From owner-freebsd-security@FreeBSD.ORG Tue Mar 30 08:23:41 2004 Return-Path: Delivered-To: freebsd-security@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 527F816A4CE; Tue, 30 Mar 2004 08:23:41 -0800 (PST) Received: from creme-brulee.marcuscom.com (rrcs-midsouth-24-172-16-118.biz.rr.com [24.172.16.118]) by mx1.FreeBSD.org (Postfix) with ESMTP id CD02343D1D; Tue, 30 Mar 2004 08:23:40 -0800 (PST) (envelope-from marcus@marcuscom.com) Received: from [10.2.1.4] (vpn-client-4.marcuscom.com [10.2.1.4]) i2UGMIEP019449; Tue, 30 Mar 2004 11:22:18 -0500 (EST) (envelope-from marcus@marcuscom.com) From: Joe Marcus Clarke To: Oliver Eikemeier In-Reply-To: <40693A28.9000502@fillmore-labs.com> References: <200403282344.i2SNi6Hq047722@repoman.freebsd.org> <20040329163309.GA81526@madman.celabo.org> <40686785.7020002@fillmore-labs.com> <20040329185347.GB87233@madman.celabo.org> <40687E18.9060907@fillmore-labs.com> <20040329201926.GA88529@madman.celabo.org> <40689343.4080602@fillmore-labs.com> <4068A0AF.2090807@gmx.net> <4068A90A.7000104@fillmore-labs.com> <4068B881.4010304@gmx.net> <20040330045646.GD5998@madman.celabo.org> <406912E7.4040806@gmx.net> <40693A28.9000502@fillmore-labs.com> Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-29G4XKOJ18SnWRA5HVp5" Organization: MarcusCom, Inc. Message-Id: <1080663846.792.3.camel@gyros> Mime-Version: 1.0 X-Mailer: Ximian Evolution 1.4.6 Date: Tue, 30 Mar 2004 11:24:06 -0500 X-Spam-Status: No, hits=-4.9 required=5.0 tests=BAYES_00 autolearn=ham version=2.63 X-Spam-Checker-Version: SpamAssassin 2.63 (2004-01-11) on creme-brulee.marcuscom.com X-Mailman-Approved-At: Wed, 31 Mar 2004 01:46:12 -0800 cc: "Jacques A. Vidrine" cc: FreeBSD Ports Management Team cc: FreeBSD Security Subject: Re: cvs commit: ports/multimedia/xine Makefile X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Security issues [members-only posting] List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 30 Mar 2004 16:23:41 -0000 --=-29G4XKOJ18SnWRA5HVp5 Content-Type: text/plain Content-Transfer-Encoding: quoted-printable On Tue, 2004-03-30 at 04:13, Oliver Eikemeier wrote: > Michael Nottebrock wrote: >=20 > > [...] > > However, it seems to me that marking ports FORBIDDEN for security=20 > > reasons is more or less obsoleted (and made redundant) by=20 > > portaudit/VuXML and committers having to hand-scan VuXML for updates an= d=20 > > mark ports FORBIDDEN by hand just seems like duplicated (and=20 > > error-prone) work... so maybe it's time to to away with marking ports=20 > > FORBIDDEN for security reasons completely? >=20 > I think portmgr@ is the authority here. CC'ed. Since VuXML is still optional, and newbies will not be likely to have it, I believe we still should be marking ports FORBIDDEN for security reasons. Better to wear a belt and suspenders. Joe --=20 PGP Key : http://www.marcuscom.com/pgp.asc --=-29G4XKOJ18SnWRA5HVp5 Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.4 (FreeBSD) iD8DBQBAaZ8mb2iPiv4Uz4cRAumnAKCbFwboM3uHaJKt6yjdYI2GIHpChQCgrMop R4QPzfAkPhlhNEf6PJf4QZE= =4amf -----END PGP SIGNATURE----- --=-29G4XKOJ18SnWRA5HVp5--