Guess What? Serious Flaw Found in OpenSSH

CERT ^ | 9/16/2003 | CERT (Jason A Rafail)

[N3WBI3]

Gates is as much MS, as Linus is Linux...

[N3WBI3]

From Planned Parenthood

Many of our donors work for companies who will match their gift to Planned Parenthood of the Columbia/Willamette. These gifts may be generated by an employee, retired employee, or his or her spouse, from corporations with matching gift programs. Matching gift forms are generally obtained from the company's personnel or benefits office and forwarded to Planned Parenthood of the Columbia/Willamette by the donor along with their donation. PPCW then verifies receipt of the gift on the form and it is mailed to the employer for processing. The following organizations will match their employees' gifts to Planned Parenthood of the Columbia/Willamette:

If you look at the List MS is on it. so I ask again should they not chage the where do you want to go today to - Who did you help abort today?

[Bush2000]

Gates is as much MS, as Linus is Linux...

He's an employee. Not the company.

[Bush2000]

If you look at the List MS is on it. so I ask again should they not chage the where do you want to go today to - Who did you help abort today?

If employees of any company choose to contribute their own money to Planned Parenthood, that's their business. It has nothing to do with the company that they work for.

[TheEngineer]

MS takes mostly american dollars (many of them tax dollars from their sale to govt) and relocates it to India and CHina costing Americans jobs.

I'm curious. Which figure do you think is greater?... The amount of money that Microsoft spends abroad? Or the amount of revenue money that Microsoft brings into the US from other countries?

Also, regarding Red Flag Linux (aka 'Chinux' or 'Chicomix')... Do you think the Chicoms are 'net takers' or 'net givers' in the OSS community? (A 'net taker' being one who receives more benefits from OSS than he puts back in the form of code additions.)

[N3WBI3]

Unless the company **MATCHES** and thus the company, the software owners, and the stock holders are funding abortions. Who do you want to abort today

[Bush2000]

Unless the company **MATCHES** and thus the company, the software owners, and the stock holders are funding abortions. Who do you want to abort today

Bogus. You can extend that illogic to yourself. Your tax dollars subsidize Planned Parenthood. Thus, you are complicit in funding abortion.

[N3WBI3]

No it does not, I dont have a choice in the matter, people have a choice to buy MS products, and MS has a choice not to match to planned parenthood both choose to kill babies..

[toupsie]

BWAHAHAHAHAHAHAHAHA! Hilarious. You should do standup.

Why take your place behind the mike? You seem to never have any technical insight, just lame insults...

Problem is, there are countless boxes that haven't been patched yet. Free-for-all, hackers!!!

You are talking about Windows systems, right? At least my firewall logs tell me it is Windows systems that zombied in mass, not Linux/Unix based systems.

Like I have said before, I welcome Microsoft problems. That's what pays my bills. If you want to spend your personal time maintaining a Windows box, please feel free. I would rather spend my time using my computer than chasing down a myriad of patches.

[toupsie]

Oh, nice spin... Do you work for politicians? If not, you should.

Nice insult. Did I strike a nerve or you have nothing but insults to respond with?

Listen, the version they hacked was a RELEASED version, it has nothing to do with standards. Secondly, Microsoft has released fixes for their buggy software B-E-F-O-R-E the exploit is attacked, in most cases.

You mean that Windows 2000/XP/2003 is not a released product? Like your "in most cases". Has Microsoft ever let you see the source code of one of their patches? How do you know what it is doing? How do you know if it solves the problem or even creates new ones?

Sure they have buggy software, but so does Sun, Netscape, Mozilla, Apple, Adobe, IBM, etc/et al - we are talking about computers.

Nothing to do with standards? Of all the Linux and UNIX distros for the desktop, I have yet to see one that has sshd turned on as default (not to say there isn't an obscure one that does but I haven't seen it). The RPC hole in Windows is. That's all I am pointing out. As for Sun, Netscape, Mozilla, Apple, Adobe, IBM those companies' products aren't filling up my firewall logs. Microsoft is.

[Bush2000]

You are talking about Windows systems, right? At least my firewall logs tell me it is Windows systems that zombied in mass, not Linux/Unix based systems.

"ATTENTION, KMART SHOPPERS! TOUPSIE HAS SPOKEN: ONLY WINDOWS MACHINES GET ZOMBIFIED! NOT LINUX OR MACS--EVER! YOU MAY GO HOME NOW! NOTHING TO SEE HERE!"

[Bush2000]

No it does not, I dont have a choice in the matter, people have a choice to buy MS products, and MS has a choice not to match to planned parenthood both choose to kill babies..

Sure, you have a choice: Don't pay taxes.

[RedWing9]

Nice insult. Did I strike a nerve or you have nothing but insults to respond with?

It wasn't an insult, more like an observation.

You mean that Windows 2000/XP/2003 is not a released product?

I did not say that - in fact I said it was a released product. You're the one who inferred it wasn't released...

Has Microsoft ever let you see the source code of one of their patches? That has nothing to do with it. Have you ever seen the source code of patches for WinAmp? Games from EA? Adobe Photoshop? Straw argument, you have...

Of all the Linux and UNIX distros for the desktop, I have yet to see one that has sshd turned on as default

The problem you have is that you think Windows should have the exact same standards as Unix. Good luck! Sometimes, organizations have it in their best interest to play by their own rules. Look around you, you will rarely see everyone pay attention to the same standards fr all kinds of products, even those that might benefit if they did.

That's all I am pointing out.

I have yet to see you point out anything that isn't anti-Microsoft. You're a penguin zealot, not an entirely bad thing.