[MIR] apg
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
apg (Ubuntu) |
Fix Released
|
Undecided
|
Didier Roche-Tolomelli |
Bug Description
Binary package hint: apg
1. Availability - already packaged & builds in Ubuntu universe since Maverick & Debian experimental
2. Rationale - The new gnome-control-
3. Security - apg is a program that exists since several years ago, and is being used in several distros, so security issues should go through the usual process
4. QA - There are no open bugs for this package as of today -> https:/
5. UI - apg is a command line tool, so there is no UI
6. Dependencies - libc6
7. Standards-compliant 3.7.2.2
8. Maintenance - We are currently in sync with Debian
9. Background information - apg is a tool that exists since several years ago, and even though it hasn't had many new versions in the last few years, it seems to be a consolidated tool, being used in Fedora and other distros for password generation
description: | updated |
Changed in apg (Ubuntu): | |
assignee: | nobody → Didier Roche (didrocks) |
description: | updated |
The packaging and code looks good to me (apart from some linitian warnings, but not relevant in this case)
I still want to the security to have a look as it's what will be used to generate password for our users in the new GNOME account panel.
Note to the security team:
The client/server version of apg has been deliberately omitted since
the passwords are sent over the network unencrypted.
Assign me the task back if it's ready for promoting to main security-wise.