From owner-freebsd-chat@FreeBSD.ORG Tue Oct 5 16:01:49 2004 Return-Path: Delivered-To: freebsd-chat@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 3FE4D16A4D2 for ; Tue, 5 Oct 2004 16:01:49 +0000 (GMT) Received: from xenial.mcc.ac.uk (xenial.mcc.ac.uk [130.88.203.16]) by mx1.FreeBSD.org (Postfix) with ESMTP id 0939443D3F for ; Tue, 5 Oct 2004 16:01:49 +0000 (GMT) (envelope-from jcm@FreeBSD-uk.eu.org) Received: from dogma.freebsd-uk.eu.org ([130.88.200.97]) by xenial.mcc.ac.uk with esmtp (Exim 4.12) id 1CErl6-000I1L-00 for freebsd-chat@freebsd.org; Tue, 05 Oct 2004 17:01:48 +0100 Received: from dogma.freebsd-uk.eu.org (localhost [127.0.0.1]) i95G1lYu074417 for ; Tue, 5 Oct 2004 17:01:47 +0100 (BST) (envelope-from jcm@dogma.freebsd-uk.eu.org) Received: (from jcm@localhost) by dogma.freebsd-uk.eu.org (8.12.10/8.12.6/Submit) id i95G1lFS074416 for freebsd-chat@freebsd.org; Tue, 5 Oct 2004 17:01:47 +0100 (BST) Resent-Message-Id: <200410051601.i95G1lFS074416@dogma.freebsd-uk.eu.org> Date: Tue, 5 Oct 2004 17:01:32 +0100 From: Jonathon McKitrick To: freebsd-questions@freebsd.org Message-ID: <20041005160132.GC73819@dogma.freebsd-uk.eu.org> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.4i Resent-From: jcm@FreeBSD-uk.eu.org Resent-Date: Tue, 5 Oct 2004 17:01:47 +0100 Resent-To: freebsd-chat@freebsd.org Subject: What version of FBSD does Yahoo run? X-BeenThere: freebsd-chat@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Non technical items related to the community List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 05 Oct 2004 16:01:49 -0000 I would expect they are running 4.x, but does anyone know if they have migrated any production boxes to 5.x? Are they contributing any code to either branch? jm -- From owner-freebsd-chat@FreeBSD.ORG Wed Oct 6 14:53:46 2004 Return-Path: Delivered-To: freebsd-chat@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 1BA0C16A4CE for ; Wed, 6 Oct 2004 14:53:46 +0000 (GMT) Received: from pilchuck.reedmedia.net (pilchuck.reedmedia.net [209.166.74.74]) by mx1.FreeBSD.org (Postfix) with ESMTP id BA3C543D48 for ; Wed, 6 Oct 2004 14:53:45 +0000 (GMT) (envelope-from reed@reedmedia.net) Received: from reed by pilchuck.reedmedia.net with local-esmtp (Exim 3.12 #1 (Debian)) id 1CFDAh-0005Rn-00; Wed, 06 Oct 2004 07:53:39 -0700 Date: Wed, 6 Oct 2004 07:53:39 -0700 (PDT) From: "Jeremy C. Reed" To: freebsd-chat@freebsd.org Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Subject: Department of Defense security levels X-BeenThere: freebsd-chat@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Non technical items related to the community List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 06 Oct 2004 14:53:46 -0000 I have read some about Common Criteria Evaluation Assurance Levels, Orange Book levels, Federal Aviation Administration DO-178B Level A and others. I am looking for a quick reference and explanation of security levels used for software in the United States. Any good pointers? Also does any *BSD cover U.S. Department of Defense security levels? Maybe SEBSD or TrustedBSD? If no BSD, what about Linux? Where can I learn more about this? Jeremy C. Reed BSD News, BSD tutorials, BSD links http://www.bsdnewsletter.com/ From owner-freebsd-chat@FreeBSD.ORG Wed Oct 6 19:53:05 2004 Return-Path: Delivered-To: freebsd-chat@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id C6AD516A4CE for ; Wed, 6 Oct 2004 19:53:05 +0000 (GMT) Received: from smtp.knology.net (smtp.knology.net [24.214.63.101]) by mx1.FreeBSD.org (Postfix) with SMTP id 530CB43D39 for ; Wed, 6 Oct 2004 19:53:05 +0000 (GMT) (envelope-from dkelly@HiWAAY.net) Received: (qmail 4116 invoked by uid 0); 6 Oct 2004 19:53:26 -0000 Received: from user-69-73-60-132.knology.net (HELO ?10.0.0.68?) (69.73.60.132) by smtp8.knology.net with SMTP; 6 Oct 2004 19:53:26 -0000 In-Reply-To: References: Mime-Version: 1.0 (Apple Message framework v619) Content-Type: text/plain; charset=US-ASCII; format=flowed