Bug#289545: ITP: gromit -- GTK based tool to make annotations on screen
Package: wnpp Severity: wishlist * Package name: gromit Version : 20041213 Upstream Author : Simon Budig <[EMAIL PROTECTED]> * URL : http://www.home.unix-ag.org/simon/gromit/ * License : GPL Description : GTK based tool to make annotations on screen Gromit enables you to make annotations on your screen. . This is especially usefull when making presentations, to highlight things or point ou things of interest. . Gromit is XInput-Aware, so if you have a graphic tablet you can draw lines with different strength, color, erase things, etc. -- System Information: Debian Release: 3.1 APT prefers unstable APT policy: (500, 'unstable') Architecture: i386 (i686) Kernel: Linux 2.6.10-ac4 Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8)
Bug#315051: ITP: newpki-lib -- PKI based on the OpenSSL low-level API (core library)
Package: wnpp Severity: wishlist Owner: Pierre Chifflier <[EMAIL PROTECTED]> * Package name: newpki-lib Version : 2.0.0beta4 Upstream Author : Frederic Giudicelli <[EMAIL PROTECTED]> * URL : http://www.newpki.org/ * License : GPL Description : PKI based on the OpenSSL low-level API (core library) Public Key Infrastructure (PKI) are designed to manage certificates on a long term. All the data are handled through a MySQL database, which provides a convenient frontend to OpenSSL, and options such as seeking a certificate with a search engine. . The actual version is able to handle multiple Certificate Authorities in one server, to publish a certificate request from a Certificate Signing Request, to certify a request, to revoke a certificate and to manage one or more Certificate Revocation Lists. It also able to search for the waiting requests or certificates, to respond to OCSP requests and to seek in and publish to LDAP Directory. . This package provides the core shared library. . Homepage: http://www.newpki.org/ Additional note concerning the license: the needed exemption for OpenSSL is present. -- System Information: Debian Release: testing/unstable APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.11ac7 Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#315098: ITP: newpki-client -- PKI based on the OpenSSL low-level API (client package)
Package: wnpp Severity: wishlist Owner: Pierre Chifflier <[EMAIL PROTECTED]> * Package name: newpki-client Version : 2.0.0beta4 Upstream Author : Frederic Giudicelli <[EMAIL PROTECTED]> * URL : http://www.newpki.org/ * License : GPL Description : PKI based on the OpenSSL low-level API (client package) Public Key Infrastructure (PKI) are designed to manage certificates on a long term. All the data are handled through a MySQL database, which provides a convenient frontend to OpenSSL, and options such as seeking a certificate with a search engine. . The actual version is able to handle multiple Certificate Authorities in one server, to publish a certificate request from a Certificate Signing Request, to certify a request, to revoke a certificate and to manage one or more Certificate Revocation Lists. It also able to search for the waiting requests or certificates, to respond to OCSP requests and to seek in and publish to LDAP Directory. . This package provides a graphical client for NewPKI, written in C++ with using the wxWidgets (http://www.wxwidgets.org) cross-platform framework to allow it to run on multiple platforms. . Homepage: http://www.newpki.org/ -- System Information: Debian Release: testing/unstable APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.11ac7 Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#395476: ITP: glpi -- IT and Asset management software
Package: wnpp Severity: wishlist Owner: Pierre Chifflier <[EMAIL PROTECTED]> * Package name: glpi Version : 0.68.2 Upstream Author : Jean-Mathieu Doleans <(jmd at indepnet.net), Julien Dombre (moyo at indepnet.net) * URL : http://www.glpi-project.org/ * License : GPL Programming Lang: PHP Description : IT and Asset management software GLPI stands for “Gestionnaire libre de parc informatique”, GLPI is the Information Resource-Manager with an additional Administration Interface. . You can use it to build up a database with an inventory for your company (computer, software, printers…). It has enhanced functions to make the daily life for the administrators easier, like a job tracking system with mail-notification and methods to build a database with basic information about your network-topology. -- System Information: Debian Release: testing/unstable APT prefers unstable APT policy: (500, 'unstable') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.18-1-686 Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8)
Bug#364856: ITP: newpki-php -- PKI based on the OpenSSL low-level API (php module)
Package: wnpp Severity: wishlist Owner: Pierre Chifflier <[EMAIL PROTECTED]> * Package name: newpki-php Version : 2.0.0+rc1 Upstream Author : Frederic Giudicelli <[EMAIL PROTECTED]> * URL : http://www.newpki.org/ * License : GPL with openssl exception Programming Lang: C Description : PKI based on the OpenSSL low-level API (php module) Public Key Infrastructure (PKI) are designed to manage certificates on a long term. All the data are handled through a MySQL database, which provides a convenient frontend to OpenSSL, and options such as seeking a certificate with a search engine. . The actual version is able to handle multiple Certificate Authorities in one server, to publish a certificate request from a Certificate Signing Request, to certify a request, to revoke a certificate and to manage one or more Certificate Revocation Lists. It also able to search for the waiting requests or certificates, to respond to OCSP requests and to seek in and publish to LDAP Directory. . This package provides the PHP module for newpki-server. . Homepage: http://www.newpki.org/ -- System Information: Debian Release: testing/unstable APT prefers unstable APT policy: (500, 'unstable') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.16-1-vserver-686 Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8) (ignored: LC_ALL set to fr_FR.UTF-8) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Bug#465204: ITP: fusil -- Fuzzing program to test applications
