Bug#392122: ITP: php-suhosin -- Suhosin is an advanced protection system for PHP installations.
Package: wnpp Severity: wishlist Owner: Jan Wagner <[EMAIL PROTECTED]> * Package name: php-suhosin Version : 0.9.6 Upstream Author : Stefan Esser <[EMAIL PROTECTED]> * URL : http://www.hardened-php.net/suhosin/ * License : PHP License, version 3.01 Programming Lang: C Description : Suhosin is an advanced protection system for PHP installations. (Include the long description here.) Suhosin is an advanced protection system for PHP installations. It was designed to protect servers and users from known and unknown flaws in PHP applications and the PHP core. Suhosin comes in two independent parts, that can be used separately or in combination. The first part is a small patch against the PHP core, that implements a few low-level protections against bufferoverflows or format string vulnerabilities and the second part is a powerful PHP extension that implements all the other protections. -- System Information: Debian Release: testing/unstable APT prefers testing APT policy: (500, 'testing') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.17-2-686 Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#392333: ITP: irrtoolset -- IRRToolSet is a suite of policy analysis tools to operate with routing policies in RPSL [RFC 2622] format, registered in Internet Routing Registry(IRR).
Package: wnpp Severity: wishlist Owner: Jan Wagner <[EMAIL PROTECTED]> * Package name: irrtoolset Version : 4.8.4 Upstream Author : Joao Damas <[EMAIL PROTECTED]> * URL : http://www.isc.org/index.pl?/sw/IRRToolSet/ * License : 3-clause BSD with non-commercial only restriction Programming Lang: Description : IRRToolSet is a suite of policy analysis tools to operate with routing policies in RPSL [RFC 2622] format, registered in Internet Routing Registry(IRR). The "Internet Routing Registry Toolset" (IRRToolSet) project is a new activity proposed by the RIPE NCC. This project has been migrated from the USC Information Sciences Institute, where it was developed in 1997-2001 as the "Routing Arbiter ToolSet" (RAToolSet) project. As the RAToolSet is no longer developed by ISI but is used worldwide, the RIPE NCC proposed to migrate this project to the RIPE NCC in order to continue its development and support. The original name of the project was preserved during the transition process, but has been finally changed to IRRToolSet. Currently, the RIPE NCC has transfered mainteinance of this toolset to ISC, who will be accepting code from the community and providing code mainteinance. . IRRToolSet is a suite of policy analysis tools to operate with routing policies in RPSL [RFC 2622] format, registered in Internet Routing Registry (IRR). The main goal of the project is to make routing information more convenient and useful for network engineers, by providing tools for automated router configuration, routing policies analysis, and maintenance. -- System Information: Debian Release: testing/unstable APT prefers testing APT policy: (500, 'testing') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.17-2-686 Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Bug#392122: ITP: php-suhosin -- Suhosin is an advanced protection system for PHP installations.
On Thursday 12 October 2006 14:52, Luca Capello wrote: > There's already ITP #392119 [1] (cc:ing its submitter), I guess the > two should be merged. Since Alexander was quite faster, I'm closing this ITP. With kind regards, Jan. -- -BEGIN GEEK CODE BLOCK- Version: 3.1 GIT d-- s+: a- C+++ UL P+ L+++ E- W+++ N+++ o++ K++ w--- O M V- PS PE Y++ PGP++ t-- 5 X R tv- b+ DI- D++ G++ e++ h-- r+++ y+++ --END GEEK CODE BLOCK-- pgpEWGIPS0ULT.pgp Description: PGP signature
Bug#392647: ITP: arpalert -- Used for monitoring arp changes in ethernet networks
Package: wnpp Severity: wishlist Owner: Jan Wagner <[EMAIL PROTECTED]> * Package name: arpalert Version : 1.1.1 Upstream Author : Thierry Fournier <[EMAIL PROTECTED]> * URL : http://www.arpalert.org * License : GPL 2 or later Description : Used for monitoring arp changes in ethernet networks It listens on a network interface (without using 'promiscuous' mode) and catches all conversations of MAC address to IP request. It then compares the mac addresses it detected with a pre-configured list of authorized MAC addresses. If the MAC is not in list, arpalert launches a pre-defined user script with the MAC address and IP address as parameters. This software can run in daemon mode; it's very fast (low CPU and memory consumption). -- System Information: Debian Release: 3.1 Architecture: sparc (sparc64) Kernel: Linux 2.4.27-3-sparc64 Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#396618: ITP: dns-flood-detector -- DNS Flood Detector was developed to detect abusive usage levels on high traffic nameservers and to enable quick response in halting the use of one's nameserver t
