Re: mozilla-*-locale-* packages?
I think, that this would not be too hard to implement. On the other hand, there would still be problems that some translations might not be ready if mozilla* packages become ready to go in. IMHO, doing so looks like a trick to declare translations not to be release critical and in fact inferior to normal packages. IHMO, that is not very easy to do that for, at least, mozilla and thunderbird (but that could change in the future). The .xpi packages differ a lot from one language to an other, some .xpi are not available, you have to use a CVS (for example for the French translation of thunderbird). Of course one would need to modify the upstream origs, but I think this would be ok if it resolves our problems. Nevertheless, let's wait and see what upstream is doing. I guess at least for thunderbird the locale development model will change as soon as the firefox way of handling locales is mature and proved to be efficient. -- GPG messages preferred. | .''`. ** Debian GNU/Linux ** Alexander Sack | : :' : The universal [EMAIL PROTECTED] | `. `' Operating System http://www.jwsdot.com/ | `-http://www.debian.org/
Re: Maintainer needed
Giuseppe Scrivano wrote: If you know a debian maintainer willing to adopt the package and upload it, please let me know his/her contact info. Maybe consider to file a RFP. For a start go: http://www.debian.org/devel/wnpp/index.en.html -- GPG messages preferred. | .''`. ** Debian GNU/Linux ** Alexander Sack | : :' : The universal [EMAIL PROTECTED] | `. `' Operating System http://www.jwsdot.com/ | `-http://www.debian.org/
Re: Bug#349064: ITP: flash-plugin -- installer for Macromedia Flash Plugin
On Mon, Jan 23, 2006 at 10:39:00AM +0100, Petter Reinholdtsen wrote: > > Why not just join forces with Takuo KITAME to maintain > flashplugin-nonfree, and update it to behave the way you want it? I > do not see the point of two installer packages for macromedia flash. > Please limit it to just one, and keep the old package name > flashplugin-nonfree to make it easier for custom debian distros and > upgrades. > You mean take over the package? Have you ever succeeded to get any communication started with Takuo during the last year or so? - Alexander -- GPG messages preferred.| .''`. ** Debian GNU/Linux ** Alexander Sack | : :' : The universal [EMAIL PROTECTED]| `. `' Operating System http://www.asoftsite.org/ | `-http://www.debian.org/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
really experimental sunbird calendar package available
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hi, Just uploaded a sunbird package to my experimental p.d.o. archive. It is still not in a shape suitable for debian, but since upstream is quite a big step away from a releasable state too, I have no problems with releasing this snapshot today in such an experimental shape ... at least it works a bit :) The apt line you need: deb http://people.debian.org/~asac/experimental ./ The package you (maybe not) want: sunbird - (so no mozilla- prefix :) ) Please read my annoucement [1] for infos on how to get started and please remember to *not* use this for important things you really depend on. Oh, and there are some screenshots [2] too. BTW, I was not able to extract a good orig.tar.gz from upstreams archive. Hence, I did not upload the really bloated 60 MB full mozilla tree source tarball that I used to build this package from. Anyone interested in the diff, just drop a mail. [1] - http://www.asoftsite.org/sunbird.html [2] - http://www.asoftsite.org/sunbird_screens.html - -- GPG messages preferred. | .''`. ** Debian GNU/Linux ** Alexander Sack| : :' : The universal [EMAIL PROTECTED] | `. `' Operating System http://www.asoftsite.org | `-http://www.debian.org/ -BEGIN PGP SIGNATURE- Version: GnuPG v1.2.5 (GNU/Linux) Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org iD8DBQFCgK+zv8pLOKgkuT8RAlP3AJ0c6nRgaAWNa/SVPKNTF+1BU41nvQCbBcpg 15ulEfOxOBdxbq2vkIoenc0= =IwN2 -END PGP SIGNATURE- -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Ongoing Firefox (and Thunderbird) Trademark problems
Hi Gerv, Gervase Markham wrote: > > > - The Mozilla Foundation gives Debian permission to use the Firefox logo > and brand name. > Is the brand name 'Firefox' or 'Mozilla Firefox'? I remember that this whole discussion started because we should remove the Mozilla prefix from the software and package name? Is this still true or are you granting us the right to use Mozilla Firefox/Mozilla Thunderbird/Mozilla Sunbird - that is, not modify the sources shipped by mozilla.org in this regard? Cheers, -- GPG messages preferred. | .''`. ** Debian GNU/Linux ** Alexander Sack| : :' : The universal [EMAIL PROTECTED] | `. `' Operating System http://www.asoftsite.org | `-http://www.debian.org/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Ongoing Firefox (and Thunderbird) Trademark problems
Gervase Markham wrote: >> Is this still true or are you granting us the right to use >> Mozilla Firefox/Mozilla Thunderbird/Mozilla Sunbird - that is, not >> modify the >> sources shipped by mozilla.org in this regard? > > > I don't quite understand the second part of that question. > > I am anticipating that, if we come to an arrangement, Debian would be > shipping something called "Firefox" rather than Mozilla Firefox in the > UI; we reserve "Mozilla Firefox" for stuff we ship ourselves directly. > Ideally, if we were starting from scratch, the packages would also be > called "firefox" rather than "mozilla-firefox", but we'd probably be OK > with not renaming them if the hassle of changing was great. > I was just unsure whether 'The Mozilla Foundation gives Debian permission to use the Firefox logo and brand name' still calls for removal of the Mozilla prefix. BTW, I am currently trying to figure out which logos to use for the prospective sunbird package. AFAIK, sunbird has no such thing like a free logo. Can you try to take care that something similar will be available for sunbird too? Cheers, -- GPG messages preferred. | .''`. ** Debian GNU/Linux ** Alexander Sack| : :' : The universal [EMAIL PROTECTED] | `. `' Operating System http://www.asoftsite.org | `-http://www.debian.org/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Ongoing Firefox (and Thunderbird) Trademark problems
Matthew Garrett wrote:
> Humberto Massa Guimarães <[EMAIL PROTECTED]> wrote:
>
>
>>No. This is not what free software is about ("only modifiying the
>>package in ways similar to Debian"). We should do the hard work
>>(strip the trademarks) so the community can benefit from our
>>already-stripped mozillas and do whatever it wants with them. This
>>seems to be more like the Debian Way to me.
