Date: Thu, 11 Mar 1999 21:15:18 -0800 (PST) From: Archie Cobbs <archie@whistle.com> To: andrew@squiz.co.nz (Andrew McNaughton) Cc: freebsd-security@freebsd.org Subject: Re: disapointing security architecture Message-ID: <199903120515.VAA90743@bubba.whistle.com> In-Reply-To: <199903120052.NAA09299@aniwa.sky> from Andrew McNaughton at "Mar 12, 99 01:52:21 pm"
next in thread | previous in thread | raw e-mail | index | archive | help
Andrew McNaughton writes: > > I'm also interested. However, if I recall correctly, the problem last time > > was that nobody actually sat down and did the work. There were plenty of > > ideas, but when it came to the crunch, nobody wanted to put in the effort. > > > > Nick > > As I recall, discussion turned to concerns over who was qualified to do the work, which seemed rather silly. No security auditing project is going to be complete. No auditor is going to be perfect. Every bit counts. Here's an idea.. FreeBSD could pay for a 3rd party security audit of a stock FreeBSD system. Peter Shipley did this for Whistle and the InterJet (a "black box" approach). No problems were found but it was good to know that :-) -Archie ___________________________________________________________________________ Archie Cobbs * Whistle Communications, Inc. * http://www.whistle.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199903120515.VAA90743>