On Fri, Nov 30, 2018 at 12:49:02PM -0500, Alexandre Viau wrote:
It is true that others are vulnerable, but this is a choice that Debian makes and it can be fixed. If we wanted, we could largely limit this with more restrictive debian.org DNS records.
Yes and no. :) There would need to be a concerted push for some time to migrate 20+ years of legacy configurations in order for this to not break quite a lot.