Re: security risk: ktrace(2) in FreeBSD prior to -current.

From: D J Hawkey Jr (hawkeyd@visi.com)
Date: 07/02/02 

Date: Mon, 1 Jul 2002 19:54:35 -0500 (CDT)
From: hawkeyd@visi.com (D J Hawkey Jr)
To: brett@lariat.org, freebsd-security@freebsd.org

In article <4.3.2.7.2.20020701102105.022a44f0_localhost@ns.sol.net>,
        brett@lariat.org writes:
>
>>Please note that I have *not* asked for a binary update.
>>I don't want to get flamed the way Brett does...
>
> ...for asking something reasonable? ;-)
>
> Seriously: Please do ask. If we do not have up-to-date binary
> packages, a large percentage of the new installs of FreeBSD
> (both network installs and those from CD-ROM) will be vulnerable
> from the start, even though the holes have long been identified.
> This is not only unethical but also terrible for FreeBSD's
> reputation.

Again with the "I need this from y'all 'cuz I'm too lame or lazy to do
it myself, and I'm committed to countless customers with a solution of
my own making that I can't support.".

And now you're going so far as to call The Project "unethical". I gotta
wonder if those same customers aren't going to refer to you with the
same word pretty soon. You got 'em into this jam; you get 'em out.

> Already, the Apache/FreeBSD worm is making the rounds. Why
> allow new installs to be vulnerable?

Jiminy Crickets, man! Get off you pedestal, roll up your sleeves, and
get on with it. You MUST have a lot of work to do, what with spending
all this time pissing and moaning about how others won't do it for you.

> --Brett

Ya know, Brett, in the time it takes for you to let one thread of yours
die, I can update two disparate networks with two patches. And I have
nowhere's near the expertise you so obviously must have.

I won't be re-visiting this thread.
Dave 

-- 
Windows: "Where do you want to go today?"
Linux: "Where do you want to go tomorrow?"
FreeBSD: "Are you guys coming, or what?"
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message

Relevant Pages

  • Re: Migrating from RedHat to Debian
    ... by the script that installs the rpms (remember that you usually don't ... install the intel compiler rpms directly). ... learning curve is steeper than Debian, but the BSD way of doing things ... FreeBSD box by trying to mount a floppy disk. ...
    (comp.os.linux.misc)
  • Fw: To freeBSD or not freeBSD
    ... > 100's of windows machines. ... The installs are pretty much run setup.exe, ... > FreeBSD install is a terse to a newbie but my one goal using freebsd was ... > bit of the reason also choosing BSD over at linux at first, ...
    (freebsd-newbies)
  • Re: FreeBSD Newbies FAK
    ... I have done my first installs and I found ... The installation documentation does not always ... Searching the FreeBSD archives and Google ...
    (freebsd-newbies)
  • Cant shutdown, logout, or restart cleanly
    ... I have done 3 installs ... of FreeBSD each time cvsupping to 5.2 current (using ISOs for 5.1 and ... shuts down entirely and then the machine locks trying to go to the next ... I really want to use FreeBSD, but having to do constant cold restarts ...
    (freebsd-questions)
  • RE: security risk: ktrace(2) in FreeBSD prior to -current.
    ... There is no such thing as low volume with people like Brett Glass on here. ... would love to have this list setup to ONLY send out notifications. ... I really do not care how YOU ... feel FreeBSD is setup or why a certain packages / ports have not been made ...
    (FreeBSD-Security)