Package: cron
Version: 3.0pl1-94
Severity: wishlist
As a consequence of the attack vector used in the gluck compromise
(forcing a core dump into cron.d/, whose contained text sections
cron interprets) we should strive to make crontab parsing less
permissive for Etch, so that only regular plain text files are
parsed.
Cheers,
Moritz
-- System Information:
Debian Release: testing/unstable
APT prefers unstable
APT policy: (500, 'unstable')
Architecture: i386 (i686)
Shell: /bin/sh linked to /bin/bash
Kernel: Linux 2.6.16-1-686
Locale: LANG=C, [EMAIL PROTECTED] (charmap=ISO-8859-15)
Versions of packages cron depends on:
ii adduser 3.92 Add and remove users and groups
ii debianutils 2.16.2 Miscellaneous utilities specific t
ii libc6 2.3.6-15 GNU C Library: Shared libraries
ii libpam0g 0.79-3.1 Pluggable Authentication Modules l
ii libselinux1 1.30-1 SELinux shared libraries
ii lsb-base 3.1-10 Linux Standard Base 3.1 init scrip
Versions of packages cron recommends:
ii exim4-daemon-light [mail-tran 4.62-2 lightweight exim MTA (v4) daemon
-- no debconf information
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
