Ben Russo said: > If you take a RedHat 7.2 install, (the base, without the errata) and then > download the > SRPMS for RedHat Enterprise AS, you will find that there are only a few > that are different, > from then on all you have to do is rpmbuild the errata when they come out. > You can have a 5 year lifespan on your personal server for free with a > little extra work.
curious, does redhat provide the erratta updates to the public? from what I have seen they do not, so it would be up to the end user to find the patch & patch manually. Not that they are under any obligation to provide such information, from my understanding the GPL only requires source distribution for those that recieve the binary distribution. Checking redhat's errata site makes me believe that this is indeed the case with errata: compare these 2 (otherwise seemingly identical advisories): https://rhn.redhat.com/errata/RHSA-2003-062.html https://rhn.redhat.com/errata/RHSA-2003-063.html both are for the OpenSSL timing attack, yet the advanced server packages are marked as "only available through RHN". Now they may very well give free RHN users access to these packages but I'd be suprised if they did. not that it matters to me, all my important systems are debian :) but I thought I would mention the above point anyways..maybe someone has more concrete information. nate -- redhat-list mailing list unsubscribe mailto:[EMAIL PROTECTED] https://listman.redhat.com/mailman/listinfo/redhat-list
