-----BEGIN PGP SIGNED MESSAGE----- Hash: RIPEMD160 On 02/18/10 10:06, Todd Glassey wrote: > The Vendor's who ship BIND as a part of their OS's are being told that > they must pay the ISC to 'join the forum' to get early notice of the > bugs and security flaws found by parties outside of the ISC itself and > that is possibly the biggest issue.
I'm sort of hesitant to shovel troll-food into the trough here, particularly since the topic is not relevant on this list, but since I think it might be helpful for others I would like to present at least one data point that contradicts your statement above. I maintain BIND-related stuff for FreeBSD, both in the ports tree and in the base. We received a membership in the BIND Forum at no cost that includes both advance notice of security vulnerabilities and advance access to new code. This information has been very useful in having patches and updates ready to go for our users when the vulnerabilities are released publicly. My understanding (although I don't speak for ISC) is that this type of membership is available to other FOSS projects as well with similar terms. If anyone has questions I'll be glad to answer them off-list to the extent that I can. Info on the BIND Forum is available here: http://www.isc.org/software/guild/bf Doug - -- ... and that's just a little bit of history repeating. -- Propellerheads Improve the effectiveness of your Internet presence with a domain name makeover! http://SupersetSolutions.com/ -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.14 (FreeBSD) iEYEAREDAAYFAkuDdZwACgkQyIakK9Wy8PtSCgCgnYniyQOQDcgfl042d1vZ/ZMk bwAAn1i1OBiAseQ2K0rl6q90Gl0vkD+d =CSwh -----END PGP SIGNATURE----- _______________________________________________ DNSOP mailing list DNSOP@ietf.org https://www.ietf.org/mailman/listinfo/dnsop
