Regarding the 2012 compromise, I'm a little confused as to what was and wasn't affected: From the release: > or of any ports compiled from trees obtained via any means other than > through svn.freebsd.org or one of its mirrors Does that mean that any ports updated using the standard "portsnap fetch" may have been affected, I'm guessing yes. Many thanks, John _______________________________________________ freebsd-security@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-security To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org"