From owner-freebsd-questions@FreeBSD.ORG  Tue Oct 26 18:16:39 2004
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id E0DF816A4CE
	for <questions@FreeBSD.org>; Tue, 26 Oct 2004 18:16:39 +0000 (GMT)
Received: from mail.proficuous.com (www.proficuous.com [209.240.79.128])
	by mx1.FreeBSD.org (Postfix) with ESMTP id B0A2443D41
	for <questions@FreeBSD.org>; Tue, 26 Oct 2004 18:16:39 +0000 (GMT)
	(envelope-from ml@proficuous.com)
Received: from [192.168.3.69] (aaron-workstation.proficuous.com
	[192.168.3.69])
	by workhorse.proficuous.com (Postfix) with ESMTP id 93987A89442
	for <questions@FreeBSD.org>; Thu, 21 Oct 2004 18:47:50 -0500 (CDT)
From: "Aaron P. Martinez" <ml@proficuous.com>
To: questions@FreeBSD.org
Content-Type: text/plain
Message-Id: <1098402497.5678.110.camel@aaron.proficuous.com>
Mime-Version: 1.0
X-Mailer: Ximian Evolution 1.4.6 (1.4.6-2) 
Date: Thu, 21 Oct 2004 18:48:18 -0500
Content-Transfer-Encoding: 7bit
Subject: interim port versions
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 26 Oct 2004 18:16:40 -0000


I'm new to the bsd's, came from linux and i'm having a bit of difficulty
figuring out the general philosophy.

One of the major reasons that i decided to try out the 'bsds'  is
because of the security.  I'm having a hard time however figuring out
how security issues in the ports get dealt with when there is a port
freeze, like now.  The best example i can think of is gaim...(i almost
didn't recheck the port on the 4.10 tree, it's now mysteriously up to
date, phew.)

......slightly altered next paragraph....
lets say i found out there is a msn slp buffer overflow (like currently)
and i wanted to protect myself....so i cvsuped my ports tree and then
wanted to portupgrade....... problem is...since it's a port freeze...up
until a few days ago it's still at 0.82  not the 1.02 that is out now, I
watched it and never saw version 1.00 or 1.01.  Are the ports frozen
_except_for_security_fixes or am i missing something. 


I looked around on the lists for this but didn't see it and it seems
like a fairly big deal if security issues arise during a freeze.  

Thanks in advance,

Aaron