From owner-freebsd-security Thu Aug 12 14:15:58 1999 Delivered-To: freebsd-security@freebsd.org Received: from relay.veriguard.com (relay.securify.com [207.5.63.61]) by hub.freebsd.org (Postfix) with ESMTP id 6C420158A3 for ; Thu, 12 Aug 1999 14:15:54 -0700 (PDT) (envelope-from tomb@securify.com) Received: by relay.veriguard.com; id OAA18519; Thu, 12 Aug 1999 14:14:33 -0700 (PDT) Received: from unknown(10.5.63.6) by relay.veriguard.com via smap (4.1) id xma018458; Thu, 12 Aug 99 14:13:49 -0700 Received: from beetroot.securify.com (beetroot.securify.com [10.5.63.102]) by dude.veriguard.com (8.8.7/8.8.7) with SMTP id OAA06729; Thu, 12 Aug 1999 14:13:48 -0700 Received: by beetroot.securify.com with Microsoft Mail id <01BEE4CB.26C21460@beetroot.securify.com>; Thu, 12 Aug 1999 14:01:19 -0700 Message-ID: <01BEE4CB.26C21460@beetroot.securify.com> From: Tom Brown To: Tom Brown , "'andrewr'" Cc: "'freebsd-security@freebsd.org'" Subject: "Secure-FreeBSD" Idea should be paied for and marketed by Walnut Creek Date: Thu, 12 Aug 1999 14:01:17 -0700 MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I know exactly where this is going and you're quite right. If 'we' the = contributors did it then it would take time out of our schedules. =20 But this would best be marketed by walnut creek, they should pay for it = to happen and launch it as another packaged item, you know the kind of = thing 'nice bunch of CD's with some flashy graphics'. I recon it would = be a sound investment and could if pushed correctly sell by the bucket = load. Tom ---------- From: andrewr Sent: Thursday, August 12, 1999 6:57 AM To: Tom Brown Cc: 'freebsd-security@freebsd.org' Subject: Re: "Secure-FreeBSD" Idea I believe myself as well as a few others have had this idea and, basically, when we attempted to start such a project up, many people = said "Yah,sure Id help"...but the bottom line is, we're all too busy ;) Andrew On Thu, 12 Aug 1999, Tom Brown wrote: > HI, >=20 > Just come back from "websec" which was a bit dull, but I did get the = feeling whilst fighting off the sleep that there is a really good = opening for a quality secure O/S. =20 >=20 > Now realistically all this would have to be is a really anal = installation process, forcing the user to positively select services = such as ftp,telnet, sendmail etc. So if you don't select anything, you = can't much. It would also have carefully set UMASKS and probably come = with some easy way to get the user to set-up tripwire and ipfw for = example. >=20 > I suspect that most of the readers of this list spend a fair amount of = time going through the same laborious process of tying down each server = they built. How about we pools this vast collection of procedures = together and try to build some kind of a security release. We all know = (well at least I hope we do!) what a solid O/S FreeBSD is, wouldn't this = be the ideal opportunity, to push the OS further into the public eye? >=20 > Tom >=20 >=20 >=20 > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-security" in the body of the message >=20 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message