severity #562720 grave
thanks
On 15.02.2010 21:43, Ari Pollak wrote:
severity 562720 important
thanks
Please accept my deepest apologies for downgrading the severity of a bug
that obviously did not meet the criteria for a serious severity. Let me
quote from the BTS manual:
serious
is a severe violation of Debian policy (roughly, it violates a must or
required directive), or, in the package maintainer's or release
manager's opinion, makes the package unsuitable for release.
Before you quote the policy, you may also think about, that it mets the
criteria of grave, in fact it is a release critical one.
Please point to the section of Debian policy that this bug violates.
Assuming your XMPP settings require that users must authenticate with
you before being able to send you messages, only your authenticated
users would be able to freeze your client, assuming they knew you were
actually affected by this bug. Not everyone sees this behavior, and it's
only on one protocol, but if you'd really like to hold up this package
from Debian stable, feel free to take it up with the release team or
tech-ctte.
Ehm sorry, I think you didn't understand the security and stable side of
debian.
It is, in fact, also a security hole, if an authenticated user is able
to DoS the application. And I also do not want to hold back pidgin from
Squeeze, this bug just has to be fixed BEFORE Squeeze is released!
Additionally, please try to refrain from changing the severity of a bug
that the maintainer has already triaged. If you disagree with a bug's
attributes, there are processes in place to get around them without
abusing the BTS.
Ehm sorry...
1) it is a quite bas behaviour from a maintainer, to downgrade a
severity without any explainations
2) you didn't answered to the bug in any ways
3) the bug is also security related
And what about users, who set up their pidgin, that also
non-authenticated users are able to query them?
Sorry, but it looks like you are just downgrading it, to lower down the
RC bugs...
I am also CCing [email protected] now and raise the severity to
grave. Sorry but it is in my eyes DEFINITLY a blocker!
--
/*
Mit freundlichem Gruß / With kind regards,
Patrick Matthäi
GNU/Linux Debian Developer
E-Mail: [email protected]
[email protected]
Comment:
Always if we think we are right,
we were maybe wrong.
*/
--
To UNSUBSCRIBE, email to [email protected]
with a subject of "unsubscribe". Trouble? Contact [email protected]
Archive: http://lists.debian.org/[email protected]
