Date: Wed, 24 Nov 1999 08:43:21 +0000 (GMT) From: Doug Rabson <dfr@nlsystems.com> To: "David O'Brien" <obrien@freebsd.org> Cc: Mark Murray <mark@grondar.za>, Kris Kennaway <kris@hub.freebsd.org>, current@freebsd.org Subject: Re: FreeBSD security auditing project. Message-ID: <Pine.BSF.4.10.9911240842330.318-100000@salmon.nlsystems.com> In-Reply-To: <19991123140303.B49964@dragon.nuxi.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Tue, 23 Nov 1999, David O'Brien wrote: > > So when Joe Blow clicks on (say) src->bin->cat he'll find that > > (say) markm eyballed the code and kris diffed it with OpenBSD > > and merged in <blah> fixes - "cat now considered safe". > > Until the next commit to cat. > > A security review is never done. We need to be in a mode where every > commit is suspect and people are compelled to review it. BDE's use of > CTM to review changes is actually rather affective in this reguard. We need to put audit tags into the source tree when a file is audited. That allows the diffs to be audited later which should be a smaller job and then the audit tag slides forward. -- Doug Rabson Mail: dfr@nlsystems.com Nonlinear Systems Ltd. Phone: +44 181 442 9037 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-current" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.10.9911240842330.318-100000>