[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Bug#752450: ftp.debian.org: please consider to strongly tighten the validity period of Release files

Paul Wise <pabs@debian.org> writes:

> On Tue, Nov 4, 2014 at 1:56 AM, Ian Jackson wrote:
>>  * We might want automation which was capable of automatically
>>    shutting a server down into some kind of minimal maintenance mode,
>>    when it is unable to verify its own security support status.
> That sounds like it would introduce a denial of service attack.

That was my first thought too -- it would be particularly embarrassing
if this caught on to an extent where we were to enable it on the servers
providing the infrastructure that were relied upon to check for proper

Cheers, Phil.
|)|  Philip Hands  [+44 (0)20 8530 9560]  HANDS.COM Ltd.
|-|  http://www.hands.com/    http://ftp.uk.debian.org/
|(|  Hugo-Klemm-Strasse 34,   21075 Hamburg,    GERMANY

Attachment: pgpLATvmsEQ1r.pgp
Description: PGP signature

Reply to: