Re: RfD: Debian is not randomly installing services

To: Martin Schulze <joey@debian.org>
Cc: debian-devel@lists.debian.org
Subject: Re: RfD: Debian is not randomly installing services
From: Mark Baker <mnb20@eddie.sonnet.co.uk>
Date: Fri, 27 Jun 1997 20:52:09 +0100 (BST)
Message-id: <[🔎] Pine.LNX.3.96.970627205016.554A-100000@eddie.sonnet.co.uk>
In-reply-to: <[🔎] m0whegl-000VHVC@finlandia.Infodrom.North.DE>

On Fri, 27 Jun 1997, Martin Schulze wrote:

> Therefore I recommend changing our policy slightly.  I'll write down a
> paragraph for our policy later (or would you like to step forward,
> Christian?).
> 
>   If a package contains both a server and a client, and the server
>   opens another possibility to reach the system (via network, modem,
>   radio &c.) the server will not be enabled without asking the user
>   for his permission.
> 
> The situation looks completely different if the server has its own
> package, like `msqld' for the server and `msql' for the client.

Why not just disallow having servers and clients in the same package (an
exception would perhaps be things like multiuser games where the server is
started by the game when you run it; the worst security flaw there is that
someone might cheat at the game)?

Those people who install the server package would presumably want it
installed, even if there is a possible security flaw.

--
TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to
debian-devel-request@lists.debian.org . 
Trouble?  e-mail to templin@bucknell.edu .

Reply to:

References:
- RfD: Debian is not randomly installing services
  - From: joey@debian.org (Martin Schulze)

Prev by Date: Re: "Amulet" GUI toolkit
Next by Date: where aclocal? (for a dpkg build)
Previous by thread: Re: RfD: Debian is not randomly installing services
Next by thread: where aclocal? (for a dpkg build)
Index(es):
- Date
- Thread