From owner-freebsd-security  Wed Nov 28 16:25:49 2001
Delivered-To: freebsd-security@freebsd.org
Received: from ns.yogotech.com (ns.yogotech.com [206.127.123.66])
	by hub.freebsd.org (Postfix) with ESMTP id B3E8337B444
	for <freebsd-security@FreeBSD.ORG>; Wed, 28 Nov 2001 16:25:08 -0800 (PST)
Received: from caddis.yogotech.com (caddis.yogotech.com [206.127.123.130])
	by ns.yogotech.com (8.9.3/8.9.3) with ESMTP id RAA00956;
	Wed, 28 Nov 2001 17:24:57 -0700 (MST)
	(envelope-from nate@yogotech.com)
Received: (from nate@localhost)
	by caddis.yogotech.com (8.11.6/8.11.6) id fAT0Ou502901;
	Wed, 28 Nov 2001 17:24:56 -0700 (MST)
	(envelope-from nate)
From: Nate Williams <nate@yogotech.com>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Message-ID: <15365.32855.717257.546724@caddis.yogotech.com>
Date: Wed, 28 Nov 2001 17:24:55 -0700
To: Brett Glass <brett@lariat.org>
Cc: Christopher Schulte <christopher@schulte.org>,
	"Jay Keller" <jaykeller4@hotmail.com>, freebsd-security@FreeBSD.ORG
Subject: Re: Updating ssh
In-Reply-To: <4.3.2.7.2.20011128171207.056cd1d0@localhost>
References: <4.3.2.7.2.20011128151923.041d0710@localhost>
	<F49Gmjm08IyFrydlb9r0001c375@hotmail.com>
	<4.3.2.7.2.20011128171207.056cd1d0@localhost>
X-Mailer: VM 6.96 under 21.1 (patch 14) "Cuyahoga Valley" XEmacs Lucid
Reply-To: nate@yogotech.com (Nate Williams)
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-security.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-security>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-security>
X-Loop: FreeBSD.org

> >>Perhaps FreeBSD should put these things in /usr/local from the get-go?
> >
> >No.  /usr/local is for software installed outside the base system.  The ssh package is part of the base system, 
> 
> Not really. It's not maintained by the FreeBSD Core Team and is updated 
> independently.

Almost nothing is maintained by the core team.  It is however maintained
by a non-core developer (green), who creates FreeBSD-specific patches
and applies them to the released OpenSSH software.  So, in effect, it is
maintained as part of FreeBSD.  (The installed version is different from
the ports version).

> It merely "comes with" the base system. That's an important
> distinction.

See above.

> Myself, I believe that third-party products should be kept in separate
> directories -- preferably in the default ones used by the developers,
> unless these are totally bogus. If this were done with SSH, it would
> be in /usr/local from the get-go and upgrades would work. Ditto with
> Perl.

The software that is part of the base system is *part of the base
system*.  In other words, it's required (in some sense of the word) in
order for the rest of the system to work.

If you want a completely modular system, go with PCIX. :)



Nate

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message