[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: qmail and related packages in NEW

Bjørn Mork <bmork@dod.no> writes:
> Moritz Muehlenhoff <jmm@inutil.org> writes:

>> We've discussed this at the Security Team meeting in Essen and we don't
>> have a problem with qmail being included in Lenny.

> You are aware of upstream's attitude towards security holes?  There are
> lots of assumptions like "nobody will ever do ...".

> E.g, quoting from http://cr.yp.to/qmail/guarantee.html :

djb is no longer upstream for qmail in any useful way.  It's very unlikely
that he'll ever release another version, and in practice the software is
now supported by a different set of people.

Russ Allbery (rra@debian.org)               <http://www.eyrie.org/~eagle/>

Reply to: