Re: "Fix" of sudo with DSA-946-1

To: debian-security@lists.debian.org
Subject: Re: "Fix" of sudo with DSA-946-1
From: Matt Palmer <mpalmer@debian.org>
Date: Mon, 30 Jan 2006 10:37:07 +1100
Message-id: <[🔎] 20060129233707.GF13969@hezmatt.org>
Mail-followup-to: debian-security@lists.debian.org
In-reply-to: <[🔎] slrndtpcbr.9hs.jmm@inutil.org>
References: <[🔎] 43DBC8F5.2080006@macfreek.nl> <[🔎] slrndtpcbr.9hs.jmm@inutil.org>

On Sun, Jan 29, 2006 at 01:13:47PM +0100, Moritz Muehlenhoff wrote:
> Freek Dijkstra wrote:
> > The correct action in this case, IMHO, should have been to apply the 
> > patch (of course!), but also add a postinst script, which gives a BIG 
> > warning telling people that they need to change /etc/sudoers
> > The postinst script by kernel-image-* packages are examples of how it 
> > should have done. I sincerely hope that we will shortly see a 
> > sudo_1.6.8p7-1.4 which has such a warning.
> 
> This big warning is the DSA advisory. If you install security updates
> you have to read it, there's no way around it.

I'm sure there are plenty of people who have security.debian.org in their
sources.list without being subscribed to d-s-a.  Hell, I'm a security
conscious person and I'm subscribed to d-s-a primarily so I know when I
should be watching various automated process more closely.

- Matt

Reply to:

Follow-Ups:
- Re: "Fix" of sudo with DSA-946-1
  - From: Marc Haber <mh+debian-security@zugschlus.de>

References:
- "Fix" of sudo with DSA-946-1
  - From: Freek Dijkstra <public@macfreek.nl>
- Re: "Fix" of sudo with DSA-946-1
  - From: Moritz Muehlenhoff <jmm@inutil.org>

Prev by Date: Re: evenings
Next by Date: Re: "Fix" of sudo with DSA-946-1
Previous by thread: Re: "Fix" of sudo with DSA-946-1
Next by thread: Re: "Fix" of sudo with DSA-946-1
Index(es):
- Date
- Thread