From owner-freebsd-stable@FreeBSD.ORG Fri Dec 23 18:57:41 2011 Return-Path: Delivered-To: freebsd-stable@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 9266B106566B for ; Fri, 23 Dec 2011 18:57:41 +0000 (UTC) (envelope-from rloefgren@forethought.net) Received: from mzpi3.forethought.net (mzpi3.forethought.net [216.241.36.12]) by mx1.freebsd.org (Postfix) with ESMTP id 74F798FC0C for ; Fri, 23 Dec 2011 18:57:41 +0000 (UTC) Received: from wcpi6.forethought.net ([216.241.32.145] helo=localhost) by mz1.forethought.net with esmtp (Exim 4.69) (envelope-from ) id 1Re8tm-00061G-Mm; Fri, 23 Dec 2011 10:27:15 -0700 Received: from host1.medicenter.forethought.net (host1.medicenter.forethought.net [206.124.12.162]) by secure.forethought.net (IMP) with HTTP for ; Fri, 23 Dec 2011 10:27:14 -0700 Message-ID: <1324661234.4ef4b9f2937de@secure.forethought.net> Date: Fri, 23 Dec 2011 10:27:14 -0700 From: rloefgren@forethought.net To: Mike Tancsa References: <4EF4A75C.2040609@my.gd> <4EF4B2D6.5090206@sentex.net> In-Reply-To: <4EF4B2D6.5090206@sentex.net> MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 8bit User-Agent: Internet Messaging Program (IMP) 3.2.2 X-Originating-IP: 206.124.12.162 Cc: "freebsd-stable@freebsd.org" Subject: Re: FLAME - security advisories on the 23rd ? uncool idea is uncool X-BeenThere: freebsd-stable@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Production branch of FreeBSD source code List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 23 Dec 2011 18:57:41 -0000 Quoting Mike Tancsa : > On 12/23/2011 11:07 AM, Damien Fleuriot wrote: > > Hey up list, > > Look, just a rant here. > > Who in *HELL* thought it would be a cool idea to release no less than > > FOUR security advisories today ? > > > The Security Officer explained it was because one of them was being > actively exploited. > > http://lists.freebsd.org/pipermail/freebsd-security-notifications/2011-December/000165.html > > > Also, the chroot issue has been public for some time along with sample > exploits. Same with BIND which was fixed some time ago. Judgment call, > and I think they made the right call at least from my perspective. > > ---Mike > > > -- > ------------------- > Mike Tancsa, tel +1 519 651 3400 > Sentex Communications, mike@sentex.net > Providing Internet services since 1994 www.sentex.net > Cambridge, Ontario Canada http://www.tancsa.com/ > _______________________________________________ > freebsd-stable@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-stable > To unsubscribe, send any mail to "freebsd-stable-unsubscribe@freebsd.org" > To think a security threat could be rendered less serious based on the date of its announcement is rather provincial. You're damn right they made the right call. ---------------------------------------------------------------- This message was sent using IMP, the Internet Messaging Program.