SM> A while ago, the use of libpam-tmpdir was suggested in order to mitigate
SM> some of these attacks. It would be nice to see it in use by default, some
SM> day.
SM> Obviously there will always be some programs that don't look at the
SM> TMPDIR environment variable and directly use /tmp.
write f
On 13:45 Mon 11 Aug , Joey Hess wrote:
JH> Dmitry E. Oboukhov wrote:
JH>> os-prober_1.17 os-prober
/tmp/mounted-map (pipe)
JH>>
/tmp/raided-map (pipe)
JH> os-prober writer to $OS_PROBER_
Like a fine wine, SCALE continues to improve with age. The 7th Annual
So Cal Linux Expo will be February 20-22, 2009.
For 2009, the Expo will return to the Westin LAX Hotel, site of the
6th Expo. Because interest in Open Source Software is steadily
growing, attendance at SCALE continues to also g
Le Mon, Aug 11, 2008 at 01:18:35PM -0300, martin f krafft a écrit :
> Package: wnpp
> Severity: wishlist
> Owner: "martin f. krafft" <[EMAIL PROTECTED]>
>
> * Package name: topgit
> Version : 0.1
> Upstream Author : Petr Baudis <[EMAIL PROTECTED]>
> * URL : http://repo.
Hi Joerg,
Joerg Jaspert wrote:
> currently our archive has the feature(?) that a source package in component a
> (like main) can build a binary package in component b (like contrib).[1]
>
> Now, this feature is blocking (or making it way harder) to do some
> database re-designs we want to do for
Goswin von Brederlow wrote:
> Charles Plessy <[EMAIL PROTECTED]> writes:
>
>> Le Sun, Aug 10, 2008 at 06:36:35PM +0300, Shachar Or a écrit :
>>>
>>> What I am offering is the idea that package dependencies that are
>>> reccomendations or suggestions must be explained.
>>
>> Hi,
>>
>> Before I re
Package: wnpp
Severity: wishlist
Owner: Sylvain Le Gall <[EMAIL PROTECTED]>
* Package name: ocaml-gnuplot
Version : 0.8.0
Upstream Author : Christophe Troestler
* URL : http://sourceforge.net/projects/ocaml-gnuplot/
* License : LGPL
Programming Lang: OCaml
On Wed, Aug 6, 2008 at 12:13 PM, Joerg Jaspert <[EMAIL PROTECTED]> wrote:
> Please login to merkel and add yourself to ~joerg/projectb.users (the
> file is mode 666, so everyone with login is able to do it).
Done. I'm surprised at the few entries after almost a week. Is no one
using projectb, or i
Package: wnpp
Severity: wishlist
Owner: Leandro Lucarella <[EMAIL PROTECTED]>
* Package name: mtpsync
Version : 0.7
Upstream Author : Chris Debenham <[EMAIL PROTECTED]>
* URL : http://www.adebenham.com/mtpsync/
* License : GPL
Programming Lang: C
Descriptio
Package: wnpp
Severity: wishlist
Package name: deal.II
Version: 6.1.0
Author: Wolfgang Bangerth, Ralf Hartmann, Guido Kanschat
License: QPL
URL: http://dealii.org/
deal.II is a C++ class library for parallel solution of partial
differential equations using adaptive finite elements. It interfaces
Quoting Hideki Yamane ([EMAIL PROTECTED]):
> Hi list,
>
> I'm worry about CJK Debian users will not be able to read PDF with
> poppler-data in default Debian Desktop environment.
>
> Now, in etch, if you want to view Japanese PDF file, you'll install
> xpdf-japanese and cmap-adobe-japan1 and
Dmitry E. Oboukhov wrote:
> os-prober_1.17 os-prober
> /tmp/mounted-map (pipe)
>
> /tmp/raided-map (pipe)
os-prober writer to $OS_PROBER_TMP/{mounted-map.raided-map,etc}, which is
created b
On Mon, 11 Aug 2008 10:57:56 +0400, Dmitry E. Oboukhov wrote:
> Package: mplayer nws ppp twiki
> Severity: grave
> Tags: security
>
> This message about the error concerns a few packages at once. I've
> tested all the packages on my Debian mirror. (post|pre)(inst|rm) and
> config scripts we
JC>>> just by looking at the name.
