Slashdot Mirror

← Back to Stories (view on slashdot.org)

BugTraq's Elias Levy Talks Security

Posted by timothy on from the how-apropos dept.

LiquidPC writes: "UnderLinux.com.br has an interview with the BugTraq moderator, Elias Levy or Aleph1. Questions ranging from what he thinks of 'Hacking Exposed' to whether BSD is more secure than Linux. Kind of short, but interesting nonetheless." He notes the interesting difference between the approaches to security taken by FreeBSD (which he praises) and Linux -- lots of projects vs. a single unified one, and emphasizes that security is ongoing, not defeating any single problem.

34 of 137 comments (clear)

  1. Please! by Anonymous Coward · · Score: -1, Offtopic

    Will somebody please think of the children and put the goat sex back into goatse.cx?

    1. Re:Please! by Anonymous Coward · · Score: -1, Offtopic

      I'm 27 and and don't know how to kiss.

    2. Re:Please! by Anonymous Coward · · Score: -1, Offtopic

      What we really want to know is:

      Does Elisa Lev give good head

  2. n+1 by Anonymous Coward · · Score: -1, Offtopic

    n+1 st post !

  3. Propz to all dead penis birds by TrollMan+5000 · · Score: -1, Offtopic

    Propz to all dead penis birds

  4. European homosex by Anonymous Coward · · Score: -1, Offtopic

    Anyone?

    1. Re:European homosex by Anonymous Coward · · Score: -1, Offtopic

      I, SpanishInquisition, will be happy to service your cock at a reasonable price. Remember, I care about the consumer--I price match! Found a John that will let you fuck him in the ass for free? I'll competitively match that price and then some! YES! That's right! I'll pay YOU to fuck ME!

      -SpanishInquisition

    2. Re:European homosex by Anonymous Coward · · Score: -1, Offtopic
      No thanks, but ask SpanishInquisition.

      He's always game.

    3. Re:European homosex by Anonymous Coward · · Score: -1, Offtopic

      I don't know... I don't feel like having to deal with flaccid Brit penises. Wouldn't mind a thick, fat German cock, though.

  5. ROB MALDA Rulezz!! by Anonymous Coward · · Score: -1, Offtopic

    Fuck all trolls!!
    Fuck all ACs!!

  6. I've got purple potatoes in my pants! by Anonymous Coward · · Score: -1, Offtopic

    I'm such a troll today. Sorry.

  7. Are you sure? by Anonymous Coward · · Score: -1, Offtopic

    I don't think the goatse.cx guy can be secured.

  8. They're dead? by Anonymous Coward · · Score: -1, Offtopic

    Oh no...

  9. Re:Most Secure Language by Anonymous Coward · · Score: -1, Offtopic

    Have you ever actually seen a VB or C# program vulnerable to a buffer overflow exploit or are you just karma whoring?

  10. Blood on Clintons Hands by Anonymous Coward · · Score: -1, Offtopic
    By Anne Applebaum
    (she writes for Slate, and was a Clinton apologist),

    As no one much noticed in recent years, there is an opposition to the Taliban. It is called the Northern Alliance and, not coincidentally, its leader was murdered a few days ago. On the eve of the attacks on the World Trade Center and the Pentagon, another, far less spectacular suicide bomb -- placed by two Arabs posing as journalists -- killed Ahmed Shah Masud, a popular leader and a moderate Muslim, who has led the Alliance ever since his famous victories over the Red Army during the 1980s. Masud had visited Europe last spring, in the company of his foreign minister. Both of them impressed journalists (myself included) and politicians alike. They were modest in their demands, asking for humanitarian aid, not military backing.


    They also made it clear that they would very much like the United States to shift its attitude in the region, from one of complete neutrality to at least mild favoritism of the anti-Taliban forces. Despite the attacks on U.S. embassies in Africa, the Cole, and other US targets, Clinton for eight years never considered it at all. This may someday be remembered as the single greatest foreign policy failure of his, preferring to turn over the whole region to the Pakistanis, who have backed the Taliban all along. Now Masud is dead, probably murdered in anticipation of the terrorist attack: Bin Laden understood better than the Americans that Masud would have been America's best weapon, having operated in precisely the region that Bin Laden's terrorists now occupy.


