So the 1997 OpenBSD modifications to the id generation code stood the test of time for over 10 years. In today's world, that's impressive. It's unsurprising that someone has eventually found a way of exploiting weakness in the code. I find it a little strange that the OpenBSD team *appear* to be sticking their heads in the sand but knowing them, they'll quietly fix the issues sooner or later once they deem them to be real. Enjoyable article though -- thanks. Now if only openntpd and ISC ntpd could not suck.
Copyright © 2017, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds