From owner-freebsd-security@FreeBSD.ORG Tue Aug 12 14:15:46 2003 Return-Path: Delivered-To: freebsd-security@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 8CC8937B401 for ; Tue, 12 Aug 2003 14:15:46 -0700 (PDT) Received: from post-21.mail.nl.demon.net (post-21.mail.nl.demon.net [194.159.73.20]) by mx1.FreeBSD.org (Postfix) with ESMTP id DDB6D43F3F for ; Tue, 12 Aug 2003 14:15:45 -0700 (PDT) (envelope-from apehaar@text-only.demon.nl) Received: from [212.238.193.97] (helo=horcy) by post-21.mail.nl.demon.net with smtp (Exim 3.36 #1) id 19mgUa-000HIa-00 for security@freebsd.org; Tue, 12 Aug 2003 21:15:44 +0000 Message-ID: <00a401c36116$e3e50e00$0201a8c0@horcy> From: "horcy" To: Date: Tue, 12 Aug 2003 23:15:43 +0200 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2800.1158 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1165 Subject: Fw: Certification (was RE: realpath(3) et al) X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Security issues [members-only posting] List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 12 Aug 2003 21:15:46 -0000 That /. shit is indeed VERY annoying :( (FreeBSD dead WTF!!) But if I have to convince a customer why to choose for FreeBSD, I always use Yahoo! as an example. They got some ridiculous traffic and that site is ultra fast. They always buy that :D So for now i dont need an audit > > > ----- Original Message ----- > From: "Devon H. O'Dell" > To: "'twig les'" ; > Sent: Tuesday, August 12, 2003 10:32 PM > Subject: RE: Certification (was RE: realpath(3) et al) > > > > This is what I'm wondering about and what I'd like to contribute and > donate > > to/for. I don't feel that it would be a waste of time. I feel that it > would > > give: > > > > a) A better image of FreeBSD > > b) More reason for corporations to actually *use* FreeBSD, and > > c) Stop all the people on /. from whining about how FreeBSD is dead (like > > anybody gives a (#*@ but okay ;) > > > > My other thread is re: stack smashing protection. Lets separate the two. > > > > --Devon > > > > > -----Oorspronkelijk bericht----- > > > Van: owner-freebsd-security@freebsd.org [mailto:owner-freebsd- > > > security@freebsd.org] Namens twig les > > > Verzonden: Tuesday, August 12, 2003 10:28 PM > > > Aan: security@freebsd.org > > > Onderwerp: Certification (was RE: realpath(3) et al) > > > > > > I actually just asked about FreeBSD's status regarding Common > > > Criteria last week on -questions but no one knew; one guy > > > answered that it would be wasteful. Is this the cert on > > > everyone's mind? It would be nice to have this cert for the 5.x > > > line but I understand that it is massively expensive and the > > > resources may be better spent on development. Has the team > > > discussed this? > > > > > > > > > --- "Devon H. O'Dell" wrote: > > > > > On Tue, Aug 12, 2003 at 01:41:13PM +0200, Devon H. O'Dell > > > > wrote: > > > > > > However, it is also one that > > > > > > will boost the image of FreeBSD as well as make it more > > > > accepted by > > > > > > third-party auditors (who I'd also like to see audit > > > > FreeBSD). > > > > > > > > > > Who are these `third-party auditors'? > > > > > > > > There are a few who do security-related audits. I'll see if I > > > > can get a list > > > > made up. > > > > > > > > > > Additionally (and somewhat unrelated), Linux was recently > > > > audited and > > > > > given > > > > > > the status "very secure". > > > > > > > > > > REALLY? Wow, ``very secure''!! I'm switching!! > > > > (Tongue-in-cheek) > > > > > > > > > > I think we'd need deep pockets for just about ANY kind of > > > > useful > > > > > certification, security-related or not. > > > > > > > > We probably would. This is why I'm suggesting that it become > > > > something we > > > > stick on the front page of freebsd.org/freebsdfoundation.org. > > > > Since FreeBSD > > > > is a not-for-profit organization (as Chris Odell pointed out) > > > > I think it'd > > > > actually be attractive for people (and corporations using > > > > FreeBSD) to donate > > > > as it would be tax-deductible. It just needs to be made > > > > well-known that this > > > > is a goal of the Foundation, and I think people will be > > > > willing to donate to > > > > it. We've already had $300 of pledges today :) > > > > > > > > --Devon > > > > > > > > > Cheers, > > > > > -- > > > > > Jacques Vidrine . NTT/Verio SME . FreeBSD UNIX > > > > . Heimdal > > > > > nectar@celabo.org . jvidrine@verio.net . nectar@freebsd.org > > > > . > > > > > nectar@kth.se > > > > > _______________________________________________ > > > > > freebsd-security@freebsd.org mailing list > > > > > http://lists.freebsd.org/mailman/listinfo/freebsd-security > > > > > To unsubscribe, send any mail to "freebsd-security- > > > > > unsubscribe@freebsd.org" > > > > > > > > _______________________________________________ > > > > freebsd-security@freebsd.org mailing list > > > > http://lists.freebsd.org/mailman/listinfo/freebsd-security > > > > To unsubscribe, send any mail to > > > "freebsd-security-unsubscribe@freebsd.org" > > > > > > > > > ===== > > > ----------------------------------------------------------- > > > Emo is what happens when the glee club goes punk. > > > ----------------------------------------------------------- > > > > > > __________________________________ > > > Do you Yahoo!? > > > Yahoo! SiteBuilder - Free, easy-to-use web site design software > > > http://sitebuilder.yahoo.com > > > _______________________________________________ > > > freebsd-security@freebsd.org mailing list > > > http://lists.freebsd.org/mailman/listinfo/freebsd-security > > > To unsubscribe, send any mail to "freebsd-security- > > > unsubscribe@freebsd.org" > > > > _______________________________________________ > > freebsd-security@freebsd.org mailing list > > http://lists.freebsd.org/mailman/listinfo/freebsd-security > > To unsubscribe, send any mail to > "freebsd-security-unsubscribe@freebsd.org" >