Package: reportbug Version: 3.2 Severity: grave Tags: security Justification: user security hole
Hi Chris, as a follow-up to 295407 which you managed to fix in a whirl-wind (kudos!), I'd like to say that reportbug still includes sensitive information in a default report against reportbug (see the XXX below). There might be other things it includes from .reportbugrc which are not really meant to be stored in a publicly accessible BTS. Best regards Rolf Leggewie -- Package-specific info: ** /home/leggewie/.reportbugrc: reportbug_version "3.2" mode standard ui text realname "Rolf Leggewie" email "[EMAIL PROTECTED]" smtphost "postman.arcor.de" smtpuser "XXX" smtppasswd "XXX" -- System Information: Debian Release: 3.1 APT prefers testing APT policy: (500, 'testing') Architecture: i386 (i686) Kernel: Linux 2.4.27-1-586tsc Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) Versions of packages reportbug depends on: ii python2.3 2.3.4-19 An interactive high-level object-o -- no debconf information -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
