Re: qmail ERR- authorization

2001-10-25 Thread Stephen Cope
[EMAIL PROTECTED] wrote: : I have problem with authorization qmail pop3 clients. I don't know why : qmail-pop3 not authorize my users on all accounts. When we use client from Did you run the tests on checkpasswd as described in its README? http://cr.yp.to/checkpwd/install.html Simulate a

Re: Does Debian need to enforce a better Security policy for packages?

2001-10-25 Thread Javier Fernández-Sanguino Peña
On Wed, Oct 24, 2001 at 10:17:13PM +0200, Patrice Neff wrote: I believe this would not be reasonable for the Debian distribution, but you could create a customized and secure Debian version where you do a source code audit before accepting any package. Or maybe it could be done with another

Re: Does Debian need to enforce a better Security policy for packages?

2001-10-25 Thread Javier Fernández-Sanguino Peña
On Tue, Oct 23, 2001 at 10:28:02PM +0800, Michael Robinson wrote: FreeBSD does it for their ports tree. In fact, this has been a matter of controversy, as the FreeBSD team issues a huge number of security advisories for software that really has nothing to do with FreeBSD. This has caused

Re: Does Debian need to enforce a better Security policy for packages?

2001-10-25 Thread Michael Robinson
On Wed, Oct 24, 2001 at 10:19:59AM +0200, Christian Kurz wrote: On 23/10/01, Michael Robinson wrote: On Tue, Oct 23, 2001 at 09:55:04AM +0200, Christian Kurz wrote: Do you know how difficult and time-consuming it really is to do a manual source code audit? Also the available programs for

Unidentified subject!

2001-10-25 Thread Tommy Moore
unsubscribe -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]

Re: Debian GNU/Linux 2.2r3 vulnerabilities ?

2001-10-25 Thread Sebastiaan
Hi, On Thu, 25 Oct 2001, Petre Daniel wrote: -BEGIN PGP SIGNED MESSAGE- Hash: MD5 Heya, I run a potato at home and i will set the computer at work with potato as well.Since that will be a 24h internet connected pc,i am wondering what are the 2.2 release 3 vulnerabilities for

Re: Debian GNU/Linux 2.2r3 vulnerabilities ?

2001-10-25 Thread Sebastiaan
Hi, On Thu, 25 Oct 2001, Petre Daniel wrote: -BEGIN PGP SIGNED MESSAGE- Hash: MD5 Heya, I run a potato at home and i will set the computer at work with potato as well.Since that will be a 24h internet connected pc,i am wondering what are the 2.2 release 3 vulnerabilities for

Re: qmail ERR- authorization

2001-10-25 Thread Stephen Cope
[EMAIL PROTECTED] wrote: : I have problem with authorization qmail pop3 clients. I don't know why : qmail-pop3 not authorize my users on all accounts. When we use client from Did you run the tests on checkpasswd as described in its README? http://cr.yp.to/checkpwd/install.html Simulate a

Re: Does Debian need to enforce a better Security policy for packages?

2001-10-25 Thread Javier Fernández-Sanguino Peña
On Wed, Oct 24, 2001 at 10:17:13PM +0200, Patrice Neff wrote: I believe this would not be reasonable for the Debian distribution, but you could create a customized and secure Debian version where you do a source code audit before accepting any package. Or maybe it could be done with another

Re: Does Debian need to enforce a better Security policy for packages?

2001-10-25 Thread Michael Robinson
On Wed, Oct 24, 2001 at 10:19:59AM +0200, Christian Kurz wrote: On 23/10/01, Michael Robinson wrote: On Tue, Oct 23, 2001 at 09:55:04AM +0200, Christian Kurz wrote: Do you know how difficult and time-consuming it really is to do a manual source code audit? Also the available programs for

Unidentified subject!

2001-10-25 Thread Tommy Moore
unsubscribe