Date: Thu, 18 Apr 2002 10:47:13 -0700 (PDT) From: David Wolfskill <david@catwhisker.org> To: brett@lariat.org, david@catwhisker.org, schulte+freebsd@nospam.schulte.org, security@FreeBSD.ORG Subject: Re: FreeBSD Security Advisory FreeBSD-SA-02:21.tcpip Message-ID: <200204181747.g3IHlDiq029335@bunrab.catwhisker.org> In-Reply-To: <4.3.2.7.2.20020418114128.02156980@nospam.lariat.org>
next in thread | previous in thread | raw e-mail | index | archive | help
>Date: Thu, 18 Apr 2002 11:42:35 -0600 >From: Brett Glass <brett@lariat.org> >>If you have systems that are that important to you -- and I do, even >>here at home -- then acquire a machine to do the builds, and then use >>some method other than "build in place" to install the result. >That's not sufficient to ensure that you didn't pick the wrong time >to take a snapshot. Production machines must run a known good >snapshot. So build yourself a "snapshot" that suits you; test it according to the needs of *your* environment. If you are unwilling/unable to do so, arrange for someone else to do it for you. It's possible that someone would volunteer to expend his or her time and other resources to do this for you for free, out of gratitude for something, or some such thing; more likely, the person would request some form of compensation. This has been gone over before, and I'm not going to spam the -security list further on the topic. Cheers, david (links to my resume at http://www.catwhisker.org/~david) -- David H. Wolfskill david@catwhisker.org Based on my experience as a computing professional, I consider the use of Microsoft products as components of computing systems to be just as advisable as using green wood to frame a house... and expect similar results. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200204181747.g3IHlDiq029335>