[kwlug-disc] NSS Vulnerability

CrankyOldBugger crankyoldbugger at gmail.com
Thu Sep 25 20:07:30 EDT 2014


Or hack the media's servers...  did I say that out loud??

On 25 September 2014 19:35, Keefer Rourke <keefer.rourke at gmail.com> wrote:

> Fair point. The general media does seem to have their priorities messed up
> a little. But "ShellShock" does sell papers doesn't it? NSS means nothing
> to most people, but give a bug a catchy foreboding nickname and people are
> suddenly interested.
>
> It's rather unfortunate the way events unfolded but (at the very least)
> people should be a little more conscious about their technology, and maybe
> they'll do a little more research and actually learn something. Who knows?
>
> The best we can probably do is patch our own systems and help our friends
> patch theirs while we wait for the media to calm down.
>
> Cheers,
> Keefer
> On Sep 25, 2014 7:20 PM, "Hubert Chathi" <hubert at uhoreg.ca> wrote:
>
>> On Thu, 25 Sep 2014 18:57:26 -0400, Keefer Rourke <
>> keefer.rourke at gmail.com> said:
>>
>> > I honestly appreciate the fuss though. If the media freaks out, at
>> > least people will know about it and maybe consider updating their
>> > systems more frequently.
>>
>> The problem is that if the general public gets overloaded with
>> information about vulnerabilities, they'll get confused and won't know
>> what to do about it all.
>>
>> It's fine for the technical press to be freaking out about bash, because
>> that's who it affects, but the general press should be freaking out more
>> about NSS, because NSS affects pretty much everyone.  As it is, right
>> now, everyone is talking about bash, and hardly anyone is talking about
>> NSS.
>>
>> For example, I don't understand why people care about bash on MacOS X
>> being vulnerable.  It's true that it needs to be fixed, but it doesn't
>> affect 99% of the Mac users out there, because they don't run any
>> publicly available services that would be affected.
>>
>>
>> _______________________________________________
>> kwlug-disc mailing list
>> kwlug-disc at kwlug.org
>> http://kwlug.org/mailman/listinfo/kwlug-disc_kwlug.org
>>
>
> _______________________________________________
> kwlug-disc mailing list
> kwlug-disc at kwlug.org
> http://kwlug.org/mailman/listinfo/kwlug-disc_kwlug.org
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://kwlug.org/pipermail/kwlug-disc_kwlug.org/attachments/20140925/72343105/attachment.htm>


More information about the kwlug-disc mailing list