Slashdot Mirror

← Back to Stories (view on slashdot.org)

OpenSSH Vulnerability Discovered

Posted by ryuzaki0 on from the well-thats-not-good dept.

farker haiku writes "Those of you who haven't heard of the metasploit project, it's an open source product for performing security audits. This time they've managed to find a remote buffer overflow in OpenSSH. Ya'll might want to read the link and then do whatever updating is necessary." It's unfortunate that something like this gets released today since nobody will bother to patch.

116 comments

  1. Beer sploit confirmed! by Ckwop · · Score: 4, Funny

    My stomach had a couple of buffer overflows last-night. It was sploited by Arthur Guinness, well known for his ingenious bowel movement exploits.

    It may take a life time to fix this vulnerability :(

    Simon

    1. Re:Beer sploit confirmed! by glasn0st · · Score: 1

      SePo!!!!

      --
      ( ^_^)/
    2. Re:Beer sploit confirmed! by MustardMan · · Score: 4, Funny

      Using beer as exploit!? Brilliant!

    3. Re:Beer sploit confirmed! by kwark · · Score: 1

      AKA social engineering

    4. Re:Beer sploit confirmed! by edunbar93 · · Score: 1

      You should see what it does to our servers! Once it gets into the USB ports, it's game over man.

      --
      "No problem. I have the capacity to do infinite work so long as you don't mind that my quality approaches zero."-Dilbert
    5. Re:Beer sploit confirmed! by brouski · · Score: 1

      Brilliant!

      --
      Proud member of the American Non Sequitur Society. We might not make much sense, but boy do we love pizza!
    6. Re:Beer sploit confirmed! by nacturation · · Score: 2, Insightful

      The funny thing about it is that nobody would get fooled. "Hole in OpenSSH? Obviously an April Fools joke." Had it been an article about a new Sendmail exploit, people would be saying "Oh, crap... you had me there. That's just not funny! I thought I'd be spending all Saturday patching."

      --
      Want to improve your Karma? Instead of "Post Anonymously", try the "Post Humously" option.
    7. Re:Beer sploit confirmed! by Slashcrap · · Score: 1

      The funny thing about it is that nobody would get fooled. "Hole in OpenSSH? Obviously an April Fools joke."

      Oh yeah, because there's never been a serious, pre-authentication remote root in OpenSSH. And thousands of people didn't get hacked by it.

      It's in the Matrix movie for fucks sake. And what do you think was the cause of that "One remote hole in the default install in 8 years" on the OpenBSD site? Yes, well done - OpenSSH.

  2. I don't care! Exploit me! by Opportunist · · Score: 2, Funny

    C'mon, I dare you to send 1025 beers my way!

    --
    We used to have a Bill of Rights. Now, with the rights gone, all we have left is the bill.
  3. Beersploit by cj171 · · Score: 1

    I don't know...if my buffer was overflowed with 1025 beers, I might not care about the pink....

    then again I might not care about much at all at that point

    Cheers!

  4. Kilobeer by jrmcferren · · Score: 2, Funny

    I guess that this will only allow the sending of one kilobeer.

    --
    sudo mod me up
    1. Re:Kilobeer by Mr.+Haplo · · Score: 1

      Actually, it's a Kibibeer + 1. A Kilobeer (KBr) would be 1000 beers. A Kibibeer (KiBr) is 1024 beers.

      --
      -- You have moved your mouse. Windows will now reboot.
  5. #include by Radical250 · · Score: 2, Funny

    This exploit has been found to be connected to a flaw in the Beer.h library. Work to resolve this issue will be resumed shortly after those responsible are sober again.

    1. Re:#include by Opportunist · · Score: 1

      My first guess was that the #included alcohol.h in beer.h was responsible, but even after removing it, I still had an overflow problem in toilet.h after 1025 beers. And, to be honest, the whole package really sucks without the alcohol.h, to the point of uselessness and I gotta wonder who'd want to use it without the alcohol support?

