Re: greater popularity of Debian on AMD64?
On 09/06/2012 05:37 AM, Patrick Matthäi wrote: > Am 05.09.2012 23:24, schrieb martin f krafft: > >> I said fglrx — because its binary-only version caused regular >> crashes and headaches for Linux users. >> >> > Which is ATM more useful as nvidia prop. ones. And AMD (not the ATI in > the past) is in general interested (and already legaly checked) in > opening fglrx, but it fails with third party foo... > Anyway AMD in general is doing quite much for the OSS community, why it > is IMO fud. > Would you then advise for an AMD card over Nvidia? Is it better supported, and integrate with the standard desktop screen switcher(s), like xrandr and friends? Just curious, and willing to know what to buy... Thomas -- To UNSUBSCRIBE, email to debian-devel-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/50485805.3010...@debian.org
Re: greater popularity of Debian on AMD64?
Le jeudi 06 septembre 2012 à 16:00 +0800, Thomas Goirand a écrit : > Would you then advise for an AMD card over Nvidia? > Is it better supported, and integrate with the standard > desktop screen switcher(s), like xrandr and friends? Yes AMD is better supported, but for some models the performance is atrocious. You can’t even run a fullscreen video in a 3D WM if your hardware is not recent enough. -- .''`. Josselin Mouette : :' : `. `' `- -- To UNSUBSCRIBE, email to debian-devel-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/1346919048.5038.60.camel@pi0307572
Re: greater popularity of Debian on AMD64?
Am 06.09.2012 10:10, schrieb Josselin Mouette: Le jeudi 06 septembre 2012 à 16:00 +0800, Thomas Goirand a écrit : Would you then advise for an AMD card over Nvidia? Is it better supported, and integrate with the standard desktop screen switcher(s), like xrandr and friends? Yes AMD is better supported, but for some models the performance is atrocious. You can’t even run a fullscreen video in a 3D WM if your hardware is not recent enough. A little bit offtopic. I didn't wanted to advertise to buy AMD GPUs (where the topic itself is about the CPU architecture), just wanted to argument against random old rants. Cheers -- To UNSUBSCRIBE, email to debian-devel-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/50485cdf.3030...@debian.org
Re: Status of circular dependencies in Sid
Bill Allombert writes ("Status of circular dependencies in Sid"):
> Today circular dependencies in unstable reached an all-time low, with
> only 36 circular dependencies.
There is still nothing per se wrong with circular dependencies and
there are situations where a circular dependency is the right answer.
Ian.
--
To UNSUBSCRIBE, email to debian-devel-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/20552.37570.423522.36...@chiark.greenend.org.uk
Re: Status of circular dependencies in Sid
Le jeudi 06 septembre 2012 à 13:10 +0100, Ian Jackson a écrit : > There is still nothing per se wrong with circular dependencies and > there are situations where a circular dependency is the right answer. I have yet to see one such situation. -- .''`. Josselin Mouette : :' : `. `' `- -- To UNSUBSCRIBE, email to debian-devel-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/1346934574.5038.86.camel@pi0307572
Bug#686834: ITP: chive -- Chive is a free, open source, web-based database management tool, designed to bring joy to web developers - with easy administration, super fast UI and state of the art web t
Package: wnpp Severity: wishlist Owner: Kevin Gravier * Package name: chive Version : 1.1-1 Upstream Author : Kevin Gravier * URL : http://www.chive-project.com/ * License : GPLv3 Programming Lang: PHP5 Description : Chive is a free, open source, web-based database management tool, designed to bring joy to web developers - with easy administration, super fast UI and state of the art web technologies. -- To UNSUBSCRIBE, email to debian-devel-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20120906141100.23553.46229.report...@kevin.flux
