From owner-freebsd-security Mon Jul 20 11:45:47 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id LAA20162 for freebsd-security-outgoing; Mon, 20 Jul 1998 11:45:47 -0700 (PDT) (envelope-from owner-freebsd-security@FreeBSD.ORG) Received: from lariat.lariat.org (ppp1000.lariat.org@[206.100.185.2]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id LAA20147 for ; Mon, 20 Jul 1998 11:45:45 -0700 (PDT) (envelope-from brett@lariat.org) Received: (from brett@localhost) by lariat.lariat.org (8.8.8/8.8.8) id MAA21839; Mon, 20 Jul 1998 12:45:19 -0600 (MDT) Message-Id: <199807201845.MAA21839@lariat.lariat.org> X-Sender: brett@mail.lariat.org X-Mailer: QUALCOMM Windows Eudora Pro Version 4.0.1 Date: Mon, 20 Jul 1998 12:45:11 -0600 To: "Christopher G. Petrilli" From: Brett Glass Subject: Re: Why is there no info on the QPOPPER hack? Cc: "Gentry A. Bieker" , security@FreeBSD.ORG In-Reply-To: References: <199807201828.MAA21514@lariat.lariat.org> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Reliance on mailing lists such as Bugtraq does not do any more or less to "replace the administrator's brain." Fact is, when a trusted authority says that there's a hole to be closed, I want action. I'm perfectly content to review what happened after the fact. --Brett Glass At 02:34 PM 7/20/98 -0400, Christopher G. Petrilli wrote: >Maybe after 2-3 independent external audits to verify that there are no >exploits would I consider this, but considering the unlikely nature of >this, I think there are better places to invest time and resources than >to replace the administrator's brain. > >Chris To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe security" in the body of the message