Hi Frank, Martin,
I don't think there is any new information in this report beyond what has been on the web site for many months. distcc is secure when used as directed.
I agree Apple should upgrade, but that is irrelevant to debian and beyond my control.
For reasons that ought to be obvious, merely running it in a chroot jail would not be enough, without also having something like GRSecurity or SELinux.
I would like to make it more secure by default and there are various things in the distcc TODO to get there, but I don't think that justifies a grave bug.
Cheers -- Martin
signature.asc
Description: OpenPGP digital signature
