RE: [ILUG] openssh vulnerability

From: Paul Jakma (paulj at domain alphyra.ie)
Date: Tue 25 Jun 2002 - 18:26:02 IST

• Next message: Colm MacCárthaigh: "Re: [ILUG] openssh vulnerability"
• Previous message: Paul Kelly: "Re: [ILUG] openssh vulnerability"
• In reply to: Aidan Kehoe: "RE: [ILUG] openssh vulnerability"
• Next in thread: Aidan Kehoe: "Re: [ILUG] openssh vulnerability"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
• Mail actions: [ respond to this message ] [ mail a new topic ]

wow.. ilug is getting bitchy these days...

On Tue, 25 Jun 2002, Aidan Kehoe wrote:

> Once details of the bug are released to bugtraq, attempts to exploit
> the bug will increase exponentially.

exactly.

> Advising that a bug exists and
> enabling privsep will prevent an exploit is the responsible thing to
> do, if no specific fix is available.

but, the fix is available! just noone's getting it in advance.

> Do you think he gives a shit[1] whether the wider world moves to
> privsep or not?

by that message of his, he does seem to.

> Saying a security hole exists isn't warning about it? Hmm. I
> disagree.

it doesnt /fix/ it.

> > oh, i do so like to be condescended to.
>
> Keep it up, & it'll happen a whole lot more.

ye gods...

*plonk*

> Bye,
> - Aidan

--paulj

• Next message: Colm MacCárthaigh: "Re: [ILUG] openssh vulnerability"
• Previous message: Paul Kelly: "Re: [ILUG] openssh vulnerability"
• In reply to: Aidan Kehoe: "RE: [ILUG] openssh vulnerability"
• Next in thread: Aidan Kehoe: "Re: [ILUG] openssh vulnerability"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
• Mail actions: [ respond to this message ] [ mail a new topic ]

This archive was generated by hypermail 2.1.6 : Thu 06 Feb 2003 - 13:17:32 GMT