From owner-freebsd-security Fri Mar 12 10:37: 4 1999 Delivered-To: freebsd-security@freebsd.org Received: from bubba.whistle.com (s205m7.whistle.com [207.76.205.7]) by hub.freebsd.org (Postfix) with ESMTP id 0345A15585 for ; Fri, 12 Mar 1999 10:37:00 -0800 (PST) (envelope-from archie@whistle.com) Received: (from archie@localhost) by bubba.whistle.com (8.9.2/8.9.2) id KAA30503; Fri, 12 Mar 1999 10:36:10 -0800 (PST) From: Archie Cobbs Message-Id: <199903121836.KAA30503@bubba.whistle.com> Subject: Re: disapointing security architecture In-Reply-To: <199903120628.WAA73182@apollo.backplane.com> from Matthew Dillon at "Mar 11, 99 10:28:23 pm" To: dillon@apollo.backplane.com (Matthew Dillon) Date: Fri, 12 Mar 1999 10:36:10 -0800 (PST) Cc: freebsd-security@FreeBSD.ORG X-Mailer: ELM [version 2.4ME+ PL38 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Matthew Dillon writes: > :> Here's an idea.. FreeBSD could pay for a 3rd party security audit > :> of a stock FreeBSD system. Peter Shipley did this for Whistle > :> and the InterJet (a "black box" approach). No problems were found > :> but it was good to know that :-) > : > :This is a joke, right? No.. > It would be hillarious if we could get a C2 certification for a base > GENERIC system. I'm not talking about certification, just hiring somebody to blast a box with garbage packets, run SATAN, etc. and report what they find. -Archie ___________________________________________________________________________ Archie Cobbs * Whistle Communications, Inc. * http://www.whistle.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message