Re: [SECURITY] [DSA 3672-1] irssi security update

security/ in the announcement, not the security tracker though. This is also not addressed in the FAQ. Hence maybe it'd make sense to add a note to the announcement? -- .''`. martin f. krafft @martinkrafft : :' : proud Debian developer `. `'` http://people.debian

Re: [SECURITY] [DSA 3672-1] irssi security update

onaccorso > September 21, 2016https://www.debian.org/security/faq > - The DSA is not on the website yet. Maybe it'd be better to wait for web sync before sending, or force web sync? -- .''`. m

Re: securing server

also sprach Simon Brandmair <[EMAIL PROTECTED]> [2008.05.07.2020 +0100]: > > no security benefit > > Just wondering: Why not? http://www.bpfh.net/simes/computing/chroot-break.html -- .''`. martin f. krafft <[EMAIL PROTECTED]> : :' : proud Debian dev

Re: securing server

ay consider chroot. no security benefit > It's a good idea to read through securing debian howto yes! -- .''`. martin f. krafft <[EMAIL PROTECTED]> : :' : proud Debian developer, author, administrator, and user `. `'` http://people.debian.org/~madduck - h

Re: debian.org DNSs allow unrestricted zone transfers

t be unsafer because of it. > I think a simple scan could give the same information, and anyway > the name of debian machines is listed also on the web. i see no attack vector. -- Please do not send copies of list mail to me; I read the list! .''`. martin f. krafft <[E

Re: debian.org DNSs allow unrestricted zone transfers

t mail to me; I read the list! .''`. martin f. krafft <[EMAIL PROTECTED]> : :' : proud Debian developer, author, administrator, and user `. `'` http://people.debian.org/~madduck - http://debiansystem.info `- Debian - when you have better things to do than fixing systems #inclu

security mirror out of date: 128.101.240.212

to debian-security@lists.debian.org to alert people. < weinholt> i don't really have time for that, unfortunately, i have work to do -- Please do not send copies of list mail to me; I read the list! .''`. martin f. krafft <[EMAIL PROTECTED]> : :' : proud Debian develo

Re: denying mail relay + iptables rule

n. -- Please do not send copies of list mail to me; I read the list! .''`. martin f. krafft <[EMAIL PROTECTED]> : :' : proud Debian developer, author, administrator, and user `. `'` http://people.debian.org/~madduck - http://debiansystem.info `- Debian - wh

Re: denying mail relay + iptables rule

Once you created the rules, please make sure to submit a bug. It can't be that hard, but do try to go with fail2ban from etch, since sarge's configuration is deprecated. -- Please do not send copies of list mail to me; I read the list! .''`. martin f. krafft <[EMAIL PROTECTE

Re: Allow password auth for one user with sftp?

nd copies of list mail to me; I read the list! .''`. martin f. krafft <[EMAIL PROTECTED]> : :' : proud Debian developer, author, administrator, and user `. `'` http://people.debian.org/~madduck - http://debiansystem.info `- Debian - when you have better things t

Re: ignored redirects

heck ICMP redirects on their networks. Stephen, could you forward me the relevant log messages from your work gateway so that I can make sure to properly draft the logcheck filters? -- Please do not send copies of list mail to me; I read the list! .''`. martin f. krafft &l

Re: ignored redirects

would it look different if someone tried a valid redirect that would be ignored due to my configuration? Sorry, I currently only have one functional machine in my test network. :/ -- Please do not send copies of list mail to me; I read the list! .''`. martin f. krafft <[E

ignored redirects

hostmaster in whois. Is this legitimate? Is someone trying to redirect me in a cheap hack attempt? Are people seeing this often? Since the Linux kernel handles it quite alright, should I have logcheck filter it? -- Please do not send copies of list mail to me; I read the list! .'

Re: kernel.panic (was: Re: DD machine mysterious reboot)

his is zero, the kernel will loop on a panic; if non-zero it indicates that the kernel should autoreboot after this number of seconds. When you use the software watchdog device driver, the recommended setting is 60. -- Please do not send copies of list mail to me; I read the list! .

