On Fri, Nov 10, 2000 at 03:16:35PM +0000, David Brownlee wrote:
> 	Maybe we should have a note in the FAQ as to why we don't
> 	have the feature - anyone care to write up all the reasons?

I plan to package it tonight as misc/randompid so I can reply to Hubert in
tech-pkg ;-)

> On Fri, 10 Nov 2000 jchacon@genuity.net wrote:
> > The fact is, it buys you nothing. I can still attack against the pid because
> > the attacked program was never fixed. (it's not as if the pseduo-random code
> > isn't something someone can't analyze).
> >
> > So what you end up with here is "I feel better, my system is more secure!"
> > when in reality it's no more secure than before for any reasonably bright
> > attacker. i.e. marketing fluff.

Precisely why I said:

> > >Then someone can
> > >
> > >a) Have the feature
> > >b) Know why it's not in the base system
> > >c) Understand why it was done that way.

And (a) - only for the sake of being able to say "Yes, you can do that easily
with NetBSD - though if you think you want that, perhaps there's something
you need to understand more thoroughly first..."

-- 
David Maxwell, david@vex.net|david@maxwell.net --> Mastery of UNIX, like
mastery of language, offers real freedom. The price of freedom is always dear,
but there's no substitute. Personally, I'd rather pay for my freedom than live
in a bitmapped, pop-up-happy dungeon like NT. - Thomas Scoville