Is it OK for Microsoft and others to forbid disclosure of benchmark results?

[Brian Densmore]

There are definitely security holes in 6.2. You're best bet is to go to
RedHat and download what they recommend for security patches. They are
pretty good about that. What your specific weaknesses are depends on
what you installed on your machine. The big ones that I know of are
sendmail, pop3, bind, samba, XFree86, and apache. There are of course
many others, and YMMV. Bind (aka named) is a big one, make sure you have
at least version 8.2.3!

> -----Original Message-----
> From: jim [mailto:jim at jimani.com]
> Sent: Thursday, November 01, 2001 11:44 PM
> To: kclug at kclug.org
> Subject: Re: Is it OK for Microsoft and others to forbid disclosure of
> benchmark results?
> 
> 
> Hi,
> 
> On Thu, Nov 01, 2001 at 03:42:47PM -0600, Bradley Miller wrote:
> > 
> > Next note -- yes, at least my server (mail) was compromised 
> due to some RH
> > 6.2 flaws . . . now I guess I will be more viligent and 
> tighten down the
> > hatches on all my servers.  Perhaps it's a wakeup call, and 
> I guess I
> > should be glad it was just a "script kiddie" but it still 
> ruffles my ire
> > when I think about it.   
> 
> So what were the "RH 6.2 flaws"?  I have several servers out 
> there, some
> running RH 6.2.  If you know about a security flaw in RH 6.2 
> please tell
> me before the script kiddies tell me.
> -- 
> Jim
> 
> 
> majordomo at kclug.org
>