Re: Debian libssl security (Cause???)

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

To: <misc@...>

Date: Friday, May 16, 2008 - 3:06 pm

On Fri, 16 May 2008, Travers Buda wrote:

> They probably have figured it out. This is a pretty big screw-up--it

quoted text

> was in the tree since September 2006. You don't do something this
> bad and not learn from it =).

And now the social engineering fallout from it as well with all
the 'new SSL certificate'-style phishing that was in place before
this event...

--
Monty Brandenberg, Software Engineer MCB, Inc.
mcbinc@panix.com P.O. Box 426188
mcbinc@pobox.com Cambridge, MA 02142-0021
617.864.6907

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

Messages in current thread:

Debian libssl security (Cause???), Ross Cameron, (Fri May 16, 7:31 am)

Re: Debian libssl security (Cause???), Otto Moerbeek, (Fri May 16, 7:41 am)

Re: Debian libssl security (Cause???), Otto Moerbeek, (Sat May 17, 2:36 am)

Re: Debian libssl security (Cause???), mcb, inc., (Fri May 16, 3:06 pm)


linux-kernel:
Greg Kroah-Hartman	[PATCH 002/196] Chinese: rephrase English introduction in HOWTO
Kok, Auke	Re: Linux 2.6.21-rc1
Greg KH	Re: Dual-Licensing Linux Kernel with GPL V2 and GPL V3
Jeff Garzik	Re: [Patch v2] Make PCI extended config space (MMCONFIG) a driver opt-in
git:

linux-netdev:
David Miller	[GIT]: Networking
Gerrit Renker	[PATCH 15/37] dccp: Set per-connection CCIDs via socket options
Jarek Poplawski	[PATCH] pkt_sched: Destroy gen estimators under rtnl_lock().
Eric Dumazet	[PATCH] net: remove superfluous call to synchronize_net()
openbsd-misc: