On 2/16/11 8:12 AM, Keith Lofstrom wrote: > I was thinking about Michael Dexter's BSD presentation last night. > One of my concerns about software is the insertion of logic bombs.
There was an open discussion on this topic and Keith had some good points: monocultures (software or otherwise) are very dangerous if vulnerable; simply look at "slapper" and other Windows viruses that can spread at worse to "only Internet-connected Windows computers". Keith is also right that it is a pain to maintain multiple OS's for the same purpose. I consider the solution to be a focus on POSIX/SUS, not RedHat GNU/Linux, Ubuntu GNU/Linux, *BSD, Solaris, AIX etc... While a bug could be found in the common standard, it is far less likely than any one implementation of that standard. Similarly, stress and security testing suites should be as agnostic as possible and you may recall how SATAN was the hot test to run back in the day. I'm not sure if there is a magic want for this problem, short of sticking to standards. Michael _______________________________________________ PLUG mailing list [email protected] http://lists.pdxlinux.org/mailman/listinfo/plug
