From owner-freebsd-questions Wed Apr 24 23:54:15 2002 Delivered-To: freebsd-questions@freebsd.org Received: from dragon.getnet.net (dragon.getnet.net [63.137.32.5]) by hub.freebsd.org (Postfix) with SMTP id 102A637B442 for ; Wed, 24 Apr 2002 23:54:00 -0700 (PDT) Received: (qmail 2396 invoked from network); 25 Apr 2002 06:53:59 -0000 Received: from localhost.getnet.net (HELO servie) (127.0.0.1) by localhost.getnet.net with SMTP; 25 Apr 2002 06:53:59 -0000 From: "Eric" To: Subject: Re: security patching Date: Wed, 24 Apr 2002 23:51:36 -0800 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2911.0) Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4910.0300 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG >There shouldn't be any "holes" on your system; Have you >found one or some, or do you suspect that some exist? You can close a lot >of ports using /etc/inetd.conf and being wary about which daemons and >binaries happen to be running at any given time. Hope this helps, I am not a coder, I just read the papers. But what about the recent zlib problem; the tainted code is tremendously widespread as I understand it. Also, was there not a stdio problem recently? And there are others that permit local or remote root comprimise. vberic To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message