Fedora rejects SQLninja
Nov 12, 2010, 15:05 (0 Talkback[s])
WEBINAR: On-demand Event
Replace Oracle with the NoSQL Engagement Database: Why and how leading companies are making the switch REGISTER >
"* SQLninja package review request submitted. All that it does
is try to exploit vulnerabilities in SQL queries to give you root
access on remote systems / root equivalent on Windows systems.
* Argument for SQLninja to be added to Fedora is that it is a
'penetration testing tool.'
* Where is the line between what we would take into Fedora b/c it
is free software vs. how hazardous it might be?
* We never had an explicit policy on this; wanted to wait until we
actually encountered it.
* RH Legal:"