Re: sudo security Was: Reporting missing package during install

To: debian-user@lists.debian.org
Subject: Re: sudo security Was: Reporting missing package during install
From: Brian <ad44@cityscape.co.uk>
Date: Tue, 10 Dec 2013 23:39:05 +0000
Message-id: <[🔎] 20131210233905.GI5433@copernicus.demon.co.uk>
In-reply-to: <[🔎] B0DD9090-5EF0-4B97-92B0-568552A6B57F@eng.it>
References: <[🔎] 20131209094043.GQ3239@sid.nuvreauspam> <[🔎] 21159.15609.383614.22901@mail.eng.it> <[🔎] 87iouwk4pd.fsf@thumper.dhh.gt.org> <[🔎] 6261204.3WviBqbffP@twilight> <[🔎] 21159.19977.484330.793514@mail.eng.it> <[🔎] 10122013193800.fa2b41bdc685@desktop.copernicus.demon.co.uk> <[🔎] B0DD9090-5EF0-4B97-92B0-568552A6B57F@eng.it>

On Tue 10 Dec 2013 at 23:50:00 +0100, Gian Uberto Lauri wrote:

> 
> 
> > On 10/dic/2013, at 20:46, Brian <ad44@cityscape.co.uk> wrote:
> 
> > Quite possibly this is a technique which is tried but, in a default
> > install, Debian does not provide any faulty services.
> > 
> 
> You are never sure about not-yet publicized exploits.

We do not worry about serious, unpublicised exploits. Their existance is
of little consquence for your argument as your "attackers" would not
know about them.

> And some time ago there was a problem with sone ssh code that 
> should not have been cleaned...

If what you are referring to is what I think it is then no machines were
ever harmed. Not that the problem wasn't serious but the action taken by
Debian was swift and exemplary.

Reply to:

Follow-Ups:
- Re: sudo security Was: Reporting missing package during install
  - From: "Gian Uberto Lauri" <saint@eng.it>

References:
- Re: Reporting missing package during install
  - From: Andrei POPESCU <andreimpopescu@gmail.com>
- Re: sudo security Was: Reporting missing package during install
  - From: "Gian Uberto Lauri" <saint@eng.it>
- Re: sudo security Was: Reporting missing package during install
  - From: John Hasler <jhasler@newsguy.com>
- Re: sudo security Was: Reporting missing package during install
  - From: yaro@marupa.net
- Re: sudo security Was: Reporting missing package during install
  - From: "Gian Uberto Lauri" <saint@eng.it>
- Re: sudo security Was: Reporting missing package during install
  - From: Brian <ad44@cityscape.co.uk>
- Re: sudo security Was: Reporting missing package during install
  - From: Gian Uberto Lauri <gianuberto.lauri@gmail.com>

Prev by Date: Re: Debianly Correct place to add ~/bin to $PATH ? [solved]
Next by Date: backup files, was: Re: Debianly Correct place to add ~/bin to $PATH ? a new problem
Previous by thread: Re: sudo security Was: Reporting missing package during install
Next by thread: Re: sudo security Was: Reporting missing package during install
Index(es):
- Date
- Thread