Wi-Fi bug found in Linux

Discussion in 'Computer Support' started by =?ISO-8859-1?Q?R=F4g=EAr?=, Apr 16, 2007.

  1. =?ISO-8859-1?Q?R=F4g=EAr?=, Apr 16, 2007
    #1
    1. Advertising

  2. =?ISO-8859-1?Q?R=F4g=EAr?=

    Whiskers Guest

    On 2007-04-16, Rôgêr <> wrote:
    > http://www.computerworld.com.au/index.php/id;1227893949;fp;4;fpid;18



    Only affects the MadWifi drivers earlier than version 0.9.3

    There's a more complete and accurate description of the problem in this
    Mandriva announcement (with the fix for Mandriva systems)
    <http://www.mandriva.com/security/advisories?name=MDKSA-2007:082>. See
    also <http://secunia.com/advisories/24670/>.

    --
    -- ^^^^^^^^^^
    -- Whiskers
    -- ~~~~~~~~~~
     
    Whiskers, Apr 16, 2007
    #2
    1. Advertising

  3. =?ISO-8859-1?Q?R=F4g=EAr?=

    Dragon~ Guest

    Whiskers wrote:
    > On 2007-04-16, Rôgêr <> wrote:
    >> http://www.computerworld.com.au/index.php/id;1227893949;fp;4;fpid;18

    >
    >
    > Only affects the MadWifi drivers earlier than version 0.9.3
    >
    > There's a more complete and accurate description of the problem in
    > this Mandriva announcement (with the fix for Mandriva systems)
    > <http://www.mandriva.com/security/advisories?name=MDKSA-2007:082>.
    > See also <http://secunia.com/advisories/24670/>.


    Ah but is the first step to bringing the 'indestructible' (well according to
    its fans) Linux OS - there are more nasties to follow as Linux grows!
     
    Dragon~, Apr 16, 2007
    #3
  4. =?ISO-8859-1?Q?R=F4g=EAr?=

    Whiskers Guest

    On 2007-04-16, Dragon~ <me~@me> wrote:
    > Whiskers wrote:
    >> On 2007-04-16, Rôgêr <> wrote:
    >>> http://www.computerworld.com.au/index.php/id;1227893949;fp;4;fpid;18

    >>
    >>
    >> Only affects the MadWifi drivers earlier than version 0.9.3
    >>
    >> There's a more complete and accurate description of the problem in
    >> this Mandriva announcement (with the fix for Mandriva systems)
    >> <http://www.mandriva.com/security/advisories?name=MDKSA-2007:082>.
    >> See also <http://secunia.com/advisories/24670/>.

    >
    > Ah but is the first step to bringing the 'indestructible' (well according to
    > its fans) Linux OS - there are more nasties to follow as Linux grows!


    Rubbish. Gnu/Linux systems get updates and fixes for all manner of
    potential 'exploits' all the time. The one mentioned in the silly article
    referenced in the original post, is not unusual or particularly significant.
    I don't think anyone even rated it above 'moderate'.

    Only very rarely does a journalist in search of a story take any notice,
    and even less often is there any use made of the potential exploit or any
    great difficulty caused by the 'updates' that are usually issued within
    hours of the weakness being found - and installed not long after that, on
    well-run systems (some people let their systems install updates
    automatically in the background, as soon as they are available).

    There were some much bigger and more significant updates issued over the
    last week or so; one of them even caused the Opera browser to segfault
    until Opera Software came up with a 'hotfix' for that - within 24 hours
    over the Easter holiday! How much has been put into print about any of
    that?

    --
    -- ^^^^^^^^^^
    -- Whiskers
    -- ~~~~~~~~~~
     
    Whiskers, Apr 16, 2007
    #4
  5. =?ISO-8859-1?Q?R=F4g=EAr?=

    Dragon~ Guest

    Whiskers wrote:
    > On 2007-04-16, Dragon~ <me~@me> wrote:
    >> Whiskers wrote:
    >>> On 2007-04-16, Rôgêr <> wrote:
    >>>> http://www.computerworld.com.au/index.php/id;1227893949;fp;4;fpid;18
    >>>
    >>>
    >>> Only affects the MadWifi drivers earlier than version 0.9.3
    >>>
    >>> There's a more complete and accurate description of the problem in
    >>> this Mandriva announcement (with the fix for Mandriva systems)
    >>> <http://www.mandriva.com/security/advisories?name=MDKSA-2007:082>.
    >>> See also <http://secunia.com/advisories/24670/>.

    >>
    >> Ah but is the first step to bringing the 'indestructible' (well
    >> according to its fans) Linux OS - there are more nasties to follow
    >> as Linux grows!

    >
    > Rubbish. Gnu/Linux systems get updates and fixes for all manner of
    > potential 'exploits' all the time. The one mentioned in the silly
    > article referenced in the original post, is not unusual or
    > particularly significant. I don't think anyone even rated it above
    > 'moderate'.


    So there are 'exploits. in Linux then - so it's not as immune from a
    determined attack as the purists would like to believe?

    > Only very rarely does a journalist in search of a story take any
    > notice, and even less often is there any use made of the potential
    > exploit or any great difficulty caused by the 'updates' that are
    > usually issued within hours of the weakness being found - and
    > installed not long after that, on well-run systems (some people let
    > their systems install updates automatically in the background, as
    > soon as they are available).


