From nobody Mon Apr 28 15:38:28 2025
X-Original-To: freebsd-questions@mlmmj.nyi.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1])
	by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4ZmSK26gxPz5vVdX
	for <freebsd-questions@mlmmj.nyi.freebsd.org>; Mon, 28 Apr 2025 15:38:30 +0000 (UTC)
	(envelope-from des@freebsd.org)
Received: from smtp.freebsd.org (smtp.freebsd.org [IPv6:2610:1c1:1:606c::24b:4])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
	 key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256
	 client-signature RSA-PSS (4096 bits) client-digest SHA256)
	(Client CN "smtp.freebsd.org", Issuer "R11" (verified OK))
	by mx1.freebsd.org (Postfix) with ESMTPS id 4ZmSK260KBz4MRy;
	Mon, 28 Apr 2025 15:38:30 +0000 (UTC)
	(envelope-from des@freebsd.org)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim;
	t=1745854710;
	h=from:from:reply-to:subject:subject:date:date:message-id:message-id:
	 to:to:cc:cc:mime-version:mime-version:content-type:content-type:
	 content-transfer-encoding:content-transfer-encoding:
	 in-reply-to:in-reply-to:references:references;
	bh=gtKAY3p5lanmeEEnjyJBNFnpZEivfUGclJk7izTz4o8=;
	b=PNWXo/mTfxt0q5QmT8IFYtHWNP4eqpyMYCxZo0aGM3n3YUqm6dDWmttMP7136zY0T/EfCs
	isg+sZeJo36FkwD/8cprCCPcXpf1b4YtllrGvNmLnobWWwvNXwn4XaZPd+FxEkzqKZ84xP
	Tqz2CZEVRqOzU9d+BuiPb0rGWvGDx2LiOmteNXYfn+ihgYogBOR3wLoVBN4rio7GuaVrqe
	2FQeuk4Fr249Kov4cEXDyfv6dQkgH5S/DGxU1aTKH4obN7LjyUKYo5VII/xeQR71NKqkzL
	fr2XbGSwI5kJwDBIBQqHaETUSoeIYDJj0D/uvlgQqpQMOxXJqJYtlaJqy6EL/Q==
ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1745854710; a=rsa-sha256; cv=none;
	b=PcJLYjeiHBA0TNEg0FSTfXN6BrBPKEzrurWDoqDDd6v7p9OrBuVcwnm9UUzkrA5xViQ2xu
	7cvB2cXMB+8DH52eE2kMREGS6FJ7+j+2W+0CO4SY3rHdhZ4mA8wGTMKsLsxdYSxxqNDamj
	3JF38/MkD94+p6ZUFpVl5FvdJbtuUzsKzYQLDlKFOdB+DrTvwu1x/HgaOiUkkZcwloMqzM
	GK3SykgxZw2Jtvrs6eyBU5cWkviA9E2+/d7xGyZfzO0/NAfoUZY5Pmoml6wpaW4cth6m/g
	VaWoHzFnrgRBQDoWN6U2AxxYWeNOLjBjbF9AmYrpkS32y5TvnoGc1BeY8CKblQ==
ARC-Authentication-Results: i=1;
	mx1.freebsd.org;
	none
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org;
	s=dkim; t=1745854710;
	h=from:from:reply-to:subject:subject:date:date:message-id:message-id:
	 to:to:cc:cc:mime-version:mime-version:content-type:content-type:
	 content-transfer-encoding:content-transfer-encoding:
	 in-reply-to:in-reply-to:references:references;
	bh=gtKAY3p5lanmeEEnjyJBNFnpZEivfUGclJk7izTz4o8=;
	b=l+9W85iRXrsd7U2m5NRmg0d3e0jvN64pI+y0pH9aLjOzW+ij8tWIN9xxLDcrpIg9EtawoL
	LP3Ptt3U9VNsnXgcgvsmuKOOGLM4kjcrSnb3I2DxEeORfwMRXxFPmGPqp9QQAFZL4jN0uP
	2ZO292DUfwEjjkqQKfIo8Fw8AxSkRyK8W2oQryMRVOq28/u/oKWMfuodPYy8MMQNSgZU+h
	3f6hzcbhqs7G+UT5VbleJBdn4lqRfxcoM2zQQkoIOnZw0sOgZtC79FDxzeIbSJbaYYbHeE
	cy8O0Nlmen+Lxcjewlm1GmDEqOVc2kXmZu8HlvzggFELUrG01rfy2h3MuppPuw==
Received: from ltc.des.dev (88-177-82-251.subs.proxad.net [88.177.82.251])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
	 key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256)
	(Client did not present a certificate)
	(Authenticated sender: des)
	by smtp.freebsd.org (Postfix) with ESMTPSA id 4ZmSK252cYz17JK;
	Mon, 28 Apr 2025 15:38:30 +0000 (UTC)
	(envelope-from des@freebsd.org)
Received: by ltc.des.dev (Postfix, from userid 1001)
	id CC290F56BB; Mon, 28 Apr 2025 17:38:28 +0200 (CEST)
From: =?utf-8?Q?Dag-Erling_Sm=C3=B8rgrav?= <des@FreeBSD.org>
To: Greg 'groggy' Lehey <grog@freebsd.org>
Cc: "freebsd-questions@FreeBSD.org" <freebsd-questions@freebsd.org>
Subject: Re: Is FreeBSD insecure?
In-Reply-To: <aA8n__R77NZsmR43@hydra.lemis.com> (Greg Lehey's message of "Mon,
	28 Apr 2025 17:02:23 +1000")
References: <MW4PR15MB5160CDBA9415E8712BD72842C9862@MW4PR15MB5160.namprd15.prod.outlook.com>
	<aA8n__R77NZsmR43@hydra.lemis.com>
User-Agent: Gnus/5.13 (Gnus v5.13)
Date: Mon, 28 Apr 2025 17:38:28 +0200
Message-ID: <86msc0uwi3.fsf@ltc.des.dev>
List-Id: User questions <freebsd-questions.freebsd.org>
List-Archive: https://lists.freebsd.org/archives/freebsd-questions
List-Help: <mailto:questions+help@freebsd.org>
List-Post: <mailto:questions@freebsd.org>
List-Subscribe: <mailto:questions+subscribe@freebsd.org>
List-Unsubscribe: <mailto:questions+unsubscribe@freebsd.org>
X-BeenThere: freebsd-questions@freebsd.org
Sender: owner-freebsd-questions@FreeBSD.org
MIME-Version: 1.0
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: quoted-printable

[op not cc:ed because they're obviously a troll]

Greg 'groggy' Lehey <grog@freebsd.org> writes:
> Security is an important issue nowadays, and no operating system is
> perfect.  The FreeBSD project does everything possible to maintain its
> good reputation, though so far I haven't seen anything that indicates
> that the breach was the result of a FreeBSD bug.  Was it maybe a third
> party application, or incorrect configuration?

It was allegedly an RCE in a long-unsupported version of Ghostscript, so
not FreeBSD's fault at all.

DES
--=20
Dag-Erling Sm=C3=B8rgrav - des@FreeBSD.org