* Joey Hess (joeyh@debian.org) wrote: > --- policy.sgml.orig 2003-08-01 13:40:51.000000000 -0400 > +++ policy.sgml 2003-08-01 13:45:24.000000000 -0400 > @@ -7104,6 +7104,14 @@ > execute them. > </p> > > + <p> > + Since setuid and setgid programs are often a security rick, 'risk' might be a bit better. :) > + you should not add any new setuid or setgid programs to > + the distribution before this has been discussed on the until it has been discussed .. ? > + <em>debian-security</em> mailing list and a consensus about > + doing that has been reached. and a consensus reached which approves of the application and it's needs. ? Stephen
Attachment:
pgpPB0MDGawjG.pgp
Description: PGP signature