Date: Sat, 30 Sep 2000 16:35:55 -0700 From: Brooks Davis <brooks@one-eyed-alien.net> To: Warner Losh <imp@village.org> Cc: Michael Bryan <fbsd-security@ursine.com>, freebsd-security@FreeBSD.ORG Subject: Re: cvs commit: ports/mail/pine4 Makefile (fwd) Message-ID: <20000930163555.A19473@Odin.AC.HMC.Edu> In-Reply-To: <200009302308.RAA14067@harmony.village.org>; from imp@village.org on Sat, Sep 30, 2000 at 05:08:37PM -0600 References: <39D671D9.62E7148B@ursine.com> <008b01c02a71$6b8938c0$d04379a5@p4f0i0> <200009292349.TAA07263@giganda.komkon.org> <200009302123.PAA13609@harmony.village.org> <39D671D9.62E7148B@ursine.com> <200009302308.RAA14067@harmony.village.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sat, Sep 30, 2000 at 05:08:37PM -0600, Warner Losh wrote: > I think that there's a lot of support for this notion (I could be > wrong). Enough that it would be interesting trying to see how hard it > would be to come up with an API that is easy to implement in the ports > system as well as integrate into our package system. It would be a > fair amount of work, but I think in the long run it would be useful. I haven't seen any significant objections (though some early though in the dammage control department for when a well rated port causes a problem as will eventually happen would be good.) I've got one suggestion though. I'd suggest that the scale be something like 1-N plus UNKNOWN. The reason being that I can't see any agreement being forthcoming on how bad a random program off the internet should labled. Some people might want unknown code to default to the level corresponding to "known root exploits in current version" while others might consider it a bit more trustworthy then that. A variable in make.conf could be used to decided what level those should be at. -- Brooks -- Any statement of the form "X is the one, true Y" is FALSE. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20000930163555.A19473>