bit-tech.net

Go Back   bit-tech.net Forums > bit-tech.net > Article Discussion

Reply
 
Thread Tools
Old 14th Apr 2014, 10:36   #1
Gareth Halfacree
WIIGII!
bit-tech Staff
 
Gareth Halfacree's Avatar
 
Join Date: Dec 2007
Location: Bradford, UK
Posts: 3,674
Gareth Halfacree is definitely a rep cheat.Gareth Halfacree is definitely a rep cheat.Gareth Halfacree is definitely a rep cheat.Gareth Halfacree is definitely a rep cheat.Gareth Halfacree is definitely a rep cheat.Gareth Halfacree is definitely a rep cheat.Gareth Halfacree is definitely a rep cheat.Gareth Halfacree is definitely a rep cheat.Gareth Halfacree is definitely a rep cheat.Gareth Halfacree is definitely a rep cheat.Gareth Halfacree is definitely a rep cheat.
NSA denies prior knowledge of Heartbleed vuln

Security agency missed that one, it seems.
http://www.bit-tech.net/news/bits/20...a-heartbleed/1
__________________
Author, Raspberry Pi User Guide, Meet the Raspberry Pi | gareth.halfacree.co.uk | twitter
bit-tech news correspondent, Custom PC columnist, other things to other people
I'm a filthy freelancer! Hire me!
Gareth Halfacree is offline   Reply With Quote
Old 14th Apr 2014, 11:18   #2
theshadow2001
I *am* a Dremel
 
theshadow2001's Avatar
 
Join Date: May 2012
Posts: 1,801
theshadow2001 is definitely a rep cheat.theshadow2001 is definitely a rep cheat.theshadow2001 is definitely a rep cheat.theshadow2001 is definitely a rep cheat.theshadow2001 is definitely a rep cheat.theshadow2001 is definitely a rep cheat.theshadow2001 is definitely a rep cheat.theshadow2001 is definitely a rep cheat.theshadow2001 is definitely a rep cheat.theshadow2001 is definitely a rep cheat.theshadow2001 is definitely a rep cheat.
Of course a bias towards disclosure of security flaws is another way of saying they don't disclose all flaws or even most flaws. It's such a vacuous statement.
theshadow2001 is online now   Reply With Quote
Old 14th Apr 2014, 11:48   #3
Corky42
Mod Master
 
Join Date: Oct 2012
Posts: 2,520
Corky42 is definitely a rep cheat.Corky42 is definitely a rep cheat.Corky42 is definitely a rep cheat.Corky42 is definitely a rep cheat.Corky42 is definitely a rep cheat.Corky42 is definitely a rep cheat.Corky42 is definitely a rep cheat.Corky42 is definitely a rep cheat.Corky42 is definitely a rep cheat.Corky42 is definitely a rep cheat.Corky42 is definitely a rep cheat.
That's not the only vacuous part of their statement, they go on to say.
'A clear process exists among agencies for deciding when to share vulnerabilities, the office said in a statement.'

Then you have the Obama convened panel that reviewed surveillance activities saying.
Quote:
Among the dozens of changes put forward was a recommendation that the NSA quickly move to fix software flaws rather that exploit them, and that they be used only in “rare instances” and for short periods of time.
Does fixing software flaws equal disclosure ? It's no good fixing something for a select few.

How short is a short periods of time ? It may only take seconds to use a software flaw.

How rare are “rare instances” ? If we only use a particular software flaw one in a thousand times, is that rare.
Corky42 is offline   Reply With Quote
Old 14th Apr 2014, 12:24   #4
kosch
Trango in the Mango
 
kosch's Avatar
 
Join Date: Feb 2005
Location: Cambridge, UK
Posts: 1,014
kosch is definitely a rep cheat.kosch is definitely a rep cheat.kosch is definitely a rep cheat.kosch is definitely a rep cheat.kosch is definitely a rep cheat.kosch is definitely a rep cheat.kosch is definitely a rep cheat.kosch is definitely a rep cheat.kosch is definitely a rep cheat.kosch is definitely a rep cheat.kosch is definitely a rep cheat.
That is the first thing that popped into my head when I heard the breaking news of heartbleed.
kosch is online now   Reply With Quote
Old 14th Apr 2014, 14:56   #5
r3loaded
Ultramodder
 
r3loaded's Avatar
 
Join Date: Jul 2010
Location: Manchester, UK
Posts: 1,074
r3loaded is definitely a rep cheat.r3loaded is definitely a rep cheat.r3loaded is definitely a rep cheat.r3loaded is definitely a rep cheat.r3loaded is definitely a rep cheat.r3loaded is definitely a rep cheat.r3loaded is definitely a rep cheat.r3loaded is definitely a rep cheat.r3loaded is definitely a rep cheat.r3loaded is definitely a rep cheat.r3loaded is definitely a rep cheat.
Problem is that they could be telling the truth (I'm slightly inclined to believe so given the hidden nature of the bug and the difficulty involved in exploiting it) but they've destroyed so much trust that people won't accept anything they say.
__________________
Main: Silverstone FT03 | Asus P8P67-M Pro | i5 2500K @ 4.6Ghz | CM 212+ | 16GB Corsair Vengeance 1600Mhz | XFX Radeon 7970 DD | 500GB Samsung 840 Evo | CM Silent Pro Gold 600W | Samsung XL2270HD | KBT Race (brown switches) | Sidewinder X8 | Arch Linux + Windows 8.1
Server: Asus M3N78-AM | Athlon II X3 400e | 4GB Corsair XMS2 | 4x 2TB Samsung F4EG (RAID-5) | LSI MegaRAID 8708EM2 | Corsair CX400 | Arch Linux
r3loaded is offline   Reply With Quote
Old 14th Apr 2014, 17:25   #6
Dave Lister
Hypermodder
 
Dave Lister's Avatar
 
Join Date: Sep 2009
Location: France / UK
Posts: 660
Dave Lister is a hoopy frood who really knows where their towel is.Dave Lister is a hoopy frood who really knows where their towel is.Dave Lister is a hoopy frood who really knows where their towel is.Dave Lister is a hoopy frood who really knows where their towel is.Dave Lister is a hoopy frood who really knows where their towel is.Dave Lister is a hoopy frood who really knows where their towel is.Dave Lister is a hoopy frood who really knows where their towel is.Dave Lister is a hoopy frood who really knows where their towel is.Dave Lister is a hoopy frood who really knows where their towel is.Dave Lister is a hoopy frood who really knows where their towel is.Dave Lister is a hoopy frood who really knows where their towel is.
Quote:
Originally Posted by r3loaded
Problem is that they could be telling the truth (I'm slightly inclined to believe so given the hidden nature of the bug and the difficulty involved in exploiting it) but they've destroyed so much trust that people won't accept anything they say.
Count me as one of the few (or many) who don't trust. The U.S government's (PAUSE: Just for clarity, many western nations B&B is telling lies, although the US seems to be the ring leader)bread and butter is made, lying to the public and keeping secrets. True Fact !
__________________
Main Rig:Case: BitFenix Prodigy, Motherboard: MSI Z97I Gaming, CPU: Intel i7 4790K, RAM: 8Gb 1600Mhz Corsair Vengeance GPU: XFX ATI 5870, Primary HDD: 128Gb Kingston SSDNOW 200, Cooler: Corsair H105, OS: Win 7 - 64
HTPC:Case: Gutted out VCR, Motherboard: Asus AT5IONT-I, CPU: Intel Atom D525 @ 1.94Ghz, RAM: 4Gb 1333Mhz Kingston GPU: Nvidia Ion 2, Primary HDD: Hitachi 500Gb, Optical Drive: NEC ND-6500A Laptop Drive, OS: Win 8.1 32

Last edited by Dave Lister; 14th Apr 2014 at 17:39. Reason: Clarity !
Dave Lister is online now   Reply With Quote
Reply

Tags
barack obama, edward snowden, government, heartbleed, insecurity, national security agency, nsa, openssl, privacy, security, us government, vulnerability

Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump


All times are GMT +1. The time now is 22:54.
Powered by: vBulletin Version 3
Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.