I'd suggest you first email a few people on this list who you think
might know about the problem area, then take a look at the various
errata pages on the distribution sites for an email address to mail if
the others think it really is a bug/security hole.
An email to BUGTRAQ wouldn't go amiss either, but only when you're
absolutely sure it's a secrity hole.
Anton Mc Kee wrote:
>> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>> Hi all,
>> Well I actually have a serious question to ask you all.
>> I may (or may not) have discovered a security problem with a
> particular service on Red hat ( and possible all dist of Linux ),
> while it is not a bug it is a problem under certain conditions.
>> How do I go about reporting this to someone. I don't want to mail my
> question to a list because then
>> A Everybody knows about the problem if it is one before there is a
> B It could be a misconfiguration on my part.
>> So how do I go about this.
Maintained by the ILUG website team. The aim of Linux.ie is to
support and help commercial and private users of Linux in Ireland. You can
display ILUG news in your own webpages, read backend
information to find out how. Networking services kindly provided by HEAnet, server kindly donated by
Dell. Linux is a trademark of Linus Torvalds,
used with permission. No penguins were harmed in the production or maintenance
of this highly praised website. Looking for the
Indian Linux Users' Group? Try here. If you've read all this and aren't a lawyer: you should be!