On Feb 17, 2008 8:18 AM, Alexander Schmehl <[EMAIL PROTECTED]> wrote: > * Jim Popovitch <[EMAIL PROTECTED]> [080217 06:46]: > > I haven't seen any other news about this, I show 7 pending updates for > > which no DSA or notices have gone out. Given that d.o servers have > > been hacked in the past, are these updates valid and where can I find > > official info about them? > > Subscribe to debian-announce: > http://lists.debian.org/debian-announce/debian-announce-2008/msg00000.html
I hope you are teasing, or perhaps you didn't see my first sentence where I stated that I had not seen any other news about this. I have been subscribed to d-a, as well as d-s, and d-i, and d-v..... the problem was the updates hit the mirrors before the announcement hit the wire. Normally this wouldn't be much of an issue, but the formal signed announcement is the only way for most of us to know that the updates are legit and not a nefarious action by some rogue hacker. -Jim P. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
