|
News News regarding BSD and related. |
|
Thread Tools | Display Modes |
|
|||
Systemd wins a software security award
Systemd wins top gong for 'lamest vendor' in Pwnie security awards
--The Register, 28 July 2017 ... the lamest vendor response award went to Systemd supremo Lennart Poettering for his controversial, and perhaps questionable, handling of the following bugs in everyone's favorite init replacement: 5998, 6225, 6214, 5144, and 6237 that we covered here. "Where you are dereferencing null pointers, or writing out of bounds, or not supporting fully qualified domain names, or giving root privileges to any user whose name begins with a number, there's no chance that the CVE number will referenced in either the change log or the commit message," reads the Pwnie nomination for Systemd, referring to the open-source project's allergy to assigning CVE numbers. "But CVEs aren't really our currency any more, and only the lamest of vendors gets a Pwnie!" http://www.theregister.co.uk/2017/07..._pwnie_awards/
__________________
When you see a good move, look for a better one. --Lasker |
|
|||
You've made my day.
__________________
Signature: Furthermore, I consider that systemd must be destroyed. Based on Latin oratorical phrase |
|
|
Similar Threads | ||||
Thread | Thread Starter | Forum | Replies | Last Post |
Developing a Metric of Software Security | shep | News | 4 | 1st August 2016 02:51 PM |
Thoughts on software and security | jggimi | OpenBSD Security | 2 | 18th July 2015 06:20 AM |
Misc. BSD/UNIX Debian Forked Over Systemd | J65nko | News | 10 | 30th November 2014 12:39 AM |
LLVM compiler infrastructure receives ACM Software System Award | J65nko | News | 0 | 12th April 2013 12:48 AM |
Google open codec wins OSI love after patent shield rethink | J65nko | News | 0 | 6th June 2010 01:27 AM |