On Mon, May 22, 2000 at 04:15:08PM +0200, Denis HAVLIK wrote:
-> We differ from redhat on many points, and this reflects on different
-> security problems. We claim to be COMPATIBLE, not "based on" RedHat, but I
-> understand your problem:
->
-> You cannot be sure if we looked at problem and found out that it does not
-> affect us, or if we are just "lazy bastards who do not give a damn about
-> the security" and let you run unsecure systems because we do not check
-> things.
->
-> Well, we are not lazy bastards, we follow the bugtraq, and we check
-> security reports issued by other Linux companies: yet
-> mistakes are always possible. This is the reason why I keep arguing with
-> Gael that we should post "not here" messages for security problems which
-> do not concern us.
Please do post "not a problem and here's why" messages. This gives the
users affirmative evidence that you have examined the problem. Negative
evidence, such as not saying anything, can mean you have examined the
problem. It can also mean the problem slipped throught the cracks, was
deliberately ignored out of spite, or any of a number of other failures.
--
-- C^2
No windows were crashed in the making of this email.
Looking for fine software and/or web pages?
http://w3.trib.com/~ccurley
