Dailydave mailing list archives
Re: The security circus.
From: "Jeremiah Johnson" <jeremiah.johnson () gmail com>
Date: Mon, 18 Aug 2008 15:14:07 -0500
It's because of Linus' recent statement: http://kerneltrap.org/Linux/Security_Bugs_and_Full_Disclosure This means that vendors that don't carefully watch upstream will miss a security issue and have their repositories owned and backdoor'd, which makes your fedora system backdoor'd on the next install or update. -miah On Sat, Aug 16, 2008 at 11:34 AM, Adrien Krunch Kunysz <adrien () kunysz be> wrote:
On Fri, Aug 15, 2008 at 10:24:36PM -0400, Dave Aitel wrote:Perhaps Linus should reconsider his policy on how he treats security items? Sometimes you're in the circus, whether you like it or not. https://www.redhat.com/archives/fedora-announce-list/2008-August/msg00008.htmlI have trouble to understand what this have to do with security bugs disclosure. This sounds more like a problem with system administrators not having designed their infrastructure properly. But of course this is just speculation as we don't have enough information at the moment to understand what happened and why. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) iD8DBQFIpwGFKLX03ZSPZGwRAjtvAJ95hC+4zXAgtKayILoyBuVeuxluGACZAZCO Bin4lQyTLqLDumzAabWp4yQ= =yI0Z -----END PGP SIGNATURE-----
_______________________________________________ Dailydave mailing list Dailydave () lists immunitysec com http://lists.immunitysec.com/mailman/listinfo/dailydave
Current thread:
- The security circus. Dave Aitel (Aug 15)
- Re: The security circus. Adrien Krunch Kunysz (Aug 16)
- Re: The security circus. Jeremiah Johnson (Aug 18)
- Re: The security circus. Peter Busser (Aug 19)
- Re: The security circus. Dave Korn (Aug 19)
- Re: The security circus. Jeremiah Johnson (Aug 18)
- Re: The security circus. Adrien Krunch Kunysz (Aug 16)