Re: Using apt-file db to find possible conflicts

2008-03-21 Thread Ralf Treinen 
Hi,

On Thu, Mar 20, 2008 at 11:16:39PM -0400, Matthew Rosewarne wrote:
> On Thursday 20 March 2008, Sami Liedes wrote:
> > I don't know if there's any previous work on this, but since I as a
> > sid user often see conflicts in packages, and I've seen those on
> > numerous oldstable->stable upgrades, I thought something could be done
> > about it. Actually, most often oldstable->stable updates seem to me to
> > have been more like iterative processes, rerun dist-upgrade until no
> > errors.
> >
> > So I wrote a script[1] to get a list of packages with identically
> > named files from the apt-file database and to run `apt-get --dry-run
> > install' for each pair of these potentially conflicting packages to
> > see if apt can find a way to install both of them at the same time.
> 
> Oddly enough, I just whipped up a similar script [1] for finding conflicts 
> between kde3 and kde4 packages.  Instead of finding any conflicts between all 
> packages in a Contents-*.gz file, it finds any conflicts between a single 
> package and the any of the available apt-file lists.  It's quite stupid as it 
> doesn't bother to check for existing Conflicts or Replaces entries, and it 
> uses apt-file VERY inefficiently.
> 
> Perhaps these two scripts could be combined into something genuinely useful.

me too :-) I did something similar some time ago, but using a different
approach for testing co-installability: the edos tools. The difference
is that this tells you whether it is possible to install by a series
of manually guided installations the two packages. This might be the
case even if an "apt-get install" query to install the two packages
simultanously doesn't find it. OTOH this is still a "local" test
specific to one distribution, it does not address the problem of
upgrading from an earlier state (dist-upgrading from stable, or partially
upgrading some of the packages).

As it has been said by Matthew: the missing piece is to properly handle
diversions. If you are interested to setup a small project to solve
this I'm in.

-Ralf.


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: [DSE-Dev] New version of refpolicy headed towards incoming

2008-03-21 Thread Manoj Srivastava 
On Tue, 19 Feb 2008 08:51:17 +0100, Václav Ovsík <[EMAIL PROTECTED]> said: 

> Maybe we should test the policy first even without packaging. Changes
> can be pushed upstream before packaging the latest reference policy.

Well, the policy in Sid is now the SVN HEAD/

> Latest refpolicy is already merge of targeted & strict versions. The
> behavior of the strict or the targeted policy versions can be achieved
> by inserting/excluding "unconfined" module now AFAIK.

Which begs the question: Shouyld we drop the "strict" and
 "targeted" policies, and just ship refpolicy?

> If not this case, the SELinux module loading script (currently written
> into postinst script of policy) should be moved to some utility
> update-selinux-policy-something. Maybe even there should be some
> config file (and interface) for system administrator, so it can force
> loading some module, blacklist it or left it in default preference
> (automatic loading). Some APT hook should automaticaly load/remove
> SELinux policy packages according to configuration when counterpart
> Debian packages will be installed/removed.

Sounds like a plan.

> Ok, I setup another Debian Sid XEN domU with latest SELinux packages
> and the targeted policy from Debian archive. Hmm, I can't run semanage
> (#465053), so I can't test this now. At first, we need a newer or
> patched PAM package (#451722).

The semanage issue should now be fixed; and we need to get the
 pam bug fixed.

> I'm going to play with the latest reference policy and to sent mails
> through [EMAIL PROTECTED] and
> [EMAIL PROTECTED]  There is a very low traffic on the
> selinux-devel list and I hope, that people on [EMAIL PROTECTED]
> will fix my ideas how to the Debian-specific changes. :)

Well, you could always file wishlist bugs on Debian packages,
 you know.

manoj
-- 
Are the STEWED PRUNES still in the HAIR DRYER?
Manoj Srivastava <[EMAIL PROTECTED]>   
1024D/BF24424C print 4966 F272 D093 B493 410B  924B 21BA DABB BF24 424C

Re: source:Version and ancient dpkg-dev

2008-03-21 Thread Oohara Yuuma 
On Thu, 20 Mar 2008 19:12:44 +0900,
"Paul Wise" <[EMAIL PROTECTED]> wrote:
> I'm curious why you are using sarge? Any particular reason or just intertia?
> 
Just inertia; I forgot to buy etch DVDs.  (I don't have enough bandwidth
to do apt-get upgrade without DVDs.)

-- 
Oohara Yuuma <[EMAIL PROTECTED]>

If we know when, can we do it right?
--- TAITO "Ray Crisis"


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: source:Version and ancient dpkg-dev

2008-03-21 Thread Oohara Yuuma 
On Thu, 20 Mar 2008 14:26:31 +0100,
Raphael Hertzog <[EMAIL PROTECTED]> wrote:
> We do our best to support partial upgrades, but supporting compilation
> of (testing/unstable) packages on machines which are running a partially
> upgraded olstable is not something we target.
> 
I read the policy again and found my understanding of build dependency
was wrong.  Build dependency must be satisfied when a package is built,
but the policy doesn't say a package must declare all the necessary
packages.  I'm sorry for this noise.

-- 
Oohara Yuuma <[EMAIL PROTECTED]>

If we know when, can we do it right?
--- TAITO "Ray Crisis"


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: [Pkg-fglrx-devel] I am confused about configuration files

2008-03-21 Thread Romain Beauxis 
Le Thursday 20 March 2008 18:58:00 Artur R. Czechowski, vous avez écrit :
> So what should be the proper way to allow switching between ATI and Debian
> debs with drivers?

The packages are never to be compatible or upgradable.
To be more clear, we should even renamed them at some point.

The proper way to switch, I believe, is to apt-get remove --purge one and 
install the other one.

Now, sorry, I missed the train, what's the big deal with the remaining 
conffile ?

Romain
-- 
mama say
son, today look like a rainy day
but the food I ain't got enough
rain a fall but dutty tough

Bug#471954: ITP: lxde -- Lightweight X11 Desktop Environment

2008-03-21 Thread Andrew Lee 
Package: wnpp
Severity: wishlist
Owner: Andrew Lee <[EMAIL PROTECTED]>

* Package name: lxde
  Version : 0.2.10
  Upstream Author : Hong Jen Yee (PCMan)  <[EMAIL PROTECTED]>
* URL : http://lxde.sourceforge.net
* License : (GPL)
  Programming Lang: (C)
  Description : Lightweight X11 Desktop Environment default config data

 LXDE (the Lightweight X11 Desktop Environment) is a new project aimed
 to provide a new desktop environment which is lightweight and fast.
 .
 It's not designed to be powerful and bloated, but to be usable and slim
 enough, and keep the resource usage low.  Different from other desktop
 environments, lxde don't tightly integrate every component. Instead,
 lxde tried to make all components independent, and each of them can be
 used independently with fewer dependencies.
 .
 Features:
  - Lightweight, runs with reasonable memory usage
  - Fast, rund well even on older machines produced in 1999
  - Good-looking, GTK+ 2 internationalized user interface
  - Easy-to-use, the user interface is simple, but usable enough
  - Desktop independent (suprise! Every component can be used without LXDE)
  - Standard compliant, follows the specs on freedesktop.org
  - Suitable for old machines(old Pentium II CPU is enough).

-- System Information:
Debian Release: lenny/sid
  APT prefers unstable
  APT policy: (500, 'unstable')
Architecture: i386 (i686)

Kernel: Linux 2.6.24-1-686 (SMP w/1 CPU core)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash



-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Candidatura rete agenti | Life - Bellaria

2008-03-21 Thread Life | Rete Agenti 





Documento senza titolo







LIFE. comunicazione / commercializzazione / risor= se umane

e-mail inf= [EMAIL PROTECTED] . website www.gruppolife.net













Egregi signori,



siamo la direzione Commerciale dell'azienda = LIFE che ha sede in
Romagna e opera nel settore della commercializzazione= delle aziende
ovvero la vendita dei prodotti e servizi senza costi fissi= . La
nostra specializzazione risiede nella creazione e gestione di Reti Commerciali 
ed Uffici Commerciali in tutta Italia.




Operiamo da 5 anni in diversi settori e abbi= amo conseguito ottimi
risultati. La nostra azienda offre soluzioni collab= orative, senza
costi fissi per la vostra Azienda che vi permettono di ven= dere i
vostri prodotti e servizi in tutta Italia .



Vi spiego subito cosa significa "sen= za costi fissi per la vostra
Azienda":

LIFE si propone come Direzione Commerciale esterna, senza alcun
compenso = fisso, solo con un compenso provvigionale sui fatturati che
si sviluppera= nno. Ogni servizio di seguito proposto può
essere accolto in quest= a formula, poiché il nostro intento
è quello di entrare in = collaborazione con voi e guadagnare
dall'aumento dei vostri fatturati.

I nostri servizi senza costi fissi:



1. Ricerca e Selezione + realizzazione e = gestione rete agenti base
italia:

Realizziamo e gestiamo direttamente la vostra rete agenti su= base
Italia . Grazie al nostro servizio cureremo tutti gli aspetti necessari alla 
realizzazione egestione della vostra rete agenti dalla
ricerca = degli stessi, effettuata in base alle vostre esigenze
(mono-multimandati, = procacciatori etc.) fino alla loro gestione e
implementazione dei fattur= ati.

Superata la fase di ricerca gli agenti saranno contrattualizzati
egestiti= direttamente dal nostro ufficio così da avviare subito
la produzi= one. Ogni agente avrà un call-center dedicato per
sviluppare gli a= ppuntamenti ed aumentare i fatturati. Ci assumiamo
direttamente anche le = spese "fiscali" dell'agente (enasarco) .
Grazie al nostro softw= are di gestione degli ordini, ogni agente ed
ogni azienda che collabora con= noi potrà, in ogni momento,
conoscere la produttività. Non= dovrete occuparvi in alcun
modo della gestione della rete commerciale, m= a solo di definire le
strategie da seguire e gli obiettivi definiti di co= mune accordo.



2. Ufficio Commerciale Italia:

Life desidera offrirvi un servizio realmente utile. La nostr= a
struttura vi offre infatti la possibilità di aprire per voi un
v= ero e proprio ufficio commerciale che curerà direttamente i
vostri = interessi legaalla commercializzazione dei vostri prodotti e
servizio ed i= noltre fungerà da coordinamento degli agenti o
dei partner commerc= iali. Abbiamo realizzato un software gestionale
ad-hoc attraverso il qual= e la vostra azienda, i vostri agenti e noi
potremo in ogni momento conosc= ere il volume dei fatturati e la
gestione di ogni singolo ordine. L'uffic= io commerciale, inoltre,
ricerca e propone nuove vie commerciali per i vo= stri prodotti
monitorando costantemente il mercato. Fra i suoi compiti il= vostro
ufficio commerciale provvede a:



ricercare nuovi clienti;

proporre i vostri prodotti;

ricevere e gestire gli ordini;

definire le strategie di mercato;

gestire gli agenti;

controllare i fatturati;

pianificare l'agenda agente \ partner;



Avrete un pull di operatori che lavorano per voi e soprattutto
controllan= o la produzione dei vostri agenti.



3. Ricerca partner:

Per quelle aziende che non necessitano di una rete agenti oppure hanno 
desiderio di creare una rete di partner che rivendano i loro
prodott= i e servizi è possibile realizzare una ricerca
partner. Tali azien= de, ricercate su tutto il territorio nazionale,
saranno contattate dirett= amente dal nostro ufficio e
contrattualizzate come "aziende convenzi= onate" o altra formula
definita successivamente . Queste saranno il = vostro punto vendita e
porteranno il vostro prodotto o servizio a conosce= nza del cliente
finale. Anche qui il nostro guadagno risiede in una perce= ntuale
sulle vendite. Ogni attività necessaria: dalla ricerca 
allacontrattualizzazione del partner sarà a nostro carico salvo
diver= si accordi fra le nostre parti.



