From owner-freebsd-advocacy Sun Feb 11 18:58:29 2001 Delivered-To: freebsd-advocacy@freebsd.org Received: from smtp01.primenet.com (smtp01.primenet.com [206.165.6.131]) by hub.freebsd.org (Postfix) with ESMTP id 06BBC37B401 for ; Sun, 11 Feb 2001 18:58:27 -0800 (PST) Received: (from daemon@localhost) by smtp01.primenet.com (8.9.3/8.9.3) id TAA26976; Sun, 11 Feb 2001 19:57:00 -0700 (MST) Received: from usr08.primenet.com(206.165.6.208) via SMTP by smtp01.primenet.com, id smtpdAAAjga4I0; Sun Feb 11 19:56:50 2001 Received: (from tlambert@localhost) by usr08.primenet.com (8.8.5/8.8.5) id TAA17366; Sun, 11 Feb 2001 19:58:09 -0700 (MST) From: Terry Lambert Message-Id: <200102120258.TAA17366@usr08.primenet.com> Subject: Re: FreeBSD Ports Security Advisory: FreeBSD-SA-01:INSERT_NUMBER_HERE To: tedm@toybox.placo.com (Ted Mittelstaedt) Date: Mon, 12 Feb 2001 02:58:09 +0000 (GMT) Cc: matt@LUCIDA.CA (Matt Heckaman), kris@obsecurity.org (Kris Kennaway), freebsd-advocacy@FreeBSD.ORG (FreeBSD-ADVOCACY) In-Reply-To: <000801c093ad$bbf82140$1401a8c0@tedm.placo.com> from "Ted Mittelstaedt" at Feb 10, 2001 02:06:35 PM X-Mailer: ELM [version 2.5 PL2] MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-advocacy@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG > Say rather than unknown, unpublished. If nobody knew about them they > wouldn't be security holes now would they? If a bug falls in the code, and there's no one there to audit it, does it still make a security hole? Sorry, but if a tree falls in the forest, and there's no one there to hear it, it still makes a longitudinal compressional wave... and a sound, if chaos theory is to be believed. Terry Lambert terry@lambert.org --- Any opinions in this posting are my own and not those of my present or previous employers. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-advocacy" in the body of the message