Date: Sat, 30 Sep 2000 09:15:56 +0100 From: Adam Laurie <adam@algroup.co.uk> To: security@FreeBSD.ORG Subject: Re: cvs commit: ports/mail/pine4 Makefile (fwd) Message-ID: <39D5A13C.8AF289BE@algroup.co.uk> References: <200009292349.TAA07263@giganda.komkon.org> <008b01c02a71$6b8938c0$d04379a5@p4f0i0> <20000929172644.C6456@freefall.freebsd.org>
next in thread | previous in thread | raw e-mail | index | archive | help
Kris Kennaway wrote: > > On Fri, Sep 29, 2000 at 08:00:17PM -0400, Jonathan M. Slivko wrote: > > > If you remove a port because of it's security concerns, then your robbing > > the average user the choice between what mail client to use. Also, it's not > > the job of the FreeBSD development team/patch/security team to weed out all > > the insecure programs, the responsibility lies mainly on the systems > > Yes it is. Allowing the user to install insecure software only leaves > them with a false sense of security and the feeling of betrayal when > they get exploited through it. Surely the same applies to FreeBSD itself? I find it very odd that ports get so much positive pressure from this list to restrict/fix/exclude them when there is a security issue, but try and get something done to core FreeBSD scripts/services etc., and you'll get shot down in flames... Bizarre... cheers, Adam -- Adam Laurie Tel: +44 (20) 8742 0755 A.L. Digital Ltd. Fax: +44 (20) 8742 5995 Voysey House Barley Mow Passage http://www.aldigital.co.uk London W4 4GB mailto:adam@algroup.co.uk UNITED KINGDOM PGP key on keyservers To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?39D5A13C.8AF289BE>