Package: wnpp Severity: wishlist Owner: Jan Wagner <[EMAIL PROTECTED]> * Package name: dns-flood-detector Version : 1.12 Upstream Author : Dennis Opacki <[EMAIL PROTECTED]> * URL : http://www.adotout.com/ * License : GPL 2 Programming Lang: C Description : DNS Flood Detector was developed to detect abusive usage levels on high traffic nameservers and to enable quick response in halting the use of one's nameserver to facilitate spam. DNS Flood Detector uses libpcap (in non-promiscuous mode) to monitor incoming dns queries to a nameserver. The tool may be run in one of two modes, either daemon mode or "bindsnap" mode. In daemon mode, the tool will alarm via syslog. In bindsnap mode, the user is able to get near-real-time stats on usage to aid in more detailed troubleshooting. -- System Information: Debian Release: testing/unstable APT prefers testing APT policy: (500, 'testing') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.17-2-686 Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Bug#396618: ITP: dns-flood-detector -- DNS Flood Detector was developed to detect abusive usage levels on high traffic nameservers and to enable quick response in halting the use of one's nameserv
Hi Andrea, On Wednesday 01 November 2006 23:03, Andrea Bolognani wrote: > Jan Wagner <[EMAIL PROTECTED]> wrote: > > Description : DNS Flood Detector was developed to detect abusive > > usage levels on high traffic nameservers and to enable quick response in > > halting the use of one's nameserver to facilitate spam. > > Please use a shorter description for this package. i will use "DNS Flood Detector was developed to detect abusive usage levels on high traffic nameservers" when building the package ... hope thats okay. With kind regards, Jan. -- -BEGIN GEEK CODE BLOCK- Version: 3.1 GIT d-- s+: a- C+++ UL P+ L+++ E- W+++ N+++ o++ K++ w--- O M V- PS PE Y++ PGP++ t-- 5 X R tv- b+ DI- D++ G++ e++ h-- r+++ y+++ --END GEEK CODE BLOCK-- pgpNAWM8Uv9Wb.pgp Description: PGP signature
Bug#396953: ITP: ps-watcher -- monitoring a system via ps-like commands
Package: wnpp Severity: wishlist Owner: Jan Wagner <[EMAIL PROTECTED]> * Package name: ps-watcher Version : 1.10 Upstream Author : Rocky Bernstein <[EMAIL PROTECTED]> * URL : http://ps-watcher.sourceforge.net * License : GPL 2 Programming Lang: Perl Description : monitoring a system via ps-like commands This program runs the ps command periodically and triggers commands on matches. The match patterns are Perl regular expressions which can refer to the process information via variables. . For example it can be used to ensure that a daemon is running, or is not running too many times. It can also be used to determine when a process has consumed too many resources, perhaps due to a memory leak. -- System Information: Debian Release: testing/unstable APT prefers testing APT policy: (500, 'testing') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.17-2-686 Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#397236: ITP: asused -- To run a check on the usage of your registry's allocations
Package: wnpp Severity: wishlist Owner: Jan Wagner <[EMAIL PROTECTED]> * Package name: asused Version : 3.72 Upstream Author : RIPE <[EMAIL PROTECTED]> * URL : http://www.ripe.net/tools/ * License : BSD Programming Lang: Perl Description : To run a check on the usage of your registry's allocations This is a tool used for checking various aspects of our IP allocations and assignments as stored in the RIPE database. -- System Information: Debian Release: testing/unstable APT prefers testing APT policy: (500, 'testing') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.17-2-686 Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#397291: ITP: php-tidy -- tidy module for php[45]
Package: wnpp Severity: wishlist Owner: Jan Wagner <[EMAIL PROTECTED]> * Package name: php-tidy Version : 5.1.6 Upstream Author : The PHP group at www.php.net * URL : http://www.php.net/downloads.php * License : PHP License, version 3.01 Programming Lang: C Description : tidy module for php[45] PHP is an HTML-embedded scripting language. Much of its syntax is borrowed from C, Java and Perl with a couple of unique PHP-specific features thrown in. The goal of the language is to allow web developers to write dynamically generated pages quickly. -- System Information: Debian Release: testing/unstable APT prefers testing APT policy: (500, 'testing') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.17-2-686 Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Bug#397291: ITP: php-tidy -- tidy module for php[45]
On Monday 06 November 2006 12:30, Loïc Minier wrote: > On Mon, Nov 06, 2006, Jan Wagner wrote: > > Description : tidy module for php[45] > > PHP is an HTML-embedded scripting language. Much of its syntax is > > borrowed from C, Java and Perl with a couple of unique PHP-specific > > features thrown in. The goal of the language is to allow web developers > > to write dynamically generated pages quickly. > > This is the description of PHP, not of php-tidy I guess. While it > might be useful to explain what PHP is, I expect the description of > php-tidy to tell me what php-tidy is... I`ll add: "Tidy is a binding for the Tidy HTML clean and repair utility which allows you to not only clean and otherwise manipulate HTML documents, but also traverse the document tree." Regards, Jan. -- -BEGIN GEEK CODE BLOCK- Version: 3.1 GIT d-- s+: a- C+++ UL P+ L+++ E- W+++ N+++ o++ K++ w--- O M V- PS PE Y++ PGP++ t-- 5 X R tv- b+ DI- D++ G++ e++ h-- r+++ y+++ --END GEEK CODE BLOCK-- pgpaXdTCRSvQ0.pgp Description: PGP signature
Re: Bug#397291: ITP: php-tidy -- tidy module for php[45]
