[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: Re[2]: Solaris telnet vulnberability - how many on your network?

To: "Roger A. Grimes" <roger@xxxxxxxxxxxxxx>
Subject: RE: Re[2]: Solaris telnet vulnberability - how many on your network?
From: Gadi Evron <ge@xxxxxxxxxxxx>
Date: Wed, 14 Feb 2007 18:55:24 -0600 (CST)

On Wed, 14 Feb 2007, Roger A. Grimes wrote:
> Spectulation over whether Microsoft, Sun, or any other vendor
> intentionally put in backdoors just makes our industry seem
> unprofessional. The likelihood that either vendor did is near zero.

Although we ruled this out with Sun's full disclosure (almost completely,
never say 100% in security), no one was accusing Sun.

This is a very important issue: a backdoor does not need to be put there
by the builder.

Example: Linux kernel and two lines of code.

        Gadi.

References:
- RE: Re[2]: Solaris telnet vulnberability - how many on your network?
  - From: Roger A. Grimes

Prev by Date: Re: [Full-disclosure] Firefox: serious cookie stealing / same-domain bypass vulnerability
Next by Date: RE: defacements for the installation of malcode
Previous by thread: RE: Re[2]: Solaris telnet vulnberability - how many on your network?
Next by thread: Re: Re[2]: Solaris telnet vulnberability - how many on your network?
Index(es):
- Date
- Thread