From owner-freebsd-security  Thu Apr 18 19:47:22 2002
Delivered-To: freebsd-security@freebsd.org
Received: from lariat.org (lariat.org [12.23.109.2])
	by hub.freebsd.org (Postfix) with ESMTP id 1157837B484
	for <security@freebsd.org>; Thu, 18 Apr 2002 19:47:07 -0700 (PDT)
Received: from mustang.lariat.org (IDENT:ppp0.lariat.org@lariat.org [12.23.109.2])
	by lariat.org (8.9.3/8.9.3) with ESMTP id UAA25815;
	Thu, 18 Apr 2002 20:31:00 -0600 (MDT)
X-message-flag: Warning! Use of Microsoft Outlook may make your system susceptible to Internet worms.
Message-Id: <4.3.2.7.2.20020418202335.0229b540@nospam.lariat.org>
X-Sender: brett@nospam.lariat.org
X-Mailer: QUALCOMM Windows Eudora Version 4.3.2
Date: Thu, 18 Apr 2002 20:30:56 -0600
To: Ken McGlothlen <mcglk@artlogix.com>
From: Brett Glass <brett@lariat.org>
Subject: Re: FreeBSD Security Advisory FreeBSD-SA-02:21.tcpip
Cc: security@freebsd.org
In-Reply-To: <878z7k4oz9.fsf@ralf.artlogix.com>
References: <4.3.2.7.2.20020418143615.021a8460@nospam.lariat.org>
 <4.3.2.7.2.20020418095356.024354c0@nospam.lariat.org>
 <4.3.2.7.2.20020417230144.032ad390@nospam.lariat.org>
 <200204171923.g3HJNga58899@freefall.freebsd.org>
 <4.3.2.7.2.20020418095356.024354c0@nospam.lariat.org>
 <4.3.2.7.2.20020418143615.021a8460@nospam.lariat.org>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-security.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-security>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-security>
X-Loop: FreeBSD.org

At 04:32 PM 4/18/2002, Ken McGlothlen wrote:

>C'mon, Brett, these last two objections are really stretching things.

I don't think so. They're real pitfalls for administrators.

As I've mentioned in other messages, what I think we need is the
equivalent of the Japanese FreeBSD X.Y-RELEASE-pZ builds, on the
main FTP server and on the mirrors, ready for installation both
by new users and by admins looking to do a sure, safe upgrade.
Having a local build server is a nice idea, especially if you're
a large shop, but doesn't get newcomers a safe version to install
(important; if they're hacked they'll sour on FreeBSD) or give
an admin a build to which she can just upgrade quickly and know
that the latest holes are closed.

--Brett


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message