On Mon, Feb 11, 2008 at 01:08:38PM +0100, Guus Sliepen wrote: > The description is very unclear to me. After looking at the Fusil > website, I have some understanding of what fusil does. It is not a > stand-alone program like fuzz or zzuf that work directly with any > program. It rather is a framework that allows you to write Python > scripts that specifically target a certain program. You should mention > that in the long description. > > The part about the implementation being based on a multi-agent system > architecture is not useful information. "multi-agent" is a bit of a > buzzword that can mean many things. Furthermore, it is not useful for a > user of a program to know whether it is implemented in C, with a > multi-agent system or with bananas. > > The list of programs and libraries that Fusil can crash will change over > time, since the whole point of Fusil is to find bugs so one can fix > them. If you want to mention it, change the sentence to the past or > perfect tense, like "Fusil was able to..." or "Fusil has been used > to...". > Right, the previous description was not clear. I have reworded it, from the README file, and from the author description: Fusil is a fuzzing framework designed to expose bugs in software by changing random bits of its input. It helps to start process with a prepared environment (limit memory, environment variables, redirect stdout, etc.), start network client or server, and create mangled files. Fusil has many probes to detect program crash: watch process exit code, watch process stdout and syslog for text patterns (eg. "segmentation fault"), watch session duration, watch cpu usage (process and system load), etc. . Fusil is based on a modular architecture. It computes a session score used to guess fuzzing parameters like number of injected errors to input files. . Available fuzzing projects: ClamAV, Firefox (contains an HTTP server), gettext, gstreamer, identify, libc_env, libc_printf, libexif, linux_syscall, mplayer, php, poppler, vim, xterm. Regards, Pierre -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#465204: ITP: fusil -- Fuzzing program to test applications
Package: wnpp Severity: wishlist Owner: Pierre Chifflier <[EMAIL PROTECTED]> * Package name: fusil Version : 0.7 Upstream Author : Victor Stinner <[EMAIL PROTECTED]> * URL : http://fusil.hachoir.org * License : GPLv2 Programming Lang: Python Description : Fuzzing program to test applications Fusil project is a fuzzing program for any project type (remote process, fake HTTP server, fuzz network socket, etc.). Fusil implementation is based on multi-agent system architecture. Fusil is able to crash ClamAV, Image Magick, libc printf(), Mplayer, PHP, RPM, xterm, libc gettext, libc environment variables, libpoppler (pdf), vim, etc -- System Information: Debian Release: lenny/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Kernel: Linux 2.6.24-1-amd64 (SMP w/1 CPU core) Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/bash -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#469908: ITP: pgdesigner -- Graphical database designer for PostgreSQL
Package: wnpp Severity: wishlist Owner: Pierre Chifflier <[EMAIL PROTECTED]> * Package name: pgdesigner Version : 1.2.1 Upstream Author : Luigi Carlotto < [EMAIL PROTECTED] > * URL : http://pgdesigner.sourceforge.net/ * License : GPL Programming Lang: Gambas Description : Graphical database designer for PostgreSQL pgDesigner is a database design application for PostgreSQL, for versions 7.x and 8.x. . pgDesigner provides the following features: * Complete datamodel editor * Support for PostgreSQL objects: tables, views, relations, tablespaces, procedures, triggers, types, domains and sequences * Automatic updating of relations between tables. * Wizard for the construction of views. * Report generator, with statistics * Printing the diagram * SQL export * Creation of the database * Management of the project on a diagram chart -- System Information: Debian Release: lenny/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Kernel: Linux 2.6.24-1-amd64 (SMP w/1 CPU core) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) (ignored: LC_ALL set to fr_FR.UTF-8) Shell: /bin/sh linked to /bin/bash -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#477837: ITP: pgsnap -- PostgreSQL report tool
Package: wnpp Severity: wishlist Owner: Pierre Chifflier <[EMAIL PROTECTED]> * Package name: pgsnap Version : 0.2.0 Upstream Author : Guillaume Lelarge * URL : http://pgfoundry.org/projects/pgsnap * License : BSD Programming Lang: PHP Description : PostgreSQL report tool pgsnap is a PostgreSQL report tool, which creates HTML reports from a database. pgsnap mimics orasnap performance report tool for Oracle. -- System Information: Debian Release: lenny/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Kernel: Linux 2.6.24-1-amd64 (SMP w/1 CPU core) Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/bash -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#488664: ITP: prelude-correlator -- Hybrid Intrusion Detection System [ Correlator ]
Package: wnpp Severity: wishlist Owner: Pierre Chifflier <[EMAIL PROTECTED]> * Package name: prelude-correlator Version : 0.9.0~beta1b Upstream Author : Yoann Vandoorselaere <[EMAIL PROTECTED]> * URL : http://www.prelude-ids.com * License : GPLv2 Programming Lang: C, Lua Description : Hybrid Intrusion Detection System [ Correlator ] Prelude is a general-purpose hybrid intrusion detection system. . This package provides the Prelude Correlator, which is a powerful correlation engine using Lua to write correlation rules. . The features currently include: * Rapid identification of important security events, enabling the analyst to assign task priorities * Alert correlation originally from heterogeneous sensors deployed on the whole infrastructure * Real-time analysis of events received by the Prelude Manager -- System Information: Debian Release: lenny/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Kernel: Linux 2.6.25-2-amd64 (SMP w/1 CPU core) Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) (ignored: LC_ALL set to C) Shell: /bin/sh linked to /bin/bash -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#542472: ITP: sslsniff -- SSL/TLS man-in-the-middle attack tool
Package: wnpp Severity: wishlist Owner: Pierre Chifflier * Package name: sslsniff Version : 0.6 Upstream Author : Moxie Marlinspike * URL : http://www.thoughtcrime.org/software/sslsniff/ * License : GPLv3 Programming Lang: C++ Description : SSL/TLS man-in-the-middle attack tool sslsniff is designed to create man-in-the-middle (MITM) attacks for SSL/TLS connections, and dynamically generates certs for the domains that are being accessed on the fly. The new certificates are constructed in a certificate chain that is signed by any certificate that is provided. sslsniff also supports other attacks like null-prefix or OCSP attacks to achieve silent interceptions of connections when possible. sidenote: while the project has a COPYING file containing the GPLv3 text, almost all source files have a BSD-license header, and none of them have the GPL header ?! -- To UNSUBSCRIBE, email to debian-devel-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Bug#406964: ITP: ocsinventory-agent -- Hardware and software inventory tool (client)
Package: wnpp Severity: wishlist Owner: Pierre Chifflier <[EMAIL PROTECTED]> * Package name: ocsinventory-agent Version : 1.0~rc3 Upstream Author : Pascal DANEK 2005 * URL : http://ocsinventory.sourceforge.net/index.php * License : GPL Programming Lang: Perl Description : Hardware and software inventory tool (client) Open Computer and Software Inventory Next Generation is an application designed to help a network or system administrator keep track of the computers configuration and software that are installed on the network. It also allows deploying softwares, commands or files on client computers. . This package contains the client part. . Homepage: http://ocsinventory.sourceforge.net -- System Information: Debian Release: 4.0 APT prefers unstable APT policy: (500, 'unstable') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.18-3-686 Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#410090: ITP: prewikka -- Graphical front-end analysis console for the Prelude Hybrid IDS Framework
