Re: Bad press again...

To: debian-security@lists.debian.org
Subject: Re: Bad press again...
From: Florian Weimer <fw@deneb.enyo.de>
Date: Mon, 29 Aug 2005 10:32:39 +0200
Message-id: <[🔎] 8764tpdty0.fsf@mid.deneb.enyo.de>
In-reply-to: <[🔎] detb08$hs$1@sea.gmane.org> (Paul Gear's message of "Mon, 29 Aug 2005 07:40:23 +1000")
References: <[🔎] 874q9ajr9l.fsf@mid.deneb.enyo.de> <[🔎] Pine.LNX.3.96.1050828042459.22363A-100000@Maggie.Linux-Consulting.com> <[🔎] detb08$hs$1@sea.gmane.org>

* Paul Gear:

> There certainly have been exceptions to that rule.  The maintainer of
> shorewall has been trying for weeks to get a DSA issued about a
> vulnerability, and it seems we have to convince Joey that it *is* a
> vulnerability before he'll issue it.  

Is this #318946?  This one is tagged sarge, but it's been closed by
Joey Hess, but probably for testing only.

> (I don't understand this - how can Joey even *try* to understand
> every security bug?)

Part of "stable" means avoiding unnecessary and potentially harmful
changes.  Clear policies could help to avoid such misunderstandings.

Reply to:

Follow-Ups:
- Re: Bad press again...
  - From: Paul Gear <paul@gear.dyndns.org>

References:
- Re: Bad press again...
  - From: Florian Weimer <fw@deneb.enyo.de>
- Re: Bad press again...
  - From: Alvin Oga <aoga@mail.Linux-Consulting.com>
- Re: Bad press again...
  - From: Paul Gear <paul@gear.dyndns.org>

Prev by Date: Re: Bad press again...
Next by Date: Re: Bad press again...
Previous by thread: Re: Bad press again...
Next by thread: Re: Bad press again...
Index(es):
- Date
- Thread