Date: Sat, 4 May 2002 18:17:49 -0700 (PDT) From: Doug Barton <DougB@FreeBSD.org> To: Joe Abley <jabley@automagic.org> Cc: chris@aims.com.au, <Stanley.Hopcroft@IPAustralia.Gov.AU>, <FreeBSD-Stable@FreeBSD.org> Subject: Re: Why won't bind 8.2.4-REL run properly as user bind (4.5-REL-p3) not chrooted ? Message-ID: <20020504181349.M378-100000@master.gorean.org> In-Reply-To: <20020505005419.GB55915@buffoon.automagic.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sat, 4 May 2002, Joe Abley wrote:
> On Sat, May 04, 2002 at 02:16:07PM -0700, Doug Barton wrote:
> > On Wed, 1 May 2002, Joe Abley wrote:
> >
> > > I think 8.3.1 should be rolled into RELENG_4_5, since it specifically
> > > contains security fixes over 8.2.4.
> >
> > Users who depend on BIND can install a newer version from the
> > ports. Users who don't are not affected by the problems in 8.2.4.
>
> That reasoning would make sense if bind was not included in the base
> system.
Users can easily upgrade bind with a port, and easily back out the
upgrade if they decide it doesn't suit their needs. The same is not true
of other essential parts of the base system, which is why the security
branches were created.
If, on the other hand, there were known, exploitable bugs in the
version of named in RELENG_4_5, I'd say yes, upgrading it in that branch
might be worth consideration. However, in this case we're talking about
"best practices," as opposed to "known security vulnerabilities."
--
"We have known freedom's price. We have shown freedom's power.
And in this great conflict, ... we will see freedom's victory."
- George W. Bush, President of the United States
State of the Union, January 28, 2002
Do YOU Yahoo!?
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-stable" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020504181349.M378-100000>