From owner-freebsd-security@FreeBSD.ORG Fri Jan 4 08:18:29 2008 Return-Path: Delivered-To: freebsd-security@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 7BE5B16A417 for ; Fri, 4 Jan 2008 08:18:29 +0000 (UTC) (envelope-from silby@silby.com) Received: from relay02.pair.com (relay02.pair.com [209.68.5.16]) by mx1.freebsd.org (Postfix) with SMTP id 13AD113C448 for ; Fri, 4 Jan 2008 08:18:28 +0000 (UTC) (envelope-from silby@silby.com) Received: (qmail 98842 invoked from network); 4 Jan 2008 08:18:28 -0000 Received: from unknown (HELO localhost) (unknown) by unknown with SMTP; 4 Jan 2008 08:18:28 -0000 X-pair-Authenticated: 209.68.2.70 Date: Fri, 4 Jan 2008 02:18:27 -0600 (CST) From: Mike Silbersack To: Gunther Mayer In-Reply-To: <477BFF43.6060003@googlemail.com> Message-ID: <20080104021241.R11336@odysseus.silby.com> References: <477277FF.30504@googlemail.com> <86myrvhht9.fsf@ds4.des.no> <20071227195833.154b41ae@kan.dnsalias.net> <4774EB0F.90103@googlemail.com> <20071228200428.J6052@odysseus.silby.com> <477BFF43.6060003@googlemail.com> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed Cc: freebsd-security@freebsd.org Subject: Re: ProPolice/SSP in 7.0 X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 04 Jan 2008 08:18:29 -0000 On Wed, 2 Jan 2008, Gunther Mayer wrote: >> 2. Convince Kris Kennaway to run his mysql benchmarks on a FreeBSD 8 >> system both with and without SSP to verify that there is no significant >> slowdown. > Hmm, I guess Kris is not subscribed to -security? Maybe I'll have to post in > -questions then... Just e-mail him directly. >> 3. Get it enabled on FreeBSD 8 by default. >> 4. Request that the change be made to FreeBSD 7.1 or 7.2 after it has >> proven to not cause problems on FreeBSD 8. > Ok, but what's the best way to go about that? Don't see that being documented > in the handbook. Do you suggest a post on -questions or a send-pr or both? Follow Jeremie's example. Put up a webpage with all of your changes explaining why they're great and should go into 8.0, then post that to -arch. If that doesn't work, post it to -hackers, if that doesn't work... basically, you just need to find a committer who also thinks it's a good idea and is willing to commit it. Apologize to Jeremie if he had patches to finish the job and they didn't get in. Everyone was rushing to get things in before code freeze, but then the 7.0 release has been massively delayed because of instability we found out about after the fact. :( Mike "Silby" Silbersack