Language Selection

English French German Italian Portuguese Spanish

The (bad) deal with freebsd-update(8)

Filed under
BSD

The binary patches are quite a mysterious issue in FreeBSD, no matter freebsd-update( 8 ) is around since about 2005, and since FreeBSD 6.3-RELEASE it reached a new level of power. As I have had quarrels with FreeBSD aficionados on the issue of binary patches in FreeBSD, I thought I should clear a bit the mess.

Not only proprietary or closed-source operating systems come with binary security updates, but each and every Linux distribution which is supported by the issuer is provided with patched binaries when a security issue is identified and a solution is found. Unless you're running a source distribution (LFS, Gentoo, etc.), why would you prefer to build yourself from sources a patched binary, when an officially patched package can be made available? This one, the new package is only build once, not millions of times!

All the BSD flavors favor the source patches. When a security advisory is issued, you're supposed to apply the source patch and to rebuild the corresponding binary. Most people never considered this process as a bothersome one, as in real life, there is another issue taking even more time: rebuilding the vulnerable ports (when updated packages are not available).

More Here




More in Tux Machines

Mesa 10.3.2 Has A Couple Bug-Fixes

For those living by stable Mesa releases rather than the exciting, bleeding-edge Mesa Git code for open-source Linux graphics drivers, Mesa 10.3.2 is available this Friday night. Mesa 10.3.2 has fixes for Nouveauy's GM107 Maxwell and GK110 support, a handful of Intel DRI driver fixes, and also a few R600g/RadeonSI driver fixes. Mesa stable users interested in learning more can find the 10.3.2 release announcement by Emil Velikov, the new Mesa release manager. For those after the latest Git developments, Mesa 10.4 will be declared stable in December. Read more

openSUSE Tumbling, Fedora Slipping, and Calculating Linux

The big news today is the merger of openSUSE Factory and Tumbleweed. Fedora 21 is delayed again due to numerous blockers. Jack M. Germain looks at Calculate Linux 14 and Bryan Lunduke is back with another desktop review, this week LXDE. There's a "victory for free software" in the news, but it's not in Berlin where Microsoft Office is being substituted for OpenOffice. Read more

Ubuntu's shiny 10th birthday Unicorn: An upgrade fantasy

I've been covering Ubuntu for seven of the release’s 10 years and 14.10 is the first time I've had to dig deep into the release notes just to find something new to test. If you needed further proof that Canonical is currently solely focused on bringing its Unity 8 interface to mobile devices, 14.10 is the best evidence yet. Almost nothing Canonical develops has changed in this release - there isn't even a new desktop wallpaper. There are some updates to be sure, but they don’t hail from Canonical. Point release updates for default GNOME apps are included, as is a new kernel, the latest version of Mesa, and some other underlying tools. The lack of updates isn't unexpected, in fact that's been the plan all along. Read more

today's leftovers