From owner-freebsd-chat@FreeBSD.ORG Tue Jan 16 05:41:40 2007 Return-Path: X-Original-To: freebsd-chat@freebsd.org Delivered-To: freebsd-chat@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 27D9B16A417 for ; Tue, 16 Jan 2007 05:41:40 +0000 (UTC) (envelope-from delphij@delphij.net) Received: from tarsier.geekcn.org (tarsier.geekcn.org [210.51.165.229]) by mx1.freebsd.org (Postfix) with ESMTP id C794E13C4BC for ; Tue, 16 Jan 2007 05:41:39 +0000 (UTC) (envelope-from delphij@delphij.net) Received: from localhost (tarsier.geekcn.org [210.51.165.229]) by tarsier.geekcn.org (Postfix) with ESMTP id 2DB59EB68A0; Tue, 16 Jan 2007 13:12:12 +0800 (CST) X-Virus-Scanned: amavisd-new at geekcn.org Received: from tarsier.geekcn.org ([210.51.165.229]) by localhost (mail.geekcn.org [210.51.165.229]) (amavisd-new, port 10024) with ESMTP id pil0yVinBL1i; Tue, 16 Jan 2007 13:12:03 +0800 (CST) Received: from [10.217.12.122] (sina152-194.staff.sina.com.cn [61.135.152.194]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by tarsier.geekcn.org (Postfix) with ESMTP id 032D5EB6890; Tue, 16 Jan 2007 13:12:02 +0800 (CST) DomainKey-Signature: a=rsa-sha1; s=default; d=delphij.net; c=nofws; q=dns; h=message-id:date:from:organization:user-agent:mime-version:to:cc: subject:references:in-reply-to:x-enigmail-version:content-type; b=rbXMOtQNn355KC+/rQaj27Y0oA/LCi0yYRmzAgYjq52J68SgSIxFqjlkGZPmExziH i83VAr+HHxNf6UFcki0lA== Message-ID: <45AC5E4A.3060008@delphij.net> Date: Tue, 16 Jan 2007 13:10:34 +0800 From: LI Xin Organization: The FreeBSD Project User-Agent: Thunderbird 1.5.0.9 (Macintosh/20061207) MIME-Version: 1.0 To: Stevan Tiefert References: <200701160525.22382.stevan-tiefert@t-online.de> In-Reply-To: <200701160525.22382.stevan-tiefert@t-online.de> X-Enigmail-Version: 0.94.1.0 Content-Type: multipart/signed; micalg=pgp-ripemd160; protocol="application/pgp-signature"; boundary="------------enig9342103C1F3652E9931C123A" Cc: freebsd-chat@freebsd.org Subject: Re: Security Patches for Port Applications in Releases X-BeenThere: freebsd-chat@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Non technical items related to the community List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 16 Jan 2007 05:41:40 -0000 This is an OpenPGP/MIME signed message (RFC 2440 and 3156) --------------enig9342103C1F3652E9931C123A Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Stevan Tiefert wrote: > Hello list, >=20 > I installed the new release 6.2 on my workstation. I installed also=20 > portaudit=20 > and run it immediatly afterwards. What have I to see? 5 vulnerable=20 > packages=20 > in my release. >=20 > My questions: > - Why can I update FreeBSD with security-patches and the=20 > Release-Packages have=20 > no security-patches? > - What are then the advantages of release-packages/ports to=20 > current-ports if I=20 > can not update release-packages with security-patches? > - Is an security-patch-update-system for release-packages/ports planned= ? Due to manpower limitation, I think there is no plan to have so-called "security patches for release packages" at this moment. Administrators may use portupgrade's -rRPP option and pass the vulnerable package names to its command line, to install the latest -stable packages, which is usually updated frequently. Cheers, --=20 Xin LI http://www.delphij.net/ FreeBSD - The Power to Serve! --------------enig9342103C1F3652E9931C123A Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc" -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.5 (Darwin) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFFrF5KOfuToMruuMARA7haAJwPQBjSRy4znid4A7Lz67drYeJzGQCdG77M hjJqIBGU8vQUy8nRAhfcuLI= =rrnI -----END PGP SIGNATURE----- --------------enig9342103C1F3652E9931C123A--