From owner-freebsd-security Tue Apr 10 15:41:59 2001 Delivered-To: freebsd-security@freebsd.org Received: from urdvg002.cms.usa.net (urdvg002.cms.usa.net [165.212.11.2]) by hub.freebsd.org (Postfix) with SMTP id 3C4C337B422 for ; Tue, 10 Apr 2001 15:41:56 -0700 (PDT) (envelope-from briant@packeteer.com) Received: (qmail 22221 invoked from network); 10 Apr 2001 22:41:55 -0000 Received: from uadvg137.cms.usa.net (165.212.11.137) by corprelay.cms.usa.net with SMTP; 10 Apr 2001 22:41:55 -0000 Received: (qmail 2640 invoked by uid 0); 10 Apr 2001 22:41:55 -0000 Received: USA.NET MXFirewall, messaging filters applied; Tue, 10 Apr 2001 22:41:54 GMT Received: from packeteer.com [207.78.98.2] by ca37 (ASMTP/briant@postoffice.packeteer.com) via mtad (53CM.1200.1.06) with ESMTP id 019FDJwpY0486M37; Tue, 10 Apr 2001 22:41:50 GMT Message-ID: <3AD38C4C.FA07640C@packeteer.com> Date: Tue, 10 Apr 2001 15:42:20 -0700 From: Brian Tiemann Organization: Packeteer, Inc. X-Mailer: Mozilla 4.74 [en] (Win98; U) X-Accept-Language: en MIME-Version: 1.0 To: freebsd-security@freebsd.org Subject: Re: Security Announcements? Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Tue, 10 Apr 2001, mudman wrote: > > Well if you want the latest security fixes you shouldn't be running a > > -release anyway, that's that the -stable branch is for. > > This may be a new attitude in security. I should think *any* system > released for common use should have the greatest amount of security > possible. I use 4.2-RELEASE on a production server. I also track 4-STABLE. I don't track it because I intend to do biweekly make worlds. I track it because I expect to see security bulletins posted here in a timely manner, along with the necessary patch instructions which generally involve nothing more than going to the appropriate point in /usr/src and doing a make all install. I shouldn't have to be subscribed to the freebsd-stable mailing list (which I've been on before, and its traffic seems useful primarily for those who do regular make worlds) in order to be able to keep my 4.2-RELEASE system patched-- which I believe is the safest, stablest, and most secure approach for a production server, whatever the OS. Brian To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message