Mailing Lists: Apple Mailing Lists
Image of Mac OS face in stamp
 
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: US-CERT Vulnerability Note VU#800113

On Jul 25, 2008, at 9:44 AM, Dave Pooser wrote:

If you come away from this discussion with one lesson, let it be that
you better be prepared to patch things yourself.  Apple has mislead
the newbies into thinking that everything is covered for them.  It
isn't.  My recommendation is: start reading those O'Reilly books and
really understand what's going on under the hood.  You can't expect
vendors to bail you out every time.

...although vendors who are not Apple did in fact bail their users out this
time. Apple stands essentially alone in *not* bothering to patch this gaping
vulnerability. And if I wanted to compile my own software every time I
needed an update, I'd use Fedora.

Not defending Apple, or Fedora, just making a statement.

I am reading the CERT notice about this.  At the bottom is a list of vendors and the status of their DNS server software.

Apple was notified by CERT on 05/05/2008 and they have NOT responded at all.  Personally, I think this is inexcusable.  They could have given any number of responses to CERT but provided the single most worst response possible.

Bill Larson
 _______________________________________________
Do not post admin requests to the list. They will be ignored.
Macos-x-server mailing list      (email@hidden)
Help/Unsubscribe/Update your Subscription:
http://lists.apple.com/mailman/options/macos-x-server/email@hidden

This email sent to email@hidden
References: 
 >Re: US-CERT Vulnerability Note VU#800113 (From: Dave Pooser <email@hidden>)



Visit the Apple Store online or at retail locations.
1-800-MY-APPLE

Contact Apple | Terms of Use | Privacy Policy

Copyright © 2007 Apple Inc. All rights reserved.