Re: DD machine mysterious reboot

rdware, you may just have found out how incredibly crap it is. -- Please do not send copies of list mail to me; I read the list! .''`. martin f. krafft <[EMAIL PROTECTED]> : :' : proud Debian developer, author, administrator, and user `. `'` http://people.debia

Re: help: duplicate MAC address

gly. -- Please do not send copies of list mail to me; I read the list! .''`. martin f. krafft <[EMAIL PROTECTED]> : :' : proud Debian developer, author, administrator, and user `. `'` http://people.debian.org/~madduck - http://debiansystem.info `- Debian

Re: help: duplicate MAC address

E address de:ad:be:ef:ba:be -- Please do not send copies of list mail to me; I read the list! .''`. martin f. krafft <[EMAIL PROTECTED]> : :' : proud Debian developer, author, administrator, and user `. `'` http://people.debian.org/~madduck - http://debiansystem.info

Re: "su -" and "su" - what is the real difference?

also sprach LeVA <[EMAIL PROTECTED]> [2006.07.28.1533 +0100]: > So running su with the '-' option is safer then running without it? In that it bears less surprises, yes. -- Please do not send copies of list mail to me; I read the list! .''`. marti

Re: BADSIG verifying s.d.o Release file

se do not send copies of list mail to me; I read the list! .''`. martin f. krafft <[EMAIL PROTECTED]> : :' :proud Debian developer and author: http://debiansystem.info `. `'` `- Debian - when you have better things to do th

Re: BADSIG verifying s.d.o Release file

ive, and this is just a problem that hadn't been > spotted since we've only just started releasing advisories with it.) Ok. Thanks for your time and the explanation, Steve. -- Please do not send copies of list mail to me; I read the list! .''`. martin f. krafft <

Re: BADSIG verifying s.d.o Release file

ian-announce? -- Please do not send copies of list mail to me; I read the list! .''`. martin f. krafft <[EMAIL PROTECTED]> : :' :proud Debian developer and author: http://debiansystem.info `. `'` `- Debian - when you have better things to do than fix

BADSIG verifying s.d.o Release file

igning Key (2006) <[EMAIL PROTECTED]> Cheers, -- .''`. martin f. krafft <[EMAIL PROTECTED]> : :' :proud Debian developer and author: http://debiansystem.info `. `'` `- Debian - when you have better things to do than fixing a system "if a man t

Re: Command history log for audit trail

s there some > other way to create a log for all commands run on a system? apt-cache show acct? Though it really lacks a lot of information. -- Please do not send copies of list mail to me; I read the list! .''`. martin f. krafft <[EMAIL PROTECTED]> : :'

Re: How to prevent daemons from ever being started?

aded, update-rc.d will not install new links, because some are already in place. -- Please do not send copies of list mail to me; I read the list! .''`. martin f. krafft <[EMAIL PROTECTED]> : :' :proud Debian developer and author: http://debiansystem.info `. `'`

Re: masking out invalid root logins with logcheck?

ly shot. :) But yes, you are right. To be on the safe side, I added a comment to sshd_config. -- Please do not send copies of list mail to me; I read the list! .''`. martin f. krafft <[EMAIL PROTECTED]> : :' :proud Debian developer and author: http://debians

Re: masking out invalid root logins with logcheck?

le ones with a number of different clients. I do not want to go down this path; instead, I prefer to enforce a strong password policy. -- Please do not send copies of list mail to me; I read the list! .''`. martin f. krafft <[EMAIL PROTECTED]> : :' :prou

Re: masking out invalid root logins with logcheck?

hlight, then, is a *successful* login. Sure, those get logged anyway, as cracking attempts, because our policy is never to log in as root. However, we leave without-password in there and keep a separate root DSA key, just in case. -- Please do not send copies of list mail to me; I read the list!

