RE: faq on choosing a debian distribution - draft 1

• Previous message: Alvin Oga: "Re: nv vs. nvidia - glx - today"
• Maybe in reply to: Kamaraju Kusumanchi: "faq on choosing a debian distribution - draft 1"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

To: debian-user <debian-user@lists.debian.org>
Date: Fri, 29 Oct 2004 15:58:57 -0700

Further research does show that I'm wrong about this. The -7.1 on sendmail
does mean quite a bit. I looked into the change log and saw that patches
are routinely added to fix vulnerabilities that would be exploitable on an
unpatched version of sendmail.

So... I retract my statement about stable being less secure than testing.

Joe

-----Original Message-----
From: s. keeling [mailto:keeling@spots.ab.ca]
Sent: Friday, October 29, 2004 3:14 PM
To: debian-user
Subject: Re: faq on choosing a debian distribution - draft 1

Incoming from Gilbert, Joseph:
>
> From: John Hasler [mailto:jhasler@debian.org]
> > > I do not think stable is necessarily the best if you are very
> > > concerned
> > > about security. Packages with recent security fixes can
take time to
> > > make it into stable.
>
> > Stable gets backported security fixes very promptly.
>
> Well, the version number of sendmail in stable (just one
example) seems to
> be pretty old - 8.12.3. There are known exploits (buffer
overflows, etc.)

Are you sure? apt-cache policy says 8.12.3-7.1 Perhaps the exploits
you're talking about are what the 7.1 is all about? Check its
Changelog or run reportbug to see them.

-- 
Any technology distinguishable from magic is insufficiently advanced.
(*)    http://www.spots.ab.ca/~keeling      Please don't Cc: me.
- -
-- 
To UNSUBSCRIBE, email to debian-user-REQUEST@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact 
listmaster@lists.debian.org
-- 
To UNSUBSCRIBE, email to debian-user-REQUEST@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

• Previous message: Alvin Oga: "Re: nv vs. nvidia - glx - today"
• Maybe in reply to: Kamaraju Kusumanchi: "faq on choosing a debian distribution - draft 1"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Relevant Pages Re: Re-building sendmail ... > and other issues with sendmail, I would strongly recommend replacing it ... > CERT advisories on sendmail were about the size of a Manhattan phone book. ... > ``It will be of little avail to the people that the laws are made by men of ... To unsubscribe, ... (freebsd-questions) Re: Sendmail and /var/spool/mqueue ... call sendmail on them right away directly - and then sendmail or whatever ... failed to get delivered for some non-permanent reason. ... I always nuked any orphans. ... To unsubscribe, ... (freebsd-questions) Re: POP Before SMTP ... mail but this does not appear to work with the newer version of sendmail so ... Subject: POP Before SMTP ... configurations work anymore. ... >> To unsubscribe, send any mail to ... (freebsd-questions) RE: senamil with two domains ... I am implementing Oracle Email Server (OES). ... the following entry to "sendmail.cf" and bounced the sendmail. ... Then remake the sendmail.cf from sendmail.mc (as it's best not to edit ... unsubscribe mailto:redhat-list-request@redhat.com?subject=unsubscribe ... (RedHat) Re: kernel option to increase max open files ... >like these in the sendmail log: ... >So I figure I need to increase the max number of open files available. ... To unsubscribe, ... (freebsd-questions)