I reviewed python-pysnmp4-apps version 0.3.2-1 as checked into utopic.
This should not be considered a full security audit, but rather a quick
gauge of code maintainability.
- This package provides snmp tools similar to the netsnmp tools.
- Build-Depends: debhelper, cdbs, python-all, python-setuptools
- Does not itself do cryptography
- Does not itself do networking
- Does not daemonize
- No pre/post inst/rm
- No initscripts
- No dbus
- No setuid
- No sudo fragments
- No udev rules
- No cronjobs
- No testsuite
- Clean build logs
- No spawned subprocesses
- No memory management (Python)
- No file manipulation
- Logging looks sane
- No environment variables
- No privileged operations
- No cryptography (user interface selects among authentication and privacy
options to be used in snmp)
- No privileged portions of code
- No temporary files
- No WebKit
- No Javascript
- No PolicyKit
python-pysnmp4-apps is high-quality, high-density code -- while fixes
might be difficult, I suspect there aren't many bugs to be found.
Security team ACK for promoting python-pysnmp4-apps to main.
** Changed in: libsmi (Ubuntu)
Assignee: Seth Arnold (seth-arnold) => (unassigned)
** Changed in: python-pysnmp4 (Ubuntu)
Assignee: Seth Arnold (seth-arnold) => (unassigned)
** Changed in: python-pysnmp4-apps (Ubuntu)
Assignee: Seth Arnold (seth-arnold) => (unassigned)
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to the bug report.
https://bugs.launchpad.net/bugs/1349868
Title:
[MIR] new build dependencies for ceilometer
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/libsmi/+bug/1349868/+subscriptions
--
Ubuntu-server-bugs mailing list
Ubuntu-server-bugs@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
