|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
From: Gregory Sutter (gsutter
zer0.org)Date: Sat Dec 01 2001 - 13:37:04 CST
On 2001-12-01 17:31 +0000, Colin Percival <colin.percivalwadham.ox.ac.uk> wrote:
> At 17:22 01/12/2001 +0100, Extended Laurent Fabre wrote:
> >Seems like an OpenBSD feature :P
> >
> >But from a security point of view, if an attacker can guess
> >the random seed, i can't see the protection offered...
> >It will just raise the number of brute force attacks...
>
> Still, I have to agree that this sounds pretty OpenBSDish... looking at
> the BSDs as a whole I'd say it would make sense for this to be added into
> OpenBSD first and ported to FreeBSD once it has proved itself.
Aren't you both putting the cart before the horse? Just because
OpenBSD bill themselves as particularly security-conscious doesn't
mean that nobody else is allowed to improve security. I'd also
much rather be targeted with a brute-force attack against my malloc
than with the pinpoint accuracy that has compromised wu-ftpd and
dlmalloc. Let's stop the empty rhetoric and concentrate on what
can help improve FreeBSD security.
Greg
-- Gregory S. Sutter "I think not," said Descartes... mailto:gsutter
-----BEGIN PGP SIGNATURE----- Comment: ''
iD8DBQE8CTFgIBUx1YRd/t0RAhrYAKCO0poV5KUbo8cVeUj+lYrExqMV4QCdH3qK dT9e3dp7SL8UhuIOpqvJqx0= =IaFb -----END PGP SIGNATURE-----
To Unsubscribe: send mail to majordomoFreeBSD.org
with "unsubscribe freebsd-security" in the body of the message
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]