From nobody Tue Mar 15 04:18:29 2022 X-Original-To: questions@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 9A23A1A154AB for ; Tue, 15 Mar 2022 04:18:33 +0000 (UTC) (envelope-from grahamperrin@gmail.com) Received: from mail-ed1-x531.google.com (mail-ed1-x531.google.com [IPv6:2a00:1450:4864:20::531]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1D4" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4KHgBc6ByYz3L9m for ; Tue, 15 Mar 2022 04:18:32 +0000 (UTC) (envelope-from grahamperrin@gmail.com) Received: by mail-ed1-x531.google.com with SMTP id y22so22638349eds.2 for ; Mon, 14 Mar 2022 21:18:32 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; h=message-id:date:mime-version:user-agent:subject:content-language:to :references:from:in-reply-to:content-transfer-encoding; bh=y9tH9XmS+2Efi4wGN7oB2WM8Bk8vxxdm2SDh/DnWR0I=; b=pS/dOg+da4seOfRuSrw0cpq4cHtfL36lFvegeHpMPzkyg5XXykF5pXLGaYAv4xXlWH nIsto7DOKBQg/8omdY3p9YEOLCmHAxF/oIQr6ULXUHIRc/G6bw6uofnFZyVuZoZrqcxM Iz0rs1aubEXrYCJktbdy/0NJ0i9OniwWQ6UIgG+G5HZqAoyeC3fz2FBqBnng8z8hv/w9 HoaS/yaZ4KC2EsVx9yhfbSVy5CzZ+kjOwA2EaOeWd/gKazqovQ6+5UWg/DTFir3ztbCY 8KrB7zGx7HzHSTLCE8Qg8B7fCaoiRmBEGPeOE81r2egduMKbfSXMW/TPrcmnBebA/pL7 sgzw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:message-id:date:mime-version:user-agent:subject :content-language:to:references:from:in-reply-to :content-transfer-encoding; bh=y9tH9XmS+2Efi4wGN7oB2WM8Bk8vxxdm2SDh/DnWR0I=; b=5VXF/IwPtWW3oWFAxOPZYAuniZNhyt6nJQWV/k7+zoqVULNuQ2eywK0UzNrMAeECj7 gZZ8wBKt2Ff/NaXxFWt9Ny3uBxfxKlKCxlmnwAayKxx6dLMgeCup8kZ2dzFu3hBuGkrN qbz5WKlWUDRhxrCEVTEeC0uXiwu5YQQ4860sKXrc42B406AnMhfEy2Wbqx6ryCdj7Lg8 w0nAnuBOq5MrwKPPDPM9yJWaXrDwHGSJRmsI7jD+GPb+aoFMdrwtBGHwBXMVAMHv38vq v5U9ImiMpwJXyfoBp7bxWe8FQXdDwEG3gOb4rbQQRNsHdoyu6qokYXUFQDnnjpmJzYdV vWgw== X-Gm-Message-State: AOAM532Ck6gKH3RE6E4Zi4lLuYXlGgOCA4g3yfjCcAhqySV8g4XCzd1i vUKa7j2Xnad1Oh1dI8B7rPfMu/O27GV4UQ== X-Google-Smtp-Source: ABdhPJxsLMVcBOLpIgdc5X6hNB8XZNdvjZUZmbyTQkVvExOCyHtOoDrPQlItS015eev/uVr8MCFncg== X-Received: by 2002:aa7:d706:0:b0:415:a00b:4ee with SMTP id t6-20020aa7d706000000b00415a00b04eemr23400130edq.373.1647317910336; Mon, 14 Mar 2022 21:18:30 -0700 (PDT) Received: from ?IPV6:2001:470:1f1c:a0::2? (tunnel642390-pt.tunnel.tserv1.lon2.ipv6.he.net. [2001:470:1f1c:a0::2]) by smtp.gmail.com with ESMTPSA id ho14-20020a1709070e8e00b006dbd26c2182sm2563124ejc.156.2022.03.14.21.18.29 for (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128); Mon, 14 Mar 2022 21:18:29 -0700 (PDT) Message-ID: <4b42203b-967e-2c0e-0cba-aeae6ed5d76c@gmail.com> Date: Tue, 15 Mar 2022 04:18:29 +0000 List-Id: User questions List-Archive: https://lists.freebsd.org/archives/freebsd-questions List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-questions@freebsd.org X-BeenThere: freebsd-questions@freebsd.org MIME-Version: 1.0 User-Agent: Mozilla/5.0 (X11; FreeBSD amd64; rv:91.0) Gecko/20100101 Thunderbird/91.7.0 Subject: FreeBSD: security Content-Language: en-GB To: questions@freebsd.org References: From: Graham Perrin In-Reply-To: Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 8bit X-Rspamd-Queue-Id: 4KHgBc6ByYz3L9m X-Spamd-Bar: --- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=gmail.com header.s=20210112 header.b="pS/dOg+d"; dmarc=pass (policy=none) header.from=gmail.com; spf=pass (mx1.freebsd.org: domain of grahamperrin@gmail.com designates 2a00:1450:4864:20::531 as permitted sender) smtp.mailfrom=grahamperrin@gmail.com X-Spamd-Result: default: False [-4.00 / 15.00]; RCVD_VIA_SMTP_AUTH(0.00)[]; FREEMAIL_FROM(0.00)[gmail.com]; R_SPF_ALLOW(-0.20)[+ip6:2a00:1450:4000::/36]; TO_DN_NONE(0.00)[]; RCVD_COUNT_THREE(0.00)[3]; DKIM_TRACE(0.00)[gmail.com:+]; DMARC_POLICY_ALLOW(-0.50)[gmail.com,none]; NEURAL_HAM_SHORT(-1.00)[-1.000]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; FREEMAIL_ENVFROM(0.00)[gmail.com]; ASN(0.00)[asn:15169, ipnet:2a00:1450::/32, country:US]; MID_RHS_MATCH_FROM(0.00)[]; DWL_DNSWL_NONE(0.00)[gmail.com:dkim]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.00)[-1.000]; R_DKIM_ALLOW(-0.20)[gmail.com:s=20210112]; FROM_HAS_DN(0.00)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; NEURAL_HAM_LONG(-1.00)[-1.000]; MIME_GOOD(-0.10)[text/plain]; PREVIOUSLY_DELIVERED(0.00)[questions@freebsd.org]; RCPT_COUNT_ONE(0.00)[1]; RCVD_IN_DNSWL_NONE(0.00)[2a00:1450:4864:20::531:from]; MLMMJ_DEST(0.00)[questions]; RCVD_TLS_ALL(0.00)[] X-ThisMailContainsUnwantedMimeParts: N Please see . In context, from : "FreeBSD … focuses on features, speed, and stability. …" On 14/03/2022 20:10, iio7@tutanota.com wrote: > I have just finished reading through tons of security bug reports in > the FreeBSD > bug report archive, If you mean reports that are visible to the public, please link to one that concerns you. Security bug reports are not visible to the public. > also normal bugs, Not to be confused with security issues. > and I am "scared" about the lack of attention these issues get. > > It's like no one "cares", or the few that does is simply overburden. > > This proposal from 2018, with the problems it lists, still seems very > valid: > > https://web.archive.org/web/20210401214138/https://lists.freebsd.org/pipermail/freebsd-arch/2018-March/018892.html Without the Wayback Machine: Overview: > Are any of you - who runs FreeBSD in production (please home labs, > desktop/laptop use, don't reply) - not worried about the current state > of affairs? I'll not respond to that point. > Am I missing something? Readers may note the security aspects of things such as these: Hope that helps, Graham