Date: Thu, 30 Nov 2000 20:50:27 -0800 (PST) From: Matthew Jacob <mjacob@feral.com> To: Robert Watson <rwatson@FreeBSD.org> Cc: audit@FreeBSD.org Subject: Re: Solicitation for auditing process announcement Message-ID: <Pine.BSF.4.21.0011302047460.59011-100000@beppo.feral.com> In-Reply-To: <Pine.NEB.3.96L.1001130234448.97425E-100000@fledge.watson.org>
next in thread | previous in thread | raw e-mail | index | archive | help
Well, that describes what I thought the audit list was supposed to be. I'm just trying to figure out whether subscription to audit@ implies an obligation to review things sent to audit@. That comes from the 'review on demand' phrase. However, your usage of 'drive-by commit' sounds to me that the audit@ list is more like a get out of jail free card .... I was just curious what you meant by the 'demand' portion. Really, just an idle question as I ponder which one of my 8 different projects to desultorily whack on some more tonite. On Thu, 30 Nov 2000, Robert Watson wrote: > > On Thu, 30 Nov 2000, Matthew Jacob wrote: > > > >indicating that audit@ is willing to do review-on-demand and should be > > > > What does 'review on demand' mean? > > It means that we're too laid back to have figured out rigorous, pro-active > re-auditing of the source tree, and instead we sit there and wait until > someone e-mails audit@ saying, ``I'm going to make the following stupid > changes to the following setuid binaries, could you take a look and OK > them before I drive-by commit them twenty minutes before the release?'' > > Robert N M Watson FreeBSD Core Team, TrustedBSD Project > robert@fledge.watson.org NAI Labs, Safeport Network Services > > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-audit" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.21.0011302047460.59011-100000>