*BSD News Article 89233


Return to BSD News archive

Path: euryale.cc.adfa.oz.au!newshost.carno.net.au!harbinger.cc.monash.edu.au!munnari.OZ.AU!news.ecn.uoknor.edu!news.wildstar.net!news.ececs.uc.edu!news.kei.com!news.mathworks.com!howland.erols.net!news.sprintlink.net!news-peer.sprintlink.net!news.sprintlink.net!news-hub.sprintlink.net!news.sprintlink.net!news-atl-21.sprintlink.net!news.rain.net!pacifier!deraadt
From: deraadt@theos.com (Theo de Raadt)
Newsgroups: comp.unix.bsd.netbsd.misc,comp.security.unix
Subject: Re: Careless integration of others' code (WAS Re: Why no addusr?)
Date: 16 Feb 1997 04:20:32 GMT
Organization: Theo Ports Kernels For Fun And Profit
Lines: 49
Message-ID: <DERAADT.97Feb15212032@zeus.pacifier.com>
References: <none-ya023480001912962244220001@news.infi.net>
	<DERAADT.97Feb14205132@zeus.pacifier.com> <5e52dj$c8p@news.bayarea.net>
	<DERAADT.97Feb15155022@zeus.pacifier.com> <5e5vkb$d89@panix2.panix.com>
NNTP-Posting-Host: zeus.theos.com
In-reply-to: tls@panix.com's message of 15 Feb 1997 22:40:59 -0500
Xref: euryale.cc.adfa.oz.au comp.unix.bsd.netbsd.misc:5382 comp.security.unix:31766

In article <5e5vkb$d89@panix2.panix.com> tls@panix.com (Thor Lancelot Simon) writes:

   You hold OpenBSD up as a paragon of security, and yet integrate critical
   pieces of code such as locore.s without even reading them?!

Really, security has very little to do with a kernel that cold-resets
the machine at boot.  The code wasn't commited until it worked.  That
took a while, of course.

That #ifndef change was designed to cause difficulties.  It succeeded.
I think it is also going to succeed at making the NetBSD project (or
members) look really vendictive.

The issue is not about how we go about integrating NetBSD code.  The
issue is how NetBSD goes about trying to make it harder for us to
integrate the code.

   I hate to think just what might be lurking in all those FSF tools that OpenBSD
   ships wholesale, unmodified.  Or any of the other myriad new code that OpenBSD
   has integrated from any number of external sources?

You are making a lot of stories up and discreding a lot of hard work
by a lot of people.  OpenBSD members are not discrediting the hard
work of NetBSD members -- we incorporate changes from all camps and we
give credit where we can.

I just having a terrible time dealing with your lies, red herrings,
suggestions of bad work, and thus the continual slander of the hard
work people in this team are doing here!

I also find your suggestion that Cygnus employees or FSF people would
go through the same kinds of efforts Chris Demetriou went through
absolutely laughable.  Are you sure you want to be making such a
suggestion?

We never expected such an act of sabotage from Chris Demetriou, and
moreover we never expected that after complaints had been made to
NetBSD core members about this issue, it still took weeks to get it
fixed.  By the time it was fixed many developers in the Linux camp
knew about it already.

Speaking of Linux, I have to go do some hacking.  Due to cooperation,
I am about to apply a networking patch sent to me by a Linux
developer.  Too bad people in the *BSD community can't cooperate as
well as this.  Hmm, wait, perhaps I should check if this patch David
Miller sent me isn't perhaps gonna make my kernels crash! ;-)
--
This space not left unintentionally unblank.		deraadt@theos.com
www.OpenBSD.org -- We're fixing security problems so you can sleep at night.