Subject: www/apache*
To: None <tech-pkg@netbsd.org>
From: None <itojun@iijlab.net>
List: tech-pkg
Date: 06/18/2002 20:15:59 
	beware - www/apache* ARE NOT SECURE YET.  we are still awaiting for
	apache.org to issue a new release.

	apache-1.3.24 -> apache-1.3.24nb1 change was from ISS advisory,
	but many comments say that it is not enough.  therefore, i've marked
	apache-1.3.24nb1 as vulnerable in pkg-vulnerabilities list
	(pkgsrc/security/audit-packages is your friend).

itojun