Exim security hole and lack of FreeBSD updates???

[Jeff75]

Whenever I log into WHM there's this very noticable message about the security hole found in Exim and tells me to upgrade. I went to upgrade and the latest EDGE-STABLE version for FreeBSD is only 9.2.0 when it says to upgrade to 9.3.0. If this is such a big deal then why haven't there been any changes to the releases in almost a month?

Please stop concentrating on Linsux and remember you have clients using FreeBSD!

Also, what is up with the new change log? It only shows one change for FreeBSD and that was back on March 15th????

[peruda.com]

I have a Fedora box and a BSD box - I usually only use release versions, but because of this Exim bug, I decided to upgrade to the "current" version. Everything went OK on the Fedora box, but on BSD, I got this:

<SNIP>
===> Cleaning for exim-4.24_4
===> Deleting distfiles for exim-4.24_4
>> exim-4.24.tar.bz2 doesn't seem to exist in /usr/ports/distfiles/exim.
>> Attempting to fetch from ftp://ftp.csx.cam.ac.uk/pub/software/email/exim/exim4/.
>> exiscan-acl-4.24-13.patch.bz2 doesn't seem to exist in /usr/ports/distfiles/exim.
>> Attempting to fetch from http://duncanthrax.net/exiscan-acl/.
===> Extracting for exim-4.24_4
>> Checksum OK for exim/exim-4.24.tar.bz2.
>> Checksum OK for exim/exiscan-acl-4.24-13.patch.bz2.
===> Patching for exim-4.24_4
===> Applying distribution patches for exim-4.24_4
===> Applying FreeBSD patches for exim-4.24_4
>> Patch patch-mbx_lock failed to apply cleanly.
>> Patch(es) patch-OS::Makefile-FreeBSD patch-doc::spec.txt applied cleanly.
*** Error code 1

Stop in /usr/ports/mail/exim.
There was a problem building the port!
<SNIP>


The Exim upgrade is most definitely not working . . . Any ideas?? Thanks very much!

[madcow774]

Please stop concentrating on Linsux and remember you have clients using FreeBSD!

I second that, We use BSD too. When will the exim hole be fixed?

[LP-Trel]

If you don't understand how FreeBSD works, please use Linux.

[Jedia]

Originally posted by LifelessHost
If you don't understand how FreeBSD works, please use Linux.

i love linux, but i'am leaning FreeBSD, i think FreeBSD is better than linux

[peruda.com]

True that. BSD is far superior in the area of security. Although of course cPanel has so much stuff that's ported from Linux, so you've still got to be on top of security - always get the latest apache and exim patches when security holes are discovered. Some of us have found this out the hard way(!)

I'm very happy with BSD so far. There are definately some bugs that cPanel has to work out but with a little hacking, a lot of of forum searching, and a little bit of lost hair, you can survive it!

Here's to BSD-cPanel installation survivors!!!

[AlexF]

Originally posted by madcow774
I second that, We use BSD too. When will the exim hole be fixed?

Third that!



nice English, huh...

[dazerrackers]

I think the sensible thing to do would be to manually update Exim.