On Sun, May 14, 2017 at 1:59 PM, Stefan Fuhrmann
> On 09.05.2017 20:43, Stefan Sperling wrote:
>> On Mon, May 08, 2017 at 10:46:39AM +0200, Jacek Materna wrote:
>>> I wanted to start a discussion around the FAQ (and 1.10 rls. notes) as it
>>> pertains to the SHA-1 issue affecting all versions of SVN RE: "Continue
>>> 1.10 alphas?" thread.
>> I have added a small advisory-style writeup we could mail out along
>> with a 1.9.6 release announcement: http://svn.apache.org/r1794624
>> Does this look OK?
>> Of course, the FAQ and such could still be updated.
> Looks good!
> The only thing I'm not sure about is whether to
> stress the fact that the user will also lose data.
> It's there, implicitly, but the wording feels a bit
> too focussed on the "errors and inconvenience"
> side of things.
> -- Stefan^2.
I have not changed the reference to the trunk version of the hook
script as I have not seen a stable "release" branch/tag version which
has it in place yet. I assume this will come after release.
Add to website FAQ around SHA-1 vulnerability
Received on 2017-05-16 15:11:06 CEST