In article <87d684vnvd.fsf@hector.domek>, Peter Dembinski wrote:
> "Peter Strömberg" <wilfried@spamcop.net> writes:
>
>> "Travis" <pcprecords@att.com> wrote in
>> news:EqC_b.82142$hR.1686063@bgtnsc05-news.ops.worldnet.att.net:
>>
>>> When will it be 8 years with one default security hole? I been
>>> watching it and for over a year and it has not changed. When is the
>>> date if anybody knows?
>>
>> Here was the commit
>>
>> revision 1.380
>> date: 2002/06/26 14:04:08; author: deraadt; state: Exp; lines: +2 -2
>> One remote hole in the default install, in nearly 6 years!
>> not too bad...
>
> hm, AFAIK there was ip6-related DDoS vulnerability in recent kernels,
> and it applied to default installations too

DDOS is not remote hole.