Date: Fri, 29 Nov 2002 21:15:45 -0200 From: Mario Sergio Fujikawa Ferreira <lioux@FreeBSD.org> To: Kris Kennaway <kris@obsecurity.org> Cc: docs@FreeBSD.ORG Subject: Re: [dkl@tessellated.net: Re: Providing a mechanism for port maintainers to specify an immediate package rebuild/redist to improve security response (Was Re: samba security update)] Message-ID: <20021129231607.25580.qmail@exxodus.fedaykin.here> In-Reply-To: <20021129222946.GA37822@rot13.obsecurity.org> References: <20021129222946.GA37822@rot13.obsecurity.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On Fri, Nov 29, 2002 at 02:29:24PM -0800, Kris Kennaway wrote:
> Can someone please review/commit this patch?
>
> diff -ruN porters-handbook.orig/book.sgml porters-handbook/book.sgml
> --- porters-handbook.orig/book.sgml Fri Nov 29 15:37:36 2002
> +++ porters-handbook/book.sgml Fri Nov 29 16:08:06 2002
> @@ -3954,6 +3954,10 @@
> doing a commit. If the diff is more than about 20KB, please compress
> and uuencode it; otherwise, just include it in the PR as is.</para>
>
> + <important>
> + <para>If your upgrade is motivated by security concerns or a major regression in the currently committed port, please notify the Package Builders <email>portmgr@FreeBSD.org</email> to request immediate rebuilding and redistribution of your port's package. Unsuspecting users of &man.pkg_add.1; will otherwise continue to install the old version via <command>pkg_add -r</command> for several weeks.</para>
> + </important>
> +
> <note>
> <para>Once again, please use &man.diff.1; and not &man.shar.1; to send
> updates to existing ports!</para>
--- book.sgml.orig Fri Nov 29 20:57:26 2002
+++ book.sgml Fri Nov 29 21:14:12 2002
@@ -3954,6 +3954,17 @@
doing a commit. If the diff is more than about 20KB, please compress
and uuencode it; otherwise, just include it in the PR as is.</para>
+ <important>
+ <para>If your upgrade is motivated by either security concerns
+ or a major regression in the currently committed port, please
+ notify the Package Builders &a.portmgr; to request both
+ immediate rebuilding and immediate redistribution of your
+ port's package. Unsuspecting users of &man.pkg.add.1; will
+ otherwise continue to install the old version via
+ <command>pkg_add</command> <option>-r</option> for several
+ weeks.</para>
+ </important>
+
<note>
<para>Once again, please use &man.diff.1; and not &man.shar.1; to send
updates to existing ports!</para>
---
What about the aforementioned? I'll commit it if it is okay.
--
Mario S F Ferreira - DF - Brazil - "I guess this is a signature."
Computer Science Undergraduate | FreeBSD Committer | CS Developer
flames to beloved devnull@someotherworldbeloworabove.org
feature, n: a documented bug | bug, n: an undocumented feature
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-doc" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20021129231607.25580.qmail>