Re: "Fix" of sudo with DSA-946-1
On Sun, Jan 29, 2006 at 01:13:47PM +0100, Moritz Muehlenhoff wrote:
> Freek Dijkstra wrote:
> > The correct action in this case, IMHO, should have been to apply the
> > patch (of course!), but also add a postinst script, which gives a BIG
> > warning telling people that they need to change /etc/sudoers
> > The postinst script by kernel-image-* packages are examples of how it
> > should have done. I sincerely hope that we will shortly see a
> > sudo_1.6.8p7-1.4 which has such a warning.
>
> This big warning is the DSA advisory. If you install security updates
> you have to read it, there's no way around it.
I'm sure there are plenty of people who have security.debian.org in their
sources.list without being subscribed to d-s-a. Hell, I'm a security
conscious person and I'm subscribed to d-s-a primarily so I know when I
should be watching various automated process more closely.
- Matt
Reply to: