X-Spam-Check-By: sourceware.org Message-ID: <44988794.1020208@cygwin.com> Date: Tue, 20 Jun 2006 19:41:08 -0400 From: "Larry Hall (Cygwin)" Reply-To: cygwin AT cygwin DOT com User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.8) Gecko/20060112 Fedora/1.5-1.fc4.remi Thunderbird/1.5 Mnenhy/0.7.4.0 MIME-Version: 1.0 To: cygwin AT cygwin DOT com Subject: Re: Security Vulnerabilities References: In-Reply-To: Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Mailing-List: contact cygwin-help AT cygwin DOT com; run by ezmlm List-Subscribe: List-Archive: List-Post: List-Help: , Sender: cygwin-owner AT cygwin DOT com Mail-Followup-To: cygwin AT cygwin DOT com Delivered-To: mailing list cygwin AT cygwin DOT com Brian Hansen wrote: > Hi, > > I'm trying to use cygwin at work, but the network administrator can't > approve it unless I can verify that the source code contains no obvious > signs of malicious code, back doors, Trojans, etc. I am fully confident > that these kinds of things would not be found in an open-source project > (because it would be so obvious), but I'm not able to analyze the source > code myself. The advantages of using cygwin for me at work are huge, > but I'm stuck unless someone can point me in the right direction. Is > anyone aware of a good way for me to prove that cygwin is secure to my > network admin? Any help would be greatly appreciated. Thanks, Prove? Who can prove anything is secure to anyone? Can you prove Windows is secure to him? Can he to you? Irrational statements aside, did you look at the FAQ? That's as good as you're going to get, which should be more than adequate for your needs. -- Larry Hall http://www.rfk.com RFK Partners, Inc. (508) 893-9779 - RFK Office 838 Washington Street (508) 893-9889 - FAX Holliston, MA 01746 -- Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple Problem reports: http://cygwin.com/problems.html Documentation: http://cygwin.com/docs.html FAQ: http://cygwin.com/faq/