At 22:27 -0700 4/8/03, J C Lawrence wrote:
On Tue, 8 Apr 2003 22:13:28 -0400
Jim Youll <jim(_at_)media(_dot_)mit(_dot_)edu> wrote:
At 19:50 -0600 4/8/03, Vernon Schryver wrote:
That is not necessary. Just change the default behavior of sendmail
and when the next root exploit is found and everybody is forced to
upgrade within 24 hours, it'll be largely deployed.
This is manifestly false. Old versions of sendmail are rife in the real
world.
eh. don't take such things so literally.
this is not the sort of change that all must adopt in order to make a
difference.
and yes there are many versions of sendmail in the wild, and many
non-sendmails as well. But still the character of this suggestions is
that of a change that can be made for private gain (internal bounces
lose weight) that also yield public benefits. it is in that
happy-space of individual incentive (even if slight) and public
welfare.
_______________________________________________
Asrg mailing list
Asrg(_at_)ietf(_dot_)org
https://www1.ietf.org/mailman/listinfo/asrg