Date: Wed, 26 Oct 2016 19:53:51 +0200 From: CeDeROM <cederom@tlen.pl> To: =?UTF-8?Q?Dag=2DErling_Sm=C3=B8rgrav?= <des@des.no> Cc: "Robert N. M. Watson" <rwatson@freebsd.org>, freebsd-security@freebsd.org, Pawel Jakub Dawidek <pjd@freebsd.org> Subject: Re: FreeBSD Security Advisory FreeBSD-SA-16:15.sysarch [REVISED] Message-ID: <CAFYkXjkE_1Dfe2exA6ioVuj8HaAmrSJa98_Pf1VmuW_MPZ2Hfw@mail.gmail.com> In-Reply-To: <86oa27usni.fsf@desk.des.no> References: <20161025173641.BCDFD1911@freefall.freebsd.org> <20161026042748.GG60006@garage.freebsd.pl> <CAGMYy3v8KxuQfou0SmUNikghH-9NWfneoMPP_15F85WkDaUhKg@mail.gmail.com> <20161026061504.GH60006@garage.freebsd.pl> <0717BEFA-4E65-4990-AC50-FD80681C110C@FreeBSD.org> <CAFYkXjn39kKzcTY-pJObaVz8OGqbzCHE69kYAmRYtz5OX2kpAQ@mail.gmail.com> <868ttbwio9.fsf@desk.des.no> <CAFYkXjmYCLyQi-PHNtcP2-AALH=2QRwAWBoQDtypUvBtekTFag@mail.gmail.com> <864m3zwdro.fsf@desk.des.no> <CAFYkXjmgvNz_LpkSJq7AeQp94oXJYvKcttFrYVKLEmmEvwNhkA@mail.gmail.com> <86wpgvuwq2.fsf@desk.des.no> <CAFYkXjnDe6nuA8QCCnQoDP2CYfcxfH3VWyYXm-Y8x4cWA8FpOw@mail.gmail.com> <86shrjuud4.fsf@desk.des.no> <CAFYkXj=cACm0XJcXkA5Jw1Mq79u43yAU1EpHQ60MqcaRDUfj8A@mail.gmail.com> <86oa27usni.fsf@desk.des.no>
next in thread | previous in thread | raw e-mail | index | archive | help
Allright :-) I was just thinking aloud.. not necessairly "the" but rather "something alike" CIS Benchmarks.. I was using them several times and found people also keen to use them as security measure before implementation :-) It is nice to see SA anyway and know things get improved.. it would be also nice to have a tool that would easily assess the OS state.. I know this is not the goal here and not really the topic.. but could be a nice derivative :-) If we speak about four byte DoS I think this should not be possible in the default configuration anyway.. or at least it would be nice to have a tool that would show the problem and tell you how to fix it.. kind of automated OS hardening.. I am sure this could be done with CIS alike set of rules, no? :-) -- CeDeROM, SQ7MHZ, http://www.tomek.cedro.info
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CAFYkXjkE_1Dfe2exA6ioVuj8HaAmrSJa98_Pf1VmuW_MPZ2Hfw>