python-requests-kerberos and pykerberos are also missing a team
subscriber; a team that will look after bugs in these packages.
pykerberos is a little worrying in that the last changes happened over a
year ago, and there has been a new upstream version since June that
hasn't been packaged. It's not horrible yet, as it appears to be a
fairly regularly maintained project upstream, but it may be missing an
active maintainer team to look after the package in Debian and Ubuntu.
The new upstream version should be packaged.
Team subscriber is definitely a blocker, and so is enabling hardening
for pykerberos. Given that pykerberos deals with potentially sensitive
auth/authz information, it should be reviewed by the security team.
** Changed in: pykerberos (Ubuntu)
Status: In Progress => Incomplete
** Changed in: python-requests-kerberos (Ubuntu)
Status: In Progress => Incomplete
** Changed in: pykerberos (Ubuntu)
Assignee: Mathieu Trudel-Lapierre (cyphermox) => Ubuntu Security Team
(ubuntu-security)
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1620293
Title:
[MIR] python-requests-kerberos and pykerberos (deps of python-
keystoneauth1)
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/pykerberos/+bug/1620293/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
