Full Disclosure mailing list archives

Re: SCO Web Site Vulnerable to Slapper?

From: KF <dotslash () snosoft com>
Date: Tue, 19 Aug 2003 17:33:42 +0000

How about their customers...

I (indirectly) for example am forced to make use of their OS becauseseveral years ago a number of our clients decided to use SCO OpenServer(since it was more stable than M$ products). They (clunky old SCO boxen)are now quite embeded into the day to day operations...


...let me guess they are jackasses for using SCO to begin with. =]

I do certainly agree that they need a good kick in the pants (who everruns them now) to get them on the ball... previous management needed afew teeth yanked out before they understood that I could give a rats assabout a support contract... the security issues that I reported to themwere out of good faith .. take em or leave em. And how dare you tell methat I need to pay for support in order to report a security issue... =]

-KF


Justin Shin wrote:

No I think SCO deserves whatever is coming to them if they really are vulnerable, because they are a bunch of jackasses. I 
don't think anyone can disagree with me here.

-- Justin

-----Original Message-----
From: full-disclosure-admin () lists netsys com
[mailto:full-disclosure-admin () lists netsys com]On Behalf Of KF
Sent: Tuesday, August 19, 2003 5:42 AM
To: Gherkin McDonalds
Cc: full-disclosure () lists netsys com; security () caldera com;
security () sco com
Subject: Re: [Full-disclosure] SCO Web Site Vulnerable to Slapper?

did you talk to security () caldera com? probably a better place to startthan a full-disclosure mailing list.

-KF

Gherkin McDonalds wrote:

They seem to be running Apache/1.3.14 (Unix)
mod_ssl/2.7.1 OpenSSL/0.9.6 PHP/4.3.2-RC on Linux,
which,
if I have my facts straight, is vulnerable to
<URL:http://www.cert.org/advisories/CA-2002-27.html>.

Am I correct?

__________________________________
Do you Yahoo!?
Yahoo! SiteBuilder - Free, easy-to-use web site design software
http://sitebuilder.yahoo.com
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html



_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Current thread:

SCO Web Site Vulnerable to Slapper? Gherkin McDonalds (Aug 19)
- Re: SCO Web Site Vulnerable to Slapper? Larry W. Cashdollar (Aug 19)
- Re: SCO Web Site Vulnerable to Slapper? KF (Aug 19)
  - Re: SCO Web Site Vulnerable to Slapper? Andreas Gietl (Aug 19)
  - Re: SCO Web Site Vulnerable to Slapper? Jeremiah Cornelius (Aug 19)
    - Re: SCO Web Site Vulnerable to Slapper? KF (Aug 19)
    - RE: SCO Web Site Vulnerable to Slapper? Drew Copley (Aug 19)
    - Re: SCO Web Site Vulnerable to Slapper? Anthony Saffer (Aug 19)
  - RE: SCO Web Site Vulnerable to Slapper? Justin Shin (Aug 19)
    - Re: SCO Web Site Vulnerable to Slapper? Jeremiah Cornelius (Aug 19)
    - Re: SCO Web Site Vulnerable to Slapper? KF (Aug 19)
    - RE: SCO Web Site Vulnerable to Slapper? Dan Stromberg (Aug 19)
    - Re: SCO Web Site Vulnerable to Slapper? Jeremiah Cornelius (Aug 19)