Date: Mon, 06 Sep 1999 10:41:54 -0700 From: Mike Smith <mike@smith.net.au> To: Brad Knowles <blk@skynet.be> Cc: freebsd-questions@freebsd.org, freebsd-stable@freebsd.org Subject: Re: softupdates in latest build? Message-ID: <199909061741.KAA19927@dingo.cdrom.com> In-Reply-To: Your message of "Mon, 06 Sep 1999 18:09:11 %2B0200." <v04205526b3f9964ac159@[195.238.1.121]>
next in thread | previous in thread | raw e-mail | index | archive | help
> > I ran into some problems with a number of things that had changed > in the format of kernel configs, but the biggest thing I've run > across so far is the fact that Berkeley Packet Filtering (bpf) is now > enabled by default, as opposed to disabled by default. > > This opens a *huge* security risk for anyone who doesn't > reconfigure their kernel or doesn't fully comprehend the potential > danger here. Actually, if you'd followed the discussions that preceeded the change, or just thought about it for a minute, you'd realise that this isn't the case at all. By the time an attacker has enough access rights on your system to make use of the packet filter, they have enough access rights to add it if it's not there. > Are we really sure that the FreeBSD Inc. has > sufficiently increased it's liability insurance to cover the > potentially multi-million dollar lawsuits that might result from this > change? You should go back and read the BSD license again, I think. -- \\ The mind's the standard \\ Mike Smith \\ of the man. \\ msmith@freebsd.org \\ -- Joseph Merrick \\ msmith@cdrom.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199909061741.KAA19927>