JC>>
JC>> If program A writes file FILENAME and user1 and user2 can make (write)
JC>> symlinks 'FILENAME' then name of program A is not important.
JC>>
JC> If that program is in a udeb, then user1 and user2 don't exist, so it's
JC> not a security problem.
Yes,
Package: wnpp
Severity: wishlist
Owner: "martin f. krafft" <[EMAIL PROTECTED]>
* Package name: topgit
Version : 0.1
Upstream Author : Petr Baudis <[EMAIL PROTECTED]>
* URL : http://repo.or.cz/w/topgit.git
* License : GPL v2
Programming Lang: sh
Description
"[EMAIL PROTECTED]" <[EMAIL PROTECTED]> writes:
> I need older gcc and g++ as I have a lot of iostream.h in my code.
If that's the only consideration, you should be able to use 4.1 and
4.2, both of which exist in lenny. That said, I would echo others'
advice to port to the modern .h-less header
On Mon, Aug 11, 2008 at 18:59:22 +0400, Dmitry E. Oboukhov wrote:
> MdI> just by looking at the name.
>
> If program A writes file FILENAME and user1 and user2 can make (write)
> symlinks 'FILENAME' then name of program A is not important.
>
If that program is in a udeb, then user1 and user2 do
On Mon, Aug 11, 2008 at 04:37:53AM -0700, [EMAIL PROTECTED] wrote:
Debian Lenny has gcc-3.4 in
http://packages.debian.org/lenny/gcc-3.4 but lenny doesnt have g++-3.4.
It's my understanding that this was intentional. There are already
three different versions of gcc in lenny, which is a lot t
MdI> just by looking at the name.
If program A writes file FILENAME and user1 and user2 can make (write)
symlinks 'FILENAME' then name of program A is not important.
user1 creates symlink FILENAME to ~user2/.gnupg/file,
then user2 starts program A and destroy his .gnupg/file, etc
this is secur
Charles Plessy <[EMAIL PROTECTED]> writes:
> Le Sun, Aug 10, 2008 at 06:36:35PM +0300, Shachar Or a écrit :
>>
>> What I am offering is the idea that package dependencies that are
>> reccomendations or suggestions must be explained.
>
> Hi,
>
> Before I read your mail, I thought that it was not
On 14:05 Mon 11 Aug , Steve Kemp wrote:
SK> Great work. If you have the time to see if any of these are included
SK> in stable (etch) please could you do so?
I checked only the packages of last version. I'll few new checks...
SK> It might be that we'd need to release a security update, or a
On Aug 11, Steve Kemp <[EMAIL PROTECTED]> wrote:
> I don't think there should be any objection to a mass-filing for
> security sensitive bugs - and from the sounds of it you'll only be
> filing a few bugs, not a mass of them.
Except that one of the packages listed was obviously not vulnerable,
DEO> Package: mplayer nws ppp twiki
DEO> Severity: grave
DEO> Tags: security
DEO> This message about the error concerns a few packages at once. I've
DEO> tested all the packages on my Debian mirror. (post|pre)(inst|rm) and
DEO> config scripts were tested.
DEO> In some packages I've discover
Great work. If you have the time to see if any of these are included
in stable (etch) please could you do so?
