Re: Bad press related to (missing) Debian security
On Mon, Jun 27, 2005 at 08:39:43PM +0200, Marek Olejniczak wrote:
> On Mon, 27 Jun 2005, Matt Zimmerman wrote:
> >The security team has always been a difficult one to expand. A strong
> >level of trust is necessary due to confidentiality issues, and security
> >support is a lot of (mostly boring and thankless) work. However,
> >expanding it seems like the only way to make it sustainable.
> I don't understand the philosophy of Debian security team. It's really so
> difficult to push into sarge spamassassin 3.0.4 which is not vulnerable?
> This version is in Debian testing and why this version can't be push into
This article does a fairly good job of explaining: