[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-security] QPOP Vulnerability - Again
- Subject: Re: [cobalt-security] QPOP Vulnerability - Again
- From: Gossi The Dog <gossi@xxxxxxxxxxxxxx>
- Date: Wed, 19 Jul 2000 21:26:18 +0100 (BST)
On Wed, 19 Jul 2000, Chris Adams wrote:
> Once upon a time, Jan P Tietze <jptietze@xxxxxxxxxxx> said:
> > I called EMEA tech support today (btw - literally NO time spent waiting for a
> > technician), and they said Cobalt was working on fix, and that it's going to be
> > in the next security update. As to when that update will be released, I was told
> > they would find that out for me and send the information by email. As soon as
> > (or if at all) I get this information, I will post it to this list.
> >
> > Apparently, there seems to be no way to force Cobalt into fixing long-known
> > broken functionality. A response on this list by Cobalt techies about the QPOP3
> > vulnerability would be fine.
>
> They are too busy working on the RaQ4 I guess. That's why it took them
> six months to fix things like the RaQ3 email catch-all bug.
The RaQ4 is now available, is it not?
I believe that it should (is?) be a _vital_ part of their business to make
sure customers see their products as secure. I know patches have to be
put through a development cycle, but pushing on several months for patches
to some of the known problems is laughable.
--
gossi the dog
email: gossi@xxxxxxxxxxxxxx
irc: gossi in #markthomas (efnet / irc.ins.net.uk)