On Mon, Mar 11, 2013 at 11:34:49 +0100, Raphael Geissert wrote: > Given the recent issues in Ganglia's web frontend and a review of some > portions of the code we, as in the security team, have decided to > limit ganglia's security support to installations behind a trusted > HTTP zone. > Any vulnerability that is only relevant when exposing ganglia's web > frontend to a non-secure zone will therefore be treated as a non-issue > by the security team. They could still be fixed via a SPU, however. > > As such, please add a README.Debian.security file briefly mentioning > the limited security support, effective for the version in wheezy and > newer. > If there's no maintainer reaction can the security team please nmu this?
Cheers, Julien
signature.asc
Description: Digital signature
