How not to respond to a security advisory

How not to respond to a security advisory
Jason Miller, 2006-01-18

A recently announced weakness in the BSD securelevel system isn't going to be fixed in OpenBSD. While securelevel may have problems, the vendor's security response is unacceptable and doesn't fit with their stated goals.

How not to respond to a security advisory 2006-01-19
Anonymous

I keep track of the OpenBSD mailing list. Unfortunately, this attitude is quite normal for Theo and it has spread to several of the other developers as well. If securelevels are so useless, why hasn't the OpenBSD team designed a better solution? I'm sure they'd give numerous reasons why. Until a...

[ more ]