Re: Dumb question about ports/packages

• Previous message: Colin J. Raven: "Re: WEIRD: telnet"
• In reply to: Ian Moore: "Re: Dumb question about ports/packages"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

To: freebsd-questions@freebsd.org, Matt Rechkemmer <tiberius@trancell.org>
Date: 13 Feb 2005 10:05:25 -0500

Ian Moore writes:

> On Fri, 11 Feb 2005 17:50, Matt Rechkemmer wrote:

> > Final question :-), is there anyway to determine if a base package is out
> > of date? Or is just wise to leave the base alone and upgrade when a new
> > release comes along.
>
> You should at least update your system when security vulnerabilities occur in
> the base system. To minimise upgrades, follow the security branch for your
> release - this only has security fixes, not new features. See the handbook
> for details. Subscribe to the Security Notifications list to get notification
> of base system vunerabilities.

The current policy for the release branches is that they are not
"security" branches, they are "errata" branches. The practical upshot
of this is that some particularly serious non-security problems do get
fixed on them.

To follow up a bit farther on the original poster's question: if you
don't know about a new version of software in the base system, and
you're not having problems with it, you don't need to update. This
doesn't apply to security problems, of course, which is why following
the security advisories is essential. FreeBSD is designed to work
well as an entire OS, so very few people need to update the base
system piecemeal. [This is why FreeBSD is very conservative about
adding anything new to the base system.]

Be well..

-- 
Lowell Gilbert, embedded/networking software engineer, Boston area
		http://be-well.ilk.org/~lowell/
_______________________________________________
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org"

• Previous message: Colin J. Raven: "Re: WEIRD: telnet"
• In reply to: Ian Moore: "Re: Dumb question about ports/packages"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Relevant Pages Re: local exploit ... While the "current" branch of FreeBSD is 4.x, there are usually security ... upgrade to 4.3 when it arrives soon. ... You can live without "chpass" for a while, ... (FreeBSD-Security) Re: sshd possible breakin attempt messages ... I don't know much about the nuts and bolts of FreeBSD or Security, ... The FAQs on the website are very good and the Denyhosts' config file is well ... Given that I am on 5.4, should I upgrade my sshd or do anything else at ... (freebsd-questions) Re: Kerberos 5 Security Alert? ... > for the base system (i.e., things that are part of FreeBSD proper). ... information about security vulnerabilities to do with the ports or the ... your daily system e-mail if you have a vulnerable version of any port ... (FreeBSD-Security) Re: Three FreeBSD 6 questions ... FreeBSD Update is only designed to track FreeBSD Security ... Do I need to downgrade to get the latest security updates? ... to get the security fixes you should upgrade the system to the ... latest -STABLE by doing a cvsup and then rebuilding your system. ... (freebsd-stable) Re: Buildworld and Security advisories. ... > I am new to FreeBSD source upgrading/patching source tree system. ... > patch all those bugs listed in FreeBSD Security Advisories? ... you can perform a binary upgrade from RELEASE to ... (freebsd-questions)