Date: Mon, 10 Feb 1997 20:00:07 -0800 (PST) From: Mike Pritchard <mpp> To: imp@village.org (Warner Losh) Cc: marcs@znep.com, tqbf@enteract.com, freebsd-security@freebsd.org Subject: Re: Don't fulminate, be productive Message-ID: <199702110400.UAA09848@freefall.freebsd.org> In-Reply-To: <E0vu34M-0005Rv-00@rover.village.org> from "Warner Losh" at Feb 10, 97 02:15:22 pm
next in thread | previous in thread | raw e-mail | index | archive | help
Warner Losh wrote: > > In message <Pine.BSF.3.95.970210021858.11077f-100000@alive.ampr.ab.ca> Marc Slemko writes: > : 90% of security holes are easy to find in stuff like FreeBSD right now. > : When the obvious ones get fixed, it will be more like 90% being hard to > : find. > > I'd wager that about 95% of the security problems in FreeBSD could > solved by going over the OpenBSD cvs logs carefully and applying > those patches. Theo and co have been very careful in their audits of > their programs. > > Warner As a warning to others. I basically blindly committed some security fixes to calendar from OpenBSD without much testing and found out that they didn't work as expected. Your milage may vary. -- Mike Pritchard mpp@FreeBSD.org "Go that way. Really fast. If something gets in your way, turn"
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199702110400.UAA09848>