On Sun, Jan 29, 2006 at 01:13:47PM +0100, Moritz Muehlenhoff wrote: > Freek Dijkstra wrote: > > The correct action in this case, IMHO, should have been to apply the > > patch (of course!), but also add a postinst script, which gives a BIG > > warning telling people that they need to change /etc/sudoers > > The postinst script by kernel-image-* packages are examples of how it > > should have done. I sincerely hope that we will shortly see a > > sudo_1.6.8p7-1.4 which has such a warning. > > This big warning is the DSA advisory. If you install security updates > you have to read it, there's no way around it.
I'm sure there are plenty of people who have security.debian.org in their sources.list without being subscribed to d-s-a. Hell, I'm a security conscious person and I'm subscribed to d-s-a primarily so I know when I should be watching various automated process more closely. - Matt -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]