Re: Enabling uupdate to simply remove files from upstream source (Was: Minified javascript files)
On Thu, Sep 06, 2012 at 03:36:11PM +0200, Mehdi Dogguy wrote: > > I think he was mentioning another method that helps maintainers to > automatically clean the imported tarball when importing it. IIRC, > this method has been added to git-import-orig circa DebConf9. Its > use is very simple, IMHO. Did you try to see how it works? (at > least, its interface). > > See > http://anonscm.debian.org/gitweb/?p=pkg-ocaml-maint/packages/why.git;a=blob;f=debian/gbp.conf;h=4435dcbe6d877cec7f562e8757939b7e98ecf5d8;hb=HEAD > for how to configure it. Thanks for the additional clarification. I think the idea to specify the files to be deleted in a config file is pretty the same. I admit I gave up following the object hierarchy of the moduls git-import-orig is actually using after the fourth or fifth level ... uscan is Perl anyway and the implementation will be probably similar in the end. Thanks for the hint anyway Andreas. -- http://fam-tille.de -- To UNSUBSCRIBE, email to debian-devel-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20120906150426.ga4...@an3as.eu
Re: Enabling uupdate to simply remove files from upstream source (Was: Minified javascript files)
On 05/09/2012 22:11, Andreas Tille wrote: On Tue, Sep 04, 2012 at 08:19:29PM +0200, Stéphane Glondu wrote: Le 17/08/2012 13:08, Andreas Tille a écrit : So we finally have three independently developed solutions (we also have several instances of a debian/get-orig-source script in Debian Med team) and my suggestion was just to settle with a common and simple solution. This should be pretty simple to implement (I'd volunteer to do this but wanted to seek for comments before filing a bug report + patch). There is also the --filter-pristine-tar option to git-import-orig, which can be specified in debian/gbp.conf. We routinely use it in the OCaml team (see e.g. why). I'm not sure whether I understand what you want to tell here. Do you think git-import-orig should filter out / remove files mentioned in debian/copyright field Files-Excluded? I think he was mentioning another method that helps maintainers to automatically clean the imported tarball when importing it. IIRC, this method has been added to git-import-orig circa DebConf9. Its use is very simple, IMHO. Did you try to see how it works? (at least, its interface). See http://anonscm.debian.org/gitweb/?p=pkg-ocaml-maint/packages/why.git;a=blob;f=debian/gbp.conf;h=4435dcbe6d877cec7f562e8757939b7e98ecf5d8;hb=HEAD for how to configure it. Regards, -- Mehdi Dogguy مهدي الدڤي http://dogguy.org/ -- To UNSUBSCRIBE, email to debian-devel-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/5048a6cb.2080...@dogguy.org
Re: greater popularity of Debian on AMD64?
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 On 05.09.2012 19:36, W. Anderson wrote: > It is somewhat surprising and a little disappointing that Debian, > or any other GNU/Linux distribution would be making statements > that, in effect, give great public support to AMD in regard Linux, > when the company has for many years been decidedly ambivalent and > generally uncooperative towards the Linux community, particularly > in cooperation with Microsoft in their negative attitudes and > /_actions _/toward Free/Open Source Software communities. AMD64 is only the name of the architecture. It is also used by other manufacturers and doesn't advertise AMD. https://en.wikipedia.org/wiki/Amd64 - -- Mika Suomalainen -BEGIN PGP SIGNATURE- Version: GnuPG v2.0.19 (GNU/Linux) Comment: Public key: http://mkaysi.github.com/PGP/0x82A46728.txt Comment: gpg --fetch-keys http://mkaysi.github.com/PGP/0x82A46728.txt Comment: Fingerprint = 24BC 1573 B8EE D666 D10A AA65 4DB5 3CFE 82A4 6728 Comment: I have personal problem with PGP/MIME... Comment: ...so signature *IS* long. See http://git.io/6FLzWg Comment: Please remove PGP lines in replies. http://git.io/nvHrDg Comment: Charset of this message should be UTF-8. Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iQIcBAEBCgAGBQJQSM0YAAoJEE21PP6CpGcoJpwQAKOlTh9V/1JYq3xUOKZTu3xy Mj4uUfTW0gR7GmGecUXF4/ayR3TVytUPMStP5kdkEIeBQsgnNx9ys04wVSWh9fkt uSPOt2YJTq8ApLfDhNVhzmb8uy6TE5NSLHQweJEYmqfO9r7xdNqvmSudvik5nQ9+ suLsI9jGFT1H/I7TlMiI58MrZnBR3MP2IN/NtlAvK7zEhdIKdJNfARdmp+KwOhIH R6k3pZfrax9zTDcotk930D1BPbx22R+mUhEP3idNlNc2aVMWF/vhZ/IWq1W2x0SE BaW/MG/WkROmagKVXg+BPOSxttjXIjDhfMOXk28qcqVeR6tk0fBKoH7DWIHFi/nl x1BAayJPIFAnZ7BbPqo7TPmHq12pOf2GBi7UZQp9UhQqPa2wQ6OrDMcog1f1+ogf J8Gd/pRKETn2wEU0zQIirlOPSi+jdyn/FwbI4q1v2P9FCKBDxCAJhHA3X5ujDNAC NFZUOJZQFB3Pve5JVe7B+rSRLhf4f/WMw2CVqrCa5Zg581hn+2/V1v4l/rG5lw/K p1ZKDweAwFWrmpRVCgVqGbm0OJ3zBWoTXs0bghlHrlimjSY9vnSehwpWGDq4kU3m Y4joQ36drkwLlXX54szaPS11jXieXBBFBwtuhEhZGRUnjw7U9WKxff7zui067tKV gUd+S054deswH06Fc/tm =HGHC -END PGP SIGNATURE- -- To UNSUBSCRIBE, email to debian-devel-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/5048cd1b.9010...@users.sourceforge.net
Re: BSP in Alcester, GB
On Thu, Sep 06, 2012 at 06:59:29PM +0100, Jonathan Wiltshire wrote: > I will host a BSP at our home in Alcester, Warwickshire between 12th and > 14th October 2012. > > Please register on the wiki [1] as we have limited room. Oh, that is: 1: http://wiki.debian.org/BSP/2012/10/gb/Alcester -- Jonathan Wiltshire j...@debian.org Debian Developer http://people.debian.org/~jmw 4096R: 0xD3524C51 / 0A55 B7C5 1223 3942 86EC 74C3 5394 479D D352 4C51 i have six years of solaris sysadmin experience, from 8->10. i am well qualified to say it is made from bonghits layered on top of bonghits signature.asc Description: Digital signature
Re: Discussion of uscan enhancement 1 (Was: uscan enhancement take 3: script hook)
Hi Nicolas,
On Wed, Sep 05, 2012 at 01:17:47AM +0200, Nicolas Boulenguez wrote:
>
> diff --git a/scripts/uscan.pl b/scripts/uscan.pl
> index 649f822..34e31a9 100755
> --- a/scripts/uscan.pl
> +++ b/scripts/uscan.pl
> @@ -1494,17 +1494,9 @@ EOF
> print STDERR "Error: $main_source_dir is no directory";
> }
> my $nfiles_before = `find $main_source_dir | wc -l`;
> -foreach (grep {/\//} split /\s+/, $data->{"files-excluded"}) {
> -# delete trailing '/' because otherwise find -path will fail
> -s?/+$?? ;
> -# use rm -rf to enable deleting non-empty directories
> +foreach (split /\s+/, $data->{"files-excluded"}) {
> `find "$main_source_dir" -path "$main_source_dir/$_" -print0
> | xargs -0 rm -rf`;
> };
> -foreach (grep {/^[^\/]+$/} split /\s+/,
> $data->{"files-excluded"}) {
> -`find "$main_source_dir" -type f -name "$_" -delete`;
> -# the statement above does not delete directories - just do
> it now
> -`rm -rf "$main_source_dir/$_" ` if ( -d
> "$main_source_dir/$_" ) ;
> -};
> my $nfiles_after = `find $main_source_dir | wc -l`;
> if ( $nfiles_before == $nfiles_after && ! $exclude__MACOSX ) {
> print "-- Source tree remains identical - no need for
> repacking.\n" if $verbose;
I tested this patch and I have a problem with
svn://svn.debian.org/svn/debian-med/trunk/packages/rdp-classifier/trunk/debian
It specifies:
Files-Excluded:
__MACOSX
[a-z]*.jar
with the purpose to save ReadSeq.jar inside the source package. This works
with the
old method:
$ find . -name "[a-z]*.jar"
./rdp_classifier_2.5/lib/junit.jar
./rdp_classifier_2.5/lib/commons-cli.jar
./rdp_classifier_2.5/rdp_classifier-2.5.jar
but failes when trying your patch:
$ find . -path "./[a-z]*.jar"
./rdp_classifier_2.5/lib/junit.jar
./rdp_classifier_2.5/lib/commons-cli.jar
./rdp_classifier_2.5/lib/ReadSeq.jar
./rdp_classifier_2.5/rdp_classifier-2.5.jar
I admit I did also not followed the DEP5 discussion very closely but the
current code could deal nicely with the specific removal which is not
the case with your proposal and I have no clue how to reasonably specify
the fact that all *.jars except one should be removed (besides
specifying every single file).
Kind regards
Andreas.
--
http://fam-tille.de
--
To UNSUBSCRIBE, email to debian-devel-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/20120906203438.gc13...@an3as.eu
Files-Excluded field and security implications of uscan and debian/copyright.
