Re: Debian Server Compromise -- A Fire Drill ??

To: debian-user@lists.debian.org
Subject: Re: Debian Server Compromise -- A Fire Drill ??
From: Tom <tb.31123.nospam@comcast.net>
Date: Thu, 4 Dec 2003 08:43:55 -0800
Message-id: <[🔎] 20031204164355.GB14387@comcast.net>
Mail-followup-to: debian-user@lists.debian.org
In-reply-to: <[🔎] 87wu9cftkf.fsf@toncho.dhh.gt.org>
References: <[🔎] 5.2.1.1.0.20031204062446.02d7ec90@mail.gain.com> <[🔎] 7iad684q1g.fsf@enark.csis.hku.hk> <[🔎] 87wu9cftkf.fsf@toncho.dhh.gt.org>

On Thu, Dec 04, 2003 at 10:15:12AM -0600, John Hasler wrote:

> ...  That's why the kernel
> developers thought it was just an ordinary bug: they could see no way to
> exploit it.

That statement is somewhat disconcerting.  The hypothesis is that many 
eyes detect secure bugs, and here is clear case evidence contradicting 
that hypothesis.

One must assume there are more bugs in this class.

Reply to:

Follow-Ups:
- Re: Debian Server Compromise -- A Fire Drill ??
  - From: Johannes Zarl <johannes.zarl@ahl.uni-linz.ac.at>

References:
- Debian Server Compromise -- A Fire Drill ??
  - From: Dave <dmq@gci-net.com>
- Re: Debian Server Compromise -- A Fire Drill ??
  - From: Isaac To <kkto@csis.hku.hk>
- Re: Debian Server Compromise -- A Fire Drill ??
  - From: John Hasler <john@dhh.gt.org>

Prev by Date: Re: Gentoo compromised too
Next by Date: Re: Recognizing URL's in Mutt
Previous by thread: Re: Debian Server Compromise -- A Fire Drill ??
Next by thread: Re: Debian Server Compromise -- A Fire Drill ??
Index(es):
- Date
- Thread