On Monday 06 November 2006 15:41, Loïc Minier wrote: > On Mon, Nov 06, 2006, Jan Wagner wrote: > > Version : 5.1.6 > > * URL : http://www.php.net/downloads.php > > I don't understand: will you upload the php5 source a second time to > Debian just for the tidy extension? I did split ext/tidy out of the php5 package. > What about the bugs below? > http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=332763 > http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=355976 The last one should be closed by upload. The first isn't closed by upload. Trying to merge them before #355976 will get closed. > > > Description : tidy module for php[45] > > Is this really for PHP4 and PHP5? The upstream site offers a download > for PHP4, and I think tidy is now bundled in PHP5. If you look into #397291 you will see I did retitle the bug. I realized, that tidy support for php4 is a completly different upstream source. With kind regards, Jan. pgp3PkrLfqKo9.pgp Description: PGP signature
Re: Bug#397291: ITP: php-tidy -- tidy module for php[45]
On Monday 06 November 2006 15:03, Emmanuel Bouthenot wrote: > Hi, > > Maybe you will close #332763 too with your ITP. It will get closed by the upload. With kind regards, Jan. pgpEKEhLM8NOC.pgp Description: PGP signature
Re: Bug#397291: ITP: php-tidy -- tidy module for php[45]
On Monday 06 November 2006 22:31, Loïc Minier wrote: > On Mon, Nov 06, 2006, Jan Wagner wrote: > > I did split ext/tidy out of the php5 package. > > That doesn't sound like a good idea; did you already discuss building > it as part of the php5 package? I could not find hints of such a > discussion in #332763 nor #355976. See http://lists.alioth.debian.org/pipermail/pkg-php-maint/2006-November/001286.html > Why would you want to upload a separate source package? That seems to be used to do. See php-imap or php-pspell! With kind regards, Jan. pgpP4bNkhxvxm.pgp Description: PGP signature
Re: Bug#397291: ITP: php-tidy -- tidy module for php[45]
Hi Joey, On Tuesday 07 November 2006 07:32, Joey Schulze wrote: > > > Why would you want to upload a separate source package? > > > > That seems to be used to do. See php-imap or php-pspell! > > Uh? What's the benefit of the duplicated source? Personly I did prefer to provide tidy support for php on-tree. But if the "Debian PHP Maintainers" prefer it off-tree, I'm also fine. ~/debian-builds/php5-tidy/build-area$ ls -la *orig* -rw-r--r-- 1 waja waja 20444 Nov 6 12:52 php5-tidy_5.1.6.orig.tar.gz Since the source tarball isn't that much, I think this will be not a big problem of having it twice. The advantages of maintaining it off tree is maybe, that "Debian PHP Maintainers" dont need to care about on every release. This all are my personly opinions and guesses. I think for a correct answer you need to ask the "Debian PHP Maintainers" group. With kind regards, Jan. -- -BEGIN GEEK CODE BLOCK- Version: 3.1 GIT d-- s+: a- C+++ UL P+ L+++ E- W+++ N+++ o++ K++ w--- O M V- PS PE Y++ PGP++ t-- 5 X R tv- b+ DI- D++ G++ e++ h-- r+++ y+++ --END GEEK CODE BLOCK-- -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: [php-maint] Re: Bug#397291: ITP: php-tidy -- tidy module for php[45]
On Tuesday 07 November 2006 13:49, sean finney wrote: > so unless there are any new developments i'd suggest staying with what > is presently being done, and after etch maybe we can sit down and > revisit this. I totaly agree with that. My intention is, to have a working tidy module available cause my employer need one and hopefully others benefits of it. With kind regards, Jan. -- -BEGIN GEEK CODE BLOCK- Version: 3.1 GIT d-- s+: a- C+++ UL P+ L+++ E- W+++ N+++ o++ K++ w--- O M V- PS PE Y++ PGP++ t-- 5 X R tv- b+ DI- D++ G++ e++ h-- r+++ y+++ --END GEEK CODE BLOCK-- pgp4aZJ9mKHnh.pgp Description: PGP signature
Bug#397704: ITP: policyd-weight -- a Perl policy daemon for the Postfix MTA
Package: wnpp Severity: wishlist Owner: Jan Wagner <[EMAIL PROTECTED]> * Package name: policyd-weight Version : 0.1.14-beta Upstream Author : Robert Felber <[EMAIL PROTECTED]> * URL : http://www.policyd-weight.org * License : GPL Programming Lang: Perl Description : a Perl policy daemon for the Postfix MTA Its intended to eliminate forged envelope senders and HELOs (i.e. in bogus mails). It allows you to score DNSBLs (RBL/RHSBL), HELO, MAIL FROM and client IP addresses before any queuing is done. It allows you to REJECT messages which have a score higher than allowed, providing improved blocking of spam and virus mails. policyd-weight caches the most frequent client/sender combinations (SPAM as well as HAM) to reduce the number of DNS queries. -- System Information: Debian Release: testing/unstable APT prefers testing APT policy: (500, 'testing') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.17-2-686 Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Call for testers: cyrus-sasl2
On Tuesday 28 November 2006 07:53, Fabian Fagerholm wrote: > This new package is a major change compared to the old version. > Therefore, we want people to test it as much as possible! Hi Fabian, can you explain short, what are the changes? Thanks and with kind regards, Jan. -- Write never mails to <[EMAIL PROTECTED]>, you have been warned! -BEGIN GEEK CODE BLOCK- Version: 3.1 GIT d-- s+: a- C+++ UL P+ L+++ E- W+++ N+++ o++ K++ w--- O M V- PS PE Y++ PGP++ t-- 5 X R tv- b+ DI- D++ G++ e++ h-- r+++ y+++ --END GEEK CODE BLOCK-- pgp1p1RujCfvv.pgp Description: PGP signature
Bug#401678: ITP: nagios-snmp-plugins -- SNMP Plugins for nagios