4. E-commece:

Vi sono situazioni in cui la rete agenti o la ricerca partner no= n
sono indispensabili e spesso occorre solo una piattaforma di vendita
di= retta che può essere rivolta al rivenditore oppure al
finale. Conosc= endo i costi per la realizzazione di un e-commerce
abbiamo pensato ad una= soluzione senza costi fissi, la quale mantiene
la stessa filosofia di gu= adagno sul fatturato. Realizzeremo un
e-commerce inserendo i vostri prodo= tti a cui potrete accedere per
implementare prodotti e servizi in ogni mo= mento, controllare gli
ordini e sviluppare autonomamente il vostro busine= ss su internet.
Questo servizio può essere associato successivamen= te a
campagne promozionali su internet per aumentare le vendite.



5. Grafica e comunicazione:

Molte aziend

Re: [DSE-Dev] Debian refpolicy and core SELinux package update

2008-03-21 Thread Václav Ovsík 
Hi,

On Wed, Mar 19, 2008 at 11:01:40PM -0500, Manoj Srivastava wrote:
> Hi,
> 
> As of this writing, all the core SELinux packages in Debian have
>  been updated to the latest release earlier this month; and thus are
>  fairly up to date.
> 
> I have also merged SVN HEAD of refpolicy into the Debian
>  package, and thus the refpolicy packages uploaded tonight will have the
>  latest refpolicy changes.
> 
> I am beginning to come back from a deadline crunch on my day
>  job, and start paying attention to my Debian packages again; so
>  hopefully the state of SELinux in Debian will improve -- at least, I'll
>  try to be more reactive in the future.

Fine to read this. Thanks.

> anyway, kick the tyres, look at the Debian diffs with regards to
>  the upstream refpolicy.  We should have a dialog about which changes
>  need to be purged, and which should be fed upstream.

I have already some open threads over [EMAIL PROTECTED] I hope they
will continue to some final state.
Maybe the discussion about SELinux problems can be managed
on [EMAIL PROTECTED] now.
I'm going to post something...

Besides refpolicy, we must consider patching some user tools, so they
work fine with SELinux.  I think we should adopt some patches from
Fedora to vim, coreutils,  It could be annoying to run restorecon
after every editing of a config file. Also star should be bumped to some
newer version, so we could have at least one tool capable of backup
extended attributes
(http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=454745).

Regards
-- 
Zito


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#471965: ITP: mozilla-webmailnotifier -- WebMail Notifier checks your webmail accounts and notifies unread emails

2008-03-21 Thread Philippe Coval 
Package: wnpp
Severity: wishlist
Owner: Philippe Coval <[EMAIL PROTECTED]>


* Package name: mozilla-webmailnotifier
  Version : 1.0.9
  Upstream Author : Byungwook Kang 
* URL : http://webmailnotifier.mozdev.org
* License : MPL 1.1/GPL 2.0/LGPL 2.1
  Programming Lang: Javascript
  Description : WebMail Notifier checks your webmail accounts and notifies 
unread emails

This plugin will save you time, when you only have a webmail access to check 
your email,
 it polls the server and parse for new mail, many webmails are supported and it 
can be easly
 extended for instance, I created a script for servers running squierrelmail.

  http://rzr.online.fr/q/webmail

Actually it's more a RFP than ITP 
  because I am about to upload a version to mentors.d.o (check prev url)



-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: Using apt-file db to find possible conflicts

2008-03-21 Thread Andrew Dougherty 
From: Ralf Treinen <[EMAIL PROTECTED]>
Subject: Re: Using apt-file db to find possible conflicts
Date: Fri, 21 Mar 2008 09:27:31 +0100

