1) Open source isn't more secure. This is an old assumption. 2) There is no such thing as closed source anymore. Everything is chocked full of open source.https://twitter.com/hackerfantastic/status/1072533649411751937 …
-
-
He is not wrong, though USER= is passed via -l and could be set in a URI handler via user@ making it more interesting as the heap code be remotely reachable -https://twitter.com/hackerfantastic/status/1065095950606221312?s=19 …
-
Do you have an example of any vulnerable usage? It's hard to believe anybody is doing that, that's what I mean: I don't think anybody spent any time auditing telnet from inetutils, because it's not used anywhere security sensitive.
- 5 more replies
New conversation -
-
-
This is a fair point. I would be very hesitant to trust a closed source ssh server.
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.