Re: nfs security problem, debian missing

To: debian-devel@lists.debian.org
Subject: Re: nfs security problem, debian missing
From: "Thomas Gebhardt" <gebhardt@HRZ.Uni-Marburg.DE>
Date: Wed, 14 Oct 1998 10:15:59 +0200
Message-id: <[🔎] 199810140816.KAA10702@pcrz64.HRZ.Uni-Marburg.DE>
In-reply-to: mdt's message of Wed, 14 Oct 1998 01:29:04 +0200. <[🔎] 19981014012904.E1234@mdt.in-berlin.de>

Hi,

> 'got a mail about this mountd bug today. you see the list of vendors -
> but as you can see: debian is missing. why? how can we get on this
> list next time?
> 
> ----- Forwarded message from win-sec-ssc@cert.dfn.de -----
> Appendix A - Vendor Information
> 
> Below is a list of the vendors who have provided information for this
> advisory. We will update this appendix as we receive additional
> information. If you do not see your vendor's name, the CERT/CC did not
> hear from that vendor. Please contact the vendor directly.

I am not quite sure, but it seems that this mountd bug had been fixed
in the latest netstd release
(http://www.de.debian.org/Lists-Archives/debian-security-announce-9809/msg00000
.html)

Obviously there is some need to improve the efficiency of information
spreading about security issues. The debian security web page is also
outdated.

Cheers, Thomas

Reply to:

References:
- nfs security problem, debian missing
  - From: "M . Dietrich" <mdt@mdt.in-berlin.de>

Prev by Date: Re: Debian 2.[01] -- Only rudimentary support for Laptops?
Next by Date: rpc.fakelockd available for Solaris/Linux NFS
Previous by thread: nfs security problem, debian missing
Next by thread: wanted package: perl CPAN readline module
Index(es):
- Date
- Thread