Re: Known vulnerabilities left open in Debian?

To: debian-security@lists.debian.org
Subject: Re: Known vulnerabilities left open in Debian?
From: Jan Lühr <jluehr@gmx.net>
Date: Mon, 22 Mar 2004 22:38:35 +0100
Message-id: <[🔎] 200403222238.42854.jluehr@gmx.net>
In-reply-to: <[🔎] Pine.LNX.4.58.0403221540520.20541@centaur.ccs.yorku.ca>
References: <[🔎] Pine.LNX.4.56.0403221847410.3364@capitanata.ca.astro.it> <[🔎] DE3E001C-7C3D-11D8-B780-0030656A784C@mirrorshades.net> <[🔎] Pine.LNX.4.58.0403221540520.20541@centaur.ccs.yorku.ca>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Greetings,

Am Montag, 22. März 2004 21:52 schrieb Ramon Kagan:
> Every so often another set of tirades goes across this list.  So I wish
> only to give my 2 cents.
>
> 1.  If you don't like the way debian conducts it's FREE business, my
> opinion is go find another volunteer group to haggle.

ehem. What about critics? Am I not allowed to critices their work? As I have 
pointed out, their is no alternative for it. "But the point is: what's the 
alternative? If $big_fat_distributer is crippled
by its own release policy or profit making intention - they will _NEVER_ be
secure." I said. 

So the debian security team is doing a good job at the whole.

> 2.  If you are going to complain about something you don't like, then
> either be constructive about it, i.e. say this could be fixed by ... or
> can I help in some way..., or just stop wasting my time and others on this
> list.

I made my suggestions how to fix it.

> 3.  Debian is a testament to the ability of a VOLUNTEER system working
> across multiple countries and continents to provide a good service.  Is it
> perfect?  Probably not, but I haven't found a paid service that is either.
> Remember you are not a paying customer, so what right do you have in
> complaining in not constructive matter?

100% ACK.

> 4.  I would like to thank all the volunteers in the Debian organization
> for all the hard work they do to make my life easier and more productive.
> You all deserve KUDOS.

m2.

> As for the complainers, either shape up or ship out, we never asked you to
> use the product.  Go get yourself a copy of RedHat and see how "wonderful"
> their product is.

Well, I pointed out that there is not real alternative. Imho the current 
release policy doesn't support the creation of a secure distribution.

Keep smiling
yanosz
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.3 (GNU/Linux)
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=QBQS
-----END PGP SIGNATURE-----

Reply to:

Follow-Ups:
- Re: Known vulnerabilities left open in Debian?
  - From: Michael Stone <mstone@debian.org>

References:
- Known vulnerabilities left open in Debian?
  - From: Giacomo Mulas <gmulas@ca.astro.it>
- Re: Known vulnerabilities left open in Debian?
  - From: Bryan Allen <bda@mirrorshades.net>
- Re: Known vulnerabilities left open in Debian?
  - From: Ramon Kagan <rkagan@yorku.ca>

Prev by Date: Re: Known vulnerabilities left open in Debian?
Next by Date: Re: Known vulnerabilities left open in Debian?
Previous by thread: Re: Known vulnerabilities left open in Debian?
Next by thread: Re: Known vulnerabilities left open in Debian?
Index(es):
- Date
- Thread