Date: Mon, 24 Jun 2002 20:03:08 -0600 From: Theo de Raadt <deraadt@cvs.openbsd.org> To: Ted Cabeen <secabeen@pobox.com> Cc: "Jacques A. Vidrine" <nectar@FreeBSD.ORG>, freebsd-security@FreeBSD.ORG Subject: Re: Hogwash Message-ID: <200206250203.g5P238LJ002003@cvs.openbsd.org> In-Reply-To: Your message of "24 Jun 2002 19:00:13 PDT." <87sn3c6rte.fsf@gray.impulse.net>
next in thread | previous in thread | raw e-mail | index | archive | help
> I for one, appreciate the early notification. It allows me to upgrade > or firewall important machines. That said, the initial warning was a > little vague. Something that was clearer yet still provided little > information to the blackhats would have been better. In particular, I > would have liked a more clear statement of the severity of the > problem. From the original email it's not clear if the vulnerability > is root or user level, and whether or not it has been successfully > exploited yet. Of course, it's possible that when the message was > written, that wasn't known yet, and if so then fine. Regardless, I > hope that you will post further updates as you learn more about the > extent of the problem. I'm not giving away any hints. Assume the worst and do the upgrade, and if you dislike the way I handled this, don't buy me that beer later. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200206250203.g5P238LJ002003>