On 11/14/2014 12:22 PM, Johnny Hughes wrote: > I wish there was another option, but I just don't see any others .. I > know I would not use packages with moderate security issues unfixed in > production on purpose. I think this is a ridiculous policy, but it is > what it is. its 7 1/2 years old at this point. its had a long useful run, but its time to move on. -- john r pierce 37N 122W somewhere on the middle of the left coast