You are viewing a plain text version of this content. The canonical link for it is here.
Posted to mirrors@apache.org by Andrew Kenna <an...@stamina.com.au> on 2002/11/05 05:49:21 UTC
RE: RE: Apache mirror in Malaysia. (Fwd: RE: Mirror Update time)
Ok good point, but really from a network security point of view are you willing to trust another company with your security ?
I know I sure as hell would not
Do you have the knowledge to upgrade your version of apache from the .tar.gz files that are downloadble from httpd.apache.org ?
Regards
Andrew
-----Original Message-----
From: myfriend.is.not.my.enemies.org [mailto:ikmal_ahmad@yahoo.com]
Sent: Tuesday, 5 November 2002 3:41 PM
To: Andrew Kenna
Subject: RE: RE: Apache mirror in Malaysia. (Fwd: RE: Mirror Update time)
Hi Mr. Andrew Kenna,
I think I have discuss with you in our previous email.
By the way, here I attach it back.
--- start here ---
Here are the thing from my update.
[root@report root]# up2date --list
Fetching package list for channel:
redhat-linux-i386-7.3... ########################################
Fetching Obsoletes list for channel:
redhat-linux-i386-7.3... ########################################
Fetching rpm headers...
Name Version
Rel
----------------------------------------------------------
None of the packages you requested were found, or they
are already updated.
[root@report root]#
Sorry coz late update u about this changes.
Thanks,
Ikmal.
--- till here ---
Thanks,
Ikmal.
--- Andrew Kenna <an...@stamina.com.au> wrote:
> How do you do your updates for apache ? Are they
> from the web site or via up2date ?
>
> Andrew
>
>
> -----Original Message-----
> From: myfriend.is.not.my.enemies.org [mailto:ikmal_ahmad@yahoo.com]
> Sent: Tuesday, 5 November 2002 3:26 PM
> To: Andrew Kenna
> Subject: RE: Apache mirror in Malaysia. (Fwd: RE:
> Mirror Update time)
>
>
> I request is back because of our conversation before
> to last e-mail.
>
> Thanks,
> Ikmal.
>
> --- Andrew Kenna <an...@stamina.com.au> wrote:
> > Subject: RE: Mirror Update time
> > Date: Fri, 25 Oct 2002 09:15:40 +1000
> > From: "Andrew Kenna" <an...@stamina.com.au>
> > To: <ik...@i-ownur.info>
> >
> > I'm not uncomfortable about it, as I said since
> > those security holes are patched up in the rpm's
> you
> > have installed your mirror is AOK
> >
> > Andrew
> >
> >
> > -----Original Message-----
> > From: myfriend.is.not.my.enemies.org
> [mailto:ikmal_ahmad@yahoo.com]
> > Sent: Thursday, 24 October 2002 5:46 PM
> > To: Andrew Kenna
> > Subject: RE: Mirror Update time
> >
> >
> >
> > Thanks Mr. Andrew,
> >
> > Sorry if all of my question make u uncomfortable.
> >
> > Regards,
> >
> > Ikmal.
> >
> >
> > Andrew Kenna <an...@stamina.com.au> wrote:
> >
> >
> > Keep running your current version of apache.
> >
> > Andrew
> >
> >
> > -----Original Message-----
> > From: myfriend.is.not.my.enemies.org
> [mailto:ikmal_ahmad@yahoo.com]
> > Sent: Thursday, 24 October 2002 4:28 PM
> > To: Andrew Kenna
> > Subject: RE: Mirror Update time
> >
> >
> > I'm understand about your concern. But I'm
> > referring to:
> >
> > http://rhn.redhat.com/errata/RHSA-2002-103.html
> >
> >
> > http://rhn.redhat.com/errata/RHSA-2002-160.html
> >
> >
> > this is the patches that have been give from
> Vendor
> > list Information at:
> >
> >
> > http://www.cert.org/advisories/CA-2002-17.html
> >
> >
> > That why I'm asking back to you about this thing.
> > If you still want me to make an update, I will
> > update it.
> >
> >
> > p/s: Sorry for my bad english.
> >
> >
> > Ikmal.
> >
> >
> > Andrew Kenna <an...@stamina.com.au> wrote:
> >
> >
> > I'm only thinking of security thats all, take a
> look
> > at http://httpd.apache.org/
> >
> > If you could upgrade it to at least 1.3.26, probly
> > what would be great is 1.3.27 the latest stable
> > secure version
> >
> > Andrew
> >
> >
> >
> >
> >
> > _____
> >
> > Do you Yahoo!?
> > Y! Web <http://webhosting.yahoo.com/> Hosting -
> Let
> > the expert host your web site
> >
> >
> >
> >
> > _____
> >
> > Do you Yahoo!?
