From owner-freebsd-audit Mon Dec 6 3:35:18 1999 Delivered-To: freebsd-audit@freebsd.org Received: from axl.noc.iafrica.com (axl.noc.iafrica.com [196.31.1.175]) by hub.freebsd.org (Postfix) with ESMTP id F2CDF14CC3; Mon, 6 Dec 1999 03:35:08 -0800 (PST) (envelope-from sheldonh@axl.noc.iafrica.com) Received: from sheldonh (helo=axl.noc.iafrica.com) by axl.noc.iafrica.com with local-esmtp (Exim 3.11 #1) id 11uwPu-0007Jz-00; Mon, 06 Dec 1999 13:34:54 +0200 From: Sheldon Hearn To: Brad Knowles Cc: obrien@FreeBSD.ORG, arch@FreeBSD.ORG, audit@FreeBSD.ORG Subject: Re: cvs commit: src/sys/i386/conf files.i386 src/sys/kern kern_fork.c src/sys/libkern arc4random.c src/sys/sys libkern.h In-reply-to: Your message of "Mon, 06 Dec 1999 12:28:15 +0100." Date: Mon, 06 Dec 1999 13:34:54 +0200 Message-ID: <28146.944480094@axl.noc.iafrica.com> Sender: owner-freebsd-audit@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG On Mon, 06 Dec 1999 12:28:15 +0100, Brad Knowles wrote: > I mean, we *are* talking about -CURRENT here, right? It's my > understanding that anyone running -CURRENT has to expect that the > thing won't be usable One thing you're missing here is that CURRENT often _becomes_ STABLE later. :-) However, I think I agree with you. Perhaps a small POLA sacrifice for the sake of a large security gain is cool. I don't see a massive gain for day-to-day stuff myself, but folks are talking like it's a large gain. Some of them are sensible folks. ;-) Ciao, Sheldon. PS: Damnit, I didn't realize that the message I replied to originally was a cross-post. Sorry. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-audit" in the body of the message