    1. Re:Blood on Clintons Hands by Anonymous Coward · · Score: -1, Offtopic

      Uhh actually it's bush the firsts fault.

      The reason Osoma Bin Laden is pissed in the first place all goes back the the gulf war.

      Clinton even signed the order allowing the the CIA to kill Bin Laden but the incompetent CIA fucktards botched it.

    2. Re:Blood on Clintons Hands by Anonymous Coward · · Score: -1, Offtopic

      The Middle East just looooooooved America. It was their favorite country. Jimmy Carter had picnics with all of the Middle Eastern leaders. They ate tasty little sandwiches, held hands, and sang songs. Then the evil, evil dictator Reagan siezed control. His first act was to break off picnic ties with the Middle East, and take back the official US basket and red and white checkered blanket.

      Then came the far more evil Bush. Again, up until this point, Bin Laden and the rest of the Middle East loved us, and wished for the grand old days of picnics with the friendly peanut farmer. Bush invaded Iraq (personally) and OBL took personal exception to this. Then the evil CIA is responsible for failing a mission after being gutted by Carter in the 70s and never fully rebuilt.

      And they lived happily ever after.

    3. Re:Blood on Clintons Hands by Anonymous Coward · · Score: -1, Offtopic

      Yup that's pretty much how it went down.

  11. Mr. Dressup, Hero, dead at 73 by Anonymous Coward · · Score: -1, Offtopic

    I just read some sad news on the internet - hero Mr. Dressup was found dead in a Toronto hospital this morning. I'm sure everyone in the Slashdot community will miss him - even if you didn't enjoy his work, there's no denying his contributions to popular culture. Truly a Canadian icon.

  12. Re:Slashdotted... by Anonymous Coward · · Score: -1, Offtopic

    *cough*karma whore*cough* ....

    enough said.

  13. Re:Slashdotted... by Anonymous Coward · · Score: -1, Offtopic

    If no one can read the article, it's tough to have a good forum about it. Karma is incidental.

  14. Re:yup by Anonymous Coward · · Score: -1, Offtopic

    denying the truth won't change the facts.

  15. Aleph1? Latin steak sauce? by Anonymous Coward · · Score: -1, Offtopic

    Steakus saucius Aleph 1. Tastus MAXIMUS!

  16. Re:yup by Anonymous Coward · · Score: -1, Offtopic

    Insightful

  17. Re:OpenBSD, not FreeBSD by Anonymous Coward · · Score: -1, Offtopic

    OpenBSD is only more secure than other OSes because
    it ships with most network-accessible daemons
    switched off by default.

    That is why they say 'no remote holes in the *default*
    install.'

    Personally, I use OpenBSD as my gateway, but I
    rip out sendmail, BIND and ftpd, installing qmail,
    djbdns and publicfile instead. I trust them more, as
    they have never had remote holes.

  18. Re:script to stop this new @!#%#@! bug by Anonymous Coward · · Score: -1, Offtopic

    It's not quite what you ask for but there is a tool that can be used in conjunction with snort called hogwash that more or less peforms this function (i.e. it blocks attacks with known signatures).

    Go to www.snort.org and read up on snort and hogwash.

  19. *BSD is dying by Anonymous Coward · · Score: -1, Offtopic
    *SD is dying

    Yet nother crippling bombshell hit the beleaguered *BSD community when last month IDC confirmed that *BSD accounts for less than a mere fraction of 1 percent of all servers. Coming on the heels of the latest Netcraft survey which plainly states that *BSD has lost more market share, this news serves to reinforce what we've known all along. *BSD is collapsing in complete disarray, as further exemplified by failing dead last in the recent Sys Admin comprehensive networking test.

    You don't need to be a Kreskin to predict *BSD's future. The hand writing is on the wall: *BSD faces a bleak future. In fact there won't be any future at all for *BSD because *BSD is dying. Things are looking very bad for *BSD. As many of us are already aware, *BSD continues to lose market share. Red ink flows like a river of blood. FreeBSD is the most endangered of them all.