>
>
> I agree that doing the work to make the trademarks removable serves our
> users, but how does *us* removing the trademarks benefit freedom or our
> users? They end up with exactly the same rights whether we remove them
> or not.
>
I agree. The only difference would be that it would not be as tempting or easy
for downstream users to infringe MF trademarks by accident. Anyway, should
debian care for that?
--
GPG messages preferred. | .''`. ** Debian GNU/Linux **
Alexander Sack| : :' : The universal
[EMAIL PROTECTED] | `. `' Operating System
http://www.asoftsite.org | `-http://www.debian.org/
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Ongoing Firefox (and Thunderbird) Trademark problems
Julien BLACHE wrote: > software context. They don't care about free software. They don't care > about distributors/vendors. > Sadly, a good example that this is true to some extent, is that the MF apparently has no high priority to care about distributors, when it comes to security issues. AFAIK, we cannot get access to confidential security reports in order to prepare a fix in a timely manner. Especially, if the versions distributed in sarge/stable gets more and more outdated, the lack of communication and assistance on security issues becomes a more critical problem. -- GPG messages preferred. | .''`. ** Debian GNU/Linux ** Alexander Sack| : :' : The universal [EMAIL PROTECTED] | `. `' Operating System http://www.asoftsite.org | `-http://www.debian.org/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Ongoing Firefox (and Thunderbird) Trademark problems
Gervase Markham wrote: > That's simply not true. Anyone distributing significant copies of > Firefox can have a representative on the security group, which has > access to all the confidential bugs. Just ask Dan Veditz > <[EMAIL PROTECTED]>. In fact, Debian already has someone (Matt > Zimmerman) on the list. > Ah ... thanks for the info. Nevertheless, I think debian has to reconsider if Matt is still the right person to fill that position, but that is of course not your job. Cheers, -- GPG messages preferred. | .''`. ** Debian GNU/Linux ** Alexander Sack| : :' : The universal [EMAIL PROTECTED] | `. `' Operating System http://www.asoftsite.org | `-http://www.debian.org/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Ongoing Firefox (and Thunderbird) Trademark problems
Wouter Verhelst wrote: >On Wed, Jun 15, 2005 at 12:13:41PM +0200, Alexander Sack wrote: > > >>Gervase Markham wrote: >> >> >> >>>That's simply not true. Anyone distributing significant copies of >>>Firefox can have a representative on the security group, which has >>>access to all the confidential bugs. Just ask Dan Veditz >>><[EMAIL PROTECTED]>. In fact, Debian already has someone (Matt >>>Zimmerman) on the list. >>> >>> >>> >>Ah ... thanks for the info. Nevertheless, I think debian has to >>reconsider if Matt is still the right person to fill that position, but >>that is of course not your job. >> >> > >I don't see why not. Last I checked, Matt was still part of the Debian >security team. > > > I was just judging from common sense about the spare-time of executives. As long as Matt can ensure that he has the time and resources needed to fill that position, I am happy with it. -- GPG messages preferred. | .''`. ** Debian GNU/Linux ** Alexander Sack| : :' : The universal [EMAIL PROTECTED] | `. `' Operating System http://www.asoftsite.org | `-http://www.debian.org/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Ongoing Firefox (and Thunderbird) Trademark problems
Gervase Markham wrote: > The issue is that it has to be X-specific, where X is people we trust to > make competent releases of software. And we have to judge X on who comes > to us and says "we claim to be competent". I think, what some (or a certain amount of) project members complain about, is the absense of objective, written criteria. Those criteria should somehow define which criteria X has to satisfy in order to get judged competent. Publishing a clear policy would be the single best chance to convince a good amount of them - my guess of course, nothing more. Nevertheless, maybe trying to work out a guideline might be sufficient too. I understand that this is no easy job, but maybe it helps. Nevertheless, I think that we (debian) need to find a way to deal with trademarks. Even if we decide to use different names, as soon as they get some recognition, we either need to enforce them activly or some Mr. CleverX, looking for fun, ;) can come along and claim them - AFAIK & IANAL. Judging from this, and from the assumption that we do not want to maintain and enforce a pool of trademarks on our own, I would say that it is our job to work out some criteria that a *good* free-software distributor should/can fulfill in order to do good to upstream (in terms that those distributors will honor and try their best not to harm upstreams trademark). Other projects could adapt those criteria as well and upstreams - like Mozilla - could publish those criteria as being suitable for determining the distributors competence ... what a perfect world ;). Anyway, I don't expect this to happen (in a timeframe suitable for this Mozilla story). On the other hand, maybe this is the only chance to find a long term solution for similar issues in the future... Cheers, -- GPG messages preferred. | .''`. ** Debian GNU/Linux ** Alexander Sack| : :' : The universal [EMAIL PROTECTED] | `. `' Operating System http://www.asoftsite.org | `-http://www.debian.org/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Mozilla Foundation Trademarks
