Re: [SECURITY] [DSA 1145-1] New freeradius packages fix severalvulnerabilities

2 msg	sendmail-bin: uninstallable due to unavailable ...
1 msg	Sono in ferie!
1 msg	A femdom bondage movie from Sally
4 msg	Fix for one of the two vulnerabilities
16 msg	Why is portmap installed by default?
1 msg	While
1 msg	didnt win
1 msg	tremendous breadth
1 msg	Bug BaitAlien
1 msg	what is this 'postponed publickey for user' in ...
1 msg	KEEP YOUR WINNING INFORMATION CONFIDENTIAL TILL...
1 msg	chrootkit sniffers
3 msg	Re: [SECURITY] [DSA 1150-1] New shadow packages...
9 msg	chkrootkit sniffers
3 msg	Re: [SECURITY] [DSA 1134-1] New Mozilla Thunder...
1 msg	Updated: Russian and Ukrainian translation/loca...
1 msg	Re: [SECURITY] [DSA 1148-1] New gallery package...
1 msg	RE: [SECURITY] [DSA 1147-1] New drupal packages...

Re: [SECURITY] [DSA 1145-1] New freeradius pack...
\ Gerfried Fuchs (8 Aug 2006)
. \ Stephen Gran (8 Aug 2006)

1 msg	Lukáš Rampa is out of the office.

Subject:	Re: [SECURITY] [DSA 1145-1] New freeradius packages fix severalvulnerabilities
Group:	Debian-security
From:	Gerfried Fuchs
Date:	8 Aug 2006

Am Dienstag, den 08.08.2006, 01:29 +0200 schrieb Moritz Muehlenhoff:
> Package : freeradius

this package has a nasty side effect and works against the debian
policy: it changes in its postinst permissions for files in /etc
unconditionally and on every install.

please be aware of this, I'm going to check if it still available in
testing/unstable and file the appropriate release critical bugreport
against it.

mfg,
--
Gerfried Fuchs // alfie // GPG 0xEC152942 //
t_sysadmin // sysadmin // Tel 059944-2500 //
----------------------------------------------------
SILVER SERVER GmbH // Lorenz-Mandl-Gasse 33/1 //
A-1160 Wien // Fax 059944-9500 // www.sil.at //
----------------------------------------------------

--
To UNSUBSCRIBE, email to debian-security-REQUEST
with a subject of "unsubscribe". Trouble? Contact listmaster