You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@httpd.apache.org by Randy Terbush <ra...@zyzzyva.com> on 1997/01/11 18:45:49 UTC
1.1.2 release
Unless I see a veto before 3:00pm CST, I'll plan on patching and
rolling a 1.1.2 release. If someone else could work up an announcement
before then, that would be great.
Re: 1.1.2 release
Posted by Brian Behlendorf <br...@organic.com>.
On Sat, 11 Jan 1997, Rob Hartill wrote:
> On Sat, 11 Jan 1997, Randy Terbush wrote:
>
> > Unless I see a veto before 3:00pm CST, I'll plan on patching and
> > rolling a 1.1.2 release. If someone else could work up an announcement
> > before then, that would be great.
>
> We should check with the people who notified us of the hole before
> *announcing* it. Having everything online ready is correct. Let's work
> with the security people - it's nice to get the warnings *before* the
> mass hysteria starts.
I sent them mail last night asking if it was alright to announce the hole and
patch immediately. I haven't heard back. I'd say let's do it, so long as
everything is properly credited.
Brian
--=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=--
brian@organic.com www.apache.org hyperreal.com http://www.organic.com/JOBS
Re: 1.1.2 release
Posted by Rob Hartill <ro...@imdb.com>.
On Sat, 11 Jan 1997, Randy Terbush wrote:
> Unless I see a veto before 3:00pm CST, I'll plan on patching and
> rolling a 1.1.2 release. If someone else could work up an announcement
> before then, that would be great.
We should check with the people who notified us of the hole before
*announcing* it. Having everything online ready is correct. Let's work
with the security people - it's nice to get the warnings *before* the
mass hysteria starts.
rob