From owner-freebsd-questions@FreeBSD.ORG  Fri Apr 11 13:31:10 2014
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115])
 (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits))
 (No client certificate requested)
 by hub.freebsd.org (Postfix) with ESMTPS id 2A23738B;
 Fri, 11 Apr 2014 13:31:10 +0000 (UTC)
Received: from udns.ultimateDNS.NET (ultimatedns.net [209.180.214.225])
 (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits))
 (Client did not present a certificate)
 by mx1.freebsd.org (Postfix) with ESMTPS id E58FB1A24;
 Fri, 11 Apr 2014 13:31:09 +0000 (UTC)
Received: from udns.ultimateDNS.NET (localhost [127.0.0.1])
 by udns.ultimateDNS.NET (8.14.5/8.14.5) with ESMTP id s3BDYY4n086463;
 Fri, 11 Apr 2014 06:34:40 -0700 (PDT)
 (envelope-from bsd-lists@bsdforge.com)
Received: (from www@localhost)
 by udns.ultimateDNS.NET (8.14.5/8.14.5/Submit) id s3BDYRNA086460;
 Fri, 11 Apr 2014 06:34:27 -0700 (PDT)
 (envelope-from bsd-lists@bsdforge.com)
Received: from udns.ultimatedns.net ([209.180.214.225])
 (UDNSMS authenticated user chrish) by ultimatedns.net with HTTP;
 Fri, 11 Apr 2014 06:34:27 -0700 (PDT)
Message-ID: <7a39fee1d8baee8029d01a13bcc4cce8.authenticated@ultimatedns.net>
In-Reply-To: <20140411094620.78881cjb990bw8gc@webmail.ru.ac.za>
References: <CAHAXwYCGkP-o0VvMXj5S8-KNA45aTvy+srjDL_=8-x9Dza5z5Q@mail.gmail.com>
 <20140411094620.78881cjb990bw8gc@webmail.ru.ac.za>
Date: Fri, 11 Apr 2014 06:34:27 -0700 (PDT)
Subject: Re: MITM attacks against portsnap and freebsd-update
From: "Chris H" <bsd-lists@bsdforge.com>
To: J.McKeown@ru.ac.za
User-Agent: UDNSMS/2.0.3
MIME-Version: 1.0
Content-Type: text/plain;charset=utf-8
Content-Transfer-Encoding: 8bit
X-Priority: 3 (Normal)
Importance: Normal
X-Mailman-Approved-At: Fri, 11 Apr 2014 13:33:30 +0000
Cc: freebsd-hackers <freebsd-hackers@freebsd.org>,
 secteam <secteam@freebsd.org>, Colin Percival <cperciva@freebsd.org>,
 david.i.noel@gmail.com,
 FreeBSD Questions Mailing List <freebsd-questions@freebsd.org>
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/options/freebsd-questions>, 
 <mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions/>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
 <mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 11 Apr 2014 13:31:10 -0000

> Quoting David Noel <david.i.noel@gmail.com>:
>
>> 4. Retire portsnap.
>>
>> Details
> [snip]
>> Retiring Portsnap
>>
>> With the inclusion of svnlite in 10 I think the valid question comes
>> up as to whether we really need the portsnap system or whether it
>> could be safely retired.
>
> I see in the PR you suggest getting rid of the portsnap servers as
> well. 8 and 9 are still supported releases. Does this mean that anyone
> running 8.4 or 9.2 is going to lose the ability to upgrade their ports
> tree quickly and easily unless they also upgrade their servers /from a
> supported release/?

I had intended to comment on this, as well.
I also take issue with the (seemingly) premature demise of pkg_ in this regard.

--Chris

>
> _______________________________________________
> freebsd-hackers@freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-hackers
> To unsubscribe, send any mail to "freebsd-hackers-unsubscribe@freebsd.org"
>