...that OpenBSD is not vulnerable because it doesn't use PAM itself. It uses BSD-auth(imported from BSD/OS I think) as its authentication system.
The advisory says that PAM should be disabled by default. I think that it isn't a very realistic petition. Most of (medium|large)-scale Unix/linux deployments depends on pam modules like pam_ldap, pam_krb, etc...
We started using FreeBSD. It's stable, doesn't cost a bundle, and isn't dependent on.rpm's. Just my thought.
Great election for the server side (and personal workstation), but what about the workstation/desktop? FreeBSD can not be a LDAP/NIS+ client already, which invalidates it for that use. So, what to install in that boxes? GPL'ed Red Hat is what has been elected in my organization, but now we have a problem since Red Hat dropped Alpha support. We are looking a replacement for those machines....
But I have to admit that if FreeBSD gets a good LDAP and Java support, it will be the best solution, I'm sure (well may be not in any case, but in most of them).
If you have a good connection you can do an HTTP/FTP/NFS install . You'll save bandwitdth and CD's. Also, you can do a decent install with just one CD.
I've installed 5.0 this morning(GMT) with no problems (it performs as fine as 4.x!). I think is stable enough for a Workstation (remember, 3 RC's behind), so I recommend you to install this version. Remember that a 4.x-5.x transition will not be easy.
Slashdot Mirror
...that OpenBSD is not vulnerable because it doesn't use PAM itself. It uses BSD-auth(imported from BSD/OS I think) as its authentication system.
The advisory says that PAM should be disabled by default. I think that it isn't a very realistic petition. Most of (medium|large)-scale Unix/linux deployments depends on pam modules like pam_ldap, pam_krb, etc...
Great election for the server side (and personal workstation), but what about the workstation/desktop? FreeBSD can not be a LDAP/NIS+ client already, which invalidates it for that use. So, what to install in that boxes? GPL'ed Red Hat is what has been elected in my organization, but now we have a problem since Red Hat dropped Alpha support. We are looking a replacement for those machines....
But I have to admit that if FreeBSD gets a good LDAP and Java support, it will be the best solution, I'm sure (well may be not in any case, but in most of them).
If you have a good connection you can do an HTTP/FTP/NFS install . You'll save bandwitdth and CD's. Also, you can do a decent install with just one CD.
I've installed 5.0 this morning(GMT) with no problems (it performs as fine as 4.x!). I think is stable enough for a Workstation (remember, 3 RC's behind), so I recommend you to install this version. Remember that a 4.x-5.x transition will not be easy.
My University recently changed to your Webmail system, and I have to admit that is a great product.
You made a very good work. Congratulations.