On Mar 15, 2007, at 7:31 PM, Karl O. Pinc wrote:
<snip>
I agree. I'm very annoyed that I have to read about this
problem on slashdot. The misc list is not the right place
for this announcement, some low-traffic announce list that
goes right into my inbox is where this stuff belongs.
I rely on having a clear channel for security related
problems.
You -do- know that this has been on the errata page since
Friday, right? Because as worried as you are and as important
as this is to you you take the responsibility to check said page
every day, of course. Oh wait. No you don't.
Come on this is open source it should be a maker's culture.
You know where these things are as soon as they hit the tree
and it takes all of two whole minutes to glance at it once or
twice a day. Step up to the plate and do for yourself.
<snip>
Problems communicating patch availability lead
to security problems as severe as unpatched
vulnerabilities. Therefore communication problems
deserve the degree of acknowledgment and
resolution accorded to bugs in the code.
The only communication problem here is that you don't look
at the information that the project puts out there for you.
You are correct. This needs to be fixed. Do so.
Regards,
Karl <[EMAIL PROTECTED]>
Free Software: "You don't pay back, you pay forward."
-- Robert A. Heinlein
They do not preach that their God will rouse them a little before the
nuts work loose.