    Let's keep to the facts and look at the numbers.

    OpenBSD leader Theo states that there are 7000 users of OpenBSD. How many users of NetBSD are there? Let's see. The number of OpenBSD versus NetBSD posts on Usenet is roughly in ratio of 5 to 1. Therefore there are about 7000/5 = 1400 NetBSD users. BSD/OS posts on Usenet are about half of the volume of NetBSD posts. Therefore there are about 700 users of BSD/OS. A recent article put FreeBSD at about 80 percent of the *BSD market. Therefore there are (7000+1400+700)*4 = 36400 FreeBSD users. This is consistent with the number of FreeBSD Usenet posts.

    Due to the troubles of Walnut Creek, abysmal sales and so on, FreeBSD went out of business and was taken over by BSDI who sell another troubled OS. Now BSDI is also dead, its corpse turned over to yet another charnel house.

    All major surveys show that *BSD has steadily declined in market share. *BSD is very sick nd its long term survival prospects are very dim. If *BSD is to survive at all it will be among OS hobbyist dabblers. *BSD continues to decay. Nothing short of a miracle could save it at this point in time. For ll practical purposes, *BSD is dead.

    *BS is dying

  20. Blood on Clinton's Dick by Anonymous Coward · · Score: -1, Offtopic

    Monica bit the head off. Then he decided to bomb Sudan because he didnt want Sudanese dicks to have heads either. The end.

  21. Re:freebsd by Anonymous Coward · · Score: -1, Offtopic

    I am also gay and crackable.

  22. Re:FreeBSD != OpenBSD. by Anonymous Coward · · Score: -1, Offtopic

    "We will treat Osama Bin Laden to a spookydisharmoniousconflicthellride he will never forget," said Defense Secretary Wesley Willis in a televised press conference this morning. "Rock over London, rock on Kabul. McDonald's. We love to see you smile."

  23. Re:Slashdotted... by Anonymous Coward · · Score: -1, Offtopic

    Way to break copyright law. Slashdot needs to fucking ban fucks that do this. Or at least give me a -1 Copyright Infringement for my mod points.

  24. Aleph1 sells out by Anonymous Coward · · Score: -1, Offtopic

    Elias Levy is a crook and a sellout.

    He didn't start bugtraq. It doesn't belong to him, nor securityfocus. Scott Chasin started it, and handed it to hacker buddy (not that I mind, just hate it when people try to bury their past), Aleph1.

    It wasn't supposed to be commercial. Chasin specifically said that. Yet, in an attempt to make a big buck during the Gold Rush years, Mr. Levy pirates the list and starts SecurityFocus with some some ex-hackers fleeing the Fucked Company of Network Associates, who had bought their company SecNeet, Secure Networks. These guys are all ex-hackers too, though of course they'd deny it if you asked them.

    SecurityFocus also bought out Jennifer Myers, also an ex-hacker, who ran the archive site at geek-girl. This way, people would have to go to the frames and advertisement laden securityfocus site to see the archives. When others started their own, non-commercial archives site, SecurityFocus threatened them. For some reason unknown, they didn't follow through on their threats and the mirrors remain up.

    SecurityFocus is without a reasonable business plan. They co-opt the open-source, full disclosure community. They now censor posts at the behest of the powerful or monied, or just because they feel like it. They have their own, non-free list that companies pay for to get news before it hits bugtraq, so what can you expect? Still, they don't get much for their money. They sell a library of exploits and bugs that they've combed over, to still wanna-be security consultants for a large sum of money. Yup, the posts all you guys made to bugtraq are keeping other people in coke,bmws, and sushi. Well at least they were. How much longer will securityfocus be around? I bet we'll be seeing them on fuckedcompany by the end of the year.

    Yea, I am posting anonymously because I don't want to have to worry about some fucking minion of theirs pushing me into the pool, or worse, at the next defcon.

  25. More interesting would be... by Anonymous Coward · · Score: -1, Offtopic

    eugene levy talking about internet security

  26. You can't even cut and paste right? by Anonymous Coward · · Score: -1, Offtopic

    > *DSD is dying

    Fucking retard.