[Pkg-samba-maint] Samba and badlock in Debian

[Alain Deléglise]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hi list,

we're really concerned about the badlock bug. As mentionned in the Samba
release planing, the 4.1 versions will not be covered by the security
patches. Unfortunately we're using the 4.1 version, as we use Debian
wheezy and jessie on production servers.

I've read, in a recent message
http://lists.alioth.debian.org/pipermail/pkg-samba-maint/2016-March/018057.html,
that we're not the only one to be concerned :)

How will you manage this problem ? How can one get a maintened package
for debian versions, other than unstable ?

I see that the 4.3.6 is in testing state, but the tracker contains no
information about badlock. Am I missing something ?

As Sernet provides pre-compiled, pre-packaged paid packages of Samba,
how the community will achieve security standards on entreprise class
open-source softwares, such as Samba ?

Finally, how can I/we help you guys on maintaing Samba in Debian ?

Regards,
- -- 

Alain Deléglise
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.22 (GNU/Linux)
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=ZeL+
-----END PGP SIGNATURE-----