Hi Andreas and everybody, while drafting the IANA registration for the machine-readable Debian copyright format, I had to consider and describe security implications, and realised that in the case of the Files-Excluded field, the contents of the field are directly executed. One can imagine scenarios where an attacker inserts in that field some code that will cause uscan to send the developer's GPG or SSH private keys to a remote address, etc. This can of course be corrected in uscan, but it leads me to wonder if the copyright file should be kept as declarative as possible. This would mean that the fileds that are not only informative, but that are also intended to control how a program is executed, like Files-Excluded, would rather be placed in more specialised configuration files. For instance, one could think a format revision 4 for debian/watch, that would use exactly the syntax that you are implementing now, and that would embed the watch information in a Watch field. This would not completely solve security issues for debian/copyright, as one can also imagine that some programs looking for files in the Files field may also pass the values witout sanitisation to some shell commands. However, I wonder if it would not be better to keep it as declarative as possible. What do you think ? -- Charles Plessy Tsurumi, Kanagawa, Japan -- To UNSUBSCRIBE, email to debian-devel-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20120906234436.ga7...@falafel.plessy.net
Work-needing packages report for Sep 7, 2012
The following is a listing of packages for which help has been requested through the WNPP (Work-Needing and Prospective Packages) system in the last week. Total number of orphaned packages: 453 (new: 4) Total number of packages offered up for adoption: 142 (new: 0) Total number of packages requested help for: 67 (new: 0) Please refer to http://www.debian.org/devel/wnpp/ for more information. The following packages have been orphaned: bzr-git (#686886), orphaned today Description: Bazaar plugin providing Git integration Installations reported by Popcon: 155 bzr-svn (#686887), orphaned today Description: Bazaar plugin providing Subversion integration Installations reported by Popcon: 234 uw-imap (#686448), orphaned 5 days ago Description: c-client library for mail protocols - development files Installations reported by Popcon: 13780 wikkid (#686885), orphaned today Installations reported by Popcon: 4 449 older packages have been omitted from this listing, see http://www.debian.org/devel/wnpp/orphaned for a complete list. No new packages have been given up for adoption, but a total of 142 packages are awaiting adoption. See http://www.debian.org/devel/wnpp/rfa_bypackage for a complete list. For the following packages help is requested: apt-xapian-index (#567955), requested 948 days ago Description: maintenance tools for a Xapian index of Debian packages Installations reported by Popcon: 55473 asymptote (#517342), requested 1287 days ago Description: script-based vector graphics language inspired by MetaPost Installations reported by Popcon: 3099 athcool (#278442), requested 2872 days ago Description: Enable powersaving mode for Athlon/Duron processors Installations reported by Popcon: 76 balsa (#642906), requested 347 days ago Description: An e-mail client for GNOME Installations reported by Popcon: 253 bastille (#592137), requested 761 days ago Description: Security hardening tool Installations reported by Popcon: 198 boinc (#511243), requested 1337 days ago Description: BOINC distributed computing Installations reported by Popcon: 1650 cardstories (#624100), requested 500 days ago Description: Find out a card using a sentence made up by another player Installations reported by Popcon: 6 chromium-browser (#583826), requested 830 days ago Description: Chromium browser Installations reported by Popcon: 10282 debtags (#567954), requested 948 days ago Description: Enables support for package tags Installations reported by Popcon: 2514 doc-central (#566364), requested 957 days ago Description: web-based documentation browser Installations reported by Popcon: 196 elvis (#432298), requested 1886 days ago Description: powerful clone of the vi/ex text editor (with X11 support) Installations reported by Popcon: 362 fbcat (#565156), requested 967 days ago Description: framebuffer grabber Installations reported by Popcon: 141 flightgear (#487388), requested 1538 days ago Description: Flight Gear Flight Simulator Installations reported by Popcon: 798 freeipmi (#628062), requested 469 days ago Description: GNU implementation of the IPMI protocol Installations reported by Popcon: 1817 gnat-4.4 (#539633), requested 1605 days ago Description: backport bug fixes from trunk (GCC 4.5) Installations reported by Popcon: 1592 gnat-gps (#496905), requested 1470 days ago Description: co-maintainer needed Installations reported by Popcon: 404 gnokii (#677750), requested 82 days ago Description: Datasuite for mobile phone management Installations reported by Popcon: 2365 gnupg (#660685), requested 199 days ago Description: GNU privacy guard - a free PGP replacement Installations reported by Popcon: 122703 golang (#668870), requested 144 days ago Description: Go programming language compiler - metapackage Installations reported by Popcon: 284 gpa (#663405), requested 180 days ago Description: GNU Privacy Assistant (GPA) Installations reported by Popcon: 513 gradle (#683666), requested 35 days ago Description: Groovy based build system Installations reported by Popcon: 31 grub2 (#248397), requested 3041 days ago Description: GRand Unified Bootloader Installations reported by Popcon: 113687 hfsprogs (#557892), requested 1016 days ago Description: mkfs and fsck for HFS and HFS+ file systems Installations reported by Popcon: 1195 horde4 (#686007), requested 10 days ago Description: web-based groupware and other applicat
even root cannot read my symlinks!
