lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list] 
Date: Wed, 3 Sep 2003 15:02:33 -0700 (PDT)
From: Aaron Cheek <aaron_cheek@...oo.com>
To: pauls@...allas.edu
Cc: stefano.zanero@...e.org, BUGTRAQ@...urityfocus.com
Subject: Re: Windows Update: A single point of failure for the world's economy?


> More of a risk than up2date for RedHat or emerge -u 
> system for Gentoo?  Or cvsup for *BSD?

Certainly!!! For Red Hat (and all the major distros), 
you have a zillion mirrors all over the world, and,
additionally, you can in extremely straightforward way
(e.g. wget -r) bulk download all the patches from any
of those mirrors and apply them in a glitch (rpm -F).

Even if DoS attacks against the official names, IPs or
whatever take place, you always have your "local"
mirror to download patches from, which will be named
as mymirrorsite.mymirrordomain.mycountry. And if the
guys from RedHat (et al.) are wise enough, they can
set up out of band channels to distribute the patches
to the mirrors in the event of a major DoS attack.

No single point of failure, as you can see.

Aaron

__________________________________
Do you Yahoo!?
Yahoo! SiteBuilder - Free, easy-to-use web site design software
http://sitebuilder.yahoo.com

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