[PLUG] RedHat/Fedora Crisis
pravi.a at gmail.com
Wed Sep 17 23:31:53 PDT 2008
2008/9/17 Rahul Sundaram <sundaram at fedoraproject.org>:
> Kaustubh Gadkari wrote:
>> On Thu, Sep 11, 2008 at 2:21 AM, Sudhanwa Jogalekar
>> <sudhanwa.com at gmail.com> wrote:
>>> Forwarded message FYI.
>>> Probably people from RH or Fedora can comment on this mail.
>> Bruce Perens had a few good comments about the situation and compared
>> the way Debian handled their SSH bug vs the way RedHat handled it.
> A comparison not is not 1:1. Debian problem is self inflicted.
Not entirely correct. This incident is one of the 3 that Bruce mentions.
"has had three significant security lapses in its history:
unauthorized access to their systems in 2003 and 2006, and a
recently-revealed problem in their SSL packages."
Debian had 2 incidents similar to what happened to Fedora and handled
both situation quite well, according to Bruce. So it is 1:3 ...
<GPLv2> I know my rights; I want my phone call!
<DRM> What use is a phone call, if you are unable to speak?
(as seen on /.)
Join The DRM Elimination Crew Now!
More information about the plug-mail