From owner-freebsd-security Sun Jul 6 11:28:09 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id LAA00879 for security-outgoing; Sun, 6 Jul 1997 11:28:09 -0700 (PDT) Received: from chaos.amber.org (root@chaos.amber.org [205.231.232.12]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id LAA00872 for ; Sun, 6 Jul 1997 11:28:06 -0700 (PDT) Received: from [205.231.232.194] (ab2-002.dial.nova.org [205.231.232.194]) by chaos.amber.org (8.7.5/8.6.12) with SMTP id OAA23298; Sun, 6 Jul 1997 14:27:51 -0400 (EDT) Message-Id: <199707061827.OAA23298@chaos.amber.org> Subject: Re: Security Model/Target for FreeBSD or 4.4? Date: Sun, 6 Jul 97 14:27:48 -0400 x-sender: petrilli@mx.amber.org x-mailer: Claris Emailer 2.0, March 15, 1997 From: Christopher Petrilli To: "Jordan K. Hubbard" , "Colman Reilly" cc: "Adam Shostack" , Mime-Version: 1.0 Content-Type: text/plain; charset="US-ASCII" Sender: owner-security@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk In reply to Jordan K. Hubbard (jkh@time.cdrom.com) on 7/5/97 7:47 PM: >> I also spent a couple of hours fighting with Alta Vista looking for relevant >> documents and didn't find very much. Any other suggestions? > >/usr/src? :) > >Seriously, I doubt you'll find that anyone has sat down and documented >this aspect of the system specifically. If you want to study the >security implementation in detail, the sources remain the first and >foremost resource. In fact, they probably represent the ONLY resource. >Good luck! I will note that there has been off and on talk of a C2 certified FreeBSD implementation, which would require documentation. I think it's important to understand that few OSes (outside the "big boys" like VMS, MVS, VM, GUARDIAN, etc.) have documented formal security polcies. Mostly it's just whatever a programmer feels like. Christopher -- | Christopher Petrilli "That's right you're | petrilli@amber.org not from Texas."