On Sat, May 09, 2015 at 09:23:26AM +0200, Mechtilde wrote:
> Hello
>
> Am 05.05.2015 um 23:45 schrieb Mike Hommey:
> > On Sun, May 05, 2013 at 02:22:04PM +0200, Joerg Jaspert wrote:
> >> Hello world,
> >>
> >> Now with wheezy happy and out the door, we should finally tackle a long
> >> open issue.
On Mon, May 11, 2015 at 3:12 PM, Leopold Palomo-Avellaneda wrote:
> At least DM.
I expect DMs will have access (as the mail talks about the uploading
keyring*s*).
> I do not understand how lintian can do a complete check without binaries.
It can't check binaries if they don't get uploaded and l
El Dilluns, 11 de maig de 2015, a les 11:52:13, Paul Wise va escriure:
> On Sun, May 10, 2015 at 11:48 PM, Leopold Palomo-Avellaneda wrote:
> > people.d.o AFAIK is _only_ for DD. Anyway, if I can see it correctly it's
> > only web space.
> >
> > My ppa propose could be also useful for Debian membe
On Sun, May 10, 2015 at 11:48 PM, Leopold Palomo-Avellaneda wrote:
> people.d.o AFAIK is _only_ for DD. Anyway, if I can see it correctly it's only
> web space.
>
> My ppa propose could be also useful for Debian members. I think that new
> packages, are controller by ftp-masters, so any help to cr
El Diumenge, 10 de maig de 2015, a les 10:47:27, Paul Wise va escriure:
> On Sun, May 10, 2015 at 12:06 AM, Leopold Palomo-Avellaneda wrote:
> > El Dissabte, 9 de maig de 2015, a les 09:23:26, Mechtilde va escriure:
> >> Why can't you use people.debian.org for this?
> >
> > It's not an option for
Hi,
Am Sonntag, den 10.05.2015, 10:47 +0800 schrieb Paul Wise:
> On Sun, May 10, 2015 at 12:06 AM, Leopold Palomo-Avellaneda wrote:
> > El Dissabte, 9 de maig de 2015, a les 09:23:26, Mechtilde va escriure:
> >> Why can't you use people.debian.org for this?
> > It's not an option for a non develo
On Sun, May 10, 2015 at 12:06 AM, Leopold Palomo-Avellaneda wrote:
> El Dissabte, 9 de maig de 2015, a les 09:23:26, Mechtilde va escriure:
>> Why can't you use people.debian.org for this?
> It's not an option for a non developer member. :-(
If you are a member of Debian, you have access to people
El Dissabte, 9 de maig de 2015, a les 09:23:26, Mechtilde va escriure:
> Hello
>
> Am 05.05.2015 um 23:45 schrieb Mike Hommey:
> > On Sun, May 05, 2013 at 02:22:04PM +0200, Joerg Jaspert wrote:
> >> Hello world,
> >>
> >> Now with wheezy happy and out the door, we should finally tackle a long
> >
Hello
Am 05.05.2015 um 23:45 schrieb Mike Hommey:
> On Sun, May 05, 2013 at 02:22:04PM +0200, Joerg Jaspert wrote:
>> Hello world,
>>
>> Now with wheezy happy and out the door, we should finally tackle a long
>> open issue. Developer repositories (AKA PPA) for Debian.
>
> Now with jessie happy an
On Sun, May 05, 2013 at 02:22:04PM +0200, Joerg Jaspert wrote:
> Hello world,
>
> Now with wheezy happy and out the door, we should finally tackle a long
> open issue. Developer repositories (AKA PPA) for Debian.
