Re: Security testing: need for a security policy, and a security-critical package process

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: Development discussions related to Fedora <fedora-devel-list@xxxxxxxxxx>
Subject: Re: Security testing: need for a security policy, and a security-critical package process
From: Bill Nottingham <notting@xxxxxxxxxx>
Date: Tue, 24 Nov 2009 13:29:11 -0500
In-reply-to: <e692861c0911231818o69f553adldaa795e7e229952c@xxxxxxxxxxxxxx>
Mail-followup-to: Development discussions related to Fedora <fedora-devel-list@xxxxxxxxxx>
Reply-to: Development discussions related to Fedora <fedora-devel-list@xxxxxxxxxx>
User-agent: Mutt/1.5.20 (2009-08-17)

Gregory Maxwell (gmaxwell@xxxxxxxxx) said: 
> If some some spin decided to make every user run as root, ship with no
> firewalling,
> have password-less accounts, or have insecure services enabled by
> default, etc.

You mean Sugar as configured on the XO? (It has passwordless user,
who can su without a password.)

Bill

-- 
fedora-devel-list mailing list
fedora-devel-list@xxxxxxxxxx
https://www.redhat.com/mailman/listinfo/fedora-devel-list

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Follow-Ups:
- Re: Security testing: need for a security policy, and a security-critical package process
  - From: Chris Ball
- Re: Security testing: need for a security policy, and a security-critical package process
  - From: Matthew Miller

References:
- Security testing: need for a security policy, and a security-critical package process
  - From: Adam Williamson
- Re: Security testing: need for a security policy, and a security-critical package process
  - From: Matthias Clasen
- Re: Security testing: need for a security policy, and a security-critical package process
  - From: Seth Vidal
- Re: Security testing: need for a security policy, and a security-critical package process
  - From: Matthias Clasen
- Re: Security testing: need for a security policy, and a security-critical package process
  - From: Seth Vidal
- Re: Security testing: need for a security policy, and a security-critical package process
  - From: Matthias Clasen
- Re: Security testing: need for a security policy, and a security-critical package process
  - From: Adam Williamson
- Re: Security testing: need for a security policy, and a security-critical package process
  - From: Gregory Maxwell

Prev by Date: Re: tangent: PolicyKit and PAM
Next by Date: Re: F12 install stops at screen switch (language select)
Previous by thread: Re: Security testing: need for a security policy, and a security-critical package process
Next by thread: Re: Security testing: need for a security policy, and a security-critical package process
Index(es):
- Date
- Thread

[Index of Archives] [Fedora Announce] [Fedora Kernel] [Fedora Testing] [Fedora Formulas] [Fedora PHP Devel] [Kernel Development] [Fedora Legacy] [Fedora Maintainers] [Fedora Desktop] [PAM] [Red Hat Development] [Gimp] [Yosemite News]