PRE-ANNOUNCEMENT: BIND-Members Forum
Martin McCormick
martin at dc.cis.okstate.edu
Thu Feb 1 12:40:48 UTC 2001
John Narron writes:
>Setting up this forum actually makes sense. Simply, its a way
>to get information about vulnerabilities out to those who can
>do something about it. Personally, I'd rather have a "closed"
>group of those that know how to fix problems know about the
>vulnerability before all the script/packet-kiddies get a hold
>of it.
I totally agree. I am glad that I was just being
paranoid. I have worked in my present capacity for the past
eleven years or so and think that the open-source movement is
nothing less than amazing. If one ever gets too full of one's
self, it is only necessary to look at something like the
automatic configure script for just about any open-source product
written in the last decade to get reminded of just how much there
is to learn and how many people are willing to share their
knowledge with strangers for nothing.
I still hope, one day, to make a significant contribution
along these lines, also, but it hasn't happened yet.
Many thanks for clearing up the misunderstanding. I am
happy to have been wrong and I apologize for contributing to what
I like to call the Chicken Little mentality. (The sky is
falling!)
Actually, a bit of vigilance is healthy as there are
powerful interests who appear to want to "decomoditise" the
protocols which have decades of history as working just fine,
thank you.
http://www.open-source.org/halloween/
This link worked as of 6:33 CST Feb 1. I do think that
CERT should be part of the loop any time an advisory can be
issued without also providing a blueprint for further mischief.
Martin McCormick 405 744-7572 Stillwater, OK
OSU Center for Computing and Information services Data Communications Group
More information about the bind-users
mailing list