At 03:04 PM 6/2/98 +0100, you wrote:
>Are there any other people out there interested in a concerted linux
>source security auditing process?
Yes, yes, and yes. Did I mention, yes?
>If there is sufficient interest, I would envisage myself setting up a web
>page to indicate which packages could do with auditing, and also a mailing
>list for unmoderated discussion of auditing. The mailing list would be
>only for discussion of potential problems and auditing; definite problems
>discovered would still go to the usual forums of bugtraq and
>linux-security.
I had recently posted about just such a list. I got, oh, three responses,
so I was a little disenchanted... However, I was thinking about auditing
this morning, and I don't see why it can't be done. I mean, OpenBSD has
a rep for security, who says RedHat can't (or, at least some subset of
the RedHat dist).
>So, anyone interested should drop me a note. Likewise anyone with thoughts
>on whether this is a good or bad idea should drop me a line.
Well, here's a note. I'd be glad to discuss this in direct e-mail, if you'd
like. I think it is a good idea, and would be willing to dedicate time
and resources to the effort.
>Cheers
>Chris
Mike
--
Mike Johnson - [EMAIL PROTECTED]
Network Engineer - Prototype Development
GTE Government Systems - All opinions are mine, not GTE's.
--
PLEASE read the Red Hat FAQ, Tips, Errata and the MAILING LIST ARCHIVES!
http://www.redhat.com/RedHat-FAQ /RedHat-Errata /RedHat-Tips /mailing-lists
To unsubscribe: mail [EMAIL PROTECTED] with
"unsubscribe" as the Subject.
