Re: [DLA 20-1] munin security update

To: debian-lts@lists.debian.org
Subject: Re: [DLA 20-1] munin security update
From: Vincent Bernat <bernat@debian.org>
Date: Fri, 08 Aug 2014 10:57:40 +0200
Message-id: <[🔎] m3wqajwe7v.fsf_-_@neo.luffy.cx>
In-reply-to: <[🔎] 53E392B1.60803@mendix.com> (Frank Baalbergen's message of "Thu, 07 Aug 2014 16:52:33 +0200")
References: <201408071648.18092.holger@layer-acht.org> <[🔎] 53E392B1.60803@mendix.com>

 ❦  7 août 2014 16:52 +0200, Frank Baalbergen <frank.baalbergen@mendix.com> :

> On 08/07/2014 04:48 PM, Holger Levsen wrote:

>> * plugins: use runtime $ENV{MUNIN_PLUGSTATE}. So all properly written
>>    plugins will use /var/lib/munin-node/plugin-state/$uid/$some_file now -
>>    please report plugins that are still using /var/lib/munin/plugin-state/ -
>>    as those  might pose a security risk!

This changes broke the crontab for /etc/munin/plugins/apt_all. Can we
use the BTS to report that?
-- 
Use free-form input when possible.
            - The Elements of Programming Style (Kernighan & Plauger)

Attachment: signature.asc
Description: PGP signature

Reply to:

Follow-Ups:
- Re: [DLA 20-1] munin security update
  - From: Holger Levsen <holger@layer-acht.org>

References:
- N/A Re: [alerts-security] [DLA 20-1] munin security update
  - From: Frank Baalbergen <frank.baalbergen@mendix.com>

Prev by Date: Re: Security support for adns in squeeze-lts
Next by Date: Re: [DLA 20-1] munin security update
Previous by thread: N/A Re: [alerts-security] [DLA 20-1] munin security update
Next by thread: Re: [DLA 20-1] munin security update
Index(es):
- Date
- Thread