Quoting Joey Hess ([EMAIL PROTECTED]):
> Steve Langasek wrote:
> > Arguably if the consensus is that the default minimum password length should
> > be raised in the users' best interests, we would want to change the
> > makepasswd package's default at the same time.
>
> And we might also want to m
Package: wnpp
Severity: wishlist
Owner: Raphael Geissert <[EMAIL PROTECTED]>
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
* Package name: kblogger
Version : 0.6.5
Upstream Author : Christian Weilbach, Antonio Aloisio
* URL : http://kblogger.pwsp.net/
* License
[EMAIL PROTECTED] dijo [Mon, Aug 27, 2007 at 02:46:30PM -0400]:
>
> Hmm, seems odd that it should need testing, runs great on my machine
> and thousands of others. Perhaps we are a little overzealous, no?
Perhaps it should be removed from testing? We cannot do any kind of
security support for it..
On Wed Sep 05, 2007 at 00:43:46 +0200, Julien Cristau wrote:
> > [EMAIL PROTECTED]:~$ firefox
> > /usr/lib/iceweasel/firefox-bin: symbol lookup error:
> > /usr/lib/libpangoft2-1.0.so.0: undefined symbol: g_once_init_enter_impl
> >
> > Interestingly the symbol is defined:
> >
> > [EMAIL
On Tue, Sep 4, 2007 at 23:39:46 +0100, Steve Kemp wrote:
> I see it too, on my AMD64 system:
>
> [EMAIL PROTECTED]:~$ firefox
> /usr/lib/iceweasel/firefox-bin: symbol lookup error:
> /usr/lib/libpangoft2-1.0.so.0: undefined symbol: g_once_init_enter_impl
>
> Interestingly the symbol i
On Tue Sep 04, 2007 at 11:54:23 -0500, Don wrote:
> I am using "sid" and yesterday my update/upgrade broke iceape, synaptic, and
> some others. I've had problems with libpango before, but this one has me
> stumped. I don't see anyone else having this problem, so I must conclude
> something is
On Tue, Sep 04, 2007 at 07:59:44PM +, Frank Küster wrote:
> We have a similar problem with TeX documentation. In my opinion,
> using menu categories for doc-base might have been a good start, but
> we should definitely extend that now.
Perhaps we should piggyback on the debtags work and have
On Tue, 4 Sep 2007 14:50:25 -0600, "Dwayne C. Litzenberger"
<[EMAIL PROTECTED]> wrote:
>On most of my boxes, passwords are useless for anything except local
>authentication, and even for that, they aren't used much.
>How about a Debian policy that enumerates the specific cases where
>passwords
On Tue, Sep 04, 2007 at 02:50:25PM -0600, Dwayne C. Litzenberger wrote:
>
> How about a Debian policy that enumerates the specific cases where
> passwords are allowed to be used for authentication, and states that
> password authentication must be disabled by default for everything else?
>
> If
On Mon, Sep 03, 2007 at 05:45:49PM +0300, Lars Wirzenius wrote:
ma, 2007-09-03 kello 08:33 -0600, Wesley J. Landaker kirjoitti:
Especially when the most common response I've seen to a system saying
that a
password is not long enough is to start adding easily guessable extension
strings to the
On Tue, Sep 04, 2007 at 12:31:15PM +0300, Lars Wirzenius wrote:
I'm sure it does work great. Can you work on making sure [fail2ban] is the
default in lenny if openssh-server is installed?
Keep in mind that, by design, fail2ban opens up a denial-of-service
vulnerability, especially with the pro
04-09-2007, Adam D. Barratt:
> On Tue, 2007-09-04 at 07:53 +, Oleg Verych wrote:
> [...]
>> What about having more secure Debian's sshd_config by default?
