Bug#571631: libapache2-mod-shib2: shib-keygen generates world-readable key file
Russ Allbery
rra at debian.org
Mon Mar 1 18:52:06 UTC 2010
Dominic Hargreaves <dom at earth.li> writes:
> On Mon, Mar 01, 2010 at 03:41:51PM +0100, Ferenc Wagner wrote:
>> (Btw. I recommend using the backported packages, they are more
>> mature in several respects besides the higher version numbers.)
> Thanks for the tip; I'll bear it in mind if we encounter a need
> for functionality not available in Debian stable, but I would prefer
> to stick with stable otherwise.
For this package in particular, I echo Ferenc's recommendation.
Shibboleth 2.x development was moving too fast at the time of the lenny
release to reasonably freeze on a version, so lenny has a somewhat
randomly-chosen version with known bugs that isn't really supported by
upstream. We'll hopefully be in a somewhat better position for squeeze.
--
Russ Allbery (rra at debian.org) <http://www.eyrie.org/~eagle/>
More information about the Pkg-shibboleth-devel
mailing list