>>>>> "Suresh" == Suresh Ramasubramanian <[EMAIL PROTECTED]> writes:
Suresh> more - looks like the usual Theo deRaadt v/s the world
Suresh> flamewar has started yet again over this .. :)
Uh, this is old news. OpenSSH 3.4p1 was released specifically to fix
the problem mentioned in this article.
And yes, many people complained about Theo De Raadt's rather
high-handed behaviour in effectively telling everyone: `There's a bug
in OpenSSH. You need to tell me how to implement X on your system in
order for the bug not to bite your users. No, I will not tell you
what the bug is. help($me) || die()'
The X in question was the privilege separation code IIRC. Anyhow,
it's all over and done with now.
Regards,
-- Raju
Suresh> http://www.vnunet.com/News/1132962
Suresh> Developers issue OpenSSH alert By James Middleton
Suresh> [25-06-2002] Patch not expected until Friday Open source
Suresh> developers yesterday warned of a significant vulnerability
Suresh> in OpenSSH, a tool that ships with many Linux and Unix
Suresh> flavours. The details of the hole have not been made
Suresh> public because a patch is not yet available, but the
Suresh> secrecy of the developers has caused a schism in the open
Suresh> source community.
Suresh> [snip]
--
Raju Mathur [EMAIL PROTECTED] http://kandalaya.org/
It is the mind that moves
-------------------------------------------------------
This sf.net email is sponsored by:ThinkGeek
Welcome to geek heaven.
http://thinkgeek.com/sf
_______________________________________________
linux-india-help mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/linux-india-help