Humberto Massa Guimarães wrote: >>>What trademarks are you referring to? Already the Debian >>>packages don't use any of the trademarked images and logos? >>> >>> >>If we don't use any trademarked images, logos, or phrases, what >>exactly are we talking about here? >> >> > >As I think this is a very nice question, could Eric or any other >person identify which Mozilla Foundation trademarks are used in our >packages (and where)? > > > > In general the part of the MoFo brand we are talking about is the product name (e.g. firefox, thunderbird, sunbird). From what I can recall now, it is used in the help menu, the about box, the package-name and the window title bar. -- GPG messages preferred. | .''`. ** Debian GNU/Linux ** Alexander Sack| : :' : The universal [EMAIL PROTECTED] | `. `' Operating System http://www.asoftsite.org | `-http://www.debian.org/
Re: Centralized darcs
On Thu, Aug 03, 2006 at 08:09:44AM +0200, Mike Hommey wrote: > > > > Nobody has to learn Darcs to hack on my packages. > > Well if someone has to work on a "which of the applied patch broken > the package is such a way" kinda issue, he will have to, in order to > have access to the patches. > dpatch, quilt and others, in this case, make life easier (especially for > security support). > Ack but on the other hand if the repository is public *and* people do organize their checkins in a sorted manner, than using a SCM can be fine too. Anyway, as a side note on this thread: *darcs is just far t slow* for decent maintenance of large pieces of software. I tried once to create a mozilla repository, do some work with it and it was completely unusable. I am not talking about minutes, but almost hours to finish tasks that should take seconds. - Alexander -- GPG messages preferred.| .''`. ** Debian GNU/Linux ** Alexander Sack | : :' : The universal [EMAIL PROTECTED]| `. `' Operating System http://www.asoftsite.org/ | `-http://www.debian.org/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Centralized darcs
On Thu, Aug 03, 2006 at 08:32:28AM -0500, John Goerzen wrote: > On Thu, Aug 03, 2006 at 08:09:44AM +0200, Mike Hommey wrote: > > Well if someone has to work on a "which of the applied patch broken > > the package is such a way" kinda issue, he will have to, in order to > > have access to the patches. > > No, they are all in the diff.gz, and that's easy enough to find. > The total of changes is in the diff.gz, but obviously in a combined fashion. That is: if you have applied multiple patches for different issues on the same file, how will you extract a certain patch from that impossible. So, as a matter of fact, in diff.gz you loose information that you can keep in separately shipped patches. Just having the diff.gz can be a major PITA for security maintenance ... for instance, if you try to track down a regression that you know nothing about other than that it appeared somewhere between now and the beginning of life. - Alexander -- GPG messages preferred. | .''`. ** Debian GNU/Linux ** Alexander Sack | : :' : The universal [EMAIL PROTECTED]| `. `' Operating System http://www.asoftsite.org/ | `-http://www.debian.org/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Please test firefox/thunderbird/mozilla security packages
Hi all, we uploaded preview packages for the next security update of mozilla applications in debian sarge. This is the second maintenance release after mozilla developers officially dropped support for the product versions we ship in sarge. The packages are based on the patches I backported and announced few days ago [1]. If you are a more or less advanced debian-sarge user who wants to contribute and you are using one of the mozilla apps regularly, then please help by testing this preview release and provide both, negative and positive feedback to [EMAIL PROTECTED] To test this release, please upgrade your favorite mozilla app from the sources given below. The repository that contains the new packages can be found at http://people.debian.org/~asac/security. The applications and versions for this preview release are: + mozilla-firefox 1.0.4-2sarge10 + mozilla-thunderbird 1.0.2-2.sarge1.0.8b.1 + mozilla 1.7.8-1sarge7.2 You can either download the .debs manually or add the following to your apt sources.list: deb http://people.debian.org/~asac/security ./ If you run into troubles with the new packages, chances are high this is due to some extension that makes use of some corner-case feature. In order to help to track these issues down you should disable your extensions one by one until you get rid of the problem. If you find the extension that causes all the troubles, please don't forget to mention its name and version. Thanks for your support! [1] - http://www.asoftsite.org/s9y/archives/112-Its-mozilla-patch-day!.html - Alexander -- GPG messages preferred.| .''`. ** Debian GNU/Linux ** Alexander Sack | : :' : The universal [EMAIL PROTECTED]| `. `' Operating System http://www.asoftsite.org/ | `-http://www.debian.org/ signature.asc Description: Digital signature
Re: apt-findremovable v0.1 (initial release)
