Re: Security of Debian SuX0r?

To: debian-devel@lists.debian.org
Subject: Re: Security of Debian SuX0r?
From: Peter Makholm <peter@makholm.net>
Date: 31 Aug 2000 15:48:29 +0200
Message-id: <[🔎] xnosnrlee36.fsf@ve.diku.dk>
In-reply-to: Bob Bernstein's message of "Wed, 30 Aug 2000 14:09:33 -0400 (EDT)"
References: <200008301809.OAA12130@robert.ruptured-duck.org>

Bob Bernstein <poobah@ruptured-duck.com> writes:

> So there's a warning? At least MD5 *can* be implemented at install-time. Why
> doesn't he mention that Caldera for one doesn't even offer MD5 as an _option_
> at install-time? Next:

What Caldera do doesn't matter at all. Neither does it matter what
anyone else does. Debian should just be a reliable (securitywise)
distibution which is safe to use if you not clueless.

I've just helped a friend instaling Debian. He had two comment
about the above question. Is it the red or blue button there is
active? It is badly marked which button you are about the press.

The other comment is something about the wording of two of the
questions. The firste question was saying something like "Do you want
to keep the standard (less secure) option" and the next question said
"Would you use the new (more secure) option". If the user just thinks
that he wants the most secure box but not really reading precisly what
it says he will say "no" to both questions. (That was what we did).

I don't really remember which questions it was, but I'm almost sure
one of them was the MD5 password question.

-- 
Peter

-- 
To UNSUBSCRIBE, email to debian-devel-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Reply to:

Follow-Ups:
- Re: Security of Debian SuX0r?
  - From: Decklin Foster <decklin@photek.dhs.org>
- Re: Security of Debian SuX0r?
  - From: Joey Hess <joeyh@debian.org>

Prev by Date: Re: imap mailbox killer
Next by Date: Re: Security of Debian SuX0r?
Previous by thread: Re: imap mailbox killer
Next by thread: Re: Security of Debian SuX0r?
Index(es):
- Date
- Thread