Mirror Site status(es)
We can not control the rate at which mirrors are updated. Therefore you may need to verify that your mirror of choice is current.
Please check with our
mirror status page before selecting a mirror.
Mirror Site instructions and information
You must choose a mirror site to obtain the packages from. The site www.blastwave.org does not have the bandwidth to serve package downloads directly.
Add either "/unstable" or "/stable" to the end of one of the URLs below. The "unstable" changes quite often and you will get the most up to date software from there. The software in the "stable" tree is a little older and has been through a complete bug review process. This does not imply that it is bug-free. It does state that there are no open bugs filed against anything in the "stable" tree. Most people choose "unstable".
The good news is, James Lee has volunteered to be our "stable" tree maintainer, as of 2005. Currently, we do once-a-quarter updates of packages in stable.
If you use "stable", you will commonly be a few months behind in package versions, for the tradeoff of using packages that dont have as many bugs filed against them. James does a great job of migrating only packages with low or no bug count, into the stable tree.
Use pkg-get for best use of mirror sites.,
Mirror Site status(es)
We can not control the rate at which mirrors are updated: thus, you need to verify that your mirror is current.
Please check with our
mirror status page before selecting a mirror.
Current public mirrors
If you have the bandwidth and disk space to spare to be another mirror site, in an area that is currently under-serviced, please let us know!
In general, http is the preferred transport.
Unofficial mirror sites
There are a few mirror sites that seem to have sprung up of their own accord, usually as a side effect of mirroring one of our primary mirror sites. It is unknown how often they sync up, or whether the sites are going to stick around. That being said, the fact that all the packages are md5-hashed and signed, means that if you have gnupg and textutils(md5) installed, it doesnt matter who mirrors the packages, as long as you have good download speeds from them!
Unofficial sites found so far:
- http://www.consultico.de/csw
- http://ftp.dk.xemacs.org/pub/sun/csw
- http://sunsite.bilkent.edu.tr/pub/sun-packages/csw
- http://ftp.ind.net/pub/mirrors/ftp.ibiblio.org/csw
- http://ftp.pu.edu.tw/Sun/metalab.unc.edu/csw
- http://ftp.uk.freebsd.org/pub/mirrors/sunsite.unc.edu/solaris/csw
- http://www.mirrorservice.org/sites/blastwave.org
Decomissioned sites
Please note that the following sites have been decomissioned. They should no longer be used as mirror sites.
- http://mirror.unixheads.com/csw
ftp://mirror.unixheads.com/csw
Using a mirror site, with the pkg-get tool
The best way to access a mirror site for individual machines, is via the pkg-get script, which will install a package, and all its dependancies (although you may also choose to download and install packages manually) .
You must install pkg-get v2.x. blastwave.org catalogs now have md5 hashes for each package, and are 'signed'. Only pkg-get v2.x can fully take advantage of these new formats. To most easily take advantage of the checksums, you can use "pkg-get install textutils
"
You must choose whether you want to download packages from the "stable" (tested for a while) tree, or the "unstable" (latest release, potentially untested) tree. The URLs given above are just a base url. You must then set the adjusted 'url' value in /opt/csw/etc/pkg-get.conf . For example:
url=http://usesolaris.org/pub/csw/unstable
You must also have a working "wget" somewhere in your $PATH. If you dont have one, you can download a binary directly from the top level of any of the mirror sites. EG:
http://mirrors.sunsite.dk/csw/unstable/wget.i386
Happily, Solaris 9 usually comes with wget, in /usr/sfw/bin. If present, this will be used, if you do not have wget in your PATH.
