Date: Tue, 20 Nov 2001 10:10:29 -0500 From: Mike Tancsa <mike@sentex.net> To: Mitch Collinsworth <mitch@collinsworth.info> Cc: security@FreeBSD.ORG Subject: Re: Fwd: Vendors For WU-FTPD Please Read Message-ID: <5.1.0.14.0.20011120095853.038e9280@marble.sentex.ca> In-Reply-To: <Pine.LNX.4.10.10111200951270.988-100000@ruby.ccmr.cornell. edu> References: <5.1.0.14.0.20011120093740.038e2580@marble.sentex.ca>
next in thread | previous in thread | raw e-mail | index | archive | help
At 09:55 AM 11/20/01 -0500, Mitch Collinsworth wrote:
>On Tue, 20 Nov 2001, Mike Tancsa wrote:
>
> > It too seems to be vulnerable to various security holes in the recent and
> > not so recent past :-(
>
>Name one thing that hasn't been. The real issue, IMO, is not
>having never had a security bug, but how quickly bugs are fixed
>and how easy it is to apply the fixes.
qmail ? Anyways, I am not looking at either bugs or zero bugs-- just less
bugs. The stock ftpd that comes with FreeBSD has not had many holes for
example. For the boxes I help look after, there is a real cost every time
we need to upgrade the software, not to mention the risk exposure while the
hole is left unpatched. x bugs a year vs x+y is a measurable difference
for us. For larger networks this becomes even more acute of course.
---Mike
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?5.1.0.14.0.20011120095853.038e9280>