> > Y! Web Hosting <http://webhosting.yahoo.com/> -
> Let
> > the expert host your web site
> >
> >
>
>
> __________________________________________________
> Do you Yahoo!?
> HotJobs - Search new jobs daily now
> http://hotjobs.yahoo.com/
__________________________________________________
Do you Yahoo!?
HotJobs - Search new jobs daily now
http://hotjobs.yahoo.com/
RE: RE: Apache mirror in Malaysia. (Fwd: RE: Mirror Update time)
Posted by Joshua Slive <jo...@slive.ca>.
On Tue, 5 Nov 2002, Andrew Kenna wrote:
> Ok good point, but really from a network security point of view are you willing to trust another company with your security ?
>
> I know I sure as hell would not
>
> Do you have the knowledge to upgrade your version of apache from the .tar.gz files that are downloadble from httpd.apache.org ?
>
Andrew, Why the heck are we arguing about this again? I thought we
clearly settled this last week: we will NOT require a specific version
of Apache. If we keep going back to old issues, we will never make
any progress.
Joshua.
RE: RE: Apache mirror in Malaysia. (Fwd: RE: Mirror Update time)
Posted by Haesu <ha...@towardex.com>.
Hi,
You shouldn't have much problems with manual upgrade. Granted,
Redhat does weird stuff (I mean they just nullified the differences
between csh and bash, WTF?), but it's still Linux.
When I am compiling my own packages like apache, overriding the
distribution's packaging system, I try to make sure that my installations
are kept clean within the file system, so should problems occur later, I
can simply rm -rf one directory and be done with it.
You may one to try compiling the new apache with
--prefix=/usr/local/whatever-you-want.. <other config options>
Or you can simply make sure that you use the GNU installation layout
instead of Redhat when running configure.
As long as you keep your installation seperate, away from Redhat
packaging, you should'nt have any problems next time you run the update.
You should actually try to remove the apache package from RPM
packaging/update utility, and then compile and install your own apache to
the preferred path/directory.
Hope this helps..
On Mon, 4 Nov 2002, myfriend.is.not.my.enemies.org wrote:
> Actually no problem for me to do upgrade from .tar.gz
> but in red hate, I'm prefer to use the up2date method
> because I think if u using other's method it will make
> the system having some problem when you do the update
> from that method back. So to avoid any problem with
> that, I prefer to use that method and I think the
> patches that have been give from the vendor can use.
> If not, I think it's the bad way if
> http://www.cert.org ask the user to refer to the
> vendor.
>
> Thanks,
> Ikmal.
>
> --- Andrew Kenna <an...@stamina.com.au> wrote:
> > Ok good point, but really from a network security
> > point of view are you willing to trust another
> > company with your security ?
> >
> > I know I sure as hell would not
> >
> > Do you have the knowledge to upgrade your version of
> > apache from the .tar.gz files that are downloadble
> > from httpd.apache.org ?
> >
> > Regards
> >
> > Andrew
> >
> >
> > -----Original Message-----
> > From: myfriend.is.not.my.enemies.org
> > [mailto:ikmal_ahmad@yahoo.com]
> > Sent: Tuesday, 5 November 2002 3:41 PM
> > To: Andrew Kenna
> > Subject: RE: RE: Apache mirror in Malaysia. (Fwd:
> > RE: Mirror Update time)
> >
> >
> > Hi Mr. Andrew Kenna,
> >
> > I think I have discuss with you in our previous
> > email.
> > By the way, here I attach it back.
> >
> > --- start here ---
> > Here are the thing from my update.
> >
> > [root@report root]# up2date --list
> >
> > Fetching package list for channel:
> > redhat-linux-i386-7.3...
> > ########################################
> >
> > Fetching Obsoletes list for channel:
> > redhat-linux-i386-7.3...
> > ########################################
> >
> > Fetching rpm headers...
> >
> > Name Version
> >
> > Rel
> >
> ----------------------------------------------------------
> >
> > None of the packages you requested were found, or
> > they
> > are already updated.
> > [root@report root]#
> >
> > Sorry coz late update u about this changes.
> >
> > Thanks,
> >
> > Ikmal.
> >
> > --- till here ---
> >
> > Thanks,
> > Ikmal.
> >
> >
> > --- Andrew Kenna <an...@stamina.com.au> wrote:
> > > How do you do your updates for apache ? Are they
> > > from the web site or via up2date ?
> > >
> > > Andrew
> > >
> > >
> > > -----Original Message-----
> > > From: myfriend.is.not.my.enemies.org
> > [mailto:ikmal_ahmad@yahoo.com]
> > > Sent: Tuesday, 5 November 2002 3:26 PM
> > > To: Andrew Kenna
> > > Subject: RE: Apache mirror in Malaysia. (Fwd: RE:
> > > Mirror Update time)
> > >
> > >
> > > I request is back because of our conversation
> > before
> > > to last e-mail.
