cvs commit: ports/security/vuxml vuln.xml
Oliver Eikemeier
eikemeier at fillmore-labs.com
Fri Aug 13 15:36:39 PDT 2004
Jacques Vidrine wrote:
>> Since you seem not to check your entries with portaudit, I have a lot
>> of work dealing with vuxml quirks.
>
> No, I don't use portaudit. How would I go about `checking entries'
> with it? Does it not understand some VuXML entries for some reason?
> If there is a simple check, I would be happy to do it. I didn't
> realize there was a problem.
Sorry, but this is the core of my problems. You had enough time to try
it, and as security officer it should have been your duty to review the
system. I have done a lot of work to make this a joint venture, but
obviously failed.
> Could you elaborate about the quirks, and what kind of work it is
> producing for you? Maybe we can ``fix'' them. Certainly I'm willing
> to make reasonable changes, and now is perhaps a good time as I'm
> working on a minor update to VuXML 1.2 in order to accommodate the
> needs of another large package collection.
Ask them if they want to adopt your system. For me you care far too less
about FreeBSD specifics to be really useful.
>> OTOH when you think we have different design goals, it should be no
>> problem for me to change the database, since portaudit is database
>> format agnostic.
>
> This (``format agnostic'') seems to contradict what you stated above,
> so I think I must not quite understand.
I can get my data from multiple sources, and vuxml doesn't seem to be
the ideal format, especially since you `own' it and refuse to join
forces.
> P.S. Did you miss this part? I would be much obliged if you would
> point out the problems so we can correct them, and so I don't goof it
> again in the future.
>
>>> Besides, it seems like this commit introduced some errors. How
>>> should we handle this?
>>
>> Hit me over the head with the specific errors, please :-) Let's
>> resolve them.
No, I did not miss this part. Did you review the changes you've done to
the entries made by me, or did you change them just because they did not
fit in your concept?
Anyway, don't ask me to improve your system by making suggestions. Tell
me what you have to offer over having my own database or let us just go
our ways, respecting that our projects have a different focus.
-Oliver
More information about the cvs-all
mailing list