Package: wnpp Severity: wishlist Owner: Jan Wagner <[EMAIL PROTECTED]> * Package name: nagios-snmp-plugins Version : 1.0 Upstream Author : Henning P. Schmiedehausen <[EMAIL PROTECTED]> * URL : <ftp://ftp.hometree.net/pub/nagios-snmp-plugins> * License : GPL Programming Lang: C Description : SNMP Plugins for nagios Checks for running processes and/or disk size configurable in the SNMP daemon and queryable via SNMP. -- System Information: Debian Release: 4.0 APT prefers testing APT policy: (500, 'testing') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.17-2-686 Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#470356: ITP: postfwd -- Postfix policyd to combine complex restrictions in a ruleset
Package: wnpp Severity: wishlist X-Debbugs-CC: debian-devel@lists.debian.org Package name: postfwd Version: 1.03 Upstream Author: Jan Peter Kessler <[EMAIL PROTECTED]> URL: http://postfwd.org/ License: BSD license Description: Postfix policyd to combine complex restrictions in a ruleset Postfwd is written in perl to combine complex postfix restrictions in a ruleset similar to those of the most firewalls. The program uses the postfix policy delegation protocol to control access to the mail system before a message has been accepted (please visit http://www.postfix.org/SMTPD_POLICY_README.html for more information). It allows you to choose an action (e.g. reject, dunno) for a combination of several smtp parameters (like sender and recipient address, size or the client's TLS fingerprint). Thanks and with kind regards, Jan. -- Never write mail to <[EMAIL PROTECTED]>, you have been warned! -BEGIN GEEK CODE BLOCK- Version: 3.1 GIT d-- s+: a- C+++ UL P+ L+++ E- W+++ N+++ o++ K++ w--- O M V- PS PE Y++ PGP++ t-- 5 X R tv- b+ DI- D++ G++ e++ h-- r+++ y+++ --END GEEK CODE BLOCK-- libnet-dns-async-perl_1.06-1.diff.gz Description: GNU Zip compressed data Format: 1.0 Source: libnet-dns-async-perl Binary: libnet-dns-async-perl Architecture: all Version: 1.06-1 Maintainer: Debian Perl Group <[EMAIL PROTECTED]> Uploaders: Jan Wagner <[EMAIL PROTECTED]> Homepage: http://search.cpan.org/dist/Net-DNS-Async/ Standards-Version: 3.7.3 Vcs-Browser: http://svn.debian.org/wsvn/pkg-perl/trunk/libnet-dns-async-perl/ Vcs-Svn: svn://svn.debian.org/pkg-perl/trunk/libnet-dns-async-perl/ Build-Depends: debhelper (>= 5.0.0) Build-Depends-Indep: perl (>= 5.8.8-12) Files: a72909034f5c098f90b5fe6f661e69ea 4634 libnet-dns-async-perl_1.06.orig.tar.gz 7cb4bb6ae5e57efe09112b6ef4d4257b 2312 libnet-dns-async-perl_1.06-1.diff.gz libnet-dns-async-perl_1.06.orig.tar.gz Description: application/tgz pgpbLWGo6HELV.pgp Description: PGP signature
Re: nepenthes_0.2.0-1(hppa/experimental): FTBFS: tries to use static library compiled without -fPIC
Hi Luciano, On Wednesday 20 June 2007 19:15, Luciano Bello wrote: > I need your opinion and comments about: http://bugs.debian.org/399892 > Nepenthes has a module (modulehoneytrap.so) linked with libipq (IPQ > library for userspace), which is part of iptables-dev. Libipq looks like it > only comes in a static form, and hence isn't built PIC. > Frank Lichtenheld <[EMAIL PROTECTED]> proposed to ask here. > > Please CC to the bug if you think is proper. Any process with the issue? Thanks and with kind regards, Jan. -- Never write mail to <[EMAIL PROTECTED]>, you have been warned! -BEGIN GEEK CODE BLOCK- Version: 3.1 GIT d-- s+: a- C+++ UL P+ L+++ E- W+++ N+++ o++ K++ w--- O M V- PS PE Y++ PGP++ t-- 5 X R tv- b+ DI- D++ G++ e++ h-- r+++ y+++ --END GEEK CODE BLOCK-- -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Xen status in lenny?
Hi there, On Tuesday 15 July 2008 16:02, Bastian Blank wrote: > On Thu, Jul 10, 2008 at 09:53:25PM +0200, Lucas Nussbaum wrote: > > What are the plans for Xen for lenny? Is this situation likely to change > > before the release? > > As we have seen, there is no real plan. So lets summarize the > possibilities: > [Option 1-5] (Option 6 / SLES's 2.6.26 mentioned later in thread by Moritz) > Conclusion > == > Xen got a often used technique in the last two years. All of the large > distributions got some sort of support for it. Debian Etch have full > support for it. There was several requests of various people so I think > not providing at least a minimal support in Lenny is wrong. > > I think option 4 would be the solution which produces the least amount > of extra work and provides our users with support for there systems. I > would provide the necessary packages but I want an okay for that > solution from the security and the release team. since we have rolled out over 50 dom0 with etch, we are really interested into having xen dom0 support in lenny. Are there any further decisions made? We choosed debian, cause we thought that Xen support won't be droped in the next stable release and there is no influence by commercial interests into this. Thanks for your work and please keep me (and all the others, that seems interested by looking into this thread) updated. With kind regards, Jan. -- Never write mail to <[EMAIL PROTECTED]>, you have been warned! -BEGIN GEEK CODE BLOCK- Version: 3.1 GIT d-- s+: a- C+++ UL P+ L+++ E- W+++ N+++ o++ K++ w--- O M V- PS PE Y++ PGP++ t-- 5 X R tv- b+ DI- D++ G++ e++ h-- r+++ y+++ --END GEEK CODE BLOCK-- pgphUyP4fFVw1.pgp Description: PGP signature
Re: [Pkg-xen-devel] Xen status in lenny?
