From owner-freebsd-security Thu Apr 18 10:56:53 2002 Delivered-To: freebsd-security@freebsd.org Received: from diarmadhi.mushhaven.net (diarmadhi.mushhaven.net [216.150.202.147]) by hub.freebsd.org (Postfix) with SMTP id 4A2CB37B419 for ; Thu, 18 Apr 2002 10:56:47 -0700 (PDT) Received: (qmail 30019 invoked by uid 1000); 18 Apr 2002 17:54:48 -0000 Date: Thu, 18 Apr 2002 13:54:48 -0400 From: Jamie Norwood To: security@FreeBSD.ORG Subject: Re: FreeBSD Security Advisory FreeBSD-SA-02:21.tcpip Message-ID: <20020418135448.A29869@mushhaven.net> References: <4.3.2.7.2.20020418095356.024354c0@nospam.lariat.org> <4.3.2.7.2.20020417230144.032ad390@nospam.lariat.org> <200204171923.g3HJNga58899@freefall.freebsd.org> <4.3.2.7.2.20020418095356.024354c0@nospam.lariat.org> <15550.62541.903626.398637@caddis.yogotech.com> <4.3.2.7.2.20020418114304.00dccf00@nospam.lariat.org> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5.1i In-Reply-To: <4.3.2.7.2.20020418114304.00dccf00@nospam.lariat.org>; from brett@lariat.org on Thu, Apr 18, 2002 at 11:49:24AM -0600 Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Thu, Apr 18, 2002 at 11:49:24AM -0600, Brett Glass wrote: > > How does one know that there isn't a system-crashing bug in some other > part of the tree for the same date? What's needed is not just the > snapshot that happened to be available that day (or today) but one > that's known to be reasonably stable. Remember, a snapshot of -STABLE > taken on a random day is not guaranteed even to boot! It sounds like you want releng_4_5. This is -RELEASE with security updates. It is pretty unchanging, and never gets feature updates, so will always be the same as -RELEASE, only more secure. > >There is. Download the 'random snapshot' using the RELENG_4_5 tag. > >All I see from you is a lot of bitching about how the FreeBSD project > >didn't hold your hand tight enough > > Not true at all. What administrators using FreeBSD need is not > "hand-holding" but a way to upgrade to a known good snapshot. > Not necessarily the absolute latest, but one with the needed > patches which others have seen to work. This is RELENG_4_5. What are you looking for that it does not provide? Administrators HAVE 'a way to upgrade to a known good snapshot.' > >and have a developer show up on your > >doorstop to install and verify every single version of FreeBSD you use. > > I'm a developer myself, and therefore understand the value of testing. > It should be possible to get a snapshot ("patch level N," or whatever) > which one knows that others have tried and have found to work. As an > administrator, you should want this too. We do. And we have it. I fail to see what you want that is not already provided. Jamie > --Brett Glass To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message