From owner-freebsd-security  Tue Apr 10 15:41:59 2001
Delivered-To: freebsd-security@freebsd.org
Received: from urdvg002.cms.usa.net (urdvg002.cms.usa.net [165.212.11.2])
	by hub.freebsd.org (Postfix) with SMTP id 3C4C337B422
	for <freebsd-security@freebsd.org>; Tue, 10 Apr 2001 15:41:56 -0700 (PDT)
	(envelope-from briant@packeteer.com)
Received: (qmail 22221 invoked from network); 10 Apr 2001 22:41:55 -0000
Received: from uadvg137.cms.usa.net (165.212.11.137)
  by corprelay.cms.usa.net with SMTP; 10 Apr 2001 22:41:55 -0000
Received: (qmail 2640 invoked by uid 0); 10 Apr 2001 22:41:55 -0000
Received: USA.NET MXFirewall, messaging filters applied; Tue, 10 Apr 2001 22:41:54 GMT
Received: from packeteer.com [207.78.98.2] by ca37
	(ASMTP/briant@postoffice.packeteer.com) via mtad (53CM.1200.1.06) 
	with ESMTP id 019FDJwpY0486M37; Tue, 10 Apr 2001 22:41:50 GMT
Message-ID: <3AD38C4C.FA07640C@packeteer.com>
Date: Tue, 10 Apr 2001 15:42:20 -0700
From: Brian Tiemann <briant@packeteer.com>
Organization: Packeteer, Inc.
X-Mailer: Mozilla 4.74 [en] (Win98; U)
X-Accept-Language: en
MIME-Version: 1.0
To: freebsd-security@freebsd.org
Subject: Re: Security Announcements?
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org


On Tue, 10 Apr 2001, mudman wrote:

> > Well if you want the latest security fixes you shouldn't be running a
> > -release anyway, that's that the -stable branch is for.
>
> This may be a new attitude in security.  I should think *any* system
> released for common use should have the greatest amount of security
> possible.


	I use 4.2-RELEASE on a production server. I also track 4-STABLE. I
don't track it because I intend to do biweekly make worlds. I track it
because I expect to see security bulletins posted here in a timely
manner,
along with the necessary patch instructions which generally involve
nothing more than going to the appropriate point in /usr/src and doing
a make all install.

	I shouldn't have to be subscribed to the freebsd-stable mailing
list (which I've been on before, and its traffic seems useful primarily
for those who do regular make worlds) in order to be able to keep my
4.2-RELEASE system patched-- which I believe is the safest, stablest,
and
most secure approach for a production server, whatever the OS.

Brian

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message