[SFD-discuss] Apologies and update for teams
Lars Noodén
lars at umich.edu
Sat Aug 25 13:36:06 UTC 2007
It's good to hear the servers are back up and running.
Pia Waugh wrote:
> ... Details below on what happened:
> https://lists.ubuntu.com/archives/loco-contacts/2007-August/001506.html
> https://lists.ubuntu.com/archives/loco-contacts/2007-August/001510.html
I'm a little shocked to hear that they were running cleartext passwords
(e.g. FTP) and allowing arbitrary CGIs to be run. It's a releive to
know know that SSH is now being used, it's been available since the
1990's.
In the announcement, a distinction is not made between 'upgrading' and
'patching'. It should not matter if the servers were still running
Breezy as long as they were patched. Patching != upgrading, and
upgrading can bring its own set of problems, including security and
stability.
One of the key advantages of Free Software, as I have seen it, is that
one has the option of keeping a stable set up and not being forced into
arbitrary upgrades. Debian, on which *buntu is based is a good example
and one can choose to patch the existing software. The more users a
service has, the more important this is.
Back to lurking,
Regards,
-Lars
More information about the SFD-discuss
mailing list