On Wed, Aug 21, 2013, at 1:54, Antonio Kless wrote:
Is there any way to be noticed, when security updates or new releases are
available?
https://twitter.com/freebsd nearly would be a solution, if it did not
repostquestions from its
subscribers and other information that is not related
http://www.freebsd.org/security/rss.xml
?
Peter
On 21/08/2013 09:54, Antonio Kless wrote:
Is there any way to be noticed, when security updates or new releases are
available?
https://twitter.com/freebsd nearly would be a solution, if it did not
repostquestions from its
subscribers
:
Is there any way to be noticed, when security updates or new releases are
available?
https://twitter.com/freebsd nearly would be a solution, if it did not
repostquestions from its
subscribers and other information that is not related to updates
Is there any way to be noticed, when security updates or new releases are
available?
https://twitter.com/freebsd nearly would be a solution, if it did not
repostquestions from its
subscribers and other information that is not related to updates.
--
Best regards,
Antonio
On Wednesday 21 August 2013 07:54:06 Antonio Kless wrote:
Is there any way to be noticed, when security updates or new releases are
available?
https://twitter.com/freebsd nearly would be a solution, if it did not
repostquestions from its
subscribers and other information that is not related
On 21/08/2013 08:10, dgmm wrote:
On Wednesday 21 August 2013 07:54:06 Antonio Kless wrote:
Is there any way to be noticed, when security updates or new releases are
available?
https://twitter.com/freebsd nearly would be a solution, if it did not
repostquestions from its
subscribers
Oops, the security update issue isn't solved.
http://lists.freebsd.org/pipermail/freebsd-questions/2013-January/248511.html
# /usr/local/sbin/portaudit -Fda
Database created: Thu Jan 24 15:50:04 CET 2013
Affected package: chromium-24.0.1312.52
Type of problem: chromium -- multiple
On Thu, 24 Jan 2013 16:17:34 +0100, Ralf Mardorf wrote:
So I have to # portsnap fetch update?
Yes.
If so, wouldn't it cause dependency
issues, if I wouldn't update all ports?
If you use portmaster to deal with updating your installation,
it will take care of the dependencies. However, it
Hi :)
since I updated the ports tree I'm able to fix one issue after the other,
e.g. GDM now can start Xfce4.
IIUC correctly freebsd-update (
http://www.freebsd.org/cgi/man.cgi?query=freebsd-updatesektion=8 ) will
not take care about updates for e.g. Firefox, since I guess it doesn't
Hi,
On Wed, 23 Jan 2013 12:42:00 +0100
Ralf Mardorf ralf.mard...@alice-dsl.net wrote:
RM Because compiling does take very long, I will not update the whole
RM ports tree that often, I alos like to keep software versions that
RM fit to my needs when ever possible, but I guess without breaking
RM
On Wed, 23 Jan 2013 13:04:08 +0100, Jens Jahnke jan0...@gmx.net wrote:
[snip] Maybe
you should install portaudit too. It tells you for which ports security
flaws have been found.
To update a single port using portmaster you would run
# portmaster www/firefox
for example.
Hi Jens :)
thank
On 14/01/2013 22:44, n j wrote:
One thing to think about would be the option of port maintainers uploading
the pre-compiled package of the updated port (or if the size of the upload
is an issue then just the hash signature of the valid package archive so
other people with more bandwidth can
On Tue, Jan 15, 2013 at 10:13 AM, Matthew Seaman matt...@freebsd.orgwrote:
On 14/01/2013 22:44, n j wrote:
One thing to think about would be the option of port maintainers
uploading
the pre-compiled package of the updated port (or if the size of the
upload
is an issue then just the hash
n j nin...@gmail.com writes:
On Tue, Jan 15, 2013 at 10:13 AM, Matthew Seaman matt...@freebsd.orgwrote:
On 14/01/2013 22:44, n j wrote:
One thing to think about would be the option of port maintainers
uploading
the pre-compiled package of the updated port (or if the size of the
upload
Hi,
One of my primary concerns when managing a system is its security. In the
interest of security, I usually hold to that patch early, patch often.
Ports are kept well up-to-date and with portmaster it is not a problem to
keep updating the ports. However, as Ivan [1] pointed out on his blog on
On 1/14/2013 1:07 PM, n j wrote:
Hi,
One of my primary concerns when managing a system is its security. In the
interest of security, I usually hold to that patch early, patch often.
Ports are kept well up-to-date and with portmaster it is not a problem to
keep updating the ports. However, as
On 14/01/2013 13:10, Andrei Brezan wrote:
I thing that it's good to wait for ports to compile and to be able to
chose your configure options for the packages you install. It's good to
know what options you need and what options you don't and why, that's
one of the reasons why i'm using
On Mon, Jan 14, 2013 at 2:10 PM, Andrei Brezan andrei...@gmail.com wrote:
On 1/14/2013 1:07 PM, n j wrote:
Hi,
One of my primary concerns when managing a system is its security. In the
interest of security, I usually hold to that patch early, patch often.
