On Thursday 27 December 2007 09:17:37 new_guy wrote: > I would like to install OpenBSD *once* and keep it patched and secured for > many years there after (5 - 7 years) in a production environment. Would it > be feasible to get a snapshot today and follow -current for many years w/o > having to reinstall? Basically, this approach would skip -stable and > -release and always be -current. I understand the implications of being > current and that things might change and break and may need re-configuring > on occasion. I'm OK with that... I just don't want to reinstall a -release > every year... although I'll still buy CDs as they are released to support > the project. > > Thanks, > Brad
There are two problems with what you are talking about. The first is that by its vary nature -current is a moving target, and there could be a time when upgrading to the latest -current for a security fix might introduce some new feature which you don't want. In other words, you can't just apply patches to -current, you need to move to the lastest code. The second problem are flag days, when something has changed such that you almost certainly want to reinstall the OS. The move from a.out to ELF binary format is a good example of that. You should always have a fall back procedure in place too, but thats always the case. --STeve Andre'
