On Fri, 19 Apr 2013 19:25, jcris...@debian.org said: > If that "solution" is to have sudo itself call into libgcrypt, that > doesn't sound like a solution at all. sudo doesn't know how libldap > implements crypto, it doesn't care, and it shouldn't have to care IMO.
Uh-oh. A suid program that does not care what code it uses? Folks, please read some basics about secure programming and then back to the drawing board. I remember a time Debian was proud of its good security policies :-(. Shalom-Salam, Werner -- Die Gedanken sind frei. Ausnahmen regelt ein Bundesgesetz. -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org