Date: Sat, 19 Oct 1996 01:50:02 -0500 (EST) From: "John S. Dyson" <toor@dyson.iquest.net> To: deraadt@theos.com (Theo de Raadt) Cc: dyson@freebsd.org, downsj@teeny.org, ache@nagual.ru, dg@root.com, gritton@byu.edu, freebsd-hackers@freebsd.org, tech-userlevel@netbsd.org, misc@openbsd.org Subject: Re: cvs commit: src/lib/libc/db/hash hash_buf.c Message-ID: <199610190650.BAA02780@dyson.iquest.net> In-Reply-To: <199610190634.AAA29148@zeus.theos.com> from "Theo de Raadt" at Oct 19, 96 00:34:14 am
next in thread | previous in thread | raw e-mail | index | archive | help
> > > > Ah, yes. I've been watching this thread with some amount of amusement, as > > > have other OpenBSD developers. > > > > > > Yes, please back it out. I would rather have OpenBSD remain the most secure > > > version of UNIX that money can't buy. > > > > > > > The THING about OpenBSD security is pretty much unsubstantiated. I think > > that it is kind of funny (odd)... Very few outside of OpenBSD have been > > provided with any kind of digest as to the security fixes... Sounds like > > marketing claims to me!!! > > > > Additionally, that "fix" was simply the wrong thing to do, and there are > > better ways to deal with the problem. If the zeroing the buffer in db > > was typical of the ways that others are "fixing" security, well... Sad... :-(. > > Ah John, ever eager to continue a flame war aren't you. > Please refer to the message that I commented on... I am NOT flaming, simply stating an outsiders view of the unsubstantiated OpenBSD position. BTW, what flame war? Why are you bringing flamage up? John dyson@freebsd.org -- BSD with a heart, we offer to help.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199610190650.BAA02780>