Hi Janusz, Olivier,
thanks for taking interest in the Debian packaging of sympa.
Olivier Salaün wrote:
> As far as we're concerned all reported bugs, regarding insecure usage of
> tmp, have been fixed in Sympa. It's now up to the Debian maintainer to
> apply the patches to the Debian package.
Yeah, that seems to be fixed and easy enough to put in the current
package. I'd personally prefer to have the example/POD code also fixed
to not provide insecure code for copy & paste, but that might not be
fatal, so if it were just that, it could be fixed easily enough by a
maintainer or non-maintainer upoload.
The upgrade problem reported in #498144 seems to be completely untackled
up to now, though. Again, if you managed to find out what exactly it is
(it could either be just in the packaging or also involving sympa
itself), I'd be more than happy to make a Debian package out of a fix
should the maintainer be temporarily unavailable. At one month of
apparently nobody having an idea what is going on, it is not too clear
to me that that will happen in time for lenny.
Kind regards
T.
--
Thomas Viehmann, http://thomas.viehmann.net/
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
