Re: The state of debian security

To: Debian List <debian-user@lists.debian.org>
Subject: Re: The state of debian security
From: Jon Dowland <dowland@gmail.com>
Date: Sat, 17 Jul 2004 19:08:38 +0100
Message-id: <[🔎] efb0666804071711084126a27c@mail.gmail.com>
In-reply-to: <[🔎] 1090080337.40f94e51731b5@mail.hardcoretek.com>
References: <[🔎] 1090080337.40f94e51731b5@mail.hardcoretek.com>

On Sat, 17 Jul 2004 11:05:37 -0500, gfmurphy@hardcoretek.com
<gfmurphy@hardcoretek.com> wrote:
> Quote from debian's security website:
> 
> Debian takes security very seriously.  Most security problems brought to our
> attention are corrected within 48 hours.
> 
> Debian has yet to release security patches for two major vulnerabilities in php.
>  In fact they haven't released an advisory of any kind in over two weeks.  I
> know that this is a community effort, but I don't really understand how that's
> an excuse seeing that Gentoo released and updated ebuild the next day.
> 
> I love debian.  I run debian stable on all of my production machines, and the
> belief that security patches would be handed down to the community promptly was
> a major factor in choosing it as our distribution of choice.  Nevertheless, if
> users continued to be frustrated by slow response times to security issues and
> poor developer attitudes, debian has no real advantage over any other distro.
> 
> Frustrated and vulnerable?

Could you supply links / information about the vulnerabilities?

-- 
Jon Dowland

Reply to:

References:
- The state of debian security
  - From: gfmurphy@hardcoretek.com

Prev by Date: Re: Login Shell/Profile: Stop the Madness
Next by Date: Re: The state of debian security
Previous by thread: The state of debian security
Next by thread: Re: The state of debian security
Index(es):
- Date
- Thread