From owner-doc-jp@jp.freebsd.org  Thu Nov 23 03:45:42 2000
Received: (from daemon@localhost)
	by castle.jp.freebsd.org (8.9.3+3.2W/8.7.3) id DAA40803;
	Thu, 23 Nov 2000 03:45:42 +0900 (JST)
	(envelope-from owner-doc-jp@jp.FreeBSD.org)
Received: from eos.ocn.ne.jp (eos.ocn.ne.jp [210.190.142.171])
	by castle.jp.freebsd.org (8.9.3+3.2W/8.7.3) with ESMTP id DAA40798
	for <doc-jp@jp.freebsd.org>; Thu, 23 Nov 2000 03:45:41 +0900 (JST)
	(envelope-from hrs@eos.ocn.ne.jp)
Received: from mail.hrslab.yi.org (p0189-ip01funabasi.chiba.ocn.ne.jp [211.123.225.189])
	by eos.ocn.ne.jp (8.9.1a/OCN/) with ESMTP id DAA18432
	for <doc-jp@jp.freebsd.org>; Thu, 23 Nov 2000 03:45:39 +0900 (JST)
Message-Id: <200011221845.DAA18432@eos.ocn.ne.jp>
Received: from localhost (alph.hrslab.yi.org [192.168.0.10])
	by mail.hrslab.yi.org (8.9.3/3.7W/DomainMaster) with ESMTP id DAA60954
	for <doc-jp@jp.freebsd.org>; Thu, 23 Nov 2000 03:41:51 +0900 (JST)
	(envelope-from hrs@eos.ocn.ne.jp)
To: doc-jp@jp.freebsd.org
In-Reply-To: <20001120035146.0020937B479@hub.freebsd.org>
References: <20001120035146.0020937B479@hub.freebsd.org>
X-Mailer: Mew version 1.94.1 on Emacs 19.34 / Mule 2.3 (SUETSUMUHANA)
Mime-Version: 1.0
Content-Type: Multipart/Mixed;
 boundary="--Next_Part(Thu_Nov_23_03:41:33_2000_601)--"
Content-Transfer-Encoding: 7bit
Date: Thu, 23 Nov 2000 03:41:50 +0900
From: Hiroki Sato <hrs@eos.ocn.ne.jp>
X-Dispatcher: imput version 20000228(IM140)
Lines: 122
Reply-To: doc-jp@jp.freebsd.org
Precedence: list
X-Distribute: distribute version 2.1 (Alpha) patchlevel 24e+000315
X-Sequence: doc-jp 7862
Subject: [doc-jp 7862] Re: ANNOUNCE: New security policy for FreeBSD 3.x
Errors-To: owner-doc-jp@jp.freebsd.org
Sender: owner-doc-jp@jp.freebsd.org
X-Originator: hrs@eos.ocn.ne.jp

----Next_Part(Thu_Nov_23_03:41:33_2000_601)--
Content-Type: Text/Plain; charset=iso-2022-jp
Content-Transfer-Encoding: 7bit

$B:4F#!wEl5~M}2JBg3X$G$9!#(B

 $B%;%-%e%j%F%#4+9p$N8x3+J}?K$NJQ99$K4X$9$k(B
 $B%"%J%&%s%9$NK]Lu$G$9!#(B

--
| $B:4F#(B $B9-@8!wEl5~M}2JBg3X(B <hrs@eos.ocn.ne.jp>
|
| sato@sekine00.ee.noda.sut.ac.jp (UNIV)
| hrs@FreeBSD.org (FreeBSD Project)

----Next_Part(Thu_Nov_23_03:41:33_2000_601)--
Content-Type: Text/Plain; charset=iso-2022-jp
Content-Transfer-Encoding: 7bit

 $B$3$N%a!<%k$O(B, announce-jp $B$KN.$l$?(B

  Subject: ANNOUNCE: New security policy for FreeBSD 3.x
  From: FreeBSD Security Advisories <security-advisories@freebsd.org>
  Date: Sun, 19 Nov 2000 19:51:46 -0800 (PST)
  Message-Id: <20001120035146.0020937B479@hub.freebsd.org>
  X-Sequence: announce-jp 603

 $B$rF|K\8lLu$7$?$b$N$G$9(B. 

 $BF|K\8lLu$O(B FreeBSD $BF|K\8l%I%-%e%a%s%F!<%7%g%s%W%m%8%'%/%H(B (doc-jp) $B$,(B
 $B;29M$N$?$a$KDs6!$9$k$b$N$G(B, $BK]Lu<T$*$h$S(B doc-jp $B$O(B $B$=$NFbMF$K$D$$$F(B
 $B$$$+$J$kJ]>Z$b$$$?$7$^$;$s(B. $BF|K\8lLu$K$D$$$F$N$*Ld$$9g$o$;$O(B,
 doc-jp@jp.freebsd.org $B$^$G$*4j$$$7$^$9(B.

--($B$3$3$+$i(B)

The FreeBSD Security Officer would like to announce a change in policy
regarding security support for the FreeBSD 3.x branch.

FreeBSD $B%;%-%e%j%F%#%*%U%#%5$h$j(B, FreeBSD 3.x $B%V%i%s%A$N(B
$B%;%-%e%j%F%#BP1~$K4X$9$kJ}?K$,JQ99$5$l$?$3$H$r$*CN$i$;$7$^$9(B.

Due to the frequent difficulties encountered in fixing the old code
contained in FreeBSD 3.x, we will no longer be requiring security
problems to be fixed in that branch prior to the release of an
advisory that also pertains to FreeBSD 4.x.  In recent months this
requirement has led to delays in the release of advisories, which
negatively impacts users of the current FreeBSD release branch
(FreeBSD 4.x).

FreeBSD 3.x $B$K4^$^$l$k8E$$%3!<%I$N=$@5$O:$Fq$G(B, $BLdBj$H$J$k$3$H$,(B
$BNI$/$"$j$^$9(B.  $B$=$N$?$a(B, $B:#8e(B FreeBSD 4.x $B$H(B 3.x $B$NN>J}$K4XO"$9$k(B
$B%;%-%e%j%F%#4+9p$N>l9g$O(B, $B$=$N4+9p$N8x3+A0$K(B 3.x $B%V%i%s%A$K$*$$$F(B
$BLdBj$,=$@5$5$l$F$$$J$$>l9g$G$b(B, $B4+9p$,8x3+$5$l$k$h$&$K$J$j$^$9(B.  
$B$3$3?t%+7n$N4V(B, $B4+9p$N8x3+A0$KN>%V%i%s%A$G=$@5$,40N;$7$J$1$l$P(B
$B$J$i$J$$$H$$$&>r7o$N$?$a$K%;%-%e%j%F%#4+9p$N8x3+$,CY$l(B,
$B8=:_$N(B FreeBSD $B%j%j!<%9%V%i%s%A(B (FreeBSD 4.x) $B$rMxMQ$7$F$$$k%f!<%6$K(B
$B0-$$1F6A$rM?$($F$7$^$C$F$$$k$?$a$G$9(B.

Security fixes which are committed to FreeBSD 3.5.1-STABLE prior to
the advisory release will be included in the advisory, but the
advisory release will not be delayed awaiting a fix in the 3.x branch
when a fix is already in place in FreeBSD 4.x.  Serious
vulnerabilities will result in a reissue of the advisory once the
problem is corrected in 3.5.1-STABLE.  For less serious
vulnerabilities a notification will be sent to the
freebsd-security@FreeBSD.org mailing list only, to reduce overall
subscriber traffic on the freebsd-security-notifications and
freebsd-announce mailing lists.

