From owner-freebsd-www  Fri Mar  8  5:30:39 2002
Delivered-To: freebsd-www@freebsd.org
Received: from gw.nectar.cc (gw.nectar.cc [208.42.49.153])
	by hub.freebsd.org (Postfix) with ESMTP
	id A3A5C37B42F; Fri,  8 Mar 2002 05:30:25 -0800 (PST)
Received: by gw.nectar.cc (Postfix, from userid 1001)
	id 206EA62; Fri,  8 Mar 2002 07:30:25 -0600 (CST)
Date: Fri, 8 Mar 2002 07:30:25 -0600
From: "Jacques A. Vidrine" <nectar@FreeBSD.org>
To: Makoto Matsushita <matusita@jp.FreeBSD.org>
Cc: security-officer@FreeBSD.org, www@FreeBSD.org
Subject: Re: A patch for FreeBSD Security Information webpage
Message-ID: <20020308133025.GA45391@hellblazer.nectar.cc>
References: <20020308153818M.matusita@jp.FreeBSD.org>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <20020308153818M.matusita@jp.FreeBSD.org>
User-Agent: Mutt/1.3.27i
X-Url: http://www.nectar.cc/
Sender: owner-freebsd-www@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-www.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-www>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-www>
X-Loop: FreeBSD.org

On Fri, Mar 08, 2002 at 03:38:18PM +0900, Makoto Matsushita wrote:
> 
> <URL:http://www.FreeBSD.org/security/> page is great for the FreeBSD
> users to get security information.  However, it seems that it lacks 
> some 4.5-RELEASE related information.
> .

Your timing is great.  Kris just pointed out that this needed doing last
night :-)

> 1) Put a mark that 4.5-RELEASE was out
[...]

Thanks!

> I have no idea that 02:09 is *after* 4.5-RELEASE or not (it was
> announced after 4.5-RELEASE, but 4.5-RELEASE does *not* affected).

It comes before 4.5-RELEASE.

I see Jun has already taken care of this.  Thanks, Jun!

> 2) Note that 4.5-RELEASE is a target release for SAs.
> 
> In this webpage, there is a pharase that:
> 
> 	At this time, security advisories are being released for:
> 	  FreeBSD 3.5.1-STABLE (remotely exploitable vulnerabilities only)
> 	  FreeBSD 4.3-RELEASE
> 	  FreeBSD 4.4-RELEASE
> 	  FreeBSD 4.4-STABLE
> 
> Yes, "4.5-RELEASE" is not mentioned.  Would you please add 4.5-RELEASE
> to the list?
>
> And, 02:13 doesn't say anything about 4.3-RELEASE.  RELENG_4_3 was not
> changed about OpenSSH.  This means that 4.3-RELEASE is not *fully*
> supported release (read: remotely exploitable vulnerabilities only),
> just like 3-stable ?

Actually, the list should now be
     FreeBSD 4.4-RELEASE
     FreeBSD 4.5-RELEASE

I'll make the update.

Thanks for the reminder! 

Cheers,
-- 
Jacques A. Vidrine <n@nectar.cc>                     http://www.nectar.cc/
NTT/Verio SME           .      FreeBSD UNIX      .        Heimdal Kerberos
jvidrine@verio.net      .   nectar@FreeBSD.org   .           nectar@kth.se

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-www" in the body of the message