Re: FreeBSD Security Advisory FreeBSD-SA-05:21.openssl

From: Mike Tancsa (mike_at_sentex.net)
Date: 10/12/05

  • Next message: Matt Piechota: "Re: FreeBSD Security Advisory FreeBSD-SA-05:21.openssl" 
    Date: Wed, 12 Oct 2005 10:23:16 -0400
To: Ivan Voras <ivoras@fer.hr>

    At 10:13 AM 12/10/2005, Ivan Voras wrote:
    >Tobias Roth wrote:
    >>On Wed, Oct 12, 2005 at 12:09:53PM +0200, jere wrote:
    >
    >>And you cannot expect the port maintainers
    >>to backport security fixes if the upstream provider chose to release the
    >>fix only together with a new version.
    >
    >Yes you can, ask these guys: http://www.debian.org/. It's just a
    >matter of policy.
    >
    >I dislike the long cycles between version updates in Debian but must
    >admit that the "stable" distributions indeed justify their name,
    >INCLUDING packages.
    >
    >My idea is that there could maybe be some "core" ports, about 1500 or so,

    This sounds like a recipe for confusion. Some users have problems
    distinguishing between whats in the base, and whats out of the
    ports. Another type of "psudo base app" would just add to the
    confusion. Users / admins need to take *some* responsibility for
    what is installed on their system. Many ports are not very well
    maintained in the first place and to say that the security team
    should be responsible for another 1500 applications is not realistic.

             ---Mike

    _______________________________________________
    freebsd-security@freebsd.org mailing list
    http://lists.freebsd.org/mailman/listinfo/freebsd-security
    To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org"

  • Next message: Matt Piechota: "Re: FreeBSD Security Advisory FreeBSD-SA-05:21.openssl"

    Relevant Pages

    • U.S. strategic seaport is U.S. FEDERAL Govt responsibility
      ... RESPONSIBILITY of U.S. STRATEGIC sea PORTS IS WITH THE FED! ... reliability of New Orleans STRATEGIC seaport, ...
      (talk.politics.misc)
    • Re: OT: Rare truth from Bush
      ... Brits and muslims for their time and turn the operation of American ports ... and security of the premises. ... the responsibility of the port operator, ... own borders and manage its own ports, ...
      (rec.gambling.poker)
    • Re: Various package/ports problems
      ... I inherited a FreeBSD 4.8 box that had a lot of out of date ports on it. ... Everyone is raving about the all-new Yahoo! ... TELEDOME SA is not responsible for, nor endorses, any opinion, ... responsibility for the accuracy or completeness of this message as it has ...
      (freebsd-questions)
    • Re: make -jN build with portmaster
      ... ports system is concerned), it would be nice to have a BUILD_JOBS in ... Port maintainers ... portmaster should then have no problem setting BUILD_JOBS on request. ...
      (freebsd-questions)
    • Re: FreeBSD 7.0 + apache 1.3.41 + php 5.2.8 = fail
      ... why don't you use ports at all?! ... If you are compiling from ports we can help you if you are not then we wont waste our time answering questions. ... Also the port maintainers would appreciate if you email them for issues as it will fix it for all of us rather trying to backout the path. ...
      (comp.unix.bsd.freebsd.misc)