Package: wnpp Severity: wishlist Owner: Pierre Chifflier <[EMAIL PROTECTED]> * Package name: prewikka Version : 0.9.9 Upstream Author : Yoann Vandoorselaere <[EMAIL PROTECTED]> * URL : http://www.prelude-ids.org/ * License : GPL Programming Lang: Python Description : Graphical analysis console for the Prelude IDS Framework Prewikka is a graphical front-end analysis console for the Prelude Hybrid IDS Framework. . Providing numerous features, Prewikka facilitates the work of users and analysts. It provides alert aggregation and sensor and hearbeat views, and has user management and configurable filters. It has access to external tools such as whois and traceroute. -- System Information: Debian Release: 4.0 APT prefers unstable APT policy: (500, 'unstable'), (500, 'stable') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.18-3-686 Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8) (ignored: LC_ALL set to fr_FR.UTF-8) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#417057: ITP: brouette -- Monitoring applet for prelude
Package: wnpp Severity: wishlist Owner: Pierre Chifflier <[EMAIL PROTECTED]> * Package name: brouette Version : 0.1 Upstream Author : Sébastien Tricaud <[EMAIL PROTECTED]> * URL : http://www.wallinfire.net/brouette/ * License : GPL Programming Lang: C Description : Monitoring applet for prelude Brouette is an event displayer for prelude manager. Registered as a prelude sensor, it displays events using libnotify to display passive pop-up notifications on security alerts. -- System Information: Debian Release: 4.0 APT prefers unstable APT policy: (500, 'unstable') Architecture: amd64 (x86_64) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.18vz Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8) (ignored: LC_ALL set to fr_FR.UTF-8)
Bug#419226: ITP: ocsinventory-server -- Hardware and software inventory tool (server)
Package: wnpp Severity: wishlist Owner: Pierre Chifflier <[EMAIL PROTECTED]> * Package name: ocsinventory-server Version : 1.0.1 Upstream Author : Pascal DANEK * URL : http://ocsinventory.sourceforge.net/index.php * License : GPL Programming Lang: Perl, PHP Description : Hardware and software inventory tool (server) Open Computer and Software Inventory Next Generation is an application designed to help a network or system administrator keep track of the computers configuration and software that are installed on the network. It also allows deploying softwares, commands or files on client computers. . This package contains the server part. . Homepage: http://ocsinventory.sourceforge.net -- System Information: Debian Release: lenny/sid APT prefers unstable APT policy: (500, 'unstable') Architecture: amd64 (x86_64) Kernel: Linux 2.6.18vz (SMP w/1 CPU core) Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8) (ignored: LC_ALL set to fr_FR.UTF-8) Shell: /bin/sh linked to /bin/bash -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#491060: ITP: python-ptrace -- Python bindings for ptrace
Package: wnpp Severity: wishlist Owner: Pierre Chifflier <[EMAIL PROTECTED]> * Package name: python-ptrace Version : 0.3.1 Upstream Author : Victor Stinner <[EMAIL PROTECTED]> * URL : http://fusil.hachoir.org/trac/wiki/Ptrace * License : GPLv2 Programming Lang: Python Description : Python bindings for ptrace This package provides Python bindings for the ptrace library. It allows to control, debug, or modify processes using the ptrace syscall. Features: * High level Python object API * Able to control multiple processes: catch fork events * Read/write bytes to arbitrary addresses * Execution step by step using ptrace_singlestep() or hardware int 3 * Can use distorm disassembler * Dump registers, memory mappings, stack, etc. * Syscall tracer and parser (strace command) -- System Information: Debian Release: lenny/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Kernel: Linux 2.6.25-2-amd64 (SMP w/1 CPU core) Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/bash -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: packages up for adoption
On Tue, Aug 26, 2008 at 10:46:33PM +0100, James Troup wrote: > Hi, > > The following packages are up for adoption: > > * p0f > Hi, I'd like to take this one. Cheers, Pierre -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: RFH: automake, library and sub-automake using rpath
On Thu, Sep 04, 2008 at 09:54:37PM +0200, Philipp Matthias Hahn wrote: > Hi! > > I have a problem with the audit-package [1]: > 1. it uses autoconf/automake > 2. it builds a shared library > 3. it aggregates a copy of a python sub-package named "system-config-audit", >which uses a _seperate_ autoconf/automake. The parent-autoconf calls it >using AC_CONFIG_SUBDIRS([system-config-audit]) > 4. the sub-package uses the shared library. > > Since the library is only installed in a temporary location, and the > sub-automake doesn't know anything about the _temporary_ installation, the > sub-package links to that library using a rpath. Lintian sais: > > W: system-config-audit: binary-or-shlib-defines-rpath > ./lib/system-config-audit-server > /media/storage/debian/pool/main/a/audit/audit-1.7.5/lib/.libs > > Does some autoconf/automake/python-guru know how I can fix this dilemma? Hi Philipp, For NuFW I also remove a local rpath (#495769) .. yet this is not a auto* trick, I just use the debian tools. I added a Build-Dep on chrpath [1], and the following line in debian/rules (after the installation step): chrpath -d $(CURDIR)/debian/libpam-nufw/lib/security/pam_nufw.so HTH, Pierre [1] http://packages.debian.org/lenny/chrpath > > I would like to use the included system-config-audit, since it's better > tested, > but if that doesn't work, I could also ignore the included version and create > a > completely separate package from the original author [2]. > > BYtE > Philipp > > [1] http://people.redhat.com/sgrubb/audit/ > [2] https://fedorahosted.org/system-config-audit/ > -- > Philipp Matthias Hahn <[EMAIL PROTECTED]> > GPG/PGP: 9A540E39 @ keyrings.debian.org > > > -- > To UNSUBSCRIBE, email to [EMAIL PROTECTED] > with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED] > -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#497943: ITP: nfqueue-bindings -- High level bindings for libnetfilter_queue
Package: wnpp Severity: wishlist Owner: Pierre Chifflier <[EMAIL PROTECTED]> * Package name: nfqueue-bindings Version : 0.1.0 Upstream Author : Pierre Chifflier <[EMAIL PROTECTED]> * URL : http://software.inl.fr/trac/wiki/nfqueue-bindings * License : GPLv3 Programming Lang: C, Perl, Python Description : High level bindings for libnetfilter_queue nfqueue-bindings is a set of high-level modules for several languages (Python and Perl, for the moment), for libnetfilter_queue. It provides a userspace API to access packets that have been queued by the kernel packet filter using the NFQUEUE target. -- System Information: Debian Release: lenny/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#500671: ITP: pgtap -- Unit testing framework for PostgreSQL
