This is a responsible statement of values...
Joe
--- George Toft <
george@georgetoft.com> wrote:
> Passing on issues it not a bad thing. Claiming a
> product is
> rootable warrants an explanation with references.
>
> If I claim McAfee Anti-virus is a bad product, I
> offer very
> little. If I say McAfee Anti-virus is a bad
> product, and
> demonstrate that it cannot detect the Sub-Seven
> trojan, I offer
> more (OBTW - this is why I will not use McAfee
> anymore). If I
> report the issue to the vendor, I have fulfilled my
> responsibilities.
>
> You stated: "its kinda the same as Netmax products i
> found it
> easy to gain root through the running of daemons."
> I'm asking
> for substantiation of your claim, or a retest with
> the current
> version to see if the problem still exists. Did you
> report it?
> Did you document your exploit do they can make a
> better product?
> Or did you just sit back and let people get hacked?
> I have
> filed bug reports on mc (2), linkcheck (3), and rpm
> (2); and
> I'm about to file one on grip.
>
> Crappy software needs to be fixed. You can either
> be a part of
> problem or a part of the solution.
>
> George
>
>
>
> Nancy Sollars wrote:
> >
> > Was just telling how it was ...
> >
> > I guess just passing on issues found is a bad
> thing .. So if someone does
> > get rooted then il not respond when someone starts
> shouting about it ...
> >
> > I did'nt say that E-smith was a bad product i said
> it was bad because as you
> > should well know running processes on a firewall
> such as web or mail servers
> > is potentially risky ..
> >
> > ----- Original Message -----
> > From: "George Toft" <george@georgetoft.com>
> > To: <plug-discuss@lists.plug.phoenix.az.us>
> > Sent: Saturday, March 09, 2002 6:26 PM
> > Subject: Re: Router-Gateway-Firewall solution for
> less than 150??
> >
> > > N.
> > >
> > > Since e-smith is well regarded on this list,
> instead of
> > > casting dispersions on the product, why don't
> you post
> > > credible references showing these flaws, or test
> the
> > > current version of the software for the
> vulnerabilities
> > > that you know and post the results on the list?
> > >
> > > George
> > >
> > >
> > > Nancy Sollars wrote:
> > > >
> > > > mmm if its anything like the software we (
> LinuxIT ) were pushing for
> > them
> > > > back in the UK i still have my doubts ..
> > > >
> > > > I had alot of time to run various install
> types of the E-Smith software
> > ..
> > > > its kinda the same as Netmax products i found
> it easy to gain root
> > through
> > > > the running of daemons.
> > > >
> > > > I guess being business partners / Distributors
> for these co's gives one
> > a
> > > > very good head start.
> > > >
> > > > Nige
> > > >
> > > ________________________________________________
> > > See
> http://PLUG.phoenix.az.us/navigator-mail.shtml if
> your mail doesn't
> > post to the list quickly and you use Netscape to
> write mail.
> > >
> > > PLUG-discuss mailing list -
> PLUG-discuss@lists.plug.phoenix.az.us
> > >
>
http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
> > >
> >
> > ________________________________________________
> > See http://PLUG.phoenix.az.us/navigator-mail.shtml
> if your mail doesn't post to the list quickly and
> you use Netscape to write mail.
> >
> > PLUG-discuss mailing list -
> PLUG-discuss@lists.plug.phoenix.az.us
> >
>
http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
> ________________________________________________
> See http://PLUG.phoenix.az.us/navigator-mail.shtml
> if your mail doesn't post to the list quickly and
> you use Netscape to write mail.
>
> PLUG-discuss mailing list -
> PLUG-discuss@lists.plug.phoenix.az.us
>
http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
=====
JT and NE Tannenbaum
jtannenba@yahoo.com
__________________________________________________
Do You Yahoo!?
Try FREE Yahoo! Mail - the world's greatest free email!
http://mail.yahoo.com/