Hi Bernhard, On Tue, Jul 16, 2024 at 7:05 PM Bernhard Schmidt <[email protected]> wrote: > > Hi Andreas, > > > Upstream also suggested[2] that we could just remove the radsecret > > script, since it's not used by anything else, but I rather not deviate > > from upstream that much if we can. > > Same here. Have you considered to submit the replacement upstream? I > will gladly cherry-pick the change as soon as it has been merged > upstream. Since it is somewhat security sensitive I would rather not > deviate from upstream here (the great Debian OpenSSL debacle comes to mind).
I totally understand. The patch went through a quick security review[1] in ubuntu, from which I got a minor change (see the comment for details). I also just proposed[2] this to upstream. 1. https://bugs.launchpad.net/ubuntu/+source/libconvert-base32-perl/+bug/2073269/comments/6 2. https://github.com/FreeRADIUS/freeradius-server/pull/5375
