From owner-freebsd-security Mon Mar 20 13:44:56 2000 Delivered-To: freebsd-security@freebsd.org Received: from elvis.mu.org (elvis.mu.org [207.154.226.10]) by hub.freebsd.org (Postfix) with ESMTP id 84E6A37B952; Mon, 20 Mar 2000 13:44:51 -0800 (PST) (envelope-from dave@elvis.mu.org) Received: (from dave@localhost) by elvis.mu.org (8.9.1/8.9.1) id PAA63798; Mon, 20 Mar 2000 15:46:14 -0600 (CST) (envelope-from dave) Date: Mon, 20 Mar 2000 15:46:14 -0600 From: Dave McKay To: freebsd-security@freebsd.org Cc: freebsd-hackers@freebsd.org Subject: ports security advisories.. Message-ID: <20000320154614.A63670@elvis.mu.org> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-md5; protocol="application/pgp-signature"; boundary="4Ckj6UjgE2iN1+kY" X-Mailer: Mutt 1.0.1i Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org --4Ckj6UjgE2iN1+kY Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: quoted-printable Is it really necessary to post the ports security advisories? The exploitable programs are not part of the FreeBSD OS, they are third party software. I think the proper place for these is the Bugtraq mailing list on securityfocus.com. Also to add to the arguments, most of the advisories are not FreeBSD specific. --=20 Dave McKay Network Engineer - Google Inc. dave@mu.org - dave@google.com I'm feeling lucky... --4Ckj6UjgE2iN1+kY Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- Version: 2.6.3ia iQCVAwUBONacJXY8vP7IQ1TlAQEjwgQAlTj79musTFaLJOmfDAGRot4nvUqB70vz rjHSEEIFKBQNOajTLgWgDC59vLTnTJuOnliOVeRH8e2iHLN8MdqTldvq5GeGI6k5 7sY9iOmb2u9/mfl9Yf0o5zFdZrBfzSvoozB+bQygQohMRmFgeVXsBi+27vW39IXc Fm7z3dPNLAc= =vMIo -----END PGP SIGNATURE----- --4Ckj6UjgE2iN1+kY-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message