> Hi,
> 
> On Thu, Mar 20, 2008 at 11:16:39PM -0400, Matthew Rosewarne wrote:
> > On Thursday 20 March 2008, Sami Liedes wrote:
> > > I don't know if there's any previous work on this, but since I as a
> > > sid user often see conflicts in packages, and I've seen those on
> > > numerous oldstable->stable upgrades, I thought something could be done
> > > about it. Actually, most often oldstable->stable updates seem to me to
> > > have been more like iterative processes, rerun dist-upgrade until no
> > > errors.
> > >
> > > So I wrote a script[1] to get a list of packages with identically
> > > named files from the apt-file database and to run `apt-get --dry-run
> > > install' for each pair of these potentially conflicting packages to
> > > see if apt can find a way to install both of them at the same time.
> > 
> > Oddly enough, I just whipped up a similar script [1] for finding conflicts 
> > between kde3 and kde4 packages.  Instead of finding any conflicts between 
> > all 
> > packages in a Contents-*.gz file, it finds any conflicts between a single 
> > package and the any of the available apt-file lists.  It's quite stupid as 
> > it 
> > doesn't bother to check for existing Conflicts or Replaces entries, and it 
> > uses apt-file VERY inefficiently.
> > 
> > Perhaps these two scripts could be combined into something genuinely useful.
> 
> me too :-) I did something similar some time ago, but using a different
> approach for testing co-installability: the edos tools. The difference
> is that this tells you whether it is possible to install by a series
> of manually guided installations the two packages. This might be the
> case even if an "apt-get install" query to install the two packages
> simultanously doesn't find it. OTOH this is still a "local" test
> specific to one distribution, it does not address the problem of
> upgrading from an earlier state (dist-upgrading from stable, or partially
> upgrading some of the packages).
> 
> As it has been said by Matthew: the missing piece is to properly handle
> diversions. If you are interested to setup a small project to solve
> this I'm in.
> 
> -Ralf.
> 
> 
> -- 
> To UNSUBSCRIBE, email to [EMAIL PROTECTED]
> with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Since there is so much work on this I'd like to propose to use this
tool to solve another problem.  I like to install lots of software on
one system but often times packages cannot be installed simultaneously
because they depend on conflicting packages.  I would like some way to
visualize this for the whole collection, to see which packages
conflict.  Some classification system for conflicts should be made
(like essential, removable, etc.) and then we'd know where to apply
our efforts.  This wasn't a very good description of the tool, but in
general it would be nice to visualize, reason with the mathematical
object that is the depends/conflicts graph.


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: Using apt-file db to find possible conflicts

2008-03-21 Thread Andrew Dougherty 
> Hi,
> 
> I don't know if there's any previous work on this, but since I as a
> sid user often see conflicts in packages, and I've seen those on
> numerous oldstable->stable upgrades, I thought something could be done
> about it. Actually, most often oldstable->stable updates seem to me to
> have been more like iterative processes, rerun dist-upgrade until no
> errors.

This is very interesting.  Can you release the tool.  I need it for my
project the FRDCSA (http://frdcsa.org).


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

.desktop files for x-www-browser and x-terminal-emulator

2008-03-21 Thread Enrico Zini 
Hello,

It has been brought to my attention that we don't have .desktop files
to launch what is the standard Debian way to launch web browsers and
terminal emulators: how come?


Ciao,

Enrico

-- 
GPG key: 1024D/797EBFAB 2000-12-05 Enrico Zini <[EMAIL PROTECTED]>


signature.asc
Description: Digital signature

Re: Using apt-file db to find possible conflicts

2008-03-21 Thread Matthew Rosewarne 
Would the collab-qa or devscripts teams be interested in working on and/or 
hosting this tool?


signature.asc
Description: This is a digitally signed message part.

Re: Bug#471954: ITP: lxde -- Lightweight X11 Desktop Environment

2008-03-21 Thread Andrei Popescu 
On Fri, Mar 21, 2008 at 06:32:10PM +0800, Andrew Lee wrote:

[...]

>   - Fast, rund well even on older machines produced in 1999
[...]
>   - Suitable for old machines(old Pentium II CPU is enough).
 
Maybe you could merge those two lines?

Regards,
Andrei
-- 
If you can't explain it simply, you don't understand it well enough.
(Albert Einstein)


signature.asc
Description: Digital signature

Re: .desktop files for x-www-browser and x-terminal-emulator

2008-03-21 Thread Eduard Bloch 
#include 
* Enrico Zini [Fri, Mar 21 2008, 10:21:53PM]:
> Hello,
> 
> It has been brought to my attention that we don't have .desktop files
> to launch what is the standard Debian way to launch web browsers and
> terminal emulators: how come?

Good question. A while ago I was looking for a reliably available icon
for the x-www-browser shortcut in IceWM, and that was also troublesome.
I think we should have a small package shipping such meta files for
Debian specific wrappers.

