they openly list what versions of what components they use. you would have to reference the individual authors of said components to find their history of vulnerabilities. as for the pfSense people, they have a habit of working and fixing issues with the core of pfSense pretty soon after you notify them of the issue. its not uncommon for the FIRST response to a problem report to be "try the snapshot in 2 hours after the server does its scheduled rebuild" meaning they just incorporated a fix into the code. try and get THAT level of service from cisco. -Sean
> To: [email protected]> From: [EMAIL PROTECTED]> Date: Wed, 11 Jul 2007 > 14:42:10 -0400> Subject: [pfSense Support] Re: Vulnerabities?> > Bill > Marquette wrote:> > Please clarify. If you are referring to IPS, you get what > you pay for> > (and in the case of PIX, I'm not convinced you actually do get > what> > you paid for).> > Is there an history of security holes in these > components of PfSense > (PF, IPSec-Tools, QOS)?> > Ugo> > > > ---------------------------------------------------------------------> To > unsubscribe, e-mail: [EMAIL PROTECTED]> For additional commands, e-mail: > [EMAIL PROTECTED]> _________________________________________________________________ Missed the show? Watch videos of the Live Earth Concert on MSN. http://liveearth.msn.com
