[Asterisk-Dev] Is anyone thinking anymore?

Steve Szmidt steve at szmidt.org
Mon Jul 26 08:33:48 MST 2004


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Monday 26 July 2004 11:08 am, Andrew Kohlsmith wrote:
> On Monday 26 July 2004 10:56, Steve Szmidt wrote:
> > OpenBSD is continously audited for these kinds of "bugs" and as a result
> > has not had more than ONE remote access hole in SEVEN years.
>
> *cough* OpenSSH
> *cough* OpenSSL

I forgot to say default install. SSH was the hole, and if I remember correctly 
the SSL one was not a remote access hole. They primarily audit the OS, other 
apps as they have time. Either way, one or five holes does not alter the 
point.

> IIRC both of these are used on "out of the box" OpenBSD systems.
>
> > You can never protect yourself against bad programmers. But there are
> > known ways to protect yourself against being hacked!
>
> yeah.  NX is a much better way IMO.  :-)
>
> -A.
> _______________________________________________
> Asterisk-Dev mailing list
> Asterisk-Dev at lists.digium.com
> http://lists.digium.com/mailman/listinfo/asterisk-dev
> To UNSUBSCRIBE or update options visit:
>    http://lists.digium.com/mailman/listinfo/asterisk-dev

- -- 
Steve

"They that would give up essential liberty for temporary safety deserve
neither liberty nor safety."
                                Benjamin Franklin

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)

iD8DBQFBBSRfljK16xgETzkRAtpDAKCuJl9bHMieZCnt0JZSH8MUVjx7XACgwapv
Y8uFJ240FhIWBnFb0wZaJw8=
=b9VM
-----END PGP SIGNATURE-----



More information about the asterisk-dev mailing list