Re: masking out invalid root logins with logcheck?

it. Thanks for your feedback. -- Please do not send copies of list mail to me; I read the list! .''`. martin f. krafft <[EMAIL PROTECTED]> : :' :proud Debian developer and author: http://debiansystem.info `. `'` `- Debian - when you have better things to do

Re: masking out invalid root logins with logcheck?

know when someone tries a password login for the root account, since password logins are not possible anyway. -- Please do not send copies of list mail to me; I read the list! .''`. martin f. krafft <[EMAIL PROTECTED]> : :' :proud Debian developer and author: http://deb

masking out invalid root logins with logcheck?

orced, which is what fail2ban takes care of anyway... Cheers, -- Please do not send copies of list mail to me; I read the list! .''`. martin f. krafft <[EMAIL PROTECTED]> : :' :proud Debian developer and author: http://debiansystem.info `. `'` `- Debian -

fail2ban [was: howto block ssh brute-force]

Does it expire entries? -- Please do not send copies of list mail to me; I read the list! .''`. martin f. krafft <[EMAIL PROTECTED]> : :' :proud Debian developer and author: http://debiansystem.info `. `'` `- Debian - when you have better things to do than fi

Re: umn.edu security.d.o host unreachable

next > > door") are reachable. > > The host is not reachable. Good to see you're on top of the issue. -- Please do not send copies of list mail to me; I read the list! .''`. martin f. krafft <[EMAIL PROTECTED]> : :' :proud Debian developer

umn.edu security.d.o host unreachable

m. Thanks, -- Please do not send copies of list mail to me; I read the list! .''`. martin f. krafft <[EMAIL PROTECTED]> : :' :proud Debian developer and author: http://debiansystem.info `. `'` `- Debian - when you have better things to do than fixing a system

Re: howto block ssh brute-force

ious subchains which handle special cases. -- Please do not send copies of list mail to me; I read the list! .''`. martin f. krafft <[EMAIL PROTECTED]> : :' :proud Debian developer and author: http://debiansystem.info `. `'` `- Debian - when you have better thi

Re: howto block ssh brute-force

iptables rulesets to arbitrary complexity. In fact, I often wanted Firewall-1 to have a similar feature. Firewall-1 scales pretty damn well (4 Gbps throughput, stateful), but in my experience, iptables can handle way more. -- Please do not send copies of list mail to me; I read the list! .''`

Re: howto block ssh brute-force

ere's a problem with the iptables module. -- Please do not send copies of list mail to me; I read the list! .''`. martin f. krafft <[EMAIL PROTECTED]> : :' :proud Debian developer and author: http://debiansystem.info `. `'` `- Debian - when you

Re: howto block ssh brute-force

all/2006/03/msg00017.html -- Please do not send copies of list mail to me; I read the list! .''`. martin f. krafft <[EMAIL PROTECTED]> : :' :proud Debian developer and author: http://debiansystem.info `. `'` `- Debian - when you have better things to do than f

Re: tartini (one of the security mirrors) unreliable

also sprach Martin Schulze <[EMAIL PROTECTED]> [2006.03.10.1541 +0100]: > I've finally removed tartini from the security round robin. Thanks! I assume wiggy is in charge to solve the problem with tartini? -- Please do not send copies of list mail to me; I read the list! .&#x

Re: first A record of security.debian.org extremely slow

es daily? Once. -- Please do not send copies of list mail to me; I read the list! .''`. martin f. krafft <[EMAIL PROTECTED]> : :' :proud Debian developer and author: http://debiansystem.info `. `'` `- Debian - when you have better things to do than fixing a sy

Re: first A record of security.debian.org extremely slow

o me; I read the list! .''`. martin f. krafft <[EMAIL PROTECTED]> : :' :proud Debian developer and author: http://debiansystem.info `. `'` `- Debian - when you have better things to do than fixing a system Invalid/expired PGP (sub)keys? Use subkeys.pgp.ne

Re: first A record of security.debian.org extremely slow

list mail to me; I read the list! .''`. martin f. krafft <[EMAIL PROTECTED]> : :' :proud Debian developer and author: http://debiansystem.info `. `'` `- Debian - when you have better things to do than fixing a system Invalid/expired PGP (sub)keys? Use subkey

Re: first A record of security.debian.org extremely slow

ys. > > One day more or less doesn't really matter. So far, Debian security > updates predated widespread (semi-)automated exploits by weeks. Why then do you think security.d.o is not mirrored by Debian? -- Please do not send copies of list mail to me; I read the list! .

