From owner-freebsd-security@FreeBSD.ORG Wed Jul 20 20:32:33 2005 Return-Path: X-Original-To: freebsd-security@freebsd.org Delivered-To: freebsd-security@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 2BC8C16A420 for ; Wed, 20 Jul 2005 20:32:33 +0000 (GMT) (envelope-from mureninc@gmail.com) Received: from wproxy.gmail.com (wproxy.gmail.com [64.233.184.194]) by mx1.FreeBSD.org (Postfix) with ESMTP id D60FA43D53 for ; Wed, 20 Jul 2005 20:32:31 +0000 (GMT) (envelope-from mureninc@gmail.com) Received: by wproxy.gmail.com with SMTP id i21so1546702wra for ; Wed, 20 Jul 2005 13:32:31 -0700 (PDT) DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:reply-to:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=M2Ihk4crKKEM20Od5lt0lg9tJrjkWxtRjzstXzF22sJ50i3Nih+Ja/FlPq6ah+vJfSa++XmycRuX2J1YSo1SHMGfiGeTJrV/4cBi+LVpw1TWx9nfg9H0CM+eLYcclKdbe9ZjxC3qxXH9fVVm64UXRtmeiCHkTl0cV8kHBZLEdm4= Received: by 10.54.52.55 with SMTP id z55mr239158wrz; Wed, 20 Jul 2005 13:32:11 -0700 (PDT) Received: by 10.54.83.7 with HTTP; Wed, 20 Jul 2005 13:32:11 -0700 (PDT) Message-ID: Date: Wed, 20 Jul 2005 16:32:11 -0400 From: "Constantine A. Murenin" To: Giorgos Keramidas In-Reply-To: <20050719213356.GA1614@gothmog.gr> Mime-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Content-Disposition: inline References: <42DCC503.5000408@ludd.ltu.se> <20050719213356.GA1614@gothmog.gr> Cc: freebsd-security@freebsd.org, Joachim Str?mbergson Subject: Re: Adding OpenBSD sudo to the FreeBSD base system? X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: "Constantine A. Murenin" List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 20 Jul 2005 20:32:33 -0000 On 19/07/05, Giorgos Keramidas wrote: > On 2005-07-19 11:16, Joachim Str?mbergson wrote: > > Aloha! > > > > (I've Googled around a bit, but failed to find much previous posts abou= t > > this though I'm sure it has been discussed...) > > > > Have anybody (in core etc) considered adding a sudo implementation to > > thr FreeBSD base system. At least for me, sudo is an important part of > > implementing good security policy in FreeBSD. > > > > Yes, it is available as a port, but in a similar fashion of for example= , > > isn't sudo important enough to be included as an imported tool in the > > base system? > > > > My thought was to sync/import the sudo implementation from OpenBSD. Bad > > idea? >=20 > Maybe not so bad if the OpenBSD version of sudo has useful enhancements > of any sort (i.e. has gone through a thorough security audit, or it > includes features that are not available through the Ports version, > or if the OpenBSD sudo uses a BSD and not an ISC-style license). : > The ISC copyright is functionally equivalent to a two-term BSD copyrig= ht with language removed that is made unnecessary by the Berne convention. = This is the preferred license for new code incorporated into OpenBSD. A sam= ple license is included in the source tree as /usr/src/share/misc/license.t= emplate.=20 What's the reason that you'd prefer a BSD-licence over ISC-style licence?= =20 Cheers, Constantine.