[Pkg-awstats-devel] Fwd: Bug#572353
Jonas Smedegaard
dr at jones.dk
Thu Apr 1 13:44:27 UTC 2010
On Thu, Apr 01, 2010 at 04:58:54PM +0400, Sergey B Kirpichev wrote:
>> Improved *functionality* might be weakened *security*.
>>
>> I might be worng (and apologize if so - Sergey have put tremendous
>> work into improvements here, I just fear that extending to support
>> multiple config files have stolen focus from the IMO bigger issue of
>> keeping data secure by default.
>
>You are right. But for now we keep the old scheme for permissons (both
>for config files and for log files). I think, nothing is broken in
>sence of security from the view of past releases.
Agreed (as I responded to Andreas too): My mistake!
Thanks for confirming, anyway :-)
Package has been released to experimental, and is also available here:
http://debian.jones.dk/pkg/webservices/awstats/
or by adding appropriate one of the following to /etc/apt/sources.list:
deb http://debian.jones.dk/ webservices sid
deb http://debian.jones.dk/ webservices squeeze
deb http://debian.jones.dk/ webservices lenny
Please test, and tell if it works properly - then I'll rerelease to
unstable. :-)
- Jonas
--
* Jonas Smedegaard - idealist & Internet-arkitekt
* Tlf.: +45 40843136 Website: http://dr.jones.dk/
[x] quote me freely [ ] ask before reusing [ ] keep private
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 836 bytes
Desc: Digital signature
URL: <http://lists.alioth.debian.org/pipermail/pkg-awstats-devel/attachments/20100401/036ab834/attachment.pgp>
More information about the Pkg-awstats-devel
mailing list