From owner-freebsd-security Wed Jun 26 13:28:50 2002 Delivered-To: freebsd-security@freebsd.org Received: from smtp.netcabo.pt (smtp.netcabo.pt [212.113.174.9]) by hub.freebsd.org (Postfix) with ESMTP id 0680B37BDF2 for ; Wed, 26 Jun 2002 12:10:20 -0700 (PDT) Received: from cheetah ([213.22.31.9]) by smtp.netcabo.pt with Microsoft SMTPSVC(5.0.2195.4905); Wed, 26 Jun 2002 20:08:31 +0100 From: "Bruno Miguel" Organization: Artists, Inc. To: Theo de Raadt Date: Wed, 26 Jun 2002 20:10:11 +0100 MIME-Version: 1.0 Subject: Re: Wow Reply-To: brunomiguel@netcabo.pt Cc: freebsd-security@freebsd.org Message-ID: <3D1A1FA3.9224.13C6413@localhost> In-reply-to: <200206261854.g5QIsNLI015235@cvs.openbsd.org> References: Your message of "Wed, 26 Jun 2002 14:51:27 EDT." <20020626185126.GB35484@ainaz.pair.com> X-mailer: Pegasus Mail for Windows (v4.01) Content-type: text/plain; charset=US-ASCII Content-transfer-encoding: 7BIT Content-description: Mail message body X-OriginalArrivalTime: 26 Jun 2002 19:08:32.0125 (UTC) FILETIME=[DCEC4AD0:01C21D44] Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On 26 Jun 2002 at 12:54, Theo de Raadt wrote... > > Nope. Just wasted a good part of yesterday upgrading 60 boxes > > from a non-vulnerable version of OpenSSH to a version with a now > > known remote exploit. > > > > I think the PR for this issue could have been a bit better... [...] > By all means. Please continue running what you have. Don't upgrade > to 3.4. And please turn privsep off. > > Or, please, use someone else's software. > > Please. Making errors is part of the human nature. Though, fewer and fewer can admit their own mistakes. ...:-=>> The freaking Mail Band <<=-:... hununu@netcabo.pt D.E.Q. @ I.S.T. - Portugal To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message