From owner-freebsd-security  Wed Feb 27 15:17: 8 2002
Delivered-To: freebsd-security@freebsd.org
Received: from probsd.ws (ilm25-53-085.ec.rr.com [24.25.53.85])
	by hub.freebsd.org (Postfix) with ESMTP id 46BF137B429
	for <security@FreeBSD.ORG>; Wed, 27 Feb 2002 15:16:45 -0800 (PST)
Received: by probsd.ws (8.11.6/8.11.6) id g1RNI2135979
	for security@FreeBSD.ORG; Wed, 27 Feb 2002 18:18:02 -0500 (EST)
	(envelope-from freebsd)
Message-Id: <200202272318.g1RNI2135979@probsd.ws>
Content-Type: text/plain;
  charset="iso-8859-1"
From: Michael Sharp <mds@ec.rr.com>
To: security@FreeBSD.ORG
Subject: Re: cvsup
Date: Wed, 27 Feb 2002 18:18:02 -0500
X-Mailer: KMail [version 1.3.2]
References: <200202272251.g1RMpor35924@probsd.ws> <20020227230332.GA42263@peitho.fxp.org>
In-Reply-To: <20020227230332.GA42263@peitho.fxp.org>
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-security.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-security>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-security>
X-Loop: FreeBSD.org

God forbide, I sent to the wrong list. ppl are more concerned about a posting 
to a list than putting out something via announcements, ports, errata, smoke 
signals or something.  I'll figure it out myself


On Wednesday 27 February 2002 06:03 pm, you wrote:
> This is actually more of a -ports question...
>
> On Wed, Feb 27, 2002 at 05:51:50PM -0500, Michael Sharp wrote:
> > I ran cvsup on ports 20 minutes ago and noticed that new Makefiles were
> > pulled down for mod_php3 and mod_php4. I then ran portsdb -U to update
> > the INDEX file, but portversion shows that the new Makefiles didnt change
> > the version number.
> >
> > So my question is this... was this the fix for the PHP issue, and all I
> > need to do new is cd to the mod_php4 directory and run 'make deinstall
> > distclean', then do a 'make install' in mod_php4 to rebuild with the new
> > changes?
>
> I committed an update earlier marking the ports as FORBIDDEN due to
> the security issue until the maintainer update the ports.  The
> maintainer updated the ports to the non-vulnerable versions about
> 1/2 hour ago.  Chances are you only received the FORBIDDEN update
> and may have to way up to another 1/2 hour until the newer changes
> have propagated.
>
> To check, see if the ports are marked with a FORBIDDEN line.  You may
> also use cvsweb:
>
> http://www.freebsd.org/cgi/cvsweb.cgi/ports/www/mod_php3/
> http://www.freebsd.org/cgi/cvsweb.cgi/ports/www/mod_php4/
>
> to see if the Makefile in your ports tree matches the newest version
> in the repository.

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message