Mailinglist Archive: opensuse-project (156 mails)
| < Previous | Next > |
Re: [opensuse-project] Re: [opensuse-factory] The release notes/product highlights for 12.1
- From: Sebastian Kügler <sebas@xxxxxxx>
- Date: Tue, 25 Oct 2011 17:11:11 +0200
- Message-id: <201110251711.11615.sebas@kde.org>
On Tuesday, October 25, 2011 11:58:29 jdd wrote:
You can answer that one yourself, a good start are security fixes which never
made it into Qt3. To give you a headstart, I would not use SSL for anything
from Qt3 since the certificates it shipped have never been updated -- and
that's just a very recent one one can find without digging. There are so many
security-critical components in there, it's not even funny. I'd strongly
advise against using KDE3 nowadays, and would certainly not advertise it.
So yes, there are _real_ security problems when using KDE 3. It's basically
one big brown paperbag filled brown paper bags.
--
sebas
http://www.kde.org | http://vizZzion.org | GPG Key ID: 9119 0EF9
--
To unsubscribe, e-mail: opensuse-project+unsubscribe@xxxxxxxxxxxx
To contact the owner, email: opensuse-project+owner@xxxxxxxxxxxx
is there a known list of major such security break in kde3?
You can answer that one yourself, a good start are security fixes which never
made it into Qt3. To give you a headstart, I would not use SSL for anything
from Qt3 since the certificates it shipped have never been updated -- and
that's just a very recent one one can find without digging. There are so many
security-critical components in there, it's not even funny. I'd strongly
advise against using KDE3 nowadays, and would certainly not advertise it.
So yes, there are _real_ security problems when using KDE 3. It's basically
one big brown paperbag filled brown paper bags.
--
sebas
http://www.kde.org | http://vizZzion.org | GPG Key ID: 9119 0EF9
--
To unsubscribe, e-mail: opensuse-project+unsubscribe@xxxxxxxxxxxx
To contact the owner, email: opensuse-project+owner@xxxxxxxxxxxx
| < Previous | Next > |