Enrico Zini, 2009-02-22 23:15:36 + :
> But did I recall reading that Alioth, or debian.org, can be OpenID
> providers?
Not currently. Every once in a while somebody pops up and talks about
implementing an OpenID provider plugin, but it hasn't appeared yet.
If someone feels like going furth
Hi,
2009/2/20, Steve Langasek :
> Also unsurprisingly (to me, given my observations that had led to the post
> in the first place), no one else has yet stepped up to be an alpha porter
> for squeeze.
I am volunteer to apply as alpha porter. I have several alpha machines
of my own, which makes it
Sam Hartman wrote:
Hi,
> That is, if I made the dependency in libkrb5-3.symbols look like
> libkrb5-3|libkrb53 (and similar changes for other symbols files), then
> both the packages in unstable and testing would satisfy the
> dependencies. It seems like this would significantly reduce the
> im
On Mon, Feb 23, 2009 at 11:00:06AM +1100, Ben Finney wrote:
> > and a whitelist of identity providers that every DD can easily use
> > (like alioth or debian)
>
> What of those that use an OpenID provider not on the whitelist? (I
> imagine some not insignificant number of hackers run their own
>
Package: wnpp
Severity: wishlist
Owner: Edward Betts
* Package name: libdata-pageset-perl
Version : 1.05
Upstream Author : Leo Lapworth
* URL : http://search.cpan.org/dist/Data-Pageset/
* License : Artistic | GPL-1+ (like perl)
Programming Lang: Perl
Descr
On Mon, 23 Feb 2009, Enrico Zini wrote:
> If Debian were an OpenID provider, then using the Debian OpenID could
> automatically give some authorization, like assuming that one is a DD.
> That could have been handy, but indeed not particularly needed.
As openid provides no security whatsoever ther
Enrico Zini writes:
> On Mon, Feb 23, 2009 at 11:00:06AM +1100, Ben Finney wrote:
>
> > What of those that use an OpenID provider not on the whitelist? […
> > What of non-DDs who do not necessarily have an account on any of those
> > services […]?
>
> Fair enough, any OpenID server will probabl
Noah Slater writes:
> On Sun, Feb 22, 2009 at 05:18:39PM -0800, Asheesh Laroia wrote:
>> I think that the description explains that the purpose is to find hidden
>> directories on web servers, presumably either your own or other people's.
>
> Why would you need to find directories on your own serv
Hi,
* Don Armstrong [2009-02-23 10:07]:
> On Mon, 23 Feb 2009, Paul Wise wrote:
[...]
> It'd also be best if this package didn't refer to invented terminology
> like "forced browsing" and instead said what it actually does (return
> the subset of HEAD requests that return 200 from a generated
> w
Peter Palfrader writes:
> On Mon, 23 Feb 2009, Enrico Zini wrote:
>
> > If Debian were an OpenID provider, then using the Debian OpenID
> > could automatically give some authorization, like assuming that
> > one is a DD. That could have been handy, but indeed not
> > particularly needed.
>
> As
On Mon, 23 Feb 2009, Ben Finney wrote:
> > As openid provides no security whatsoever
>
> Just like an email address, an OpenID is good for identity; security
> needs to be dealt with in a separate layer, just as with email. I
> don't know who promised OpenID ???provides security???, or expects it
Peter Palfrader writes:
> What's the point of an identity if you can't rely on it to be really
> that identity? Authentication that is trivally bypassed or forged is
> not really useful.
This thread [0] isn't the place to debate how useful OpenID is for
those who choose to use it.
I invite anyo
> "Julien" == Julien BLACHE writes:
Julien> Sam Hartman wrote: Hi,
>> That is, if I made the dependency in libkrb5-3.symbols look
>> like libkrb5-3|libkrb53 (and similar changes for other symbols
>> files), then both the packages in unstable and testing would
>> satisfy
> "Sam" == Sam Hartman writes:
> "Julien" == Julien BLACHE writes:
Julien> Sam Hartman wrote: Hi,
>>> That is, if I made the dependency in libkrb5-3.symbols look
>>> like libkrb5-3|libkrb53 (and similar changes for other symbols
>>> files), then both the packages in uns
Package: wnpp
Severity: wishlist
Owner: Thomas Dreibholz
* Package name: rsplib
Version : 2.6.0
Upstream Author : Thomas Dreibholz
* URL : http://tdrwww.iem.uni-due.de/dreibholz/rserpool/
* License : GPL version 3
Programming Lang: C, C++
Description
Sam Hartman wrote:
Hi,
> Julien> Have you considered uploading a version of krb5 with: -
> Julien> libkrb5-3 - libkrb4-? - libkrb53 a metapackage depending
> Julien> on both of the above - libkrb5-dev depending on libkrb5-3
> Julien> alone and containing only the files needed to
On Mon, Feb 23, 2009 at 09:59:31AM +0100, Arthur Loiret wrote:
>
> 2009/2/20, Steve Langasek :
> > Also unsurprisingly (to me, given my observations that had led to the post
> > in the first place), no one else has yet stepped up to be an alpha porter
> > for squeeze.
>
> I am volunteer to apply
> "Julien" == Julien BLACHE writes:
I really appreciate your help here!
Julien> As you note in your second reply, the goal is to decouple
Julien> the packaging change from the krb4 dismissal: 1 introduce
Julien> libkrb5-3 (Replaces: libkrb53), with libkrb53 depending on
Julie
Sam Hartman wrote:
> I really appreciate your help here!
Thanks!
> I'm sorry, but I don't see how I get stuck in unstable if I start out
> with the libkrb5-3 shlibs and symbols files pointing to libkrb5-3
> rather than libkrb53. As I understand it, rdeps can only hold me in
> unstable if movin
Sam Hartman wrote:
Hi,
> OK, so I think we're all set.
>
> The plan now is to
Looks good!
> 1) Build twice, once into build and once into build-krb4. We only
> pull libkrb4.so out of build-krb4. 2) Move all the libraries out of
> libkrb53 and libkadm55 (sorry, in my previous mails I was si
OK, so I think we're all set.
The plan now is to
1) Build twice, once into build and once into build-krb4. We only
pull libkrb4.so out of build-krb4. 2) Move all the libraries out of
libkrb53 and libkadm55 (sorry, in my previous mails I was simplifying
a bit) except for libkrb4.so.2.
3) Make
On Mon, Feb 23, 2009 at 01:06:38PM +0100, Bjørn Mork wrote:
> Noah Slater writes:
> > On Sun, Feb 22, 2009 at 05:18:39PM -0800, Asheesh Laroia wrote:
> >> I think that the description explains that the purpose is to find hidden
> >> directories on web servers, presumably either your own or other p
Jörg Sommer wrote:
>>> But I can get the files dpkg installs in /etc. That's enough for the
>>> first step. I don't want to create an AI that does everything right. One
>>> step after the other!
>>
>> No, dpkg installs _nothing_ in /etc for ucf related files
>
> Right, but your are mixing
On Mon, Feb 23, 2009 at 09:24:17PM +0100, Frank Küster wrote:
> > (1) I use the
> > hooks provided by apt to get the original files from the
> > package
>
> In other words, with ucf you get NOTHING, since there are no original
> files in the package. They are only created temporarily while postins
Package: wnpp
Severity: wishlist
Owner: Antonio Radici
* Package name: libgstreamer-interfaces-perl
Version : 0.04
Upstream Author : Torsten Schönfeld
* URL : http://search.cpan.org/dist/GStreamer-Interfaces/
* License : GPL-1+ | Artistic
Programming Lang:
* Hendrik Sattler [2009-02-21 16:43]:
> Am Samstag 21 Februar 2009 11:29:19 schrieb Rafael Laboissiere:
> > Package: wnpp
> > Severity: wishlist
> > Owner: Rafael Laboissiere
> >
> > * Package name: skysentials
> > Version : 1.0.1
> > Upstream Author : Philipp Kolmann
> > * URL
Peter Palfrader wrote:
As openid provides no security whatsoever there's probably not a big
chance of us (as in DSA) hopping onto the openid hype any time soon.
openid could be secure - e.g. by enforcing https everywhere, always
checking the remote certificate properly, never using password
Ben Finney wrote:
I invite anyone interested in knowing how the distinct areas of
identity, trust, and security intersect with the OpenID system, to
research the available documentation.
...except openid has serious issues with establishing identity in a
secure manner. Especially if the ser
> "Brian" == Brian May writes:
Brian> Ben Finney wrote:
>> I invite anyone interested in knowing how the distinct areas of
>> identity, trust, and security intersect with the OpenID system,
>> to research the available documentation.
>>
Brian> ...except openid has se
On Mon, 23 Feb 2009, Sam Hartman wrote:
> I find it deeply ironic that I'm arguing against security. However,
> let's remember that we're talking about debtags. It's always
> important to think about your threat model and about how much
> complexity you're willing to spend in order to get securi
Package: wnpp
Severity: wishlist
Owner: Debian Xfce Maintainers
* Package name: xfconf
Version : 4.6.0
Upstream Author : Brian J. Tarricone
Stephan Arts
* URL : http://www.xfce.org/
* License : GPL-2
Programming Lang: C
Description
On Tue, 24 Feb 2009 00:15:37 +0100
Rafael Laboissiere wrote:
> > > Architecture: amd64 (x86_64)
> >
> >
> > That is strange: you depend on a package that is neither in Debian nor
> > available for amd64 (skype.com only offer i386).
>
> Yes you are right, this is not appropriate. Changing the
Package: wnpp
Severity: wishlist
Owner: Debian Xfce Maintainers
* Package name: xfce4-settings
Version : 4.6.0
Upstream Authors: Stephan Arts
Brian J. Tarricone
Jannis Pohlmann
* URL : http://www.xfce.org/
* License :
Package: wnpp
Severity: wishlist
Owner: Debian Xfce Maintainers
* Package name: libxfce4menu
Version : 4.6.0
Upstream Author : Jannis Pohlmann
* URL : http://www.xfce.org.org/
* License : GPL-2+
Programming Lang: C
Description : freedesktop.org compl
34 matches
Mail list logo
