Bug#318712: tattle.pl

To: 318712@bugs.debian.org
Cc: coreyjsteele@yahoo.com
Subject: Bug#318712: tattle.pl
From: Moritz Naumann <info@moritz-naumann.com>
Date: Sat, 07 Jan 2006 12:41:51 +0100
Message-id: <[🔎] 43BFA8FF.3010908@moritz-naumann.com>
Reply-to: Moritz Naumann <info@moritz-naumann.com>, 318712@bugs.debian.org

Please note that there have been security issues in tattle versions
before 0.3.0 as reported by b0iler on Bugtraq [1].

An updated release of tattle which fixes this issue is available on the
new website [2] of its developer, Mr. C.J. Steele.

Though much has been improved since the initial release, some
shortcomings remain in the current 0.4.0 release ([3], [4], script does
not define default variable values outside of its configuration section).

Nevertheless tattle would make a nice addition to the Debian pool,
though, preferrably, as a standalone package. A recommendation to
install it could be added to the openssh-server dependencies once it is
generally considered both reliable and using a good reporting approach.

I thus recommend to reassign this a bug against wnpp twice, once with
title 'tattle', once with title 'never seen before' (if still of interest).

Moritz

[1]
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2005-06/0057.html
[2] http://intertrusion.com/files/tattle
[3]
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2005-06/0059.html
[4]
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2005-06/0061.html

Reply to:

Prev by Date: Bug#335276: Bug#346282: OO.O-common: conffile prompts on upgrade
Next by Date: accessory
Previous by thread: Bug#335276: Bug#346282: OO.O-common: conffile prompts on upgrade
Next by thread: accessory
Index(es):
- Date
- Thread