Date: Mon, 20 Mar 2000 14:24:48 -0800 From: Casey Dinsmore <cdinsmore@vatyx.com> To: Dave McKay <dave@mu.org>, freebsd-security@FreeBSD.ORG Cc: freebsd-hackers@FreeBSD.ORG Subject: RE: ports security advisories.. Message-ID: <F19202CF6716D111B05C0000C0280CD60E8D6C@SERVER>
next in thread | raw e-mail | index | archive | help
I think that it is a necessary thing to do, since these programs are offered in the ports collection, and this is -security after all. It was nice and convienant to have the advisories posted because I just happened to have completed installing lynx-ssl from the ports collection mere hours before they were posted on wednesday. Casey Dinsmore Webmaster / Network Administrator Vatyx, Inc. cdinsmore@vatyx.com http://www.vatyx.com Phone: 541.929.6496 Fax: 541.929.2251 > -----Original Message----- > From: Dave McKay [SMTP:dave@mu.org] > Sent: Monday, March 20, 2000 1:46 PM > To: freebsd-security@FreeBSD.ORG > Cc: freebsd-hackers@FreeBSD.ORG > Subject: ports security advisories.. > > Is it really necessary to post the ports security advisories? > The exploitable programs are not part of the FreeBSD OS, they > are third party software. I think the proper place for these > is the Bugtraq mailing list on securityfocus.com. Also to add > to the arguments, most of the advisories are not FreeBSD > specific. > > -- > Dave McKay > Network Engineer - Google Inc. > dave@mu.org - dave@google.com > I'm feeling lucky... << File: ATT00142.ATT >> To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-hackers" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?F19202CF6716D111B05C0000C0280CD60E8D6C>