Port Changes FAQ
Chris Maness
chris at chrismaness.com
Mon Jun 16 21:05:59 UTC 2014
What version of FreeBSD implements the now pkg (8)?
Thanks,
Chris Maness
On Sun, Jun 15, 2014 at 2:03 PM, Chris Maness <chris at chrismaness.com> wrote:
> Thanks, Matt for illuminating this process.
>
> Chris
>
> On Sun, Jun 15, 2014 at 9:51 AM, Matthew Seaman <matthew at freebsd.org> wrote:
>> On 15/06/2014 14:38, Chris Maness wrote:
>>> Thanks, guys. I like the new pkg (8) command. Will they be
>>> recompiling ports whenever they have been patched against
>>> vulnerabilities?
>>
>> The official pkg sets get updated on a weekly basis -- a snap shot of
>> the ports tree is taken on a Wednesday, and packages are built from
>> that, which generally takes a few days, so new packages are usually
>> available on Saturday.
>>
>> The worst case scenario is that a vulnerability is announced on a
>> Wednesday after the weekly build has begun, so the fixed package
>> wouldn't then appear in the repos until about 10 days later.
>>
>> For a really serious vulnerability with exploits in the wild, I'm sure
>> the usual package building schedule would be modified. It's also the
>> case that portmgr (who are in charge of building the packages) work
>> closely with secteam and ports-secteam so can get advanced warning
>> before vulnerabilities are published. Meaning they could have fixed
>> packages ready when the announcement is made. But that depends on many
>> outside factors, so cannot be relied upon.
>>
>> Cheers,
>>
>> Matthew
>>
>> --
>> Dr Matthew J Seaman MA, D.Phil.
>> PGP: http://www.infracaninophile.co.uk/pgpkey
>>
>>
More information about the freebsd-questions
mailing list