Date: Mon, 12 Dec 2022 17:53:10 +0100 From: Dimitry Andric <dim@FreeBSD.org> To: Mel Pilgrim <list_freebsd@bluerosetech.com> Cc: freebsd-ports@freebsd.org Subject: Re: bdb5 is EOL, but still the default version? Message-ID: <3681BB51-409C-400B-9726-E3D4FD46D8B1@FreeBSD.org> In-Reply-To: <e9567641-9c24-4ca7-3d95-222418e18b65@bluerosetech.com> References: <e9567641-9c24-4ca7-3d95-222418e18b65@bluerosetech.com>
next in thread | previous in thread | raw e-mail | index | archive | help
--Apple-Mail=_274DA7BC-2908-4567-AFC9-B04665371962 Content-Transfer-Encoding: quoted-printable Content-Type: text/plain; charset=us-ascii On 12 Dec 2022, at 16:33, Mel Pilgrim <list_freebsd@bluerosetech.com> = wrote: >=20 > I get errors like this in audit logs: >=20 > db5-5.3.28_8: Tag: expiration_date Value: 2022-06-30 > db5-5.3.28_8: Tag: deprecated Value: EOLd, potential security issues, = maybe use db18 instead >=20 > But BDB_DEFAULT=3D5? If db5 is EOL and vulnerable, why not bump the = default version to 18? Because the licenses are different, which may not be acceptable to = everybody. See also: * https://bugs.freebsd.org/261523 * https://bugs.freebsd.org/261525 * https://bugs.freebsd.org/263123 -Dimitry --Apple-Mail=_274DA7BC-2908-4567-AFC9-B04665371962 Content-Transfer-Encoding: 7bit Content-Disposition: attachment; filename=signature.asc Content-Type: application/pgp-signature; name=signature.asc Content-Description: Message signed with OpenPGP -----BEGIN PGP SIGNATURE----- Version: GnuPG/MacGPG2 v2.2 iF0EARECAB0WIQR6tGLSzjX8bUI5T82wXqMKLiCWowUCY5dcdgAKCRCwXqMKLiCW o7HBAKDBmZyy/1n4l2ItozI2YgOt+9x1QQCgwVnh9tsHJi0yOhHxvzFag1rAvKg= =KcsW -----END PGP SIGNATURE----- --Apple-Mail=_274DA7BC-2908-4567-AFC9-B04665371962--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3681BB51-409C-400B-9726-E3D4FD46D8B1>