Thanks for filing the bug in debian, and I agree that's the right place
to continue discussions. You also mentioned in the original bug some
aspects (such as auth on incoming connections) should be addressed
upstream, so you may want to also file bug reports there.
>From that, if there come to be solutions in the form of backportable
patches, definitely mention them on this bug report and we can consider
SRUing them to focal's clamav if appropriate. (My guess is that any new
auth functionality will be implemented as a new feature, and as such may
not be suitable for SRU, but am setting Importance to Medium in hopes
there'll be at least some backportable elements.)
Looking forward to seeing how the upstream discussions proceed, thanks
again!
** Changed in: clamav (Ubuntu)
Importance: Undecided => Medium
** Changed in: clamav (Ubuntu)
Status: Confirmed => Triaged
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1930393
Title:
any local user can shut clamd down via control socket
To manage notifications about this bug go to:
https://bugs.launchpad.net/clamav/+bug/1930393/+subscriptions
--
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
