FLAME - security advisories on the 23rd ? uncool idea is uncool
Michael Sierchio
kudzu at tenebras.com
Sat Dec 24 18:01:15 UTC 2011
Careful reading, as opposed to blindly applying updates, is often
rewarded. If you aren't running telnetd, it follows that you are not
vulnerable to the most serious exploit addressed by the patch (remote
root).
I have had no trouble since applying the patch to 7.4 and 8.2 systems. YMMV.
Given the nature of the exploit, and the fact that it has been seen in
the wild, there was not choice but to make the announcement and make
the patch available.
- M
On Fri, Dec 23, 2011 at 2:54 PM, Bas Smeelen <b.smeelen at ose.nl> wrote:
>>If a security advisory is announced, you have to patch, period!
>
> >Happy holidays to all. Black hats too :)
>
> >--
> >George
>
> It is up to the sysadmin.
> If your services are not affected, there is no need to patch.
> Although it's best to always keep your systems up to the latest.
> I think the security advisories are a good thing especially this time of the year
> But like they say here it's a storm in a glass of water
> YMMV
> Cheers and happy holidays (holy-days :))
>
> Disclaimer: http://www.ose.nl/email
> _______________________________________________
> freebsd-questions at freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> To unsubscribe, send any mail to "freebsd-questions-unsubscribe at freebsd.org"
More information about the freebsd-questions
mailing list