On Sat, Oct 07, 2006 at 06:30:33PM +0200, Michelle Konzack wrote: > > > If aptitude kills your ssh session, I'd be inclined to believe more was > > wrong > > on your machine than just aptitude, but I guess that's up to whoever ends up > > debugging this to find out. > > The problem is, that the Servers are in Tehran and I am in > Strasbourg. I do not know how to debug this on distance... Maybe try to run aptitude in a screen(1). Maybe your ssh session can then survive this and you can capture a backtrace with gdb? - Alexander -- GPG messages preferred. | .''`. ** Debian GNU/Linux ** Alexander Sack | : :' : The universal [EMAIL PROTECTED]| `. `' Operating System http://www.asoftsite.org/ | `-http://www.debian.org/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Bug#402650: ITP: mozilla-foxyproxy -- advanced proxy management tool for iceweasel
On Mon, Dec 11, 2006 at 03:56:12PM -0500, Yaroslav Halchenko wrote: > Package: wnpp > Owner: Yaroslav Halchenko <[EMAIL PROTECTED]> > Severity: wishlist > > * Package name: mozilla-foxyproxy > I don't think we should still use the mozilla-* prefix for extension packages ... now that we have ice*. - Alexander -- GPG messages preferred.| .''`. ** Debian GNU/Linux ** Alexander Sack | : :' : The universal [EMAIL PROTECTED]| `. `' Operating System http://www.asoftsite.org/ | `-http://www.debian.org/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Bug#402650: ITP: mozilla-foxyproxy -- advanced proxy management tool for iceweasel
On Tue, Dec 12, 2006 at 07:41:30PM +0100, Mike Hommey wrote: > On Tue, Dec 12, 2006 at 11:19:22AM +0100, Alexander Sack <[EMAIL PROTECTED]> > wrote: > > On Mon, Dec 11, 2006 at 03:56:12PM -0500, Yaroslav Halchenko wrote: > > > Package: wnpp > > > Owner: Yaroslav Halchenko <[EMAIL PROTECTED]> > > > Severity: wishlist > > > > > > * Package name: mozilla-foxyproxy > > > > > > > I don't think we should still use the mozilla-* prefix for extension > > packages ... now that we have ice*. > > But then, what to use instead ? Reading from the package description, this extension is just for iceweasel ... so maybe iceweasel-foxyproxy ... or just foxyproxy with the term "iceweasel extension" in the package short description. - Alexander -- GPG messages preferred.| .''`. ** Debian GNU/Linux ** Alexander Sack | : :' : The universal [EMAIL PROTECTED]| `. `' Operating System http://www.asoftsite.org/ | `-http://www.debian.org/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Mozilla- prefix. Was: Bug#402650: ITP: mozilla-foxyproxy -- advanced proxy management tool for iceweasel
On Tue, Dec 12, 2006 at 02:54:34PM -0500, Yaroslav Halchenko wrote: > > So possible ways I see > 1. leave it as is and have mozilla- prefix > 2. figure out substitution to the mozilla trademark > 3. remove prefix once and forever and use appropriate tags. After all, > many applications use some common codebase, but they are not required to > have a common prefix. > > (1) seems to be the worst in the lengthy run, but the only one which fits > the frozen state of etch now I don't think that this itp will end up in etch as we are already in a freeze, so all this is about the post-etch era ... for etch mozilla-* would be fine. - Alexander -- GPG messages preferred. | .''`. ** Debian GNU/Linux ** Alexander Sack | : :' : The universal [EMAIL PROTECTED]| `. `' Operating System http://www.asoftsite.org/ | `-http://www.debian.org/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Bug#402650: ITP: mozilla-foxyproxy -- advanced proxy management tool for iceweasel
On Tue, Dec 12, 2006 at 08:13:41PM +0100, Mike Hommey wrote: > On Tue, Dec 12, 2006 at 07:55:59PM +0100, Alexander Sack <[EMAIL PROTECTED]> > wrote: > > On Tue, Dec 12, 2006 at 07:41:30PM +0100, Mike Hommey wrote: > > > On Tue, Dec 12, 2006 at 11:19:22AM +0100, Alexander Sack <[EMAIL > > > PROTECTED]> wrote: > > > > I don't think we should still use the mozilla-* prefix for extension > > > > packages ... now that we have ice*. > > > > > > But then, what to use instead ? > > > > Reading from the package description, this extension is just for > > iceweasel ... so maybe iceweasel-foxyproxy ... > > With a little work, such an extension could be made available for > iceape. That may even happen upstream. So iceweasel-something is out of > the question, IMHO. > > > or just foxyproxy > > with the term "iceweasel extension" in the package short description. > > or debtags ? Yes, using debtags for extensions together with a good short description is definitly a good idea. > Anyways, the thing is that when I uploaded the very first extension > packages, for mozilla at the time, they didn't have the mozilla in their > name. Now they have, because of fair comments from Ari Pollak in bug > #189595. And I still agree with him. > One reason ari gave was that the package name might give the user the false impression that the package ships a standalone program. However later we introduced mozilla-firebird et al ... which obviously were standalone programs ... rather confusing. That said ... I think that the package name is the wrong place to encode arbitrary information that one considers important to communicate to users (even more if its encoded in a implicit manner, e.g. 'mozilla-' vs. '-extension'). Users will never be able to guess what they can expect from installing an arbitrary package by just looking at its name ... we have other means to communicate that kind of info. So, for me the most consistent practice for packaging ice* extensions post etch would be to use the extension name as package name and put info about its relation to our ice-apps into (short) description and debtags. - Alexander -- GPG messages preferred.| .''`. ** Debian GNU/Linux ** Alexander Sack | : :' : The universal [EMAIL PROTECTED]| `. `' Operating System http://www.asoftsite.org/ | `-http://www.debian.org/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Iceweasel extensions lacking links migrating from firefox. Mass bug?
