From owner-freebsd-security Thu Jul 13 11:21:25 2000 Delivered-To: freebsd-security@freebsd.org Received: from fledge.watson.org (fledge.watson.org [204.156.12.50]) by hub.freebsd.org (Postfix) with ESMTP id C0F5A37B513 for ; Thu, 13 Jul 2000 11:21:19 -0700 (PDT) (envelope-from robert@fledge.watson.org) Received: from fledge.watson.org (robert@fledge.pr.watson.org [192.0.2.3]) by fledge.watson.org (8.9.3/8.9.3) with SMTP id OAA70778; Thu, 13 Jul 2000 14:21:09 -0400 (EDT) (envelope-from robert@fledge.watson.org) Date: Thu, 13 Jul 2000 14:21:09 -0400 (EDT) From: Robert Watson X-Sender: robert@fledge.watson.org To: Brett Glass Cc: security@FreeBSD.ORG Subject: Re: Two kinds of advisories? In-Reply-To: <4.3.2.7.2.20000713120631.04d53b60@localhost> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Thu, 13 Jul 2000, Brett Glass wrote: > I've recently added some of my clients to the Bugtraq mailing list, and > whenever a message goes out with a subject like "FreeBSD Ports Security > Advisory: ," they think it's a security hole in FreeBSD. Of course, > WE know it's not, but they don't understand what "FreeBSD Ports" means and > get the wrong idea. Any ideas about how to rephrase the subject lines so > that people who see these messages will get the right idea without knowing > what the Ports Collection is? Perhaps if the name "FreeBSD" didn't come first? That was the whole point of putting "ports" in there in the first place, a relatively recent change. The advisories are very careful to distinguish the ports/packages from the base system, and to disclaim responsibility for them. I think we've done the right thing as it stands. At some point, people will need to understand that distinction for themselves. Robert N M Watson robert@fledge.watson.org http://www.watson.org/~robert/ PGP key fingerprint: AF B5 5F FF A6 4A 79 37 ED 5F 55 E9 58 04 6A B1 TIS Labs at Network Associates, Safeport Network Services To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message