Re: [SRM] krb5 changelog missing CVE

To: debian-release@lists.debian.org
Subject: Re: [SRM] krb5 changelog missing CVE
From: Russ Allbery <rra@debian.org>
Date: Wed, 04 Jan 2012 17:44:07 -0800
Message-id: <[🔎] 87sjjuexeg.fsf@windlord.stanford.edu>
In-reply-to: <[🔎] 20120104205016.GA28453@thrall.0x539.de> (Philipp Kern's message of "Wed, 4 Jan 2012 21:50:16 +0100")
References: <[🔎] tslobukr54q.fsf@mit.edu> <[🔎] 87obuk4n7l.fsf@mid.deneb.enyo.de> <[🔎] 1325621401.19606.4.camel@jacala.jungle.funky-badger.org> <[🔎] 87k45835cx.fsf@mid.deneb.enyo.de> <[🔎] 1325626071.19606.11.camel@jacala.jungle.funky-badger.org> <[🔎] 87r4zgezes.fsf@mid.deneb.enyo.de> <[🔎] 20120104150531.GA23831@thrall.0x539.de> <[🔎] slrnjg93j0.41s.jmm@inutil.org> <[🔎] 20120104205016.GA28453@thrall.0x539.de>

Philipp Kern <pkern@debian.org> writes:
> On Wed, Jan 04, 2012 at 06:37:36PM +0100, Moritz Mühlenhoff wrote:

>> For all practical purposes the KDC is local to your trust context.

> For all practical purposes you also have it open so that your
> roadwarriors can get tickets.

Indeed, it's possible that your KDC is the most public service that you
run, since contacting it may be required to get access to your VPN,
depending on the VPN authentication mechanism.

-- 
Russ Allbery (rra@debian.org)               <http://www.eyrie.org/~eagle/>

Reply to:

References:
- [SRM] krb5 changelog missing CVE
  - From: Sam Hartman <hartmans@debian.org>
- Re: [SRM] krb5 changelog missing CVE
  - From: Florian Weimer <fw@deneb.enyo.de>
- Re: [SRM] krb5 changelog missing CVE
  - From: "Adam D. Barratt" <adam@adam-barratt.org.uk>
- Re: [SRM] krb5 changelog missing CVE
  - From: Florian Weimer <fw@deneb.enyo.de>
- Re: [SRM] krb5 changelog missing CVE
  - From: "Adam D. Barratt" <adam@adam-barratt.org.uk>
- Re: [SRM] krb5 changelog missing CVE
  - From: Florian Weimer <fw@deneb.enyo.de>
- Re: [SRM] krb5 changelog missing CVE
  - From: Philipp Kern <pkern@debian.org>
- Re: [SRM] krb5 changelog missing CVE
  - From: Moritz Mühlenhoff <jmm@inutil.org>
- Re: [SRM] krb5 changelog missing CVE
  - From: Philipp Kern <pkern@debian.org>

Prev by Date: Re: [SRM] updating ia32-libs and ia32-libs-gtk
Next by Date: Re: phppgadmin multiple XSS (CVE-2011-3598)
Previous by thread: Re: [SRM] krb5 changelog missing CVE
Next by thread: Re: Bug#622919: Raise severity?
Index(es):
- Date
- Thread