Good morning, On Wednesday 17 September 2008, Paul van der Vlis wrote: > > since we have rolled out over 50 dom0 with etch, we are really interested > > into having xen dom0 support in lenny. > > So far I know you can run Lenny as a dom0, but not with the Lenny > kernel. You can e.g. use the Etch Xen kernel or the Xensource kernel, > both Linux 2.6.18. thats not what I understand as "dom0 support in lenny". I'm looking for security support also for the kernel. I guess even if it's planed to release lenny+1/2 with a dom0 kernel, we have the chance to have 2 pita: * there will no dom0 support from upstream available in reasonable time * security support for dom0 etch kernel packages ends without a replacement available With kind regards, Jan. -- Never write mail to <[EMAIL PROTECTED]>, you have been warned! -BEGIN GEEK CODE BLOCK- Version: 3.1 GIT d-- s+: a- C+++ UL P+ L+++ E- W+++ N+++ o++ K++ w--- O M V- PS PE Y++ PGP++ t-- 5 X R tv- b+ DI- D++ G++ e++ h-- r+++ y+++ --END GEEK CODE BLOCK-- signature.asc Description: This is a digitally signed message part.
Re: Xen status in lenny?
Hi Bastian, On Wednesday 17 September 2008, Bastian Blank wrote: > On Tue, Sep 16, 2008 at 10:32:49PM +0200, Jan Wagner wrote: > > [Option 1-5] (Option 6 / SLES's 2.6.26 mentioned later in thread by > > Moritz) > > Please show it. SLES 11 ships 2.6.25. I was just refering Message-ID: <[EMAIL PROTECTED]>, didn't verify it. With kind regards, Jan. -- Never write mail to <[EMAIL PROTECTED]>, you have been warned! -BEGIN GEEK CODE BLOCK- Version: 3.1 GIT d-- s+: a- C+++ UL P+ L+++ E- W+++ N+++ o++ K++ w--- O M V- PS PE Y++ PGP++ t-- 5 X R tv- b+ DI- D++ G++ e++ h-- r+++ y+++ --END GEEK CODE BLOCK-- signature.asc Description: This is a digitally signed message part.
Re: Xen status in lenny?
On Wednesday 17 September 2008, Jan Wagner wrote: > On Wednesday 17 September 2008, Bastian Blank wrote: > > On Tue, Sep 16, 2008 at 10:32:49PM +0200, Jan Wagner wrote: > > > [Option 1-5] (Option 6 / SLES's 2.6.26 mentioned later in thread by > > > Moritz) > > > > Please show it. SLES 11 ships 2.6.25. > > I was just refering Message-ID: <[EMAIL PROTECTED]>, didn't > verify it. What about http://ftp.suse.com/pub/projects/kernel/kotd/HEAD/x86_64/2.6.26/kernel- source-2.6.26-HEAD_20080808143035.src.rpm ? With kind regards, Jan. -- Never write mail to <[EMAIL PROTECTED]>, you have been warned! -BEGIN GEEK CODE BLOCK- Version: 3.1 GIT d-- s+: a- C+++ UL P+ L+++ E- W+++ N+++ o++ K++ w--- O M V- PS PE Y++ PGP++ t-- 5 X R tv- b+ DI- D++ G++ e++ h-- r+++ y+++ --END GEEK CODE BLOCK-- signature.asc Description: This is a digitally signed message part.
Re: [Pkg-xen-devel] Xen status in lenny?
On Thursday 18 September 2008, Bastian Blank wrote: > On Thu, Sep 18, 2008 at 10:20:19AM +0200, Paul van der Vlis wrote: > > Bastian Blank schreef: > > > On Wed, Sep 17, 2008 at 08:57:40PM -0300, André Luís Lopes wrote: > > >> Bastian Blank escreveu: > > >>> On Wed, Sep 17, 2008 at 06:52:38PM +0200, Bastian Blank wrote: > > > > > > Next try: http://194.39.182.225/debian/xen/try2. > > > > Great that there seems to be a amd64 port now! > > Do these packages have a dom0 ? > > That was the reason of that stunt. I want just state, that http://194.39.182.225/debian/xen/try3/ works like a charme, even with hvm. With kind regards, Jan. -- Never write mail to <[EMAIL PROTECTED]>, you have been warned! -BEGIN GEEK CODE BLOCK- Version: 3.1 GIT d-- s+: a- C+++ UL P+ L+++ E- W+++ N+++ o++ K++ w--- O M V- PS PE Y++ PGP++ t-- 5 X R tv- b+ DI- D++ G++ e++ h-- r+++ y+++ --END GEEK CODE BLOCK-- -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: ITP: shinken -- Monitoring tool
On Monday 04 October 2010 14:46:07 Alexander Wirt wrote: > Even if I think shinken is not ready for productive usage its good to see > that someone packages it. I want to invite you to do the packaging and > maintenance within the existing pkg-nagios group as shinken is more or less > nagios related > > :). If you are interested join us on the mailinglist > > (pkg-nagios-de...@lists.alioth.debian.org) and in the pkg-nagios alioth > project. We even started to create a site about the team, the packages and maybe in the future, what needs to be done. But we are at a starting point. Anyways, you can have a look at the early version at http://pkg-nagios.alioth.debian.org/ With kind regards, Jan. -- Never write mail to , you have been warned! -BEGIN GEEK CODE BLOCK- Version: 3.12 GIT d-- s+: a C+++ UL P+ L+++ E--- W+++ N+++ o++ K++ w--- O M V- PS PE Y++ PGP++ t-- 5 X R tv- b+ DI D+ G++ e++ h r+++ y --END GEEK CODE BLOCK-- signature.asc Description: This is a digitally signed message part.
