It seems to me that while the problem results from user error, it has
security ramifications. Still, I respect your decision.
Matthew Flaschen
Christian Perrier wrote:
Quoting Matthew Flaschen ([EMAIL PROTECTED]):
I can only assume you're correct. I have no intention of updating this
packag
Quoting Matthew Flaschen ([EMAIL PROTECTED]):
> I can only assume you're correct. I have no intention of updating this
> package to testing or unstable, as it is critical. I hope a limited
> security update becomes available for stable soon.
No, it will not. I'm not convinced that this deserv
I can only assume you're correct. I have no intention of updating this
package to testing or unstable, as it is critical. I hope a limited
security update becomes available for stable soon.
Matt Flaschen
Christian Perrier wrote:
Quoting Matthew Flaschen ([EMAIL PROTECTED]):
Package: login
Quoting Matthew Flaschen ([EMAIL PROTECTED]):
> Package: login
> Version: 4.0.3-31sarge8
>
> The problem is that after you type the username, but before the program
> begins taking password input, it is possible to type directly into the
> shell. This means that if someone begins typing their p
Package: login
Version: 4.0.3-31sarge8
The problem is that after you type the username, but before the program
begins taking password input, it is possible to type directly into the
shell. This means that if someone begins typing their password
prematurely will have it displayed on screen, an
5 matches
Mail list logo
