Re: FreeBSD Errata Notice FreeBSD-EN-23:09.freebsd-update [REVISED]

Reply: Miroslav Lachman : "Re: FreeBSD Errata Notice FreeBSD-EN-23:09.freebsd-update [REVISED]"
In reply to: Miroslav Lachman : "Re: FreeBSD Errata Notice FreeBSD-EN-23:09.freebsd-update [REVISED]"
Go to: [ bottom of page ] [ top of archives ] [ this month ]

From: Tomoaki AOKI <junchoon_at_dec.sakura.ne.jp>
Date: Thu, 19 Oct 2023 21:26:18 UTC

On Thu, 19 Oct 2023 19:53:08 +0000
Miroslav Lachman <000.fbsd@quip.cz> wrote:

> On 19/10/2023 16:19, Robert Blayzor wrote:
> > On 10/4/23 00:45, Peter Libassi wrote:
> >> Me too! My sshd_config is also customized and everytime there is a new 
> >> patch I need to run freebsd-update manually and get rid of the attempt 
> >> to trash the sshd config that could make my server unreachable over 
> >> the network.
> >>
> >> Why does the freebsd-update need a vanilla sshd_config?
> > 
> > 
> > Or put your custom sshd config in another location and just update rc.conf:
> > 
> > sshd_flags="-f /path/to/my/sshd_config"
> 
> It is hackery workaround. freebsd-update must not overwrite user 
> modified files without safe merge of conflicts. yet it did it in the 
> past, for example pf.conf and some other vital files.
> 
> Kind regards
> Miroslav Lachman

I don't think it hackery.
What should have been is that default sshf_config to be
in /etc/defaults and /etc/defaults/rc.conf points to it, and anyone
needs custom settings to create sshd_config in /etc/ssh (or in
somewhere else), like rc.conf case.

-- 
Tomoaki AOKI    <junchoon@dec.sakura.ne.jp>