Patching/Upgrading OpenSSL
-
I don't recall the specific logic of the reinstall but the safest way to always ensure you have the correct version is to uninstall/reinstall the package. It's not worth splitting hairs over for something this important.
Just to be sure: If an update for the package is offered, I can install this directly. Or do I need to uninstall every package first?
-
-
Just to be sure: If an update for the package is offered, I can install this directly. Or do I need to uninstall every package first?
You need only uninstall the affected package and reinstall that one affected package. No need to reinstall all. Or just do a firmware upgrade in a bit when 2.1.2 rolls out and the packages will reinstall themselves.
Apparently the former is not safe (as in, it produces completely invalid results, like here).
That guy's invalid results aren't the fault of anything but his broken "testing" methodology.
-
Maybe the "Reinstall all Packages" Button should move to the Packages Section. So one can easily find it, push it if advised to and go for a beverage of choice afterwards…
-
That is for packages, not the base system. The base system requires an update to 2.1.2 (coming momentarily)
Oops. Sorry to waste time with that question. I know everyone there must be busy.
-
Maybe the "Reinstall all Packages" Button should move to the Packages Section. So one can easily find it, push it if advised to and go for a beverage of choice afterwards…
I'm not even sure whether the reinstall does really reinstall or what it does ATM and how that differs from uninstall/install and/or upgrade… Altogether, feeling highly uncomfortable with a package manager that seems to produce totally unpredictable results.
(The placement of the button goes totally beyond me and makes simply no sense.)
-
Hmm, am I missing something? The button is right there in the installed packages screen next to the package listing.
Steve
-
Hmm, am I missing something?
Talking about the Reinstall Packages button in Diagnostics - Backup/Restore
Click this button to reinstall all system packages. This may take a while.
-
Ah, I am missing something. ::)
Steve
-
Diagnostics: Backup/restore has a button to reinstall all installed packages.
-
Looks like 2.1.2 is up?
-
@joltman:
Looks like 2.1.2 is up?
Yep:
https://www.pfsense.org/download/ -
I just saw some people in the forum are getting an error when they're editing their rules. I'm going to hold off for now.
-
@joltman:
I just saw some people in the forum are getting an error when they're editing their rules. I'm going to hold off for now.
2.1.2 installed, working for me. Joltman: what's your IP address? …..
-
??
-
jimp posted that it is fixed… problem with autoconfigbackup package which was just updated to fix it...
https://forum.pfsense.org/index.php?topic=75060.msg409582#msg409582
The github commit to the package...
https://github.com/pfsense/pfsense-packages/commit/8869c3d78abf2bf7e72fe079ed457c28f3f8edab
-
@joltman: As I was reporting this, I agree to adams statement. Getting rid of autoconfbackup package before upgrading should completely avoid this. Afterwards it can be installed to it's new version (1.22) again without hiccups. Problem was completely related to the package, not the main distro.
Greets Jens
-
Cool. I'm proceeding. Poor ESF servers getting hammered hard.
EDIT: Finished. Looks good!
-
Hi all, I see the founder tweeted that keys may be OK:
https://twitter.com/neelmehta/status/453625474879471616
However I also know that people have pulled keys from FreeBSD. For OpenVPN users, do we need to swap our keys if we were using PFsense 2.1.x?
Thanks.
-
Thanks for getting 2.1.2 out!
This will be my first upgrade. I assume the firewall will need to reboot. Any quick advice or how long an upgrade takes, how long is the downtime, maybe these questions are already covered somewhere?
Does the secondary firewall upgrade when it sees it peer upgrade or do I trigger that manually?
I've announced 5+ minutes downtime in a 1 hour maintenance window. Looks like there's a backup / rollback option so I'm hoping that even if I hit a snag I won't be dead in the water!
Thanks,
-danny