Bugtraq mailing list archives
Re: Fwd: Any user can panic OpenBSD machine
From: thorpej () nas nasa gov (Jason Thorpe)
Date: Tue, 28 Jul 1998 10:51:12 -0700
On Mon, 27 Jul 1998 23:21:20 -0400 "Perry E. Metzger" <perry () piermont com> wrote:
Personally, I find the constant claims that OpenBSD is more secure than FreeBSD and NetBSD annoying. We all do extensive security work. This is just another example of a fairly common situation -- in which OpenBSD has a bug that other BSDs don't. Sometimes it is the other way around, too, but you'd think from the propaganda that it was always, or even usually, OpenBSD that was the most secure system.
I'd also like to point out that the OpenBSD "fix" for the problem is incorrect. It is now possible for the OpenBSD read and write system calls to return garbage "bytes actually transfered" values. Jason R. Thorpe thorpej () nas nasa gov NASA Ames Research Center Home: +1 408 866 1912 NAS: M/S 258-5 Work: +1 650 604 0935 Moffett Field, CA 94035 Pager: +1 650 940 5942
Current thread:
- Re: FD's 0..2 and suid/sgid procs (Was: Crash a redhat 5.1 linux, (continued)
- Re: FD's 0..2 and suid/sgid procs (Was: Crash a redhat 5.1 linux Alan Cox (Jul 30)
- Re: FD's 0..2 and suid/sgid procs (Was: Crash a redhat 5.1 linux Pavel Kankovsky (Jul 30)
- Re: netscape mail overflow(another one) Paul Boehm (Jul 29)
- who Paul Boehm (Jul 28)
- Re: Fwd: Any user can panic OpenBSD machine Chris Wedgwood (Jul 28)
- Re: Fwd: Any user can panic OpenBSD machine Dag-Erling Coidan Smørgrav (Jul 27)
- Re: Fwd: Any user can panic OpenBSD machine Todd C. Miller (Jul 27)
- Re: Fwd: Any user can panic OpenBSD machine Peter Jeremy (Jul 27)
- Re: Fwd: Any user can panic OpenBSD machine Chris Wedgwood (Jul 27)
- Re: Fwd: Any user can panic OpenBSD machine Joshua Cope (Jul 28)
- Re: Fwd: Any user can panic OpenBSD machine Jason Thorpe (Jul 28)
- Re: Fwd: Any user can panic OpenBSD machine Todd C. Miller (Jul 28)
- Re: Fwd: Any user can panic OpenBSD machine der Mouse (Jul 29)