httpd-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Brian Behlendorf <>
Subject Re: CIAC Bulletin G-20: Vulnerability in NCSA and Apache httpd Servers (fwd)
Date Fri, 19 Apr 1996 22:50:47 GMT
On Fri, 19 Apr 1996, Andrew Wilson wrote:
> I don't remember the
> bastards telling us about their new findings.  It'd be nice to be
> told in future, how can we set our selves up as VIPs with their
> alerting/research process?

Well, I thought we were on great terms when they issued the first 
warning, they gave us like 4 days' notice by sending me mail that I 
forwarded to the list, in fact they called me on the phone.  This time no 
phone call, no email, and this is certainly a worse problem.  Maybe they 
thought we didn't care when we didn't release a new version fixing the 
first problem... ugh.  

Perhaps they're trying to out-scoop CERT?


--=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=--  |  We're hiring!

View raw message