httpd-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Ben Laurie <...@gonzo.ben.algroup.co.uk>
Subject Re: Might as well be a CERT warning.
Date Sat, 11 Jan 1997 17:10:49 GMT
Randy Terbush wrote:
> 
> 
> Looks like we have concensus to roll a 1.1.2 release with this patch
> applied. Shall I?  I raise the concern about all the other overflow
> problems that are being addressed in 1.2. Seems this could be used
> as a catalist to get these people to move to 1.2 instead of a 1.1.2.
> 
> *shrug*

In my view, we _must_ release a 1.1.2 which addresses the problem, though
it doesn't have to be that patch, of course. We can't have a server in the
wild with a known security hole.

Cheers,

Ben.

-- 
Ben Laurie                Phone: +44 (181) 994 6435  Email: ben@algroup.co.uk
Freelance Consultant and  Fax:   +44 (181) 994 6472
Technical Director        URL: http://www.algroup.co.uk/Apache-SSL
A.L. Digital Ltd,         Apache Group member (http://www.apache.org)
London, England.          Apache-SSL author

Mime
View raw message