Date: Tue, 10 Apr 2001 21:50:14 +0100 From: Ben Smithurst <ben@FreeBSD.org> To: Michael Nottebrock <michaelnottebrock@gmx.net> Cc: Michael Bryan <fbsd-secure@ursine.com>, freebsd-security@freebsd.org Subject: Re: Security Announcements? Message-ID: <20010410215014.A8173@scientia.demon.co.uk> In-Reply-To: <001d01c0c1fc$23d73680$0508a8c0@lofi.dyndns.org> References: <3AD33218.FE8D7ACD@ursine.com> <001d01c0c1fc$23d73680$0508a8c0@lofi.dyndns.org>
next in thread | previous in thread | raw e-mail | index | archive | help
Michael Nottebrock wrote: > I agree that there is need for improvement. Let's just see what the > other OS's security people are doing about the recent ftpd-issue: > > NetBSD: > ftp://ftp.netbsd.org/pub/NetBSD/misc/security/advisories/NetBSD-SA2000 > -018.txt.asc > OpenBSD: > ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.8/common/025_glob.patch > FreeBSD: Absolutely nothing I'm pretty sure that's complete and utter bollocks, unless I'm misunderstanding the issue, or thinking of another ftpd-issue. Go visit <http://www.FreeBSD.org/cgi/cvsweb.cgi/src/libexec/ftpd/popen.c>; and see for yourself. As far as I can see this issue has been fixed in -current, 4-stable, *AND* 3-stable. > It certainly is starting to irritate people running > 4.2-Release. Well if you want the latest security fixes you shouldn't be running a -release anyway, that's that the -stable branch is for. -- Ben Smithurst / ben@FreeBSD.org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010410215014.A8173>