      Anyway. My guess is that the fast workaround for this problem is to limit the MAX_BEERS #define to a sensible value of 0x100 or 0x200 'til the problem is fixed.

      --
      We used to have a Bill of Rights. Now, with the rights gone, all we have left is the bill.
    2. Re:#include by __aaxwdb6741 · · Score: 1
      I gotta wonder who'd want to use it without the alcohol support?
      Certain systems have had their beer limit overflowed and then they kept sending REQUEST's despite having reached the defined BEER_LIMIT, so they are trying to avoid alcohol support untill some platform-dependant issues are resolved.

      Anyway, the alcohol.h library is completely insecure and buggy. It causes my terminal to spit out it's core and terminate.
    3. Re:#include by Shadow_139 · · Score: 1

      No the real problem is it that you did not #include Irish.h and you used beer.h not Real_non_US_Shit_Beer.h

      Then set the limit of MAX_BEERS to a sensible value for a real Irish person of 0x999999999999

    4. Re:#include by Anonymous Coward · · Score: 0

      Why are you limiting to a integer type?
      I thing the proper type is long double and the constant is PLUS_INF.
      Even when you limit to an unsigned integer the 0x constant should be 0xFFFFFFFFFFFFFFFF

    5. Re:#include by Shadow_139 · · Score: 1

      Ok, set it to 0xDEADBEEF OR 0XBADBABE then.........

    6. Re:#include by Opportunist · · Score: 1

      Yeah, I had my share of core dumps due to alcohol.h. So what? Yeah, it has its drawbacks. The system loses stability, it doesn't run as fast, reaction could be better, but somehow, I dunno, it just "feels" better, if that makes sense.

      --
      We used to have a Bill of Rights. Now, with the rights gone, all we have left is the bill.
  6. Insert Typical Slashbot April Fools Complaint by Eagle5596 · · Score: 4, Funny

    Random complaining about April Fools. Mentioning that somehow my pathetic Slashbot life is above April Fools. Pretending that this somehow really inconviences me. Random ranting about the quality of Slashdot having degenerated. Not noting that I still seem to be here despite the supposed quality drop. More ranting, possibly about the current article. Protesting the personal problems this story has caused me. Indicating through my lack of a sense of humor that I must be from Finland. More random complaints, followed by a lack of the irony that I am so pathetic to take this joke personally.

    ----
    -Signiture as unamusing as the current slashdot story.

    1. Re:Insert Typical Slashbot April Fools Complaint by Eagle5596 · · Score: 4, Funny

      Insignificant self righteous followup to include the comments I forgot about. Not mentioning that if I hadn't been a douche and used the preview button, this wouldn't be a followup. Idiotic closing insult.

    2. Re:Insert Typical Slashbot April Fools Complaint by Uber+Banker · · Score: 4, Funny

      Comment to complain about grammer and spelling promlem's that the very reply also exhibits.

    3. Re:Insert Typical Slashbot April Fools Complaint by pohl · · Score: 2, Funny

      snarky, bad meta-level joke

      --

      The "cue the foo posts in 3, 2, 1..." posts will commence with no subsequent foo posts in 3, 2, 1...

    4. Re:Insert Typical Slashbot April Fools Complaint by Bozzio · · Score: 2, Funny

      Reply complaining about obvious grammar and spelling mistakes while completely missing the joke.

      --
      I just pooped your party.
    5. Re:Insert Typical Slashbot April Fools Complaint by rtaylor · · Score: 2, Insightful

      One hilarious April fools joke would have been to run Slashdot very professionally during this time. No spelling or factual errors, no dupes, article summaries that actually apply to the article, etc.

      Once the 1st was over they could then return to their usual methods.

      Just think of all the people that avoid the site during this time because of the way it operates during this time period.

      --
      Rod Taylor
    6. Re:Insert Typical Slashbot April Fools Complaint by Ctrl-Z · · Score: 2, Funny

      Off-topic reply piggy-backing on high-karma thread to have comments appear near the top of the page.