    But there are 'weaknesses' that can be exploited between inception,
    discovery and remedy of the nasties - just like Windows then - or any other
    OS for that matter!

    > There were some much bigger and more significant updates issued over
    > the last week or so; one of them even caused the Opera browser to
    > segfault until Opera Software came up with a 'hotfix' for that -
    > within 24 hours over the Easter holiday! How much has been put into
    > print about any of that?


    But the moral of the story is that Linux is not as infallible as the 'fans'
    make out and will become even more so as the 'popularity' of the many
    variants of the Linux OS grows and it becomes productive to attack it for
    such things as 'identity theft', CC numbers etc.
     
    Dragon~, Apr 16, 2007
    #5
  6. =?ISO-8859-1?Q?R=F4g=EAr?=

    Whiskers Guest

    On 2007-04-16, Dragon~ <me~@me> wrote:
    > Whiskers wrote:
    >> On 2007-04-16, Dragon~ <me~@me> wrote:
    >>> Whiskers wrote:
    >>>> On 2007-04-16, Rôgêr <> wrote:
    >>>>> http://www.computerworld.com.au/index.php/id;1227893949;fp;4;fpid;18
    >>>>
    >>>>
    >>>> Only affects the MadWifi drivers earlier than version 0.9.3
    >>>>
    >>>> There's a more complete and accurate description of the problem in
    >>>> this Mandriva announcement (with the fix for Mandriva systems)
    >>>> <http://www.mandriva.com/security/advisories?name=MDKSA-2007:082>.
    >>>> See also <http://secunia.com/advisories/24670/>.
    >>>
    >>> Ah but is the first step to bringing the 'indestructible' (well
    >>> according to its fans) Linux OS - there are more nasties to follow
    >>> as Linux grows!

    >>
    >> Rubbish. Gnu/Linux systems get updates and fixes for all manner of
    >> potential 'exploits' all the time. The one mentioned in the silly
    >> article referenced in the original post, is not unusual or
    >> particularly significant. I don't think anyone even rated it above
    >> 'moderate'.

    >
    > So there are 'exploits. in Linux then - so it's not as immune from a
    > determined attack as the purists would like to believe?


    I've never seen anyone claim that there are no weaknesses. It is
    certainly immune to the sort of exploits that afflict all versions of
    Windows, though.

    >> Only very rarely does a journalist in search of a story take any
    >> notice, and even less often is there any use made of the potential
    >> exploit or any great difficulty caused by the 'updates' that are
    >> usually issued within hours of the weakness being found - and
    >> installed not long after that, on well-run systems (some people let
    >> their systems install updates automatically in the background, as
    >> soon as they are available).

    >
    > But there are 'weaknesses' that can be exploited between inception,
    > discovery and remedy of the nasties - just like Windows then - or any other
    > OS for that matter!


    Has anyone claimed otherwise? One difference is that an exploit will be
    patched in most linux systems almost as soon as it becomes known, whereas
    it can take weeks for Windows to get patched - if it ever does. Another
    difference is that there is much less that an intruder can do with a Linux
    system than with a Windows system. Another is that once 'in' to a Linux
    system, an attacker has just that to play with - one computer, with no
    short-cuts to getting into any other systems.

    In the time it takes a script-kiddy to 'capture' thousands of Windows
    systems, a relatively skilled 'cracker' might if he's lucky find and get
    into one vulnerable Linux system.

    >> There were some much bigger and more significant updates issued over
    >> the last week or so; one of them even caused the Opera browser to
    >> segfault until Opera Software came up with a 'hotfix' for that -
    >> within 24 hours over the Easter holiday! How much has been put into
    >> print about any of that?

    >
    > But the moral of the story is that Linux is not as infallible as the 'fans'
    > make out and will become even more so as the 'popularity' of the many
    > variants of the Linux OS grows and it becomes productive to attack it for
    > such things as 'identity theft', CC numbers etc.


    No, the 'moral of the story' is that people need to read sensationalist
    news stories with a degree of scepticism and discover the facts before
    leaping to conclusions.

    --
    -- ^^^^^^^^^^
    -- Whiskers
    -- ~~~~~~~~~~
     
    Whiskers, Apr 16, 2007
    #6
    1. Advertising

Want to reply to this thread or ask your own question?

It takes just 2 minutes to sign up (and it's free!). Just click the sign up button to choose a username and then you can ask your own questions on the forum.
Similar Threads
  1. philo

    Found a Bug in Windows

    philo, Mar 6, 2004, in forum: Computer Support
    Replies:
    23
    Views:
    751
    philo
    Mar 7, 2004
  2. janet_princess_2k
    Replies:
    0
    Views:
    519
    janet_princess_2k
    Aug 9, 2006
  3. A bug catalogue for bug lovers!

    , Sep 16, 2005, in forum: Digital Photography
    Replies:
    4
    Views:
    569
  4. Au79

    Spoofing bug found in IE 7

    Au79, Oct 26, 2006, in forum: Computer Support
    Replies:
    0
    Views:
    441
  5. 7
    Replies:
    1
    Views:
    427
    High Plains Thumper
    Nov 3, 2006
Loading...

Share This Page