Date: Sun, 22 Apr 2001 19:43:29 -0700 From: Kris Kennaway <kris@obsecurity.org> To: netch@segfault.kiev.ua Cc: Rasputin <rara.rasputin@virgin.net>, freebsd-security@FreeBSD.ORG Subject: Re: Security Announcements & Incremental Patches Message-ID: <20010422194329.A23392@xor.obsecurity.org> In-Reply-To: <20010422202144.A313@iv.nn.kiev.ua>; from netch@iv.nn.kiev.ua on Sun, Apr 22, 2001 at 08:21:44PM %2B0300 References: <bulk.49307.20010411114848@hub.freebsd.org> <Pine.BSF.4.21.0104111214510.52823-100000@roble.com> <20010412105356.A88231@dogma.freebsd-uk.eu.org> <20010422202144.A313@iv.nn.kiev.ua>
next in thread | previous in thread | raw e-mail | index | archive | help
--3V7upXqbjpZ4EhLz Content-Type: text/plain; charset=us-ascii Content-Disposition: inline On Sun, Apr 22, 2001 at 08:21:44PM +0300, Valentin Nechayev wrote: > It is quite simple for any qualified FreeBSD admin, including FreeBSD > FTP site team, to make patched binaries for all supported releases for > any security advisory and put them for free download for such admins who > has bad compiling skills; but it is not provided now, and anyone should No, it's not simple. You have to make sure you include all dependencies of the change, everything the change depends on (e.g. libraries with changes that are required by the updated utility), and you have to test it in a variety of environments to make sure it works as expected. It's relatively simple to make a package from random pieces, it's quite difficult to test it and make sure that it works. More to the point, it takes additional time, which is always the most scarce resource in volunteer projects. Are you willing to help test binary security packages by reinstalling your system to a clean installation of 4.3-RELEASE, then applying and testing the package? Having said this, the RELENG_4_3 release branch is a step towards allowing us to do this (since it's a known, constant base which is expected to have few changes and therefore easy to manage dependencies); there's the possibility of generating binary packages for users of -RELEASE versions of FreeBSD starting with 4.3 only. Kris --3V7upXqbjpZ4EhLz Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.4 (FreeBSD) Comment: For info see http://www.gnupg.org iD8DBQE645bRWry0BWjoQKURAoNYAJ4gx0EIU+t1sJUZo9NBAhUAqW++sgCg9uoq li3sn8FhM4K1JGb4EOvHV9k= =tkMm -----END PGP SIGNATURE----- --3V7upXqbjpZ4EhLz-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010422194329.A23392>