Re: Bug#509063: ITP: libproxy -- automatic proxy configuration management library

[Florian Weimer <fw@deneb.enyo.de>]

* Michael Banck:

>> WPAD is a broken protocol with security issues inherent to the DNS
>> devolution mechanism (which is also performed by libproxy).  Please
>> don't add implementations to the Debian archive.
>
> As I understand it, this library is made so that application writers
> don't duplicate the code all over the place.

Which is generally fine.

> If you have a better method for proxy configuration (which doesn't
> include changing the network all over the world in order to use it),
> maybe the GNOME project can use that instead.

I doubt that WPAD is necessary in lots of places to get to the WWW.
Unfortunately, due to the brokenness of the DNS version of the
protocol, clients are potentially exposed on any network which doesn't
implement the expected variant.  This is a very unfortunate situation.