On Wed, Dec 13, 2006 at 12:44:14PM +0100, Marco d'Itri wrote: > On Dec 12, Yaroslav Halchenko <[EMAIL PROTECTED]> wrote: > > > Unfortunately I didn't spot this problem when I was closing #400168. > > Iceweasel after transition doesn't care about extensions listed under > > /usr/lib/firefox/extensions/ and require them under > > /usr/lib/iceweasel/extensions/. So quite a few broke (I have 2) > Nice. > Does anybody have a real firefox package for etch, with no other silly > animals? > ... maybe give ubuntu package a spin. - Alexander -- GPG messages preferred.| .''`. ** Debian GNU/Linux ** Alexander Sack | : :' : The universal [EMAIL PROTECTED]| `. `' Operating System http://www.asoftsite.org/ | `-http://www.debian.org/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: What library to use for manipulation iCal data from C
On Wed, Apr 05, 2006 at 10:13:54PM +0200, Søren Boll Overgaard wrote: > some KDE module[2]. Additionally, libical is not currently in Debian, while it > appears to have been at some point. So, as mentioned previously, I am at a > loss Any idea why libical has been removed from the archive? e.g. sunbird uses/includes it too, so maybe it makes sense to have it back in the archive. - Alexander -- GPG messages preferred.| .''`. ** Debian GNU/Linux ** Alexander Sack | : :' : The universal [EMAIL PROTECTED]| `. `' Operating System http://www.asoftsite.org/ | `-http://www.debian.org/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: the BTS gains a remote bug tracking feature for free !
On Wed, May 03, 2006 at 11:56:32AM +0200, Pierre Habouzit wrote: > > Hi developers, > > Like many of you may have noticed, a quite big mail was processed by > the BTS today [1]. This was generated by a new service I'm currently > developing, called bts-link. > > > This tool lists every BTS bug that is forwarded to a remote Bug > Tracker. If it knows how to get a Status and possibly a Resolution (if > the Status is a closing Status), it gets them, and: > * sets upstream, fixed-upstream, wontfix tags according to the > retrieved information ; > * cannonizes the forward address ; > * sets usertags to store the current known Status/Resolution of the > bug: status-(.*) holds the upstream status, and resolution-(.*) the > resolution when available. Maybe one can make this feature push mails to me instead of the [EMAIL PROTECTED] I would like to review those changes before they get applied to the BTS ... at least unless I am sure it does what I want :). - Alexander -- GPG messages preferred.| .''`. ** Debian GNU/Linux ** Alexander Sack | : :' : The universal [EMAIL PROTECTED]| `. `' Operating System http://www.asoftsite.org/ | `-http://www.debian.org/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: the BTS gains a remote bug tracking feature for free !
On Wed, May 03, 2006 at 01:21:41PM +0200, Pierre Habouzit wrote: > btslink will *never* close or reopen bugs. So it's pretty harmless IMHO, > this won't resurect a RC bug for which you made a debian-only patch and > that is still not fixed upstream. > > So just tell me if somethings looks illogical so that I make it work in > a more sensible way. But I don't think a "validation" of the mails is > vital (especially since once bts-link has the appropriate fix, next run > will make things right again with no human intervention) > Sounds good, though practice will have to show. I am ok if we keep this *large scale test* running and see how it works. Anyway, I would have preferred to roll this out in a different fashion: 1. release it as a package so all maintainers can use the tool if they like. 2. if this shows that indeed it works as expected, launch a central service one can opt-in. 3. if there are still no problems, enable it for all. Anyway, innovations like this are appreciated. Thanks for your contribution. - Alexander -- GPG messages preferred.| .''`. ** Debian GNU/Linux ** Alexander Sack | : :' : The universal [EMAIL PROTECTED]| `. `' Operating System http://www.asoftsite.org/ | `-http://www.debian.org/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Sun Java available from non-free
On Mon, May 22, 2006 at 11:22:25AM +0200, Marc 'HE' Brockschmidt wrote: > Heya, > > Michael Meskes <[EMAIL PROTECTED]> writes: > [Java flamewar] > > DPL, I wonder Why the Sun-Java package is not handled the same as any > > other package. What makes it so special that it deserves special > > treatment? > > > > Isn't this a discrimination against all other packages? :-) > > ACK. This is the most important problem with the Java license for me - > in general, the ftp-masters are *very* strict when it comes to > licenses. Even if upstream provides some FAQ or something to clarify > badly worded parts of the license, they are usually required to change > the license of their software to get it into Debian. > > I understand that a lot of people are interested to get Sun Java > packaged for Debian (and it would be a real improvement if we were able > to distribute it!), but I can not understand why it is special-cased > when it comes to licensing issues. > I hope this special treatment has nothing to do with the sun-ubuntu deal announced a few days ago. - Alexander -- GPG messages preferred.| .''`. ** Debian GNU/Linux ** Alexander Sack | : :' : The universal [EMAIL PROTECTED]| `. `' Operating System http://www.asoftsite.org/ | `-http://www.debian.org/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
mozilla security updated (proposed) needs testing.
