#819 update audit package for beta1 to 1.7.7
Closed: Fixed None Opened 11 years ago by sgrubb.

* Rationale for why the change is important enough to be allowed in after the feature freeze.

The audit 1.7.6 package has 3 important fixes. 1) tcp_wrappers code had a typo in the define that caused it to not be compiled in for remote audit servers. 2) gssapi was not filtering the principals and might be usable in tmp file attack 3) and remote logging did not work on 64 bit machines

* Impact of *not* accepting the feature at this point of the schedule.

Might get bug reports of things fixed and no testing of remote logging on 64 bit systems. Not to mention the security aspect for anyone doing remote logging.

* Information on what testing you've already done on the feature to help reduce the risk.

I spent last 2 days working on it and testing until remote logging was verified working. gssapi code has been through 2 code reviews to make sure its up to par now.


Metadata Update from @sgrubb:
- Issue set to the milestone: Fedora 10 Beta

2 years ago

Login to comment on this ticket.

Metadata