|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: [Full-Disclosure] Microsoft Cries Wolf ( again )
From: Shawn McMahon (smcmahon
eiv.com)
Date: Wed Jul 02 2003 - 07:21:50 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
On Tue, Jul 01, 2003 at 05:58:10PM -0500, Schmehl, Paul L said:
>
> before code is released. (OpenBSD has been doing this for years, and
> look at the results.)
Trojaned release of OpenSSH because the project leader ran a
horribly-coded IRC client on the CVS server? A string of exploits in
OpenSSH?
What they're doing is necessary, but it's not sufficient. Call it a
good step one. (And lest anybody think I'm flaming OpenBSD here, it's a
step one that hardly anybody else has taken. They're way ahead of the
curve.)
Step two is probably reducing complexity, but I'm a weak coder so
I'll shut the eff up now.
--
Shawn McMahon | Let every nation know, whether it wishes us well or ill,
EIV Consulting | that we shall pay any price, bear any burden, meet any
UNIX and Linux | hardship, support any friend, oppose any foe, to assure
http://www.eiv.com| the survival and the success of liberty. - JFK
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.0 (GNU/Linux)
iD8DBQE/As5eEcl9bQ0RMt0RAum6AJ0QExPkI8WPrXsnm+4ICeotSIIiDwCfbPpt
bV6Fqx8gFsD4IeALU67GXHI=
=npvd
-----END PGP SIGNATURE-----
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]