From owner-freebsd-security  Sat Mar 21 15:25:26 1998
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Received: (from majordom@localhost)
          by hub.freebsd.org (8.8.8/8.8.8) id PAA20582
          for freebsd-security-outgoing; Sat, 21 Mar 1998 15:25:26 -0800 (PST)
          (envelope-from owner-freebsd-security@FreeBSD.ORG)
Received: from ns1.yes.no (ns1.yes.no [195.119.24.10])
          by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id PAA20576
          for <freebsd-security@FreeBSD.ORG>; Sat, 21 Mar 1998 15:25:16 -0800 (PST)
          (envelope-from eivind@bitbox.follo.net)
Received: from bitbox.follo.net (bitbox.follo.net [194.198.43.36])
	by ns1.yes.no (8.8.7/8.8.7) with ESMTP id XAA27379;
	Sat, 21 Mar 1998 23:25:00 GMT
Received: (from eivind@localhost)
	by bitbox.follo.net (8.8.6/8.8.6) id AAA29328;
	Sun, 22 Mar 1998 00:24:56 +0100 (MET)
Message-ID: <19980322002455.40800@follo.net>
Date: Sun, 22 Mar 1998 00:24:55 +0100
From: Eivind Eklund <eivind@yes.no>
To: dave <dave@comsite.net>, freebsd-security@FreeBSD.ORG
Subject: Re: FreeBSD security audit, etc.
References: <Pine.BSF.3.96.980321165905.8958A-100000@bsdserve1.comsite.net>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
X-Mailer: Mutt 0.89.1i
In-Reply-To: <Pine.BSF.3.96.980321165905.8958A-100000@bsdserve1.comsite.net>; from dave on Sat, Mar 21, 1998 at 05:11:40PM -0600
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk

On Sat, Mar 21, 1998 at 05:11:40PM -0600, dave wrote:
> So, to correct this, I would like to start making an effort to break apart
> the changes made to OpenBSD that will affect FreeBSD security and
> integrate those changes into the FreeBSD tree.  If this actually sounds
> like a good thing to do, then I will need to know who the contact is that
> will be able to review my changes and check them into the necessary trees.
> I definitely want to avoid integrating any politically incorrect features
> from OpenBSD, but I want to make any changes that will improve security.
> 
> If this stuff has already been done and I just missed it somewhere, please
> let me know.  

It has been partially done, but only partially.  Hats off to Warner
Losh for doing a lot of it.  (I've done a little, but not really
much.)

/bin is AFAIK clean (everything is merged) - for everywhere else I
don't know.

I'll review and check in if these fixes if you sent them to me.  (I
can't guarantee commiting them verbatim, but I will do my best to make
sure a patch is committed rapidly for any real problem.)

If known, please indicate who in OpenBSD did the original fix.

Eivind.


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe security" in the body of the message