Are system updates without reboots possible?
Steve O'Hara-Smith
steve at sohara.org
Thu Mar 10 13:13:35 UTC 2016
On Thu, 10 Mar 2016 12:04:05 +0000
Arthur Chance <freebsd at qeng-ho.org> wrote:
> The latest security advisory on openssl contains the usual mantra
>
> "Restart all deamons using the library, or reboot the system."
>
> I usually just reboot but find myself wondering if there's a reliable
> *automatic* way of identifying which running programs use any given
> library (or set of libraries), and identify whether or not they're
> daemons controlled by service(8).
>
> I suppose root could use ps and ldd to identify affected programs, but
> this seems like brute force and I can't see how to tie into the
> service(8) structure.
>
> Anybody got ideas on this? It could be useful for updating servers you'd
> rather not reboot.
You could just apply brute force and use service -R to restart all
services or reboot if the update included a new kernel. Overkill but safe.
--
Steve O'Hara-Smith <steve at sohara.org>
More information about the freebsd-questions
mailing list