      --
      www.timcoleman.com is a total waste of your time. Never go there.
    7. Re:Insert Typical Slashbot April Fools Complaint by Dragon_Hilord · · Score: 1

      You need to recompile your kernel and #include "tollerance_awsome.h"!

      --
      Cheers, DH.
    8. Re:Insert Typical Slashbot April Fools Complaint by Jtoxification · · Score: 1

      Begin flame war, 70 lines of ranting views, and two lines of bash.

      --
      --I gots 99 problems but a new machine ain't one!
      AMD! Asus! Whoot! 6 years!
    9. Re:Insert Typical Slashbot April Fools Complaint by MarauderIIC · · Score: 1

      WORDS OF PRAISE FOR FISHFOOD

      --
      "Hm. I'm entitled to ramble on about something everyone knows." - Captain Picard
    10. Re:Insert Typical Slashbot April Fools Complaint by caffeination · · Score: 2, Funny

      Clichéd Informative karma whore reply explaining that Funny mods yield no karma unto the poster.

    11. Re:Insert Typical Slashbot April Fools Complaint by Uber+Banker · · Score: 2, Funny

      Complaint about the misuse of irony in the original comment, even thought there was a good chance it was used correctly. Something about karma whoring. Also request other users do not post AC.

    12. Re:Insert Typical Slashbot April Fools Complaint by Uber+Banker · · Score: 1

      That further post made be someone else in the thread replying to the wrong post.

    13. Re:Insert Typical Slashbot April Fools Complaint by mindriot · · Score: 1
      #!/bin/bash
      echo "Here's your two lines."
    14. Re:Insert Typical Slashbot April Fools Complaint by nacturation · · Score: 1

      HEY EURAKARTE
      <Donut[AFK]> INSULT
      <Eurakarte> RETORT
      <Donut[AFK]> COUNTER-RETORT
      <Eurakarte> QUESTIONING OF SEXUAL PREFERENCE
      <Donut[AFK]> SUGGESTION TO SHUT THE FUCK UP
      <Eurakarte> NOTATION THAT YOU CREATE A VACUUM
      <Donut[AFK]> RIPOSTE
      <Donut[AFK]> ADDON RIPOSTE
      <Eurakarte> COUNTER-RIPOSTE
      <Donut[AFK]> COUNTER-COUNTER RIPOSTE
      <Eurakarte> NONSENSICAL STATEMENT INVOLVING PLANKTON
      <Miles_Prower> RESPONSE TO RANDOM STATEMENT AND THREAT TO BAN OPPOSING SIDES
      <Eurakarte> WORDS OF PRAISE FOR FISHFOOD
      <Miles_Prower> ACKNOWLEDGEMENT AND ACCEPTENCE OF TERMS

      --
      Want to improve your Karma? Instead of "Post Anonymously", try the "Post Humously" option.
    15. Re:Insert Typical Slashbot April Fools Complaint by bitspotter · · Score: 1

      Uncritical implementation of the Unity Fallacy

    16. Re:Insert Typical Slashbot April Fools Complaint by kemichail · · Score: 1

      Random comment on nerdiness of /.ers and self-depreacting note regarding the lack of the forums collective experience in seksual endeavors.

      --
      --- This space reserved for the day when I have something witty to say.
  7. OpenSSH hacked, Theo deRaadt kicked out by pureeville · · Score: 1

    Theo deRaadt kicked out of the OpenBSD project. Finally.

    1. Re:OpenSSH hacked, Theo deRaadt kicked out by Old+Wolf · · Score: 1

      Theo deRaadt

      O, the dead rat!

  8. nice! by slack_prad · · Score: 0

    i fell for that one...almost had metasploit fired up :-/ btw check out Google's share of April fool's day : http://www.google.com/romance/index.html

    --
    Sent from my desktop computer
  9. Nice by Geoffreyerffoeg · · Score: 1

    This one actually fooled me. Fifteen LOL's and one in normal English - brilliant.

