BSDstats v3.0 - The Security Rewrite

Paul Schmehl pauls at
Mon Aug 14 15:06:20 UTC 2006

Marc G. Fournier wrote:
> Over the past few days, I've been working with Paul Schmehl and Matthew 
> Seaman to come up with a more "security sensitive" version of BSDstats 
> ... one that reduces the amount of "sensitive information" stored in the 
> database down to ... zero.  No IPs, no hostnames ...
> This new version also reduces the number of 'network fetches' down to 4 
> for the first run, and 3 for subsequent runs, so it runs a bit faster, 
> and talks across the network less.
> And, finally, this one has its own domain for check in server ...
> None of the pre-v3.x clients can talk to the v3.x server, since the DB 
> format has totally changed, so everyone needs to grab the latest version 
> and run it so that we can re-sync the database properly ...
>> From now forward, the stats will be viewable from:
Marc, thanks for all your hard work on these issues.

One small change needs to be made.  The pkg-message file reads, at its end:
o view current statistics, go to:

That needs to be changed to

This patch will fix it.

--- pkg-message.orig    Mon Aug 14 10:02:29 2006
+++ pkg-message Mon Aug 14 10:02:51 2006
@@ -10,6 +10,6 @@

  To view current statistics, go to:

Paul Schmehl (pauls at
Adjunct Information Security Officer
The University of Texas at Dallas
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 5268 bytes
Desc: S/MIME Cryptographic Signature
Url :

More information about the freebsd-questions mailing list