Re: db.debian.org certificate

also sprach Noèl Köthe <[EMAIL PROTECTED]> [2006.02.28.2224 +0100]: > the https db.debian.org certificate is expired on 2006-01-30. #354747 -- Please do not send copies of list mail to me; I read the list! .''`. martin f. krafft <[EMAIL PROTECTED]> : :' :

Re: first A record of security.debian.org extremely slow

nd security is a time-critical domain where sometimes it's very important to have updates without any delays. -- Please do not send copies of list mail to me; I read the list! .''`. martin f. krafft <[EMAIL PROTECTED]> : :' :proud Debian developer and author: http

Re: first A record of security.debian.org extremely slow

r > out that IP when there is more than one A record available > instead? (I can't think of a simple way of doing that off the top > of my head, though) It also bears the risk of hardcoding and forgetting, or missing an update. -- Please do not send copies of list mail to me; I read

Re: first A record of security.debian.org extremely slow

t on the mailing list, please Cc). Please set your Mail-Followup-Header correctly. Cheers, -- Please do not send copies of list mail to me; I read the list! .''`. martin f. krafft <[EMAIL PROTECTED]> : :' :proud Debian developer and author: http://debiansystem.info

tartini (one of the security mirrors) unreliable

and I see no other problems. Maybe the administrators would be so kind as to investigate the issue and send an update when it's resolved? -- Please do not send copies of list mail to me; I read the list! .''`. martin f. krafft <[EMAIL PROTECTED]> : :' :pro

Re: getting to www servers from inside where they have an Internal IP

s, this is what I meant. This, or a second nameserver. -- Please do not send copies of list mail to me; I read the list! .''`. martin f. krafft <[EMAIL PROTECTED]> : :' :proud Debian developer and author: http://debiansystem.info `. `'` `- Debian - when you ha

Re: getting to www servers from inside where they have an Internal IP

er on port ? None that I know. I suggest using a second nameserver to resolve the A record to the internal IP. -- Please do not send copies of list mail to me; I read the list! .''`. martin f. krafft <[EMAIL PROTECTED]> : :' :proud Debian developer

Re: Security implications of allowing init to re-exec from another path

anyway. -- Please do not send copies of list mail to me; I read the list! .''`. martin f. krafft <[EMAIL PROTECTED]> : :' :proud Debian developer and author: http://debiansystem.info `. `'` `- Debian - when you have better things to do than fixing a system

Re: Security implications of allowing init to re-exec from another path

th a trojan, in addition to kernel modules and other Linux maladities. That is, if the attacker gets root... -- Please do not send copies of list mail to me; I read the list! .''`. martin f. krafft <[EMAIL PROTECTED]> : :' :proud Debian developer and author: http://d

anonftpsync (was: security archive defective!?)

also sprach Andreas Barth <[EMAIL PROTECTED]> [2005.09.01.0858 +0200]: > I strongly recommend to use anonftpsync for mirroring any of the debian > archives What's the advantage over debmirror? -- Please do not send copies of list mail to me; I read the list! .'&#

Re: Bad press again...

says "delegations", but that doesn't mean that anything therein is a delegation. Looks more like tbm actually wanted to write a different message and forgot to change the subject afterwards. :) -- Please do not send copies of list mail to me; I read the list! .''`. ma

Re: Bad press again...

-- Please do not send copies of list mail to me; I read the list! .''`. martin f. krafft <[EMAIL PROTECTED]> : :' :proud Debian developer and author: http://debiansystem.info `. `'` `- Debian - when you have better things to do than fixing a system Inva

Re: Bad press again...

om what I know, Joey prefers editing text files and expects others to do the same. -- Please do not send copies of list mail to me; I read the list! .''`. martin f. krafft <[EMAIL PROTECTED]> : :' :proud Debian developer and author: http://debiansystem.info `.

