lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list] 
From: pauls at utdallas.edu (Schmehl, Paul L)
Subject: The last word on the Linux Slapper worm

I think adding the text you proposed below would be appropriate. :-)

Paul Schmehl (pauls@...allas.edu)
Department Coordinator
The University of Texas at Dallas
AVIEN Founding Member
http://www.utdallas.edu/~pauls/


> -----Original Message-----
> From: Ben Laurie [mailto:ben@...roup.co.uk] 
> Sent: Thursday, September 26, 2002 2:53 AM
> To: Schmehl, Paul L
> Cc: John.Airey@...b.org.uk; full-disclosure@...ts.netsys.com
> Subject: Re: [Full-Disclosure] The last word on the Linux Slapper worm
> 
> As I've pointed out elsewhere, patching old versions without changing 
> the version number is so stupid it leaves me boggling. But I guess in 
> future I'll write into advisories: "warning - your vendor may 
> be such a 
> moron that you can't tell whether you are vulnerable or not by the 
> version number, so I advise building from source or switching to a 
> vendor with a clue".

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