Date: Fri, 4 May 2012 08:16:16 +0900 From: TAKATSU Tomonari <tota@freebsd.org> To: Hiroki Sato <hrs@freebsd.org>, Eitan Adler <eadler@freebsd.org> Cc: ports-security@freebsd.org, cvs-ports@freebsd.org, cvs-all@freebsd.org, ports-committers@freebsd.org Subject: Re: cvs commit: ports/japanese Makefile ports/japanese/font-ricty Makefile distinfo pkg-descr pkg-plist ports/japanese/font-ricty/files 20-unhint-ricty.conf 20-unhint-rictydiscord.conf 62-fonts-ricty.conf 62-fonts-rictydiscord.conf pkg-install.in Message-ID: <CANaE3C8J69Nb56vXgZzzof_59B679hGmUba9wyPxRU=ZhqhgoA@mail.gmail.com> In-Reply-To: <CAF6rxgm_xUiEXpBJK4JnL%2BFeTvJnxM7011-aE1mB%2BzuX3%2BSRNg@mail.gmail.com> References: <201205020257.q422vjf9029468@repoman.freebsd.org> <20120503.194850.619112453467893578.hrs@allbsd.org> <CAF6rxgm_xUiEXpBJK4JnL%2BFeTvJnxM7011-aE1mB%2BzuX3%2BSRNg@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
2012/5/4 Eitan Adler <eadler@freebsd.org>: > On 3 May 2012 06:48, Hiroki Sato <hrs@freebsd.org> wrote: >> =A0Please do not create do-fetch target in this way because it bypasses >> =A0the distinfo checksum. =A0Also, this port should have NO_PACKAGE >> =A0because redistribution of the generated font files is not allowed by >> =A0the license. Hiroki Sato-san, Thank you for pointing out my mistakes. > Yes, this is a security risk and should be fixed as fast as possible. Eitan Adler-san, Thank you for your advice about security risk. Regards, --=20 TAKATSU Tomonari
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CANaE3C8J69Nb56vXgZzzof_59B679hGmUba9wyPxRU=ZhqhgoA>