[Gllug] Debian / Ubuntu SSL vulnerability

Chris Bell chrisbell at overview.demon.co.uk
Thu May 15 21:16:54 UTC 2008


On Wed 14 May, - Tethys wrote:
> 
> On Wed, May 14, 2008 at 10:57 AM, John Winters <john at sinodun.org.uk> wrote:
> 
> 
> >  Looking at the Ubuntu notifications it seems that they have already done
> >  much the same.  Although a worthy catch-all, the problem I see with this
> >  is that if you have a headless or remote box then applying the update
> >  could easily lock you out of it entirely.
> 
> If you have a headless remote box without a serial console, then I'd
> say you *deserve* to be locked out. Harsh, perhaps, but surely if
> you're building a system like that, you plan for all eventualities? I
> can't imagine not having serial access to any of my hosted boxen.
> 
> Tet
> 

   Not having had any need to do this, do you use a dedicated analogue
modem or a serial line provided by the service provider?

-- 
Chris Bell NEW alternative address: chrisbell at chrisbell.org.uk
Microsoft sells you Windows ... Linux gives you the whole house.

-- 
Gllug mailing list  -  Gllug at gllug.org.uk
http://lists.gllug.org.uk/mailman/listinfo/gllug




More information about the GLLUG mailing list