Date: Sat, 24 Dec 2011 10:01:14 -0800 From: Michael Sierchio <kudzu@tenebras.com> To: Bas Smeelen <b.smeelen@ose.nl> Cc: freebsd-questions@freebsd.org Subject: Re: FLAME - security advisories on the 23rd ? uncool idea is uncool Message-ID: <CAHu1Y71D4MeGjbQB1dBQTMJFOq%2BXO8hfWUcnfcpGjS%2BxjM%2B4KQ@mail.gmail.com> In-Reply-To: <20111223225416.d7e93cc4@mail.ose.nl> References: <20111223225416.d7e93cc4@mail.ose.nl>
next in thread | previous in thread | raw e-mail | index | archive | help
Careful reading, as opposed to blindly applying updates, is often rewarded. If you aren't running telnetd, it follows that you are not vulnerable to the most serious exploit addressed by the patch (remote root). I have had no trouble since applying the patch to 7.4 and 8.2 systems. YMMV= . Given the nature of the exploit, and the fact that it has been seen in the wild, there was not choice but to make the announcement and make the patch available. - M On Fri, Dec 23, 2011 at 2:54 PM, Bas Smeelen <b.smeelen@ose.nl> wrote: >>If a security advisory is announced, you have to patch, period! > > =A0>Happy holidays to all. Black hats too :) > > =A0>-- > =A0>George > > =A0It is up to the sysadmin. > =A0If your services are not affected, there is no need to patch. > =A0Although it's best to always keep your systems up to the latest. > =A0I think the security advisories are a good thing especially this time = of the year > =A0But like they say here it's a storm in a glass of water > =A0YMMV > =A0Cheers and happy holidays (holy-days :)) > > Disclaimer: http://www.ose.nl/email > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.o= rg"
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CAHu1Y71D4MeGjbQB1dBQTMJFOq%2BXO8hfWUcnfcpGjS%2BxjM%2B4KQ>