> > >
> > > Thanks,
> > > Ikmal.
> > >
> > > --- Andrew Kenna <an...@stamina.com.au> wrote:
> > > > Subject: RE: Mirror Update time
> > > > Date: Fri, 25 Oct 2002 09:15:40 +1000
> > > > From: "Andrew Kenna" <an...@stamina.com.au>
> > > > To: <ik...@i-ownur.info>
> > > >
> > > > I'm not uncomfortable about it, as I said since
> > > > those security holes are patched up in the rpm's
> > > you
> > > > have installed your mirror is AOK
> > > >
> > > > Andrew
> > > >
> > > >
> > > > -----Original Message-----
> > > > From: myfriend.is.not.my.enemies.org
> > > [mailto:ikmal_ahmad@yahoo.com]
> > > > Sent: Thursday, 24 October 2002 5:46 PM
> > > > To: Andrew Kenna
> > > > Subject: RE: Mirror Update time
> > > >
> > > >
> > > >
> > > > Thanks Mr. Andrew,
> > > >
> > > > Sorry if all of my question make u
> > uncomfortable.
> > > >
> > > > Regards,
> > > >
> > > > Ikmal.
> > > >
> > > >
> > > > Andrew Kenna <an...@stamina.com.au> wrote:
> > > >
> > > >
> > > > Keep running your current version of apache.
> > > >
> > > > Andrew
> > > >
> > > >
> > > > -----Original Message-----
> > > > From: myfriend.is.not.my.enemies.org
> > > [mailto:ikmal_ahmad@yahoo.com]
> > > > Sent: Thursday, 24 October 2002 4:28 PM
> > > > To: Andrew Kenna
> > > > Subject: RE: Mirror Update time
> > > >
> > > >
> > > > I'm understand about your concern. But I'm
> > > > referring to:
> > > >
> > > > http://rhn.redhat.com/errata/RHSA-2002-103.html
> > > >
> > > >
> > > > http://rhn.redhat.com/errata/RHSA-2002-160.html
> > > >
> > > >
> > > > this is the patches that have been give from
> > > Vendor
> > > > list Information at:
> > > >
> > > >
> > > > http://www.cert.org/advisories/CA-2002-17.html
> > > >
> > > >
> > > > That why I'm asking back to you about this
> > thing.
> > > > If you still want me to make an update, I will
> > > > update it.
> > > >
> > > >
> > > > p/s: Sorry for my bad english.
> > > >
> > > >
> > > > Ikmal.
> > > >
> > > >
> > > > Andrew Kenna <an...@stamina.com.au> wrote:
> > > >
> > > >
> > > > I'm only thinking of security thats all, take a
> > > look
> > > > at http://httpd.apache.org/
> > > >
> > > > If you could upgrade it to at least 1.3.26,
> > probly
> > > > what would be great is 1.3.27 the latest stable
> > > > secure version
> > > >
> > > > Andrew
> > > >
> > > >
> > > >
> > > >
> > > >
> > > > _____
> > > >
> > > > Do you Yahoo!?
> > > > Y! Web <http://webhosting.yahoo.com/> Hosting -
> > > Let
> > > > the expert host your web site
> > > >
> > > >
> > > >
> > > >
> > > > _____
> > > >
> > > > Do you Yahoo!?
> > > > Y! Web Hosting <http://webhosting.yahoo.com/> -
> > > Let
> >
> === message truncated ===
>
>
> __________________________________________________
> Do you Yahoo!?
> HotJobs - Search new jobs daily now
> http://hotjobs.yahoo.com/
>
RE: RE: Apache mirror in Malaysia. (Fwd: RE: Mirror Update time)
Posted by "myfriend.is.not.my.enemies.org" <ik...@yahoo.com>.
Actually no problem for me to do upgrade from .tar.gz
but in red hate, I'm prefer to use the up2date method
because I think if u using other's method it will make
the system having some problem when you do the update
from that method back. So to avoid any problem with
that, I prefer to use that method and I think the
patches that have been give from the vendor can use.
If not, I think it's the bad way if
http://www.cert.org ask the user to refer to the
vendor.
Thanks,
Ikmal.
--- Andrew Kenna <an...@stamina.com.au> wrote:
> Ok good point, but really from a network security
> point of view are you willing to trust another
> company with your security ?
>
> I know I sure as hell would not
>
> Do you have the knowledge to upgrade your version of
> apache from the .tar.gz files that are downloadble
> from httpd.apache.org ?
>
> Regards
>
> Andrew
>
>
> -----Original Message-----
> From: myfriend.is.not.my.enemies.org
> [mailto:ikmal_ahmad@yahoo.com]
> Sent: Tuesday, 5 November 2002 3:41 PM
> To: Andrew Kenna
> Subject: RE: RE: Apache mirror in Malaysia. (Fwd:
> RE: Mirror Update time)
>
>
> Hi Mr. Andrew Kenna,
>
> I think I have discuss with you in our previous
> email.
