roundcube security bug

Ross Cameron abalour at
Mon Mar 9 02:50:36 PDT 2009

On Mon, Mar 9, 2009 at 9:47 AM, Zbigniew Szalbot <zszalbot at> wrote:

> On Mon, Mar 9, 2009 at 08:43, Brent Clark <brentgclarklist at>
> wrote:
> > Hiya
> >
> > Have you notified and / or checked with the upstream authour (maybe the
> > mailinglist too)
> Not really. It requires subscribing to a mailing list which I don't
> have time to do at the moment.

Surely an attempted cracking attempt on you're server warrants making time?

Without detailed reports of issues like this how is the vendor expected to
correct the problem?
    Avoiding installing the code is just a lazy workaround, helping the
author's will improve the general open source software ecosystem.

More information about the freebsd-questions mailing list