The 'Security Digest' Archives (TM)

Archive: About | Browse | Search | Contributions | Feedback
Site: Help | Index | Search | Contact | Notices | Changes

ARCHIVE: 'Phage List' - Archives (1988 - 1989)
DOCUMENT: phage #393 [Re: Security Mailing List] (1 message, 710 bytes)
NOTICE: recognises the rights of all third-party works.


From: "Matt Crawford" <[email protected]>
To: phage
Date: Fri 13:34:10 04/11/1988 EST
Subject: Re: Security Mailing List
References: [Thread Prev: 037] [Thread Next: 396] [Message Prev: 033] [Message Next: 034]

>> The are a number of sites who don't have source, yet they want holes
>> fixes.  For some problems, it is easy enough to patch a binary with
>> adb, but for other problems that is not enough.  I would suggest a
>> ftp site on the Internet that would keep binaries to patched programs.
>> I would suggest Sun-3, Sun-4, and Vaxen binaries.  Possibly other
>> machines (i.e. Pyramid, Sequent, Encore, HP) if there seems to be enough
>> of an interest.

A good idea, but unfortunately this violates the terms of many
software source licenses.  Special dispensation might be needed.
Also, such a repository would have to be guarded extremely well
lest bugged programs be planted in it.