Re: FreeBSD Security Survey

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hej Yann,

Yann Golanski wrote:
Quoth Roger Marquis on Tue, May 23, 2006 at 08:53:00 -0700

Peter Jeremy wrote:

One of the major problems with unattended/automatic updating is
that it is hard to filter them.

It's hard to make a good case for automatic updates when manual
updates are so easy.


So, here is a question: I have three machines, all on different hardware
but with the same version of FreeBSD that are updated manually. Now,
how about I get a dozen machines... How do I do that in a reasonable
amount of time?

You get yourself a build machine.
Say you have 10 amd64 machines and 10 intel boxes, well, then you'll
need one amd64 machine and one intel machine.
Set up jails on this build host. Each jail having the specific make.conf
and stuff configuration you like.
Let's say
intel machine:
jail-1 --> for your MySQL machines
jail-2 --> for your Apaches
jail-3 --> for your mailservers

go to each jail and built yourself some packages (make package). Then
use those packages to install them on your production machines.
You may want to abuse these jails to do some testing wether the packages
are okay too...

It really depends on how many machines you have, on how many different
tasks they have and on which archictures you're running.

The answer is: build host + jails for a testing environment...
This'll reduce your actual downtime.


regards,
Marian
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (Darwin)

iD8DBQFEdBpBgAq87Uq5FMsRAnAxAJ91Hwn1+D316JMQIzzFuY8vCmh7IACg0d5o
mjsNREbuXX1GrDpMcxo8JWE=
=wqUj
-----END PGP SIGNATURE-----
_______________________________________________
freebsd-security@xxxxxxxxxxx mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to "freebsd-security-unsubscribe@xxxxxxxxxxx"

Relevant Pages

  • Re: [Full-Disclosure] Is there any open source project support virtual machines
    ... >In our research project, we need to generate background traffic. ... >the problem is how to use one or two machines to simulate hundreds of ... You could use FreeBSD and jails. ... If you set it up intelligently, you can have 100s of jails on one system. ...
    (Full-Disclosure)
  • OT - Ever wonder why?
    ... packages of eight. ... Only in America......do they have drive-up ATM machines with Braille ... On an American Airlines packet of nuts: "Instructions: Open packet, ...
    (rec.sport.billiard)
  • Re: [SLE] A dynamic updates/supplementary server?
    ... the updates and supplementary trees. ... You mean some kind of caching proxy? ... A kind of system that caches all packages, ... especially clear to me how other machines could use this. ...
    (SuSE)
  • Re: Compiling Packages
    ... I have three computers, only one running FreeBSD ... >machines with good network connectivity. ... I've been getting more interested in clustering. ... you build packages over MPI?) ...
    (freebsd-questions)
  • Debian installer public key not available
    ... I have several machines running Debian. ... The following packages cannot be authenticated! ... Install these packages without verification? ... My other machines upgrade fine. ...
    (comp.os.linux.questions)