> It is shared by a bunch of people, including myself, though.

And some others think differently. Many people have different opinion.

> (C.f. your comment in README.Debian about how
> hard it is for you to comply with our beloved policy.)

It's not hard *for me* but for this kind of software and with the
purpose to manage configurations. If you have a solution, share it, I'm
sure a lot of people will be happy to read. And as I wrote, I've been
thinking about this issue for years, and I have plans for it.

> > And me, I'm really seriously thinking you don't know how to handle
> > security issues as well, given the fact that you've open public
> > bugs, when you should have get in touch with me privately. This
> > shows as well a big disrespect for what I do, if opening this bug
> > wasn't enough.
>
> Stop shooting the messenger, thanks.

There's nothing wrong on claiming that it's common sense to keep
security issues private, and give enough time for a fix.

Thomas



-- 
To UNSUBSCRIBE, email to [email protected]
with a subject of "unsubscribe". Trouble? Contact [email protected]

Reply via email to