I agree with Gunnar.
This big is not realy security relevant, it would be, if there were open
security issues with..
Users could deactivate drupal easily by just removing the symlink and
this method is used by several other packages, so that they work after
installation.
Sure it would be nice to
Matt Taggart dijo [Mon, Sep 20, 2010 at 11:22:51AM -0700]:
> IMO it's a security bug, but downgrade if you disagree.
>
> Thanks,
I tend to disagree - And it is a characteristic I really appreciate
about Debian's packaging of Drupal: One of those great instances of
"Install. It just works." that d
> Matt,
> can you please explain why you think this bug is 'grave' and not just =
> 'important'?
>
> To me, grave definition is:
>
> makes the package in question unusable or mostly so, or causes data
> loss, or introduces a security hole allowing access to the accounts of
> users who use the pac
Matt,
can you please explain why you think this bug is 'grave' and not just
'important'?
To me, grave definition is:
makes the package in question unusable or mostly so, or causes data loss, or
introduces a security hole allowing access to the accounts of users who use the
package
and I canno
4 matches
Mail list logo
