BSDstats v3.0 - The Security Rewrite
John Nielsen
lists at jnielsen.net
Mon Aug 14 17:30:37 UTC 2006
On Monday 14 August 2006 09:19, Marc G. Fournier wrote:
> Over the past few days, I've been working with Paul Schmehl and Matthew
> Seaman to come up with a more "security sensitive" version of BSDstats ...
> one that reduces the amount of "sensitive information" stored in the
> database down to ... zero. No IPs, no hostnames ...
>
> This new version also reduces the number of 'network fetches' down to 4
> for the first run, and 3 for subsequent runs, so it runs a bit faster, and
> talks across the network less.
>
> And, finally, this one has its own domain for check in server ...
>
> None of the pre-v3.x clients can talk to the v3.x server, since the DB
> format has totally changed, so everyone needs to grab the latest version
> and run it so that we can re-sync the database properly ...
>
> >From now forward, the stats will be viewable from:
>
> http://www.bsdstats.org
This is great!
Is the 15-minute first-time waiting period enforced on the server side?
Obviously there's nothing to stop an administrator from editing the script
locally..
Thanks again for all your efforts.
JN
More information about the freebsd-questions
mailing list