From owner-freebsd-security  Tue Oct  1 13:20: 7 2002
Delivered-To: freebsd-security@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 320F137B401
	for <security@FreeBSD.ORG>; Tue,  1 Oct 2002 13:20:06 -0700 (PDT)
Received: from lariat.org (lariat.org [63.229.157.2])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 7C85943E42
	for <security@FreeBSD.ORG>; Tue,  1 Oct 2002 13:20:05 -0700 (PDT)
	(envelope-from brett@lariat.org)
Received: from mustang.lariat.org (IDENT:ppp1000.lariat.org@lariat.org [63.229.157.2])
	by lariat.org (8.9.3/8.9.3) with ESMTP id OAA21389;
	Tue, 1 Oct 2002 14:19:51 -0600 (MDT)
X-message-flag: Warning! Use of Microsoft Outlook is dangerous and makes your system susceptible to Internet worms.
Message-Id: <4.3.2.7.2.20021001141233.036c0b00@localhost>
X-Sender: brett@localhost
X-Mailer: QUALCOMM Windows Eudora Version 4.3.2
Date: Tue, 01 Oct 2002 14:19:49 -0600
To: Matthew Dillon <dillon@apollo.backplane.com>
From: Brett Glass <brett@lariat.org>
Subject: Re: RE: Is FreeBSD's tar susceptible to this?
Cc: Matt Piechota <piechota@argolis.org>,
	Aaron Namba <aaron@namba1.com>, <security@FreeBSD.ORG>
In-Reply-To: <200210011947.g91Jl1sO052241@apollo.backplane.com>
References: <4.3.2.7.2.20021001113225.034331b0@localhost>
 <4.3.2.7.2.20021001122135.0344e410@localhost>
 <4.3.2.7.2.20021001133156.03609ec0@localhost>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-security.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-security>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-security>
X-Loop: FreeBSD.org

At 01:47 PM 10/1/2002, Matthew Dillon wrote:

>   I seriously doubt anyone would be interested in rolling their own
>    gnu-compatible tar or adapting an older non-gnu tar to our needs.
>    People have gotten used to the gnu switches.

I seriously doubt anyone would be interested in creating or using an 
operating system based on BSD. People have gotten used to Linux. :-S

Or s/Linux/Windows/ in the above.

It's clearly important, from a *security* standpoint (and, yes, this
is about security, not just licensing), that there not be a monoculture.

>   I'm not sure I understand why you are advocating integrating bzip
>    into tar.

Because IPC consumes resources and computing power. Going directly to
zlib makes a lot more sense, IMHO.

--Brett




To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message