Please, test the mozilla suite I just uploaded (2:1.7.8-1sarge7). Keep your eyes open regressions and especially if it breaks any dependents or extensions. You can grab it from here: http://people.debian.org/~asac/security/ The changes are: mozilla (2:1.7.8-1sarge7) stable-security; urgency=critical - added mozilla 1.7.14 patches in debian/patches that fix various security issues: + CVE-2006-2787 : 1_0001-mfsa2006-31-319263-336601-336313.txt + CVE-2006-2786 1/2 : 1_0002-mfsa2006-33-Part-1-2-329746.txt + CVE-2006-2786 2/2 : 1_0003-mfsa2006-33-Part-2-2-330214.txt + CVE-2006-2785 2/2 : 1_0004-mfsa2006-34-Part2-2-329521-suite.txt + CVE-2006-2775 : 1_0005-mfsa2006-35-329677.txt + CVE-2006-2784 : 1_0006-mfsa2006-36-330037.txt + CVE-2006-2776 : 1_0007-mfsa2006-37-330773-with-belt-and-braces.txt + CVE-2006-2778 : 1_0008-mfsa2006-38-330897.txt + CVE-2006-1942 : 1_0009-mfsa2006-39-CVE-2006-1942-334341-suite.txt + CVE-2006-2781 : 1_0010-mfsa2006-40-334384.txt + CVE-2006-2782 : 1_0011-mfsa2006-41-334977.txt + CVE-2006-2783 : 1_0012-mfsa2006-42-335816.txt + CVE-2006-2777 : 1_0013-mfsa2006-43-336830.txt + CVE-2006-2779 3/6 : 1_0014-mfsa2006-32-Part-3-7-326501.txt + CVE-2006-2779 4/6 : 1_0015-mfsa2006-32-Part-4a-7-326931.txt + CVE-2006-2785 2/2 : 1_0015-mfsa2006-34-Part-1-2-xpfe-329468-suite.txt + CVE-2006-2779 4/6 : 1_0016-mfsa2006-32-Part-4b-7-329219.txt + CVE-2006-2779 4/6 : 1_0017-mfsa2006-32-Part-4c-7-330818-proper-aviary.txt + CVE-2006-2779 6/6 : 1_0018-mfsa2006-32-Part-6-7-332971.txt + CVE-2006-2780 : 1_0019-js-src-jsstr.c-335535-mfsa2006-32-Part-7-7.txt + CVE-2006-2779 5/6 : 1_0021-mfsa2006-32-Part-5-7-327712.txt - Note: CVE-2006-2779 (mfsa2006-32) is only partially fixed. Missing are tricky parts 1/6 and 2/6 from advisory: 1/6: Removing nested s from a select (Jesse Ruderman) https://bugzilla.mozilla.org/show_bug.cgi?id=324918 2/Crashes during DOMNodeRemoved mutation https://bugzilla.mozilla.org/show_bug.cgi?id=325730 https://bugzilla.mozilla.org/show_bug.cgi?id=329982event6: - Alexander -- GPG messages preferred. | .''`. ** Debian GNU/Linux ** Alexander Sack| : :' : The universal [EMAIL PROTECTED] | `. `' Operating System http://www.asoftsite.org | `-http://www.debian.org -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#374898: ITP: jxta-c -- a cross-network p2p library
Package: wnpp Severity: wishlist Owner: Alexander Sack <[EMAIL PROTECTED]> * Package name: jxta-c Version : 2.5 Upstream Author : The JXTA-C Project * URL : http://jxta-c.jxta.org * License : Jxta software license (based on apache license 1.1) Description : a cross-network p2p library JXTA is a set of open protocols that allow any connected device on the network ranging from cell phones and wireless PDAs to PCs and servers to communicate and collaborate in a P2P manner. JXTA peers create a virtual network where any peer can interact with other peers and resources directly even when some of the peers and resources are behind firewalls and NATs or are on different network transports. jxta-c is the complete reference C implementation of the JXTA specification. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: proposed mozilla-firefox security update, needs testing!
On Tue, Jun 27, 2006 at 10:54:47PM -0400, Eric Dorland wrote: > > > > > > Could you send me a copy of your bookmarks.html file privately? > > > > Eric, was this reproducible? > > Unfortunately it was very reproducible :( I'm not sure how to > proceed. Is anyone else using these patches that might be able to help > figure out where the problem lies? > No ... upstream does not do official rc testing for us. Though, if we can track down which specific patch causes this regression, they will help to figure it out. Did you try to track down which patch(es) cause these troubles? - Alexander -- GPG messages preferred. | .''`. ** Debian GNU/Linux ** Alexander Sack | : :' : The universal [EMAIL PROTECTED]| `. `' Operating System http://www.asoftsite.org/ | `-http://www.debian.org/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: proposed mozilla-firefox security update, needs testing!
