Web Site Usability
Charles Swiger
cswiger at mac.com
Mon Nov 10 16:35:32 UTC 2003
On Nov 10, 2003, at 10:55 AM, Mr.Arlen Britton wrote:
> Your site needs some work to make it usable for the average person,
> instead of the system administrators of these systems. For example, if
> one were looking for security patches or vulnerabilities for Mac OS X,
> there seems no way to search for them; I tried and got no results that
> identified anything this way.
You're searching for MacOS X security holes on www.freebsd.org? This
counts as "operator error", not a problem with the FreeBSD web site.
> At the same time, if you have a patch for the specific vulnerabilities
> in question, I don't think it would be too difficult for you to
> identify whether or not the flaw exists in previous versions of an OS
> (and which ones), and whether or not the patch would fix it in those
> versions.
The left nav bar used for primary navigation from www.freebsd.org's
home page includes "Security", which takes you to
http://www.freebsd.org/security/. The security page discusses the
security officers for the FreeBSD project, and then provides a list of
security advisories, sorted by operating system release.
> I think working closely with the OS vendors would enable them to
> provide this information to you.
You're confused: the FreeBSD project is an operating system vendor.
> Finally, you need to find a common method of identifying patches that
> are specific to each OS version, rather than the cryptic names you now
> give them; it certainly doesn't tell me anything at all, so I'm sure a
> much less sophisticated end user would be even more confused.
The list looks like this:
"Advisories are always signed using the FreeBSD Security Officer PGP
key and are archived, along with their associated patches, at our FTP
CERT repository. At the time of this writing, the following advisories
are currently available (note that this list may be a few days out of
date - for the very latest advisories please check the FTP site):
• FreeBSD-SA-03:15.openssh.asc
• FreeBSD-SA-03:18.openssl.asc
• FreeBSD-SA-03:17.procfs.asc
• FreeBSD-SA-03:16.filedesc.asc
• FreeBSD-SA-03:14.arp.asc
• FreeBSD-SA-03:13.sendmail.asc
• FreeBSD-SA-03:12.openssh.asc
• FreeBSD-SA-03:11.sendmail.asc
• FreeBSD-SA-03:10.ibcs2.asc
• FreeBSD-SA-03:09.signal.asc
• FreeBSD-SA-03:08.realpath.asc
FreeBSD 5.1-RELEASE released.
• FreeBSD-SN-03:02.asc
• FreeBSD-SN-03:01.asc
FreeBSD 4.8-RELEASE released.
• FreeBSD-SA-03:07.sendmail.asc
• FreeBSD-SA-03:06.openssl.asc
• FreeBSD-SA-03:05.xdr.asc
• FreeBSD-SA-03:04.sendmail.asc
• FreeBSD-SA-03:03.syncookies.asc
• FreeBSD-SA-03:02.openssl.asc
• FreeBSD-SA-03:01.cvs.asc
[ ... ]"
Is it hard to determine that the security advisiories deal with
OpenSSH, OpenSSL, /procfs, ...sendmail several times, etc?
> When can these changes be made?
If you have specific changes that you believe would help, submit them
as a PR or post them for us to review.
--
-Chuck
More information about the freebsd-doc
mailing list