tech-security: moderation

Subject: moderation
To: None <tech-security@netbsd.org>
From: None <itojun@iijlab.net>
List: tech-security
Date: 06/28/2002 16:36:19
------- =_aaaaaaaaaa0
Content-Type: text/plain; charset="us-ascii"
Content-ID: <11224.1025249485.1@itojun.org>

	since there's no response from moderator, i need to go public.

	as you see in http://mail-index.netbsd.org/tech-security/2002/06/,
	email thread "Re: OpenSSH Priv Sep and Remote Exploit?" has missing
	messages.  i learned that it is due to moderation.  what is the
	reason behind blockage of posting from theo?  from the quotes
	i see on jason's messages, i see no problem.
	this is not a flamewar, but a techinical (or partially social)
	discussion.  i think it not fair to block one party from posting
	messages.

	i really hope netbsd group and openbsd group to communicate
	more normally, exchange good technical contribution to each other.
	the blockage will only contribute negatively to the communication
	between two groups.  so, Mr. moderator - please describe why is
	the blockage, and if reasonable, please approve theo's messages
	sent this couple of days.

itojun

------- =_aaaaaaaaaa0
Content-Type: message/rfc822
Content-ID: <11224.1025249485.2@itojun.org>
Content-Description: forwarded message

To: tech-security-owner@netbsd.org
cc: Jason R Thorpe <thorpej@wasabisystems.com>
cc: Theo de Raadt <deraadt@cvs.openbsd.org>
In-reply-to: thorpej's message of Thu, 27 Jun 2002 10:20:40 MST.
      <20020627102040.V1614@dr-evil.shagadelic.org> 
Subject: Re: OpenSSH Priv Sep and Remote Exploit? 
From: itojun@iijlab.net
Date: Fri, 28 Jun 2002 10:50:38 +0900
Sender: itojun@itojun.org

	the email thread seem weirdly split into multiple parts (underlivered
	messages inbetween).

	i learned that theo's messages are being moderated.
	could i know why theo's message did not get approved?  and if possible,
	approve them.

itojun


---

>On Mon, Jun 24, 2002 at 06:48:20PM -0600, Theo de Raadt wrote:
>
> > You are so entirely out of touch with reality.  Less than 24 hours
> > after we produce a patch, there will be a public exploit.  You'll see.
>
>This is why people generally go through channels like CERT to inform
>vendors of problems and allow them to make appropriate plans, before
>public disclosure of the problem.
>
>-- 
>        -- Jason R. Thorpe <thorpej@wasabisystems.com>

------- =_aaaaaaaaaa0--