Does anyone know if upstream ever plans on updating the dovecot package to a non RC version or to even one of the RC versions that isn't so insecure, And by insecure, I of course refer to the recent rash of bugs which have been found. Thanks, -Drew -------------- next part -------------- An HTML attachment was scrubbed... URL: <http://lists.centos.org/pipermail/centos/attachments/20080402/9fb08dfa/attachment-0001.html>
On Wed, Apr 02, 2008 at 08:13:06AM -0400, Drew Weaver enlightened us:> Does anyone know if upstream ever plans on updating the dovecot package to a > non RC version or to even one of the RC versions that isn't so insecure, > > And by insecure, I of course refer to the recent rash of bugs which have > been found. >Only upstream knows for sure, but generally they only rebase if it becomes extremely difficult to backport the fixes. It was done with samba, so it's possible it could be done with dovecot, but you'll have to ask them... Matt -- Matt Hyclak Department of Mathematics Department of Social Work Ohio University (740) 593-1263
On 02/04/2008, at 10:43 PM, Drew Weaver wrote:> Does anyone know if upstream ever plans on updating the dovecot > package to a non RC version or to even one of the RC versions that > isn?t so insecure, > > And by insecure, I of course refer to the recent rash of bugs which > have been found.I don't know what version of CentOS you're using, however, with the version of Dovecot that comes with CentOS 4.x if you want to use a more recent package, there is a suitable one in the ATrpms repository. That's what I use, and I haven't had any issues with it. I'm not sure about CentOS 5.x though. Cheers, Michael
Drew Weaver wrote:> Does anyone know if upstream ever plans on updating the dovecot package > to a non RC version or to even one of the RC versions that isn?t so > insecure, > > > > And by insecure, I of course refer to the recent rash of bugs which have > been found. > > > > Thanks, > > -Drew >Drew, Upstream V5.2 should include V1.0.7. We just upgraded to it on our RH boxes at their recommendation after some nasty startup issues. They were even nice enough to give us the RPMs and are supporting it them. Best Regards, Camron Camron W. Fox Hilo Office High Performance Computing Group Fujitsu America, INC. E-mail: cwfox at us.fujitsu.com
On Wednesday, April 02, 2008 8:13 AM -0400 Drew Weaver <drew.weaver at thenap.com> wrote:> And by insecure, I of course refer to the recent rash of bugs which have > been found.Can you give Red Hat bugzilla numbers for these? If none exist, they should be entered in the system.