    1. Re:Nice by idhindsight · · Score: 0
      It did, really?

      Are you new?

  10. Somebody used this to hack the slashdot.jp page by Anonymous Coward · · Score: 2, Funny

    Using the recently discovered openssh hole, hackers^Wvandales defaced the slashdot.jp page, and changed the new pink color scheme back to the old ugly green theme. Management of slashdot was not available for comment.

    --
    me spell? me not even now eigo.

  11. Enough already! by TangoCharlie · · Score: 3, Funny

    Look, it's not funny anymore. No more April Fools jokes! OK!

    The really unfunny thing is that this is _so_ obviously an April
    Fools joke, that's it's not even remotely funny. At least the "UK
    Government shutting down GSM" was a plausible story, but this...

    Sheesh!

    --
    return 0; }
    1. Re:Enough already! by Anonymous Coward · · Score: 0

      LOL R3MOTELY FUNNY!

    2. Re:Enough already! by just_another_sean · · Score: 1

      Please see this. :-)

      --
      Creationist Textbook Stickers Declared Unconstitutional by CowboyNeal
  12. LINUX DEVELOPERS!!!! LOOK WHAT YOU HAVE DONE!!! by Anonymous Coward · · Score: 1, Funny

    LINUX DEVELOPERS!! Look what you've done with your software now!!! You've put out the Sun!!!!

  13. Don't complain... by Paulo's+News · · Score: 0

    That poor guy probably worked for 6 hours getting the stick-figure ASCII art just right.

    --
    Paulo's News: Bringing You the Best of the Mainsternative Media
  14. This is not funny... by Anonymous Coward · · Score: 0

    A remote exploit in openSSH is not something to be joking about...

    *puts his nerdy glasses back on*

    "Airplane falls, 335 killed"

    HaHaHahaha... *snort*

    1. Re:This is not funny... by lahi · · Score: 1

      Hey, lighten up! It's still not as bad as a drawing of Muhammad, now is it?

      -Lasse

  15. Follow the standards!!! by Anonymous Coward · · Score: 0

    According to IEC it's a kibibeer!

    1. Re:Follow the standards!!! by jrmcferren · · Score: 2, Insightful

      I grew up with kilobytes, megabytes and gigabytes being multiples of 1024. While kilohertz, megahertz, and gigahertz being multiples of 1000. I grew up during the '90s. Normally I would post this as AC, but it's April fools day so I will post it normally (might get an insightful).

      --
      sudo mod me up
    2. Re:Follow the standards!!! by dan+dan+the+dna+man · · Score: 1

      but certainly not a +1 funny ;)

      --
      I don't read your sig, why do you read mine?
    3. Re:Follow the standards!!! by shreevatsa · · Score: 1

      Unfortunately, a megabyte in a file size means 1024*1024 bytes, a megabyte capacity of a hard disk means 1000*1000 bytes, a 1.44 MB floppy has 1024*1000 bytes, and a 1 megabit per second data transfer rate is 1000*1000 bits per second. And of course, there are the usual meanings of kilo-, mega-, and giga- when used with almost all SI units.
      You may not like the "mebibyte" and "gibibyte" names, but you've got to admit that the whole thing is a mess and something needs to be done to resolve the confusion.

    4. Re:Follow the standards!!! by lahi · · Score: 1

      There really is no mess. SI just needs to accept the de facto norm that the base and exponent of the multiplier of a prefix depends on the unit it prefixes.

      So, for all traditional physical units:
      k : base = 10 , exponent = 3, M: base = 10, exponent = 6, etc

      For bits and bytes etc:
      k: base = 2, exponent = 10, M: base = 2, exponent = 20, etc

      Simple. No bibology or kibology or any other sillyness needed.

      -Lasse

    5. Re:Follow the standards!!! by turbidostato · · Score: 1

      "k: base = 2, exponent = 10, M: base = 2, exponent = 20, etc
      Simple"

      It migth be not so simple when even the proponent (aka "you") isn't able to apropiately manage the numbers, don't you think so?

