From owner-freebsd-hackers@FreeBSD.ORG Sat Nov 6 06:00:57 2010 Return-Path: Delivered-To: freebsd-hackers@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id D3E411065670; Sat, 6 Nov 2010 06:00:57 +0000 (UTC) (envelope-from yanegomi@gmail.com) Received: from mail-yw0-f54.google.com (mail-yw0-f54.google.com [209.85.213.54]) by mx1.freebsd.org (Postfix) with ESMTP id 769A48FC0C; Sat, 6 Nov 2010 06:00:57 +0000 (UTC) Received: by ywh2 with SMTP id 2so2742739ywh.13 for ; Fri, 05 Nov 2010 23:00:57 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:sender:received :in-reply-to:references:date:x-google-sender-auth:message-id:subject :from:to:cc:content-type:content-transfer-encoding; bh=T2s2DpV9KQRuZ/bR6BC6V0zKhS7aTGeMCxZG9vk/DoM=; b=HQxPFAavry5QYyAZ59QCHnwHQxX6wZLJjsL+PllDXUC3/T5zTjRUs15rmcaHVSskss pBkzwsCTbZ6xf8RAa8Jt34QonmI+4GJpjqRxITwC2UJBnBxwRPqoMtDzJoaWTjw4xWP1 cKj+w0NTD6GKz1/74b1/NA+XaRRkrb9tV7Lwc= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:sender:in-reply-to:references:date :x-google-sender-auth:message-id:subject:from:to:cc:content-type :content-transfer-encoding; b=vtKFTh567N4ekFSacbju59qLJZVUMOlz/NRHHAVxXeCBMHiUJ3bcpZf/OzkPcOQa0O xtb8857fg87IGzSDla0R2tSsvAqZ5CYg9tYeV2meps/g25n/aN4olb0hoVJYG5IFU1aB pbFXnG3ZPbuFpGWeNyM/k876MRy14KQXUC8js= MIME-Version: 1.0 Received: by 10.91.18.33 with SMTP id v33mr2393206agi.153.1289023256715; Fri, 05 Nov 2010 23:00:56 -0700 (PDT) Sender: yanegomi@gmail.com Received: by 10.90.70.19 with HTTP; Fri, 5 Nov 2010 23:00:56 -0700 (PDT) In-Reply-To: <201011060017.10067.jpaetzel@freebsd.org> References: <201011052316.27839.jpaetzel@freebsd.org> <201011060017.10067.jpaetzel@freebsd.org> Date: Fri, 5 Nov 2010 23:00:56 -0700 X-Google-Sender-Auth: B997w5uifsLgSZ-ugxmdVnv9vrU Message-ID: From: Garrett Cooper To: Josh Paetzel Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Cc: freebsd-hackers@freebsd.org Subject: Re: txt-sysinstall scrapped X-BeenThere: freebsd-hackers@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Technical Discussions relating to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 06 Nov 2010 06:00:57 -0000 On Fri, Nov 5, 2010 at 10:17 PM, Josh Paetzel wrote: > On Friday, November 05, 2010 11:48:27 pm Garrett Cooper wrote: > >> > =A0 =A0Just to add to that (because I do find it a novel idea), 1) how >> > are you going to properly prevent man in the middle attacks (SSL, TLS, >> > etc?), and 2) what webserver would you use? >> > =A0 =A0I bring up the former item because I wouldn't want my data goin= g >> > unencrypted across any wire, and what BSD compatible web servers did >> > you guys have in store and who would maintain the server, and what >> > kinds of vulnerabilities would you be introducing by adding a service >> > which would be enabled by default at runtime? >> >> Sorry -- missed the SSL note. Other questions still outstanding :). >> >> Thanks! >> -Garrett > > Without putting much analysis into it, we talked about using lighttpd, wh= ich > is BSDL. =A0As far as another service, it would be running for the instal= l only > which is in most circumstances something that happens locally. Right. Lighttpd was relatively light and small (but back in the day at my other job at Cisco when I was testing it I remember it ran under 10MB, and the another thing such as Lynx ran about 5MB -- this was on ppc 32 though... MIPS 64-bit was a bit more heavyweight IIRC). Is Lynx a good idea though? It is a GPL tool (and whilst I agree that we shouldn't be really investing any time in modifying the app, FreeBSD tends to shy away from GPL nowadays)... someone else suggested curl, but then you miss out on the visual representation of the installation process :(... Coming up with a short and sweet http client shouldn't be too hard, but it probably would be more error prone than investing in a preexisting client. Thanks, -Garrett