Bug#56821: [POSSIBLE GRAVE SECURITY HOLD]
- To: Michel LESPINASSE <firstname.lastname@example.org>
- Cc: Thomas Quinot <email@example.com>, Ruud de Rooij <firstname.lastname@example.org>, Joseph Carter <email@example.com>, Martijn van Oosterhout <firstname.lastname@example.org>, Samuel Tardieu <email@example.com>, Adam Di Carlo <firstname.lastname@example.org>, "Huneycutt, Doug" <email@example.com>, firstname.lastname@example.org, email@example.com, firstname.lastname@example.org, email@example.com
- Subject: Bug#56821: [POSSIBLE GRAVE SECURITY HOLD]
- From: Thomas Quinot <firstname.lastname@example.org>
- Date: Wed, 2 Feb 2000 17:18:06 +0100
- Message-id: <20000202171806.C29101@lantier.enst.fr>
- Reply-to: email@example.com, firstname.lastname@example.org
- In-reply-to: <Pine.GSO.3.96.1000202160719.26748O-100000@ille>
- References: <20000202151024.A3765@cuivre.fr.eu.org> <Pine.GSO.3.96.1000202160719.26748O-100000@ille>
Le 2000-02-02, Michel LESPINASSE écrivait :
> However, I think Thomas is wrong to blame mbr and debian for his security
I am not blaming mbr, which does exactly what it was written for.
I am questioning the usefulness of introducing a new, peculiar behaviour
that augments the vulnerability of the system, and I blame boot-floppies
for not documenting the fact that this peculiar behaviour is the
> switching from debian to something else seems dubious... (and I feel that
> debian is doing a good job on security compared to other distros).
I was thinking so too.
> I would be very tempted to mock you for your "I wont use your software if
> you dont agree with me" argument if you were not a debian developper
> yourself :)
The fact that I am a Debian developer has no relevance to the fact
that I am reluctant to use and promote the use of a Linux distribution
wherein an important security concern is not given cosideration.
Thomas Quinot ** Département Informatique & Réseaux ** email@example.com
ENST // 46 rue Barrault // 75634 PARIS CEDEX 13