Re: Bad press again...

send copies of list mail to me; I read the list! .''`. martin f. krafft <[EMAIL PROTECTED]> : :' :proud Debian developer and author: http://debiansystem.info `. `'` `- Debian - when you have better things to do than fixing a system Invalid/expired PGP (su

Re: Bad press again...

urity team is a true asset and a keystone in the future of Debian security. -- Please do not send copies of list mail to me; I read the list! .''`. martin f. krafft <[EMAIL PROTECTED]> : :' :proud Debian developer and author: http://debiansystem.info `. `'` `-

Re: Bad press again...

y in Debian. And it does not address the problem that our security infrastructure went down for a while and we found out about it from a German news magazine. -- Please do not send copies of list mail to me; I read the list! .''`. martin f. krafft <[EMAIL PROTECTED]>

Re: Bad press again...

ut their understanding of security... but then isn't it all the more important for Debian to get it right and help protect those that don't know better? -- Please do not send copies of list mail to me; I read the list! .''`. martin f. krafft <[EMAIL PROTECTED]> : :

Re: Bad press again...

this stuff with me, it seems. He's never replied to mails or pings from me about this stuff. -- Please do not send copies of list mail to me; I read the list! .''`. martin f. krafft <[EMAIL PROTECTED]> : :' :proud Debian developer and author: http://debiansystem

Re: Bad press again...

to Solaris because of the security fiascos. -- Please do not send copies of list mail to me; I read the list! .''`. martin f. krafft <[EMAIL PROTECTED]> : :' :proud Debian developer and author: http://debiansystem.info `. `'` `- Debian - when you have be

Re: Bad press again...

s not meet the general expectations of our users, it's essentially more of a clog than a bottleneck. -- Please do not send copies of list mail to me; I read the list! .''`. martin f. krafft <[EMAIL PROTECTED]> : :' :proud Debian developer and author: http://deb

Re: Bad press again...

il to me; I read the list! .''`. martin f. krafft <[EMAIL PROTECTED]> : :' :proud Debian developer and author: http://debiansystem.info `. `'` `- Debian - when you have better things to do than fixing a system Invalid/expired PGP (sub)keys? Use subkeys.pgp.net

Re: Bad press again...

belief that they are safe because s.d.o doesn't have any new stuff. -- Please do not send copies of list mail to me; I read the list! .''`. martin f. krafft <[EMAIL PROTECTED]> : :' :proud Debian developer and author: http://debiansystem.info `. `'`

Re: Bad press again...

also sprach martin f krafft <[EMAIL PROTECTED]> [2005.08.26.1907 +0200]: > security.debian.org is not a server, it's a DNS A record. It's > a whole lot easier to point that elsewhere in case of problems than > expecting users to make sense of the errors they get whe

Re: Bad press again...

is not a server, it's a DNS A record. It's a whole lot easier to point that elsewhere in case of problems than expecting users to make sense of the errors they get when some servers can't be reached. -- Please do not send copies of list mail to me; I read the list! .''`

Re: Bad press again...

o me; I read the list! .''`. martin f. krafft <[EMAIL PROTECTED]> : :' :proud Debian developer and author: http://debiansystem.info `. `'` `- Debian - when you have better things to do than fixing a system Invalid/expired PGP (sub)keys? Use subkeys.pgp.net as keys

Re: Bad press again...

server, globally spaced. Heck, we *should* have a responsive and communicative security team. -- Please do not send copies of list mail to me; I read the list! .''`. martin f. krafft <[EMAIL PROTECTED]> : :' :proud Debian developer and author: http://debiansy

Re: Please announce current lack of security support

copies of list mail to me; I read the list! .''`. martin f. krafft <[EMAIL PROTECTED]> : :' :proud Debian developer and author: http://debiansystem.info `. `'` `- Debian - when you have better things to do than fixing a system Invalid/expired PGP (sub)key

Please announce current lack of security support

riate announcement ASAP to alert our users of the current lack of security support? -- .''`. martin f. krafft <[EMAIL PROTECTED]> : :' :proud Debian developer and author: http://debiansystem.info `. `'` `- Debian - when you have better things to do than fixing a syste

Re: Debian Security Support in Place

require a lot of time for testing afterwards. -- Please do not send copies of list mail to me; I read the list! .''`. martin f. krafft <[EMAIL PROTECTED]> : :' :proud Debian developer, admin, user, and author `. `'` `- Debian - when you have better thin

Re: Debian Security Support in Place

o not send copies of list mail to me; I read the list! .''`. martin f. krafft <[EMAIL PROTECTED]> : :' :proud Debian developer and author: http://debiansystem.info `. `'` `- Debian - when you have better things to do than fixing a system Invalid/expired PGP subkeys? Use sub