>> "
>> PermitRootLogin no
>
> You'll have to convince the openssh package maintainers first - see
> #105571, #298138 and #431627 for their
Stefano Zacchiroli debian.org> writes:
>
> On Thu, Aug 30, 2007 at 03:19:43PM -0400, Eric Cooper wrote:
> > The Debian OCaml maintenance team is looking at how to organize the
> > HTML documentation provided by the various OCaml packages. Our first
>
> Right, to add some details to that:
> - e
On Tue, Sep 04, 2007 at 05:43:15PM +0200, Robert Lemmen wrote:
[...]
> Description : backtracking LR parser
>
> Kelbt generates backtracking LALR(1) parsers. Standard LALR(1) parser
If it is a parser _generator_, mention this in de short description as
well.
> generators emit an error u
On Tue, 2007-09-04 at 07:53 +, Oleg Verych wrote:
[...]
> What about having more secure Debian's sshd_config by default?
> "
> PermitRootLogin no
You'll have to convince the openssh package maintainers first - see
#105571, #298138 and #431627 for their opinions on whether that change
is "more
Steve Langasek wrote:
> Arguably if the consensus is that the default minimum password length should
> be raised in the users' best interests, we would want to change the
> makepasswd package's default at the same time.
And we might also want to make d-i do the same checks, currently it
enforces n
Roger Leigh <[EMAIL PROTECTED]> writes:
> Having enabled the cracklib stuff in pam_unix while testing the new
> PAM, I agree that this should remain disabled. Many users (including
> myself) find the enforcement of all those extra checks annoying, and I
> agree with other comments that extra chec
Norbert Preining <[EMAIL PROTECTED]> writes:
> On Die, 04 Sep 2007, Florent Rougon wrote:
>> > Sorry, I can't remember the name of the package.
>>
>> That must be cm-super.
> Yup, cm-super does this trick. I once wanted to undo this and ship the
> font files directly, but got quite a lot of requ
Package: wnpp
Severity: wishlist
Owner: Robert Lemmen <[EMAIL PROTECTED]>
* Package name: kelbt
Version : 0.12
Upstream Author : Adrian Thurston <[EMAIL PROTECTED]>
* URL : http://www.cs.queensu.ca/~thurston/kelbt/
* License : GPL
Programming Lang: C, C++
D
Package: wnpp
Severity: wishlist
Owner: Robert Lemmen <[EMAIL PROTECTED]>
* Package name: dicelab
Version : 0.4
Upstream Author : Robert Lemmen <[EMAIL PROTECTED]>
* URL : http://www.semistable.com/dicelab/
* License : GPL
Programming Lang: C
Description
On Tue, 04 Sep 2007 12:31:15 +0300, Lars Wirzenius <[EMAIL PROTECTED]> wrote:
>> I stop brute force attacks by sending auth log messages to a FIFO which I
>> read with a perl script. After 10 login failures, your IP is firewalled for
>> 24 hours.
>I'm sure it does work great. Can you work on m
Package: wnpp
Severity: wishlist
Owner: Steffen Moeller <[EMAIL PROTECTED]>
* Package name: bytecode
Version : 0.92
Upstream Author : Name <[EMAIL PROTECTED]>
* URL : http://www.example.org/
* License : LGPL
Programming Lang: Java
Description : Java lib
Hi Steve,
Steve Langasek <[EMAIL PROTECTED]> wrote:
> On Mon, Sep 03, 2007 at 05:45:12PM +, Jörg Sommer wrote:
>
>> Steve Langasek <[EMAIL PROTECTED]> wrote:
>> > For a long time, the Debian pam package has been carrying a local patch to
>> > add support for Linux capabilities in pam_limits.
[EMAIL PROTECTED] wrote:
Quoting Pierre Habouzit <[EMAIL PROTECTED]>:
[..]
I did not say I was too lazy to read the docmentation. There is too much
for a person who has no clue where to begin and it is difficult to
digest without the knowledge of how thigs work. It is well known that
dev
On Die, 04 Sep 2007, Florent Rougon wrote:
> > Sorry, I can't remember the name of the package.