# su - nobody No directory, logging in with HOME=/ nobody@jidanni2:/$ date > /tmp/cc nobody@jidanni2:/$ ln -s /tmp/cc /tmp/dd nobody@jidanni2:/$ ls -l /tmp/cc /tmp/dd -rw-r--r-- 1 nobody nogroup 29 Sep 7 08:37 /tmp/cc lrwxrwxrwx 1 nobody nogroup 7 Sep 7 08:37 /tmp/dd -> /tmp/cc nobody@jidanni2:/$ su - # cat /tmp/cc /tmp/dd Fri Sep 7 08:37:38 CST 2012 cat: /tmp/dd: Permission denied # tail /var/log/syslog Sep 7 08:36:46 jidanni2 kernel: [19394.443080] type=1400 audit(1346978206.292:11): op=follow_link action=denied pid=19327 comm="cat" path="/tmp/bb" dev="tmpfs" ino=275448 # uname -a Linux jidanni2 3.2.0-3-486 #1 Mon Jul 23 02:47:49 UTC 2012 i686 GNU/Linux -- To UNSUBSCRIBE, email to debian-devel-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/87fw6ups54@jidanni.org
Bug#686902: ITP: python-bleach -- whitelist-based HTML-sanitizing library
Package: wnpp Severity: wishlist Owner: Per Andersson * Package name: python-bleach Version : 1.1.5 Upstream Author : James Socol * URL : http://pypi.python.org/pypi/bleach/ * License : BSD Programming Lang: Python Description : whitelist-based HTML-sanitizing library Bleach is an HTML sanitizing library that escapes or strips markup and attributes based on a white list. Bleach can also linkify text safely, applying filters that Django's urlize filter cannot, and optionally setting rel attributes, even on links already in the text. . Bleach is intended for sanitizing text from untrusted sources. If you find yourself jumping through hoops to allow your site administrators to do lots of things, you're probably outside the use cases. Either trust those users, or don't. . Because it relies on html5lib, Bleach is as good as modern browsers at dealing with weird, quirky HTML fragments. And any of Bleach's methods will fix unbalanced or mis-nested tags. -- To UNSUBSCRIBE, email to debian-devel-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20120907013344.9892.56654.report...@pong.oshw.org
Re: even root cannot read my symlinks!
On 2012-09-07 08:56:39 +0800 (+0800), jida...@jidanni.org wrote:
[...]
> Sep 7 08:36:46 jidanni2 kernel: [19394.443080] type=1400
> audit(1346978206.292:11): op=follow_link action=denied pid=19327 comm="cat"
> path="/tmp/bb" dev="tmpfs" ino=275448
[...]
Maybe this?
http://lwn.net/Articles/502621/
--
{ IRL(Jeremy_Stanley); WWW(http://fungi.yuggoth.org/); PGP(43495829);
WHOIS(STANL3-ARIN); SMTP(fu...@yuggoth.org); FINGER(fu...@yuggoth.org);
MUD(kin...@katarsis.mudpy.org:6669); IRC(fu...@irc.yuggoth.org#ccl); }
--
To UNSUBSCRIBE, email to debian-devel-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/20120907015008.gl6...@yuggoth.org
Re: even root cannot read my symlinks!
On Fri, Sep 7, 2012 at 9:50 AM, The Fungi wrote: > http://lwn.net/Articles/502621/ The file and symlink have the same owner so that is unlikely to be the cause, unless the feature is buggy. -- bye, pabs http://wiki.debian.org/PaulWise -- To UNSUBSCRIBE, email to debian-devel-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/caktje6fzhcqobfyr5r84-gqaa+hqpwmgpdhs6bzbbrnx8mb...@mail.gmail.com
Re: even root cannot read my symlinks!
