[Pkg-freeradius-maintainers] Bug#1076458: freeradius: replace radsecret script with bash
Andreas Hasenack
andreas at canonical.com
Wed Jul 17 13:49:49 BST 2024
Hi Bernhard,
On Tue, Jul 16, 2024 at 7:05 PM Bernhard Schmidt <berni at debian.org> wrote:
>
> Hi Andreas,
>
> > Upstream also suggested[2] that we could just remove the radsecret
> > script, since it's not used by anything else, but I rather not deviate
> > from upstream that much if we can.
>
> Same here. Have you considered to submit the replacement upstream? I
> will gladly cherry-pick the change as soon as it has been merged
> upstream. Since it is somewhat security sensitive I would rather not
> deviate from upstream here (the great Debian OpenSSL debacle comes to mind).
I totally understand. The patch went through a quick security
review[1] in ubuntu, from which I got a minor change (see the comment
for details).
I also just proposed[2] this to upstream.
1. https://bugs.launchpad.net/ubuntu/+source/libconvert-base32-perl/+bug/2073269/comments/6
2. https://github.com/FreeRADIUS/freeradius-server/pull/5375
More information about the Pkg-freeradius-maintainers
mailing list