Re: [SECURITY] [DSA 3547-1] imagemagick security update

To: debian-security@lists.debian.org
Subject: Re: [SECURITY] [DSA 3547-1] imagemagick security update
From: Michael Stone <mstone@debian.org>
Date: Tue, 12 Apr 2016 15:37:00 -0400
Message-id: <[🔎] dc2fc7e0-00e5-11e6-9b6a-00163eeb5320@msgid.mathom.us>
Mail-followup-to: debian-security@lists.debian.org
In-reply-to: <[🔎] 1460488760.3438213.576707145.5A43E989@webmail.messagingengine.com>
References: <E1aphGE-00013G-F0@seger.debian.org> <[🔎] 570CDA55.5010200@iinet.net.au> <[🔎] 2095627.V5bhYdRjE7@box> <[🔎] 570D0957.9030400@iinet.net.au> <[🔎] 492b72a4f9f047e86c833cdfe1cc9f1d@mail.adam-barratt.org.uk> <[🔎] 2b2dffb144ef90ca9581ba678442f970@mail.adam-barratt.org.uk> <[🔎] 1460482213.3411255.576644529.194FD780@webmail.messagingengine.com> <[🔎] 20160412173222.GH26457@sarek.noreply.org> <[🔎] 1460488760.3438213.576707145.5A43E989@webmail.messagingengine.com>

On Tue, Apr 12, 2016 at 04:19:20PM -0300, Henrique de Moraes Holschuh wrote:

We don't disclose which mirrors are members of the security.debian.org
pool anywhere (that I could find), so we are currently hiding everything
behind security.debian.org. This wasn't a problem when a DNS lookup for
security.debian.org would return a RR-SET with several A and AAAA
records, but geo-ip changed that to return a single A record.  When
geo-ip points security.debian.org to a broken or stale mirror for
someone, it is a pain to work around it for the duration.

And if you need to access security.debian.org over IPv6, "too bad".


Huh?

Huh?

host security.debian.org

security.debian.org has address 149.20.20.19
security.debian.org has address 128.61.240.73
security.debian.org has address 128.101.240.215
security.debian.org has address 128.31.0.63
security.debian.org has IPv6 address 2607:ea00:101:3c0b::1deb:215
security.debian.org has IPv6 address 2001:4f8:8:36::1deb:19
security.debian.org has IPv6 address 2610:148:1f10:3::73

Mike Stone

Reply to:

Follow-Ups:
- Re: [SECURITY] [DSA 3547-1] imagemagick security update
  - From: Henrique de Moraes Holschuh <hmh@debian.org>

References:
- Re: [SECURITY] [DSA 3547-1] imagemagick security update
  - From: Bjoern Nyjorden <brn@iinet.net.au>
- Re: [SECURITY] [DSA 3547-1] imagemagick security update
  - From: Luciano Bello <luciano@debian.org>
- Re: [SECURITY] [DSA 3547-1] imagemagick security update
  - From: Bjoern Nyjorden <brn@iinet.net.au>
- Re: [SECURITY] [DSA 3547-1] imagemagick security update
  - From: "Adam D. Barratt" <adam@adam-barratt.org.uk>
- Re: [SECURITY] [DSA 3547-1] imagemagick security update
  - From: "Adam D. Barratt" <adam@adam-barratt.org.uk>
- Re: [SECURITY] [DSA 3547-1] imagemagick security update
  - From: Henrique de Moraes Holschuh <hmh@debian.org>
- Re: [SECURITY] [DSA 3547-1] imagemagick security update
  - From: Peter Palfrader <weasel@debian.org>
- Re: [SECURITY] [DSA 3547-1] imagemagick security update
  - From: Henrique de Moraes Holschuh <hmh@debian.org>

Prev by Date: Re: [SECURITY] [DSA 3547-1] imagemagick security update
Next by Date: Re: [SECURITY] [DSA 3547-1] imagemagick security update
Previous by thread: Re: [SECURITY] [DSA 3547-1] imagemagick security update
Next by thread: Re: [SECURITY] [DSA 3547-1] imagemagick security update
Index(es):
- Date
- Thread