Message-Id: <54048F84-17D1-11D9-971B-000393BB56F2@HiWAAY.net> Content-Transfer-Encoding: 7bit From: David Kelly Date: Wed, 6 Oct 2004 14:53:00 -0500 To: "Jeremy C. Reed" X-Mailer: Apple Mail (2.619) cc: freebsd-chat@freebsd.org Subject: Re: Department of Defense security levels X-BeenThere: freebsd-chat@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Non technical items related to the community List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 06 Oct 2004 19:53:05 -0000 On Oct 6, 2004, at 9:53 AM, Jeremy C. Reed wrote: > I have read some about Common Criteria Evaluation Assurance Levels, > Orange > Book levels, Federal Aviation Administration DO-178B Level A and > others. I've been out of it for 5 years but is my understanding the Orange Book was retired. > I am looking for a quick reference and explanation of security levels > used > for software in the United States. Any good pointers? Only took a few moments with Google to find this: http://www.dynamoo.com/orange/ > Also does any *BSD cover U.S. Department of Defense security levels? > Maybe > SEBSD or TrustedBSD? The old Orange Book level C3 included everything. With C3 all users and persons with physical access are required to have equal or greater clearance and need-to-know as the systems and the data they contain. If networked then all other systems on the network must be the same need-to-know, we called this "stand alone" as systems were physically segregated by project or task. No feature of the OS such as user name, password, or resource ownership is considered a "security feature" in this context. I have run FreeBSD in C3 environments. > If no BSD, what about Linux? Where can I learn more about this? I heard Once Upon A Time someone with deep pockets was pushing a Linux system thru the qualification process aiming for a C1 or B-level. For mere mortals and civilians it doesn't mean a darned thing as nobody but the DoD cares to put up with the hassle. If it passed using a Brand-X motherboard with 386DX33 then that too is what you must use. Once Upon A Time Microsoft made big hay about Windows NT 3.5.1 being C2 or C1. Not exactly true as only one specific configuration made that grade. Without NIC. Without floppy. Without CDROM. Without external reset button. -- David Kelly N4HHE, dkelly@HiWAAY.net ======================================================================== Top-posters will not be shown the honor of a reply. From owner-freebsd-chat@FreeBSD.ORG Wed Oct 6 22:10:55 2004 Return-Path: Delivered-To: freebsd-chat@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 1616716A4CE for ; Wed, 6 Oct 2004 22:10:55 +0000 (GMT) Received: from sccmmhc91.asp.att.net (sccmmhc91.asp.att.net [204.127.203.211]) by mx1.FreeBSD.org (Postfix) with ESMTP id A95AD43D31 for ; Wed, 6 Oct 2004 22:10:54 +0000 (GMT) (envelope-from josh@tcbug.org) Received: from [10.0.0.10] (12-218-40-24.client.mchsi.com[12.218.40.24]) by sccmmhc91.asp.att.net (sccmmhc91) with ESMTP id <20041006221053m9100cdf9ae>; Wed, 6 Oct 2004 22:10:53 +0000 From: Josh Paetzel To: freebsd-chat@freebsd.org Date: Wed, 6 Oct 2004 17:10:17 -0500 User-Agent: KMail/1.6.1 References: <20041005160132.GC73819@dogma.freebsd-uk.eu.org> In-Reply-To: <20041005160132.GC73819@dogma.freebsd-uk.eu.org> MIME-Version: 1.0 Content-Disposition: inline Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Message-Id: <200410061710.17663.josh@tcbug.org> Subject: Re: What version of FBSD does Yahoo run? X-BeenThere: freebsd-chat@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Non technical items related to the community List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 06 Oct 2004 22:10:55 -0000 On Tuesday 05 October 2004 11:01, Jonathon McKitrick wrote: > I would expect they are running 4.x, but does anyone know if they > have migrated any production boxes to 5.x? Are they contributing > any code to either branch? > > jm I am far from authoritative in this area, but I would