Ports are kept well up-to-date and
On Mon, Jan 14, 2013 at 3:15 PM, Matthew Seaman matt...@freebsd.org wrote:
On 14/01/2013 13:10, Andrei Brezan wrote:
I thing that it's good to wait for ports to compile and to be able to
chose your configure options for the packages you install. It's good to
know what options you need and
On 14/01/2013 14:36, n j wrote:
The point of my question was exactly if it was possible to elaborate on the
pre-compiled packages from FreeBSD official repositories part. Would it
be possible to have a (security-wise) up-to-date pre-compiled packages in
the official repositories? Note, I don't
On Mon, Jan 14, 2013 at 3:43 PM, Matthew Seaman
m.sea...@infracaninophile.co.uk wrote:
On 14/01/2013 14:36, n j wrote:
The point of my question was exactly if it was possible to elaborate on
the
pre-compiled packages from FreeBSD official repositories part. Would it
be possible to have a
Hello list.
I run a daily script via cron
@daily rootfreebsd-update cron
Today I got this in my mail which usually means that I have to run
freebsd-update.
Looking up update.FreeBSD.org mirrors... 4 mirrors found.
Fetching metadata signature for
Am 05.10.2011, 07:11 Uhr, schrieb n dhert ndhert...@gmail.com:
Less than a week ago, there was security update -p3, tonight already -p4
rolled in..
Does somone know why ?
http://security.freebsd.org/advisories/FreeBSD-SA-11:05.unix.asc
Andreas
___
Less than a week ago, there was security update -p3, tonight already -p4
rolled in..
Does somone know why ?
applying -p3, rebuilding kernel (custom kernel: generic + option QUOTA), and
rebooting
caused my /var to be filled up to 108% (...) with a huge /var/log/Xorg.0.log
file ...
has -p4
I was wondering in the case of openssl:
http://security.freebsd.org/advisories/FreeBSD-SA-09:08.openssl.asc
Corrected: 2009-04-22 14:07:14 UTC (RELENG_7, 7.2-PRERELEASE)
2009-04-22 14:07:14 UTC (RELENG_7_2, 7.2-RC2)
2009-04-22 14:07:14 UTC (RELENG_7_1,
changed after it
is released. But if you do an update (CSUP) to RELENG_7_2
eg put the line *default tag=RELENG_7_2 in your supfile, then
that will download the security updates. You then need to do the
builds as it tells in the handbook.
Make sure you read and understand the procedures
about security updates? with openSUSE I
have an automatic update. For freeBSD, I didn't find anything on this
archive list and the google search sent me to old doc (2003)
http://www.daemonology.net/freebsd-update/binup.html
where is freeBSD in this respect?
thanks
jdd
--
Jean-Daniel Dodin
then, my question: what about security updates? with openSUSE I
have an automatic update. For freeBSD, I didn't find anything on this
archive list and the google search sent me to old doc (2003)
http://www.daemonology.net/freebsd-update/binup.html
where is freeBSD in this respect?
thanks
jdd
On Fri, Aug 15, 2008 at 12:39 PM, jdd sur free [EMAIL PROTECTED] wrote:
Hello :-)
so then, my question: what about security updates? with openSUSE I have an
automatic update. For freeBSD, I didn't find anything on this archive list
and the google search sent me to old doc (2003)
http
On Fri, 15 Aug 2008 09:09:01 +0200
jdd sur free [EMAIL PROTECTED] wrote:
Hello :-)
I'm new to freeBSD, so forgive me if my question is boring :-(
[...]
Welcome jjd!
so then, my question: what about security updates? with openSUSE I
have an automatic update. For freeBSD, I didn't find
Manolis Kiagias a écrit :
The FreeBSD base system gets security updates through freebsd-update,
very easily:
freebsd-update fetch
freebsd-update update
(assuming you install a -RELEASE version)
of course, for such use I will take the or stable version :-)
I was sure it was easy
of course, for such use I will take the or stable version :-)
I was sure it was easy :-)
thanks
jdd
Just to clarify, X-STABLE does not indicate end-user stability. It
indicates the ABI is (generally) stable (ABI-compatibility is
maintained within a branch). There are exceptions, but this
Is there an application that can be triggered by security advisory
e-mails, or the like, to automatically do cvsup and rebuild the system?
I know that would probably be a little difficult with the mergemaster
command.
Thanks
Chris Maness
___
Chris Maness wrote:
Is there an application that can be triggered by security advisory
e-mails, or the like, to automatically do cvsup and rebuild the system?
