Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

bugtraq logo Bugtraq mailing list archives

Re: Solaris telnet vulnberability - how many on your network?
From: Damien Miller <djm () mindrot org>
Date: Thu, 15 Feb 2007 08:15:26 +1100 (EST)
On Tue, 13 Feb 2007, Gadi Evron wrote:


We all agree it is not a very likely possibility, but I wouldn't rule it
out completely just yet until more information from Sun becomes
available.


What more information do you need? You have an advisory, access to the
source code, access to the change that resolved the problem and 
patient conversations with a very patient Casper Dik.

The onus is on you to demonstrate how this could be a backdoor.
Otherwise you are asking Sun to prove a negative.

IMO fixing security bugs at short notice is painful enough without
people like yourself and Steve Gibson casting assertions of malice.

-d

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]