Go Back   DaemonForums > DaemonForums.org > News

News News regarding BSD and related.

Thread Tools Display Modes
  #1   (View Single Post)  
Old 29th July 2017
comet--berkeley comet--berkeley is offline
Real Name: Richard
Package Pilot
Join Date: Apr 2009
Location: California
Posts: 143
Default Systemd wins a software security award

Systemd wins top gong for 'lamest vendor' in Pwnie security awards
--The Register, 28 July 2017

... the lamest vendor response award went to Systemd supremo Lennart Poettering for his controversial, and perhaps questionable, handling of the following bugs in everyone's favorite init replacement: 5998, 6225, 6214, 5144, and 6237 that we covered here.

"Where you are dereferencing null pointers, or writing out of bounds, or not supporting fully qualified domain names, or giving root privileges to any user whose name begins with a number, there's no chance that the CVE number will referenced in either the change log or the commit message," reads the Pwnie nomination for Systemd, referring to the open-source project's allergy to assigning CVE numbers.
"But CVEs aren't really our currency any more, and only the lamest of vendors gets a Pwnie!"

When you see a good move, look for a better one.
Reply With Quote
  #2   (View Single Post)  
Old 29th July 2017
hitest's Avatar
hitest hitest is offline
Real Name: George Nielsen
Spam Deminer
Join Date: Sep 2008
Location: B.C., Canada
Posts: 263

Originally Posted by comet--berkeley View Post
Systemd wins top gong for 'lamest vendor' in Pwnie security awards
--The Register, 28 July 2017
I tried out CentOS for a few days, but, quickly reverted back to Slackware. I'm happy to be systemd free with Slackware and OpenBSD.
Reply With Quote
  #3   (View Single Post)  
Old 29th July 2017
e1-531g e1-531g is offline
ISO Quartermaster
Join Date: Mar 2014
Posts: 494

You've made my day.
Signature: Furthermore, I consider that systemd must be destroyed.
Based on Latin oratorical phrase
Reply With Quote
  #4   (View Single Post)  
Old 29th July 2017
IdOp's Avatar
IdOp IdOp is offline
Too dumb for a smartphone
Join Date: May 2008
Location: twisting on the daemon's fork(2)
Posts: 870

I thought the day was April 1 when I first read the thread title!
Reply With Quote

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Developing a Metric of Software Security shep News 4 1st August 2016 02:51 PM
Thoughts on software and security jggimi OpenBSD Security 2 18th July 2015 06:20 AM
Misc. BSD/UNIX Debian Forked Over Systemd J65nko News 10 30th November 2014 12:39 AM
LLVM compiler infrastructure receives ACM Software System Award J65nko News 0 12th April 2013 12:48 AM
Google open codec wins OSI love after patent shield rethink J65nko News 0 6th June 2010 01:27 AM

All times are GMT. The time now is 01:45 PM.

Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2019, Jelsoft Enterprises Ltd.
Content copyright © 2007-2010, the authors
Daemon image copyright ©1988, Marshall Kirk McKusick