Package: reseed
Severity: wishlist
Given that using external random data is a potential security problem,
I feel that a warning the package description may not be enough. Having
the package ask for permission (and warning the sysadmin at the same
time) would be a good idea. This way, just in case the package gets
installed unintentionally via a dependency, any security problem can
still be avoided, at least by a reasonably alert sysadmin.
>From the IRC discussion:
<liw> mako, does it ask the sysadmin whether to do that, before doing
it, since it does it upon installation? and warn that it is a
possible security problem?
<mako> liw: not upon running, no
<mako> liw: a warning is in the package description though
<mako> liw: if you want to file a wishlist bug, i'll implement it
-- System Information:
Debian Release: lenny/sid
APT prefers testing
APT policy: (500, 'testing')
Architecture: i386 (i686)
Kernel: Linux 2.6.18-4-686 (SMP w/1 CPU core)
Locale: LANG=fi_FI.UTF-8, LC_CTYPE=fi_FI.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
