OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
 
Subject: RE: [suse-security] SuSE Security Announcement - make-3.77
From: cogNiTioN (cognitionbigfoot.com)
Date: Mon Feb 28 2000 - 05:02:12 CST

On Sun, 27 Feb 2000, Daniel R. Gilliam wrote:

> Following the same logic, it's not always as easy to protect your system if
> there is a known hole, as it is for you to fix the security of your house in
> the event of a broken lock. In fact, you assume that you always can fix it
> yourself, or find a way to get around the bug until it is fixed. But let's
> face it, sometimes there's really nothing you CAN do until the vendors
> release a fix. So, on those lines, I still hold that it's better to be
> quiet than it is to let all of the hackers know.
 
If you can't fix it, or make your system more secure/more closely
monitored, then you could stop running the effected service, or take the
box down completely, as a worse case senario. If you are unaware of it,
then there is NOTHING you can do.

---------------------------------------------------------------------
To unsubscribe, e-mail: suse-security-unsubscribesuse.com
For additional commands, e-mail: suse-security-helpsuse.com