> So when Joe Blow clicks on (say) src->bin->cat he'll find that > (say) markm eyballed the code and kris diffed it with OpenBSD > and merged in <blah> fixes - "cat now considered safe". Until the next commit to cat. A security review is never done. We need to be in a mode where every commit is suspect and people are compelled to review it. BDE's use of CTM to review changes is actually rather affective in this reguard. -- -- David ([EMAIL PROTECTED]) To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-current" in the body of the message
- Re: FreeBSD security auditing p... Brian Fundakowski Feldman
- Re: FreeBSD security audit... Brad Knowles
- Re: FreeBSD security auditing proje... Jordan K. Hubbard
- Re: FreeBSD security auditing proje... Warner Losh
- Re: FreeBSD security auditing proje... Warner Losh
- Re: FreeBSD security auditing proje... Garrett Wollman
- Re: FreeBSD security auditing p... Michael Kennett
- Re: FreeBSD security auditing project. Mark Murray
- Re: FreeBSD security auditing project. Kris Kennaway
- Re: FreeBSD security auditing project. Mark Murray
- Re: FreeBSD security auditing project. David O'Brien
- Re: FreeBSD security auditing project. Kris Kennaway
- Re: FreeBSD security auditing project. Doug Rabson
- Re: FreeBSD security auditing proje... scanner
- Re: FreeBSD security auditing p... Robert Watson
- Re: FreeBSD security auditing project. Mark Murray
- Re: FreeBSD security auditing project. Warner Losh
- Re: FreeBSD security auditing project. Rodney W. Grimes