From owner-freebsd-questions Tue Jan 23 09:04:26 1996 Return-Path: owner-questions Received: (from root@localhost) by freefall.freebsd.org (8.7.3/8.7.3) id JAA02307 for questions-outgoing; Tue, 23 Jan 1996 09:04:26 -0800 (PST) Received: from phaeton.artisoft.com (phaeton.Artisoft.COM [198.17.250.211]) by freefall.freebsd.org (8.7.3/8.7.3) with SMTP id JAA02292 for ; Tue, 23 Jan 1996 09:04:23 -0800 (PST) Received: (from terry@localhost) by phaeton.artisoft.com (8.6.11/8.6.9) id JAA17725; Tue, 23 Jan 1996 09:53:38 -0700 From: Terry Lambert Message-Id: <199601231653.JAA17725@phaeton.artisoft.com> Subject: Re: streams To: lists@argus.flash.net (mailing list account) Date: Tue, 23 Jan 1996 09:53:38 -0700 (MST) Cc: terry@lambert.org, freebsd-questions@freebsd.org In-Reply-To: <199601230551.XAA00746@argus.flash.net> from "mailing list account" at Jan 22, 96 11:51:25 pm X-Mailer: ELM [version 2.4 PL24] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-questions@freebsd.org Precedence: bulk > > It's interesting to note that the more recent versions of Solaris have > > bypassed much of this and places telnetd/rlogind functionality directly > > in the kernel a kernel threads. > > With Sun's record of IGNORING CERT's and other advisories, this in itself is > yet one more reason that Sun is to be avoided on the grounds of security. > If they are not likely to change a daemon to prevent unauthorized access, I > see it as even less likely they will change the kernel in those cases... On the other hand, their kernel (unlike ours) is almost completely modular (some people have [incorrecly] called this a "microkernel"). It is very easy to replace any module in a Sun kernel. Terry Lambert terry@lambert.org --- Any opinions in this posting are my own and not those of my present or previous employers.