From owner-freebsd-advocacy@FreeBSD.ORG Thu Dec 31 07:27:10 2009 Return-Path: Delivered-To: freebsd-advocacy@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 2862D106566B for ; Thu, 31 Dec 2009 07:27:10 +0000 (UTC) (envelope-from perrin@apotheon.com) Received: from outbound-mail-114.bluehost.com (outbound-mail-114.bluehost.com [69.89.24.4]) by mx1.freebsd.org (Postfix) with SMTP id EBFAE8FC14 for ; Thu, 31 Dec 2009 07:27:09 +0000 (UTC) Received: (qmail 27034 invoked by uid 0); 31 Dec 2009 07:27:09 -0000 Received: from unknown (HELO box543.bluehost.com) (74.220.219.143) by outboundproxy3.bluehost.com with SMTP; 31 Dec 2009 07:27:09 -0000 DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=default; d=apotheon.com; h=Date:From:To:Subject:Message-ID:Mail-Followup-To:References:Mime-Version:Content-Type:Content-Disposition:In-Reply-To:User-Agent:X-Identified-User; b=lNwuocirHAJLXI6KK8sKSRxIc3Ky0PijkCHNM33CRRA5rt9xj7CPmI63j38J+YsxdAfOAJM1noM1xUhEQvrDeyZaunHgJ0SamkEO/z8QvLhj6Mk8nXf8rqAXQCDGJQo/; Received: from c-24-8-180-234.hsd1.co.comcast.net ([24.8.180.234] helo=kukaburra.hydra) by box543.bluehost.com with esmtpsa (TLSv1:AES256-SHA:256) (Exim 4.69) (envelope-from ) id 1NQFR6-0003J2-83 for freebsd-advocacy@freebsd.org; Thu, 31 Dec 2009 00:27:09 -0700 Received: by kukaburra.hydra (sSMTP sendmail emulation); Thu, 31 Dec 2009 00:19:33 -0700 Date: Thu, 31 Dec 2009 00:19:33 -0700 From: Chad Perrin To: freebsd-advocacy@freebsd.org Message-ID: <20091231071933.GB16919@guilt.hydra> Mail-Followup-To: freebsd-advocacy@freebsd.org References: <541b7a870912150733m4bc34148j98790a6142d4521c@mail.gmail.com> <20091223103226.GC26235@guilt.hydra> <20091223235651.GA31167@guilt.hydra> <87oclhzvz4.fsf@kobe.laptop> <20091229203901.GD25393@comcast.net> <20091229225123.GB6542@guilt.hydra> <20091229231705.GE25393@comcast.net> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="f2QGlHpHGjS2mn6Y" Content-Disposition: inline In-Reply-To: <20091229231705.GE25393@comcast.net> User-Agent: Mutt/1.4.2.3i X-Identified-User: {2737:box543.bluehost.com:apotheon:apotheon.org} {sentby:smtp auth 24.8.180.234 authed with ren@apotheon.org} Subject: Re: why BSDs got no love (and why security gets no love) X-BeenThere: freebsd-advocacy@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: FreeBSD Evangelism List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 31 Dec 2009 07:27:10 -0000 --f2QGlHpHGjS2mn6Y Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Tue, Dec 29, 2009 at 03:17:05PM -0800, Charlie Kester wrote: > On Tue 29 Dec 2009 at 14:51:23 PST Chad Perrin wrote: > >On Tue, Dec 29, 2009 at 12:39:01PM -0800, Charlie Kester wrote: > >> > >>One question, however. Are we prepared to back up the claim that the > >>"sexy" bits of PC-BSD are the least secure? Your argument depends on > >>that claim, since it's also implied in your description of development > >>team's priorities. > > > >Define "we". As I'm not a core developer for FreeBSD, nor anyone in a > >position of official representation of either the OS development project > >or the Foundation, my statements in the article should not be taken as > >necessarily indicative of anyone's opinions but my own. >=20 > I said "we" rather than "you" because I agree with your argument. :) Ahh, gotcha. Thanks for clarifying. > > > >The claim about the "sexy" bits of PC-BSD is based on my experience with > >tarted-up GUIs and "feature-rich" software. It is intended as a > >generalization rather than a categorical statement of absolute truth. > > > >All stuffy pedantry of mine aside, though, if you want to expand on > >your concerns, I'd be happy to read about them. >=20 > I was wondering if anyone has done a study of reported security holes > and if that data supports the assertion that the "sexy" GUI stuff PC-BSD > adds was more likely to be involved than the base OS. The only studies I know of that even come close to addressing these issues are the studies that show there tends to be a semi-constant rate of bugs per so-many lines of code for software projects within particular subcultures. That being the case, the sheer weight of lines of code involved in KDE (the default GUI of PC-BSD), for instance, implies substantial increase in total number of potentially security-damaging bugs on the system. More to the point, though, kitchen sink style installs also tend to run extra services, redundant server processes, auto-run a bunch of stuff, and so on -- and I don't really feel I personally need a study to tell me that's a recipe for security failure somewhere down the road. I totally understand the desire for some kind of statistical study that supports that claim, though, whether for your own edification or for that of others. >=20 > But even if there hasn't been any such study, I think it would be > worthwhile to flesh out your assertion with a few examples of the kind > of security problems that arise when the "sexy" stuff is used. I don't recall off-hand whether I've written previous articles on that subject. I may write some in the future that address that in more depth. Since that point in particular seemed somewhat outside the scope of the article to try to support in depth, I kinda left it where it lay. Nobody has challenged the point in the discussion thread following the article, last I checked. . . . >=20 > As I said above, I think the argument stands or falls on our ability to > defend this point. Given an obvious need to do so, I'm happy to offer what support I have for the point. You're the only person who has asked, though. --=20 Chad Perrin [ original content licensed OWL: http://owl.apotheon.org ] --f2QGlHpHGjS2mn6Y Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.14 (FreeBSD) iEYEARECAAYFAks8UIUACgkQ9mn/Pj01uKU9FACdGL8M9kkEKwNHhoV+JSU2q+qU obwAn2fA87MsIsLyY4nCNkf4mSVRzVsU =1ukQ -----END PGP SIGNATURE----- --f2QGlHpHGjS2mn6Y--