begin quotation from Antonio Terceiro (in <20140212131039.ga2...@debian.org>): > On Mon, Feb 10, 2014 at 03:49:31PM +0100, Arne Wichmann wrote: > > There has been no action on this bug for over a year now. Is there any plan > > to do something about this? > > not quite > > - there is no patch for this anywhere > - webrick is hardly something that anyone with a little bit of sanity > would use in production
I see. Maybe there should just be a clear warning against using this (for example by syslogging a warning) and then it could be marked as unimportant in the security tracker... cu AW -- [...] If you don't want to be restricted, don't agree to it. If you are coerced, comply as much as you must to protect yourself, just don't support it. Noone can free you but yourself. (crag, on Debian Planet) Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature