*BSD News Article 83603


Return to BSD News archive

Path: euryale.cc.adfa.oz.au!newshost.carno.net.au!harbinger.cc.monash.edu.au!news.mira.net.au!news.vbc.net!vbcnet-west!news13.agis.net!agis!newsgod1.agis.net!agis!news4.agis.net!agis!www.nntp.primenet.com!nntp.primenet.com!feed1.news.erols.com!howland.erols.net!swrinde!news.uh.edu!bonkers!not-for-mail
From: "Jordan K. Hubbard" <jkh@time.cdrom.com>
Newsgroups: comp.unix.bsd.freebsd.announce
Subject: FreeBSD 2.1.6 replaced with point release (2.1.6.1)
Date: 26 Nov 1996 00:55:42 -0600
Organization: FreeBSD Project
Lines: 54
Sender: daemon@taronga.com
Approved: peter@taronga.com
Message-ID: <57e49e$6jh@bonkers.taronga.com>
NNTP-Posting-Host: localhost.taronga.com
Mime-Version: 1.0
Content-Type: multipart/digest; boundary="----- =_aaaaaaaaaa"

------- =_aaaaaaaaaa
Content-Type: message/rfc822
Content-Description: Original Message

To: announce@freebsd.org
Subject: FreeBSD 2.1.6 replaced with point release (2.1.6.1)
Date: Mon, 25 Nov 1996 22:58:42 -0800
Message-ID: <11168.848991522@time.cdrom.com>
From: "Jordan K. Hubbard" <jkh@time.cdrom.com>

Following Murphy's law to the letter, a significant security hole in
sendmail 8.8.3 was found just one day after 2.1.6 was rolled and put
up on ftp.freebsd.org, requiring some sort of response before putting
2.1.6 onto CDROM.

While investigating this, it was also decided to integrate a fairly
simple fix for the SYN attack problem (less sophisticated than the one
in FreeBSD 2.2-ALPHA) which provided effective protection without
introducing any potential instabilities which would violate 2.1.6's
stability charter.

Several other more minor changes were made to make(1) and the
bsd.port.mk file in order to more effectively support the 2.2.x ports
collection on 2.1.x machines, should people desire this, but that's
about it for 2.1.6 -> 2.1.6.1 changes.

In order to prevent the mirror sites from murdering us in our sleep
for wasting space (not to mention Walnut Creek CDROM, who has already
printed up the covers saying "2.1.6" on them), the 2.1.6.1 release was
also simply overlayed on top of the 2.1.6 release on ftp.freebsd.org
and will be released on CD as 2.1.6 - if it makes it easier to
understand, just pretend that the 2.1.6 I announced before was really
2.1.6-BETA. :-)

If you look at our timeline, we're still ahead of our December
deadline for 2.1.6 in either case.

Please read the RELNOTES.TXT file in the 2.1.6-RELEASE directory for
more details on what you should upgrade if you're already running
2.1.6 and don't want to reinstall.  The 2.1.6.1 README.TXT file also
reads "RELEASE Version +1" at the top for easy identification, and the
uname(1) command prints out 2.1.6.1 as well, so you'll know if you're
running the security patched version on an installed system.

Apologies in advance for any confusion this causes, but I believe we
chose the lesser of several possible evils, and at least now 2.1.6
will be going out without any clearly obvious security holes.

Thanks!

					Jordan


------- =_aaaaaaaaaa--