Hi,
On 10/13/19 11:16 PM, Robie Basak wrote:
> On Sun, Oct 13, 2019 at 11:02:45PM +0200, Birger Schacht wrote:
>> The problem is that the package will be removed from unstable in a
>> couple of days because of this bug report. 3 month is sometimes not that
>> much time to fix a bug or even comment
On Sun, Oct 13, 2019 at 11:02:45PM +0200, Birger Schacht wrote:
> The problem is that the package will be removed from unstable in a
> couple of days because of this bug report. 3 month is sometimes not that
> much time to fix a bug or even comment on a bug report. And the release
> of bullseye is
Hi,
On 10/13/19 10:02 PM, Robie Basak wrote:
> On Sun, Oct 13, 2019 at 05:23:40PM +0200, Birger Schacht wrote:
>> Robie, could you please point out the part of the Debian policy that
>> this package is violating?
>
> I cannot. I believe that this issue is such a clear violation of
> Debian's phil
On Sun, Oct 13, 2019 at 05:23:40PM +0200, Birger Schacht wrote:
> Robie, could you please point out the part of the Debian policy that
> this package is violating?
I cannot. I believe that this issue is such a clear violation of
Debian's philosophy that it has never been necessary to document it
f
Hi,
On 8/18/19 3:21 PM, Robie Basak wrote:
> Package: lynis
> Version: 2.6.2-1
> Severity: serious
https://www.debian.org/Bugs/Developer#severities says:
> serious is a severe violation of Debian policy (roughly, it violates a
> "must" or "required" directive)"
Robie, could you please point out
Package: lynis
Version: 2.6.2-1
Severity: serious
Justification: privacy leak
By default, this program appears to make a DNS query to
lynis-latest-version.cisofy.com. thus leaking information about the
system and the fact that the user is running an audit. This is
particularly egregious in the cas
6 matches
Mail list logo