Regards,
Eduard.


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: Using apt-file db to find possible conflicts

2008-03-21 Thread Adeodato Simó 
* Sami Liedes [Fri, 21 Mar 2008 04:34:36 +0200]:

> I don't know if there's any previous work on this,

There is . I
don't know how it compares to your code.

Cheers,

-- 
Adeodato Simó dato at net.com.org.es
Debian Developer  adeodato at debian.org
 
When you don't know what to do, walk fast and look worried.


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: Version numbering for security uploads of native packages

2008-03-21 Thread Moritz Muehlenhoff 
On 2008-03-16, Adam D. Barratt <[EMAIL PROTECTED]> wrote:
> On Sun, 2008-03-16 at 03:47 -0700, Steve Langasek wrote:
>> The current binNMU numbering scheme was selected explicitly to allow
>> security uploads to sort later by numbering as
>> +; e.g., 1.2-5.1+etch1.
>
> That makes sense, although doesn't seem to match current practice. Was
> any consideration given as to where NMUs of native packages should sort?
> (I realise that they're the only case that doesn't automagically dtrt
> with respect to the numbering scheme).

We'll adapt our practise to use +etchX for security updates.

Cheers,
Moritz


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

SELinux overhead

2008-03-21 Thread Pierre THIERRY 
Is there available data about the overhead of enforcing various SELinux
policies?

Quantitatively,
Pierre
-- 
[EMAIL PROTECTED]
OpenPGP 0xD9D50D8A


signature.asc
Description: Digital signature

Architecture not in legend in %-built graphs on buildd.d.o

2008-03-21 Thread Kevin B. McCarty 
Hi list,

I'm not sure where to send this comment, so I guess debian-devel will
have to do.

The per-architecture "percent built" graphs at
http://buildd.debian.org/stats/ -- for instance, see
http://buildd.debian.org/stats/graph-week-big.png -- show 13 arches on
the plot but only 12 in the legend.  The 13th arch is represented by a
light gray, circled X and is currently at about 87.5% built packages, a
bit below the line for "mips".

Is this the symbol for armel?  It should be added to the legend,
whatever it is.

best regards,

-- 
Kevin B. McCarty <[EMAIL PROTECTED]>
WWW: http://www.starplot.org/
WWW: http://people.debian.org/~kmccarty/
GPG: public key ID 4F83C751



signature.asc
Description: OpenPGP digital signature

Re: [DSE-Dev] Debian refpolicy and core SELinux package update

2008-03-21 Thread Manoj Srivastava 
Hi,

On Fri, 21 Mar 2008 12:52:53 +0100, Václav Ovsík <[EMAIL PROTECTED]> said: 


> I have already some open threads over [EMAIL PROTECTED] I hope
> they will continue to some final state.  Maybe the discussion about
> SELinux problems can be managed on
> [EMAIL PROTECTED] now.  I'm going to post
> something...

Well, I do read those lists. But if you see concrete problems
 with Debian packages, or things you wish to be in the Debian ref
 policy, please do continue to file bugs with the BTS; there is less
 chance that anything will be overlooked that way.

> Besides refpolicy, we must consider patching some user tools, so they
> work fine with SELinux.  I think we should adopt some patches from
> Fedora to vim, coreutils,   

Absolutely. I think there used to be a usertag, with the user
 set to the alioth dev mailing list, that we used to tag bugs with
 selinux patches with so they could be followed. Perhaps it is time to
 resurect that practice.

> It could be annoying to run restorecon after every editing of a config
> file. Also star should be bumped to some newer version, so we could
> have at least one tool capable of backup extended attributes
> (http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=454745).