Package: wnpp Severity: wishlist Owner: Pierre Chifflier <[EMAIL PROTECTED]> * Package name: pgtap Version : 0.11 Upstream Author : David E. Wheeler * URL : http://pgtap.projects.postgresql.org/ * License : BSD-like Programming Lang: C Description : Unit testing framework for PostgreSQL pgTAP is a suite of database functions that make it easy to write TAP-emitting unit tests in psql scripts suitable for harvesting, analysis, and reporting by a TAP harness, such as those used in Perl and PHP applications. -- System Information: Debian Release: lenny/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Bug#502305: ITP: ulogd2 -- The Netfilter Userspace Logging Daemon, version 2
On Wed, Oct 15, 2008 at 04:31:26PM +0300, Faidon Liambotis wrote: > Pierre Chifflier wrote: > > Ulogd is already packaged in Debian, but I think ulogd2 should be proposed > > as > > a separate package, because: > > - they are completely different projects, supporting different targets > > (NFLOG) > > or features (connection tracking) > > - ulogd is still the stable daemon, for some time I think > > - some applications are based on version 1, and a transition to v2 require > > many changes > > - both can be installed at the same time > > - packages for ulogd2 will be completely different, for ex. using dbconfig > I'm sorry, I disagree. I think that ulogd should be updated to v2 > post-lenny, since v1 is unsupported, hasn't released for some time and > has some serious limitations and bugs (e.g. doesn't work on 32-bit > userland/64-bit kernel systems, including sparc64 which is the only way > sparc systems will be supported in Debian in the future). Yes, v2 resolves these problems .. However, given the differences between v1 and v2 (have you looked at the config ?) are so important that upgrading cleanly is almost impossible, and is not planned anyway (I'm part of ulogd2 upstream, BTW). > > Even if we go the separate package name way for some time, this should > be a decision that the existing ulogd maintainers (which includes > myself) should make and not someone else. > You are, of course, welcome to help and/or comaintain. > I was under the impression that ulogd wasn't maintained, so I thought a complete rewrite would be best - I should have asked before. Since I would like to work on the packaging, would it be ok for a co-maintainance ? (I'll send patches for review before uploading, if you prefer). > I've known about ulogd2 for some time but haven't worked on it because > of its instabilities that make it unsuitable for release. An upload to > experimental might make sense but I haven't worked on this (and neither > Achilleas, AFAIK) because of my lack of time. Yes. > > If you intend to work on this, please try to coordinate with us. > I'd like to work on this. Is it ok for you ? (maybe we should discuss this directly, and trim the CC line) Pierre -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#502305: ITP: ulogd2 -- The Netfilter Userspace Logging Daemon, version 2
Package: wnpp Severity: wishlist Owner: Pierre Chifflier <[EMAIL PROTECTED]> * Package name: ulogd2 Version : 2.0.0beta2 Upstream Author : Harald Welte and netfilter team * URL : http://www.netfilter.org/projects/ulogd/ * License : GPLv2 Programming Lang: C Description : The Netfilter Userspace Logging Daemon, version 2 ulogd is a daemon that listens for Netlink packets generated by iptables's ULOG and NFLOG target, using ibnetfilter_log and libnetfilter_conntrack. Basically, it's a replacement for syslog for logging packets, and does a much better job - it logs to files, pcap files, MySQL, PostgreSQL, SQLite 3 and soon will be able to log remotely. . MySQL, PostgreSQL and SQLite 3 support is in separate packages, called ulogd-mysql, ulogd-pgsql and ulogd-sqlite3 respectively. pcap file support is in package called ulogd-pcap. Ulogd is already packaged in Debian, but I think ulogd2 should be proposed as a separate package, because: - they are completely different projects, supporting different targets (NFLOG) or features (connection tracking) - ulogd is still the stable daemon, for some time I think - some applications are based on version 1, and a transition to v2 require many changes - both can be installed at the same time - packages for ulogd2 will be completely different, for ex. using dbconfig -- System Information: Debian Release: lenny/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#502402: ITP: xtables-addons -- Extensions for iptables
Package: wnpp Severity: wishlist Owner: Pierre Chifflier <[EMAIL PROTECTED]> * Package name: xtables-addons Version : 1.5.7 Upstream Author : Jan Engelhardt <[EMAIL PROTECTED]> * URL : http://jengelh.medozas.de/projects/xtables/ * License : GPLv2 Programming Lang: C Description : Extensions for iptables The xtables userspace code is an ongoing development effort to bring new ideas to the iptables, ip6tables, arptables and ebtables userspace programs. It provides a lot of patches for new features in Linux kernels 2.6.25 that have not yet gone upstream into the official “iptables” package. It contains new targets for iptables, such as TARPIT, CHAOS, TEE, geoip, etc. -- System Information: Debian Release: lenny/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Bug#502402: ITP: xtables-addons -- Extensions for iptables
On Fri, Oct 17, 2008 at 06:56:39AM +0200, Max Kellermann wrote: > On 2008/10/16 20:36, Faidon Liambotis <[EMAIL PROTECTED]> wrote: > > There are many similarities and/or cross-dependencies between those and > > AFAIK there are going to be more -- I've read that in the latest > > Netfilter workshop there was a proposal for nftables, an iptables > > replacement (perhaps ebtables and arptables too). > > Correct me if I'm wrong; Pierre you told me you were at the workshop, > > perhaps you know more. > > > > Alexander and Max already began such an effort but perhaps it's a good > > idea expanding the team and organizing it better (use alioth, a VCS etc.) > > > > What do you all think? > > +1 from me. We are already maintaining our packages in a (private) > subversion repository which we could (and should) move to Alioth. Of > course it's a good idea to have a bigger team, since I am an > unofficial Debian maintainer, and sometimes Alexander doesn't have > enough time to sponsor my package uploads, leading to unnecessary > delays. > Globally, I'll agree: I'm maintaining some local copies of the packages anyway for our use (libnf*, mainly) on packages.inl.fr, and some of my packages are based on them: ulogd2, nfqueue-bindings (soon to be in Debian), and NuFW. Some of the packages are quite different anyway: xtables-addons, nufw, etc. Coordination would be good in any case. nftables won't be ready until some time, as Patrick explained in the NetFilter Workshop (see http://nfws.inl.fr/en/?p=92). So, +1 for me :) Pierre PS: Mark, If you need some sponsorship on libnf*, and if Alexander agrees, I can do that. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#502770: ITP: setroubleshoot-plugins -- Tool to help troubleshoot SELinux problems (plugins)
