Re: woody release task needs help: package priorities

To: debian-devel@lists.debian.org, debian-boot@lists.debian.org
Subject: Re: woody release task needs help: package priorities
From: Michael Stone <mstone@debian.org>
Date: Tue, 15 May 2001 10:57:43 -0400
Message-id: <[🔎] 20010515105743.F15731@justice.loyola.edu>
Mail-followup-to: debian-devel@lists.debian.org, debian-boot@lists.debian.org
In-reply-to: <[🔎] 87pudan0tm.fsf@arabella.intern.opera.no>; from tollef@add.no on Tue, May 15, 2001 at 04:28:37PM +0200
References: <[🔎] OF7805CC80.501809D3-ON86256A4D.004A6FDA@norlight.com> <[🔎] 87pudan0tm.fsf@arabella.intern.opera.no>

On Tue, May 15, 2001 at 04:28:37PM +0200, Tollef Fog Heen wrote:
> You are assuming that talkd have buffer overflows, but you have no
> proof of it.  

Of course a reasonably paranoid person would assume that buffer
overflows exist and mitigate the risk as appropriate. Unless you can
*prove* that the software is secure (proof by assertion or proof by "it
hasn't happened yet" aren't) an assumption of security is unwarranted.

-- 
Mike Stone

Reply to:

References:
- Re: woody release task needs help: package priorities
  - From: "Vince Mulhollon" <vlm@norlight.com>
- Re: woody release task needs help: package priorities
  - From: Tollef Fog Heen <tollef@add.no>

Prev by Date: Re: Debian-Harden
Next by Date: Re: What's wrong with wmaker and wmaker-plain?
Previous by thread: Re: woody release task needs help: package priorities
Next by thread: Re: woody release task needs help: package priorities
Index(es):
- Date
- Thread