[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Security [was: not using debian as firewall!]

Branden Robinson wrote:
> On Thu, Apr 15, 1999 at 10:29:21AM +0100, Matt Kern wrote:
> > I've been using Debian for about one and a half years now, and was
> > recently surprised to hear that Debian had a bad reputation as far as
> > security matters went.  I don't know if this reputation was deserved or
> > how much Debian has improved since then.  One of the examples that the
> > person that told me this came up with was something to do with the X
> > wrapper program.  It was all news to me;  I thought that a system like
> > Debian's corrected problems (especially security related items) very
> > quickly, certainly much quicker than you would ever get a fix out of
> > Microsoft...
> 
> Don't believe everything you hear.  A potential vulnerability in our X
> server wrapper was brought to my attention about the time I took over
> maintainership, and it was fixed about a year ago; maybe a little more,
> IIRC.
> 
> Neither hamm nor slink shipped with that vulnerability.  I think it likely
> that your friend is just confused.

And it's worth noting that debian's X wrapper is a nice security _feature_,
that has made debian's X not be vunerable to many security holes over the
years that normal X had.

-- 
see shy jo
Reply to: