Date: Fri, 5 Nov 2010 23:00:56 -0700 From: Garrett Cooper <gcooper@FreeBSD.org> To: Josh Paetzel <jpaetzel@freebsd.org> Cc: freebsd-hackers@freebsd.org Subject: Re: txt-sysinstall scrapped Message-ID: <AANLkTinVVJD6UetFnqvOSbP2WpfwLxE3GJP_ukkOCXYc@mail.gmail.com> In-Reply-To: <201011060017.10067.jpaetzel@freebsd.org> References: <201011052316.27839.jpaetzel@freebsd.org> <AANLkTi=62rRhZsN4wUi6p_yokSxG0tkjUHK7gosLtTRZ@mail.gmail.com> <AANLkTi=ubaeN6KE5C-74G=RSUEN0tyLXu-Z5T4Vd4tLN@mail.gmail.com> <201011060017.10067.jpaetzel@freebsd.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On Fri, Nov 5, 2010 at 10:17 PM, Josh Paetzel <jpaetzel@freebsd.org> wrote: > On Friday, November 05, 2010 11:48:27 pm Garrett Cooper wrote: > >> > =A0 =A0Just to add to that (because I do find it a novel idea), 1) how >> > are you going to properly prevent man in the middle attacks (SSL, TLS, >> > etc?), and 2) what webserver would you use? >> > =A0 =A0I bring up the former item because I wouldn't want my data goin= g >> > unencrypted across any wire, and what BSD compatible web servers did >> > you guys have in store and who would maintain the server, and what >> > kinds of vulnerabilities would you be introducing by adding a service >> > which would be enabled by default at runtime? >> >> Sorry -- missed the SSL note. Other questions still outstanding :). >> >> Thanks! >> -Garrett > > Without putting much analysis into it, we talked about using lighttpd, wh= ich > is BSDL. =A0As far as another service, it would be running for the instal= l only > which is in most circumstances something that happens locally. Right. Lighttpd was relatively light and small (but back in the day at my other job at Cisco when I was testing it I remember it ran under 10MB, and the another thing such as Lynx ran about 5MB -- this was on ppc 32 though... MIPS 64-bit was a bit more heavyweight IIRC). Is Lynx a good idea though? It is a GPL tool (and whilst I agree that we shouldn't be really investing any time in modifying the app, FreeBSD tends to shy away from GPL nowadays)... someone else suggested curl, but then you miss out on the visual representation of the installation process :(... Coming up with a short and sweet http client shouldn't be too hard, but it probably would be more error prone than investing in a preexisting client. Thanks, -Garrett
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?AANLkTinVVJD6UetFnqvOSbP2WpfwLxE3GJP_ukkOCXYc>