      How the heck can you use an "exponent 20" when you are working base2? Remember, within base2, the number 2 is the forbidden one: only ones and zeroes allowed.

    6. Re:Follow the standards!!! by Anonymous Coward · · Score: 0

      I really hope your reply is an April fools joke.

    7. Re:Follow the standards!!! by lahi · · Score: 1

      May I suggest you change your name though simple transpositioning to stubidoratto? It would be more fitting.

      Using your logic, everything is base 10, because whenever the word base is used, noone expects decimal numbers, right?

      -Lasse

      "Always be ready to speak your mind and a base man will avoid you." (William Blake)

  16. APRIL FOOLS!! by cdn2k1 · · Score: 4, Funny

    OMG lol you almost got me there for a second, i was rushing to patch my box but then i fi-#$!#@$%#@^&%

    NO CARRIER

  17. Yawn by Anonymous Coward · · Score: 0

    You know what really sucks? All these lame jokes are going to stick around on the internet forever and bite people on other days through the wonders of search engines and automatic caches.

  18. Real security by Anonymous Coward · · Score: 0

    What if there was somthing like this that was real? Would it get drowned out by all the 2006-4-1 posts?

  19. The free beer by Anonymous Coward · · Score: 0

    Hello? Is this the open source community i have heard about? I met this guy at the pub yesterday and he was talking about this lunix thingy, i think it has something to do with computers. Either way, that doesn't matter. He told me something about being able to get free beer? Who do I contact to get the free beer?

  20. You kid around, but I got updated openssh pkg'es by Anonymous Coward · · Score: 0

    $ sudo apt-get dist-upgrade
    Reading package lists... Done
    Building dependency tree... Done
    Calculating upgrade... Done
    The following NEW packages will be installed:
      gcc-4.1-base
    The following packages will be upgraded:
      debhelper dmidecode e2fslibs e2fsprogs intltool-debian libblkid1 libcomerr2 libexpat1 libfreetype6 libgcc1 libnet-dns-perl libnewt0.52
      libpng12-0 libpng3 libss2 libstdc++6 libtiff-tools libtiff4 libuuid1 mpd ncmpc openssh-client openssh-server pciutils python2.4
      python2.4-minimal samba samba-common smbfs ssh valgrind whiptail
    32 upgraded, 1 newly installed, 0 to remove and 0 not upgraded.
    Need to get 25.3MB of archives.
    After unpacking 1109kB of additional disk space will be used.
    Do you want to continue [Y/n]? y
    [...]
    Get:13 http://ftp.debian.org unstable/main openssh-server 1:4.2p1-8 [215kB]
    Get:14 http://ftp.debian.org unstable/main openssh-client 1:4.2p1-8 [557kB]

  21. Annoying reactionary flame by caffeination · · Score: 4, Funny

    Obligatory claim to be sick of this type of rant. Nitpicking of missing characteristics tied cleverly into a logical ambush that others visit anyway. Faux disgust at perceived "racist" joke". Redundant yet Insightful reminder that you aren't forced to come here. Lone two-word expletive and/or insult and/or personality criticism whose position and abruptness will surely send parent into depression.

    1. Re:Annoying reactionary flame by Anonymous Coward · · Score: 0

      Obligatory AC reply that all posters in the thread need to get a life because it is one day where site lets hair down. Poster logs in in anonymously to avoid moderation punishment. AC believes orginal post actually funny and recalls unrelated past stories on site that evoked similar feelings.

      -- Signature added manually because AC is not logged in,
      but still believes he needs a signature to appear
      legitimate with his post.

    2. Re:Annoying reactionary flame by __aaxwdb6741 · · Score: 2, Funny

      Expected complimentary asslicking of grandparents post and irrelevant criticism of your opinions, avoiding the points given.

    3. Re:Annoying reactionary flame by Bluesman · · Score: 4, Funny

      Thinly veiled insult. Latin words from Freshman Debate 101!!

