ru.unix.bsd

 
 - RU.UNIX.BSD ------------------------------------------------------------------
 From : Pavel Pokrovsky                      2:5080/191     24 Nov 2000  23:47:16
 To : Peter Didenko
 Subject : DHCP
 -------------------------------------------------------------------------------- 
 

  AK>>> Как мне быть с сабж сервером?
  AK>>> Где взять, как настроить? первый вопрос гораздо актуальнее
  AK>>> второго.
  PP>> чтоб посвежее - www.isc.org, там же по втоpомy вопpосy.
  PD>     Кстати, про ISC и BIND. Hашлась вот такая статеечка :)
  PD> http://www.LinuxSecurity.com/feature_stories/conrad_vixie-1.html
 
 :)
 
 Paul Vixie and David Conrad on BINDv9 and Internet Security
 
 By Dave Wreski 10/3/2000 7:54
 
 LinuxSecurity.com: Do you think Linux has a place in the data center as a secure
 platform for commerce in the state that it's currently in? What do
 you think needs to change with regards to security and Linux? Are there
 any root servers that run Linux or other Open Source platforms?
 
 Paul Vixie: Some versions of Linux have become remarkably mature in the last few
 years. Now that there's a growing stable of companies providing commercial
 support, I think we'll see Linux become a respected component of enterprise
 information management strategies alongside BSD/OS and FreeBSD. Both Linux and
 BSD have already proven their strengths in the front end, and when they filter
 out to the back end I think we'll see the end of the historic ABI/API captivity 
 strategies of the big iron vendors, not to mention Microsoft. I also note that
 Mac OS X is BSD-based. This means we've finally gotten our point across, and
 open source is viable in both the long and immediate term.
 
 David Conrad: Linux most assuredly currently has a place in the data
 center as a secure platform for commerce.  There is a fine line to be
 drawn between usability and security. I personally feel that Linux (or
 rather, the popular distributions) may err on the side of allowing too
 many applications and services to exist and/or default to on. From my
 experience, it is difficult to fully audit contributed code (the BIND
 v8.2 & v8.2.1 NXT bug that has caused such difficulties was a result of a
 bug in code donated to us, ironically enough, from a large firm that
 focuses on computer security) and Linux is, almost by definition,
 contributed code (from FSF, ISC, etc.). Simplifying distributions would
 probably tend to increase security (while possibly decreasing usability,
 at least for somebody).
 
 >Each root server operator makes their own decision about what
 >architecture/OS/nameserver is used. None that I'm aware of run Linux. A
 >couple run FreeBSD, I believe.
 
 LinuxSecurity.com: What are some of the biggest challenges you face when dealing
 with security?
 
 Paul Vixie: No comment comes to mind.
 
 David Conrad: The complexity of the recent IETF standards results in a lot of
 complexity in the code which increases the potential for bugs (security related 
 or otherwise). Standards bloat, in combination with feeping creaturism demanded 
 of us by our funders or users, results in software bloat which is probably our
 most significant challenge.
 
 That's it...
 
 --- Golded 1.1.4.5
  * Origin: suicide is painless, it brings on many changes (2:5080/191)
 
 

Вернуться к списку тем, сортированных по: возрастание даты  уменьшение даты  тема  автор 

Тема:    Автор:    Дата:    DHCP   Alex_K   19 Nov 2000 10:19:20   DHCP   Juriy Goloveshkin   19 Nov 2000 13:03:32   Re: DHCP   Alex_K   22 Nov 2000 10:10:31   Re: DHCP   Serge Y. Zhukov   19 Nov 2000 15:06:26   Re: DHCP   Eduard V. Goroshko   20 Nov 2000 18:35:34   DHCP   Pavel Pokrovsky   22 Nov 2000 00:18:52   Re: DHCP   Peter Didenko   23 Nov 2000 15:34:30   DHCP   Pavel Pokrovsky   24 Nov 2000 23:47:16