Hi everyone,
I have a question regarding staying current in a production environment. I'm trying to build and keep a webserver uptodate using freebsd 7.2.
Here's the process i've been following:
Subscibe to http://lists.freebsd.org/mailman/listinfo/freebsd-announce
Install using minimum config + add man pages from cd.
Copy standard/ports cvsup files.
Edit the files and to change the CVSUP to an available server.
Csup using each files.
Build world
Create custom kernel:
Build and install kernel
reboot
Boot into single user mode
Followed by:
I then read both /usr/src/UPDATING and /usr/ports/UPDATING
Once I think everything is fine, I run portupgrade -arR and prey a little.
If it's a production build, I obviously test this on an identical setup prior to executing it on the live unit.
So back to my question, I have just installed a new system using the 7.2-RELEASE-i386-disc1.iso selecting minimum + man.
If i'm not creating a custom kernel, Is it safe to follow this process?
Check for vulnerable ports:
Update vulnerable port:
Check my emails for updates on FreeBSD.
I'm a little scared.... fresh install with 7.2 and running freebsd-update said there is no updates available?
Thanks,
Fatman
I have a question regarding staying current in a production environment. I'm trying to build and keep a webserver uptodate using freebsd 7.2.
Here's the process i've been following:
Subscibe to http://lists.freebsd.org/mailman/listinfo/freebsd-announce
Install using minimum config + add man pages from cd.
Copy standard/ports cvsup files.
Code:
#cp /usr/share/examples/cvsup/standard-supfile /
#cp /usr/share/examples/cvsup/ports-supfile /
Csup using each files.
Code:
#csup -L 2 /standard-supfile
#csup -L 2 /ports-supfile
Build world
Code:
#cd /usr/src
#make buildworld
Create custom kernel:
Code:
#cp /usr/src/sys/i386/conf/Generic /usr/src/sys/i386/conf/www
#ee /usr/src/sys/i386/conf/www
Build and install kernel
Code:
#make buildkernel KERNCONF=www
#make installkernel KERNCONF=www
reboot
Boot into single user mode
Code:
#mergemaster -p
#cd /usr/src/
#make installworld
#mergemaster
#reboot
Followed by:
Code:
#pkgdb -F
#portsdb -Uu
#portaudit -Fda
#portversion -l '<'
I then read both /usr/src/UPDATING and /usr/ports/UPDATING
Once I think everything is fine, I run portupgrade -arR and prey a little.
If it's a production build, I obviously test this on an identical setup prior to executing it on the live unit.
So back to my question, I have just installed a new system using the 7.2-RELEASE-i386-disc1.iso selecting minimum + man.
If i'm not creating a custom kernel, Is it safe to follow this process?
Code:
#portsnap fetch
#portsnap extract
#portsnap update
#freebsd-update fetch
#freebsd-update install
Check for vulnerable ports:
Code:
#portaudit -Fda
Update vulnerable port:
Code:
portmaster -dB [port path]
Check my emails for updates on FreeBSD.
I'm a little scared.... fresh install with 7.2 and running freebsd-update said there is no updates available?
Thanks,
Fatman