From owner-freebsd-security Thu Jun 27 10:41: 2 2002 Delivered-To: freebsd-security@freebsd.org Received: from proxy.centtech.com (moat.centtech.com [206.196.95.10]) by hub.freebsd.org (Postfix) with ESMTP id 2CDE837B401; Thu, 27 Jun 2002 10:40:56 -0700 (PDT) Received: from sprint.centtech.com (sprint.centtech.com [10.177.173.31]) by proxy.centtech.com (8.11.6/8.11.6) with ESMTP id g5RHet113251; Thu, 27 Jun 2002 12:40:55 -0500 (CDT) Received: (from root@localhost) by sprint.centtech.com (8.11.6+Sun/8.11.6) id g5RHesN15433; Thu, 27 Jun 2002 12:40:54 -0500 (CDT) Received: from centtech.com (proton [10.177.173.77]) by sprint.centtech.com (8.11.6+Sun/8.11.6) with ESMTP id g5RHeqR15426; Thu, 27 Jun 2002 12:40:52 -0500 (CDT) Message-ID: <3D1B4E24.1F91E51D@centtech.com> Date: Thu, 27 Jun 2002 12:40:52 -0500 From: Eric Anderson X-Mailer: Mozilla 4.79 [en] (X11; U; Linux 2.4.2 i386) X-Accept-Language: en MIME-Version: 1.0 To: Robert Watson Cc: Matthew Dillon , security@freebsd.org Subject: Re: FreeBSD Security Advisory FreeBSD-SA-02:28.resolv References: Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Virus-Scanned: by AMaViS perl-11 Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org I mentioned this a while back, and I still think it's a good idea (once once OpenSSH is ready). Like we were saying with the Apache bug - those who don't read the lists, are typically RELEASE hungry, and will jump all over a 4.6.1 without really caring that it's mostly security fixes - and those that do follow the lists, will have their stuff patched and ready before the 4.6.1 rolled out, so we get best of both worlds. That's just my $0.02 - not meaning much without an @freebsd.org at the end of my email. :) Eric p.s. - should this move to -chat? Robert Watson wrote: > > On Thu, 27 Jun 2002, Matthew Dillon wrote: > > > I'm beginning to think that once all this settles down a 4.6.1 release > > may be a good idea. Apache, ssh, now the resolver... nasty. > > I've been wondering about that also. However, the release engineering > process is fairly heavy-weight, and the last time we did a light-weight > x.x.1 release, people leapt on that opportunity to over-load it with lots > of minor fixes that ended up making it a fairly broken release (since > inevitably they weren't minor, but we weren't willing to do a full > heavy-weight release). Regardless, we'd want to wait to spin a .x.x.1 > release until the new OpenSSH was merged back, I think, so it will be a > bit yet before we can really make a decision on this. The best strategy > would be to literally slap down another tag on RELENG_4_6 and call it > RELENG_4_6_1 point-release. -- ------------------------------------------------------------------ Eric Anderson Systems Administrator Centaur Technology He who laughs last didn't get the joke. ------------------------------------------------------------------ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message