Bug#612734: O: policyd-weight -- a Perl policy daemon for the Postfix MTA
Package: wnpp Severity: normal X-Debbugs-CC: debian-devel@lists.debian.org I intend to orphan the policyd-weight package. I no longer use policyd-weight and active upstream development stoped. Anyways, upstream is responsive and is acting on bugs. policyd-weight (0.1.15.1-3) unstable; urgency=low * Orphan the package. * Add 03_cacherejectmsg.dpatch, to have a more verbose reject message on cache hit, thanks Martin F. Krafft (Closes: #598844) * Updating standards version to 3.9.1 - use dh_prep instead of dh_clean -k * Update to debhelper 7 -- Jan Wagner Thu, 10 Feb 2011 10:38:35 +0100 The package description is: Its intended to eliminate forged envelope senders and HELOs (i.e. in bogus mails). It allows you to score DNSBLs (RBL/RHSBL), HELO, MAIL FROM and client IP addresses before any queuing is done. It allows you to REJECT messages which have a score higher than allowed, providing improved blocking of spam and virus mails. policyd-weight caches the most frequent client/sender combinations (SPAM as well as HAM) to reduce the number of DNS queries. signature.asc Description: This is a digitally signed message part.
Bug#612901: O: asused -- To run a check on the usage of your registry's allocations
Package: wnpp Severity: normal X-Debbugs-CC: debian-devel@lists.debian.org I intend to orphan the asused package. It only supports IPv4 and upstream is dead since ages. The package description is: This is a tool used for checking various aspects of IP allocations and assignments as stored in the RIPE database. signature.asc Description: This is a digitally signed message part.
Bug#612902: O: arpalert -- Monitor ARP changes in ethernet networks
Package: wnpp Severity: normal X-Debbugs-CC: debian-devel@lists.debian.org I intend to orphan the arpalert package. I no longer use arpalert and active upstream development seems stoped. The package description is: This package provides the arpalert daemon. It listens on a network interface (without using 'promiscuous' mode) and catches all conversations of MAC address to IP request. It then compares the mac addresses it detected with a pre-configured list of authorized MAC addresses. If the MAC is not in list, arpalert launches a pre-defined user script with the MAC address and IP address as parameters. This software can run in daemon mode; it's very fast (low CPU and memory consumption). It responds at signal SIGHUP (configuration reload) and at signals SIGTERM, SIGINT, SIGQUIT and SIGABRT (arpalert stops itself). If you need to use a list of authorized MAC addresses, this package should suit your needs, otherwise arpwatch may be also fine. signature.asc Description: This is a digitally signed message part.
Transition of initscripts to new order / sequence number
Hi there, while thinking about how to solve #508189, where I need to change the position of the initscript in bootorder, I thought it would not sufficient to change only the call of dh_installinit in the rules file. If an user changed the symlinks, I guess I will break his changes. How should we handle this? Is there any best practise and/or policy how we should deal with it? I think it's not usefull just to override the changes by the local sysadmin. Thanks for your hints, Jan. -- Never write mail to , you have been warned! -BEGIN GEEK CODE BLOCK- Version: 3.1 GIT d-- s+: a- C+++ UL P+ L+++ E- W+++ N+++ o++ K++ w--- O M V- PS PE Y++ PGP++ t-- 5 X R tv- b+ DI- D++ G++ e++ h-- r+++ y+++ --END GEEK CODE BLOCK-- signature.asc Description: This is a digitally signed message part.
Re: Transition of initscripts to new order / sequence number
Hi, On Saturday 04 April 2009, Kel Modderman wrote: > On Thursday 19 March 2009 00:35:06 Jan Wagner wrote: > > while thinking about how to solve #508189, where I need to change the > > position of the initscript in bootorder, I thought it would not > > sufficient to change only the call of dh_installinit in the rules file. > An update-rc.d interface for this was proposed here [0]. An analogous > solution would need to be provided for dependency based boot (insserv > diverts update-rc.d) and any other boot system in Debian which diverts > update-rc.d. hmm .. doesn't looks like this is available for now and all other statements seems not to lead me to a short-/midterm solution ... so what should I do with the bugreport? Thanks and with kind regards, Jan. P.S. Sorry for crossposting. I'm not subscribed to pkg-sysvinit-devel, so please keep me in CC. -- Never write mail to , you have been warned! -BEGIN GEEK CODE BLOCK- Version: 3.1 GIT d-- s+: a- C+++ UL P+ L+++ E- W+++ N+++ o++ K++ w--- O M V- PS PE Y++ PGP++ t-- 5 X R tv- b+ DI- D++ G++ e++ h-- r+++ y+++ --END GEEK CODE BLOCK-- signature.asc Description: This is a digitally signed message part.
