Conversation

Notices

  1. Remote profile options...
    erkanyilmaz erkanyilmaz

    and I am sure they are not the only once doing that, so much to the info flow of security alerts

    Saturday, 14-Sep-13 07:28:48 UTC from oracle.skilledtests.com
    1. Remote profile options...
      erkanyilmaz erkanyilmaz

      good news: also # updated! RT @OpenBSD_ports jasper@ modified www/statusnet: update to # 1.1.1

      Friday, 20-Sep-13 08:11:13 UTC from oracle.skilledtests.com
    2. Remote profile options...
      erkanyilmaz erkanyilmaz

      another example: turnkey statusnet 13.0 re-packaged in October and still has SN 1.1.0 inside :-( (since Aug 2012), (1) turnkey-statusnet-13.0-wheezy-amd64.iso, 11 Oct 2013, live cd (2) http://status.net/2013/07/16/security-alert-sql-injection-attack-for-statusnet-1-0-x-and-1-1-x (3) http://www.turnkeylinux.org/statusnet https://twitter.com/Erkan_Yilmaz/status/395736556318638081

      Thursday, 31-Oct-13 02:20:56 UTC from oracle.skilledtests.com
      1. Remote profile options...
        erkanyilmaz erkanyilmaz

        so, 2 weeks ago I got contacted by # :-( our conversation resulted in: 1. SN image is taken offline 2. I recommended them to make a new one with # :-) https://github.com/turnkeylinux/tracker/issues/287

        Sunday, 11-Jan-15 20:47:14 UTC from oracle.skilledtests.com