lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list] 
From: fd at rshell.org (Guy Cohen)
Subject: CERT..(the linux ssl issue) CA-2002-027

On Sat, Sep 14, 2002 at 04:13:09PM -0400, Len Rose wrote:
> 
> You know, CERT is performing a disservice to the community 
> since there is absolutely no reason that someone with a clue 
> cannot simply change some of the shell code and use it against
> any other unix variant. 

I tend to agree. The first question the popped in my mind was, is CERT
job to explain what's the current problem about, or is it to explain
what *could* be a problem. I got the answer from their home page:

   "Our information ranges from protecting your system
   against potential problems to reacting to current problems to
   predicting future problems."

However, since bugtraq is hardly functioning atm, the service they provide
is quite valuable.


-- 
Unix Administration,       |      http://www.unixadmin.co.il
locally and remotely.      |      support@...xadmin.co.il
Planning, installation,    |      Phone: 972-3-6201373
support & upgrades.        |      Location: Unrestricted

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