Ted Unangst wrote:
On 3/5/08, steve szmidt <[EMAIL PROTECTED]> wrote:
I know that there is a lot of ongoing work and I figured that you would be
quite familiar with what what Hawkes said, and would be able to say Oh yes,
we closed those doors three releases ago, or some such.
We've mostly done what we can. Also, the presentation didn't really
deal with exploiting openbsd itself; a more accurate title would have
been "Circumventing OpenBSD's Exploit Mitigation." With that in mind,
even if nothing had been addressed, OpenBSD would be no less secure
than an OS without these features.
I agree.
I do not consider these features of OpenBSD something that makes crappy
programs run safer, but rather something that makes crappy programs
crash, forcing them to be fixed or replaced.
/Alexander
