Date: Sun, 7 Aug 2016 15:48:44 -0700 From: Xin Li <delphij@delphij.net> To: Warner Losh <wlosh@bsdimp.com>, Andrey Chernov <ache@freebsd.org> Cc: d@delphij.net, Peter Jeremy <peter@rulingia.com>, Bruce Simpson <bms@fastmail.net>, Oliver Pinter <oliver.pinter@hardenedbsd.org>, =?UTF-8?Q?Dag-Erling_Sm=c3=b8rgrav?= <des@freebsd.org>, src-committers <src-committers@freebsd.org>, svn-src-all@freebsd.org, svn-src-head@freebsd.org, FreeBSD Security Team <secteam@freebsd.org>, FreeBSD Release Engineering Team <re@freebsd.org> Subject: Re: svn commit: r303716 - head/crypto/openssh Message-ID: <226b9a3c-8ca8-af31-7665-86d51365fc81@delphij.net> In-Reply-To: <8371434C-86F6-4DCB-82D4-F236BBC2F9A2@bsdimp.com> References: <201608031608.u73G8Mjq055909@repo.freebsd.org> <d419bddd-fe56-bc11-8965-142ca0b94ebc@fastmail.net> <9a01870a-d99d-13a2-54bd-01d32616263c@fastmail.net> <CAPQ4fftQ30_aqU8V_ea-WEKBdMZs5H9Rwxnfa0crid_df049nQ@mail.gmail.com> <b99c06ac-82d6-ccda-419c-2ece5be4636f@fastmail.net> <30e655d1-1df7-5e2a-fccb-269e3cea4684@freebsd.org> <20160807204039.GB79784@server.rulingia.com> <ab58ed22-7dd1-7b8d-fcc5-71def5936901@freebsd.org> <8371434C-86F6-4DCB-82D4-F236BBC2F9A2@bsdimp.com>
next in thread | previous in thread | raw e-mail | index | archive | help
This is an OpenPGP/MIME signed message (RFC 4880 and 3156) --3d78VBmIxkAQRj73p1wlE1j1d2G4PgUvw Content-Type: multipart/mixed; boundary="jJTbphxxRs7DIQRLHkNT5rFT7Q8E05Rps" From: Xin Li <delphij@delphij.net> To: Warner Losh <wlosh@bsdimp.com>, Andrey Chernov <ache@freebsd.org> Cc: d@delphij.net, Peter Jeremy <peter@rulingia.com>, Bruce Simpson <bms@fastmail.net>, Oliver Pinter <oliver.pinter@hardenedbsd.org>, =?UTF-8?Q?Dag-Erling_Sm=c3=b8rgrav?= <des@freebsd.org>, src-committers <src-committers@freebsd.org>, svn-src-all@freebsd.org, svn-src-head@freebsd.org, FreeBSD Security Team <secteam@freebsd.org>, FreeBSD Release Engineering Team <re@freebsd.org> Message-ID: <226b9a3c-8ca8-af31-7665-86d51365fc81@delphij.net> Subject: Re: svn commit: r303716 - head/crypto/openssh References: <201608031608.u73G8Mjq055909@repo.freebsd.org> <d419bddd-fe56-bc11-8965-142ca0b94ebc@fastmail.net> <9a01870a-d99d-13a2-54bd-01d32616263c@fastmail.net> <CAPQ4fftQ30_aqU8V_ea-WEKBdMZs5H9Rwxnfa0crid_df049nQ@mail.gmail.com> <b99c06ac-82d6-ccda-419c-2ece5be4636f@fastmail.net> <30e655d1-1df7-5e2a-fccb-269e3cea4684@freebsd.org> <20160807204039.GB79784@server.rulingia.com> <ab58ed22-7dd1-7b8d-fcc5-71def5936901@freebsd.org> <8371434C-86F6-4DCB-82D4-F236BBC2F9A2@bsdimp.com> In-Reply-To: <8371434C-86F6-4DCB-82D4-F236BBC2F9A2@bsdimp.com> --jJTbphxxRs7DIQRLHkNT5rFT7Q8E05Rps Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable On 8/7/16 14:20, Warner Losh wrote: >=20 >> On Aug 7, 2016, at 3:11 PM, Andrey Chernov <ache@freebsd.org> wrote: >> >>> OTOH, FreeBSD has a documented deprecation process that says things w= ill >>> continue working for a major release after being formally deprecated.= >> >> FreeBSD 11 is not released yet (betas are not counted), stable-10 too,= >> so it is right time to deprecate for them. >=20 > Nice try, but feature freeze was months ago. Have you got buy in from t= he > security officer and the release engineer? Well, despite the fact that I have to admit that I get locked out from my own storage box too, however (even without wearing any hat) I am for the change and would blame myself for being lazy in adopting the change when the upstream have announced it earlier about a year ago. Compatibility with legacy software/hardware, sure, but if we don't stop at some point, it would be like SSL 2.0 which people have pointed out several flaws in 1995 and take 16 years to get deprecated and still bite people in 2014. We should do something like what OpenSSH have done by creating a page describing the motivation, the impact, the temporary but discouraged workaround, etc., and mention it in the release notes to prevent people from being bite. Cheers, --jJTbphxxRs7DIQRLHkNT5rFT7Q8E05Rps-- --3d78VBmIxkAQRj73p1wlE1j1d2G4PgUvw Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc" -----BEGIN PGP SIGNATURE----- iQIcBAEBCgAGBQJXp7rQAAoJEJW2GBstM+nsbgwQAIHa97OqlQAaqGr9sSqyQ6wf +CLA9pVIVxbU5A6IT4UWI4wOtIaBWygERVb1pe+68hvGHWnb9Sg7tZwBNISDyhzg o9Mk5aiAna0PXIO6cHwkVpVVgpzRVUSoHlLP5Az7377vnB0q6M2kO1C3O6Bf8w9q 8Tb3UlrX58cQVGO6WglzV/O3eh1lCVaLEh4lSFsjpz8qC3XkhXYdNy4yM65ARUuc g3BxjUWfPHbjBRaMViTo5jf5zdfYAeed5GS2ux4F1WjRTmiUw+qhxraha8NqBOTI ciMC6884aBL/Dc0/klcB4L24Jkw0h8cpNx77LIo6NLtboiflzBsL4y5OTA4gwsXD Igaxa5c3PvXJDIjljj4PEobT2AVgfzzjYcVG0vodzJu62Oc8C5Z0VLEz3aJkSihy OrIs4K7rv1xeuttc884b2Ui2ChJ2nmbX6rcYjZRc0WKgwa247kXHtRuc+GDfrcEV XAx8VOwES24Z1GV3JkGfYHhap/Lr4sb4ECBpxGtR2D7jKSvVh/f6htTDaOrbARFr Ghln4nEB2l6ONoVcPNEJ4iunz4lKpTovyVmu7MNawmAw3so5i6UqV6oRvOBdV+zz feHaujnjrFIez5SA6MvW1nqHz7GoGTGPuafcSP18vi5p+LsaS0ZXfNAItifI4dbr ShzVnSq4KYxLNk02GTrt =T6rm -----END PGP SIGNATURE----- --3d78VBmIxkAQRj73p1wlE1j1d2G4PgUvw--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?226b9a3c-8ca8-af31-7665-86d51365fc81>