$B%;%-%e%j%F%#4+9p$N8x3+A0$K(B FreeBSD 3.5.1-STABLE $B%V%i%s%A$K%3%_%C%H$5$l$?(B
$B=$@5$O4+9p$K5-:\$5$l$^$9$,(B, $B$9$G$K(B FreeBSD 4.x $B%V%i%s%A$G=$@5$,(B
$B40N;$7$F$$$k>l9g(B, FreeBSD 3.x $B%V%i%s%A$K$*$1$k=$@5$N40N;$rBT$?$:$K(B
$B4+9p$O8x3+$5$l$k$h$&$K$J$k$?$a(B, $B$=$l$K$h$C$F4+9p$N8x3+$,CY$l$k$3$H$O(B
$B$J$/$J$j$^$9(B.  $B%;%-%e%j%F%#>e$N<eE@$N1F6A$,Hs>o$K?<9o$J>l9g$O(B
FreeBSD 3.5.1-STABLE $B%V%i%s%A$K$*$1$k=$@5$,40N;<!Bh(B,
$B%;%-%e%j%F%#4+9p$,:FH/9T$5$l$^$9$,(B, $B$"$^$j?<9o$G$J$$$b$N$K$D$$$F$O(B
freebsd-security@FreeBSD.org $B$KDLCN$,Aw$i$l$k$@$1$K$J$kM=Dj$G$9(B.
$B$3$l$O(B freebsd-security-notifications $B$*$h$S(B freebsd-announce
$B%a!<%j%s%0%j%9%H$NN.NL$r8:$i$9$?$a$G$9(B.

We will continue endeavouring to ensure that applicable security fixes
are merged back to the 3.x branch by FreeBSD developers, and to work
with them to develop or merge the appropriate fix prior to the
advisory release, however as the 3.x branch is approaching end of life
we anticipate that there may be an increasing time lag between the
time of fix of a vulnerability in 4.x and when it is backported to
3.x.  Given this reality, users are encouraged to consider plans to
migrate security-critical systems to the 4.x branch over the coming
months.

$B$o$?$7$?$A$O:#8e$b(B FreeBSD $B3+H/<T$K$h$C$F%;%-%e%j%F%#>e$N=$@5$,(B
$B3N<B$K(B 3.x $B%V%i%s%A$K%^!<%8$5$l$k$h$&EX$a(B, $B4+9p$N8x3+A0$K$=$l$,(B
$B40N;$9$k$h$&EXNO$7$F9T$-$?$$$H9M$($F$$$^$9(B.  $B$7$+$7(B, 3.x $B%V%i%s%A$O(B
$B$=$m$=$m$=$NLrL\$r=*$($k;~4|$K6aIU$$$F$*$j(B, 4.x $B%V%i%s%A$K$*$1$k(B
$B%;%-%e%j%F%#>e$N<eE@$N=$@5$H(B, $B$=$l$,(B 3.x $B%V%i%s%A$K0\?"$5$l$k$^$G$N4V$N(B
$B;~4VE*$JCY$l$O(B, $B$^$9$^$9Bg$-$J$b$N$K$J$C$F$$$/$3$H$,M=A[$5$l$^$9(B.
$B$3$&$$$C$?>u67$G$9$N$G(B, $B%;%-%e%j%F%#$,LdBj$H$J$k%7%9%F%`$N%f!<%6$K$O(B
$B?t%+7n0JFb$K(B 4.x $B%V%i%s%A$X$N%7%9%F%`$N99?7$r9MN8$5$l$k$h$&$*$9$9$a$7$^$9(B.

FreeBSD committers who are interested in providing security support
for older branches of FreeBSD should contact the Security Officer and
they will be kept informed of fixes which require merging to the older
branches.

$B8E$$(B FreeBSD $B%V%i%s%A$X$N%;%-%e%j%F%#BP1~$K6=L#$r;}$C$F$$$k(B
FreeBSD $B%3%_%C%?!<$O(B, $B%;%-%e%j%F%#%*%U%#%5$^$GO"Mm$/$@$5$$(B.
$B8E$$%V%i%s%A$X%^!<%8$7$J$1$l$P$J$i$J$$%;%-%e%j%F%#>e$N=$@5$K4X$9$k(B
$B>pJs$r(B, $BDj4|E*$K$*CN$i$;$7$^$9(B.

Comments on this policy are welcomed - please reply to
security-officer@FreeBSD.org.

$B$3$NJ}?K$K4X$9$k$40U8+$r$*BT$A$7$F$$$^$9(B.  
security-officer@FreeBSD.org $B$X(B ($BLuCm(B: $B1Q8l$G(B) $BJV?.$7$F$/$@$5$$(B.

Regards,

Kris Kennaway
FreeBSD Security Officer

----Next_Part(Thu_Nov_23_03:41:33_2000_601)----
