svn commit: r351023 - in head/java: linux-sun-jdk16 linux-sun-jre16

[Jung-uk Kim]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 2014-04-11 15:15:11 -0400, Koop Mast wrote:
> On 11-04-2014 20:33, Jung-uk Kim wrote:
>> Author: jkim Date: Fri Apr 11 18:33:50 2014 New Revision: 351023 
>> URL: http://svnweb.freebsd.org/changeset/ports/351023 QAT:
>> https://qat.redports.org/buildarchive/r351023/
>> 
>> Log: Mark deprecated and set expiration.
>> 
>> Modified: head/java/linux-sun-jdk16/Makefile 
>> head/java/linux-sun-jre16/Makefile
>> 
>> Modified: head/java/linux-sun-jdk16/Makefile 
>> ==============================================================================
>>
>>
>> 
- --- head/java/linux-sun-jdk16/Makefile    Fri Apr 11 17:36:30 2014
>> (r351022) +++ head/java/linux-sun-jdk16/Makefile    Fri Apr 11
>> 18:33:50 2014 (r351023) @@ -14,6 +14,9 @@ COMMENT=    Sun Java
>> Development Kit 1.6 fo EXTRACT_DEPENDS=${LINUX_BASE_PORT} 
>> RUN_DEPENDS=    javavm:${PORTSDIR}/java/javavmwrapper
>> 
>> +DEPRECATED=    Unsupported and known for multiple security 
>> vulnerabilities +EXPIRATION_DATE=2014-05-10 +
> 
> If it is known for having multiple security vulnerablities
> shouldn't it be set to FORBIDDEN too?
...

Theoretically, I guess so.  However, it should not be a big problem
because a user has to manually download the distfiles directly from
the vendor.  It is really hard to miss their legal warnings and stuff. ;-)

Jung-uk Kim
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.22 (FreeBSD)

iQEcBAEBAgAGBQJTSEXPAAoJEHyflib82/FGU4cIAIzLojRSW4WgdttKFDAIdevn
wsVw+pghSKomncdVxsEaCEHA+JOJG9tBcxA34wQZxPH63oZ167X2FVfSHelDP9SK
BYE41JgQHLrdaY0WnQlfdiq6os03vmXeWRFwVtISTpLfkVqWBpCyLOFTRhkheGR+
6xKlULvSaUIUf1u6rKDaW5l6DEcOV2O4OqnLbtY/73HnFFTtwZ7RYpP3KGPJs7TP
ujCz34pHmcA+ziAerSW6dPV1OxSQ+1GfzvseOQpUmlDWAGB0rhZ7YZsgRN3XJOcY
ftJMxNtzumIE+beG6r5wa9HMywNp31vq1xhRY2KZc58fokv5O1JBjCPdp6pH52g=
=8F/F
-----END PGP SIGNATURE-----