Secure update of /usr/src
Vince
jhary at unsane.co.uk
Sun Jan 13 10:58:54 PST 2008
Hi,
文鳥 wrote:
> 08/01/13 に Erik Cederstrand<erik at cederstrand.dk> さんは書きました:
>> 文鳥 wrote:
>>> 2008/1/13, Erik Cederstrand <erik at cederstrand.dk>:
>>>> 文鳥 wrote:
>>>>> Hello all,
>>>>>
>>>>> is there any way to securely follow the STABLE branch of FreeBSD, e.g.
>>>>> a cryptographically signed distribution method like portsnap? Afaik,
>>>>> the usual update methods (CVSup, etc.) do not include any
>>>>> authentication / integrity checking. Am I missing something here?
>>>> freebsd-update(8) is portsnap for the base system. However, you can only
>>>> follow RELEASE branches, not STABLE.
>>>>
>>>> Erik
<
<snip>
>> Erik
>>
> Yes, I am aware of that fact. However, 7.x STABLE is the only version
> apart from CURRENT that I was able to get working reliably on the
> hardware in question. And alas, even though the system in question is
> used for testing only,I am still bound by the company security policy
> in this matter... Guess I will have to wait until 7.0 is released.
> Thanks for your help in this matter.
>
I'm not suer how often its updated but you can to a limited degree
follow the RELENG_7_0 branch via freebsd-update already (see
http://www.daemonology.net/blog/2007-11-11-freebsd-major-version-upgrade.html)
However I'd say overall you may be better waiting for the release.
Vince
_______________________________________________
> freebsd-questions at freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> To unsubscribe, send any mail to "freebsd-questions-unsubscribe at freebsd.org"
More information about the freebsd-questions
mailing list