From owner-freebsd-security  Mon Jul 17 10: 4:33 2000
Delivered-To: freebsd-security@freebsd.org
Received: from haldjas.folklore.ee (Haldjas.folklore.ee [193.40.6.121])
	by hub.freebsd.org (Postfix) with ESMTP id 98EA037B9BE
	for <security@FreeBSD.ORG>; Mon, 17 Jul 2000 10:04:29 -0700 (PDT)
	(envelope-from narvi@haldjas.folklore.ee)
Received: from localhost (narvi@localhost)
	by haldjas.folklore.ee (8.9.3/8.9.3) with SMTP id TAA58868;
	Mon, 17 Jul 2000 19:04:13 +0200 (EET)
	(envelope-from narvi@haldjas.folklore.ee)
Date: Mon, 17 Jul 2000 19:04:13 +0200 (EET)
From: Narvi <narvi@haldjas.folklore.ee>
To: Justin Wolf <jjwolf@bleeding.com>
Cc: security@FreeBSD.ORG
Subject: Re: Displacement of Blame[tm]
In-Reply-To: <Pine.BSF.4.21.0007131337260.38269-100000@neo.bleeding.com>
Message-ID: <Pine.BSF.3.96.1000717190213.70622I-100000@haldjas.folklore.ee>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org


On Thu, 13 Jul 2000, Justin Wolf wrote:

> Maybe I missed it in this really long thread somewhere, but why do we have
> to say that it concerns FreeBSD at all?  If it's a bug/hole in a port, it
> has nothing to do with FreeBSD except for the fact that the user MAY have
> installed this port, which of course comes from a third party, but was
> compiled by the FreeBSD organization.
> 

Because the ports/packages are on the CDs. As "we" distribute them, it is
only nice "we" acknowlege an inform people of the vulnerabilities.

"We" being the project in this case, I guess.

[snip]

> -Justin
> 



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message