Easy, just direct a similar rant towards each and every upstream project
Some say "the internet never forgets". Try finding some old version of a long forgotten application and find out
Thanks. So will this get me the source code to the O.S. or also to all the latest version of all the packages for optional software for that O.S. release? How do I build a package file on a development system to then copy over to the deployment system and use "pkg" to install it? Make install will install things on my development system but will not give me a package I can copy over to the deployment system and use the installer to install there (or indeed even just a tarball which isn't ideal anyway as it doesn't warn me about missing dependencies). It will also not build all the dependencies but I guess pkg will tell me about the missing dependencies once I try to install the package and I can build those, rinse and repeat.
Anything before 9.0 won't support pkg(8) aka PKGNG. Those versions used the 'old' pkg_tools.
make package has existed since the dawn of time, or FreeBSD 3.0 in my case.There's also
make package-recursive, which does what you would expect.I don't understand why you aren't storing those files yourself, if they're that important to you. Why are you relying on third parties to keep providing them?
Before there was pkgng we had pkg, as in pkg_info, pkg_install, etc. Ports needed to be installed into /usr/local, then make package would create a tarball containing all the files in pkg-plist + install scripts + the plist itself. Packages were staged on a real live FreeBSD system on infrastructure called Bento. There was a site called redports that assisted developers with package testing. I assume they had real computers (for jail was still a gleam in someone's eye).
Thanks, I'll try make package-recursive.
Because it works.
I used to use portmaster when I was building things from source
So, lots of words with not a single real answer. Well then, I guess we know what the answer is. Yes, fear is one component of it, I'll leave the others to the readers' conclusion...
Much of this thread has been dominated by people like Beavis preaching to those trying to solve real world problems, delivering haughty sermons about what should and ought to be, in theory, while simultaneously demonstrating a comprehensive lack of knowledge or understanding of the real world or its constraints, or any respect for other people who have to deal with the said practical real world constraints. Is this another example of the same or do you know something the rest of us don't? I've never heard of Windows 3.3. There was 3.2 and 3.5 but AFAIK, there was no 3.3.
Keep whining. It's bound to work eventually.
That's what those clients, said. Especially one of clients that got pwned. Their strategy to not update software resulted in a lot more pain than they had bargained for.
I'm glad your way works for you. My way works for me too. I've never had a security breach in ~45 years so I think I'll keep doing what I'm doing, thank you. Even if I, unlike our friend Beavis, don't already know everything and don't have nothing to learn from anyone else.
The recent update to Firefox-102esr introduced two minor inconveniences:
What software gets released in ports and packages IS under FreeBSD's control. The bug in Firefox-esr 102 was reported to upstream several months ago and was released to the unsuspecting FreeBSD user community in April. At that time 102esr was known to be broken and it was known that upstream was not going to fix it. So, why was it released? Why was it not simply skipped? Let me guess: security. Well, if one wants to prevent car theft then destroying the car is one way of securing it.
Restating the original issue is not shifting the goalpost. It simply brings the discussion back to the central question, the availablity of working packages regardless of the OS version.
