From nobody Thu Oct 19 19:53:08 2023 X-Original-To: stable@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4SBJL82Dcqz4xpNf for ; Thu, 19 Oct 2023 19:53:20 +0000 (UTC) (envelope-from SRS0=m9XF=GB=quip.cz=000.fbsd@elsa.codelab.cz) Received: from elsa.codelab.cz (elsa.codelab.cz [94.124.105.4]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4SBJL71TFnz3glX for ; Thu, 19 Oct 2023 19:53:19 +0000 (UTC) (envelope-from SRS0=m9XF=GB=quip.cz=000.fbsd@elsa.codelab.cz) Authentication-Results: mx1.freebsd.org; dkim=none; spf=none (mx1.freebsd.org: domain of "SRS0=m9XF=GB=quip.cz=000.fbsd@elsa.codelab.cz" has no SPF policy when checking 94.124.105.4) smtp.mailfrom="SRS0=m9XF=GB=quip.cz=000.fbsd@elsa.codelab.cz"; dmarc=none Received: from elsa.codelab.cz (localhost [127.0.0.1]) by elsa.codelab.cz (Postfix) with ESMTP id 41139D788B for ; Thu, 19 Oct 2023 21:53:10 +0200 (CEST) Received: from [192.168.145.49] (ip-89-177-27-225.bb.vodafone.cz [89.177.27.225]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by elsa.codelab.cz (Postfix) with ESMTPSA id 44792D788F for ; Thu, 19 Oct 2023 21:53:09 +0200 (CEST) Message-ID: Date: Thu, 19 Oct 2023 19:53:08 +0000 List-Id: Production branch of FreeBSD source code List-Archive: https://lists.freebsd.org/archives/freebsd-stable List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-stable@freebsd.org X-BeenThere: freebsd-stable@freebsd.org MIME-Version: 1.0 User-Agent: Mozilla Thunderbird Subject: Re: FreeBSD Errata Notice FreeBSD-EN-23:09.freebsd-update [REVISED] Content-Language: cs-Cestina, en-US To: stable@freebsd.org References: <20231003230335.0B92113333@freefall.freebsd.org> <765ea31d-8f07-4916-b6fd-ba220dec80dc@inoc.net> From: Miroslav Lachman <000.fbsd@quip.cz> In-Reply-To: <765ea31d-8f07-4916-b6fd-ba220dec80dc@inoc.net> Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit X-Spamd-Bar: / X-Spamd-Result: default: False [-0.36 / 15.00]; AUTH_NA(1.00)[]; NEURAL_HAM_LONG(-1.00)[-1.000]; NEURAL_HAM_MEDIUM(-1.00)[-1.000]; NEURAL_SPAM_SHORT(0.43)[0.428]; FORGED_SENDER(0.30)[000.fbsd@quip.cz,SRS0=m9XF=GB=quip.cz=000.fbsd@elsa.codelab.cz]; MIME_GOOD(-0.10)[text/plain]; XM_UA_NO_VERSION(0.01)[]; FROM_NEQ_ENVFROM(0.00)[000.fbsd@quip.cz,SRS0=m9XF=GB=quip.cz=000.fbsd@elsa.codelab.cz]; MLMMJ_DEST(0.00)[stable@freebsd.org]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:42000, ipnet:94.124.104.0/21, country:CZ]; R_DKIM_NA(0.00)[]; R_SPF_NA(0.00)[no SPF record]; DMARC_NA(0.00)[quip.cz]; RCVD_TLS_LAST(0.00)[]; MID_RHS_MATCH_FROM(0.00)[]; FROM_HAS_DN(0.00)[]; RCVD_VIA_SMTP_AUTH(0.00)[]; ARC_NA(0.00)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; TO_DN_NONE(0.00)[]; PREVIOUSLY_DELIVERED(0.00)[stable@freebsd.org]; RCPT_COUNT_ONE(0.00)[1]; RCVD_COUNT_TWO(0.00)[2] X-Rspamd-Queue-Id: 4SBJL71TFnz3glX On 19/10/2023 16:19, Robert Blayzor wrote: > On 10/4/23 00:45, Peter Libassi wrote: >> Me too! My sshd_config is also customized and everytime there is a new >> patch I need to run freebsd-update manually and get rid of the attempt >> to trash the sshd config that could make my server unreachable over >> the network. >> >> Why does the freebsd-update need a vanilla sshd_config? > > > Or put your custom sshd config in another location and just update rc.conf: > > sshd_flags="-f /path/to/my/sshd_config" It is hackery workaround. freebsd-update must not overwrite user modified files without safe merge of conflicts. yet it did it in the past, for example pf.conf and some other vital files. Kind regards Miroslav Lachman