Re: Sudo question

s of list mail to me; I read the list! .''`. martin f. krafft <[EMAIL PROTECTED]> : :' :proud Debian developer and author: http://debiansystem.info `. `'` `- Debian - when you have better things to do than fixing a system Invalid/expired PGP subkeys? Use subke

Re: Where is the security announcement?

also sprach Robin Schroeder <[EMAIL PROTECTED]> [2005.07.07.1133 +0200]: > I got at least security announcements from > debian-security-announce@lists.debian.org Not between 3 June and 30 June. -- Please do not send copies of list mail to me; I read the list! .''`

Where is the security announcement?

be tainted more. We've already given the professional world enough of a reason to abandon ship and laugh at us. PS: the random quote generator seems to be able to establish semantic context at last! -- .''`. martin f. krafft <[EMAIL PROTECTED]> : :' :not-so-pro

Re: Bad press related to (missing) Debian security - action

no problem. But giving root access to others is the problem. -- Please do not send copies of list mail to me; I read the list! .''`. martin f. krafft <[EMAIL PROTECTED]> : :' :proud Debian developer and author: http://debiansystem.info `. `'` `- Debian -

Re: Bad press related to (missing) Debian security - action

o me; I read the list! .''`. martin f. krafft <[EMAIL PROTECTED]> : :' :proud Debian developer and author: http://debiansystem.info `. `'` `- Debian - when you have better things to do than fixing a system Invalid/expired PGP subkeys? Use subkeys.pgp.net as keyserver!

Re: Bad press related to (missing) Debian security

also sprach Marek Olejniczak <[EMAIL PROTECTED]> [2005.06.28.1215 +0200]: > Unfortunately you are right :-( At this moment there is no secure > Debian distribution. unstable. :) -- Please do not send copies of list mail to me; I read the list! .''`. martin f. kr

Re: custom sec updates, was Bad press related to (missing) Debian security

, and how to modify packages and properly integrate them with APT. 0. http://debiansystem.info Cheers, -- Please do not send copies of list mail to me; I read the list! .''`. martin f. krafft <[EMAIL PROTECTED]> : :' :proud Debian developer and author: http://deb

Re: Bad press related to (missing) Debian security

wn security updates until we caught up. -- Please do not send copies of list mail to me; I read the list! .''`. martin f. krafft <[EMAIL PROTECTED]> : :' :proud Debian developer and author: http://debiansystem.info `. `'` `- Debian - when you have better

taking a break (was: Bad press related to (missing) Debian security)

also sprach martin f krafft <[EMAIL PROTECTED]> [2005.06.28.1108 +0200]: > No, he installed Sarge because it was cool back at the time. Yeah so this whole thing has been growing on me a little too much. Sorry for being snappy in the last two posts (to Marek and Alvin). I am going to

Re: safety of encrypted filesystems

also sprach martin f krafft <[EMAIL PROTECTED]> [2005.06.17.0944 +0200]: > also sprach Michael Buchholz <[EMAIL PROTECTED]> [2005.06.17.0857 +0200]: > > And also, when you write any block, you have to reencrypt all the > > remaining blocks. > > Yes, don't

Re: Bad press related to (missing) Debian security

childhood problems to resolve themselves (read: sarge r1). That said... of course woody is currently also potentially vulnerable. -- Please do not send copies of list mail to me; I read the list! .''`. martin f. krafft <[EMAIL PROTECTED]> : :' :proud Debian develope

Re: Bad press related to (missing) Debian security

l these servers with something else because that'll be cheaper than the risk of having them compromised. -- Please do not send copies of list mail to me; I read the list! .''`. martin f. krafft <[EMAIL PROTECTED]> : :' :proud Debian developer and author: http://

Re: Bad press related to (missing) Debian security - action

ms and automate security patch releases > - it's a task for debian-man .. more than what super-man or > bat-man can do people "volunteering" are useless. people actually doing something are not. -- Please do not send copies of list mail to me; I read the list

Re: Bad press related to (missing) Debian security

se it. We are working to fix it. The last thing we need now are people complaining and moaning. -- Please do not send copies of list mail to me; I read the list! .''`. martin f. krafft <[EMAIL PROTECTED]> : :' :proud Debian developer and author: http://debiansys

