Date: Wed, 16 Mar 2005 20:08:50 -0500 From: Danny <nocmonkey@gmail.com> To: questions@freebsd.org Cc: Kris Kennaway <kris@freebsd.org> Subject: Re: Portsnap necessary? CVSup insecure? Message-ID: <addc34c6050316170832b40507@mail.gmail.com> In-Reply-To: <20050317005927.GN91771@hub.freebsd.org> References: <addc34c605031615064b793c89@mail.gmail.com> <20050316233556.GM91771@hub.freebsd.org> <addc34c60503161549443a23b3@mail.gmail.com> <20050317005927.GN91771@hub.freebsd.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On Thu, 17 Mar 2005 00:59:27 +0000, Kris Kennaway <kris@freebsd.org> wrote: > > On Wed, Mar 16, 2005 at 06:06:07PM -0500, Danny wrote: > > When is the last time a FreeBSD CVSup server was compromised - if ever? > > I don't know that it's ever happened. > > I don't know that that's really the threat model you should care about > anyway, since someone could compromise the master portsnap server as > well, just not any mirrors (but these are currently nonexistent > anyway, afaik). Alright, I think it's safe to say that I'll just have to try it out and see which one works best for me. Hopefully I haven't caused any unnecessary controversy, although I would like to hear other comparisons between the two. Thank you for your time, Kris. ...D
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?addc34c6050316170832b40507>