[Bug 154730] Please remove secvpn source and binary from Hardy
Scott Kitterman
ubuntu at kitterman.com
Sat Oct 20 05:06:41 BST 2007
Public bug reported:
Binary package hint: secvpn
secvpn | 2.21 | hardy/universe | source, all
This package appears to be broken, obsolete, and have a very poor
security design. While looking into fixing Bug #152968, I noticed that
in addition to still needing the long gone /etc/inittab, it also does
interesting things like add its user to the sudoers group.
It looks to me like the init process, including setuid will have to be
completely redone. Please have a look at this package and unless you
think it can reasonably be made safe and funcitonal, remove it. There
are plenty of other options in the repostories.
** Affects: secvpn (Ubuntu)
Importance: Wishlist
Status: Confirmed
** Changed in: secvpn (Ubuntu)
Importance: Undecided => Wishlist
Status: New => Confirmed
--
Please remove secvpn source and binary from Hardy
https://bugs.launchpad.net/bugs/154730
You received this bug notification because you are a member of Ubuntu
Package Archive Administrators, which is a direct subscriber.
More information about the ubuntu-archive
mailing list