Perhaps a wish list bug is in order?

manoj
-- 
Don't go to bed with no price on your head. Baretta
Manoj Srivastava <[EMAIL PROTECTED]>   
1024D/BF24424C print 4966 F272 D093 B493 410B  924B 21BA DABB BF24 424C

Re: Using apt-file db to find possible conflicts

2008-03-21 Thread Sami Liedes 
On Fri, Mar 21, 2008 at 09:11:05AM -0500, Andrew Dougherty wrote:
> > Hi,
> > 
> > I don't know if there's any previous work on this, but since I as a
> > sid user often see conflicts in packages, and I've seen those on
> > numerous oldstable->stable upgrades, I thought something could be done
> > about it. Actually, most often oldstable->stable updates seem to me to
> > have been more like iterative processes, rerun dist-upgrade until no
> > errors.
> 
> This is very interesting.  Can you release the tool.  I need it for my
> project the FRDCSA (http://frdcsa.org).

Sure. I added a GPLv2+ header to the Python script, still available at
http://www.hut.fi/~sliedes/pkgconflicts/
.

I don't consider findconflicts.sh to be complex enough to be
copyrightable, but if it is, I hereby release it to the public domain.

Sami


signature.asc
Description: Digital signature

Re: .desktop files for x-www-browser and x-terminal-emulator

2008-03-21 Thread Luca Capello 
Hello!

On Fri, 21 Mar 2008 17:14:49 +0100, Eduard Bloch wrote:
> #include 
> * Enrico Zini [Fri, Mar 21 2008, 10:21:53PM]:
>> It has been brought to my attention that we don't have .desktop files
>> to launch what is the standard Debian way to launch web browsers and
>> terminal emulators: how come?
>
> Good question. A while ago I was looking for a reliably available icon
> for the x-www-browser shortcut in IceWM, and that was also troublesome.
> I think we should have a small package shipping such meta files for
> Debian specific wrappers.

I'd suggest debianutils, since it provides at least sensible-browser,
but it misses sensible-terminal-emulator.

Thx, bye,
Gismo / Luca


pgpUK3jf1cbcl.pgp
Description: PGP signature

Re: Installation of suggested packages: recursive or not?

2008-03-21 Thread Charles Plessy 
Le Thu, Mar 20, 2008 at 08:13:30AM -0700, Daniel Burrows a écrit :
> 
>   BTW, aptitude already supports non-recursively installing Suggests, and
> flagging them as manual at the same time: "~Rsuggests:^package$" will
> install everything that's directly suggested by "package".

Dear Daniel,

Thanks for the suggestion. Do you think that there could be an option
that does the same except that the package would be flagged "auto" ? If
you are busy I can help updating the documentation. I would like to
provide an easy to remember way to perform this task for the users of
the packages I mentioned earlier (med-bio, t-coffee, bioperl).

Have a nice day,

-- 
Charles Plessy
http://charles.plessy.org
Wakō, Saitama, Japan


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: SELinux overhead

2008-03-21 Thread Kevin Mark 
On Fri, Mar 21, 2008 at 07:48:40PM +0100, Pierre THIERRY wrote:
> Is there available data about the overhead of enforcing various SELinux
> policies?
> 
> Quantitatively,
> Pierre
Is this in comparison to 'having SELinux support' which is what I
understand was the case for Etch.
-k
-- 
|  .''`.  == Debian GNU/Linux == |   my web site:   |
| : :' :  The  Universal |mysite.verizon.net/kevin.mark/|
| `. `'  Operating System| go to counter.li.org and |
|   `-http://www.debian.org/ |be counted! #238656   |
|  my keyserver: subkeys.pgp.net | my NPO: cfsg.org |
|join the new debian-community.org to help Debian!  |
|___  Unless I ask to be CCd, assume I am subscribed ___|


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: SELinux overhead

2008-03-21 Thread Manoj Srivastava 
On Fri, 21 Mar 2008 19:48:40 +0100, Pierre THIERRY
<[EMAIL PROTECTED]> said:  

> Is there available data about the overhead of enforcing various
> SELinux policies?

I do not have data, no, But I recall a talk at the SELinux
 symposium a couple of years ago which pegged the  overhead of a strict
 policy in enforcing mode to about 6-7% under "typical" load.

manoj
-- 
"All the people are so happy now, their heads are caving in.  I'm glad
they are a snowman with protective rubber skin" -- They Might Be Giants
Manoj Srivastava <[EMAIL PROTECTED]>   
1024D/BF24424C print 4966 F272 D093 B493 410B  924B 21BA DABB BF24 424C


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]