Re: qmail and related packages in NEW

To: debian-devel@lists.debian.org
Subject: Re: qmail and related packages in NEW
From: Russ Allbery <rra@debian.org>
Date: Tue, 02 Dec 2008 09:58:06 -0800
Message-id: <[🔎] 87ej0qihn5.fsf@windlord.stanford.edu>
In-reply-to: <[🔎] 874p1mdid9.fsf@obelix.mork.no> ("Bjørn Mork"'s message of "Tue\, 02 Dec 2008 10\:41\:22 +0100")
References: <20081128181242.32463.qmail@6879aebe33b239.315fe32.mid.smarden.org> <20081128205101.14b7f4e9.codehelp@debian.org> <slrngj27cr.7uq.jmm@inutil.org> <[🔎] 874p1mdid9.fsf@obelix.mork.no>

Bjørn Mork <bmork@dod.no> writes:
> Moritz Muehlenhoff <jmm@inutil.org> writes:

>> We've discussed this at the Security Team meeting in Essen and we don't
>> have a problem with qmail being included in Lenny.

> You are aware of upstream's attitude towards security holes?  There are
> lots of assumptions like "nobody will ever do ...".

> E.g, quoting from http://cr.yp.to/qmail/guarantee.html :

djb is no longer upstream for qmail in any useful way.  It's very unlikely
that he'll ever release another version, and in practice the software is
now supported by a different set of people.

-- 
Russ Allbery (rra@debian.org)               <http://www.eyrie.org/~eagle/>

Reply to:

References:
- Re: qmail and related packages in NEW
  - From: Bjørn Mork <bmork@dod.no>

Prev by Date: Re: cdebconf, and a versioned dependency on debconf
Next by Date: Re: Why acroread is popular (Was: Re: Popular packages in Ubuntu that is missing in Debian/main)
Previous by thread: Re: qmail and related packages in NEW
Next by thread: Processed: reassign from ntp-server to ntp
Index(es):
- Date
- Thread