Which Debian packages leak information to the network?

To: debian-security@lists.debian.org
Cc: Whonix-devel <whonix-devel@whonix.org>
Subject: Which Debian packages leak information to the network?
From: Patrick Schleizer <adrelanos@riseup.net>
Date: Wed, 18 May 2016 15:50:24 +0000
Message-id: <[🔎] 573C8F40.60106@riseup.net>

Hello we are a privacy-centric distro based on Debian and wanted to know
what Debian packages leak information about the system to the network
without a user's consent/expectation.

As documented on the page below, a system's security also depends on
avoiding leaking any identifiable information to network adversaries by
accident. Popcon, bts, wnpp-check are the noted examples so far (which
we blacklist in our distro). Please help notify us of any other such
packages.

https://wiki.debian.org/TorifyDebianServices

Reply to:

Follow-Ups:
- Re: Which Debian packages leak information to the network?
  - From: Jakub Wilk <jwilk@debian.org>
- Re: Which Debian packages leak information to the network?
  - From: Paul Wise <pabs@debian.org>

Prev by Date: Re: debcheckroot v1.0 released
Next by Date: Re: debcheckroot v1.0 released
Previous by thread: Re: debcheckroot v1.0 released
Next by thread: Re: Which Debian packages leak information to the network?
Index(es):
- Date
- Thread