Re: Bad press again...

To: Paul Gear <paul@gear.dyndns.org>
Cc: debian-security@lists.debian.org
Subject: Re: Bad press again...
From: Goswin von Brederlow <brederlo@informatik.uni-tuebingen.de>
Date: Mon, 29 Aug 2005 03:11:06 +0200
Message-id: <[🔎] 871x4dlf85.fsf@informatik.uni-tuebingen.de>
In-reply-to: <[🔎] detb08$hs$1@sea.gmane.org> (Paul Gear's message of "Mon, 29 Aug 2005 07:40:23 +1000")
References: <[🔎] 874q9ajr9l.fsf@mid.deneb.enyo.de> <[🔎] Pine.LNX.3.96.1050828042459.22363A-100000@Maggie.Linux-Consulting.com> <[🔎] detb08$hs$1@sea.gmane.org>

Paul Gear <paul@gear.dyndns.org> writes:

> Alvin Oga wrote:
>> 
>> On Sun, 28 Aug 2005, Florian Weimer wrote:
>> 
>> 
>>>AFAIK, you can only blame the security team for lack of communication.
>> 
>> 
>> nah ... they're doing fine .. to the extent is needed ??
>> 
>> if it's important... they will post dsa ??
>
> There certainly have been exceptions to that rule.  The maintainer of
> shorewall has been trying for weeks to get a DSA issued about a
> vulnerability, and it seems we have to convince Joey that it *is* a
> vulnerability before he'll issue it.  (I don't understand this - how can
> Joey even *try* to understand every security bug?)  Repeated attempts to
> communicate this have been met with silence.

Think about this: How else can he judge the bug is fixed or not?

MfG
        Goswin

Reply to:

Follow-Ups:
- Re: Bad press again...
  - From: Paul Gear <paul@gear.dyndns.org>

References:
- Re: Bad press again...
  - From: Florian Weimer <fw@deneb.enyo.de>
- Re: Bad press again...
  - From: Alvin Oga <aoga@mail.Linux-Consulting.com>
- Re: Bad press again...
  - From: Paul Gear <paul@gear.dyndns.org>

Prev by Date: Re: Bad press again...
Next by Date: Re: Bad press again...
Previous by thread: Re: Bad press again...
Next by thread: Re: Bad press again...
Index(es):
- Date
- Thread