Bug#56821: [POSSIBLE GRAVE SECURITY HOLD]
- To: Michel LESPINASSE <email@example.com>
- Cc: Thomas Quinot <firstname.lastname@example.org>, Ruud de Rooij <email@example.com>, Joseph Carter <firstname.lastname@example.org>, Martijn van Oosterhout <email@example.com>, Samuel Tardieu <firstname.lastname@example.org>, Adam Di Carlo <email@example.com>, "Huneycutt, Doug" <firstname.lastname@example.org>, email@example.com, firstname.lastname@example.org, email@example.com, firstname.lastname@example.org
- Subject: Bug#56821: [POSSIBLE GRAVE SECURITY HOLD]
- From: Thomas Quinot <email@example.com>
- Date: Wed, 2 Feb 2000 17:18:06 +0100
- Message-id: <20000202171806.C29101@lantier.enst.fr>
- Reply-to: firstname.lastname@example.org, email@example.com
- In-reply-to: <Pine.GSO.3.96.1000202160719.26748O-100000@ille>
- References: <20000202151024.A3765@cuivre.fr.eu.org> <Pine.GSO.3.96.1000202160719.26748O-100000@ille>
Le 2000-02-02, Michel LESPINASSE écrivait :
> However, I think Thomas is wrong to blame mbr and debian for his security
I am not blaming mbr, which does exactly what it was written for.
I am questioning the usefulness of introducing a new, peculiar behaviour
that augments the vulnerability of the system, and I blame boot-floppies
for not documenting the fact that this peculiar behaviour is the
> switching from debian to something else seems dubious... (and I feel that
> debian is doing a good job on security compared to other distros).
I was thinking so too.
> I would be very tempted to mock you for your "I wont use your software if
> you dont agree with me" argument if you were not a debian developper
> yourself :)
The fact that I am a Debian developer has no relevance to the fact
that I am reluctant to use and promote the use of a Linux distribution
wherein an important security concern is not given cosideration.
Thomas Quinot ** Département Informatique & Réseaux ** firstname.lastname@example.org
ENST // 46 rue Barrault // 75634 PARIS CEDEX 13