Secure update of /usr/src
文鳥
bunchou at googlemail.com
Sun Jan 13 04:14:09 PST 2008
2008/1/13, Erik Cederstrand <erik at cederstrand.dk>:
> 文鳥 wrote:
> > Hello all,
> >
> > is there any way to securely follow the STABLE branch of FreeBSD, e.g.
> > a cryptographically signed distribution method like portsnap? Afaik,
> > the usual update methods (CVSup, etc.) do not include any
> > authentication / integrity checking. Am I missing something here?
>
> freebsd-update(8) is portsnap for the base system. However, you can only
> follow RELEASE branches, not STABLE.
>
> Erik
>
Thanks for the reply. Unfortunately, I need to follow STABLE and (to
be policy-compliant) at the same time make sure that the code has not
been tampered with by, for example, checking the signature. Is there a
way to do this for STABLE?
Best regards
More information about the freebsd-questions
mailing list