public marks

PUBLIC MARKS with tag esr

2014

Be Still My Breaking Heart | Dan Kaminsky's Blog

by night.kame

It shouldn’t take absolute heroism, one of the smartest guys in our community, and three years for somebody to notice a flaw when there’s a straight up length field in the patch. And that, I think, is a major and unspoken component of the panic around Heartbleed. The OpenSSL dev shouldn’t have written this (on New Years Eve, at 1AM apparently). His coauthors and release engineers shouldn’t have let it through. The distros should have noticed. Somebody should have been watching the till, at least this one particular till, and it seems nobody was.

Nobody publicly, anyway.

If we’re going to fix the Internet, if we’re going to really change things, we’re going to need the freedom to do a lot more dramatic changes than just Ping over TLS. We have to be able to manage more; we’re failing at less.

Heartbleed, le monumental échec du bazard cher à ESR et aux agileux de tout poil.

2007

2006

The Chronicle: 4/7/2006: There Is Such a Thing as a Stupid Question

by markpasc & 1 other
Remarkably similar to esr's How To Ask Questions The Smart Way, which properly implies asking for computer help is group self-education

PUBLIC TAGS related to tag esr

delicious +   etiquette +   fun +   heartbleed +   information +   learning +   openssl +   questions +   teaching +  

Active users

night.kame
last mark : 10/04/2014 22:30

tehu
last mark : 05/04/2007 18:55

markpasc
last mark : 18/04/2006 22:34