Date: Wed, 2 Jun 2004 11:43:16 +0200 From: Phil Regnauld <none@regnauld--starBSD.org.lh.bsd-dk.dk> To: bsd-novice@bsd-dk.dk Subject: Re: Kunsten at vælge
On Wed, Jun 02, 2004 at 10:15:35AM +0200, Jacob Atzen wrote:
>
> In March 1997, I offered $500 to the first person to publish a
> verifiable security hole in the latest version of qmail: for
> example, a way for a user to exploit qmail to take over another
> account.
DJB vil ikke anerkende at DoS (overallokering af alt memory
i systemet via smtp daemonen) er en sikkerheds fejl. Qmail
skal _patches_ (fra en tredje part) for at være beskyttet mod
det. DJB har ikke selv patchet det, fordi så ville han være
nødt til at indrømme, at der er faktisk blevet fundet huller.
This archive was generated by hypermail 2b30 : Wed 15 Nov 2006 - 18:25:09 CET