From owner-cvs-all Tue May 21 21:44:47 2002 Delivered-To: cvs-all@freebsd.org Received: from nagual.pp.ru (pobrecita.freebsd.ru [194.87.13.42]) by hub.freebsd.org (Postfix) with ESMTP id 7736637B408; Tue, 21 May 2002 21:44:40 -0700 (PDT) Received: from pobrecita.freebsd.ru (ache@localhost [127.0.0.1]) by nagual.pp.ru (8.12.3/8.12.3) with ESMTP id g4M4iAoQ093399; Wed, 22 May 2002 08:44:16 +0400 (MSD) (envelope-from ache@pobrecita.freebsd.ru) Received: (from ache@localhost) by pobrecita.freebsd.ru (8.12.3/8.12.3/Submit) id g4M4i6MC093391; Wed, 22 May 2002 08:44:07 +0400 (MSD) Date: Wed, 22 May 2002 08:44:03 +0400 From: "Andrey A. Chernov" To: Pete Fritchman Cc: Kris Kennaway , cvs-committers@FreeBSD.org, cvs-all@FreeBSD.org Subject: Re: cvs commit: ports/security/drweb Makefile distinfo ports/security/drweb/files patch-aa patch-ab Message-ID: <20020522044401.GA93258@nagual.pp.ru> References: <200205211516.g4LFGeo82331@freefall.freebsd.org> <20020521151814.F31955@xor.obsecurity.org> <20020521235911.GA91185@nagual.pp.ru> <20020521173029.A36618@xor.obsecurity.org> <20020522021445.GA92135@nagual.pp.ru> <20020522003245.F579@databits.net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20020522003245.F579@databits.net> User-Agent: Mutt/1.3.28i Sender: owner-cvs-all@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG On Wed, May 22, 2002 at 00:32:45 -0400, Pete Fritchman wrote: > > You think the security officers is going to look at *EVERY* change > themselves? As a porter, you should *care* if your port is secure... I mean local security officer which is interested in application in question. Porter should not care about how distfile is secure (maybe you suggest to control developers directly on their site too?), porter does FreeBSD-related tuning. I just explain whole picture in my message with subject "My position on commiters guide 10.4.4" posted to ports@ (among others), please look there. > So, next time could you just say "the binary daemon changed [a minor > change to ], the default configs were updated, *.{o,a} files > were removed." This changes I notice during porting task. I can't guarantee that it is complete picture of changes and some file not changed in malicious way by a hacker. > Reading a diff really isn't that hard... It _very_ depends on ports size / amount of files. Why to do things which is not neccessary for tuning application for FreeBSD? Why to do them in the "half way" which not guaranees anything? Why try to understand things belong to developers? BTW, this is not most annoying requirement of 10.4.4, look at contacting developers requirement. -- Andrey A. Chernov http://ache.pp.ru/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe cvs-all" in the body of the message