On August 3, 2005 07:53, Tim Small wrote: > OK - out of interest, are there any plans to fix this for future Sarge > revs (e.g. by making this the config file default), or is that against > policy for a bug of this severity? It is against policy, unfortunately, since only extremely important and/or security-related issues can be fixed once stable is released. > One of the side-effects is that sometimes kdm gives up on /dev/random, > and creates an unauthenticated X session - i.e. all clients can connect > (although it does put a red warning on the log-in dialogue to reflect > this). I suppose this does make it vaguely security related. Perhaps, but I doubt that this would be considered a clear problem of the type that would merit a security update. There are KDE 3.4 backports for Sarge in the works, however, so you may be able to work-around the issue at some point in the not-too-distant future. Cheers, Christopher Martin
Attachment:
pgpwU9EBo911a.pgp
Description: PGP signature