Full Disclosure mailing list archives

Re: heartbleed OpenSSL bug CVE-2014-0160

From: Paul Vixie <paul () redbarn org>
Date: Thu, 10 Apr 2014 23:01:44 -0700



Michal Zalewski wrote:

http://m.smh.com.au/it-pro/security-it/man-who-introduced-serious-heartbleed-security-flaw-denies-he-inserted-it-deliberately-20140410-zqta1.html


"Man who introduced serious 'Heartbleed' security flaw denies he
inserted it deliberately"


yeah, and when i was creating all the cron, bind, ftpd, and sendmail
vulnerabilities that made me so famous back in the 1990's, none of those
were deliberate, either.  BWA-hahahahaha.

Wow, we're climbing to some new levels here.


when the internet moved out of academia and into the larger population,
we got tabloids and ambulance chasers in the deal. ick.


_______________________________________________
Sent through the Full Disclosure mailing list
http://nmap.org/mailman/listinfo/fulldisclosure
Web Archives & RSS: http://seclists.org/fulldisclosure/

Current thread:

Re: heartbleed OpenSSL bug CVE-2014-0160, (continued)
- - Re: heartbleed OpenSSL bug CVE-2014-0160 Aidan Thornton (Apr 09)
- Re: heartbleed OpenSSL bug CVE-2014-0160 Peter Malone (Apr 09)
  - Re: heartbleed OpenSSL bug CVE-2014-0160 Coderaptor (Apr 09)
- Re: heartbleed OpenSSL bug CVE-2014-0160 Peter Malone (Apr 09)
  - Re: heartbleed OpenSSL bug CVE-2014-0160 Jann Horn (Apr 10)
- Re: heartbleed OpenSSL bug CVE-2014-0160 Ingo Schmitt (Apr 10)
  - Re: heartbleed OpenSSL bug CVE-2014-0160 Brandon Perry (Apr 10)
  - Re: heartbleed OpenSSL bug CVE-2014-0160 David Tomaschik (Apr 10)
    - Re: heartbleed OpenSSL bug CVE-2014-0160 Ivan .Heca (Apr 10)
    - Re: heartbleed OpenSSL bug CVE-2014-0160 Michal Zalewski (Apr 10)
    - Re: heartbleed OpenSSL bug CVE-2014-0160 Paul Vixie (Apr 10)
    - Re: heartbleed OpenSSL bug CVE-2014-0160 Paul Vixie (Apr 10)
    - Re: heartbleed OpenSSL bug CVE-2014-0160 Ivan .Heca (Apr 11)
    - Re: heartbleed OpenSSL bug CVE-2014-0160 Brandon Perry (Apr 11)
    - Re: heartbleed OpenSSL bug CVE-2014-0160 Marco Davids (priv) (Apr 11)
    - Re: heartbleed OpenSSL bug CVE-2014-0160 Juergen Christoffel (Apr 11)
    - Re: heartbleed OpenSSL bug CVE-2014-0160 Paul Vixie (Apr 11)
    - Re: heartbleed OpenSSL bug CVE-2014-0160 Michal Zalewski (Apr 11)
    - Re: heartbleed OpenSSL bug CVE-2014-0160 Ferenc Kovacs (Apr 11)
    - Re: heartbleed OpenSSL bug CVE-2014-0160 Manuel Tiago Pereira (Apr 11)
    - Re: heartbleed OpenSSL bug CVE-2014-0160 Schmidt, Michael (Apr 11)

(Thread continues...)