From owner-freebsd-stable@FreeBSD.ORG Fri Dec 23 16:57:06 2011 Return-Path: Delivered-To: freebsd-stable@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id C08E5106568E for ; Fri, 23 Dec 2011 16:57:06 +0000 (UTC) (envelope-from ml@my.gd) Received: from mail-we0-f182.google.com (mail-we0-f182.google.com [74.125.82.182]) by mx1.freebsd.org (Postfix) with ESMTP id 5E6BC8FC0A for ; Fri, 23 Dec 2011 16:57:06 +0000 (UTC) Received: by werb13 with SMTP id b13so7743252wer.13 for ; Fri, 23 Dec 2011 08:57:05 -0800 (PST) Received: by 10.216.133.234 with SMTP id q84mr8547127wei.30.1324659425295; Fri, 23 Dec 2011 08:57:05 -0800 (PST) Received: from dfleuriot-at-hi-media.com ([83.167.62.196]) by mx.google.com with ESMTPS id ff10sm14317843wbb.6.2011.12.23.08.57.04 (version=SSLv3 cipher=OTHER); Fri, 23 Dec 2011 08:57:04 -0800 (PST) Message-ID: <4EF4B2DF.6000201@my.gd> Date: Fri, 23 Dec 2011 17:57:03 +0100 From: Damien Fleuriot User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.6; rv:8.0) Gecko/20111105 Thunderbird/8.0 MIME-Version: 1.0 To: Bas Smeelen References: <20111223165410.5ec6a722@mail.ose.nl> In-Reply-To: <20111223165410.5ec6a722@mail.ose.nl> Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Cc: freebsd-stable@freebsd.org Subject: Re: FLAME - security advisories on the 23rd ? uncool idea is uncool X-BeenThere: freebsd-stable@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Production branch of FreeBSD source code List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 23 Dec 2011 16:57:06 -0000 On 12/23/11 5:54 PM, Bas Smeelen wrote: >> Look, just a rant here. > > >> Who in *HELL* thought it would be a cool idea to release no less than >> FOUR security advisories today ? > What's the impact for your boxes? > Only the BIND exploit concerns me, means that *potentially* servers for my projects might be unable to run DNS resolution anymore -> prod problems. I don't think we'll be getting trouble though so I'm postponing the update until next week. >> I mean, couldn't this have waited and remained undisclosed until monday ? > Best time to exploit is Christmas/holidays > >> I for one do *NOT* relish the idea of updating 50+ boxes this evening >> and tomorrow ! > updating 30 boxes right now > >> Not to mention a whole lot of merchants and banks have toggled IT Freeze >> a few weeks ago, to ensure xmas shopping doesn't get disturbed by >> production changes. > > >> Seriously, this is just irritating. > If you don't use telnet, ftpd, dns, pam, then it's not a big problem > > merry Christmas > > Disclaimer: http://www.ose.nl/email >