Date: Sun, 17 Oct 1999 14:06:32 -0400 (EDT) From: Matt Behrens <matt@zigg.com> To: David G Andersen <danderse@cs.utah.edu> Cc: Jay Nelson <jdn@acp.qiv.com>, Cy.Schubert@uumail.gov.bc.ca, jwyatt@rwsystems.net, glewis@trc.adelaide.edu.au, freebsd-security@FreeBSD.ORG Subject: Re: FreeSSH Message-ID: <Pine.BSF.4.10.9910171405130.10664-100000@megaweapon.zigg.com> In-Reply-To: <199910171739.LAA21629@faith.cs.utah.edu>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sun, 17 Oct 1999, David G Andersen wrote: : Given that it may take a lot of re-engineering to change the build process : to not install the packages in the first place, what if we changed the : installation to create a "virtual" package entry for them, so that : an interested sysadmin could then use pkg_delete to nuke the components of : the package? It would be easy enough to generate the packing list at : compile time, and then stuff it in a known location at build time. : : This wouldn't save download time or initial space, but it *would* : help make the security goal easier, from my point of view. That would probably do pretty well for the initial install, but it unfortunately doesn't address the problem of how to stop make world from happily replacing all of the newly-missing components. It is a neat idea, though. Matt Behrens <matt@zigg.com> Owner/Administrator, zigg.com Chief Engineer, Nameless IRC Network To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.10.9910171405130.10664-100000>