You may then use pkg-get to automatically download and install software that you want from the mirror site. For example,
pkg-get install gcc
For more things you can do with pkg-get, see the pkg-get home page
rsync servers(for multi-machine installations)
If you would like to keep a local mirror of the full archives in an efficient manner, the following sites currently allow rsync connections:
- rsync://www.ibiblio.org/sun-packages/csw
- rsync://ftp.math.purdue.edu/blastwave.org
- rsync://ftp.lug.udel.edu/csw
- rsync://carroll.aset.psu.edu/csw
- rsync://sunsite.utk.edu/csw
- rsync://ftp.heanet.ie/pub/blastwave/
- rsync://download.berlios.de/csw
- rsync://ftp.belnet.be/packages/csw
- rsync://ftp.d-tabor.lj.edus.si/csw
- rsync://rsync.mirror.ac.uk/blastwave.org
- rsync://ftp.esat.net/mirrors/blastwave.org/csw
- rsync://mirror.pacific.net.au/csw
- rsync://csw.almroth.com/csw
- rsync://stoofo.math.uni.lodz.pl/csw
- rsync://ftp.iasi.roedu.net/blastwave
- rsync://ftp.sh.cvut.cz/blastwave
This allows you to download all the packages once to a single machine, then point your internal machines' pkg-get configuration to that single internal machine, to maximize use of your local bandwidth speeds.
Note: do not use the -z option to rsync. The packages are all gzipped, which means -z will only slow things down. You should use the -H option, on the other hand, if you choose to mirror both "stable" and "unstable" portions of our archives.
Suggested options:
rsync -aH --delete
Older versions
Some sites choose to update their mirrors without the delete option turned on. This means that all older packages are available from them. One such site is
http://blastwave.informatik.uni-erlangen.de/oldpkgs/
GPG public key
Here is the current blastwave.org public key, which is used to sign the catalog files to verify package integrity across mirror sites. This ensures that the md5 hashes are not tampered with, which in turn ensure that the binaries themselves are not altered.
gpg verification is optional. However, if you have gpg installed [via "pkg-get install gnupg"], pkg-get will attempt to verify the catalog. If you wish to have the catalog file (with its list of checksums for each package) verified by gpg, then you should save this page and add the public key to your root "keyring". Eg:
wget http://www.blastwave.org/mirrors
gpg --import mirrors
If you have gpg installed, but do NOT wish gpg verification to take place, you must set "use_gpg=false
" in /opt/csw/etc/pkg-get.conf
-----BEGIN PGP PUBLIC KEY BLOCK-----
Version: GnuPG v1.2.1 (SunOS)
mQGiBD3qohgRBAC4L+hRl6MmKwCFDyzKOXoEedB5DWieIb+Pov1XZXnflSKJquZW
SKn8WLzmaVMx7ap65lxatwQ/WzoHy0lRBL5UbZwlufX8Zp0MbDMQ9LV8cpJOpSay
JQxzs/KeYI3CVgvKHNexOGmj25L5uXM4iSD5DELaQC/vHctsL5An+neq6wCglzkS
WbllT3w81iRl4tBUl32NMh8D/287jIPFYvTsRY/srHcbI5NGYPf067IYgB3yvf4d
qaQKUDq8N5+OTm/dTi11dW1XC1Cwj1HMBcMXjA5hvUOdoNWb7mgs2lNpmPcwnyT5
cOlXUzmz8MoAyZiwyqvXwkR1SeX46ExGQ30Qk7BB9czTvBgdhGOQT6QGO9GD5L1B
8K94A/4nKyDLGNEqoFdKGe4sq+GEm5sSjdd8gy0+ZVj/d3IO/bZhactjYYBVddDQ
7xv0yre/slPZ/U0sntGPd3iAw6kFEi0GPe7eIDDqAZrtyZGKUh9ecquGdAZ4psHN
rb1FsiIKLIdMb8PFYJ9gem5EULAhShsJBJd5mJWK6NlHNuPc3LQnRGlzdHJpYnV0
aW9uIE1hbmFnZXIgPGRtQGJsYXN0d2F2ZS5vcmc+iFkEExECABkFAj3qohgECwcD
AgMVAgMDFgIBAh4BAheAAAoJEAah7RvhLp0vnkMAoITzYpchxXMyT8umhZEWreh1
OxfeAJ9Mqv3D+AeeTcYQvo3XpBIDLnA9WIhGBBARAgAGBQI96t6AAAoJEApOj0IT
OtZqk44AnR1f3ylrkqc4ksqxSrYUzFKg4T/aAKC03HXXxcU5VjO1PAEijPUdeV6U
2Q==
=RSdH
-----END PGP PUBLIC KEY BLOCK-----
地震让大伙知道:居安思危,才是生存之道。
posted on 2007-04-20 10:45
小寻 阅读(2270)
评论(0) 编辑 收藏 所属分类:
常用资源