Date: Wed, 11 Jul 2001 16:21:13 -0400 From: "Jason" <username@arenet.net> To: "Martin McCormick" <martin@dc.cis.okstate.edu> Cc: <freebsd-questions@freebsd.org> Subject: Re: Another Security-related Question Message-ID: <010f01c10a47$1a4352a0$3d026b83@jason> References: <E15KQGo-000092-00@dc.cis.okstate.edu>
next in thread | previous in thread | raw e-mail | index | archive | help
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
The mechanism that you are talking about really is impossible due
to the variance in code base between distributions. FreeBSD has a
great track record for security, when flaws are found, they are
repaired normally within a week (some cases the fix is committed the
same day). I have setup and helped maintain FreeBSD servers for
Internet based services for 4 years and can say proudly that they
have never been compromised, that is both due to good coding on the
developers part and diligence on the administrators part.Your best
bet is to subscribe to freebsd-security and bugtraq to keep abreast
of security matters and of course watch your logs. On a side note,
FreeBSD fixes are committed much faster than Microsoft, Sun and
other commercial vendors, just something to keep in mind. :-)
HTH,
- -Jason
- ----- Original Message -----
From: "Martin McCormick" <martin@dc.cis.okstate.edu>
To: <freebsd-questions@freebsd.org>
Sent: Wednesday, July 11, 2001 4:07 PM
Subject: Another Security-related Question
> After reading the Security section of the FreeBSD web
> site, I still have a question which has been asked of me and
> which I am relaying.
>
> If security holes are discovered in other versions of
> UNIX, say, Solaris or one of the Linux varieties, is there any
> mechanism under FreeBSD to see whether or not the same hole or
> exploit possibility exists in FreeBSD?
>
> We will be using FreeBSD servers completely exposed as in
> no firewalls, at least in the near future, and I want to be able
> to honestly reassure them as much as humanly possible.
>
> My own bias is that we are probably equally at risk running
> some of the commercial OS's, but that is just my opinion.
>
> Thank you.
>
> Martin McCormick
>
> To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message
-----BEGIN PGP SIGNATURE-----
Version: PGPfreeware 6.5.8 for non-commercial use <http://www.pgp.com>;
iQA/AwUBO0y1OHGfX7CR8SmVEQK2KgCdF+T0hu8zi+ukg1UPQIk5KE24pJIAoNoq
K5x0Z7/Ot0xZdR13kawpMMyI
=+H8t
-----END PGP SIGNATURE-----
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?010f01c10a47$1a4352a0$3d026b83>