On Mon, Mar 29, 1999 at 03:32:12PM +0200, Marco d'Itri wrote:
> On Mar 28, Martin Schulze <joey@finlandia.Infodrom.North.DE> wrote:
>
> > - critical security fix: 2 days.
> I think those fixes should be uploaded as fast as possible by anyone
> willing, if a remote root exploit for some package like apache or ssh
> is published users can't just shut down their machines for two days if
> there is no know workaround.
Agreed, if a security hold was found in my package I would not mind
someone doing a NMU and sending me a quick email with the patch and a
reason..
When it comes to security issues, we should not care who's toes we step
on, the first order of business should always to get a fix in...
Zephaniah E. Hull..
(The maintainer of tleds, which runs as root)
>
> --
> ciao,
> Marco
--
PGP EA5198D1-Zephaniah E. Hull <warp@whitestar.soark.net>-GPG E65A7801
Keys available at http://whitestar.soark.net/~warp/public_keys.
CCs of replies from mailing lists are encouraged.
Attachment:
pgp5GLfoJJwMb.pgp
Description: PGP signature