Re: Is the server portion of freebsd-update open source?

• Previous message: Julian Elischer: "Re: Non-executable stack"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

To: Colin Percival <cperciva@freebsd.org>
Date: Thu,  3 Nov 2005 15:39:58 +0000 (GMT)

Colin Percival wrote:
> The FreeBSD Update build code is... umm... somewhere in between. I think
> the best way to explain it is to say that I don't care about copyright on
> the build code, but the code is a stinking pile of hacks upon hacks with
> multiple known bugs -- so I don't particularly want to expose it to public
> scrutiny and I doubt that it will be very useful either.
>
> Rewriting the build code is approaching the top of my todo list, but isn't
> there quite yet; in the meantime, if you can send me more details about what
> you want to do I'll see if I can accommodate you.

Thanks. Sorry for not getting back to you right away. The guys I'm
developing this project for have bought into open source and are
hesitant about using technology which isn't totally transparent and open
to peer review.

But in any case (after discussion), it seems like freebsd-update is in
fact the closest thing to what we need.

We have a many little embedded boxes in the field, and they need to pull
down updates. The updates are obviously non-standard:

 - Built with NOSHARED=no (all dynamic linking, no static).
 - Updates of various ports, like isc-dhcpd, quagga, vpn stuff etc.
 - Updates of our own customized binaries.
 - Custom kernel.
 - Greatly reduced fileset.

Getting access to the build code would keep us from having to implement
our own system (which would probably end up being based on
bsdiff/bspatch anyway).

Of course this is not a demand, but a request. BTW, thanks for all you
do toward security on FreeBSD.

Cheers,
Nate Nielsen

_______________________________________________
freebsd-security@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org"

• Previous message: Julian Elischer: "Re: Non-executable stack"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Re: Which Firewall? ... A second device, a NAT router, can not introduce ANYTHING in to my ... security updates and patches put in place. ... features, to add features, etc... ... operating system (even open source), ... (comp.security.firewalls) Re: freebsd-update says -p3, but ive got -p2 ... subsequently run freebsd-update. ... There was no kernel update in p3, hence you got the p2 GENERIC kernel. ... If you want uname to actually show p3, you will have to recompile your kernel, using something like this: ... and this changes everytime freebsd-update fetches updates - whether they include kernel updates or not. ... (freebsd-questions) Re: Open Source or a commercial offering? ... wrong, I am a huge fan and promoter of open source, but from a purely ... be largely self-maintaining with the exception of possibly doing updates ... So, for long term cost: many, if not all, spam solutions and virus ... they don't want to invest in in-house expertise, ... (Ubuntu) Re: Binary RHEL Updates available free ! ... > logo/trademark on a GPL package deny redistibution of that package because ... And note these are only the updates to keep a system ... Open Source is what it's all about. ... (linux.redhat) Re: Binary RHEL Updates available free ! ... logo/trademark on a GPL package deny redistibution of that package because ... updates, and thats all I have, do NOT include those 2 files. ... Open Source is what it's all about. ... (linux.redhat)