Date: Sat, 21 Feb 2004 11:36:17 -0800 From: Kris Kennaway <kris@obsecurity.org> To: Clement LAFORET <clement@FreeBSD.org> Cc: ports-committers@FreeBSD.org Subject: Re: cvs commit: ports/net/delegate Makefile distinfo pkg-message pkg-plist Message-ID: <20040221193617.GB50771@xor.obsecurity.org> In-Reply-To: <200402211513.i1LFDQRA012919@repoman.freebsd.org> References: <200402211513.i1LFDQRA012919@repoman.freebsd.org>
next in thread | previous in thread | raw e-mail | index | archive | help
--E39vaYmALEf/7YXx Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Sat, Feb 21, 2004 at 07:13:26AM -0800, Clement LAFORET wrote: > clement 2004/02/21 07:13:25 PST >=20 > FreeBSD ports repository >=20 > Modified files: > net/delegate Makefile distinfo pkg-message=20 > Removed files: > net/delegate pkg-plist=20 > Log: > - Update to 8.9.1 > - Remove all security warning When I audited this software and added the warning, I concluded that delegate was fundamentally insecure from the ground up and could not be fixed just by patching a few things. How has this changed, and who has audited the new software to verify it? Kris --E39vaYmALEf/7YXx Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.4 (FreeBSD) iD8DBQFAN7MxWry0BWjoQKURAo19AJ4g9PgMJ23vdAOnPZvyuvyjNAhJkQCgit09 k24d9WNSmO3j/yJ4ftQndlo= =qD9H -----END PGP SIGNATURE----- --E39vaYmALEf/7YXx--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20040221193617.GB50771>