Alexey Dokuchaev wrote:
>
> Hello!
>
> Some pretty good time ago, I accidentally found SecureBSD
> (www.securebsd.org), which is a security patch for 3.4-REL and 4.0-REL. I
> kept a note about this site, and that's about it.
>
> Recently, reviewing my ~/cool.lynx file, I've found this site again.
> Interested, I dloaded it (4.0 version) and tried to apply it to my pretty
> recent 4.2-STABLE. Not surprisingly, it didn't apply, there were lots of
> rejects. I looked at rejected code, and it seems that it can be fixed
> easily. I've already wrote a perl script that would help me fixing all
> the patches :)
>
> The point of this letter is, whether SecureBSD worth trying or not?
> Maybe, even if I manage to correctly apply all the patches, it still would
> not work? It seems like really useful and cool thing, but I've hardly
> seen anyone using or even mentioning it. Will it help me make more secure
> server than using standard FreeBSD methods?
If I recall, the license on SecureBSD doesn't allow you to distribute the
patches to anyone else. You can contribute them back to SecureBSD, they
can then do with them as they please, which may or may not include giving
them to other SecureBSD users. This is the primary reason why the interest
in SecureBSD remains so low around here.
You may want to look at http://www.trustedbsd.org/ as well. It is provided
under the Berkeley license, and much of what is developed there will be
folded into FreeBSD as time permits. The primary author of TrustedBSD is
Robert Watson, who is now a FreeBSD Core Team member as well.
--
"Where am I, and what am I doing in this handbasket?"
Wes Peters Softweyr LLC
[EMAIL PROTECTED] http://softweyr.com/
To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-hackers" in the body of the message
