On Fri, Sep 19, 2008 at 3:57 PM, drzax <[EMAIL PROTECTED]> wrote: > > I know there are very good reasons for keeping people in the dark > about what the security issue is, but I'm sure I'm not alone in > wanting to know more. Are you planning to release details after people > have had a chance to upgrade? >
If you look through the source changes that were applied to the tag, you can discover the vulnerabilities for yourself. I think there's no compelling reason (although maybe someone else has one) to ever explicitly announce how to take advantage of any discovered security flaw. Owen --~--~---------~--~----~------------~-------~--~----~ To post to this group, send email to [email protected] To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/habari-users -~----------~----~----~----~------~----~------~--~---
