Date: Wed, 15 May 2002 15:51:38 -0400 From: Jeff Palmer <scorpio@drkshdw.org> To: security@freebsd.org Subject: Re: Patch/Announcement for DHCPD remote root hole? Message-ID: <5.1.0.14.0.20020515154731.00b5e870@mail.drkshdw.org> In-Reply-To: <4.3.2.7.2.20020515132552.0313bbb0@nospam.lariat.org> References: <20020515120324.E69211@switchblade.cyberpunkz.org> <4.3.2.7.2.20020515101500.00e7fee0@nospam.lariat.org> <4.3.2.7.2.20020509175155.024efc00@nospam.lariat.org> <4.3.2.7.2.20020509175155.024efc00@nospam.lariat.org> <20020515105453K.matusita@jp.FreeBSD.org> <4.3.2.7.2.20020515101500.00e7fee0@nospam.lariat.org>
next in thread | previous in thread | raw e-mail | index | archive | help
>CVSup is a programmer's tool, not an administrator's tool. And it is >certainly not a tool for newcomers. It makes the learning curve far >too steep -- especially if the person doing the install is just learning >UNIX. Use of CVSup should not be necessary to do a secure install of >the system. If CVSup is a programmers tool, and not an administrators tool.. How is one supposed to keep his system updated and secure AFTER the initial install? How is one supposed to update to the latest branch, after the initial install. Sure, for security problems, You can just use supplied patches, However.. patches are typically only released for security related issues, not for average bugs. Saying that CVSup isn't an administrators tool, is a little narrow minded, and a lot unreasonable in my opinion. Part of being an administrator involves keeping the system up to date. Jeff Palmer scorpio@drkshdw.org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?5.1.0.14.0.20020515154731.00b5e870>