Easy question to answer.
If Linux had an exploit that allowed someone to ssh into your box, su to root, then fsck your harddrive, and a patch wasn't released yet, would you be pissed off that bugtraq posted the code to exploit the bug?
No. I would turn off ssh as soon as possible, disable fsck, or take some other preventive measure now that I am aware of the problem.
I'd rather know about it right away then be left in the dark only to find out I was sitting on a vulnerable $whatever for a month/week/whatever.
But then, I don't live in a fairy tale land where the streets are made of candy, sugar plums dance on my head, and nobody else knows about that exploit except for those who read bugtraq!
Slashdot Mirror
No. I would turn off ssh as soon as possible, disable fsck, or take some other preventive measure now that I am aware of the problem. I'd rather know about it right away then be left in the dark only to find out I was sitting on a vulnerable $whatever for a month/week/whatever.
But then, I don't live in a fairy tale land where the streets are made of candy, sugar plums dance on my head, and nobody else knows about that exploit except for those who read bugtraq!