Re: [ossig] A very lengthy article on installing and securing FreeBSD

[Mukhsein Johari <pythonium@yahoo.com>]

> 
> The Linux compat allows you to run linux binaries
> ... ie you don't 
> compile the code yourself, you download code someone
> else compiled - so 
> you don't know for sure the executable is clean.
> Security wise running 
> "unknown" binaries is a potential weak link in your
> defence.

Isn't running 'unknown' binaries risky for any
architecture though? An FreeBSD binary you did not
compile could just as easily be a security risk, no?

> And potentially you are adding another set of
> bugs....linux specific 
> bugs which you will not have when running purely
> FreeBSD.
 
Again, FreeBSD is not bug-free but it still is damn
good. Linux specific bugs are there all the time - you
just patch your software/download latest build etc. I
still just seems like religious bias against linux to
me.

> 
> I've been having my linux compat for years without
> problems....I call 
> it the FreeBSD linux distro :)

As have I. I've been running the mozilla builds (and
zope) on my BSD box for over a year now with no
problems. The linux binaries just think they're
running on linux.

> So far so good...
> on the other hand I haven't been the target of a
> concerted attack :)

Well, you wouldn't put nonsense (like linux compat) on
your firewall anyway! We have better tools on FreeBSD
:-) (eh...heh, did I say religious bias?)



__________________________________
Do you Yahoo!?
Yahoo! SiteBuilder - Free, easy-to-use web site design software
http://sitebuilder.yahoo.com


------------------------------------------------------------
To unsubscribe: send mail to ossig-request@mncc.com.my
with "unsubscribe ossig" in the body of the message