Linked by Jordan Spencer Cunningham on Mon 14th Jun 2010 23:58 UTC
Bugs & Viruses Recently, the Linux version of UnrealIRCd was discovered to have had a Trojan worm its way into the source code. Even more embarrassing for the developers of Unreal is that the Trojan's been holding open the backdoor in the source code since November of 2009-- not very recently. And, of course, bloggers and press in general are taking the opportunity of another breach in Linux security to point out doomsday devices that don't really exist.
Permalink for comment 430137
To read all comments associated with this story, please click here.
RE[2]: Zealot
by Mr.Manatane on Tue 15th Jun 2010 14:32 UTC in reply to "RE: Zealot"
Mr.Manatane
Member since:
2010-03-19

Funny again how amnesic are Linux fanboy.

Your argumentation is just pointless when you see security holes like this:

http://www.informationweek.com/blog/main/archives/2008/05/a_black_e...

The problem involves Debian's version of the openssl package, which was changed back in 2006 in such a way that the encryption keys generated by the package could theoretically be guessed by an attacker. Bad. But what's worse, every encryption key generated with that edition of openssl since the change was made -- since 2006 -- now has to be dumped.


A single problems in the openssl debian package and BOOM all your genius stuff is doomed. now your genious deployement package tool - you are so proud of - is spreading the security holes on all OSes and it's worst than installing manually software YOU chose to install because you TRUST the repository of the linux distribution.

Reply Parent Score: 2