be surprised if yahoo runs on a "stock" release of FreeBSD. -- Thanks, Josh Paetzel From owner-freebsd-chat@FreeBSD.ORG Thu Oct 7 04:37:21 2004 Return-Path: Delivered-To: freebsd-chat@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id B1E1816A4CE for ; Thu, 7 Oct 2004 04:37:21 +0000 (GMT) Received: from s1.stradamotorsports.com (ip30.gte215.dsl-acs2.sea.iinet.com [209.20.215.30]) by mx1.FreeBSD.org (Postfix) with ESMTP id 5512543D31 for ; Thu, 7 Oct 2004 04:37:21 +0000 (GMT) (envelope-from jcw@highperformance.net) Received: from [192.168.1.16] ([192.168.1.16])i974bJ8m048549 for ; Wed, 6 Oct 2004 21:37:19 -0700 (PDT) (envelope-from jcw@highperformance.net) Date: Wed, 06 Oct 2004 21:37:08 -0700 From: "Jason C. Wells" To: freebsd-chat@freebsd.org Message-ID: X-Mailer: Mulberry/3.1.5 (Win32) MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Content-Disposition: inline X-Spam-Status: No, hits=0.0 required=4.0 tests=none version=2.55 X-Spam-Checker-Version: SpamAssassin 2.55 (1.174.2.19-2003-05-19-exp) Subject: OpenAFS Needs Help X-BeenThere: freebsd-chat@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Non technical items related to the community List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 07 Oct 2004 04:37:21 -0000 Is anyone out there looking for a project? I am trying to drum up support for an OpenAFS porting effort. I strongly desire to get the OpenAFS client working under 5X. I had it running unstably just a couple days ago, but upgrades to BETA7 seem to have broken it utterly. OpenAFS is a distributed file system with replication, backup, kerberos authentication and lots of other really cool features. In a fight OpenAFS would kick CIFS and NFS both right in the cobblers. Thanks, Jason C. Wells From owner-freebsd-chat@FreeBSD.ORG Thu Oct 7 11:59:12 2004 Return-Path: Delivered-To: freebsd-chat@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 7DA2816A4CF for ; Thu, 7 Oct 2004 11:59:12 +0000 (GMT) Received: from moo.sysabend.org (moo.sysabend.org [66.111.41.70]) by mx1.FreeBSD.org (Postfix) with ESMTP id 5C16743D49 for ; Thu, 7 Oct 2004 11:59:12 +0000 (GMT) (envelope-from ragnar@sysabend.org) Received: by moo.sysabend.org (Postfix, from userid 1004) id C2395484; Thu, 7 Oct 2004 04:59:08 -0700 (PDT) Received: from localhost (localhost [127.0.0.1]) by moo.sysabend.org (Postfix) with ESMTP id C13EB45F; Thu, 7 Oct 2004 04:59:08 -0700 (PDT) Date: Thu, 7 Oct 2004 04:59:08 -0700 (PDT) From: Jamie Bowden To: David Kelly In-Reply-To: <54048F84-17D1-11D9-971B-000393BB56F2@HiWAAY.net> Message-ID: <20041007045726.X97491-100000@moo.sysabend.org> X-representing: Only myself. X-badge: We don't need no stinking badges. X-obligatory-profanity: Fuck X-moo: Moo. MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII cc: freebsd-chat@freebsd.org Subject: Re: Department of Defense security levels X-BeenThere: freebsd-chat@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Non technical items related to the community List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 07 Oct 2004 11:59:12 -0000 On Wed, 6 Oct 2004, David Kelly wrote: > On Oct 6, 2004, at 9:53 AM, Jeremy C. Reed wrote: > > I have read some about Common Criteria Evaluation Assurance Levels, > > Orange Book levels, Federal Aviation Administration DO-178B Level A > > and others. > I've been out of it for 5 years but is my understanding the Orange Book > was retired. For contractors, we have to follow the guidelines of Chapter 8 of the NISPOM. My systems are all PL1 and PL2. PL3 and PL4 systems are for people who don't have lives. Jamie Bowden -- "It was half way to Rivendell when the drugs began to take hold" Hunter S Tolkien "Fear and Loathing in Barad Dur" Iain Bowen From owner-freebsd-chat@FreeBSD.ORG Thu Oct 7 13:22:27 2004 Return-Path: Delivered-To: freebsd-chat@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id A21AA16A4E3 for ; Thu, 7 Oct 2004 13:22:27 +0000 (GMT) Received: from xzuberant.com (xzuberant.com [216.218.225.18]) by mx1.FreeBSD.org (Postfix) with SMTP id 9199C43D1F for ; Thu, 7 Oct 2004 13:22:27 +0000 (GMT) (envelope-from jpc@xzuberant.com) Received: from mail.jpcampbell.com ([24.160.80.213]) by xzuberant.com for ; Thu, 7 Oct 2004 06:22:20 -0700 Received: by mail.jpcampbell.com (Postfix, from userid 1000) id ABB6B5D46; Thu, 7 Oct 2004 08:22:19 -0500 (CDT) Date: Thu, 7 Oct 2004 08:22:19 -0500 From: "John P. Campbell" To: Josh Paetzel Message-ID: <20041007132219.GA62124@jpcampbell.com> References: <20041005160132.GC73819@dogma.freebsd-uk.eu.org> <200410061710.17663.josh@tcbug.org> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <200410061710.17663.josh@tcbug.org> User-Agent: Mutt/1.5.6i cc: freebsd-chat@freebsd.org Subject: Re: What version of FBSD does Yahoo run? X-BeenThere: freebsd-chat@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: jpc@xzuberant.com List-Id: Non technical items related to the community List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 07 Oct 2004 13:22:27 -0000 On Wed, Oct 06, 2004 at 05:10:17PM -0500, Josh Paetzel wrote: > On Tuesday 05 October 2004 11:01, Jonathon McKitrick wrote: > > I would expect they are running 4.x, but does anyone know if they > > have migrated any production boxes to 5.x? Are they contributing > > any code to either branch? > > > > jm > > I am far from authoritative in this area, but I would be surprised if > yahoo runs on a "stock" release of FreeBSD. Not sure if this is any indication, but ... Overture is a customer of ours, and after the acquisition by Yahoo, they switched their OS requirements from RedHat to FreeBSD 4.10 for their latest order. Initially, they had asked for 4.8, but changed their minds before we delivered. jpc From owner-freebsd-chat@FreeBSD.ORG Thu Oct 7 19:07:39 2004 Return-Path: Delivered-To: freebsd-chat@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 34CFA16A4CE for ; Thu, 7 Oct 2004 19:07:39 +0000 (GMT) Received: from hak.cnd.mcgill.ca (hak.cnd.McGill.CA [132.216.11.133]) by mx1.FreeBSD.org (Postfix) with ESMTP id 9C3FC43D1F for ; Thu, 7 Oct 2004 19:07:38 +0000 (GMT) (envelope-from mat@hak.cnd.mcgill.ca) Received: from hak.cnd.mcgill.ca (localhost [127.0.0.1]) by hak.cnd.mcgill.ca (8.12.9/8.12.8) with ESMTP id i97JE51M093801; Thu, 7 Oct 2004 15:14:05 -0400 (EDT) (envelope-from mat@hak.cnd.mcgill.ca) Received: (from mat@localhost) by hak.cnd.mcgill.ca (8.12.9/8.12.8/Submit) id i97JE0Ob093800; Thu, 7 Oct 2004 15:14:00 -0400 (EDT) Date: Thu, 7 Oct 2004 15:13:59 -0400 From: Mathew Kanner To: "Jeremy C. Reed" Message-ID: <20041007191359.GB87467@cnd.mcgill.ca> References: Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: User-Agent: Mutt/1.4.1i Organization: I speak for myself, operating in Montreal, CANADA X-Spam-Status: No, hits=0.0 required=5.0 tests=none autolearn=no version=2.62 X-Spam-Checker-Version: SpamAssassin 2.62 (2004-01-11) on hak.cnd.mcgill.ca cc: freebsd-chat@freebsd.org Subject: Re: Department of Defense security levels X-BeenThere: freebsd-chat@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Non technical items related to the community List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 07 Oct 2004 19:07:39 -0000 On Oct 06, Jeremy C. Reed wrote: > I have read some about Common Criteria Evaluation Assurance Levels, Orange > Book levels, Federal Aviation Administration DO-178B Level A and others. > > I am looking for a quick reference and explanation of security levels used > for software in the United States. Any good pointers? > > Also does any *BSD cover U.S. Department of Defense security levels? Maybe > SEBSD or TrustedBSD? > > If no BSD, what about Linux? Where can I learn more about this? Robert Watson gave an excellent presentation along these lines at BSDCan '04. Maybe you can find the PDF of it on the website. --Mat -- In general, a standard is very useful, whether it's de facto or du jour. - Microsoft's Greg Sullivan as misquoted by News.Com