Package: release.debian.org
Severity: normal
User: release.debian....@packages.debian.org
Usertags: unblock
Hello release team,
please unblock package ettercap.
A new upstream version 0.7.5 of ettercap (a network sniff/attack tool)
fixes a variety of security issues. It does not seem practical to me
to backport the fixes, because many of them are made on top of
non-security-related changes, and teasing them apart etc would be a
great deal of work and also quite error-prone.
The upstream team is very eager to get the new version in place, and I
find their reasoning compelling.
This is briefly alluded to in BTS 691465.
Note that ettercap is a leaf package (nothing depends on it) so there
is no real down-side to allowing 0.7.5 to progress to testing and then
having a show-stopping problem pop up. In that case it would likely
be pulled ... which I think we'd have to do anyway if 0.7.5 is not
allowed into testing, since in that case we'll have known latent
security issues.
On the other hand, with 0.7.5 we have an active (quite pro-active in
fact) and highly responsive upstream team eager to fix any issues that
we might bring to their attention.
--Barak.
--
Barak A. Pearlmutter
Hamilton Institute & Dept Comp Sci, NUI Maynooth, Co. Kildare, Ireland
http://www.bcl.hamilton.ie/~barak/
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
