security advisories and the creating time of my system
Stevan Tiefert
stevan at rot-1.de
Wed Mar 2 09:53:33 PST 2005
On Wed, 2 Mar 2005, Nathan Kinkade wrote:
> On Wed, Mar 02, 2005 at 06:25:48PM +0100, Stevan Tiefert wrote:
> > On Wed, 2 Mar 2005, Nathan Kinkade wrote:
> >
> > > On Wed, Mar 02, 2005 at 05:03:35PM +0100, Erik Norgaard wrote:
> > > > Nathan Kinkade wrote:
> > > > >>The security advisory give me the possibility to patch my system or to
> > > > >>download the "patched" FreeBSD via ftp. How can I recognize which creation
> > > > >>time the running system has?
> > > > >
> > > > >Try the command `uname -v`.
> > > >
> > > > AFAIK this command tells you the build time, but now how fresh the
> > > > source was.
> > > >
> > > > Erik
> > >
> > > Yes, you are correct, but he mentions that he wants to know the
> > > "creation" (build?) time of the "running system," so I figured that the
> > > date/time provided by uname was what he was looking for. Maybe you are
> > > right, though. Perhaps more important is whether his sources are newer
> > > than the fix date.
> > >
> > > Nathan
> >
> > Hello Nathan,
> >
> > I need the date/time to decide if I need to download a version from the
> > ftp-server in belief I would not need to patch my system anymore. But you
> > are writing there is a better method to decide when a download is
> > necessary or not? Which one?
>
> No, I don't mean to imply that there is a better method. It just
> depends on what you are trying to determine. If you regularly use cvsup
> to update your sources and you have cvsup'd since the correction date of
> the security warning then you don't need to download the patch, as you
> would already have merged the corrections into the source tree on your
> local machine. In that case, you could just recompile the utility, or
> the kernel, as they case may be. If you have no idea whether you have
> sync'd your sources since the correction date of the security date, then
> you can alway look at the CVS version string in the file in question.
> It will look something like:
>
> $FreeBSD: src/sbin/ifconfig/ifconfig.c,v 1.92 2003/10/26 04:36:47 peter Exp $
>
> Basically, if your sources, or the particular source file in question,
> are not newer than correction date listed in the security alert then you
> need to follow the directions to fix or workaround the problem.
>
> Nathan
>
Hello Nathan,
in a security advisory in part V. is written:
V. Solution
Perform one of the following:
1) Upgrade your vulnerable system to 4-STABLE or 5-STABLE, or to the
RELENG_5_3, RELENG_5_2, RELENG_4_10, or RELENG_4_8 security branch dated
after the correction date.
Can you say me how to get of a running system the date? Because if the
system is after the correction date I do not have to download via ftp. If
not I have to...
With regards
Stevan Tiefert
More information about the freebsd-questions
mailing list