[Freedombox-discuss] secure UUIDs
diocles at debian.org
Mon Jul 22 10:30:57 UTC 2013
On 22 Jul 2013 10:48, "Jonas Smedegaard" <dr at jones.dk> wrote:
> You just educated me to inspect bugtrackers more closely: Perhaps if
> you'd not closed the Debian bug but left open and tagged as wontfix,
> then I'd noticed it when making a move now
Indeed, in hindsight that would have been better. :( Apologies.
What really annoys me about this is that other distros do use the real
Data::UUID, but I struggled to get a CVE filed - how on earth does one go
The multi-user issue isn't even described in a bug tracker, now that I look
at it. There's some sort of UUID_STATE file that can't be overwritten, so I
guess the UUIDs become less unique.
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Freedombox-discuss