Date: Wed, 20 Sep 2006 09:30:49 +0200 From: Alex Dupre <ale@FreeBSD.org> To: Fred Cox <sailorfred@yahoo.com> Cc: freebsd-ports@freebsd.org, Kris Kennaway <kris@obsecurity.org> Subject: Re: www/dotproject out of date and vulnerable Message-ID: <4510EE29.5050600@FreeBSD.org> In-Reply-To: <20060920072043.47129.qmail@web31808.mail.mud.yahoo.com> References: <20060920072043.47129.qmail@web31808.mail.mud.yahoo.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Fred Cox ha scritto: > So how about this: > > Update the version to 2.0.4 to avoid the > vulnerability. > > Modify Makefile to require PHP4: > > DEFAULT_PHP_VER=4 > WANT_PHP_WEB= yes > IGNORE_WITH_PHP=5 > > Add to the files/pkg-message.in to inform the user > that they must have a remote or jailed mysql 3.23 or > make the published patches. They need MySQL 3.23 server for running sql scripts. Local, remote, jailed or virtual is not important. Fine for me. -- Alex Dupre
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4510EE29.5050600>