[nycbug-talk] Automated package security check OpenBSD
Marco Scoffier
marco at metm.org
Mon Feb 13 11:41:03 EST 2006
On Mon, Feb 13, 2006 at 09:42:11AM -0500, michael wrote:
>
>Marco, I know and use portaudit on FreeBSD boxen. But I'll beg the
>obvious.. why not just upgrade the OpenBSD? Not only is keeping
>current a good idea, but, 3.7 will expire soon and it really is (IMO)
>the easiest BSD to upgrade.
>
>1. download bsd.rd (ramdisk) to the root directory
>2. download etc38.tgz and untar in safe place
>3. reboot, at the boot prompt type bsd.rd
> at the next prompt type (U)pgrade.
> 'Congratulations..', shell returned
>4. /mnt/usr/sbin/chroot /mnt
> TERM=vt220 /usr/local/sbin/mergemaster -r -t /path/to/new/etc
> exportPKG_PATH=
> 'ftp://ftp2.usa.openbsd.org/put/OpenBSD/3.8/packages/i386'
> "pkg_add -u -F update" to upgrade all packages in place.
>5 exit & reboot
>
Hi Michael,
Thanks for the five step help. Especially the mergemaster part which
isn't here: http://www.openbsd.org/faq/upgrade38.html
I'm planning on upgrading soon, but just waiting for a little peace of
mind, a free evening, when I can go about testing that I haven't broken
any of the many Virtually Hosted services I have running. Mostly
worried about dovecot and mailman which will have many people on my ass
if they are down for too long, and the software RAID5 (george gives an
"I told you so" chuckle... )
--
Marco
More information about the talk
mailing list