Full Disclosure mailing list archives

Previous By Date Next
Previous By Thread Next

Security Update: [CSSA-2002-032.0] Linux: t emporary file races in libmm

From: full-disclosure () lists netsys com (Stuart Thomas)
Date: Wed, 31 Jul 2002 15:14:06 +0100
This message is in MIME format. Since your mail reader does not understand
this format, some or all of this message may not be legible.

------_=_NextPart_000_01C2389C.881D4B30
Content-Type: text/plain;
        charset="iso-8859-1"

Is there a technical version of this Full-Disclosure list?, or
is this just the list for discussing the finer academic intricacies of
balanced arguments?

[Flame-Bate]






------_=_NextPart_000_01C2389C.881D4B30
Content-Type: message/rfc822
Content-Description: Re: [Full-Disclosure] Security Update: [CSSA-2002-032.0] Linux: temporary file races in libmm

Message-ID: <1028122041.28063.26.camel@gaspode.localnet>
From: Nigel Metheringham <Nigel.Metheringham () dev InTechnology co uk>
Reply-To: full-disclosure () lists netsys com
To: full-disclosure () lists netsys com
Subject: Re: [Full-disclosure] Security Update: [CSSA-2002-032.0] Linux: t
        emporary file races in libmm
Date: Wed, 31 Jul 2002 14:27:20 +0100
MIME-Version: 1.0
X-Mailer: Internet Mail Service (5.5.2653.19)
List-Help: <mailto:full-disclosure-request () lists netsys com?subject=help>
List-Subscribe: <http://lists.netsys.com/mailman/listinfo/full-disclosure>,<mailto:full-disclosure-request () lists 
netsys com?subject=subscribe>
List-Unsubscribe: <http://lists.netsys.com/mailman/listinfo/full-disclosure>,<mailto:full-disclosure-request () lists 
netsys com?subject=unsubscribe>
Content-Type: text/plain;
        charset="iso-8859-1"

On Wed, 2002-07-31 at 13:24, John Cartwright wrote:

We believe that the vendor notifications are useful information. To
provide a viable alternative to other more commercial lists, we need to
extend our reach to as wide a range of people as possible. I have been
campaigning for vendors to submit content to us for this reason.


Personally I'd prefer the vendor notifications to be put on a parallel
list, because
        1. A flurry of 100s of one-man-and-their-dog Linux distributions
           announcing a security update obscures the real discussion
           (especially as each announcement is in its own thread).
        2. I already get (multiple) copies of this stuff.  Save the
           electrons, give me a chance to not duplicate to that extent.

[Damn, we're back to list meta discussions - this is the most
introspective list I have ever been on :-) ]

        Nigel.
-- 
[ Nigel Metheringham           Nigel.Metheringham () InTechnology co uk ]
[ - Comments in this message are my own and not ITO opinion/policy - ]

_______________________________________________
Full-Disclosure - We believe in it.
Full-Disclosure () lists netsys com
http://lists.netsys.com/mailman/listinfo/full-disclosure

------_=_NextPart_000_01C2389C.881D4B30--
Previous By Date Next
Previous By Thread Next

Current thread: