Re: making Debian secure by default

To: Debian Users <debian-user@lists.debian.org>
Subject: Re: making Debian secure by default
From: Charles Curley <charlescurley@charlescurley.com>
Date: Mon, 1 Apr 2024 15:54:29 -0600
Message-id: <[🔎] 20240401155429.76bf539b@tsalmoth>
In-reply-to: <[🔎] ZgsETVjdSsOiBQcL@mail.bitfolk.com>
References: <ZgSljhflfCtsnnCq@mail.bitfolk.com> <CAD8GWsswLPH327tvj64HkWuMfayXczJyyviSk9Um2CAHHjoovg@mail.gmail.com> <ZgVw+HFmMseszOcm@mail.bitfolk.com> <ZgWLmLCjcOTqhk2a@wooledge.org> <slrnv0bba0.1hf.curty@einstein.electron.org> <Zgbx8L7m3k92QWzm@mail.bitfolk.com> <20240329172333.7439c34e@jrenewsid.jretrading.com> <[🔎] CAJmb-Y=M67E3PDrgzYkHt98gbzef5-0+2q2RubwhGurxkaH1-g@mail.gmail.com> <[🔎] ZgoRo7jKKXSEV7Ai@mail.bitfolk.com> <[🔎] 20240401083337.f7yu4acqoxyyfgvs@n0nb.us> <[🔎] ZgsETVjdSsOiBQcL@mail.bitfolk.com>

On Mon, 1 Apr 2024 19:00:29 +0000
Andy Smith <andy@strugglers.net> wrote:

> In my view a great example of the "people other than me just need to
> get good" fallacy merged with the group of people predisposed to
> hate systemd.
> 
> It could have been any direct or indirect dependency of sshd here.
> I'm quite sure almost none of them have the required resources and
> processes to detect something like this.

Easy, now. No-one is attacking systemd, and I don't think anyone wanted
to start a systemd war. This could also have happened under System V
initialization.

I have no doubt that this sort of thing has happened in the past, and I
fully expect it will happen again in the future. However, the defect
has been caught and repaired. The system for dealing with
vulnerabilities is working, if not perfectly. The question now is: what
lessons can we learn from it.

-- 
Does anybody read signatures any more?

https://charlescurley.com
https://charlescurley.com/blog/

Reply to:

Follow-Ups:
- Re: making Debian secure by default
  - From: Jeffrey Walton <noloader@gmail.com>
- Re: making Debian secure by default
  - From: Nate Bargmann <n0nb@n0nb.us>

References:
- Re: making Debian secure by default
  - From: Nicholas Geovanis <nickgeovanis@gmail.com>
- Re: making Debian secure by default
  - From: Andy Smith <andy@strugglers.net>
- Re: making Debian secure by default
  - From: Nate Bargmann <n0nb@n0nb.us>
- Re: making Debian secure by default
  - From: Andy Smith <andy@strugglers.net>

Prev by Date: Re: making Debian secure by default
Next by Date: Re: making Debian secure by default
Previous by thread: Re: making Debian secure by default
Next by thread: Re: making Debian secure by default
Index(es):
- Date
- Thread