From owner-freebsd-security Fri Mar 19 12: 5:27 1999 Delivered-To: freebsd-security@freebsd.org Received: from dhabat.pair.com (dhabat.pair.com [209.68.1.219]) by hub.freebsd.org (Postfix) with ESMTP id ADC47150BA for ; Fri, 19 Mar 1999 12:04:24 -0800 (PST) (envelope-from alanp@dhabat.pair.com) Received: (from alanp@localhost) by dhabat.pair.com (8.9.1/8.6.12) id PAA21474; Fri, 19 Mar 1999 15:03:58 -0500 (EST) X-Envelope-To: freebsd-security@freebsd.org Message-ID: <19990319150358.B21298@unixpower.org> Date: Fri, 19 Mar 1999 15:03:58 -0500 From: Alan To: "Harry M. Leitzell" Cc: freebsd-security@freebsd.org Subject: Re: 3.1-RELEASE References: Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.91.1 In-Reply-To: ; from Harry M. Leitzell on Fri, Mar 19, 1999 at 01:49:20PM -0500 Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Fri, Mar 19, 1999 at 01:49:20PM -0500, Harry M. Leitzell wrote: > I am just curious as to who updates the ports for the RELEASEs. > It seems when I was installing 3.1 on a friends machine yesterday and went > to install an ftp daemon, I ended up using the ports to install proftpd. > The only problem with this is that the ports collection installed pre1 > which has a known buffer overflow in it. Maybe I am wrong in assuming > this is a bad thing ... but shouldn't someone be checking and updating > things like this? > cvsup using ports supfile in /usr/share/examples/cvsup, after you do this try to make the port for proftpd. -- | Alan L. * Webmaster of www.UnixPower.org | | Windsor Unix Users Group Founder: http://unix.windsor.on.ca/ | | Personal Page: http://www.unixpower.org/alanp/ | To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message