From owner-freebsd-questions@FreeBSD.ORG Tue Apr 15 12:13:40 2003 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id D75EF37B401 for ; Tue, 15 Apr 2003 12:13:40 -0700 (PDT) Received: from pcwin002.win.tue.nl (pcwin002.win.tue.nl [131.155.71.72]) by mx1.FreeBSD.org (Postfix) with ESMTP id DE49043FA3 for ; Tue, 15 Apr 2003 12:13:39 -0700 (PDT) (envelope-from stijn@pcwin002.win.tue.nl) Received: from pcwin002.win.tue.nl (orb_rules@localhost [127.0.0.1]) by pcwin002.win.tue.nl (8.12.8/8.12.8) with ESMTP id h3FJDcVo048075; Tue, 15 Apr 2003 21:13:38 +0200 (CEST) (envelope-from stijn@pcwin002.win.tue.nl) Received: (from stijn@localhost) by pcwin002.win.tue.nl (8.12.8/8.12.8/Submit) id h3FJDcXX048074; Tue, 15 Apr 2003 21:13:38 +0200 (CEST) Date: Tue, 15 Apr 2003 21:13:38 +0200 From: Stijn Hoop To: David Bear Message-ID: <20030415191338.GB47414@pcwin002.win.tue.nl> References: <20030415114525.F12751@asu.edu> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="xgyAXRrhYN0wYx8y" Content-Disposition: inline In-Reply-To: <20030415114525.F12751@asu.edu> User-Agent: Mutt/1.4.1i X-Bright-Idea: Let's abolish HTML mail! cc: freebsd-questions@freebsd.org Subject: Re: samba from ports X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 15 Apr 2003 19:13:41 -0000 --xgyAXRrhYN0wYx8y Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Tue, Apr 15, 2003 at 11:45:25AM -0700, David Bear wrote: > I cvsup today my ports collection and made samba. >=20 > now the samba deamon says its 2.2.8a which I thought was vulnerable. > Is this not fixed in the ports collection? or, if so, how can I tell > if I have a fixed samba. the vunlerability is pretty bad, and since > it was announce last monday (8 days ago) I assumed the awesome ports > maintainers for freebsd would have the new on in place... Samba 2.2.8a is not vulnerable according to the samba webpage. The FreeBSD security advisory was a bit unclear with regard to the version numbers due to a comma between the not-vulnerable version numbers. HTH, --Stijn --=20 Beware of he who would deny you access to information. For in his heart he thinks himself your master. -- Sid Meier, "Sid Meier's Alpha Centauri" --xgyAXRrhYN0wYx8y Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.1 (FreeBSD) iD8DBQE+nFniY3r/tLQmfWcRAik0AJ9sknDwT2Ye8zeh5xnxMZQB5Mfm9QCgh6uP H3fb+Ix3/mlKJ6IaNHUxWvQ= =Xy/e -----END PGP SIGNATURE----- --xgyAXRrhYN0wYx8y--