From owner-freebsd-chat Fri Feb 26 21:13:14 1999 Delivered-To: freebsd-chat@freebsd.org Received: from alpo.whistle.com (alpo.whistle.com [207.76.204.38]) by hub.freebsd.org (Postfix) with ESMTP id B4DE9150BC for ; Fri, 26 Feb 1999 21:13:00 -0800 (PST) (envelope-from julian@whistle.com) Received: (from daemon@localhost) by alpo.whistle.com (8.8.5/8.8.5) id VAA01482; Fri, 26 Feb 1999 21:04:25 -0800 (PST) Received: from current1.whistle.com(207.76.205.22) via SMTP by alpo.whistle.com, id smtpdVo1480; Sat Feb 27 05:04:17 1999 Date: Fri, 26 Feb 1999 21:04:12 -0800 (PST) From: Julian Elischer To: Chuck Robey Cc: chat@FreeBSD.ORG Subject: Re: Cobalt blames linux for their security problems! In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-chat@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Fri, 26 Feb 1999, Chuck Robey wrote: > On Fri, 26 Feb 1999, Julian Elischer wrote: > > [moved to chat, Julian] > > > > > > > http://www.wired.com/news/news/technology/story/18109.html > > > > There's a good idea.. use a free OS and then blame it for your problems.. > > > > BTW did I tell you about the huge security holes we got from BSD (only > > kidding) > > Did you read the rest of that article, Julian? It's depressing when > both sides get their facts *so* wrong! Either that, or the reporter > *wanted* to give that impression, in order to jazz up the article. yes I did. and I was refering to the following line.. "Vivek Mehra, vice president of product development at Cobalt, said the hole, which could give a hacker access to a history file documenting a user's activities, wasn't specific to their appliance, but to the Linux operating system. " How can you blame Linux for the apparent fault? (It's not actually a problem in linux just in the configuration) It's the integrator's job to ensure that the log files aren't exposed to the web. That seems somehow to be the problem. I'm just amazed at how quickly the finger get's pointed and how the free OS is a sitting duck. It's tricky trying to think of every security flaw. I'm just crossing my fingers that WE (Whistle) will be quick off the mark when our turn comes.. > > OTOH, when was the last time that you read an article in any news media > at all (which was pointed at the general public, my only qualification > here) that had, as it's topic, security, and *wasn't* more than 50% > utter garbage? I wonder if maybe there's an article in there somewhere, > on just how bad the reporting has been on that topic? > > > ----------------------------+----------------------------------------------- > Chuck Robey | Interests include any kind of voice or data > chuckr@glue.umd.edu | communications topic, C programming, and Unix. > 213 Lakeside Drive Apt T-1 | > Greenbelt, MD 20770 | I run picnic (FreeBSD-current) > (301) 220-2114 | and jaunt (Solaris7). > ----------------------------+----------------------------------------------- > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-chat" in the body of the message