Author Topic: I don't hear you screaming. Why is that?  (Read 1239 times)

www.unixsucks.com

  • Member
  • **
  • Posts: 131
  • Kudos: 56
    • http://www.unixsucks.com
I don't hear you screaming. Why is that?
« on: 27 August 2002, 21:31 »
http://www.openssh.com/txt/trojan.adv
So, let's see, if Windows has some security problems then you bitch, if any of *NIX programs has security problems, then you do what? Yes, you just hide it, like nothing happened.
I can't beleive it, it's not just that your super secure UNIX machines was hacked, program UNIX people rely on was compromised as well at the same time.
Good example to be given to government bodies about security involving open source. At least if I download from Microsoft I get signed packages first and second I get it from trusted source (I don't know any example when trojan was embedded in Microsoft product).
Now, please what you gonna say?
Gregory Suvalian

voidmain

  • VIP
  • Member
  • ***
  • Posts: 5,605
  • Kudos: 184
    • http://voidmain.is-a-geek.net/
I don't hear you screaming. Why is that?
« Reply #1 on: 27 August 2002, 21:55 »
I'm gonna say that is old news, was spotted quickly and fixed and the only people who were effected were people who happened to download ssh from those servers for a few day period. People who would have been doing that most certainly would have been advised via CERT and upgraded.

Now, you on the other hand would never have any problems with Windows as mentioned in your own words:

http://mib.teco.edu/plant_archiv/msg06324.html

You actually pay for crap like this? And like it?
Someone please remove this account. Thanks...

sporkme

  • Member
  • **
  • Posts: 501
  • Kudos: 149
    • http://sporkme.net/
I don't hear you screaming. Why is that?
« Reply #2 on: 27 August 2002, 10:15 »
lol
just that you do not take an interest in politics does not mean that politics will not take an interest in you.  -pericles 430 b.c.

badkarma

  • VIP
  • Member
  • ***
  • Posts: 497
  • Kudos: 0
I don't hear you screaming. Why is that?
« Reply #3 on: 27 August 2002, 13:16 »
I'm going to say that all software contains security flaws, *nix or windowze software. The response time for proprietry developers and open source developers is what matters. Like konqueror's SSL bug which was fixed in 90 minutes while MS is still looking for a fix, that's what matters .....
If you can't learn to do something well, learn to enjoy doing it poorly.

badkarma

  • VIP
  • Member
  • ***
  • Posts: 497
  • Kudos: 0
I don't hear you screaming. Why is that?
« Reply #4 on: 27 August 2002, 13:18 »
quote:
Originally posted by www.unixsucks.com:
[(I don't know any example when trojan was embedded in Microsoft product).


Ha ... and you convienently forgot about the trojan horse in MS's VS.NET supplied to some asian (korean? I forgot) developers?

Yep ... no trojans embedded in microsoft products.....
If you can't learn to do something well, learn to enjoy doing it poorly.

sporkme

  • Member
  • **
  • Posts: 501
  • Kudos: 149
    • http://sporkme.net/
I don't hear you screaming. Why is that?
« Reply #5 on: 27 August 2002, 13:32 »
ya i was thinking about that release... it was asian i know that had iloveu and some other crap HA--- that is a beautiful example of LACK OF ATTENTION TO DETAL
just that you do not take an interest in politics does not mean that politics will not take an interest in you.  -pericles 430 b.c.

trc3

  • Member
  • **
  • Posts: 282
  • Kudos: 0
    • http://www.sk8mafia4life.com
I don't hear you screaming. Why is that?
« Reply #6 on: 27 August 2002, 15:32 »
Wow you found one security flaw!  Its funny how windows lovers always make a big deal out of one *nix flaw when there are thousands for their beloved winderz.  Besides that what are you doing looking for *nix flaws?  Shouldn't you be downloading the latest hotfix from m$?

[ August 27, 2002: Message edited by: trc3 ]


KernelPanic

  • VIP
  • Member
  • ***
  • Posts: 1,878
  • Kudos: 222
I don't hear you screaming. Why is that?
« Reply #7 on: 27 August 2002, 15:42 »
quote:
Originally posted by www.unixsucks.com:
http://www.openssh.com/txt/trojan.adv
So, let's see, if Windows has some security problems then you bitch, if any of *NIX programs has security problems, then you do what? Yes, you just hide it, like nothing happened.
I can't beleive it, it's not just that your super secure UNIX machines was hacked, program UNIX people rely on was compromised as well at the same time.
Good example to be given to government bodies about security involving open source. At least if I download from Microsoft I get signed packages first and second I get it from trusted source (I don't know any example when trojan was embedded in Microsoft product).
Now, please what you gonna say?



