svn commit: r302900 - head/security/vuxml

Eygene Ryabinkin rea at freebsd.org
Wed Aug 22 08:32:52 UTC 2012


Wed, Aug 22, 2012 at 12:08:07AM -0700, Doug Barton wrote:
> On 8/21/2012 9:28 PM, Eygene Ryabinkin wrote:
> > I intend to update rssh to 2.3.3, apply the patch and possibly
> > bring the support for rsync from Debian.  Once my conversion
> > of the Git repository for ports from using CVS to Subversion
> > will end ;))
> 
> What is your timeline on implementing that plan?

2 days.

> Completely aside from my conviction that ALL ports in the vuxml
> should be marked FORBIDDEN until they are fixed, Eitan has a point
> here. This is a serious compromise, and I would not want users to
> install the port in its current form.

Well, that's a good point.  I'll coin in another VuXML entry
(about the vulns fixed in 2.3.3,
http://www.pizzashack.org/rssh/security.shtml) and add FORBIDDEN.

Pav, do you still use rssh and want to maintain it?
-- 
Eygene Ryabinkin                                        ,,,^..^,,,
[ Life's unfair - but root password helps!           | codelabs.ru ]
[ 82FE 06BC D497 C0DE 49EC  4FF0 16AF 9EAE 8152 ECFB | freebsd.org ]
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 228 bytes
Desc: not available
URL: <http://lists.freebsd.org/pipermail/svn-ports-all/attachments/20120822/5c69ec3f/attachment.sig>


More information about the svn-ports-all mailing list