Date: Thu, 13 Jul 2000 13:44:50 -0700 (PDT) From: Justin Wolf <jjwolf@bleeding.com> To: security@FreeBSD.ORG Subject: Displacement of Blame[tm] Message-ID: <Pine.BSF.4.21.0007131337260.38269-100000@neo.bleeding.com> In-Reply-To: <4.3.2.7.2.20000713142419.04b82ce0@localhost>
next in thread | previous in thread | raw e-mail | index | archive | help
Maybe I missed it in this really long thread somewhere, but why do we have to say that it concerns FreeBSD at all? If it's a bug/hole in a port, it has nothing to do with FreeBSD except for the fact that the user MAY have installed this port, which of course comes from a third party, but was compiled by the FreeBSD organization. Instead, how about just sending an email from the FreeBSD security 'organization' stating that a port has a bug/hole in it. No one assumes that CERT or BUGTRAQ have any security holes, but the products they alert about do. I think this type of advisory would provide the same information within a context that removes FreeBSD proper of having any connotation of holes itself. This also allows the complete removal of 'FreeBSD' in the subject all together. Flame on, -Justin To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.21.0007131337260.38269-100000>