[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Make bug package required? (was Re: berolist.deb)

On May 10, Dirk Eddelbuettel wrote
> Sorry, but you are at least two feet besides the point. If I put a password
> into a config file, that file will be in, say, mode 0600.  So when I then
> report a bug, I can read that file containing the password.  So bug(1) can
> read the file, and will blindly include the content.

In other words, use a config file reader which is suid nobody?

-- 
Raul


--
TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to
debian-devel-request@lists.debian.org . 
Trouble?  e-mail to templin@bucknell.edu .
Reply to: