Bug#801226: duck: add support for reporting redirects to other domains

Wed, 07 Oct 2015 08:41:12 -0700 

Package: duck
Version: 0.7
Severity: wishlist

It would be nice if duck supported reporting redirects:

 * http > https redirects in the same domain don't need to be reported.
 * https > http redirects in the same domain do need to be reported
   since upstreams should not force insecurity.
 * redirects between different domains (use Domain::Publicsuffix) need
   to be reported so the maintainer looks at them and determines if
   there is a new upstream website or whatever.

pabs@chianamo ~ $ apt-get source polarssl
Reading package lists... Done
Building dependency tree       
Reading state information... Done
Need to get 1,749 kB of source archives.
Get:1 http://httpredir.debian.org/debian/ testing/main polarssl 1.3.9-2.1 (tar) 
[1,741 kB]
Get:2 http://httpredir.debian.org/debian/ testing/main polarssl 1.3.9-2.1 (dsc) 
[1,833 B]
Get:3 http://httpredir.debian.org/debian/ testing/main polarssl 1.3.9-2.1 
(diff) [5,612 B]                                                                
                             
Fetched 1,749 kB in 8s (204 kB/s)                                               
                                                                                
                       
dpkg-source: info: extracting polarssl in polarssl-1.3.9
dpkg-source: info: unpacking polarssl_1.3.9.orig.tar.gz
dpkg-source: info: unpacking polarssl_1.3.9-2.1.debian.tar.xz
dpkg-source: info: applying 01-config.patch
dpkg-source: info: applying 02-makefile-destdir-fix.patch
dpkg-source: info: applying CVE-2015-1182.patch
pabs@chianamo ~ $ cd polarssl-1.3.9/
pabs@chianamo ~/polarssl-1.3.9 $ duck
pabs@chianamo ~/polarssl-1.3.9 $ ^C
pabs@chianamo ~/polarssl-1.3.9 $ duck -v
O: debian/patches/02-makefile-destdir-fix.patch:3: Email: Arnaud Cornet 
arnaud.cor...@gmail.com : OK (Certainty:possible)

O: debian/patches/CVE-2015-1182.patch:17: URL: upstream, 
https://polarssl.org/tech-updates/security-advisories/polarssl-security-advisory-2014-04:
 OK (Certainty:possible)

O: debian/patches/CVE-2015-1182.patch:18: URL: https://bugs.debian.org/775776: 
OK (Certainty:possible)

O: debian/patches/CVE-2015-1182.patch:20: Email: Salvatore Bonaccorso 
car...@debian.org : OK (Certainty:possible)

O: debian/patches/01-config.patch:4: Email: Arnaud Cornet 
arnaud.cor...@gmail.com : OK (Certainty:possible)

O: debian/control: Homepage: http://polarssl.org: OK (Certainty:certain)

O: debian/control: Maintainer: Roland Stigge <sti...@antcom.de>: OK 
(Certainty:certain)

O: debian/copyright:1: Email: acor...@debian.org: OK (Certainty:possible)

O: debian/copyright:4: Email: sti...@antcom.de: OK (Certainty:possible)

O: debian/copyright:6: URL: http://polarssl.org/: OK (Certainty:possible)

O: debian/copyright:9: Email: polarssl_maintai...@polarssl.org: OK 
(Certainty:possible)

O: debian/copyright:40: Email: acor...@debian.org: OK (Certainty:possible)

pabs@chianamo ~/polarssl-1.3.9 $ wget -O /dev/null http://polarssl.org
--2015-10-07 23:24:15--  http://polarssl.org/
Resolving polarssl.org (polarssl.org)... 79.170.91.36
Connecting to polarssl.org (polarssl.org)|79.170.91.36|:80... connected.
HTTP request sent, awaiting response... 301 Moved Permanently
Location: https://polarssl.org/ [following]
--2015-10-07 23:24:16--  https://polarssl.org/
Connecting to polarssl.org (polarssl.org)|79.170.91.36|:443... connected.
HTTP request sent, awaiting response... 301 Moved Permanently
Location: https://tls.mbed.org/ [following]
--2015-10-07 23:24:20--  https://tls.mbed.org/
Resolving tls.mbed.org (tls.mbed.org)... 79.170.91.36
Connecting to tls.mbed.org (tls.mbed.org)|79.170.91.36|:443... connected.
HTTP request sent, awaiting response... 200 OK
Length: unspecified [text/html]
Saving to: ‘/dev/null’

/dev/null                                         [  <=>                        
                                                                       ]  
11.33K  16.0KB/s   in 0.7s   

2015-10-07 23:24:23 (16.0 KB/s) - ‘/dev/null’ saved [11599]

-- System Information:
Debian Release: stretch/sid
  APT prefers testing
  APT policy: (900, 'testing'), (860, 'testing-proposed-updates'), (850, 
'buildd-testing-proposed-updates'), (800, 'unstable'), (790, 
'buildd-unstable'), (700, 'experimental'), (690, 'buildd-experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 4.2.0-1-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_AU.utf8, LC_CTYPE=en_AU.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages duck depends on:
ii  libconfig-inifiles-perl              2.88-1
ii  libfile-which-perl                   1.18-1
ii  libmailtools-perl                    2.13-1
ii  libnet-dns-perl                      0.81-2
ii  libparse-debcontrol-perl             2.005-4
ii  libpath-class-perl                   0.35-1
ii  libregexp-common-email-address-perl  1.01-4
ii  libregexp-common-perl                2013031301-1
ii  libstring-similarity-perl            1.04-1+b2
ii  libwww-curl-perl                     4.17-2
ii  libxml-xpath-perl                    1.13-7
ii  libyaml-libyaml-perl                 0.41-6
ii  perl                                 5.20.2-6

duck recommends no packages.

Versions of packages duck suggests:
ii  bzr         2.6.0+bzr6602-3
ii  git         1:2.6.1-1
ii  mercurial   3.5.1-2
ii  subversion  1.9.2-1

-- no debconf information

-- 
bye,
pabs

https://wiki.debian.org/PaulWise

Attachment: signature.asc
Description: This is a digitally signed message part

Reply via email to