Your message dated Tue, 08 Jul 2008 00:23:02 +0200
with message-id <[EMAIL PROTECTED]>
and subject line Re: Bug#483849: vino-preferences does not allow secure
passwords
has caused the Debian Bug report #483849,
regarding vino-preferences does not allow secure passwords
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [EMAIL PROTECTED]
immediately.)
--
483849: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=483849
Debian Bug Tracking System
Contact [EMAIL PROTECTED] with problems
--- Begin Message ---
Package: vino
Version: 2.22.2-1
Severity: important
I set this bug to important, as it is security relevant:
It seems that vino-preferences does not allow one to
enter passwords with more than 8 characters - it should
be the other way round, it should encurage (if not
enforce) longer passwords.
Thanks a lot,
Markus
-- System Information:
Debian Release: lenny/sid
APT prefers unstable
APT policy: (500, 'unstable'), (500, 'testing'), (500, 'stable')
Architecture: i386 (i686)
Kernel: Linux 2.6.25-2-686 (SMP w/2 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash
Versions of packages vino depends on:
ii gconf2 2.22.0-1 GNOME configuration database syste
ii libavahi-client3 0.6.22-3 Avahi client library
ii libavahi-common3 0.6.22-3 Avahi common library
ii libavahi-glib1 0.6.22-3 Avahi glib integration library
ii libbonobo2-0 2.22.0-1 Bonobo CORBA interfaces library
ii libc6 2.7-11 GNU C Library: Shared libraries
ii libdbus-1-3 1.2.1-2 simple interprocess messaging syst
ii libdbus-glib-1-2 0.74-4 simple interprocess messaging syst
ii libgconf2-4 2.22.0-1 GNOME configuration database syste
ii libgcrypt11 1.4.1-1 LGPL Crypto library - runtime libr
ii libglade2-0 1:2.6.2-1 library to load .glade files at ru
ii libglib2.0-0 2.16.3-2 The GLib library of C routines
ii libgnome2-0 2.20.1.1-1 The GNOME 2 library - runtime file
ii libgnomeui-0 2.20.1.1-1 The GNOME 2 libraries (User Interf
ii libgnutls26 2.2.5-1 the GNU TLS library - runtime libr
ii libgtk2.0-0 2.12.9-4 The GTK+ graphical user interface
ii libjpeg62 6b-14 The Independent JPEG Group's JPEG
ii libnotify1 [libnotify1 0.4.4-3 sends desktop notifications to a n
ii liborbit2 1:2.14.12-0.1 libraries for ORBit2 - a CORBA ORB
ii libx11-6 2:1.0.3-7 X11 client-side library
ii libxdamage1 1:1.1.1-4 X11 damaged region extension libra
ii libxext6 2:1.0.4-1 X11 miscellaneous extension librar
ii libxfixes3 1:4.0.3-2 X11 miscellaneous 'fixes' extensio
ii libxtst6 2:1.0.3-1 X11 Testing -- Resource extension
ii zlib1g 1:1.2.3.3.dfsg-12 compression library - runtime
vino recommends no packages.
-- no debconf information
--- End Message ---
--- Begin Message ---
Hi,
Markus Schaber wrote:
> Package: vino
> Version: 2.22.2-1
> Severity: important
>
> I set this bug to important, as it is security relevant:
>
> It seems that vino-preferences does not allow one to
> enter passwords with more than 8 characters - it should
> be the other way round, it should encurage (if not
> enforce) longer passwords.
VNC may limit the password to 8 chars, truncating it to the first 8 chars if you
supply a longer password. That's why Vino doesn't allow longer passwords.
See http://en.wikipedia.org/wiki/Vnc#Security
I'm thus closing this report.
Best,
Emilio
>
> Thanks a lot,
> Markus
>
> -- System Information:
> Debian Release: lenny/sid
> APT prefers unstable
> APT policy: (500, 'unstable'), (500, 'testing'), (500, 'stable')
> Architecture: i386 (i686)
>
> Kernel: Linux 2.6.25-2-686 (SMP w/2 CPU cores)
> Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
> Shell: /bin/sh linked to /bin/bash
>
> Versions of packages vino depends on:
> ii gconf2 2.22.0-1 GNOME configuration database
> syste
> ii libavahi-client3 0.6.22-3 Avahi client library
> ii libavahi-common3 0.6.22-3 Avahi common library
> ii libavahi-glib1 0.6.22-3 Avahi glib integration library
> ii libbonobo2-0 2.22.0-1 Bonobo CORBA interfaces library
> ii libc6 2.7-11 GNU C Library: Shared libraries
> ii libdbus-1-3 1.2.1-2 simple interprocess messaging
> syst
> ii libdbus-glib-1-2 0.74-4 simple interprocess messaging
> syst
> ii libgconf2-4 2.22.0-1 GNOME configuration database
> syste
> ii libgcrypt11 1.4.1-1 LGPL Crypto library - runtime
> libr
> ii libglade2-0 1:2.6.2-1 library to load .glade files at
> ru
> ii libglib2.0-0 2.16.3-2 The GLib library of C routines
> ii libgnome2-0 2.20.1.1-1 The GNOME 2 library - runtime
> file
> ii libgnomeui-0 2.20.1.1-1 The GNOME 2 libraries (User
> Interf
> ii libgnutls26 2.2.5-1 the GNU TLS library - runtime
> libr
> ii libgtk2.0-0 2.12.9-4 The GTK+ graphical user
> interface
> ii libjpeg62 6b-14 The Independent JPEG Group's
> JPEG
> ii libnotify1 [libnotify1 0.4.4-3 sends desktop notifications to a
> n
> ii liborbit2 1:2.14.12-0.1 libraries for ORBit2 - a CORBA
> ORB
> ii libx11-6 2:1.0.3-7 X11 client-side library
> ii libxdamage1 1:1.1.1-4 X11 damaged region extension
> libra
> ii libxext6 2:1.0.4-1 X11 miscellaneous extension
> librar
> ii libxfixes3 1:4.0.3-2 X11 miscellaneous 'fixes'
> extensio
> ii libxtst6 2:1.0.3-1 X11 Testing -- Resource
> extension
> ii zlib1g 1:1.2.3.3.dfsg-12 compression library - runtime
>
> vino recommends no packages.
>
> -- no debconf information
>
>
>
>
> _______________________________________________
> pkg-gnome-maintainers mailing list
> [EMAIL PROTECTED]
> http://lists.alioth.debian.org/mailman/listinfo/pkg-gnome-maintainers
>
signature.asc
Description: OpenPGP digital signature
--- End Message ---