webapps in stable release cyles Was: flashplugin-nonfree in Debian
Hi Luk, On Wednesday 22 April 2009, Luk Claes wrote: > Bart Martens wrote: > > I have updated bug report 457291 "flashplugin-nonfree: decision > > 2007-12-21: keep this package out of stable starting with lenny". > > http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=457291 > > > > I hereby invite you to evaluate how my newest comments on that bug > > report match or conflict with your policies, and to share your thoughts > > with me, replies preferably sent to 457291-qu...@bugs.debian.org . > > I want to have a more general solution, so instead of focusing on > flashplugin-nonfree, I'd rather want to have a common policy for stable, > volatile and backports so it would be very clear for everyone how things > are supported and where to find updates. > > I've requested a slot at DebConf to discuss this into detail, though > feel free to start a discussion already on debian-devel. sorry for coming around with another issue. While reading your comment without giving any details about your ideas, I don't know if our problem maybe related, sorry if not. There are many packages, which are frequently removed from testing right before the release, cause of (potential) security issues and not getting in worries with the security team. Other packages may be obsoleted by upstream and lose their support. This is often the case for web applications. We had something in mind we summarized at http://wiki.debian.org/Proposals/Webapps. Maybe you can consider our issue in your thoughts. Thanks and with kind regards, Jan. -- Never write mail to , you have been warned! -BEGIN GEEK CODE BLOCK- Version: 3.1 GIT d-- s+: a- C+++ UL P+ L+++ E- W+++ N+++ o++ K++ w--- O M V- PS PE Y++ PGP++ t-- 5 X R tv- b+ DI- D++ G++ e++ h-- r+++ y+++ --END GEEK CODE BLOCK-- signature.asc Description: This is a digitally signed message part.
Re: webapps in stable release cyles Was: flashplugin-nonfree in Debian
Hi Romain, On Wednesday 22 April 2009, Romain Beauxis wrote: > However, I wonder if this would need yet another archive, or just an update > of a policy, either in backports.org or volatile.. DUNNO for volatile, but the ftp-master of bpo, which is actually doing the main work clarified, that don't like to be responsible for PHP based packages, which is the most potential languages of the applications which matches the criterias. With kind regards, Jan. -- Never write mail to , you have been warned! -BEGIN GEEK CODE BLOCK- Version: 3.1 GIT d-- s+: a- C+++ UL P+ L+++ E- W+++ N+++ o++ K++ w--- O M V- PS PE Y++ PGP++ t-- 5 X R tv- b+ DI- D++ G++ e++ h-- r+++ y+++ --END GEEK CODE BLOCK-- signature.asc Description: This is a digitally signed message part.
Bug#647269: RFA: ipplan -- web-based IP address manager and tracker
Package: wnpp Severity: normal X-Debbugs-CC: debian-devel@lists.debian.org I request an adopter for the ipplan package. The long description is: IPplan is an administrative tool for ISPs and network service companies. It goes beyond IP address management to provide DNS administration, configuration file management, circuit management and storing of hardware information, all customizable via templates. IPplan can handle a single network or cater for multiple networks and customers with overlapping address space. Makes managing IP addresses and address spaces simple and easy! The package is actually uninstallable (see #618388) cause missing libphp- phplayersmenu. There is an embedded code copy shipped with ipplan, but as phplayersmenu itself is not maintained anymore, it doesn't make really sence to use this. The 4.x trunk of ipplan seems stuck with development, but there was started a 6.x trunk (see http://sourceforge.net/projects/iptrack/files/ipplan-beta/). I do not use this software anymore, so this should be maintained by someone else or be orphaned at one point. signature.asc Description: This is a digitally signed message part.
Re: [php-maint] Backport requirements exception for some packages (php5)
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hi there, Am 16.12.13 14:09, schrieb Ondřej Surý: >> And especially in that case it is a problem. If we want to keep >>> with the 5.4.x upload currently sitting in NEW we will end with >>> an unsupported branch (testing already has 5.5.x), which is >>> imho not acceptable. > Why? The upstream release process aims to keep the compatibility in > the 5.4.x branch and the Debian packagers are willing to support > the 5.4.x branch in the backports. Also the external services > (dotdeb.org for Debian, my PPAs for Ubuntu) proves that people are > hungry to have latest PHP running and I don't really see a reason > why we can't provide that from within the Debian infrastructure. as I understand the POV of the PHP packaging team, backports is the wrong place for maintaining such packages. This is an excellent example for a valid reason to have a ppa-alike service for Debian with a buildd network behind to not having everybody to build it's own (limited) buildd infrastructure like debmon.org and others. Having my old buildd up and keeping it running, I can tell you that maintaining everybody it's own is a huge wast of time and resources. Just my two cents, Jan. - -- Never write mail to , you have been warned! - -BEGIN GEEK CODE BLOCK- Version: 3.12 GIT d-- s+: a C+++ UL P+ L+++ E--- W+++ N+++ o++ K++ w--- O M V- PS PE Y++ PGP++ t-- 5 X R tv- b+ DI D+ G++ e++ h r+++ y - --END GEEK CODE BLOCK-- -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.12 (Darwin) Comment: GPGTools - http://gpgtools.org iEYEARECAAYFAlK0MZwACgkQ9u6Dud+QFyQn4wCdF0ylfNpr77/JRZ435NbN4u9Q OpIAmwcI/L7uKlRYhr4/vhIrb7FXaltI =J4Qc -END PGP SIGNATURE- -- To UNSUBSCRIBE, email to debian-devel-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/52b4319c.7080...@cyconet.org
Re: Backports, Stable releases, Testing, Oh my!
