Secure cvsup access?
colin.percival at wadham.ox.ac.uk
Sat May 24 16:21:21 PDT 2003
Is there any mechanism in place for secure cvsup access, and if so, who
should I talk to about it?
Right now I'm building and publishing binary security updates (see
ports/security/freebsd-update) based on what I get via cvsup from one of
the mirrors (not that there has been anything to publish for the past
couple of months); this introduces the risk of dns and other attacks.
More information about the freebsd-hackers