Bug#759300: wheezy-pu: package live-config/3.0.23-1+deb7u1

To: Luciano Bello <luciano@debian.org>, 759300@bugs.debian.org
Subject: Bug#759300: wheezy-pu: package live-config/3.0.23-1+deb7u1
From: Jonathan Wiltshire <jmw@debian.org>
Date: Mon, 25 Aug 2014 18:19:43 -0700
Message-id: <[🔎] b011f332bcfc45da1103313d00d8642c@hogwarts.powdarrmonkey.net>
Reply-to: Jonathan Wiltshire <jmw@debian.org>, 759300@bugs.debian.org
In-reply-to: <[🔎] 1520143.K9OsRz3qJO@mybox>
References: <[🔎] 1520143.K9OsRz3qJO@mybox>

Control: tag -1 confirmed

On 2014-08-25 16:13, Luciano Bello wrote:

After talking with Daniel, we agreed to update the patch for this(non-critical security) bug via spu. This will allow to build the nextdebian-live
without the vulnerability.
The problem is the following: Debian-live allows to SSH access withdefault
user and password. The patch disable ssh password authentication.
  The debdiff is attached.


Please go ahead.

Thanks,

--
Jonathan Wiltshire                                      jmw@debian.org
Debian Developer                         http://people.debian.org/~jmw

4096R: 0xD3524C51 / 0A55 B7C5 1223 3942 86EC  74C3 5394 479D D352 4C51

<directhex> i have six years of solaris sysadmin experience, from
            8->10. i am well qualified to say it is made from bonghits
			layered on top of bonghits

Reply to:

References:
- Bug#759300: wheezy-pu: package live-config/3.0.23-1+deb7u1
  - From: Luciano Bello <luciano@debian.org>

Prev by Date: Bug#758249: transition: liblas
Next by Date: Processed: Re: Bug#759300: wheezy-pu: package live-config/3.0.23-1+deb7u1
Previous by thread: Bug#759300: wheezy-pu: package live-config/3.0.23-1+deb7u1
Next by thread: Bug#759300: wheezy-pu: package live-config/3.0.23-1+deb7u1
Index(es):
- Date
- Thread