Antoine Beaupré <anarcat@orangeseeds.org> writes: > What do you think? Should we push this forward? I am somewhat concerned that by fixing this we might be breaking something. Even if it is 100% broken behaviour, maybe some application depends on this? Is the potential attack bad enough to justify potential breakage? I am not absolutely convinced. -- Brian May <bam@debian.org>