I know that would probably be a little difficult with the mergemaster
command.
I know that someone has written a script which parses
jimmie james [EMAIL PROTECTED] writes:
Curious why there's no mention of any security issues in
/usr/src/UPDATING on 4.11-STABLE systems, but browsing the cvs-src,
there's notes in RELENG_4_10, RELENG_4_11, Branch: RELENG_5_3?
Wouldn't it make sense to note it in all affected releases?
I
Curious why there's no mention of any security issues in
/usr/src/UPDATING on 4.11-STABLE systems, but browsing the cvs-src,
there's notes in RELENG_4_10, RELENG_4_11, Branch: RELENG_5_3?
Wouldn't it make sense to note it in all affected releases?
Yes, I'm subscribed to the relevent lists,
I got this message today from cron, apparently my security update failed.
Any Idea how to resolve this. I am also get a similar message on a 5.3 box.
Fetching updates signature...
fetch: http://update.daemonology.net/i386/4.9/updates.sig: Not FoundError
fetching updates
Jeff Maxwell
POS
I got this message today from cron, apparently my security
update failed.
Any Idea how to resolve this. I am also get a similar message
on a 5.3 box.
Fetching updates signature...
fetch: http://update.daemonology.net/i386/4.9/updates.sig:
Not FoundError fetching updates
Jeff
Jeff Maxwell wrote:
I got this message today from cron, apparently my security update failed.
Any Idea how to resolve this. I am also get a similar message on a 5.3 box.
Fetching updates signature...
fetch: http://update.daemonology.net/i386/4.9/updates.sig: Not
FoundError fetching updates
It
Jeff Maxwell wrote:
I got this message today from cron, apparently my security update failed.
Any Idea how to resolve this. I am also get a similar message on a 5.3
box.
Fetching updates signature...
fetch: http://update.daemonology.net/i386/4.9/updates.sig: Not
FoundError fetching updates
What are security updates?
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]
AA What are security updates?
AA ___
AA freebsd-questions@freebsd.org mailing list
AA http://lists.freebsd.org/mailman/listinfo/freebsd-questions
AA To unsubscribe, send any mail to [EMAIL PROTECTED]
-
How
Hexren writes:
How does it sound ;)
If a bug that affects security is found, an update to fix is
produced. In my definition this counts as security update.
Fine. So what's the connection to cron?
--
Anthony
___
freebsd-questions@freebsd.org
I run freebsd-update as a cron job to check for security updates daily.
At 07:16 PM 2/9/05 +0100, you wrote:
Hexren writes:
How does it sound ;)
If a bug that affects security is found, an update to fix is
produced. In my definition this counts as security update.
Fine. So what's
Hi all,
I am somewhat new to FreeBSD, and so not 100% used to this ports and
portaudit system.
My daily sec. output says, that my installed mod_php4-4.3.8_2 has two
vulnerabilities. So I did an cvsup /root/ports-supfile and a make
search=mod_php4 afterwards. But I can only see mod_php4-4.3.6
On Thu, Oct 14, 2004 at 01:57:35PM +0200, Matthias F. Brandstetter wrote:
Hi all,
I am somewhat new to FreeBSD, and so not 100% used to this ports and
portaudit system.
My daily sec. output says, that my installed mod_php4-4.3.8_2 has two
vulnerabilities. So I did an cvsup
On Thu, Oct 14, 2004 at 01:57:35PM +0200, Matthias F. Brandstetter wrote:
Now my question is: How should/can I update mod_php4, if there is no update
available?
portupgrade -all
wil upgrade all port installed on your system
___
[EMAIL PROTECTED]
On Thu, Oct 14, 2004 at 01:57:35PM +0200, Matthias F. Brandstetter wrote:
Hi all,
I am somewhat new to FreeBSD, and so not 100% used to this ports and
portaudit system.
My daily sec. output says, that my installed mod_php4-4.3.8_2 has two
vulnerabilities. So I did an cvsup
-- quoting Alexandr --
My daily sec. output says, that my installed mod_php4-4.3.8_2 has
two vulnerabilities. So I did an cvsup /root/ports-supfile and a
make search=mod_php4 afterwards. But I can only see mod_php4-4.3.6
now, which does not look like an update to
On Thu, Oct 14, 2004 at 01:57:35PM +0200, Matthias F. Brandstetter wrote:
Hi all,
I am somewhat new to FreeBSD, and so not 100% used to this ports and
portaudit system.
My daily sec. output says, that my installed mod_php4-4.3.8_2 has two
vulnerabilities. So I did an cvsup
hermm.
you might wanna read /usr/ports/UPDATING before you do that.
On Thursday 14 October 2004 17:07, Alexandr wrote:
On Thu, Oct 14, 2004 at 01:57:35PM +0200, Matthias F. Brandstetter wrote:
Now my question is: How should/can I update mod_php4, if there is no
update available?
Hello.
I am a systems adminstrator for large multi-national firm, consisting of approximately
90,000 employees.
I currently manage several FreeBSD 4.9 and 4.10 servers that serve as high volume web
servers to several of our employees worldwide.
As you can imagine, in firm the size of ours,
Kenneth A. Bond wrote:
[Has no way of upgrading sources via CVSup b/c of firewalls]
If your security guys do not block SSH traffic, you could check out your
sources using CVS over ssh.
See
http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/anoncvs.html
for some mirrors which allow ssh.
In the last episode (Aug 26), Kenneth A. Bond said:
I currently manage several FreeBSD 4.9 and 4.10 servers that serve as
high volume web servers to several of our employees worldwide.
As you can imagine, in firm the size of ours, various teams are
reponsible for various aspects of our
Giorgos Keramidas wrote:
On 2004-03-29 15:07, Charles Swiger [EMAIL PROTECTED] wrote:
On Mar 29, 2004, at 2:28 PM, Sean Murphy wrote:
[ ... ]
If a tag just the 4_9 Release in the CVSupfile can i just ignore the
mergemaster? also can I just CVSup the sources and build the ones I
want? (see above)
* Chuck Swiger [EMAIL PROTECTED] [2004-03-30 11:14]:
Giorgos Keramidas wrote:
On 2004-03-29 15:07, Charles Swiger [EMAIL PROTECTED] wrote:
On Mar 29, 2004, at 2:28 PM, Sean Murphy wrote:
[ ... ]
If a tag just the 4_9 Release in the CVSupfile can i just ignore the
mergemaster? also can I just
I would like to stay patched with the latest security advisories.
However usually I wait until the next release iso becomes available and
do a fresh install that includes all the known exploites. My reason
behind this is the makeworld, CVSup, and mergemaster is very time
and
applies binary security updates.
WWW: http://www.daemonology.net/freebsd-update/
--
Best regards,
Chris
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]
On Mar 29, 2004, at 2:28 PM, Sean Murphy wrote:
I don't want to build all sources when I just need these on my
system (bin, man, and crypto). The same selection I use from a new
install from /stand/sysinstall. Is that possible?
If you look at /etc/default/make.conf for a bunch of components
On 2004-03-29 15:07, Charles Swiger [EMAIL PROTECTED] wrote:
On Mar 29, 2004, at 2:28 PM, Sean Murphy wrote:
I don't want to build all sources when I just need these on my
system (bin, man, and crypto). The same selection I use from a new
install from /stand/sysinstall. Is that possible?
If
Hi :)
This might be a dumb question, but I was wondering if a king of stable
branch existed for the ports tree. Under OpenBSD I think you can follow
the ports tree stable branch so you only get security updates for your
ports.
This does not seem possible under FreeBSD, if I understood
On Fri, Oct 17, 2003 at 09:47:40AM +0200, Antoine Jacoutot wrote:
Hi :)
This might be a dumb question, but I was wondering if a king of stable
branch existed for the ports tree. Under OpenBSD I think you can follow
the ports tree stable branch so you only get security updates for your
Kris Kennaway wrote:
The reason I'm asking this is that I don't want to update my ports
everytime a new version comes out... except if it has a security issue.
FreeBSD doesn't provide this. Since our ports collection is about 5
times the size of OpenBSD's it's too much work.
Oh I know that :)
On Fri, Oct 17, 2003 at 01:22:05PM +0200, Antoine Jacoutot wrote:
Kris Kennaway wrote:
The reason I'm asking this is that I don't want to update my ports
everytime a new version comes out... except if it has a security issue.
FreeBSD doesn't provide this. Since our ports collection is
Matthew Seaman wrote:
However, is there a way to know if one of my installed packages has a
security alert ? I guess not... but we never know...
Subscribe to [EMAIL PROTECTED] -- FreeBSD security notices cover
problems with ported applications, as do security alerts when the
software in
PROTECTED]
To: Matthew Seaman [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]; Kris Kennaway [EMAIL PROTECTED]
Sent: Friday, October 17, 2003 2:35 PM
Subject: Re: ports security updates branch
Matthew Seaman wrote:
However, is there a way to know if one of my installed packages has a
security alert ? I
Selon Simon Gray [EMAIL PROTECTED]:
I'd recommend signing up to www.zone-h.org's daily advisory report
doesn't solve the problem for you, but has most advisories in a single daily
email, which you can eye ball or use mail filters to high light ones that
apply to you.
That is a very good
67 matches
Mail list logo