Re: Proposal: remove krb5-appl (rlogin, rsh, telnet, ftp with krb5 support)

To: Moritz Mühlenhoff <jmm@inutil.org>
Cc: debian-devel@lists.debian.org
Subject: Re: Proposal: remove krb5-appl (rlogin, rsh, telnet, ftp with krb5 support)
From: Sebastian Feld <sebastian.n.feld@gmail.com>
Date: Tue, 28 Jan 2014 00:03:47 +0100
Message-id: <[🔎] CAHnbEGLhZQG_HEWRBnaOm-P6Vz_7xDpG=cFwfpCkZjnJmMkgew@mail.gmail.com>
In-reply-to: <[🔎] slrnle7vn3.4eh.jmm@inutil.org>
References: <[🔎] 00000143bfec0433-2cfb39b4-13f4-410f-8db1-52b5581c41bb-000000@email.amazonses.com> <[🔎] 20140123171421.GA26239@vernstok.nl> <[🔎] CAA0ZO6CbVQjy8KyMfxO3nzN1vEj6C5hYqDxuuvbHM6pFW63H-g@mail.gmail.com> <[🔎] slrnle7vn3.4eh.jmm@inutil.org>

On Sat, Jan 25, 2014 at 7:13 PM, Moritz Mühlenhoff <jmm@inutil.org> wrote:
> Brian May <brian@microcomaustralia.com.au> schrieb:
>> --001a11c1fd62df72e504f0aac077
>> Content-Type: text/plain; charset=UTF-8
>>
>> On 24 January 2014 04:14, Jelmer Vernooij <jelmer@samba.org> wrote:
>>
>>> > My proposal is to drop the package from the archive, but I wanted to
>>> > give others a chance to shout out that I'm wrong and that there's some
>>> > compelling use-case I've missed.
>>> > If someone can convince me that the packages are useful I'm happy to
>>> > spend some effort on them.
>>> > However, I don't think that's the case.
>>> FWIW we are currently having the same discussion for the Heimdal packages.
>>>
>>
>> http://thread.gmane.org/gmane.comp.encryption.kerberos.heimdal.general/7608
>>
>> I think these old binaries could make the entire source package and all
>> binary packages it builds look bad, if for example somebody discovers a
>> serious security issue. Which is very possible, as I don't think anyone is
>> really interested in the source code any more.
>
> I agree with the removal. http://www.debian.org/security/2011/dsa-2375 was
> already a sufficiently unpleasant christmas present (exploit was posted on
> on 24th December)

I agree with the removal. Debian should really make itself obsolete by
removing any option to do fast and secure enterprise login. ssh is the
way to go for all, since all deserve slow and messy login performance.

Now seriously... think about it: Is it *wise* to remove these utilities?

Seb
-- 
Sebastian Feld - IT secruity expert

Reply to:

Follow-Ups:
- Re: Proposal: remove krb5-appl (rlogin, rsh, telnet, ftp with krb5 support)
  - From: Russ Allbery <rra@debian.org>

References:
- Proposal: remove krb5-appl (rlogin, rsh, telnet, ftp with krb5 support)
  - From: Sam Hartman <hartmans@debian.org>
- Re: Proposal: remove krb5-appl (rlogin, rsh, telnet, ftp with krb5 support)
  - From: Jelmer Vernooij <jelmer@samba.org>
- Re: Proposal: remove krb5-appl (rlogin, rsh, telnet, ftp with krb5 support)
  - From: Brian May <brian@microcomaustralia.com.au>
- Re: Proposal: remove krb5-appl (rlogin, rsh, telnet, ftp with krb5 support)
  - From: Moritz Mühlenhoff <jmm@inutil.org>

Prev by Date: Re: Proposal: remove krb5-appl (rlogin, rsh, telnet, ftp with krb5 support)
Next by Date: Re: Proposal: remove krb5-appl (rlogin, rsh, telnet, ftp with krb5 support)
Previous by thread: Re: Proposal: remove krb5-appl (rlogin, rsh, telnet, ftp with krb5 support)
Next by thread: Re: Proposal: remove krb5-appl (rlogin, rsh, telnet, ftp with krb5 support)
Index(es):
- Date
- Thread