Am Dienstag, 23. August 2005 01:33 CEST schrieb Theo de Raadt: [*snip lot of interesting stuff beond my scope*]
> We ask our users to help us uncover and fix more of these bugs in > applications. Some will even be exploitable. Instead of saying that > OpenBSD is busted in this regard, please realize that the software > which is crashing is showing how shoddily it was written. Then help > us fix it. For everyone.. not just OpenBSD users. I really like the idea you're describing here. It sounds really beneficial for everyone who doesn't want to play with various implementations to find out the one which works for him (is secure enough), but to have a standardized system wich one can higly rely on; Without patching, recompiling aso. My header blabs my favourite OS, but not for security related systems. And in my opinion you're doing an important step towards best security one can have with still acceptable interoperatibility! I'd guess your users won't be upset because several new(in fact very old) bugs causes crashes, they'll appreciate your foresight. Not to mention the authors of the code;) Best regards -Harry [demime 1.01d removed an attachment of type application/pgp-signature]
