Date: Sat, 20 Apr 2002 03:14:59 +0200 From: "Karsten W. Rohrbach" <karsten@rohrbach.de> To: Peter Leftwich <Hostmaster@Video2Video.Com> Cc: FreeBSD Security LIST <security@FreeBSD.ORG> Subject: Re: FreeBSD Security Advisory FreeBSD-SA-02:21.tcpip Message-ID: <20020420031459.A88998@mail.webmonster.de> In-Reply-To: <20020419203037.S39174-100000@earl-grey.cloud9.net>; from Hostmaster@Video2Video.Com on Fri, Apr 19, 2002 at 08:50:16PM -0400 References: <20020420022630.C88054@mail.webmonster.de> <20020419203037.S39174-100000@earl-grey.cloud9.net>
next in thread | previous in thread | raw e-mail | index | archive | help
--UugvWAfsgieZRqgk Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable Peter Leftwich(Hostmaster@Video2Video.Com)@2002.04.19 20:50:16 +0000: > On Sat, 20 Apr 2002, Karsten W. Rohrbach wrote: [...] > > Brett Glass(brett@lariat.org)@2002.04.19 16:12:33 +0000: > > > At 04:07 PM 4/19/2002, Doug Barton wrote: > > > >I long ago forgot what it was like to be a new FreeBSD user, >=20 > questions@freebsd.org >=20 > > > This is part of the problem here. We should care a lot about newcomer= s' experience, and respect the fact that no matter how bright they are they= cannot learn everything at once. Expecting a new user to master CVSup is u= nreasonable. >=20 > Hi Karsten. The FreeBSD (and most *nix OS folk) community *does* care to= ns you are quote-quoting brett here ;-) i /do/ know that _especially_ the freebsd folks /do/ care. > > brett, i'm sorry, but reading this thread made me think about the > > days when i started using freebsd and set up my first server. after > > being left alone at a root user prompt "# " i learned how to > > configure the stuff in /etc, that docs are in /usr/share/doc, how to > > install packages, and then how to cvsup (for building upt to date > > versions out of the ports tree). >=20 > I always log in as root - The thinking is... rm doesn't scare me one bit!= :) sensing some amount of irony here, yes a new user logs in as root, because he got a "blank" system, with (hopefully) limited userland. i doesn't matter how many times you tell him "no do not log in as root", he will understand it when he executed his first more complex shell command containing "rm" ;-) > > in my personal opinion, i find the RPM or binary-only distribution > > mechanism very dangerous for users, because it is mainly the > > microsoft approach to hide software complexity behind an interface > > the user has to trust. i personally do not trust binary package > > systems (although i am forced to use them sometimes), nor do i > > blindly trust the ports tree. yes, i mean i _read_ the make files > > and view the output of the make process before installing a port the > > first time on one box. then i make a package out of it. that's all > > personal preference, yes. >=20 > Don't know practically nuttin about RPM, but if you are concerned about > security and customizable control of pkg_add, remember the following: You > can *always* just ftp the package (a tarball, or somecommandhere_3.1.1.tg= z) > to your box, gunzip and untar the contents... edit them in your favorite > editor and then "make" or "make clean" or "make install" manually (you can > tell beyond a certain point in this sentence I know not about what I spea= k)! yes, i know. but after the "USA_RESIDENT=3Dno vs. kerberos lib linkage in packages" issue, i rather roll my own, thanks. > Hope this has been as fun for y'all as it hath fer me. your mua does terrible things to line breaks. please check and fix ;-) regards, /k --=20 > Fools ignore complexity. Pragmatists suffer it. Some can avoid it. > Geniuses remove it. > --Perlis's Programming Proverb #58, SIGPLAN Notices, Sept. 1982=20 KR433/KR11-RIPE -- WebMonster Community Founder -- nGENn GmbH Senior Techie http://www.webmonster.de/ -- ftp://ftp.webmonster.de/ -- http://www.ngenn.n= et/ GnuPG 0x2964BF46 2001-03-15 42F9 9FFF 50D4 2F38 DBEE DF22 3340 4F4E 2964 B= F46 My mail is GnuPG signed -- Unsigned ones are bogus -- http://www.gnupg.org/ Please do not remove my address from To: and Cc: fields in mailing lists. 1= 0x --UugvWAfsgieZRqgk Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (FreeBSD) Comment: For info see http://www.gnupg.org iD8DBQE8wMETM0BPTilkv0YRAtvkAKCk6l55y3weLMSqUFxQOwTTg4uTWQCeMU+x OyHl4AnoIxji0gJauiWuY3Q= =Smi2 -----END PGP SIGNATURE----- --UugvWAfsgieZRqgk-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020420031459.A88998>