From owner-freebsd-current Wed Nov 24 8:26:50 1999 Delivered-To: freebsd-current@freebsd.org Received: from rover.village.org (rover.village.org [204.144.255.49]) by hub.freebsd.org (Postfix) with ESMTP id 5161A15550; Wed, 24 Nov 1999 08:26:37 -0800 (PST) (envelope-from imp@harmony.village.org) Received: from harmony.village.org (harmony.village.org [10.0.0.6]) by rover.village.org (8.9.3/8.9.3) with ESMTP id JAA13529; Wed, 24 Nov 1999 09:25:40 -0700 (MST) (envelope-from imp@harmony.village.org) Received: from harmony.village.org (localhost.village.org [127.0.0.1]) by harmony.village.org (8.9.3/8.8.3) with ESMTP id JAA20923; Wed, 24 Nov 1999 09:26:04 -0700 (MST) Message-Id: <199911241626.JAA20923@harmony.village.org> To: Dan Moschuk Subject: Re: FreeBSD security auditing project. Cc: Mark Murray , current@FreeBSD.ORG In-reply-to: Your message of "Wed, 24 Nov 1999 10:41:07 EST." <19991124104107.A264@spirit.jaded.net> References: <19991124104107.A264@spirit.jaded.net> <199911231905.VAA80946@gratis.grondar.za> Date: Wed, 24 Nov 1999 09:26:04 -0700 From: Warner Losh Sender: owner-freebsd-current@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG In message <19991124104107.A264@spirit.jaded.net> Dan Moschuk writes: : I have a set up diff's that introduce OpenBSDs concept of random pids and : source port (with a sysctl knob for you sequential weenies) that will have : to be updated again before I commit them. I'd like to review this before it goes in, but if I'm unresponsive don't let this request stop you. This is the second class of things we can do to FreeBSD to make it more secure. One is to find bugs in the current programs that might lead to root (and others that don't, since bugs are bugs). The other is to step back and say "hey, if we did blah, then it would significantly deter foo attacks." Warner To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-current" in the body of the message