Re: Python rexec and Bastion flaws
Bastian Kleineidam wrote:
> > > I suggest to disable the above two modules in python2.2 (which is in
> > > woody), even if existing applications can break. What do you think?
> >
> > I'd rather know about the vulnerability (and maybe doko is able to
> > implement a fix) than to blindly castrate software. Theo d.R. already
> > taught us that blindly releasing updates are not good.
>
> Yup, ok. I will see if I can identify packages using rexec or Bastion
> and provide patches for them instead of disabling modules.
Thanks.
Regards,
Joey
--
Ten years and still binary compatible. -- XFree86
Please always Cc to me when replying to me on the lists.
Reply to: