Date: Fri, 17 Jul 2015 12:10:37 +0200 From: Erwin Lansing <erwin@FreeBSD.org> To: Alex Dupre <ale@FreeBSD.org>, ports-secteam@FreeBSD.org Cc: svn-ports-head@freebsd.org, svn-ports-all@freebsd.org, ports-committers@freebsd.org Subject: Re: svn commit: r392140 - head/databases/mysql56-server Message-ID: <20150717101036.GX63119@droso.dk> In-Reply-To: <55A8D138.2050901@FreeBSD.org> References: <201507151349.t6FDn5Sf079974@svnmir.geo.freebsd.org> <20150717081711.GS63119@droso.dk> <55A8D138.2050901@FreeBSD.org>
next in thread | previous in thread | raw e-mail | index | archive | help
--iBwuxWUsK/REspAd Content-Type: text/plain; charset=iso-8859-1 Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Fri, Jul 17, 2015 at 11:56:08AM +0200, Alex Dupre wrote: > Erwin Lansing wrote: > >> URL: https://svnweb.freebsd.org/changeset/ports/392140 > >> > >> Log: > >> Update to 5.6.25 release. > >=20 > > Does this by any change fix this vulnerability? >=20 > No, probably they are not going to fix this "vulnerability" because, > even if it wasn't a great security choice and in fact it changed in > mysql 5.7, it was the intended and documented behavior: >=20 >=20 > > For MySQL client programs, this option permits but does not require the= client to connect to the server using SSL. Therefore, this option is not s= ufficient in itself to cause an SSL connection to be used. For example, if = you specify this option for a client program but the server has not been co= nfigured to enable SSL connections, the client falls back to an unencrypted= connection.=20 >=20 Currently, the VuXML entry prohibits the installation of the mysql, mariadb, and percona servers in any version. Adding ports-secteam for advice on how to handle this situation. Erwin --=20 Erwin Lansing (o_ _o) http://droso.dk \\\_\ /_/// erwin@lansing.dk <____) (____> --iBwuxWUsK/REspAd Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQEVAwUBVajUnFF75hSlwe7HAQrK4wf+NIx5hag85rZG8iTSfcdyHy32M47injuu rNIAf6Ro01ULELFuhVhFEFOMPwS5JwoMxHtoU9P77OVv0vH7vXJ2qqIYJd+ACTGD 0m/ObMqoIFWjZkPydiPnXRJZVX3CRBK6smDWxlhHPC+SPKAcUcBzrxXhOMs7Q/gx P9wCsO+7fm0CNL7uNc5EfqmSYw43OTpKyoAL2zMWzYTQ1eiUKxgazid0k+JuI+XA UOw+v4ZFlo5W7a7K+Y/jyBenfsxosrgd+Wy5vw/mxtkS1NDMYNg76Un7V5YByJcA VXJK2FN4+XwO6qJsup28G2HcG/BT+pntQCiOecFXFR1CPEyjbmmybw== =mSmj -----END PGP SIGNATURE----- --iBwuxWUsK/REspAd--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20150717101036.GX63119>