Re: DSA 438 - bad server time, bad kernel version or information delayed?

To: debian-security@lists.debian.org
Subject: Re: DSA 438 - bad server time, bad kernel version or information delayed?
From: Jan Lühr <jluehr@gmx.net>
Date: Wed, 18 Feb 2004 23:37:19 +0100
Message-id: <[🔎] 200402182337.27306.jluehr@gmx.net>
In-reply-to: <[🔎] 20040218214754.GN6636@mathom.us>
References: <m1AtTe6-000pqXC@finlandia.Infodrom.North.DE> <[🔎] 200402182236.35125.jluehr@gmx.net> <[🔎] 20040218214754.GN6636@mathom.us>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Greetings,

Am Mittwoch, 18. Februar 2004 22:47 schrieb Michael Stone:
> On Wed, Feb 18, 2004 at 10:36:35PM +0100, Jan Lühr wrote:
> >Well, of course you might have quite good reasons for doing so, but for
> > me, this is quite a good reason for changing the distri or os.
>
> Goodbye.
>
> >Hiding unfixed holes is one thing (and I appreciate that partly) but
> > hiding already fixed packages is quite astonishing and you cannot tell me
> > you need more than two weeks to test a simple correction.
>
> I don't think anyone in a position to tell you such a thing did so. If
> you want to amuse yourself by wild unfounded speculation that's your
> prerogative, but I have to say that approach is likely to find you
> pissing in the wrong stream.
>
Ok, I thing your are right here.

But if knowlegde about this vuln is availeable - if fixes are done, but not 
avaible yet, how do I protect myself?

Keep smiling
yanosz
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.3 (GNU/Linux)
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=nFoY
-----END PGP SIGNATURE-----

Reply to:

Follow-Ups:
- Re: DSA 438 - bad server time, bad kernel version or information delayed?
  - From: Michael Stone <mstone@debian.org>
- Re: DSA 438 - bad server time, bad kernel version or information delayed?
  - From: Florian Weimer <fw@deneb.enyo.de>

References:
- Re: DSA 438 - bad server time, bad kernel version or information delayed?
  - From: Jan Lühr <jluehr@gmx.net>
- Re: DSA 438 - bad server time, bad kernel version or information delayed?
  - From: Michael Stone <mstone@debian.org>

Prev by Date: Re: DSA 438 - bad server time, bad kernel version or information delayed?
Next by Date: Re: DSA 438 - bad server time, bad kernel version or information delayed?
Previous by thread: Re: DSA 438 - bad server time, bad kernel version or information delayed?
Next by thread: Re: DSA 438 - bad server time, bad kernel version or information delayed?
Index(es):
- Date
- Thread