Port Changes FAQ

Chris Maness chris at chrismaness.com
Mon Jun 16 21:05:59 UTC 2014

What version of FreeBSD implements the now pkg (8)?

Chris Maness

On Sun, Jun 15, 2014 at 2:03 PM, Chris Maness <chris at chrismaness.com> wrote:
> Thanks, Matt for illuminating this process.
> Chris
> On Sun, Jun 15, 2014 at 9:51 AM, Matthew Seaman <matthew at freebsd.org> wrote:
>> On 15/06/2014 14:38, Chris Maness wrote:
>>> Thanks, guys.  I like the new pkg (8) command.  Will they be
>>> recompiling ports whenever they have been patched against
>>> vulnerabilities?
>> The official pkg sets get updated on a weekly basis -- a snap shot of
>> the ports tree is taken on a Wednesday, and packages are built from
>> that, which generally takes a few days, so new packages are usually
>> available on Saturday.
>> The worst case scenario is that a vulnerability is announced on a
>> Wednesday after the weekly build has begun, so the fixed package
>> wouldn't then appear in the repos until about 10 days later.
>> For a really serious vulnerability with exploits in the wild, I'm sure
>> the usual package building schedule would be modified.  It's also the
>> case that portmgr (who are in charge of building the packages) work
>> closely with secteam and ports-secteam so can get advanced warning
>> before vulnerabilities are published.  Meaning they could have fixed
>> packages ready when the announcement is made.  But that depends on many
>> outside factors, so cannot be relied upon.
>>         Cheers,
>>         Matthew
>> --
>> Dr Matthew J Seaman MA, D.Phil.
>> PGP: http://www.infracaninophile.co.uk/pgpkey

More information about the freebsd-questions mailing list