yeah, but the exploit affects openssh 2.2. openbsd 2.8 shipped with 2.3. and openbsd 2.8 came out quite a while before that advisory. so if you running a reasonably current version, you would have been safe.
the cd image is copyright theo. you can make your own iso with your own packages and distribute that for free, but the disk layout used by the official cd is copyrighted.
what are you talking about? openssh comes from tato's ssh. to say tato's ssh was better than openssh is stupid. openssh is a mich iproved version of the original. and not as secure? it's more secure. almost anyone else would think so. lots of vulnerabilities were fixed in openssh before they were even recognized.
kinda glad to see it's back. hopefully, this time they will learn from their mistakes. but did anyone else notice that they still have a negative tone? sounds like, "well, we don't trust you guys yet, but if you behave..."
besides the fact that bsd comprises an entire os, not just a kernel, there's the matter that a lot of userland depends on the kernel. many of the interfaces are different./proc is completely different, as are the top and ps commands and so on. everything would need to be ported, which is a big waste of time.
Slashdot Mirror
yeah, but the exploit affects openssh 2.2. openbsd 2.8 shipped with 2.3. and openbsd 2.8 came out quite a while before that advisory. so if you running a reasonably current version, you would have been safe.
the cd image is copyright theo. you can make your own iso with your own packages and distribute that for free, but the disk layout used by the official cd is copyrighted.
what are you talking about? openssh comes from tato's ssh. to say tato's ssh was better than openssh is stupid. openssh is a mich iproved version of the original. and not as secure? it's more secure. almost anyone else would think so. lots of vulnerabilities were fixed in openssh before they were even recognized.
kinda glad to see it's back. hopefully, this time they will learn from their mistakes. but did anyone else notice that they still have a negative tone? sounds like, "well, we don't trust you guys yet, but if you behave..."
95% of freebsd advisories deal with the ports tree, so they apply to just about everything. what source are you looking at?
besides the fact that bsd comprises an entire os, not just a kernel, there's the matter that a lot of userland depends on the kernel. many of the interfaces are different. /proc is completely different, as are the top and ps commands and so on. everything would need to be ported, which is a big waste of time.