From owner-freebsd-security Wed Jul 30 14:24:48 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id OAA04523 for security-outgoing; Wed, 30 Jul 1997 14:24:48 -0700 (PDT) Received: from cs.iastate.edu (cs.iastate.edu [129.186.3.1]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id OAA04416 for ; Wed, 30 Jul 1997 14:23:31 -0700 (PDT) Received: from popeye.cs.iastate.edu (popeye.cs.iastate.edu [129.186.3.4]) by cs.iastate.edu (8.8.5/8.7.1) with ESMTP id QAA10709; Wed, 30 Jul 1997 16:22:54 -0500 (CDT) Received: from localhost (ghelmer@localhost) by popeye.cs.iastate.edu (8.8.5/8.7.1) with SMTP id QAA22586; Wed, 30 Jul 1997 16:22:54 -0500 (CDT) X-Authentication-Warning: popeye.cs.iastate.edu: ghelmer owned process doing -bs Date: Wed, 30 Jul 1997 16:22:53 -0500 (CDT) From: Guy Helmer To: Adam Shostack cc: Shashi Joshi , molter@logic.it, vince@mail.MCESTATE.COM, security@FreeBSD.ORG, mario1@PrimeNet.Com Subject: Re: So, lets have a checklist compiled (was Re: Security hole) In-Reply-To: <199707301900.PAA21876@homeport.org> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-security@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Wed, 30 Jul 1997, Adam Shostack wrote: > Guy Helmer is working on a paper on exactly this topic. Perhaps he > could post a pointer to his current draft? > Adam > > | Exactly my thoughts. So, do we get a checklist or reference list from the > | gurus? A slightly older draft of the paper is at http://www.cs.iastate.edu/~ghelmer/freebsd-security.ps but it should serve well enough for now for those in need of at least pointers to the broad spectrum of FreeBSD security improvements. A current version of the paper isn't ready for posting... Guy Helmer, Computer Science Graduate Student - ghelmer@cs.iastate.edu Iowa State University http://www.cs.iastate.edu/~ghelmer