On Wed, Jun 28, 2006 at 12:10:45PM +0200, Alexander Sack wrote: > On Tue, Jun 27, 2006 at 10:54:47PM -0400, Eric Dorland wrote: > > > > > > > > Could you send me a copy of your bookmarks.html file privately? > > > > > > Eric, was this reproducible? > > > > Unfortunately it was very reproducible :( I'm not sure how to > > proceed. Is anyone else using these patches that might be able to help > > figure out where the problem lies? > > > > No ... upstream does not do official rc testing for us. Though, if we can > track > down which specific patch causes this regression, they will help to figure it > out. > > Did you try to track down which patch(es) cause these troubles? I tracked it. The evil patch is: 0005-mfsa2006-35-329677.txt ... reverting this fixes this resolves this regression ... I will investigate. - Alexander -- GPG messages preferred.| .''`. ** Debian GNU/Linux ** Alexander Sack | : :' : The universal [EMAIL PROTECTED]| `. `' Operating System http://www.asoftsite.org/ | `-http://www.debian.org/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: proposed mozilla-firefox security update, needs testing!
On Wed, Jun 28, 2006 at 12:44:50PM +0200, Alexander Sack wrote:
> On Wed, Jun 28, 2006 at 12:10:45PM +0200, Alexander Sack wrote:
> > On Tue, Jun 27, 2006 at 10:54:47PM -0400, Eric Dorland wrote:
> > > > >
> > > > > Could you send me a copy of your bookmarks.html file privately?
> > > >
> > > > Eric, was this reproducible?
> > >
> > > Unfortunately it was very reproducible :( I'm not sure how to
> > > proceed. Is anyone else using these patches that might be able to help
> > > figure out where the problem lies?
> > >
> >
> > No ... upstream does not do official rc testing for us. Though, if we can
> > track
> > down which specific patch causes this regression, they will help to figure
> > it
> > out.
> >
> > Did you try to track down which patch(es) cause these troubles?
>
> I tracked it. The evil patch is:
>
>0005-mfsa2006-35-329677.txt
>
> ... reverting this fixes this resolves this regression ... I will investigate.
>
And here comes the fix. In addition I attached a fix for another regression.
Please respin and test with these two patches added.
- Alexander
--
GPG messages preferred.| .''`. ** Debian GNU/Linux **
Alexander Sack | : :' : The universal
[EMAIL PROTECTED]| `. `' Operating System
http://www.asoftsite.org/ | `-http://www.debian.org/
>From nobody Mon Sep 17 00:00:00 2001
From: Alexander Sack <[EMAIL PROTECTED]>
Date: Wed, 28 Jun 2006 12:53:56 +0200
Subject: [PATCH] mfsa2006-35; 335142; regression 1/2 for 329677
---
content/xul/templates/src/nsXULContentUtils.cpp | 11 +--
1 files changed, 9 insertions(+), 2 deletions(-)
463bd4875866b9ac52c198cc38dfb26722cfb56f
diff --git a/content/xul/templates/src/nsXULContentUtils.cpp
b/content/xul/templates/src/nsXULContentUtils.cpp
index 15d217b..bfbf602 100644
--- a/content/xul/templates/src/nsXULContentUtils.cpp
+++ b/content/xul/templates/src/nsXULContentUtils.cpp
@@ -70,7 +70,7 @@ #include "nsContentUtils.h"
#include "nsIDateTimeFormat.h"
#include "nsDateTimeFormatCID.h"
#include "nsIScriptableDateFormat.h"
-
+#include "nsIDOMXULElement.h"
static NS_DEFINE_CID(kDateTimeFormatCID,NS_DATETIMEFORMAT_CID);
static NS_DEFINE_CID(kRDFServiceCID,NS_RDFSERVICE_CID);
@@ -226,6 +226,10 @@ nsXULContentUtils::GetElementRefResource
NS_ASSERTION(NS_SUCCEEDED(rv), "severe error retrieving attribute");
if (NS_FAILED(rv)) return rv;
+if (rv != NS_CONTENT_ATTR_HAS_VALUE) {
+rv = aElement->GetAttr(kNameSpaceID_None, nsXULAtoms::id, uri);
+}
+
if (rv == NS_CONTENT_ATTR_HAS_VALUE) {
// We'll use rdf_MakeAbsolute() to translate this to a URL.
nsCOMPtr doc = aElement->GetDocument();
@@ -242,7 +246,10 @@ nsXULContentUtils::GetElementRefResource
rv = gRDF->GetUnicodeResource(uri, aResult);
}
else {
- rv = GetElementResource(aElement, aResult);
+nsCOMPtr xulElem(do_QueryInterface(aElement, &rv));
+if (xulElem) {
+rv = xulElem->GetResource(aResult);
+}
}
return rv;
--
1.3.3
>From nobody Mon Sep 17 00:00:00 2001
From: Alexander Sack <[EMAIL PROTECTED]>
Date: Wed, 28 Jun 2006 13:04:30 +0200
Subject: [PATCH] mfsa2006-35, 337841 - regression part 2/2 for 329677
---
content/xul/templates/src/nsXULSortService.cpp |2 +-
1 files changed, 1 insertions(+), 1 deletions(-)
96a0d1579e945ea50e0c31fc2e0b27638d751a7b
diff --git a/content/xul/templates/src/nsXULSortService.cpp
b/content/xul/templates/src/nsXULSortService.cpp
index 67de503..f9223c2 100644
--- a/content/xul/templates/src/nsXULSortService.cpp
+++ b/content/xul/templates/src/nsXULSortService.cpp
@@ -1403,7 +1403,7 @@ XULSortServiceImpl::InsertContainerNode(
if (!id.IsEmpty()) {
nsCOMPtr containerRes;
-gRDFService->GetUnicodeResource(id, getter_AddRefs(containerRes));
+rv = gRDFService->GetUnicodeResource(id, getter_AddRefs(containerRes));
if (NS_SUCCEEDED(rv))
rv = gRDFC->IsSeq(sortInfo.db, containerRes, &isContainerRDFSeq);
}
--
1.3.3
Re: Mozilla Mothballed now, is a Seamonkey package a possibility?
