Full Disclosure mailing list archives
Re: openssh remote exploit
From: Peter Busser <peter () trusteddebian org>
Date: Fri, 19 Sep 2003 14:52:55 +0200
Hi!
Really ? I think you'll find that there are quite a number of people, aside from myself, who think that the "1 exploit in X years" is on one end of it as misleading and the other end, a lie, excluding this current openssh problem.
It's a statistic. 'nuf said.
Some people, like you, believe openbsd/openssh is the best software that exists today. Others don't and I'm sure there are examples and counter examples to prove either side. My only advice is try not to take criticism of it personally.
Q. What is the difference between a used car sales person and a computer sales person? A. The used car sales person knows when he is lieing. Decades of research on computer security have not provided any proof for the believe that you can turn an insecure operating system (like UNIX) into a highly secure system. It is like transforming a family car into an F1 racing car by putting an F1 motor in and attaching spoilers. Somehow I don't think such a car will win any race. Yet in the IT security field, a number of people claim that it is possible and that you can win every race too. Groetjee, Peter Busser -- The Adamantix Project Taking trustworthy software out of the labs, and into the real world http://www.adamantix.org/ _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
Current thread:
- Re: openssh remote exploit, (continued)
- Re: openssh remote exploit Timo Sirainen (Sep 16)
- Re: openssh remote exploit Adam Dyga (Sep 17)
- Re: openssh remote exploit auto64746 (Sep 16)
- Re: openssh remote exploit Diode Trnasistor (Sep 16)
- Re: openssh remote exploit Darren Reed (Sep 16)
- RE: openssh remote exploit Edward W. Ray (Sep 16)
- Re: openssh remote exploit Darren Reed (Sep 16)
- Re: openssh remote exploit Mike Griffin (Sep 16)
- Re: openssh remote exploit KF (Sep 16)
- Re: openssh remote exploit Henning Brauer (Sep 16)
- Re: openssh remote exploit Peter Busser (Sep 19)
- Re: openssh remote exploit petard (Sep 16)
- Re: openssh remote exploit Darren Reed (Sep 16)
- Re: openssh remote exploit Blue Boar (Sep 16)
- Re: openssh remote exploit Richard Johnson (Sep 17)
- Re: openssh remote exploit petard (Sep 17)
- Re: openssh remote exploit Shawn McMahon (Sep 17)
- Re: openssh remote exploit Richard Johnson (Sep 17)
- AMDPatchB & InstallStub Michael Linke (Sep 17)
- Re: AMDPatchB & InstallStub phlox (Sep 17)
- AW: AMDPatchB & InstallStub Michael Linke (Sep 17)