From owner-freebsd-security  Thu Apr 18 11: 6:50 2002
Delivered-To: freebsd-security@freebsd.org
Received: from lariat.org (lariat.org [12.23.109.2])
	by hub.freebsd.org (Postfix) with ESMTP id 4174B37B400
	for <security@FreeBSD.ORG>; Thu, 18 Apr 2002 11:06:41 -0700 (PDT)
Received: from mustang.lariat.org (IDENT:ppp0.lariat.org@lariat.org [12.23.109.2])
	by lariat.org (8.9.3/8.9.3) with ESMTP id MAA18346;
	Thu, 18 Apr 2002 12:06:34 -0600 (MDT)
X-message-flag: Warning! Use of Microsoft Outlook may make your system susceptible to Internet worms.
Message-Id: <4.3.2.7.2.20020418120036.021ceb30@nospam.lariat.org>
X-Sender: brett@nospam.lariat.org
X-Mailer: QUALCOMM Windows Eudora Version 4.3.2
Date: Thu, 18 Apr 2002 12:06:28 -0600
To: Jamie Norwood <mistwolf@mushhaven.net>, security@FreeBSD.ORG
From: Brett Glass <brett@lariat.org>
Subject: Re: FreeBSD Security Advisory FreeBSD-SA-02:21.tcpip
In-Reply-To: <20020418135448.A29869@mushhaven.net>
References: <4.3.2.7.2.20020418114304.00dccf00@nospam.lariat.org>
 <4.3.2.7.2.20020418095356.024354c0@nospam.lariat.org>
 <4.3.2.7.2.20020417230144.032ad390@nospam.lariat.org>
 <200204171923.g3HJNga58899@freefall.freebsd.org>
 <4.3.2.7.2.20020418095356.024354c0@nospam.lariat.org>
 <15550.62541.903626.398637@caddis.yogotech.com>
 <4.3.2.7.2.20020418114304.00dccf00@nospam.lariat.org>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-security.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-security>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-security>
X-Loop: FreeBSD.org

At 11:54 AM 4/18/2002, Jamie Norwood wrote:

>> Not true at all. What administrators using FreeBSD need is not
>> "hand-holding" but a way to upgrade to a known good snapshot.
>> Not necessarily the absolute latest, but one with the needed
>> patches which others have seen to work.
>
>This is RELENG_4_5. What are you looking for that it does not 
>provide? 

This is a CVS tag, not a build. Also, what you get when you
bring it in will change over time, so you can't easily answer
the question, "What patch level is this server running?"
What's needed is builds either from this or from -STABLE
(with testing to make sure nothing's broken) that one can
download and install without recompiling the world. With
numbers such that one can say, "This server is at -p3 and
a new security hole was found.... I'll upgrade to -p4 tonight."
Simple, convenient, and likely to work without fuss, so that
we can install the build and get back to more important things,
like developing code.

--Brett


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message