According to Anders Holm:
>> I've now dished out my share of flaming on this. I'd rather spend my time,
> and the lists resources in trying to see what happens and if I could do
> anything to help. The fact remains, there is a _possible_ vulnerability in
> OpenSSH. Why not try to help fixing it instead of flaming the people who let
> you know about it? In that way we'd all benefit. Who benefits by this?
Well, we can't until Theo tells us what it is. I thought that the point of
full disclosure was that you assume the black hats know, and you let the
white hats know as quickly as possible so that they can fix the problem.
But, you know, I'm running on far too many assumptions already this morning.
Cheers,
Waider.
--
waider at dspsrv.com / Chances are I'm not at home right now.
Maintained by the ILUG website team. The aim of Linux.ie is to
support and help commercial and private users of Linux in Ireland. You can
display ILUG news in your own webpages, read backend
information to find out how. Networking services kindly provided by HEAnet, server kindly donated by
Dell. Linux is a trademark of Linus Torvalds,
used with permission. No penguins were harmed in the production or maintenance
of this highly praised website. Looking for the
Indian Linux Users' Group? Try here. If you've read all this and aren't a lawyer: you should be!