>
> That must be cm-super.
Yup, cm-super does this trick. I once wanted to undo this and ship the
font files directly, but got quite a lot of requests why the packages
has gotten soo big.
>From the ru
On 9/4/07, Frank Lichtenheld <[EMAIL PROTECTED]> wrote:
> exim4 [...] doesn't have any Debtags information).
It does, but they are not reflected in the archive:
http://debtags.alioth.debian.org/edit.html?pkg=exim4
I've noticed a couple of other packages like this (eg flasm, tesseract-ocr).
--
Hi,
On Tue Sep 04, 2007 at 12:54:41 +0200, Frank Lichtenheld wrote:
> On Tue, Sep 04, 2007 at 07:34:34AM +0200, Lionel Elie Mamane wrote:
> > (Please CC me on replies; thanks.)
> >
> > On Sun, Sep 02, 2007 at 10:58:12PM +0200, Frank Lichtenheld wrote:
> >
> > > packages.debian.org was finally u
Jörg Sommer <[EMAIL PROTECTED]> wrote:
> Sorry, I can't remember the name of the package.
That must be cm-super.
--
Florent
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
On Tue, Sep 04, 2007 at 07:34:34AM +0200, Lionel Elie Mamane wrote:
> (Please CC me on replies; thanks.)
>
> On Sun, Sep 02, 2007 at 10:58:12PM +0200, Frank Lichtenheld wrote:
>
> > packages.debian.org was finally updated to the new code base that
> > was already available some time from packages
Steve Langasek <[EMAIL PROTECTED]> writes:
> For years, the Debian pam packages have by default had a weaker password
> length requirement than upstream. I can think of no reason for this to be
> the case, especially when upstream doesn't support a configurable minimum
> password length and Debia
On Mon, Sep 03, 2007 at 11:40:07PM -0400, John Kelly wrote:
> I stop brute force attacks by sending auth log messages to a FIFO which I
> read with a perl script. After 10 login failures, your IP is firewalled for
> 24 hours.
I have a rate-limiting iptables ruleset for SSH (and HTTP). In my
exp
ma, 2007-09-03 kello 23:40 -0400, John Kelly kirjoitti:
> On Sep 3, Lars Wirzenius wrote:
> >That is arguably better than having passwords which can be guessed by
> >doing brute-force attackes over ssh.
>
> I stop brute force attacks by sending auth log messages to a FIFO which I
> read with a pe
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 09/04/07 03:10, Petter Reinholdtsen wrote:
[snip]
>
> Some schools even use the same password for all lower grade users
> instead of providing very easy passwords, and I am not sure if that is
> better.
That's just stupid.
Since first grade, my c
On Tue, 4 Sep 2007 07:53:08 + (UTC), Oleg Verych
<[EMAIL PROTECTED]> wrote:
>What about having more secure Debian's sshd_config by default?
>PermitRootLogin no
>DenyUsers *
Doing remote ssh installations without any console access will make
you unhappy with that default.
--
Internet
[Steve Langasek]
> Right, I know there are going to be use cases where 6 is too long
> for the minimum length, and users will need to lower the setting in
> /etc/pam.d/common-password. Do you think we need to provide some
> hook for these Debian Edu users to change the setting automatically,
> vi
04-09-2007, John Kelly:
> On Sep 3, Lars Wirzenius wrote:
>
>>ti, 2007-09-04 kello 10:17 +0900, Miles Bader kirjoitti:
>
>>> If the system is excessively anal about what passwords it will let you
>>> use, people will just start writing them down...
>
>>That is arguably better than having passwords
* 07-08-2007, Andrei Popescu:
[]
> Did you even try adding a directory? It might even work ;)
>
>> xmms2... Well, when we have a decent client, then can are an option.
>> Now, isn't it.
>
> Same as with mpd :-/
Server is `(mu-)mplayer` (seek isn't working in ogg), client is `dd`,
playlist is small
37 matches
Mail list logo
