On Wed, Jul 31, 2019 at 11:10 PM Marco d'Itri wrote:
>
> On Jul 31, Aron Xu wrote:
>
> > utility (for instance, firewalld) for certain use cases, i.e. it could
> > be useful for a "standard" server installation with graphic desktop,
> > for which we could expect most users choosing this method wo
On 31/07/2019 17:08, Ian Jackson wrote:
.dsc generation is complicated, slow, and inconvenient.
In what circumstances is it slow enough to matter?
My measurements, in a sid chroot:
source .orig .debian origcreate dpkg-b.
size size time time
dgit(native)4M 0.3sec
On 16/07/19 2:07 am, Arturo Borrero Gonzalez wrote:
[...]
> 2) introduce firewalld as the default firewalling wrapper in Debian, at least
> in
> desktop related tasksel tasks.
>
firewalld is a reasonable choice. We setup and manage firewalld
automatically in FreedomBox.
- firewalld has simple w
Hi Sam
On Wed, Jul 31, 2019 at 03:21:32PM -0400, Sam Hartman wrote:
> Bastian> One last time: The user has to certify his upload in a way
> Bastian> the archive can verify.
> Let me see if I'm correctly understanding this requirement. You're
> saying that given the dsc presented to dak by
On 31/07/19 7:46 am, Wookey wrote:
[...]
>
> What is the modern equivalent of 'ipmasq'? I still miss this tool on a
> regular basis and loved what it did. I have not found a replacement
> and forever end up looking up runes on the net and doing it by hand
> with iptables. ('it' being setting up my
On Wed, 31 Jul 2019 at 15:46:39 +0100, Wookey wrote:
> What is the modern equivalent of 'ipmasq'? I still miss this tool on a
> regular basis and loved what it did. I have not found a replacement
> and forever end up looking up runes on the net and doing it by hand
> with iptables. ('it' being sett
> "Bastian" == Bastian Blank writes:
Bastian> Hi Ian
Bastian> On Wed, Jul 31, 2019 at 05:08:51PM +0100, Ian Jackson wrote:
>> Bastian Blank writes ("Re: tag2upload (git-debpush) service
>> architecture - draft"): > The hypothetical tool creates a
>> complete .dsc file with
Hello,
On Wed 31 Jul 2019 at 07:53AM +01, Rebecca N. Palmer wrote:
> (c-scriptedstatusquo) git debpush becomes an automated way to do what is
> currently recommended, i.e. it creates and pushes a signed git tag (to
> salsa and to dgit), creates tarballs, creates and signs .dsc+.changes,
> dputs .
Hi Ian
On Wed, Jul 31, 2019 at 05:08:51PM +0100, Ian Jackson wrote:
> Bastian Blank writes ("Re: tag2upload (git-debpush) service architecture -
> draft"):
> > The hypothetical tool creates a complete .dsc file with the names and
> > checksums of the uncompressed files. The user signed .dsc is p
Package: wnpp
Severity: wishlist
Owner: Andrew Lee (李健秋)
* Package name: openvr
Version : 1.4.18
Upstream Author : Valve Corporation
* URL : https://github.com/ValveSoftware/openvr
* License : Expat
Programming Lang: C
Description : openvr sdk
OpenVR
Johannes Schauer writes ("Re: B-D on src package? (was: Re: Challenge from
Julia's non-standard vendored openblas"64_""):
> We have to think about a good syntax for the Build-Depends field
> which is able to express a build dependency on source packages
> unpacked to /usr/src
Can I make a radical
Ansgar writes ("Re: tag2upload (git-debpush) service architecture - draft"):
> There are also other issues, for example:
>
> - Such a service would bypass various sanity checks on the archive
>side, including various permission checks.
What permission checks are bypassed ? The current servi
Package: wnpp
Severity: wishlist
Owner: Andrew Lee (李健秋)
* Package name: gxr
Version : 0.12.1
Upstream Author : Lubosz Sarnecki
* URL : https://gitlab.freedesktop.org/xrdesktop/gxr
* License : Expat
Programming Lang: C
Description : glib wrapper for th
Package: wnpp
Severity: wishlist
Owner: Andrew Lee (李健秋)
* Package name: gnome-shell-extension-xrdesktop
Version : 0.12.1
Upstream Author : Lubosz Sarnecki
* URL :
https://gitlab.freedesktop.org/xrdesktop/gnome-shell-extension-xrdesktop
* License : Expat
Pr
Package: wnpp
Severity: wishlist
Owner: Andrew Lee (李健秋)
* Package name: kdeplasma-applets-xrdesktop
Version : 0.12.1
Upstream Author : Lubosz Sarnecki
* URL :
https://gitlab.freedesktop.org/xrdesktop/kdeplasma-applets-xrdesktop
* License : Expat
Programmin
Package: wnpp
Severity: wishlist
Owner: Andrew Lee (李健秋)
* Package name: kwin-effect-xrdesktop
Version : 0.12.1
Upstream Author : Lubosz Sarnecki
* URL :
https://gitlab.freedesktop.org/xrdesktop/kwin-effect-xrdesktop
* License : Expat
Programming Lang: C
Package: wnpp
Severity: wishlist
Owner: Andrew Lee (李健秋)
* Package name: gulkan
Version : 0.12.1
Upstream Author : Lubosz Sarnecki
* URL : https://gitlab.freedesktop.org/xrdesktop/gulkan
* License : Expat
Programming Lang: C
Description : glib library
Package: wnpp
Severity: wishlist
Owner: Andrew Lee (李健秋)
* Package name: libinputsynth
Version : 0.12.1
Upstream Author : Lubosz Sarnecki
* URL : https://gitlab.freedesktop.org/xrdesktop/libinputsynth
* License : Expat
Programming Lang: C
Description :
Package: wnpp
Severity: wishlist
Owner: Andrew Lee (李健秋)
* Package name: xrdesktop
Version : 0.12.1
Upstream Author : Lubosz Sarnecki
* URL : https://gitlab.freedesktop.org/xrdesktop/xrdesktop
* License : Expat
Programming Lang: C
Description : library
Bastian Blank writes ("Re: tag2upload (git-debpush) service architecture -
draft"):
> The hypothetical tool creates a complete .dsc file with the names and
> checksums of the uncompressed files. The user signed .dsc is put into
> the tag.
This tool is almost exactly "dgit" and therefore already
Bastian Blank writes ("Re: tag2upload (git-debpush) service architecture -
draft"):
> We discussed a bit within the ftp team and several points came up. The
> following describes my interpretation of it:
>
> The archive will need to do the final validation to check if an upload
> is accepted. T
On Mon, Jul 29, 2019 at 09:46:51 +0200, Ansgar wrote:
> There are also other issues, for example:
>
> - Such a service would bypass various sanity checks on the archive
>side, including various permission checks.
tag2upload checks the Debian Keyring and the DM ACL (from dak)/DM
keyring. What
On Jul 31, Aron Xu wrote:
> utility (for instance, firewalld) for certain use cases, i.e. it could
> be useful for a "standard" server installation with graphic desktop,
> for which we could expect most users choosing this method would like
> to have advanced firewalling as an enterprise feature
On Jul 31, Scott Kitterman wrote:
> Please don't install one by default. I suspect it will cause more
> trouble for end users than it's worth. Making sure our default
> install is severely limited in what ports it listens to is likely more
> broadly useful and less risky.
Agreed.
Default-den
On 2019-07-16 11:57 +0200, Raphael Hertzog wrote:
>
> What would/should Debian recommend to configure the firewall on the server
> case ?
>
> I was recommending creating firewall rules with fwbuilder up to now (see
> https://debian-handbook.info/browse/stable/sect.firewall-packet-filtering.html)
On Wed, 31 Jul 2019, Adam Borowski wrote:
A network firewall is useful. But why would someone want a _host_ firewall
for on any sane operating system? If a daemon is not supposed to listen on
Are libvirt and network-manager using firewalld to setup network sharing
and virtual networks? Or do
There are at least 2 questions being debated here, and at least 5
proposed solutions, and they are frequently being confused.
The questions:
(1-trust) Is it acceptable in principle for the archive to trust a
tag2upload service? (i.e. have tag2upload rather than dak be
responsible for checkin
27 matches
Mail list logo
