Date: Mon, 20 Mar 2000 17:11:43 -0500 (EST) From: Antoine Beaupre <beaupran@IRO.UMontreal.CA> To: Dave McKay <dave@mu.org> Cc: freebsd-security@FreeBSD.ORG Subject: Re: ports security advisories.. Message-ID: <14550.41503.132314.613733@blc25.IRO.UMontreal.CA> References: <20000320154614.A63670@elvis.mu.org>
next in thread | previous in thread | raw e-mail | index | archive | help
[trimmed -hackers from CC:] I personnally think that yes, it is necessary. And I consider that the ports collection is part of FreeBSD and any use use of it that may be harmful must be published. The software is not FBSD responsability but if we find bugs in the ports, better report them. My 2 cents. --- Big Brother told Dave McKay to write, at 15:46 of March 20: > Is it really necessary to post the ports security advisories? > The exploitable programs are not part of the FreeBSD OS, they > are third party software. I think the proper place for these > is the Bugtraq mailing list on securityfocus.com. Also to add > to the arguments, most of the advisories are not FreeBSD > specific. > > -- > Dave McKay > Network Engineer - Google Inc. > dave@mu.org - dave@google.com > I'm feeling lucky... -- Si l'image donne l'illusion de savoir C'est que l'adage pretend que pour croire, L'important ne serait que de voir Lofofora To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?14550.41503.132314.613733>