The debian-private mailing list leak, part 1. Volunteers have complained about Blackmail. Lynchings. Character assassination. Defamation. Cyberbullying. Volunteers who gave many years of their lives are picked out at random for cruel social experiments. The former DPL's girlfriend Molly de Blanc is given volunteers to experiment on for her crazy talks. These volunteers never consented to be used like lab rats. We don't either. debian-private can no longer be a safe space for the cabal. Let these monsters have nowhere to hide. Volunteers are not disposable. We stand with the victims.
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: US software law (was Re: Packaging spice and xwave)

On 27 Jul 1997, John Goerzen wrote:

> Rumor on bugtraq has it that Exim has some serious security problems.

The comments about seteuid() are by people who just grepped the source for
it without looking at how they are used.

The security problem found recently was a buffer overflow; exim doesn't
generally suffer from these, as Philip has been fairly careful to avoid
them, particularly in later versions. Obviously he missed that one, and I
wouldn't be surprised if there was another one or two missed, but it's not
full of buffer overflow bugs in the way that early versions of sendmail
were.

Also, the one discovered recently was discovered by djb, who probably
spent weeks on it just to demonstrate that qmail is better.


--
TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to
debian-private-request@lists.debian.org . 
Trouble?  e-mail to templin@bucknell.edu .