On Mon, 24 Jun 2002, Ben Hyde wrote:
> Some wrote... > > ... ... > Roy's patch is simple, safe, and reduces the exposure substantially to a > known threat. I can't see any reason to defer letting it out; > particularly now that people have been given a few days to give voice to > any technical concerns about it. The worst outcome is that we are > embaressed - we can handle that. ... > Leaving the users with no option but to stay exposed, write their own > patch, or upgrade is pretty stern medicine for us to be proscribing. It > is very hard for some sites to upgrade. > > Let's put the patch back. +1 - And let us not forget that you can always patch the patch - when we find a better and more holistic solution. Patches are not the same as corrective braces. Dw
