1. I didn't make the original statement, Kenny did.
2. Where did you get the idea that he implied one of the Sendmail
developers found the bug? To quote: "A vulnerability was discovered and
less than a week later there is a solution to it?"
Read my note again - you don't have to be the developer to find the hole.
And it doesn't matter why or how he found it. And no, I don't know if he
tried to find the bug in qmail or not. Nor do I care, because that's not
what I run (actually, I run exim). All I note is that the bug was found.
And fixed. In one week. Because it was Open Source.
jeff
ps: I'm off of this discussion. I refuse to take part in another flame
war over this.
"Tony Lambiris" said:
>> And your point is?
>> (for those who are impaired - one of the advantages of Open Source is
that
>> you're NOT limited to just the maintainers to look at the code, ANYONE
can
>> find and fix bugs).
>
>My point is you were implying that one of the Sendmail developers found
the
>bug, when in fact it was found by the person who wrote the article. How do
>you know he tried looking for that bug in qmail, and couldn't find one?
The
>only reason the bug was found, is because he used Sendmail as an example.
If
>he hadn't, Sendmail would still be vulnerable.
>
>
>
**********************************************************
To unsubscribe from this list, send mail to
[EMAIL PROTECTED] with the following text in the
*body* (*not* the subject line) of the letter:
unsubscribe gnhlug
**********************************************************
