Philipp Kern writes:
> On Wed, Jan 04, 2012 at 06:37:36PM +0100, Moritz Mühlenhoff wrote:
>> For all practical purposes the KDC is local to your trust context.
> For all practical purposes you also have it open so that your
> roadwarriors can get tickets.
Indeed, it's possible that your KDC is
On Wed, Jan 04, 2012 at 06:37:36PM +0100, Moritz Mühlenhoff wrote:
> Philipp Kern schrieb:
> > Why is that, given that according to the tracker, lenny isn't even
> > affected? I'd appreciate a fix for a remote DoS of a network service
> > through security, to be honest.
> For all practical purpos
Philipp Kern schrieb:
> Why is that, given that according to the tracker, lenny isn't even
> affected? I'd appreciate a fix for a remote DoS of a network service
> through security, to be honest.
For all practical purposes the KDC is local to your trust context.
Cheers,
Moritz
--
To
* Philipp Kern:
> On Wed, Jan 04, 2012 at 07:48:27AM +0100, Florian Weimer wrote:
>> * Adam D. Barratt:
>> > Apologies if I'm missing something, but if the packages are already in
>> > the queue on security-master, wouldn't it be simpler (and possibly more
>> > logical) to release them from there?
On Wed, Jan 04, 2012 at 07:48:27AM +0100, Florian Weimer wrote:
> * Adam D. Barratt:
> > Apologies if I'm missing something, but if the packages are already in
> > the queue on security-master, wouldn't it be simpler (and possibly more
> > logical) to release them from there? Hmmm, looking at the
* Adam D. Barratt:
> Apologies if I'm missing something, but if the packages are already in
> the queue on security-master, wouldn't it be simpler (and possibly more
> logical) to release them from there? Hmmm, looking at the tracker,
> maybe because they're "just" DoS issues?
Yes, and we'd have
On Tue, 2012-01-03 at 21:20 +0100, Florian Weimer wrote:
> * Adam D. Barratt:
>
> > On Tue, 2012-01-03 at 20:09 +0100, Florian Weimer wrote:
> >> Sorry, there seems to be a slight misunderstanding. The changelog was
> >> indeed incorrect, but even that upload never made it to the archive.
> > [..
> "Florian" == Florian Weimer writes:
Florian> * Adam D. Barratt:
>> On Tue, 2012-01-03 at 20:09 +0100, Florian Weimer wrote:
>>> * Sam Hartman:
>>>
>>> > Florian Weimer noticed that the krb5 changelog in squeeze was
>>> missing a > CVE that was fixed in the patch app
* Adam D. Barratt:
> On Tue, 2012-01-03 at 20:09 +0100, Florian Weimer wrote:
>> * Sam Hartman:
>>
>> > Florian Weimer noticed that the krb5 changelog in squeeze was missing a
>> > CVE that was fixed in the patch applied.
>> > He proposes to make a new upload that corrects the changelog so that
>
On Tue, 2012-01-03 at 20:09 +0100, Florian Weimer wrote:
> * Sam Hartman:
>
> > Florian Weimer noticed that the krb5 changelog in squeeze was missing a
> > CVE that was fixed in the patch applied.
> > He proposes to make a new upload that corrects the changelog so that
> > people who track securit
> "Florian" == Florian Weimer writes:
Florian> * Sam Hartman:
>> Florian Weimer noticed that the krb5 changelog in squeeze was
>> missing a CVE that was fixed in the patch applied. He proposes
>> to make a new upload that corrects the changelog so that people
>> who track
* Sam Hartman:
>> "Florian" == Florian Weimer writes:
>
> Florian> * Sam Hartman:
> >> Florian Weimer noticed that the krb5 changelog in squeeze was
> >> missing a CVE that was fixed in the patch applied. He proposes
> >> to make a new upload that corrects the changelog so th
* Sam Hartman:
> Florian Weimer noticed that the krb5 changelog in squeeze was missing a
> CVE that was fixed in the patch applied.
> He proposes to make a new upload that corrects the changelog so that
> people who track security issues from the changelog will find the fix:
Sorry, there seems to
13 matches
Mail list logo
