Date: Thu, 03 May 2001 11:25:59 +0200 From: Guy Poizat <poizat@partsonline.fr> To: freebsd-security@FreeBSD.ORG Cc: BUGTRAQ@SECURITYFOCUS.COM Subject: Re: What do folks think of this article? Message-ID: <5.0.2.1.0.20010503110648.01a85c68@127.0.0.1> In-Reply-To: <20010502104749.O18676@fw.wintelcom.net> References: <200105021702.LAA24669@lariat.org> <200105021702.LAA24669@lariat.org>
next in thread | previous in thread | raw e-mail | index | archive | help
There's some statements in that article which are subject to criticism. It could be (for instance) understood as "Don't wanna be hacked ? Don't use a unix !", and i think it's not really complete, should be "...Don't use a unix without planning you will need man-time to watch and update it." And BTW other OSes's security is subject to the same condition(at least). At 19:47 02/05/2001, you wrote: >* Brett Glass <brett@lariat.org> [010502 10:02] wrote: > > http://www.businessweek.com/bwdaily/dnflash/apr2001/nf2001051_727.htm > >As usual someone is trying to raise an issue that's >already common knowledge. > >I mean: > > "So, where security was concerned, Apple users enjoyed a free > ride. Same with virus attacks. Mac users avoided the carnage of > the I Love You virus in May, 2000. Nor did they have to worry > about nasty Trojan-horse attacks, such as the SubSeven variety > that could give hackers remote control of a computer. Mac users > lived in a digital Garden of Eden, a simpler place free of > serpents." "Digital Garden of Eden" ? Well... I think i met my first viruses on macintoshes. Moreover, it's easy to have a 'secured' system when no remote services nor security features (user identification..) are there. My ZX spectrum was 'secure', too (and especially when powered down !). I guess that if apple computers would have been as well-spreaded and popular as other platforms, they would have been subject to some 'show business friendly' security issues such as 'I Love you' & 'Melissa'... >As far as getting the word out on bugs, I find it terribly annoying >that Bugtraq is now a vendor's forum to spam about security updates, >it's really irritating to hear about some vulnerability and then >recieve about 20 emails from different Linux and other Unix >distributors about the exact same bug. That's true. If i WANT to get security advisories for a specific linux distro or whatever i CAN subscribe the dedicated mailing list. BTW, i could make my own little OS, full of bugs, and install it on one or two friend's computers, and have a website to make it 'popular'. Then i'll be allowed to flood Bugtraq with 'security bulletin' repeating what is already known, 'cos MY os also use that pretty ntp demon or this cool samba tool. Would be nice, no ?! I think there's something to do about it. Anyway we can't avoid reading stuff useless for our own purposes on Bugtraq, but at least let's not repeat 10 times the same info. this obviously is only my opinion :-) >-- >-Alfred Perlstein - [alfred@freebsd.org] >Daemon News Magazine in your snail-mail! http://magazine.daemonnews.org/ > >To Unsubscribe: send mail to majordomo@FreeBSD.org >with "unsubscribe freebsd-security" in the body of the message -- Guy Poizat poizat@partsonline.fr To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?5.0.2.1.0.20010503110648.01a85c68>