Uh, isn't that command a bit dangerous? Downloading a script from a possibly untrusted website and executing it as root without even reading it?! Not a good idea.
If this continues the crackers only need to compromise one computer-- the packager's webserver-- to get into a whole load of users' boxes...
He mentions that it might be worthwhile to compare the results obtained for Redhat Linux to other distros, plus OSes like FreeBSD.
This could be quite interesting, but wouldn't really be a meaningful comparison. FreeBSD's/usr/src contains only the core OS source: the nearest equivalent to Redhat is FreeBSD plus a ports tree with 'make patch' or the like run on every port... It could get quite big then.
Thus I think comparisons would only be meaningful between Linux distributions with similar amounts of bloat^H^H^H^H^H included software (ahem):)
In case anybody out there has a FreeBSD system which needs some tuning, I would advise reading the tuning(7) man page, in recent -STABLE and -CURRENT (after around the start of June). Those of you without a copy can fetch one from the CVS web interface:
Theo was probably right to exclude IPFilter from OpenBSD. It certainly doesn't fit in with the project's philosophy.
They may well come up with something better to replace it... it'll certainly help to have an alternative BSD-licensed firewall for *BSD. I use IPFilter on my FreeBSD box because I didn't like ipfw all that much when I tried it.
Hopefully they'll include kernel-land NAT, and also maintain some compatibility with the old IPFilter configuration file formats.
Slashdot Mirror
Uh, isn't that command a bit dangerous? Downloading a script from a possibly untrusted website and executing it as root without even reading it?! Not a good idea.
If this continues the crackers only need to compromise one computer-- the packager's webserver-- to get into a whole load of users' boxes...
I know this is slightly offtopic...
/usr/src contains only the core OS source: the nearest equivalent to Redhat is FreeBSD plus a ports tree with 'make patch' or the like run on every port... It could get quite big then.
:)
He mentions that it might be worthwhile to compare the results obtained for Redhat Linux to other distros, plus OSes like FreeBSD.
This could be quite interesting, but wouldn't really be a meaningful comparison. FreeBSD's
Thus I think comparisons would only be meaningful between Linux distributions with similar amounts of bloat^H^H^H^H^H included software (ahem)
This one should work.
In case anybody out there has a FreeBSD system which needs some tuning, I would advise reading the tuning(7) man page, in recent -STABLE and -CURRENT (after around the start of June). Those of you without a copy can fetch one from the CVS web interface:
h are/man/man7/tuning.7">http://www.FreeBSD.org/c gi/cvsweb.cgi/src/share/ma n/man7/tuning.7</a>
<a href="http://www.FreeBSD.org/cgi/cvsweb.cgi/src/s
Theo was probably right to exclude IPFilter from OpenBSD. It certainly doesn't fit in with the project's philosophy.
They may well come up with something better to replace it... it'll certainly help to have an alternative BSD-licensed firewall for *BSD. I use IPFilter on my FreeBSD box because I didn't like ipfw all that much when I tried it.
Hopefully they'll include kernel-land NAT, and also maintain some compatibility with the old IPFilter configuration file formats.