Package: wnpp Severity: wishlist Owner: Pierre Chifflier <[EMAIL PROTECTED]> * Package name: setroubleshoot-plugins Version : 2.0.8 Upstream Author : Red Hat * URL : https://fedorahosted.org/setroubleshoot * License : GPL Programming Lang: Python Description : Tool to help troubleshoot SELinux problems (plugins) Tools to help diagnose SELinux problems. When AVC messages are generated an alert can be generated that will give information about the problem and help track its resolution. Alerts can be configured to user preference. The same tools can be run on existing log files. . This package provides the plugins for analyzing the AVC messages. -- System Information: Debian Release: lenny/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#511435: ITP: picviz -- Parallel coordinates plotter
Package: wnpp Severity: wishlist Owner: Pierre Chifflier * Package name: picviz Version : 0.4 Upstream Author : Sébastien Tricaud * URL : http://www.wallinfire.net/picviz * License : GPL Programming Lang: C Description : Parallel coordinates plotter Picviz is a parallel coordinates plotter which enables easy scripting from various input (tcpdump, syslog, iptables logs, apache logs, etc..) to visualize your data and discover interesting results quickly. . Its primary goal is to graph data in order to be able to quickly analyze problems and find correlations among variables. With security analysis in mind, the program has been designed to be very flexible, able to graph millions of events. . The language is designed to be close to the graphviz graph description language. -- System Information: Debian Release: 5.0 APT prefers unstable APT policy: (500, 'unstable'), (500, 'stable'), (1, 'experimental') Architecture: amd64 (x86_64) -- To UNSUBSCRIBE, email to debian-devel-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Bug#448135: ITP: nuapplet -- Graphical client for NuFW
Package: wnpp Severity: wishlist Owner: Pierre Chifflier <[EMAIL PROTECTED]> * Package name: nuapplet Version : 2.0 Upstream Author : Laurent Deffert <[EMAIL PROTECTED]> * URL : http://software.inl.fr/trac/trac.cgi/wiki/EdenWall/NuApplet2 * License : GPL Programming Lang: C++ Description : Graphical client for NuFW NuApplet2 is a systray application for the authenticating firewall NuFW, written in Qt. . It is compliant with FreeDesktop and can be used with several desktop environments. . Homepage: http://software.inl.fr/trac/trac.cgi/wiki/EdenWall/NuApplet2 -- System Information: Debian Release: lenny/sid APT prefers unstable APT policy: (500, 'unstable') Architecture: amd64 (x86_64) Kernel: Linux 2.6.22-2-amd64 (SMP w/1 CPU core) Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8) (ignored: LC_ALL set to fr_FR.UTF-8) Shell: /bin/sh linked to /bin/bash -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#454477: ITP: nulog -- Graphical firewall log analysis interface
Package: wnpp Severity: wishlist Owner: Pierre Chifflier <[EMAIL PROTECTED]> * Package name: nulog Version : 2.0 Upstream Author : INL * URL : http://software.inl.fr/trac/trac.cgi/wiki/EdenWall/NuLog2 * License : GPL Programming Lang: Python Description : Graphical firewall log analysis interface NuLog is a web interface to netfilter logs, when stored in a database using ulog. . The features currently include: o Index page with a summary of firewall activity: * Packet dropped per host * Packets dropped per UDP port * Packets dropped per TCP port * Packets dropped per user (NuFW only) o Fully browsable tables o Search engine o Graphing capabilities (display clickable array, histogram or pie for a dataset) o SOAP request system for integration with other systems o IPv6 support. o Customizable pages (index page, etc) o AJAX features. o Special pages for user, ip and ports. o CSV export. . Homepage: http://software.inl.fr/trac/trac.cgi/wiki/EdenWall/NuLog2 -- System Information: Debian Release: lenny/sid APT prefers unstable APT policy: (500, 'unstable') Architecture: amd64 (x86_64) Kernel: Linux 2.6.22-3-amd64 (SMP w/1 CPU core) Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/bash -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#456512: ITP: inguma -- Penetration testing toolkit
Package: wnpp Severity: wishlist Owner: Pierre Chifflier <[EMAIL PROTECTED]> * Package name: inguma Version : 0.0.6 Upstream Author : Joxean Koret <[EMAIL PROTECTED]> * URL : http://inguma.sourceforge.net/ * License : GPL Programming Lang: Python Description : Penetration testing toolkit Inguma is a free penetration testing and vulnerability discovery toolkit entirely written in python. Framework includes modules to discover hosts, gather information about, fuzz targets, brute force usernames and passwords, exploits, and a disassembler. -- System Information: Debian Release: lenny/sid APT prefers unstable APT policy: (500, 'unstable') Architecture: amd64 (x86_64) Kernel: Linux 2.6.22-3-amd64 (SMP w/1 CPU core) Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8) (ignored: LC_ALL set to fr_FR.UTF-8) Shell: /bin/sh linked to /bin/bash -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#563422: ITP: suricata -- Next Generation Intrusion Detection and Prevention Tool
Package: wnpp Severity: wishlist Owner: Pierre Chifflier * Package name: suricata Version : 0.8.0 Upstream Author : Open Information Security Foundation Team * URL : http://www.openinfosecfoundation.org/ * License : GPL Programming Lang: C Description : Next Generation Intrusion Detection and Prevention Tool (The description is being worked on) Suricata is a network Intrusion Detection System (IDS). It is based on rules (and is fully compatible with snort rules) to detect a variety of attacks / probes by searching packet content. This new Engine supports Multi-Threading, Automatic Protocol Detection (IP, TCP, UDP, ICMP, HTTP, TLS, FTP and SMB), Gzip Decompression, Fast IP Matching and coming soon hardware acceleration on CUDA and OpenCL GPU cards. More details here: http://seclists.org/snort/2009/q4/599 Note that Suricata depends on the libhtp library which I intend to package as well. -- To UNSUBSCRIBE, email to debian-devel-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Bug#565334: ITP: libhtp -- HTTP normalizer and parser library
Package: wnpp Severity: wishlist Owner: Pierre Chifflier * Package name: libhtp Version : 0.2.1 Upstream Author : Ivan Ristic * URL : http://www.openinfosecfoundation.org/downloads/ * License : GPLv2 Programming Lang: C Description : HTTP normalizer and parser library The HTP Library is an HTTP normalizer and parser. This integrates and provides very advanced processing of HTTP streams for Suricata. The HTP library is required by the engine, but may also be used independently in a range of applications and tools. -- To UNSUBSCRIBE, email to debian-devel-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Removing dbconfig support ?