On Sun, Jul 23, 2006 at 11:56:50PM +1000, Rod Lovett wrote: > As mentioned below by Joey from Debian weekly news, I personally would > much appreciate Debian Developers/ package maintainers to consider > discussing replacing Mozilla , now superseded and mothballed by Mozilla > and replaced by the Seamonkey Council, and now Seamonkey 1.02 stable > release. I wondered about this too and contacted the ITP owner about it. He works together with a debian developer to get this package started. An initial version can be checked out from debian svn [1]. [1] - svn://svn.debian.org/svn/collab-maint/deb-maint/seamonkey - Alexander -- GPG messages preferred.| .''`. ** Debian GNU/Linux ** Alexander Sack | : :' : The universal [EMAIL PROTECTED]| `. `' Operating System http://www.asoftsite.org/ | `-http://www.debian.org/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: RFC: allow new upstream into stable when it's the only way to fix security issues.
On Fri, Aug 05, 2005 at 08:22:43AM +0200, Marc Haber wrote: > On Mon, 1 Aug 2005 11:37:11 +0200, [EMAIL PROTECTED] (Marco d'Itri) wrote: > >On Aug 01, "W. Borgert" <[EMAIL PROTECTED]> wrote: > >> On Sun, Jul 31, 2005 at 10:07:10PM +, Roland Rosenfeld wrote: > >> > But how do you push the users to remove the package from their > >> > systems? In reality they will keep the broken version installed and > >> > so you have (1) again :-( > >> Empty package with a higher version number? > >And exactly, how this would help our users? > > It will keep them from using a vulnerable version of the software, and > will probably encourage them to get a fixed version from outside > Debian proper (e.g. volatile). > If there is really no chance to get something new in (or remove them), I would suggest that those packages affected should be allowed to push a minimal patched package to the security archive that tries to warn the users about the potential security problems in the package and how to obtain a new one (e.g. on the default startpage). -- GPG messages preferred. | .''`. ** Debian GNU/Linux ** Alexander Sack| : :' : The universal [EMAIL PROTECTED] | `. `' Operating System http://www.asoftsite.org | `-http://www.debian.org -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Help needed for #377468
On Sat, Dec 20, 2008 at 03:50:21PM +0100, Bastien ROUCARIES wrote: > Hi! > > I would like to ask for some help for the bug #377468, if possible, > please. Particularly from a mozilla-plugin wizard. > > The problem is that djvulibre in upstream is not linked against a particular > libXt > in order to adapt against different libXt version depending of the browser > used. > The question raised by the upsteam is the case of the browser itself already > uses libXt, and links to > a different version of the library than the plugin. > I think it should link against libXt in any case. AFAIK libXt properly tracks library version, so linking against it should actually do the right thing. Of course your plugin might only use a super stable subset of the symbols in libXt, but even then i think not linking against the system lib causes troubles. - Alexander -- To UNSUBSCRIBE, email to debian-devel-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Bug#570853: ITP: ntrack -- lightweight connectivity tracking library
Package: wnpp Severity: wishlist Owner: Alexander Sack * Package name: ntrack Version : 006 * URL : https://launchpad.net/ntrack * License : LGPL 3 (or later) Programming Lang: C, C++, Python Description : lightweight connectivity tracking library -- To UNSUBSCRIBE, email to debian-devel-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20100221212918.5825.61367.report...@localhost.localdomain
ttf Depends ??
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hi, what Depends are best to guarantee that after package installation at least one True Type font package is installed?? Should I add a best guess font package or is there a kind of meta package available for ttf packages? Thx - -- ~ PGP messages preferred. | .''`. ** Debian GNU/Linux ** ~ Alexander Sack | : :' : The universal ~ [EMAIL PROTECTED] | `. `' Operating System ~ http://www.jwsdot.com/ | `-http://www.debian.org/ // -BEGIN PGP SIGNATURE- Version: GnuPG v1.2.3 (GNU/Linux) Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org iD8DBQE/lBhDv8pLOKgkuT8RAkBTAJ9SYtL3fkAhRG3Q64wbrCnP6rkEAwCfSgA/ 3aTRqShR0sgs5E0RSXnRvGw= =G7OG -END PGP SIGNATURE-
Re: ttf Depends ??
Hi, Thx, this is what I just received by mail: Le lun 20/10/2003 à 19:15, Alexander Sack a écrit : what Depends are best to guarantee that after package installation at least one True Type font package is installed?? Should I add a best guess font package or is there a kind of meta package available for ttf packages? If it is for thunderbird, you shouldn't bother with that anymore. Fontconfig now requires at least one font package to be installed, so it will be pulled as a dependency. Apparently I won't need to do that anymore! -- PGP messages preferred. | .''`. ** Debian GNU/Linux ** Alexander Sack | : :' : The universal [EMAIL PROTECTED] | `. `' Operating System http://www.jwsdot.com/ | `-http://www.debian.org/
