[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: The Myth of Open Source Security




> AM>> Because they fixed so MANY holes, it isn't practical.
> 
> What isn't practical, sending CC of CVS diff fixing the hole to
> maintainer of the tool? Or to bugtrack? Or publishing it on some page?

If you seriously think that, then you don't have a clue as to the
extent of the work the OpenBSD developers performed.

The appropriate thing to do when you're generating large volumes of
traffic is to set up a mailing list.

Do you think that the bugtraq moderator would allow bugtraq to become
a mirror for source-changes@cvs.openbsd.org?

This information was always freely available; those who truly cared
about security tracked it.  Others apparently didn't -- so you believe
that it was the responsibility of the OpenBSD people to flood them
with it?

=================================================================
To unsubscribe, send mail to linux-il-request@linux.org.il with
the word "unsubscribe" in the message body, e.g., run the command
echo unsubscribe | mail linux-il-request@linux.org.il