Hi, I'm maintaining a PHP-MySQL application (GLPI) which is currently using dbconfig to create and upgrade the database. However, this cause problems during upgrades since upstream does only provide PHP scripts for upgrades, which are quite complicated. I have been trying to maintain a conversion to SQL commands for upgrade, but this is getting impossible for recent versions since some commands involve changes on existing data and are cannot be done with SQL (this had been confirmed by upstream, and does not seems to be possible to change easily according to him). Since the package is using dbconfig since a few versions, I'm now facing an upgrade problem before I can upload 0.78.1. For the moment, I'm thinking about removing dbconfig-common support and let all the configuration happen in the PHP scripts but I can't tell the consequences on previous installations. What is the best (not problematic) solution ? Any idea / help will be appreciated. Thanks, Pierre -- To UNSUBSCRIBE, email to debian-devel-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/4cfcbb7a.4070...@debian.org
Bug#606750: ITP: liblognorm -- Log normalizing library
Package: wnpp Severity: wishlist Owner: Pierre Chifflier * Package name: liblognorm Version : 0.1.0 Upstream Author : Rainer Gerhards * URL : http://liblognorm.sourceforge.net/ * License : LGPL 2.1 Programming Lang: C Description : Log normalizing library Liblognorm is a log normalizing library with a small tool called “the normalizer”. With this tool you can normalize all your logs. All you need is liblognorm, its dependencies and a rulebase that fits the logs you want to normalize. -- To UNSUBSCRIBE, email to debian-devel-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20101211134152.6901.41278.report...@ks26688.kimsufi.com
Bug#606752: ITP: libestr -- Helper functions for handling strings
Package: wnpp Severity: wishlist Owner: Pierre Chifflier * Package name: libestr Version : 0.1.0 Upstream Author : Rainer Gerhards * URL : http://libestr.sourceforge.net/ * License : LGPL 2.1 Programming Lang: C Description : Helper functions for handling strings The 'libestr' library implements some helper functions to handle strings and easily, escaping special characters etc. This package is required for libee and liblognorm. -- To UNSUBSCRIBE, email to debian-devel-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20101211133536.4491.3276.report...@ks26688.kimsufi.com
Bug#606754: ITP: libee -- Event expression library inspired by CEE
Package: wnpp Severity: wishlist Owner: Pierre Chifflier * Package name: libee Version : 0.1.0 Upstream Author : Rainer Gerhards * URL : http://libee.sourceforge.net/ * License : LGPL 2.1 Programming Lang: C Description : Event expression library inspired by CEE Libee is an event expression library which is inspired by the upcoming CEE standard. It provides capabilities to generate and emit messages in a set of standard format and read a set of different input formats. -- To UNSUBSCRIBE, email to debian-devel-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20101211133929.5939.84119.report...@ks26688.kimsufi.com
ping ?
Hi,
It's now more than 6 months since this bug was reported, and it is still
a blocker for ulogd2 (see #502305). Version 1.0.0 also fixes several
important bugs.
The packages are ready since some time and have been proposed in august,
with no reply (see
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=589157#10
).
I'm therefore resending this email to discuss a proper (maintainer)
upload and am still proposing my help again for libnetfilter-{queue,log}
packages.
Cheers,
Pierre
--
To UNSUBSCRIBE, email to debian-devel-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/4d0a1926.3050...@debian.org
Bug#609121: ITP: nflog-bindings -- High-level bindings for libnetfilter_log
Package: wnpp Severity: wishlist Owner: Pierre Chifflier * Package name: nflog-bindings Version : 0.1 Upstream Author : Pierre Chifflier * URL : https://www.wzdftpd.net/redmine/projects/nflog-bindings/wiki/ * License : GPLv3 Programming Lang: C, Python, Perl Description : High-level bindings for libnetfilter_log nflog-bindings is a set of high-level modules for several languages (Python and Perl, for the moment), for libnetfilter_log. It provides a userspace API to access packets that have been queued by the kernel packet filter using the NFLOG target. -- To UNSUBSCRIBE, email to debian-devel-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20110106102208.12282.86853.report...@piche2.inl.fr
Bug#609893: ITP: sagan -- Real-time System & Event Log Monitoring System
Package: wnpp Severity: wishlist Owner: Pierre Chifflier * Package name: sagan Version : 0.7.1 Upstream Author : Champ Clark III * URL : http://sagan.softwink.com/ * License : GPLv2 Programming Lang: C Description : Real-time System & Event Log Monitoring System Sagan is a multi-threaded, real time system- and event-log monitoring system, but with a twist. Sagan uses a “Snort” like rule set for detecting “bad things” happening on your network and/or computer systems. If Sagan detects a “bad thing” happening, that event can be stored to a Snort database (MySQL/PostgreSQL) and Sagan will correlate the event with your Snort Intrusion Detection/Intrusion Prevention system or send it to a SIEM tool like Prelude. Sagan is meant to be used in a ‘centralized’ logging environment, but will work fine as part of a standalone Host IDS system for workstations. -- To UNSUBSCRIBE, email to debian-devel-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20110113161215.14464.73755.report...@piche2.inl.fr
Bug#618674: ITP: sagan-rules -- Real-time System & Event Log Monitoring System [rules]
Package: wnpp Severity: wishlist Owner: Pierre Chifflier * Package name: sagan-rules Version : 10212010-r1 Upstream Author : Champ Clark III * URL : http://sagan.softwink.com/ * License : BSD Programming Lang: other (text files) Description : Real-time System & Event Log Monitoring System [rules] Sagan is a multi-threaded, real time system- and event-log monitoring system, but with a twist. Sagan uses a “Snort” like rule set for detecting malicious events happening on your network and/or computer systems. If Sagan detects a potentially bad event, that event can be stored to a Snort database (MySQL/PostgreSQL), send it to a SIEM tool like Prelude, or send an email. . This package provides the rules for Sagan. -- To UNSUBSCRIBE, email to debian-devel-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20110317140905.26473.35592.report...@piche2.inl.fr
Bug#522265: ITP: openscap -- Set of libraries enabling integration of the SCAP line of standards
Package: wnpp Severity: wishlist Owner: Pierre Chifflier * Package name: openscap Version : 0.1.4 Upstream Author : Peter Vrabec * URL : http://www.open-scap.org/ * License : LGPL Programming Lang: C Description : Set of libraries enabling integration of the SCAP line of standards OpenSCAP is a set of open source libraries providing an easier path for integration of the SCAP line of standards. SCAP is a line of standards managed by NIST with the goal of providing a standard language for the expression of Computer Network Defense related information. The intended scope of this project is to implement working interface wrappers for parsing and querying SCAP content including: * Common Vulnerabilities and Exposures (CVE) * Common Configuration Enumeration (CCE) * Common Platform Enumeration (CPE) * Common Vulnerability Scoring System (CVSS) * Extensible Configuration Checklist Description Format (XCCDF) * Open Vulnerability and Assessment Language (OVAL) -- To UNSUBSCRIBE, email to debian-devel-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Bug#533508: ITP: libcap-ng -- Library for manipulating POSIX.1e capabilities
Package: wnpp Severity: wishlist Owner: Pierre Chifflier * Package name: libcap-ng Version : 0.4.2 Upstream Author : Steve Grubb * URL : http://people.redhat.com/sgrubb/libcap-ng * License : LGPLv2+ Programming Lang: C Description : An alternate posix capabilities library This library implements the user-space interfaces to the POSIX 1003.1e capabilities available in Linux kernels. These capabilities are a partitioning of the all powerful root privilege into a set of distinct privileges. . The libcap-ng library is intended to make programming with posix capabilities much easier than the traditional libcap library. -- To UNSUBSCRIBE, email to debian-devel-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Bug#644928: ITP: dff -- A powerful, efficient and modular digital forensic tool
Package: wnpp Severity: wishlist Owner: Pierre Chifflier * Package name: dff Version : 1.2.0 Upstream Author : ArxSys * URL : http://www.digital-forensic.org/ * License : GPLv2 Programming Lang: C and Python Description : A powerful, efficient and modular digital forensic tool This is the description from the website: The Digital Forensics Framework (DFF) is both a digital investigation tool and a development platform. The framework is used by system administrators, law enforcement examinors, digital forensics researchers and students, and security professionals world-wide. Written in Python and C++, it exclusively uses Open Source technologies. DFF combines an intuitive user interface with a modular and cross-platform architecture. DFF consists of tools, libraries, modules, and user interfaces. The basic function of the framework is to agregate information and methodologicaly analyze volumes, file systems, user and applications data, while extracting metadata, deleted and hidden items. Information are processed into virtual read-only containers, thus preserving the integrity and authenticity of data. BR, Pierre -- To UNSUBSCRIBE, email to debian-devel-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20111010194628.10058.75958.report...@ks26688.kimsufi.com
Bug#649599: ITP: tpm-tools -- Management tools for the TPM hardware
Package: wnpp Severity: wishlist Owner: Pierre Chifflier * Package name: tpm-tools Version : 1.3.7 Upstream Author : Kent Yoder * URL : http://trousers.sourceforge.net/ * License : CPL (http://www.opensource.org/licenses/cpl1.0.php) Programming Lang: C Description : Management tools for the TPM hardware tpm-tools is a group of tools to manage and utilize the Trusted Computing Group's TPM hardware. TPM hardware can create, store and use RSA keys securely (without ever being exposed in memory), verify a platform's software state using cryptographic hashes and more. . This package contains tools to allow the platform administrator the ability to manage and diagnose the platform's TPM. Additionally, the package contains commands to utilize some of the capabilities available in the TPM PKCS#11 interface implemented in the openCryptoki project. Note that this is not really a new package: it was part of main, but was orphaned, and removed due to the lack of maintainer and low popcon [1]. Since I'm now using this tool, and that it is required to make a TPM work, I'm adopting it. Pierre [1] http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=543927 -- To UNSUBSCRIBE, email to debian-devel-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/2022141809.20149.40359.report...@ks26688.kimsufi.com
Re: Candidates for removal from testing (2013-01-24)
