[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [opensuse-security] openSSH, 11.3 and CVE-2011-0539

Am Mon, 18 Jul 2011 11:43:44 +0200
schrieb Marcus Meissner <meissner@xxxxxxx>:

> You should really push back, otherwise they will come back and back and back....

Absolutely. Doing stupid things (like installing unmaintained Software
versions) just to get past some totally clueless security certification is
doing no good to your system security.

> Treaten to get a different auditor with more clues.

Do such exist? I sometimes doubt it...
Stefan Seyfried

"Dispatch war rocket Ajax to bring back his body!"
To unsubscribe, e-mail: opensuse-security+unsubscribe@xxxxxxxxxxxx
For additional commands, e-mail: opensuse-security+help@xxxxxxxxxxxx