Public bug reported:
Binary package hint: secvpn
secvpn | 2.21 | hardy/universe | source, all
This package appears to be broken, obsolete, and have a very poor
security design. While looking into fixing Bug #152968, I noticed that
in addition to still needing the long gone /etc/inittab, it also does
interesting things like add its user to the sudoers group.
It looks to me like the init process, including setuid will have to be
completely redone. Please have a look at this package and unless you
think it can reasonably be made safe and funcitonal, remove it. There
are plenty of other options in the repostories.
** Affects: secvpn (Ubuntu)
Importance: Wishlist
Status: Confirmed
** Changed in: secvpn (Ubuntu)
Importance: Undecided => Wishlist
Status: New => Confirmed
--
Please remove secvpn source and binary from Hardy
https://bugs.launchpad.net/bugs/154730
You received this bug notification because you are a member of Ubuntu
Bugs, which is the bug contact for Ubuntu.
--
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
