Date: Wed, 23 Mar 2005 07:33:19 -0600 From: Eric Anderson <anderson@centtech.com> To: John Nemeth <jnemeth@victoria.tc.ca> Cc: freebsd-hackers@freebsd.org Subject: Re: security or lack thereof Message-ID: <4241701F.3060804@centtech.com> In-Reply-To: <200503230304.j2N34R97020359@vtn1.victoria.tc.ca> References: <200503230304.j2N34R97020359@vtn1.victoria.tc.ca>
next in thread | previous in thread | raw e-mail | index | archive | help
John Nemeth wrote: > So, is it FreeBSD policy to ignore security bug reports? I sent > the following bug report to security@freebsd.org on Feb. 19th, 2005 and > it still hasn't been acted on. This total lack of action on an > extremely simple (and silly) three year old bug doesn't give one the > warm fuzzies. Heck, it took 48 hours to get a response from a security > officer, and another 24 hours to get something from the guilty > developer. I'm a nobody as far as FreeBSD src trees, bugs, etc go, but I didn't see a PR in the bug reports database (link on the left of the main freebsd.org website). This is probably why it got shuffled into a crack somewhere, but take my bits with a grain of salt. If you haven't, please submit your patch via the bug system here: http://www.freebsd.org/send-pr.html Thanks for the bug find.. Eric -- ------------------------------------------------------------------------ Eric Anderson Sr. Systems Administrator Centaur Technology I have seen the future and it is just like the present, only longer. ------------------------------------------------------------------------
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4241701F.3060804>