I'm doing some updates and came across mail/postfix-policyd-spf which
relies on mail/libspf2-10. The latter had a vuxml entry added on
2008-10-27. So my question is, why has mail/libspf2-10 been allowed to
remain in the tree vulnerable for almost 3 years?
Wouldn't it make more sense to mark vulnerable ports DEPRECATED
immediately with a short expiration? When they get fixed they get
un-deprecated. If they don't, they get removed. Can someone explain why
this would be a bad idea?
Doug
--
Nothin' ever doesn't change, but nothin' changes much.
-- OK Go
Breadth of IT experience, and depth of knowledge in the DNS.
Yours for the right price. :) http://SupersetSolutions.com/
_______________________________________________
freebsd-ports@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-ports
To unsubscribe, send any mail to "freebsd-ports-unsubscr...@freebsd.org"