On Fri, 2012-09-07 at 08:56 +0800, jida...@jidanni.org wrote: > # su - nobody > No directory, logging in with HOME=/ > nobody@jidanni2:/$ date > /tmp/cc > nobody@jidanni2:/$ ln -s /tmp/cc /tmp/dd > nobody@jidanni2:/$ ls -l /tmp/cc /tmp/dd > -rw-r--r-- 1 nobody nogroup 29 Sep 7 08:37 /tmp/cc > lrwxrwxrwx 1 nobody nogroup 7 Sep 7 08:37 /tmp/dd -> /tmp/cc > nobody@jidanni2:/$ su - > # cat /tmp/cc /tmp/dd > Fri Sep 7 08:37:38 CST 2012 > cat: /tmp/dd: Permission denied > # tail /var/log/syslog > Sep 7 08:36:46 jidanni2 kernel: [19394.443080] type=1400 > audit(1346978206.292:11): op=follow_link action=denied pid=19327 comm="cat" > path="/tmp/bb" dev="tmpfs" ino=275448 > # uname -a > Linux jidanni2 3.2.0-3-486 #1 Mon Jul 23 02:47:49 UTC 2012 i686 GNU/Linux linux-2.6 (3.2.9-1) unstable; urgency=high [...] * fs: Introduce and enable security restrictions on links: - Do not follow symlinks in /tmp that are owned by other users (sysctl: fs.protected_symlinks) - Do not allow unprivileged users to create hard links to sensitive files (sysctl: fs.protected_hardlinks) (Closes: #609455) + This breaks the 'at' package in stable, which will be fixed shortly (see #597130) The precise restrictions are specified in Documentation/sysctl/fs.txt in the linux-doc-3.2 and linux-source-3.2 packages. -- Ben Hutchings Usenet is essentially a HUGE group of people passing notes in class. - Rachel Kadel, `A Quick Guide to Newsgroup Etiquette' signature.asc Description: This is a digitally signed message part
Re: even root cannot read my symlinks!
On Fri, 2012-09-07 at 09:56 +0800, Paul Wise wrote: > On Fri, Sep 7, 2012 at 9:50 AM, The Fungi wrote: > > > http://lwn.net/Articles/502621/ > > The file and symlink have the same owner so that is unlikely to be the > cause, unless the feature is buggy. The comparison is between the owner of the symlink and the user trying to follow it. Ben. -- Ben Hutchings Usenet is essentially a HUGE group of people passing notes in class. - Rachel Kadel, `A Quick Guide to Newsgroup Etiquette' signature.asc Description: This is a digitally signed message part
Bug#686903: RFP: pass -- the standard unix password manager
Package: wnpp Severity: wishlist X-Debbugs-CC: debian-devel@lists.debian.org pass is a small utility that allows managing a normal folder hierarchy of gpg'd text files containing passwords. It can generate new passwords using pwgen, keep a log using git, and interface with the X clipboard using xclip. It's very small, portable, and keeps things simple. The project website is available here, where there is a link to an existing deb: http://zx2c4.com/projects/password-store/ The git repository has a debian/ folder containing all the build control files, though this folder will be removed once the package has been added to Debian: http://git.zx2c4.com/password-store/tree/debian -- To UNSUBSCRIBE, email to debian-devel-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/CAHmME9r+=WDN6B8JOMAzre+qaZGFAtEep+pA3M=b-gdwphr...@mail.gmail.com
Re: Files-Excluded field and security implications of uscan and debian/copyright.
Le Fri, Sep 07, 2012 at 08:44:36AM +0900, Charles Plessy a écrit : > > in the case of the Files-Excluded field, the contents of the field are > directly > executed. I mean: the contents are transferred to an expression that is directly executed. Sorry for the noise, -- Charles -- To UNSUBSCRIBE, email to debian-devel-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20120907041146.gc21...@falafel.plessy.net
Be a partner of our company
We are pleased to introduce our India's fastest growing organization"FAM INFOTECH". We are into offshore data processing work and online merchandising. We are seeking serious working people for being a part of our organization. We are offering part time/full time business. From which you can earn Rs.10,000 to 15,000 monthly. We provide online/offline data entry, SMS sending jobs, Email sending job and much more. For more details just call us +91-8905209903, 08401781573 Reference code - FAM/030880 - GJ Thanks, Fam Chandigarh
Re: bits from the DPL: August 2012
Ummm … Stefano Zacchiroli: > Dear project members, August has been a month with a good deal of > vacations for many of us, including yours truly. Therefore the monthly > report of DPL activities will be briefer than usual. Which is good, as > it'll leave all my readers more time to do NMUs and fix RC bugs! > Shouldn't we fix RC bugs first and do NMUs second? SCNR, -- -- Matthias Urlichs signature.asc Description: Digital signature
