From owner-freebsd-advocacy@FreeBSD.ORG  Sun Jan 11 05:46:34 2004
Return-Path: <owner-freebsd-advocacy@FreeBSD.ORG>
Delivered-To: freebsd-advocacy@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 2CDB716A4CE
	for <freebsd-advocacy@freebsd.org>;
	Sun, 11 Jan 2004 05:46:34 -0800 (PST)
Received: from lilzmailso01.liwest.at (lilzmailso01.liwest.at [212.33.55.23])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 010D543D1F
	for <freebsd-advocacy@freebsd.org>;
	Sun, 11 Jan 2004 05:46:33 -0800 (PST)	(envelope-from dgw@liwest.at)
Received: from cm58-27.liwest.at ([212.33.58.27])
	by lilzmailso01.liwest.at with esmtp (Exim 4.24)
	id 1AffvC-0003iE-Vw; Sun, 11 Jan 2004 14:46:31 +0100
From: Daniela <dgw@liwest.at>
To: Mike Hoskins <mike@adept.org>, freebsd-advocacy@freebsd.org
Date: Sun, 11 Jan 2004 14:42:57 +0000
User-Agent: KMail/1.5.3
References: <C8FC1BDF-4153-11D8-9D76-003065995254@tasonline.com>
	<000b01c3d57f$a5c4d910$c701a8c0@diamond> <3FFCB0F2.6040206@adept.org>
In-Reply-To: <3FFCB0F2.6040206@adept.org>
MIME-Version: 1.0
Content-Type: text/plain;
  charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
Content-Disposition: inline
Message-Id: <200401111442.57782.dgw@liwest.at>
Subject: Re: FreeBSD Today
X-BeenThere: freebsd-advocacy@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: FreeBSD Evangelism <freebsd-advocacy.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-advocacy>,
	<mailto:freebsd-advocacy-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-advocacy>
List-Post: <mailto:freebsd-advocacy@freebsd.org>
List-Help: <mailto:freebsd-advocacy-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-advocacy>,
	<mailto:freebsd-advocacy-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sun, 11 Jan 2004 13:46:34 -0000

On Thursday 08 January 2004 01:22, Mike Hoskins wrote:
> it may be nice to allow such things to be more easily removed for
> "security" reasons, but one certainly does have to avoid shooting
> themselves in the foot.  in places where this is actually desired, it
> would probably be better to run a custom distro (which could really just
> be freebsd minus some agreed upon things to remove, backed by policy,
> enforced by script) or look at embedded/hardening projects which already
> do this or make it relatively moot.

What??? Remove the compiler for better security???
Many people (including me) can program without a compiler or interpreter. It 
takes time to get used to, but it's not that hard to enter a complete 
executable with ELF headers in the hexeditor, or even with cat if you manage 
to avoid some symbols.

Daniela