Linux Today: Linux News On Internet Time.
Search Linux Today
Linux News Sections: Blog - Developer - High Performance - Infrastructure - IT Management - Security - Storage -
Linux Today Navigation
LT Home
Preferences
Contribute
Link to Us
Search
Linux Jobs

Linux Today
Enterprise Linux Today
Apache Today
JustLinux.com
Linux Planet
PHPBuilder
All Linux Devices
Technology Jobs

JustTechJobs.com

LinuxToday Newsletters
Server Daily
IT Management Daily
Subscribe News
Subscribe PR
Subscribe Security

internet.com
Internet News
Small Business

Advertise
Newsletters
Tech Jobs
E-mail Offers

 






Current Newswire:

RebeccaBlackOS - First Live CD Running Wayland Display Server

The Linux powered LAN Gaming House

5 Best Android Apps For Reddit Lovers

SECURITY: Flash Player Sandbox Comes to Firefox

The Future of Kubuntu

SECURITY: Symantec should not be afraid of 'open' source code

Linux 3.3 rc3

60 Fantastic Free Android Apps

Ready for Another Linux Tablet? Meet the Rugged Trimble Yuma

How can the layman get involved with free software?



Applications Management Engineer Sr (NYC)
Next Step Systems
US-NY-New York

Justtechjobs.com Post A Job | Post A Resume
:Open-Source Security Idiots
Open-Source Security Idiots
May 16, 2008, 21 :00 UTC (26 Talkback[s]) (10109 reads)
(Other stories by Steven J. Vaughan-Nichols)

[ Thanks to Steven J. Vaughan-Nichols for this link. ]

"Sometimes, people do such stupid things that words almost fail me. That’s the case with a Debian 'improvement' to OpenSSL that rendered this network security program next to useless in Debian, Ubuntu and other related Linux distributions.

"OpenSSL is used to enable SSL (Secure Socket Layer) and TLS (Transport Layer Security) in Linux, Unix, Windows and many other operating systems. It also includes a general purpose cryptography library. OpenSSL is used not only in operating systems, but in numerous vital applications such as security for Apache Web servers, OpenVPN for virtual private networks, and in security appliances from companies like Check Point and Cisco..."

Complete Story

Related Stories:
Debian SSH Key-Cracking Tools Released, Tips for Tightening(May 16, 2008)
Vendors Are Bad For Security(May 13, 2008)


Index Mode   |   Flat Mode   |   Thread Mode   |   Thread Flat  
  Talkback(s) Name  and Date
Security Idiots, stupid this, stupid tha ...   Hysteria   
Predrag Zdrale
May 16, 2008, 22:16:06  
Steven owes the Debian developers an apo ...   SJVN is the idiot   
james
May 16, 2008, 22:45:36  
> Steven owes the Debian developers an a ...   Re: SJVN is the idiot   
techdog
May 17, 2008, 01:55:16  
If you had been persistently on their ca ...   You can call them idiots   
Yim
May 17, 2008, 02:10:21  
> Security Idiots, stupid this, stupid t ...   Re: Hysteria   
Frank Earl (aka Svartalf)
May 17, 2008, 02:27:49  
> Steven owes the Debian developers an a ...   Re: SJVN is the idiot   
kane
May 17, 2008, 02:49:09  
Steven is right. This isn't the comp ...   Re: You can call them idiots   
Don
May 17, 2008, 03:53:35  
> By the way, has anyone seen a knowledg ...   Re: You can call them idiots   
blackhole
May 17, 2008, 06:19:13  
> > By the way, has anyone seen a knowle ...   Re: Re: You can call them idiots   
Micheas
May 17, 2008, 07:25:47  
He's excluding Firefox because it do ...   Re: Re: You can call them idiots   
Adam Williamson
May 17, 2008, 09:33:29  
Steven owes the Debian developers an apo ...   Re: SJVN is the idiot   
Segedunum
May 17, 2008, 12:26:56  
Security Idiots, stupid this, stupid tha ...   Re: Hysteria   
Segedunum
May 17, 2008, 12:30:24  
Blackhole: My understanding is Firefox ...   Re:Re:idiots   
Yim
May 17, 2008, 17:11:39  
The Debian developers did NOT consult wi ...   This lie has got to die!   
sgtrock
May 17, 2008, 19:09:38  
I use and like Debian, but my confidence ...   This was a real WTF   
David F. Skoll
May 18, 2008, 01:21:58  
Oh, and a followup: I have a few program ...   Debian's attitude towards upstream   
David F. Skoll
May 18, 2008, 01:34:29  
> He's excluding Firefox because it ...   Re: Re: Re: You can call them idiots   
blackhole
May 18, 2008, 05:21:35  
Dude, you have a short attention span. D ...   RE: This lie has got to die!   
alpin56
May 18, 2008, 06:16:15  
I really wanted to refrain from commenti ...   Re: This lie   
Yim
May 18, 2008, 07:02:51  
[...].> I am not saying no mistake was ...   Re: Re: This lie   
Rainer Weikusat
May 18, 2008, 08:22:14  
I do agree this is M$ level security for ...   Totally unacceptable   
ak
May 18, 2008, 16:11:25  
> I do agree this is M$ level security f ...   Re: Totally unacceptable   
Rainer Weikusat
May 19, 2008, 11:41:06  
Although I am not willing to condemn the ...   Re:Re: Totally unacceptable   
Yim
May 19, 2008, 15:03:39  
> Although I am not willing to condemn t ...   Re: Re:Re: Totally unacceptable   
Rainer Weikusat
May 19, 2008, 17:36:45  
The debian group seems to be overly full ...   SJVN is exactly right.   
Tachyon
May 22, 2008, 22:58:32  
Yes, Debian introduced the error. But t ...   Share the blame: It wasn't just Debian   
tommy higbee
Jun 8, 2008, 23:13:41  
  Home | Search Talkbacks | Customize View    Top of Page  



Enter your comments below:

* Your Name:

* Your Email Address:

* Subject:

CC: [will also send this talkback to an E-Mail address]

* Comments:

Tags allowed:<I>,<B> and <U>. See our talkback-policy for more about talkback content.

Fields marked with * are required!

..............................




All times are recorded in UTC.
Linux is a trademark of Linus Torvalds.
Powered by Linux, Apache and PHP