      Self-congratulatory explanation of logical fallacies of above argument. Arrogant insinuation that I am smarter than you. More big words, many in italicized non-English, attempting to display my advanced education.

      --
      If moderation could change anything, it would be illegal.
    4. Re:Annoying reactionary flame by Eagle5596 · · Score: 3, Funny

      Insightful insinuation that you are all just trying to ride my Karma train. Invitation to have sexual intercourse with yourself. Outrageous complaints and self righteous bullshit.

    5. Re:Annoying reactionary flame by Jesus_666 · · Score: 2

      Completely uncalled-for assumption that this whole thread is the USA's fault and that European users would have posted more insightful comments, flamed with more style, defeated software patents, cured cancer or all of the above.

      --
      USE HOT GRITS WITH STATUE OF NATALIE PORTMAN (NAKED AND PETRIFIED)
    6. Re:Annoying reactionary flame by Anonymous Coward · · Score: 0

      Expression of amazement that Godwin's law hasn't been fulfilled yet, shortly followed by recognition the mention is self-fulfilling.

    7. Re:Annoying reactionary flame by smittyoneeach · · Score: 3, Funny

      Right-wing reactionary onslaught, with paranoid delusional innuendo about black helicopters piloted by men with onions for heads, denounciation Europe in general, and anyone posting to /. therefrom in particular. Extra heaping of abuse for France, delivered with a bit of Grey Poupon thereon, about how the only real flame left in Europe centers on automobiles.

      Schizophrenic adoration and condemnation of Bush over stem cell policies[1] and their impact on cancer cures.

      Personal vow to give up /., email, the internet, and everything and become Amish.

      [1] Meaningless footnote to supply veneer of academic rigor.

      --
      Get thee glass eyes, and, like a scurvy politician, seem to see things thou dost not.--King Lear
    8. Re:Annoying reactionary flame by flynns · · Score: 1

      Reminder that one cannot Godwin a thread simply by mentioning Godwin.

      --
      'If you're flammable and have legs, you are never blocking a fire exit.'
    9. Re:Annoying reactionary flame by Anonymous Coward · · Score: 0

      Ok, how does this look?

  22. Sun Microsystems by schleyfox · · Score: 1

    Have they been alerted of this vulnerability, or has it happened already?

  23. MOD UP!!!! by Anonymous Coward · · Score: 0

    Mod up!!!!

  24. Open source beer by Anonymous Coward · · Score: 0

    As a side note, here's a recipe for Open Source Beer from Denmark - http://www.voresoel.dk/

  25. Hey guys by Anonymous Coward · · Score: 0

    This one had me fooled for a bit there. This is not something I like to joke about since it would have such drastic repercussions. I'm glad it's just a joke.. Or is it??

  26. Sites that don't do 4/1? by Lord_Dweomer · · Score: 1, Insightful
    Taco,

    On behalf of the huge number of us who chuckled after the first couple of stories and now want to vomit and find another temporary news site for today...Please, for the love of god, make an option on the front page so you can turn off the April Fools stories and actually get real news. You are a news site, and while it is great to take part in this holiday and have some laughs, there's still plenty of actual news occuring and it pisses a great many of us off that we now have to go to alternate sources to hunt for it. And while Digg has its fair share of 4/1 stories, it also still has real stories, so I will be directing my traffic there for the rest of the day.

    I'd be really curious to see some Slashdot traffic numbers comparing March 31st, April 1st and April 2nd. Bet you would see a HUGE dip today right around the time people started to get real tired of the dumb lame posts. What amuses me is that the creative tags people have started giving these lame stories are often more amusing than the stories themselves.

    --
    Buy Steampunk Clothing Online!
    1. Re:Sites that don't do 4/1? by yootje · · Score: 1

      Dude, don't take life that seriously. Go outside, enjoy the nature, make love / a pie / a tower of legos!

      --
      My photo's.
    2. Re:Sites that don't do 4/1? by Bemopolis · · Score: 2, Funny

      Your complaints were addressed here.

      Bemopolis

      --
      "I guess the moral of the story is, don't paint your airship with rocket fuel." -- Addison Bain
    3. Re:Sites that don't do 4/1? by Anonymous Coward · · Score: 0

      Which one of the tags do you consider creative? Is it "aprilfools", "lame", or "gay"? I'd hate to see what you come up with if that impresses you as creative.

    4. Re:Sites that don't do 4/1? by Bemopolis · · Score: 1

      And here.

      Bemopolis

      --
      "I guess the moral of the story is, don't paint your airship with rocket fuel." -- Addison Bain
    5. Re:Sites that don't do 4/1? by seanvaandering · · Score: 1

      Give it up - it's even Saturday - so who really cares anyways - besides, when we would normally dupe everything today for tommorow - now you'll think it's all new news tommorow! How about those apples?

    6. Re:Sites that don't do 4/1? by BrianPan · · Score: 1

      Oh, I see where you're going with this. The quality of posts/timely news angle. Ok, maybe they'll listen to that. Give it a shot.

      Good luck with that.

    7. Re:Sites that don't do 4/1? by caffeination · · Score: 1

      It's kind of scary how closely this guy is actually acting out that post. Scary for him, that is. Time for some self-evaluation?

  27. dangerous by arabagast · · Score: 2, Insightful

    Thinking about how common it is for an average slashdotter to RTFA, this could actually lead to people blindly jumping into their car and speeding away to "patch those boxxors". Nice one!
      I must admit from reading the title my heart missed a beat. Theres's gotta be something real on 1.april, no ?

    --
    Doolittle : ...What is your one purpose in life?
    Bomb no.20 : To explode of course.
  28. Hey the spirit is still there. by technoextreme · · Score: 1

    http://slashdot.jp/security/article.pl?sid=06/03/3 1/0518253
    Guess what two of the posts say. April fool. No. I don't read Japanese. The only words in English on that website is April fool.

    --
    Ooo man the floppy drive is broken. No wait. The computer is just upside down.
    1. Re:Hey the spirit is still there. by Jesus_666 · · Score: 1

      According to my translation software the story has something to do with Knuth selling Microsoft TeX. I didn't know Microsoft had their own version of TeX...

      --
      USE HOT GRITS WITH STATUE OF NATALIE PORTMAN (NAKED AND PETRIFIED)
    2. Re:Hey the spirit is still there. by poopdeville · · Score: 1

      They're going to use the TeX engine in the next version of Word.

      --
      After all, I am strangely colored.
  29. Workaround by sash · · Score: 4, Funny

    No reason to worry - just use iptables:
    iptables -I INPUT 1 -mlength --length 0:1024 --protocol beer -j DONTPAY

    1. Re:Workaround by sash · · Score: 1

      Sorry, that was too rushed; it violates bartiquette so badly that it might get you in trouble. Try this instead:
      iptables -I INPUT 1 -mlength --length 1025:1000000 --protocol beer -j GETCOFFEE
      It works for me.

  30. And in other news by ettlz · · Score: 1

    Theo de Raadt announces he intends to become a monk.

    1. Re:And in other news by shking · · Score: 1
      This is, in fact, quite believable. Consider the following sequence:
      1. Theo enjoys good beer
      2. Monks make very good beer
      3. Theo enjoys the monk's very good beer
      --
      -- "At Microsoft, quality is job 1.1" -- PC Magazine, Nov. 1994
    2. Re:And in other news by micromuncher · · Score: 1

      Hey I got pictures of TdR kissing his own ass!

      --
      /\/\icro/\/\uncher
  31. Past 12o'clock by Anonymous Coward · · Score: 0

    Past 12 o'clock you are the fool whoever tried this as a joke lololol

  32. April 1st by gustgr · · Score: 1

    No joke from Google this year?

    1. Re:April 1st by SQFreak · · Score: 1

      Of course there is! Don't you read the OMGFANBOI nexus of digg? http://www.google.com/romance/ = this year's Google April Fools joke. Oh, and this is highly off-topic. Well, not really; it still is an April Fools joke...