You dumbass, *nix people don't try to hide problems, they fix them it is microsoft who chooses to hide a problem for a few months, then takes a few more months to finally roll out a fix!
Then when people complain about the security breach and how long it took to fix they can say 'This demonstrates the need for palladium', I say 'Fuck you! and stop being so lazy because you have the money and time to make a secure product so don't use it as an excuse to take my freedom away.
Contains scenes of mild peril.

trc3

  • Member
  • **
  • Posts: 282
  • Kudos: 0
    • http://www.sk8mafia4life.com
I don't hear you screaming. Why is that?
« Reply #8 on: 27 August 2002, 16:55 »
quote:
Originally posted by www.unixsucks.com:
Good example to be given to government bodies about security involving open source.


Another good example to give the "goverment bodies" is all the security flaws involving M$ products, the thousands apon thousands of virus's, trojans, worms, buffer overflows ect. ect. ect...  Then let them choose witch they want, without a m$ lawyer or slick corporate asshole there to pressure them.  Again I say, WOW! you found one hole in *nix, now lets see how many holes you can find in the swiss cheese that is winderz.

voidmain

  • VIP
  • Member
  • ***
  • Posts: 5,605
  • Kudos: 184
    • http://voidmain.is-a-geek.net/
I don't hear you screaming. Why is that?
« Reply #9 on: 27 August 2002, 17:07 »
He didn't even find a hole in *NIX. He found where someone planted a trojan in the SSH development source that was only exposed for a few days. It was never widely distributed in any distro. Would have only effected those that downloaded the latest development source and compiled it themselves. And like I said, those sort of people surely would have been advised and fixed the hole. Wouldn't have effected "John Doe" in the least.

That's pretty weak if that's the only dirt he can dig up. Shit, there's MUCH worse than that, although still not anything close to the security issues in any Windows OS.
Someone please remove this account. Thanks...

www.unixsucks.com

  • Member
  • **
  • Posts: 131
  • Kudos: 56
    • http://www.unixsucks.com
I don't hear you screaming. Why is that?
« Reply #10 on: 27 August 2002, 18:42 »
Well I get a lot of saliva dipping from your *NIX mouthes again. I never said that Windows is secure if you don't know what you are doing (like disabling services etc), what I told that Windows can be as secure as any UNIXes. I accidentaly found that link becouse wanted to see if updates can be downloaded from RedHat directly for sshd or from source.
Now, please use more of words "fuck", "moron", etc which you "reasonable and not biased" people usually have in your vocabularily, it's really show levels of desperation when you run out of arguments.
Now, last question again, what would be installed on default installation of RedHat if user just clicks through the whole process.
Gregory Suvalian

trc3

  • Member
  • **
  • Posts: 282
  • Kudos: 0
    • http://www.sk8mafia4life.com
I don't hear you screaming. Why is that?
« Reply #11 on: 27 August 2002, 18:46 »
quote:
Originally posted by www.unixsucks.com:
Now, last question again, what would be installed on default installation of RedHat if user just clicks through the whole process.



Why dont you download and install redhat to find out?

www.unixsucks.com

  • Member
  • **
  • Posts: 131
  • Kudos: 56
    • http://www.unixsucks.com
I don't hear you screaming. Why is that?
« Reply #12 on: 27 August 2002, 18:51 »
I don't have spare machine if I would have one I would do it.
Now, without installing OS, is it possible to get an answer?
Gregory Suvalian

badkarma

  • VIP
  • Member
  • ***
  • Posts: 497
  • Kudos: 0
I don't hear you screaming. Why is that?
« Reply #13 on: 27 August 2002, 19:09 »
quote:
Originally posted by www.unixsucks.com:
Now, please use more of words "fuck", "moron", etc which you "reasonable and not biased" people usually have in your vocabularily, it's really show levels of desperation when you run out of arguments.



*counts number of times he used the words 'fuck' or 'moron' in his posts in this thread*

hmmm ... I can't actually seem to find any....

I just thought of a saying actually ... it went something like:

if you can't stand the heat, stay out of the kitchen....

Now I'm going to degrade myself and use the F word:

What the fuck are you doing here? If all you can do is point out our low level of intelligence (something you clearly am guilty of yourself) yet offer no real response with content as to the replies you receive then please, do us all (and yourself a favour) and get the fuck out of here....

oh btw ... the only time the word fuck was used in this thread was by Tux and was not aimed directly at you, noone even uttered the word moron.... please ... just go away if you have no constructive contribution to these forums.....
If you can't learn to do something well, learn to enjoy doing it poorly.

trc3

  • Member
  • **
  • Posts: 282
  • Kudos: 0
    • http://www.sk8mafia4life.com
I don't hear you screaming. Why is that?
« Reply #14 on: 27 August 2002, 19:09 »
Why not partition your drive, it would only take around 1.5 gigs for a full installation, you could get it into a much smaller space if you wanted though.  Why not, it wont hurt anything.