> By the way, here I attach it back.
>
> --- start here ---
> Here are the thing from my update.
>
> [root@report root]# up2date --list
>
> Fetching package list for channel:
> redhat-linux-i386-7.3...
> ########################################
>
> Fetching Obsoletes list for channel:
> redhat-linux-i386-7.3...
> ########################################
>
> Fetching rpm headers...
>
> Name Version
>
> Rel
>
----------------------------------------------------------
>
> None of the packages you requested were found, or
> they
> are already updated.
> [root@report root]#
>
> Sorry coz late update u about this changes.
>
> Thanks,
>
> Ikmal.
>
> --- till here ---
>
> Thanks,
> Ikmal.
>
>
> --- Andrew Kenna <an...@stamina.com.au> wrote:
> > How do you do your updates for apache ? Are they
> > from the web site or via up2date ?
> >
> > Andrew
> >
> >
> > -----Original Message-----
> > From: myfriend.is.not.my.enemies.org
> [mailto:ikmal_ahmad@yahoo.com]
> > Sent: Tuesday, 5 November 2002 3:26 PM
> > To: Andrew Kenna
> > Subject: RE: Apache mirror in Malaysia. (Fwd: RE:
> > Mirror Update time)
> >
> >
> > I request is back because of our conversation
> before
> > to last e-mail.
> >
> > Thanks,
> > Ikmal.
> >
> > --- Andrew Kenna <an...@stamina.com.au> wrote:
> > > Subject: RE: Mirror Update time
> > > Date: Fri, 25 Oct 2002 09:15:40 +1000
> > > From: "Andrew Kenna" <an...@stamina.com.au>
> > > To: <ik...@i-ownur.info>
> > >
> > > I'm not uncomfortable about it, as I said since
> > > those security holes are patched up in the rpm's
> > you
> > > have installed your mirror is AOK
> > >
> > > Andrew
> > >
> > >
> > > -----Original Message-----
> > > From: myfriend.is.not.my.enemies.org
> > [mailto:ikmal_ahmad@yahoo.com]
> > > Sent: Thursday, 24 October 2002 5:46 PM
> > > To: Andrew Kenna
> > > Subject: RE: Mirror Update time
> > >
> > >
> > >
> > > Thanks Mr. Andrew,
> > >
> > > Sorry if all of my question make u
> uncomfortable.
> > >
> > > Regards,
> > >
> > > Ikmal.
> > >
> > >
> > > Andrew Kenna <an...@stamina.com.au> wrote:
> > >
> > >
> > > Keep running your current version of apache.
> > >
> > > Andrew
> > >
> > >
> > > -----Original Message-----
> > > From: myfriend.is.not.my.enemies.org
> > [mailto:ikmal_ahmad@yahoo.com]
> > > Sent: Thursday, 24 October 2002 4:28 PM
> > > To: Andrew Kenna
> > > Subject: RE: Mirror Update time
> > >
> > >
> > > I'm understand about your concern. But I'm
> > > referring to:
> > >
> > > http://rhn.redhat.com/errata/RHSA-2002-103.html
> > >
> > >
> > > http://rhn.redhat.com/errata/RHSA-2002-160.html
> > >
> > >
> > > this is the patches that have been give from
> > Vendor
> > > list Information at:
> > >
> > >
> > > http://www.cert.org/advisories/CA-2002-17.html
> > >
> > >
> > > That why I'm asking back to you about this
> thing.
> > > If you still want me to make an update, I will
> > > update it.
> > >
> > >
> > > p/s: Sorry for my bad english.
> > >
> > >
> > > Ikmal.
> > >
> > >
> > > Andrew Kenna <an...@stamina.com.au> wrote:
> > >
> > >
> > > I'm only thinking of security thats all, take a
> > look
> > > at http://httpd.apache.org/
> > >
> > > If you could upgrade it to at least 1.3.26,
> probly
> > > what would be great is 1.3.27 the latest stable
> > > secure version
> > >
> > > Andrew
> > >
> > >
> > >
> > >
> > >
> > > _____
> > >
> > > Do you Yahoo!?
> > > Y! Web <http://webhosting.yahoo.com/> Hosting -
> > Let
> > > the expert host your web site
> > >
> > >
> > >
> > >
> > > _____
> > >
> > > Do you Yahoo!?
> > > Y! Web Hosting <http://webhosting.yahoo.com/> -
> > Let
>
=== message truncated ===
__________________________________________________
Do you Yahoo!?
HotJobs - Search new jobs daily now
http://hotjobs.yahoo.com/