Security Update July 2002 includes the updated components, Apache v1.3.26, mod_ssl v2.8.9 and OpenSSH v3.4p1, which provide increased security to prevent unauthorized access to applications, servers, and the MacOSX operating system. Download it via Software Update on your Mac.
Redhat now provides OpenSSH 3.1 via up2date.. crappy distro.. now where was that gentoo cd i had lying around somewhere..
Way to jump to false conclusions about Red Hat’s update. In order to provide minimal pain on security fixes, Red Hat often backports the bugfix into the older version of the software. (This is also done by Debian, FreeBSD, and many others.) That way you aren’t forced to upgrade just because of a security problem.
Now why were you complaining, and how will always switching distros magically make your life better?
Your thing is certainly not Red Hat. Same way vice versa.
That way you aren’t forced to upgrade just because of a security problem.[/I ] What ?
They say there is a bug affecting oipen source apache.
Guess it has started just like it did on windows,
and it it’s here to stay.
[i]”It has been reported to bugtraq by Domas Mituzas that a worm that exploits the Apache chunk bug has been found in the wild. (in apache’s section @ Slashdot.org)
Redhat now provides OpenSSH 3.1 via up2date.. crappy distro.. now where was that gentoo cd i had lying around somewhere..
While package/port systems such as rpm, apt-get and portage are fine for small pieces of software, there really is no substitute for compiling from source. Any critical service that provides access, or could conceivably be abused to gain access, should be under your direct control at all times. Why wait for your distro to package the patched software, when you can apply the patch yourself and recompile?