From owner-freebsd-security  Mon Dec  4 21:40:51 2000
From owner-freebsd-security@FreeBSD.ORG  Mon Dec  4 21:40:49 2000
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Delivered-To: freebsd-security@freebsd.org
Received: from silby.com (cb34181-c.mdsn1.wi.home.com [24.183.3.139])
	by hub.freebsd.org (Postfix) with ESMTP id 2B28F37B400
	for <freebsd-security@FreeBSD.ORG>; Mon,  4 Dec 2000 21:40:49 -0800 (PST)
Received: (qmail 17214 invoked by uid 1000); 5 Dec 2000 05:40:47 -0000
Received: from localhost (sendmail-bs@127.0.0.1)
  by localhost with SMTP; 5 Dec 2000 05:40:47 -0000
Date: Mon, 4 Dec 2000 23:40:47 -0600 (CST)
From: Mike Silbersack <silby@silby.com>
To: pW <packetwhore@stargate.net>
Cc: John Howie <JHowie@msn.com>, freebsd-security@FreeBSD.ORG
Subject: Re: Fw:      NAPTHA Advisory Updated - BindView RAZOR
In-Reply-To: <Pine.BSF.4.21.0012042357520.27812-100000@beastie>
Message-ID: <Pine.BSF.4.21.0012042329380.16938-100000@achilles.silby.com>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org


On Tue, 5 Dec 2000, pW wrote:

> If I am interpreting this the wrong way, I apologize in advance... You
> seem awfully eager to point out FreeBSD weaknesses... I notice the msn
> address and the fact that you got this from an NT security list. Well,
> while FreeBSD or ANY OS is perfect, FreeBSD seems to be good enough to run
> Hotmail's web servers and mail servers... something that couldn't be done
> with NT... hmmm.... just thought I would point that out before you take
> too much satisfaction from a FreeBSD weakness...
> 
> pW

Despite the oldness of the info contained in the advisory, I don't see a
problem in John reposting it here.  As other have stated, there is the
possibility that FreeBSD could handle resource exhaustion better, and the
information in the advisory could be useful in testing those improvements.

If you believe so strongly in the divine nature of FreeBSD, you should be
posting how the attack postulated in the advisory is false, or posting
patches that fix the problem.

Belittling Microsoft products doesn't solve anything.  (Especially
considering that Microsoft is transitioning hotmail over to w2k now.)

Mike "Silby" Silbersack



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message