Date: Wed, 22 Mar 2006 18:36:24 -0500 From: Kris Kennaway <kris@obsecurity.org> To: "Jeremy C. Reed" <reed@reedmedia.net> Cc: freebsd-ports@FreeBSD.org Subject: Re: updated packages for security issues on FTP server? Message-ID: <20060322233624.GA33221@xor.obsecurity.org> In-Reply-To: <Pine.NEB.4.62.0603221313380.10693@pilchuck.reedmedia.net> References: <Pine.NEB.4.62.0603221313380.10693@pilchuck.reedmedia.net>
next in thread | previous in thread | raw e-mail | index | archive | help
--5vNYLRcllDrimb99 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Wed, Mar 22, 2006 at 01:17:59PM -0800, Jeremy C. Reed wrote: > What is the policy or procedure for FreeBSD ports team (or maintainers) t= o=20 > provide updated packages (prebuilt .tbz) for security issues for the FTP= =20 > servers? >=20 > If this is documented, please point me to it. >=20 > I have seen past security advisories for "ports" that have pointed to=20 > prebuilt packages on the FTP server. >=20 > But looking today at=20 > ftp://ftp.freebsd.org/pub/FreeBSD/ports/i386/packages-6-stable/ I don't= =20 > see any new packages within a month (although ports tree has been updated= =20 > for security issues). >=20 > Where would packages for security fixes be uploaded to? That directory, when we're not in a release cycle and using up 100% of our build resources for that purpose. Kris --5vNYLRcllDrimb99 Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2.2 (FreeBSD) iD8DBQFEId94Wry0BWjoQKURAt9HAKClxWZzeBy0+66p3oeynx7+IYzpRQCePU5+ rn9SvffZ1BpDKICbilCqd4A= =i1Rb -----END PGP SIGNATURE----- --5vNYLRcllDrimb99--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20060322233624.GA33221>