===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/Attic/press.html,v
retrieving revision 1.466
retrieving revision 1.467
diff -u -r1.466 -r1.467
--- www/Attic/press.html 2005/07/06 22:04:34 1.466
+++ www/Attic/press.html 2005/07/07 09:07:19 1.467
@@ -22,10 +22,20 @@
Feature: OpenBSD Hackathon 2005, Part III,
-The Register, July 6, 2005
+Kerneltrap, July 6, 2005
Jeremy Andrews writes about the recent Blind ICMP attacks discovered
by Fernando Gont, and the fixes done by him and OpenBSD during the
2005 Hackathon.
+The article talks extensively about the technical background of the
+attacks, mentioning blind ICMP attacks, "hard" ICMP errors, source
+quenching, and path MTU discovery.
+Many helpful RFCs and technical papers are linked from the explanations.
+They are followed by a recall of the whole ICMP story, involving Gont's
+struggle with other free projects, Cisco lawyers, Microsoft people,
+and others.
+The article comes to the conclusion that OpenBSD was the first project
+to take Fernando Gont's findings seriously, and also the first group to
+be really painless to work with.
@@ -34,9 +44,9 @@
The Register, July 6, 2005
This article talks about various groups that are frequently blamed for
poor security:
-Individuals, ISPs, companies, crackers, security mailing lists,
+individuals, ISPs, companies, crackers, security mailing lists,
and last but not least: OS vendors!
-In this last paragraph, OpenBSD's style of "dumbed-down, simplified
+In the last paragraph, OpenBSD's style of "dumbed-down, simplified
and secure systems (with a heavily audited code base)" is described
as "one of the smartest approaches to security".
@@ -4837,7 +4847,7 @@
www@openbsd.org
-
$OpenBSD: press.html,v 1.466 2005/07/06 22:04:34 deraadt Exp $
+
$OpenBSD: press.html,v 1.467 2005/07/07 09:07:19 grunk Exp $