From owner-freebsd-security@FreeBSD.ORG Tue Aug 12 13:28:22 2003 Return-Path: Delivered-To: freebsd-security@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id DA68037B404 for ; Tue, 12 Aug 2003 13:28:22 -0700 (PDT) Received: from web10108.mail.yahoo.com (web10108.mail.yahoo.com [216.136.130.58]) by mx1.FreeBSD.org (Postfix) with SMTP id 80E6743F93 for ; Tue, 12 Aug 2003 13:28:22 -0700 (PDT) (envelope-from twigles@yahoo.com) Message-ID: <20030812202822.28566.qmail@web10108.mail.yahoo.com> Received: from [68.5.49.41] by web10108.mail.yahoo.com via HTTP; Tue, 12 Aug 2003 13:28:22 PDT Date: Tue, 12 Aug 2003 13:28:22 -0700 (PDT) From: twig les To: security@freebsd.org In-Reply-To: <000001c3610e$05e7f570$9f8d2ed5@internal> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Subject: Certification (was RE: realpath(3) et al) X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Security issues [members-only posting] List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 12 Aug 2003 20:28:23 -0000 I actually just asked about FreeBSD's status regarding Common Criteria last week on -questions but no one knew; one guy answered that it would be wasteful. Is this the cert on everyone's mind? It would be nice to have this cert for the 5.x line but I understand that it is massively expensive and the resources may be better spent on development. Has the team discussed this? --- "Devon H. O'Dell" wrote: > > On Tue, Aug 12, 2003 at 01:41:13PM +0200, Devon H. O'Dell > wrote: > > > However, it is also one that > > > will boost the image of FreeBSD as well as make it more > accepted by > > > third-party auditors (who I'd also like to see audit > FreeBSD). > > > > Who are these `third-party auditors'? > > There are a few who do security-related audits. I'll see if I > can get a list > made up. > > > > Additionally (and somewhat unrelated), Linux was recently > audited and > > given > > > the status "very secure". > > > > REALLY? Wow, ``very secure''!! I'm switching!! > (Tongue-in-cheek) > > > > I think we'd need deep pockets for just about ANY kind of > useful > > certification, security-related or not. > > We probably would. This is why I'm suggesting that it become > something we > stick on the front page of freebsd.org/freebsdfoundation.org. > Since FreeBSD > is a not-for-profit organization (as Chris Odell pointed out) > I think it'd > actually be attractive for people (and corporations using > FreeBSD) to donate > as it would be tax-deductible. It just needs to be made > well-known that this > is a goal of the Foundation, and I think people will be > willing to donate to > it. We've already had $300 of pledges today :) > > --Devon > > > Cheers, > > -- > > Jacques Vidrine . NTT/Verio SME . FreeBSD UNIX > . Heimdal > > nectar@celabo.org . jvidrine@verio.net . nectar@freebsd.org > . > > nectar@kth.se > > _______________________________________________ > > freebsd-security@freebsd.org mailing list > > http://lists.freebsd.org/mailman/listinfo/freebsd-security > > To unsubscribe, send any mail to "freebsd-security- > > unsubscribe@freebsd.org" > > _______________________________________________ > freebsd-security@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-security > To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org" ===== ----------------------------------------------------------- Emo is what happens when the glee club goes punk. ----------------------------------------------------------- __________________________________ Do you Yahoo!? Yahoo! SiteBuilder - Free, easy-to-use web site design software http://sitebuilder.yahoo.com