:48PM +0100, Stevan Tiefert wrote:
> On Wed, 2 Mar 2005, Nathan Kinkade wrote:
> 
> > On Wed, Mar 02, 2005 at 05:03:35PM +0100, Erik Norgaard wrote:
> > > Nathan Kinkade wrote:
> > > >>The security advisory give me the possibility to patch my system or to
> > > >>download the "patched" FreeBSD via ftp. How can I recognize which creation
> > > >>time the running system has?
> > > >
> > > >Try the command `uname -v`.
> > >
> > > AFAIK this command tells you the build time, but now how fresh the
> > > source was.
> > >
> > > Erik
> >
> > Yes, you are correct, but he mentions that he wants to know the
> > "creation" (build?) time of the "running system," so I figured that the
> > date/time provided by uname was what he was looking for.  Maybe you are
> > right, though.  Perhaps more important is whether his sources are newer
> > than the fix date.
> >
> > Nathan
> 
> Hello Nathan,
> 
> I need the date/time to decide if I need to download a version from the
> ftp-server in belief I would not need to patch my system anymore. But you
> are writing there is a better method to decide when a download is
> necessary or not? Which one?

No, I don't mean to imply that there is a better method.  It just
depends on what you are trying to determine.  If you regularly use cvsup
to update your sources and you have cvsup'd since the correction date of
the security warning then you don't need to download the patch, as you
would already have merged the corrections into the source tree on your
local machine.  In that case, you could just recompile the utility, or
the kernel, as they case may be.  If you have no idea whether you have
sync'd your sources since the correction date of the security date, then
you can alway look at the CVS version string in the file in question.
It will look something like:

$FreeBSD: src/sbin/ifconfig/ifconfig.c,v 1.92 2003/10/26 04:36:47 peter Exp $

Basically, if your sources, or the particular source file in question,
are not newer than correction date listed in the security alert then you
need to follow the directions to fix or workaround the problem.

Nathan
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/freebsd-questions/attachments/20050302/e7671806/attachment.bin

More information about the freebsd-questions mailing list