FreeBSD Security Advisory FreeBSD-SA-14:31.ntp
Darren Pilgrim
list_freebsd at bluerosetech.com
Fri Dec 26 22:35:51 UTC 2014
On 12/25/2014 11:36 AM, Remko Lodder wrote:
>
>> On 25 Dec 2014, at 18:46, Darren Pilgrim
>> <list_freebsd at bluerosetech.com> wrote:
>>
>> On 12/23/2014 3:33 PM, FreeBSD Security Advisories wrote:
>>> IV. Workaround
>>>
>>> No workaround is available,
>>
>> This was fixed in ports/net/ntp on Dec 20, so a workaround exists
>> in the form of disabling the in-base version and installing the
>> port. In the future, it would be helpful to mention such.
>
> We talk explicitly about the base system, not about ports. We never
> mentioned them and I do not see a reason to start doing so.
I don't understand why you wouldn't. It's a legitimate way of
mitigating non-technical problems with system administration. For
example, many organizations make scheduling a reboot harder/slower than
scheduling the restart of a single service. Temporarily switching to
the port in such cases is a very useful bandaid.
More information about the freebsd-security
mailing list