Date: Thu, 18 Apr 2002 13:54:48 -0400 From: Jamie Norwood <mistwolf@mushhaven.net> To: security@FreeBSD.ORG Subject: Re: FreeBSD Security Advisory FreeBSD-SA-02:21.tcpip Message-ID: <20020418135448.A29869@mushhaven.net> In-Reply-To: <4.3.2.7.2.20020418114304.00dccf00@nospam.lariat.org>; from brett@lariat.org on Thu, Apr 18, 2002 at 11:49:24AM -0600 References: <4.3.2.7.2.20020418095356.024354c0@nospam.lariat.org> <4.3.2.7.2.20020417230144.032ad390@nospam.lariat.org> <200204171923.g3HJNga58899@freefall.freebsd.org> <4.3.2.7.2.20020418095356.024354c0@nospam.lariat.org> <15550.62541.903626.398637@caddis.yogotech.com> <4.3.2.7.2.20020418114304.00dccf00@nospam.lariat.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On Thu, Apr 18, 2002 at 11:49:24AM -0600, Brett Glass wrote:
>
> How does one know that there isn't a system-crashing bug in some other
> part of the tree for the same date? What's needed is not just the
> snapshot that happened to be available that day (or today) but one
> that's known to be reasonably stable. Remember, a snapshot of -STABLE
> taken on a random day is not guaranteed even to boot!
It sounds like you want releng_4_5. This is -RELEASE with security
updates. It is pretty unchanging, and never gets feature updates, so
will always be the same as -RELEASE, only more secure.
> >There is. Download the 'random snapshot' using the RELENG_4_5 tag.
> >All I see from you is a lot of bitching about how the FreeBSD project
> >didn't hold your hand tight enough
>
> Not true at all. What administrators using FreeBSD need is not
> "hand-holding" but a way to upgrade to a known good snapshot.
> Not necessarily the absolute latest, but one with the needed
> patches which others have seen to work.
This is RELENG_4_5. What are you looking for that it does not
provide? Administrators HAVE 'a way to upgrade to a known good snapshot.'
> >and have a developer show up on your
> >doorstop to install and verify every single version of FreeBSD you use.
>
> I'm a developer myself, and therefore understand the value of testing.
> It should be possible to get a snapshot ("patch level N," or whatever)
> which one knows that others have tried and have found to work. As an
> administrator, you should want this too.
We do. And we have it. I fail to see what you want that is not already
provided.
Jamie
> --Brett Glass
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020418135448.A29869>