Jeremy Andrews writes about the recent Blind ICMP attacks discovered by Fernando Gont, and the fixes done by him and OpenBSD during the 2005 Hackathon. + The article talks extensively about the technical background of the + attacks, mentioning blind ICMP attacks, "hard" ICMP errors, source + quenching, and path MTU discovery. + Many helpful RFCs and technical papers are linked from the explanations. + They are followed by a recall of the whole ICMP story, involving Gont's + struggle with other free projects, Cisco lawyers, Microsoft people, + and others.
+ The article comes to the conclusion that OpenBSD was the first project + to take Fernando Gont's findings seriously, and also the first group to + be really painless to work with.
This article talks about various groups that are frequently blamed for poor security: ! Individuals, ISPs, companies, crackers, security mailing lists, and last but not least: OS vendors! ! In this last paragraph, OpenBSD's style of "dumbed-down, simplified and secure systems (with a heavily audited code base)" is described as "one of the smartest approaches to security".
--- 44,52 ---- The Register, July 6, 2005
This article talks about various groups that are frequently blamed for poor security: ! individuals, ISPs, companies, crackers, security mailing lists, and last but not least: OS vendors! ! In the last paragraph, OpenBSD's style of "dumbed-down, simplified and secure systems (with a heavily audited code base)" is described as "one of the smartest approaches to security".
*************** *** 4837,4843 ****
www@openbsd.org
! $OpenBSD: press.html,v 1.466 2005/07/06 22:04:34 deraadt Exp $