On Sat, 31 Mar 2001, Fred Whipple wrote:
> Aren't we using Linux for stability and reliability here? Geeze,
> I'm so ****in' tired of Red Hat releasing security updates to
> packages which break the packages, cause a ripple effect in
> services you're trying to provide in a production environment, and
> the rant lives on.
There are certain things I *do not* trust RH (or any vendor, for that
matter) to update: the kernel, SSH, crypto libs, and the like.
My recommendation: maintain those yourself. It's not hard at all. Go
to the openssl website and download the openssl 0.9.6 source RPMS,
recompile them, and install them. Go to the openssh website, download
the portable openssh 2.5.2p2 source RPMS, recompile them and install
them.
For example:
rpm --rebuild openssl-0.9.6.src.rpm
rpm -Uvh /usr/src/redhat/RPMS/i386/openssl*
rpm --rebuild openssh-2.5.2p2.src.rpm
rpm -Uvh /usr/src/redhat/RPMS/i386/openssh*
(The RPM names are from memory, so they may be a little off.)
--
John Hardin KA7OHZ ICQ#15735746 http://www.wolfenet.com/~jhardin/
[EMAIL PROTECTED] pgpk -a finger://gonzo.wolfenet.com/jhardin
768: 0x41EA94F5 - A3 0C 5B C2 EF 0D 2C E5 E9 BF C8 33 A7 A9 CE 76
1024: 0xB8732E79 - 2D8C 34F4 6411 F507 136C AF76 D822 E6E6 B873 2E79
-----------------------------------------------------------------------
Failure to plan ahead on someone else's part does not constitute an
emergency on my part.
- David W. Barts in a.s.r
<[EMAIL PROTECTED]>
-----------------------------------------------------------------------
Tomorrow: Daylight Savings Time begins
_______________________________________________
Redhat-list mailing list
[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list