Re: Bad press related to (missing) Debian security

ld be needed for some of the innovative approaches I have in mind. Thus, I'd love to hear opinions. -- Please do not send copies of list mail to me; I read the list! .''`. martin f. krafft <[EMAIL PROTECTED]> : :' :proud Debian developer and author: http://debiansy

Re: Bad press related to (missing) Debian security

s recognition that it's a problem that needs a solution. So if we all recognise it as a problem, it will solve itself? Wouldn't a ticket system (possibly request-tracker3) be helpful here? -- Please do not send copies of list mail to me; I read the list! .'

Re: Bad press related to (missing) Debian security

also sprach martin f krafft <[EMAIL PROTECTED]> [2005.06.27.2100 +0200]: > There is a problem with that, namely responsible disclosure. The > team cannot be too big or else the other organisations in the > consortium will object for danger of leakage. > > I think what we

Re: Bad press related to (missing) Debian security

problem. That makes it extremely > difficult for others to see what needs to be done. Do you guys see this as a de facto state with no solution, or is a good solution simply waiting to be found? -- Please do not send copies of list mail to me; I read the list! .''`. martin

Re: Bad press related to (missing) Debian security

a perfectionist. Yeah, uh, so... -- Please do not send copies of list mail to me; I read the list! .''`. martin f. krafft <[EMAIL PROTECTED]> : :' :proud Debian developer and author: http://debiansystem.info `. `'` `- Debian - when you have better things t

Re: Bad press related to (missing) Debian security

ntrol already and an announcement is under preparation. Therefore I apologise for coming across a little hectical in my post. -- Please do not send copies of list mail to me; I read the list! .''`. martin f. krafft <[EMAIL PROTECTED]> : :' :proud Debian dev

Re: Bad press related to (missing) Debian security

which would make it nonsensical and unnecessary to change the version number in the first place. Then again, I am not sure about this... just speculating. -- Please do not send copies of list mail to me; I read the list! .''`. martin f. krafft <[EMAIL PROTECTED]> : :&

Re: Bad press related to (missing) Debian security

This is one of the essential and most important features of Debian stable. -- Please do not send copies of list mail to me; I read the list! .''`. martin f. krafft <[EMAIL PROTECTED]> : :' :proud Debian developer and author: http://debianbook.info `. `'` `-

Re: Bad press related to (missing) Debian security

se do not send copies of list mail to me; I read the list! .''`. martin f. krafft <[EMAIL PROTECTED]> : :' :proud Debian developer and author: http://debianbook.info `. `'` `- Debian - when you have better things to do than fixing a system Invalid/expired

Re: Bad press related to (missing) Debian security

list mail to me; I read the list! .''`. martin f. krafft <[EMAIL PROTECTED]> : :' :proud Debian developer and author: http://debianbook.info `. `'` `- Debian - when you have better things to do than fixing a system Invalid/expired PGP subkeys? Use subkeys.pgp.

Re: Bad press related to (missing) Debian security

de significant contributions to join their ranks. I don't know more details and would love to find out. -- Please do not send copies of list mail to me; I read the list! .''`. martin f. krafft <[EMAIL PROTECTED]> : :' :proud Debian developer and author: http://debian

Re: Bad press related to (missing) Debian security

do everything we can to make it as easy as possible for Joey to upload. Once we've come back to normal, we should then see what to do about Thanks for your patience. -- Please do not send copies of list mail to me; I read the list! .''`. martin f. krafft <[EMAIL PROTE

Re: getting the MAC address from an ip

l to me; I read the list! .''`. martin f. krafft <[EMAIL PROTECTED]> : :' :proud Debian developer, admin, user, and author `. `'` `- Debian - when you have better things to do than fixing a system Invalid/expired PGP subkeys? Use subkeys.pgp.net as keyserver!

Re: safety of encrypted filesystems

unting again. -- Please do not send copies of list mail to me; I read the list! .''`. martin f. krafft <[EMAIL PROTECTED]> : :' :proud Debian developer, admin, user, and author `. `'` `- Debian - when you have better things to do than fixing a system Invalid/ex

  1   2   3   4   5   >