[Mailman-Users] any info on this reported exploit?
msapiro at value.net
Fri Jan 27 04:56:37 CET 2006
Jim Popovitch wrote:
>OK, but what about the next one? What do Mailman system admins do, wait?
Yes, I think so. The alternative is everyone goes off half-cocked and
you have a situation such as occurred about a year ago with the
CAN-2005-0202 issue <http://www.list.org/security.html>. In this case,
someone developed a patch which SuSE pushed out through their
automatic update process, but the patch was dependent on a part of the
Python library that SuSE didn't install by default and the dependency
wasn't noted. This caused a lot of grief at the time. See
Mark Sapiro <msapiro at value.net> The highway is for gamblers,
San Francisco Bay Area, California better use your sense - B. Dylan
More information about the Mailman-Users