Date: Fri, 27 Jun 2003 11:37:17 +0300 From: Peter Pentchev <roam@ringlet.net> To: Soeren Straarup <xride@x12.dk> Cc: freebsd-hackers@freebsd.org Subject: Re: replacing sendmail with qmail Message-ID: <20030627083716.GK347@straylight.oblivion.bg> In-Reply-To: <20030627093018.C44932-100000@x12.dk> References: <oprrd276m18ckrg5@smtp.central.cox.net> <20030627093018.C44932-100000@x12.dk>
next in thread | previous in thread | raw e-mail | index | archive | help
--hOcCNbCCxyk/YU74 Content-Type: text/plain; charset=windows-1251 Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Fri, Jun 27, 2003 at 09:39:36AM +0200, Soeren Straarup wrote: >=20 > Well my point is that every one (that is interrested in security) knows > that Sendmail and bind and so on have their exploits.. >=20 > And I like that they are the one that is comming with some more or less > insecure services, this is due to that it really gives ppl the freedom > choose the services that they want to use. But the generic ones works for > home networks with no external access too. >=20 > Freedom of religion. >=20 > Well with freedom comes responsibility. And this responsibility is handled excellently by the FreeBSD Security Officer team and the FreeBSD sendmail maintainer, George Shapiro. I don't think that there would be a better way to handle the existing and published Sendmail vulnerabilities than the current practice of timely patches and updates to both -current, -stable, *and* the various security branches, so that everyone tracking the security advisories is aware of the need to update, and update *now*, as soon as there is actually something to update to. Great job, folks! With that said, you could always do what I do and cut your own releases with appropriate NO_* knobs in make.conf ;) This is *not* to say that I don't trust the security officer team and the maintainers of the various pieces of contributed software that I exclude from my own builds; it's just a matter of personal preference. Here's hoping this is the last post in this thread :) (The last word? Me? Naah, that's just lack of morning coffee getting to you :P ) G'luck, Peter --=20 Peter Pentchev roam@ringlet.net roam@sbnd.net roam@FreeBSD.org PGP key: http://people.FreeBSD.org/~roam/roam.key.asc Key fingerprint FDBA FD79 C26F 3C51 C95E DF9E ED18 B68D 1619 4553 This sentence was in the past tense. --hOcCNbCCxyk/YU74 Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.2 (FreeBSD) iD8DBQE+/AI87Ri2jRYZRVMRAs51AKCQ6ONmy3dJ2KQl89XEceFqgyKOSACfSVRT IxzKd5IjVjePTbYKbJX18UA= =DRQd -----END PGP SIGNATURE----- --hOcCNbCCxyk/YU74--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20030627083716.GK347>