    2. Re:April 1st by freakmn · · Score: 1

      Ahh crap, that was a joke? I've been waiting for something like that for a while. I thought I could find my soulmate. The FAQ seemed reasonable enough. Back to my pathetic life.

      --
      warning: This post is likely to contain gobs of dripping sarcasm. Consume at your own risk.
    3. Re:April 1st by Anonymous Coward · · Score: 0

      Perhaps their new chinese overlords have prohibited any jocularity.

    4. Re:April 1st by MarkByers · · Score: 1

      No new enhancements to GMail either? :(

      --
      I'll probably be modded down for this...
    5. Re:April 1st by Anonymous Coward · · Score: 0

      MSN Live was the joke, it just got leaked early.

  33. It's a dirty job but someone has to do it... by Anonymous Coward · · Score: 0

    Very insightful comment by AC that no one will read.

    1. Re:It's a dirty job but someone has to do it... by themusicgod1 · · Score: 1

      Soviet Russia Joke employing content from the above post and YOU.

      --
      GENERATION 26: The first time you see this, copy it into your sig on any forum and add 1 to the generation.
  34. Lets pull a Tuttle by Anonymous Coward · · Score: 0

    Lets call openheineken and threaten them with the FBI if they don't send in massive crates of bear!

  35. APRIL FOOLS! by Eideteker · · Score: 1

    APRIL FOOLS!

    --
    sic
  36. Attention Grammar Police! by shking · · Score: 1

    Whoops! Please allow me to correct the apostrophe misplacement:

    3. Theo enjoys the monk's very good beer

    --
    -- "At Microsoft, quality is job 1.1" -- PC Magazine, Nov. 1994
    1. Re:Attention Grammar Police! by shking · · Score: 1

      Whoops again! Please allow me to correct the incorrect apostrophe misplacement correction:

      3. Theo enjoys the monks' very good beer

      --
      -- "At Microsoft, quality is job 1.1" -- PC Magazine, Nov. 1994
    2. Re:Attention Grammar Police! by ettlz · · Score: 1
      Well at least it wasn't:
      3. Theo enjoys the monks, very good beer
    3. Re:Attention Grammar Police! by shking · · Score: 1

      That would be hard to swallow. Fortunately, the Ship & Anchor is at least 2 blocks distance from Victoria's, so mixing them up is unlikely.

      --
      -- "At Microsoft, quality is job 1.1" -- PC Magazine, Nov. 1994
  37. Actually not bad. by Grendel+Drago · · Score: 1

    At least this one got me to click on the link. "Well, if a new exploit was just discovered, they'd tell us, even though it's April Fool's..." I still want to stab Taco with a fork for that stupid AOL-speak shit, though.

    --
    Laws do not persuade just because they threaten. --Seneca
  38. fools by J05H · · Score: 1

    if that's a real SSH hole, they should no better than to release warnings on April 1st.

    --
    gigantino.tv - Heavy but weighs nothing.
  39. Pet Peeve by Anonymous Coward · · Score: 0

    Stop typing it out as "ya'll". I've got no problem with people transcribing dialect to words, for the love of ponies, when you're going to do it, do it right. When someone says it, they are saying "you all" ... this is what's known as a contraction and hence, should be spelled: "y'all".

  40. Request to Moderators by tpv · · Score: 1

    Request to moderators to lift score of parent.

    --
    Read more of this story at Slashdot.Read more of this story at Slashdot.Read more of this story at Slashdot.
  41. it's true though... by Anonymous Coward · · Score: 0

    beer can be very effectively used to exploit openssh by applying it liberally to the key owner and getting them to share it with you...

    a typical social engineering application, iinm

  42. fuck you. by Anonymous Coward · · Score: 0

    i've been killing my sshd upon boot for days now, waiting for a slackware security update that never came. i never actually clicked the link or read the comments for this article until now. fuck you slashdot