It might be that we'd need to release a security update, or at least
a package for the next point release. (I guess severity "grave" and
a tag of "security" will ensure the same
On 10:57 Mon 11 Aug , Dmitry E. Oboukhov wrote:
DEO> Package: mplayer nws ppp twiki
DEO> Severity: grave
DEO> Tags: security
DEO> This message about the error concerns a few packages at once. I've
DEO> tested all the packages on my Debian mirror. (post|pre)(inst|rm) and
DEO> config scrip
On 10:57 Mon 11 Aug , Dmitry E. Oboukhov wrote:
DEO> Package: mplayer nws ppp twiki
DEO> Severity: grave
DEO> Tags: security
DEO> This message about the error concerns a few packages at once. I've
DEO> tested all the packages on my Debian mirror. (post|pre)(inst|rm) and
DEO> config scrip
On 10:27 Mon 11 Aug , Steve Kemp wrote:
SK> On Mon Aug 11, 2008 at 10:57:56 +0400, Dmitry E. Oboukhov wrote:
SK>> I set Severity into grave for this bug. The table of discovered
SK>> problems is below.
SK> Great work.
SK> I don't think there should be any objection to a mass-filin
Hi,
I need older gcc and g++ as I have a lot of iostream.h in my code.
iostream.h ? You mean iostream, or not?
Greetings,
Bjo"rn
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Debian Lenny has gcc-3.4 in
http://packages.debian.org/lenny/gcc-3.4 but lenny doesnt have g++-3.4.
I need older gcc and g++ as I have a lot of iostream.h in my code.
I can not use etch as NSS and NSPR it uses is very old dates back to 2005.
--
To UNSUBSCRIBE, email to [EMAIL PROT
Hello,
* 2008-08-11 09:53, Bjørn Mork wrote:
> Is there any reason why phamm-ldap should depend on slapd? It could
> recommend slapd, like e.g kolabd does. I think maybe the same goes for
> gforge-ldap-openldap, which also seems to be a ldap client depending on
> slapd.
phamm is the real "appl
Hi,
I've uploaded a new version of zeroc-ice packages which essentially
falls back to target build-arch whenever the autobuilder tries the build
target on architectures other than i386. I hope the Build-Options
control field or a similar approach will enter the Debian policy soon so
that I can re
Le Sun, Aug 10, 2008 at 06:36:35PM +0300, Shachar Or a écrit :
>
> What I am offering is the idea that package dependencies that are
> reccomendations or suggestions must be explained.
Hi,
Before I read your mail, I thought that it was not possible, but after
googling a bit, I found out that dp
On Mon Aug 11, 2008 at 10:57:56 +0400, Dmitry E. Oboukhov wrote:
> I set Severity into grave for this bug. The tableof discovered
> problems is below.
Great work.
I don't think there should be any objection to a mass-filing for
security sensitive bugs - and from the sounds of
On Mon, Aug 11, 2008 at 08:48:29AM +0200, Petter Reinholdtsen wrote:
> I really wish there was some organized way for packages to
> automatically add schemas and settings to the OpenLDAP server
> configuration, at install time.
The new cn=config backend in recent OpenLDAP versions provide exactly
[Bastian Blank]
> ldap is a network based service. Why does the OP even consider that
> the ldap server is running on the local machine?
For Debian Edu, we configure the OpenLDAP on the main network server
to work out of the box, and in this setup, we know that where the LDAP
server is running.
Bastian Blank <[EMAIL PROTECTED]> writes:
> On Mon, Aug 11, 2008 at 08:48:29AM +0200, Petter Reinholdtsen wrote:
>> I really wish there was some organized way for packages to
>> automatically add schemas and settings to the OpenLDAP server
>> configuration, at install time.
>
> ldap is a network ba
Package: mplayer nws ppp twiki
Severity: grave
Tags: security
This message about the error concerns a few packages at once. I've
tested all the packages on my Debian mirror. (post|pre)(inst|rm) and
config scripts were tested.
In some packages I've discovered scripts with errors which may be
On Mon, Aug 11, 2008 at 08:48:29AM +0200, Petter Reinholdtsen wrote:
> I really wish there was some organized way for packages to
> automatically add schemas and settings to the OpenLDAP server
> configuration, at install time.
ldap is a network based service. Why does the OP even consider that th
38 matches
Mail list logo