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hi there, Am 26.02.14 00:33, schrieb Paul Wise: yes ... and the package installed from oldstable-backports is newer then oldstable. This situation we have had sometimes in the past (eg. php-suhosin). The problem that a package, which is in stable-backports, gets removed from testing is nothing new. But with the more aggressive testing removal it is more visible. Cheers, Jan. - -- Never write mail to , you have been warned! - -BEGIN GEEK CODE BLOCK- Version: 3.12 GIT d-- s+: a C+++ UL P+ L+++ E--- W+++ N+++ o++ K++ w--- O M V- PS PE Y++ PGP++ t-- 5 X R tv- b+ DI D+ G++ e++ h r+++ y - --END GEEK CODE BLOCK-- -BEGIN PGP SIGNATURE- Version: GnuPG/MacGPG2 v2.0.22 (Darwin) Comment: GPGTools - https://gpgtools.org iEYEARECAAYFAlMNlu0ACgkQ9u6Dud+QFySiogCglXpp64gTJXEu7w9O0kizN3nJ ltsAoIvm/p3gP9nrYtAElBs1um2veQy7 =hqNx -END PGP SIGNATURE- -- To UNSUBSCRIBE, email to debian-devel-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/530d96ed.4090...@cyconet.org
monitoring-plugins_2.3 in experimental
Hi there, Am 19.12.20 um 00:56 schrieb Debian FTP Master:> Changes: > monitoring-plugins (2.3-1~exp1) experimental; urgency=medium > . >* [3031044] New upstream version 2.3 >* [61ef2d7] Droping all patches commited upstream and beeing obsolete with > 2.3 >* [66c44c4] d/control: adding new build-deps fir check_curl >* [59b52dd] d/rules: Adding check_curl to std_plugins >* [5e59ca1] Adding check_curl check commands >* [6cbfc78] check_uptime: Don't ship for now, check_uptime also exist in > nagios-plugins-contrib I uploaded this into experimental. In case there is enough (positive) feedback I'm thinking about to upload this into unstable targeted to bullseye. So please test and give feedback. Thanks and cheers, Jan. -- Never write mail to , you have been warned! -BEGIN GEEK CODE BLOCK- Version: 3.12 GIT d-@ s+:()>- a+ C$ UL$ P+ L$ !E--- W+++$ N+++ o++ K++ !w---? O M+ !V- PS+ PE Y++ PGP++ t-- 5 X R tv- b+ DI D+ G++ e++ h r+++ y+ --END GEEK CODE BLOCK-- signature.asc Description: OpenPGP digital signature
Re: OpenSSL 1.1.0
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Hi there, Am 02.11.2016 um 21:15 schrieb Kurt Roeckx: > I don't think having libssl1-1-dev vs libssl1.0-dev is going to > make much differences in the end. The build conflicts will always > have to be sorted out. thats the point where I rushed into another problem, monitoring-plugins isn't compatible with openssl 1.1[1]. So you might argue just to link against libssl1.0-dev. The issue is that monitoring-plugins makes massive use of other libraries. When now installing libssl1.0-dev all packages build against libssl1-1-dev will be removed. The first lib I spotted was libpq-dev, I expect more to follow. This means now I can hope to get openssl 1.1 support (under pressure) for monititoring-plugins and every lib works hopefully well with it. When no openssl 1.1 support will be available, I can try to depend on libssl1.0-dev, but can not build all plugins that was shiped with jessie . This doesn't look like a smooth move for monitoring-plugins. Just my 2 cents, Jan. [1] https://bugs.debian.org/844031 - -- Never write mail to , you have been warned! - -BEGIN GEEK CODE BLOCK- Version: 3.12 GIT d-- s+: a C+++ UL P+ L+++ E--- W+++ N+++ o++ K++ w--- O M+ V- PS PE Y++ PGP++ t-- 5 X R tv- b+ DI D+ G++ e++ h r+++ y - --END GEEK CODE BLOCK-- -BEGIN PGP SIGNATURE- iQIcBAEBCgAGBQJYJkZbAAoJEAxwVXtaBlE+bAEP/RNEI7EXv5BNIo/y3Yo9acI/ 4kK6XwLbAUUcQSuyVtFgz4kiqiQsfk/X8gwwvLFEFZ0UNZCOCslv/2/2bJs6vnRX lQ60l3g/OGdZ72O0qVnrLDfVm28oIqoxuKW8zpoYP5hFAnvFzSWgw0AFPv7BfbPS nHvVc8KJ6KkRJEFofcDBcA0oO88XoAG47JXA2YhS7WWE4yKkBm/Hvhv4z3FSTa3a z6qhv9aSINyHXsSnIqyuy8kVwIzBMSbB70Nn0DSKu93PHgWxlgmOXopUCBlUgkeC i5FxxxZ4W4kDnlrrBH7ctjeHBkIWRBX6LUCogQ9x/sCPjIvipBzfvA+LxYQkmoIx HBmKQshaeMAkEnwIQhv4l3jSpUVAedZr4/bfE7dyxKtZBWTiaOKTr62kMKzIWU6O XdB5/FbRzSFSXXl+KzxR1l9R6H/vAn1PH16X+3ZBkJdapTGOHsx4q8lYQVwvHCfi yo6GNdEPVds095pci5+LRj8yeDURP2Mp3xQX7t49AEg3BafznnB37LXyOWev8ZSr gd83huZO/yYvktoptTLWQ1t2x/KJSwQ2m5yk/Jj6AMPQN43LzdqO1USAbHrflYON NEi4DcXktkHCBahbfPP6eRyObO5KTLK10z6bFjRtpX3TmXm1O9g7jTMt6zQPYKUH 77/7+ON5vJrKMS5CgaXv =vEi+ -END PGP SIGNATURE-
