"TrustedBSD" addons
Kevin Lyons
kevin_lyons at ofdengineering.com
Tue Jun 29 10:28:54 PDT 2004
I was reading with some surprise that some of the MAC and other "addons"
from trusted bsd are to be incorporated.
I can already see the security advisories for these things like we've
had for tcpwrapper, kerberos, heimdal, jail, openssl, etcetera ad
infinitum.
Is this the right way to go? We're adding more bloat while openbsd is
cleaning itself and reworking kernal memory allocation to make exploits
near impossible.
I dloaded 5.2 but haven't installed yet. I hope there is a way to
disable the MAC and other of these "trustedbsd features" that seem to
keep DARPA funded userland people busy.
--
Kevin Lyons
OFD Engineering, 950 Threadneedle Suite 250, Houston Texas 77079
Phone: 281-679-9060, ext. 118, E-mail: kevin_lyons at ofdengineering.com
More information about the freebsd-chat
mailing list