From owner-freebsd-security Fri Mar 19 10:49:48 1999 Delivered-To: freebsd-security@freebsd.org Received: from smtp2.andrew.cmu.edu (SMTP2.ANDREW.CMU.EDU [128.2.10.82]) by hub.freebsd.org (Postfix) with ESMTP id 03C8414EC5 for ; Fri, 19 Mar 1999 10:49:41 -0800 (PST) (envelope-from Harry_M_Leitzell@cmu.edu) Received: from unix13.andrew.cmu.edu (UNIX13.ANDREW.CMU.EDU [128.2.15.17]) by smtp2.andrew.cmu.edu (8.8.5/8.8.2) with SMTP id NAA03061 for ; Fri, 19 Mar 1999 13:49:20 -0500 (EST) Date: Fri, 19 Mar 1999 13:49:20 -0500 (EST) From: "Harry M. Leitzell" X-Sender: Harry_M_Leitzell@unix13.andrew.cmu.edu To: freebsd-security@freebsd.org Subject: 3.1-RELEASE Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I am just curious as to who updates the ports for the RELEASEs. It seems when I was installing 3.1 on a friends machine yesterday and went to install an ftp daemon, I ended up using the ports to install proftpd. The only problem with this is that the ports collection installed pre1 which has a known buffer overflow in it. Maybe I am wrong in assuming this is a bad thing ... but shouldn't someone be checking and updating things like this? [-=--=-=--=-=--=-=--=-=--=-=--=-=--=-=--=-=--=-=--=-=--=-=--=-] Harry M. Leitzell - Harry_M_Leitzell@cmu.edu Carnegie Mellon University Finger for PGP Public Key [-=--=-=--=-=--=-=--=-=--=-=--=-=--=-=--=-=--=-=--=-=--=-=--=-] To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message