From owner-freebsd-current  Tue Nov 23 14: 7:22 1999
Delivered-To: freebsd-current@freebsd.org
Received: by hub.freebsd.org (Postfix, from userid 758)
	id E570B14EBF; Tue, 23 Nov 1999 14:07:15 -0800 (PST)
Received: from localhost (localhost [127.0.0.1])
	by hub.freebsd.org (Postfix) with ESMTP
	id D70E41CD7BC; Tue, 23 Nov 1999 14:07:15 -0800 (PST)
	(envelope-from kris@hub.freebsd.org)
Date: Tue, 23 Nov 1999 14:07:15 -0800 (PST)
From: Kris Kennaway <kris@hub.freebsd.org>
To: David O'Brien <obrien@FreeBSD.ORG>
Cc: Mark Murray <mark@grondar.za>, current@FreeBSD.ORG
Subject: Re: FreeBSD security auditing project.
In-Reply-To: <19991123140303.B49964@dragon.nuxi.com>
Message-ID: <Pine.BSF.4.21.9911231403560.46173-100000@hub.freebsd.org>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-current@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

On Tue, 23 Nov 1999, David O'Brien wrote:

> A security review is never done.  We need to be in a mode where every
> commit is suspect and people are compelled to review it.  BDE's use of
> CTM to review changes is actually rather affective in this reguard.

A CVS tag would also accomplish this and could be slid forward when the
new commit is reviewed. I don't know how feasible this would be from the
POV of CVS mechanics, but it has the advantage of being in the main tree
for everyone to see.

Kris

----
Cthulhu for President! For when you're tired of choosing the _lesser_ of
two evils..



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-current" in the body of the message