getting the running patch level

Doug Barton dougb at
Sun Aug 19 21:12:53 UTC 2012

On 08/19/2012 05:33, Jilles Tjoelker wrote:
> I think the idea of having 'make installworld' create something is good,
> but we should not hard-code policy by writing the information into a
> file that may be shown to unauthenticated users (such as by getty).
> A new file with a name=value format somewhat like /etc/lsb-release on
> Linux seems more appropriate. If the admin wants /etc/issue,
> /etc/rc.d/motd can create it.
> The new file is not a configuration file and tools like mergemaster and
> freebsd-update must not bother the admin about it. If all files under
> /etc are considered "configuration files", then perhaps a different
> location is better.

The way that you avoid mergemaster dealing with a file is to avoid
installing it as part of the process that mergemaster uses to create the
temproot directory (you can see this easily enough in the script). If
the file doesn't end up in the temproot, mergemaster will have no
knowledge of it.




    I am only one, but I am one.  I cannot do everything, but I can do
    something.  And I will not let what I cannot do interfere with what
    I can do.
			-- Edward Everett Hale, (1822 - 1909)

More information about the freebsd-security mailing list