On Fri, Jan 25, 2013 at 07:15:43AM +0100, Christian PERRIER wrote: > Quoting Niels Thykier (ni...@thykier.net): > > > Pierre Chifflier > >glpi > > I looked briefly at the RC bug for glpi (#694642). It seems that an > embedded Flash file provided with the package has a security issue. > > I have no clue at all if this .swf file is of critical use for GLPI > (from the directory tree, it seems to be provided in a "resource" > directory, so maybe not of big importance). > > Still, it would be sad to have GLPI disappear from Debian for this, as > this is one of the good free implementations of computer asset > management systems and quite widely popular in France. > > Pierre, have you noticed that? I dont see any contribution of yours in > #694642, so you may have missed this release critical bug > > Hi, Sadly, I just discovered this bug. I have checked my mailbox, but have found no trace of any received mail, maybe because it was reaffected to glpi after another package ? Anyway, I'm working on it to have glpi fixed today or in the next few days. glpi embeds a copy of extjs, I think the best fix will be to remove it and replace it by symlinks to the proper Debian package. I would like to ask the release team not to remove glpi, for the reasons Christian gave. Regards, Pierre signature.asc Description: Digital signature
Bug#702254: ITP: sbsigntool -- Utility for signing and verifying files for UEFI Secure Boot
Package: wnpp Severity: wishlist Owner: Pierre Chifflier * Package name: sbsigntool Version : 0.6 Upstream Author : Jeremy Kerr * URL : http://packages.ubuntu.com/quantal/sbsigntool * License : GPL-3+ with OpenSSL exception Programming Lang: C Description : Utility for signing and verifying files for UEFI Secure Boot This package provides utilities that can be used for signing PE programs for use with UEFI Secure Boot, and for verifying the signatures included in the same. -- To UNSUBSCRIBE, email to debian-devel-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20130304145552.24140.15174.report...@ks26688.kimsufi.com
Bug#702255: ITP: efitools -- Tools to manipulate EFI secure boot keys and signatures
Package: wnpp Severity: wishlist Owner: Pierre Chifflier * Package name: efitools Version : 1.4.0 Upstream Author : James Bottomley * URL : http://blog.hansenpartnership.com/uefi-secure-boot/ * License : GPLv2 Programming Lang: C Description : Tools to manipulate EFI secure boot keys and signatures This package installs a variety of tools for manipulating keys and binary signatures on UEFI secure boot platforms. The tools provide access to the keys and certificates stored in the secure variables of the UEFI firmware, usually in the NVRAM area. -- To UNSUBSCRIBE, email to debian-devel-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20130304150152.28049.42301.report...@ks26688.kimsufi.com
Bug#619925: ITP: libtap-parser-sourcehandler-pgtap-perl -- Unit testing tools for pgTAP
Package: wnpp Severity: wishlist Owner: Pierre Chifflier * Package name: libtap-parser-sourcehandler-pgtap-perl Version : 3.25 Upstream Author : David E. Wheeler * URL : * http://search.cpan.org/dist/TAP-Parser-SourceHandler-pgTAP/ * License : Artistic and GPL Programming Lang: Perl Description : Unit testing tools for pgTAP TAP::Parser::SourceHandler::pgTAP is a set of tools for PostgreSQL unit testing. It contains the pg_prove and pg_tapgen scripts, which allows running and harnessing pgTAP tests on command-line, and summarizing the results. TAP is the Test Anything Protocol (http://testanything.org/). -- To UNSUBSCRIBE, email to debian-devel-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20110328130719.23391.92345.report...@ks26688.kimsufi.com
Re: Orphaning some packages...
On Thu, Jul 07, 2011 at 07:13:00PM +0200, Xavier Oswald wrote: > Hello, Hi Xavier, > > My usage of debian a slightly changed during the last 6 months. > > Im thus about to orphan some of my packages I no longer have any interest, and > willl ask from being removed from some "Uploaders" fields. > > These packages are free for adoption: > - vym Since I use it a lot, I would be happy to take this one. Thanks for your work! Pierre signature.asc Description: Digital signature
Re: Hardening build flags release goal
On Mon, Sep 05, 2011 at 07:42:30PM +0200, Moritz Mühlenhoff wrote: > Raphael Hertzog schrieb: > > Hello, > > > > we're not very far from having hardening build flags set by default by > > dpkg-buildflags (waiting on some documentation update that Kees should > > take care of). > > Thanks! > > > I would like to find one or two persons to lead a new release goal > > centered around hardening. The big goal is to have the maximum number of > > packages using hardening by the time Wheezy is released but it could > > include more specific sub-goals like "all packages with priority >= > > standard should use dpkg-buildflags properly" or "all packages providing a > > daemon should use dpkg-buildflags properly". > > > > It's up to whoever does the work to define their methodology of work but > > it's probably interesting to write some script to detect whether a package > > is using dpkg-buildflags. Rebuilding packages with a custom > > dpkg-buildflags configuration that adds a fake flag and analyzing the > > build logs has been suggested (see #628516). > > > > If you're interested, just respond and start creating the release goal > > wiki page: > > http://wiki.debian.org/ReleaseGoals > > I'm in, but it'll take a few days until I'll be able to work on the wiki > page. > > I'm thinking of something along the lines of > "all pkgs with priority >= standard" and "all pkgs which had a DSA in the last > five years" as specific, important sub goals. > Hi, I'd be happy to help for this release goal, so you can count me in. BR, Pierre -- To UNSUBSCRIBE, email to debian-devel-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20110906074945.gb3...@mail.wzdftpd.net
Re: Support for merged-/usr now in debootstrap; default for stretch?
On Wed, Sep 14, 2016 at 02:38:09PM +, Felipe Sateler wrote: > On Tue, 13 Sep 2016 22:36:58 +0200, Ansgar Burchardt wrote: > > > Hi, > > > > debootstrap in unstable can now install with merged-/usr, that is with > > /bin, /sbin, /lib* being symlinks to their counterpart in /usr. Run > > > > debootstrap --merged-usr testing .../testing > > http://deb.debian.org/debian > > > > to give it a try. > > > > It has been previously suggested to make this the default for (at least) > > new installations. I think Russ' earlier mail[1] explains quite well > > why the "split" between / and /usr doesn't really work out for Debian > > these days and that trying to maintain it for some configurations (which > > are not documented) is mostly busy-work. There is also a nice article > > on LWN[2] summarizing earlier discussions. > > > > I found these arguments convincing enough and would like to see the > > default switched to merged-/usr for Stretch and later. Possibly also > > switching systems on upgrade to the new scheme (not necessarily already > > in the Stretch release cycle). > > I agree that merging /usr is a good thing to do. We should default to > that, and at some point force the merge somehow (via the usrmerge package? > ). Ideally, stretch systems that are fresh-installed should have the same > configuration as stretch-upgraded systems, otherwise confusion will ensue. > Hi, Except that breaks having different mount points, which is useful to enforce different mount options (my /usr is nodev,ro). Does this mean this cannot be supported anymore ? It would be a step backward, security-speaking, if split /usr does not work at all. Regards, Pierre
