Your message dated Sat, 12 Oct 2013 19:53:28 +0000 with message-id <e1vv5fg-00080v...@franck.debian.org> and subject line Bug#724992: fixed in ejabberd 2.1.10-4+deb7u1 has caused the Debian Bug report #724992, regarding ejabberd: disable SSLv2 and weak ciphers to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 724992: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=724992 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
--- Begin Message ---Package: ejabberd Severity: wishlist Dear Maintainer, Upstream has released new versions; 2.1.12 has important changes to the SSL/TLS driver, disabling broken SSLv2 and export ciphers. Thank you, C.
--- End Message ---
--- Begin Message ---Source: ejabberd Source-Version: 2.1.10-4+deb7u1 We believe that the bug you reported is fixed in the latest version of ejabberd, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 724...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Konstantin Khomoutov <flatw...@users.sourceforge.net> (supplier of updated ejabberd package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@ftp-master.debian.org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Sun, 29 Sep 2013 21:48:11 +0400 Source: ejabberd Binary: ejabberd Architecture: source i386 Version: 2.1.10-4+deb7u1 Distribution: stable-security Urgency: low Maintainer: Konstantin Khomoutov <flatw...@users.sourceforge.net> Changed-By: Konstantin Khomoutov <flatw...@users.sourceforge.net> Description: ejabberd - distributed, fault-tolerant Jabber/XMPP server written in Erlang Closes: 705613 706590 708151 724992 724994 Changes: ejabberd (2.1.10-4+deb7u1) stable-security; urgency=low . [ Konstantin Khomoutov ] * Add patch fixing parsing of optional parameters in SCRAM SHA-1 headers (closes: #705613, thanks to Stephen Röttger for both writing the original patch and backporting it to 2.1.10). * Explain the "fqdn" configuration file option which has to be used in certain setups for the SCRAM-SHA-1 to work with complying clients. Mention this fact in the NEWS file. (Closes: #706590) * Add upstream patch fixing incorrect escaping of a single quote character in SQL queries generated by the ODBC storage backend (closes: #708151, thanks to Vladislav Chugunov). * Add upstream patches disabling SSLv2 and weak cyphers in TLS driver (closes: #724992). * Add patch (extracted from upstream) which fixes rendering of angle brackets in plain-text MUC logs (closes: #724994). Checksums-Sha1: ba7f2ae5fa90ee4086e744eda11658dffb238820 1689 ejabberd_2.1.10-4+deb7u1.dsc c1164aa00f4445cc464cc57a986cf2607315635b 1942456 ejabberd_2.1.10.orig.tar.gz 449ba099c912c5fa602d5369402ac3e19699e054 85029 ejabberd_2.1.10-4+deb7u1.diff.gz 9b52005ee7fe2679fa65d64a34431b34364e7113 1796220 ejabberd_2.1.10-4+deb7u1_i386.deb Checksums-Sha256: 8e7f3bb35edbb4351c2a52779198e093633da2ea9693f41b14cb46ab54e84034 1689 ejabberd_2.1.10-4+deb7u1.dsc 9dc2e5889e919a7d51f2b95b83da835116631db81550a115c02e71909ad932be 1942456 ejabberd_2.1.10.orig.tar.gz d9aa3e84943c43d8555215224249568fc44735caf3ec35d3f335b3303b32fb18 85029 ejabberd_2.1.10-4+deb7u1.diff.gz 334d866229aa591b83f944169c39330ccb00b5035cc3a46e2a29d08688766390 1796220 ejabberd_2.1.10-4+deb7u1_i386.deb Files: 8d392a8b6eb0052f9478aea03809bbb6 1689 net optional ejabberd_2.1.10-4+deb7u1.dsc 70f0e17983114c62893e43b6ef2e9d0c 1942456 net optional ejabberd_2.1.10.orig.tar.gz ae814e548bc5276af78cd17682084b3e 85029 net optional ejabberd_2.1.10-4+deb7u1.diff.gz 2c09be777d9aff1c2a2418a0833df1f9 1796220 net optional ejabberd_2.1.10-4+deb7u1_i386.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) iQEcBAEBCAAGBQJSVnMYAAoJEDH85+fdB5RhnzwH/3CnF+G9UUptzFxYyOrRoAqt ZUB5J1LE3lc9uEJx7JIo5dBGb42GCbNDCq7Yapl3Xf4Fey29JlFg2aDDk4ZHF3ee 02LMjFYtffGju5v7wU9c2JFOxM11vop/dJaTEUkBu8FiYUr3TaGL/8buLWolvjzb 6GL1xHLQPLN6IOV7Uuq3PzErsb7UuR0w04CsrY85M4CL06A3lOgZQPEZhGQsnOAp gFLV/StAzyehn1e01sCZcFnm9ySBFPWQ4OsXyzp2tw6OMcifCv1QJIuCaDJ4aW2J +32sHdVQIJ9cy5ox+5unycjwaR0MFyuJFut7Vp12QMoj79kYRg259wM6mTU1RSk= =l06D -----END PGP SIGNATURE-----
--- End Message ---
