Norbert Preining <preining@alioth.debian.org> wrote: > - disable shell_escape completely, fix for DSA-2198-1, CVE-2011-1400 Is the rationale for this change somewhere documented? Will upstream follow the same reasoning? TIA, Frank -- Dr. Frank Küster VCD Miltenberg, ADFC Aschaffenburg-Miltenberg B90/Grüne KV Miltenberg Debian Developer (TeXLive)