OpenSSH heads-up
Eli Dart
dart at nersc.gov
Tue Sep 16 12:25:25 PDT 2003
In reply to Brett Glass <brett at lariat.org> :
> At 07:43 AM 9/16/2003, Jacques A. Vidrine wrote:
>
> Could it be that some party or parties knew about this before the announcement
> and is probing for hosts to exploit?
I always assume that the blackhats are at least 6 to 12 months ahead
of public disclosure....
The kiddies may not have as much of a lead, depending on how good
their sources for exploit code are, but one should assume that
Smart Bad People can own one's machines if one's only defense is a
current patch set.
--eli
>
> --Brett Glass
>
>
>
> _______________________________________________
> freebsd-security at freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-security
> To unsubscribe, send any mail to "freebsd-security-unsubscribe at freebsd.org"
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 224 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/freebsd-security/attachments/20030916/921626bd/attachment.bin
More information about the freebsd-security
mailing list