Now with jessie happy and out the door, what is the status of Developer
repositories
On 2013-05-17 at 10:08:20, Olivier Berger wrote:
> AFAIU, I guess that, at least from the user-friendliness POV, the main
> perceptible difference, is :
> - OpenID uses a URL as a person's identifier : may or not be easily
>copied/remembered/dictated
> - WebID uses a URL too, same problems (t
On 2013-05-16 at 14:12:33, Daniel Kahn Gillmor wrote:
> It looks to me like BrowserID/Persona will only work in web browsers
> with a functional javascript stack (and eventually, with a functional
> javascript crypto stack). The client authentication happens inside the
> TLS layer, over the HTTP p
Stéphane Glondu writes:
> Le 17/05/2013 17:43, Russ Allbery a écrit :
>> [...]
>> 4. Hijack that metadata identity request so that it goes to their server
>>instead of mine. This can be done in any number of ways (DNS cache
>>poisoning, compromise of www.eyrie.org, compromise of my accoun
Le 17/05/2013 17:43, Russ Allbery a écrit :
> [...]
> 4. Hijack that metadata identity request so that it goes to their server
>instead of mine. This can be done in any number of ways (DNS cache
>poisoning, compromise of www.eyrie.org, compromise of my account on
>www.eyrie.org, TCP ac
ober...@debian.org writes:
> Russ Allbery writes:
>> I'd never heard of WebID before this thread, but looking briefly at the
>> spec, I share Daniel's concerns. I don't see how this eliminates
>> reliance on the normal CAs. You still have to do certificate
>> validation to be able to trust the
Hi.
Sorry to be a bit late in the discussion.
Russ Allbery writes:
>
> I'd never heard of WebID before this thread, but looking briefly at the
> spec, I share Daniel's concerns. I don't see how this eliminates reliance
> on the normal CAs. You still have to do certificate validation to be abl
Hi.
Philip Hands writes:
>
> Do you have any thoughts on how that compares with using
> BrowserID/Persona? I'd got the impression that BrowserID has been put
> together learning from mistakes of OpenID & WebID, but perhaps I'm just
> swallowing their marketing.
>
AFAIU, I guess that, at least
On 05/15/2013 11:04 PM, Philip Hands wrote:
> Do you have any thoughts on how that compares with using
> BrowserID/Persona? I'd got the impression that BrowserID has been put
> together learning from mistakes of OpenID & WebID, but perhaps I'm just
> swallowing their marketing.
It looks to me li
Quoting Stéphane Glondu (2013-05-16 10:57:19)
> Le 16/05/2013 05:04, Philip Hands a écrit :
> > Do you have any thoughts on how that compares with using
> > BrowserID/Persona? I'd got the impression that BrowserID has been
> > put together learning from mistakes of OpenID & WebID, but perhaps
>
Le 16/05/2013 05:04, Philip Hands a écrit :
> Do you have any thoughts on how that compares with using
> BrowserID/Persona? I'd got the impression that BrowserID has been put
> together learning from mistakes of OpenID & WebID, but perhaps I'm just
> swallowing their marketing.
IIUC, there is no
Daniel Kahn Gillmor writes:
> On 05/14/2013 10:03 AM, Jonas Smedegaard wrote:
>
>> I have also thought WebID would be a perfect match for things like this.
> [...]
>> Daniel has raised concerns about WebID:
>> http://lists.alioth.debian.org/pipermail/freedombox-discuss/2011-March/001030.html
>>
On 05/14/2013 10:03 AM, Jonas Smedegaard wrote:
> I have also thought WebID would be a perfect match for things like this.
[...]
> Daniel has raised concerns about WebID:
> http://lists.alioth.debian.org/pipermail/freedombox-discuss/2011-March/001030.html
>
> Quite frustrating, because I trust D
Jonas Smedegaard writes:
> Quoting Olivier Berger (2013-05-14 14:27:51)
>> I'm not so sure how GPG integrates in the WebID landscape, but it seems
>> to me that WebID, based on Linked Data principles has some similarity
>> with Web of Trust concepts well known in the GPG system.
> Daniel has rai
Quoting Olivier Berger (2013-05-14 14:27:51)
> Russ Allbery writes:
>
> > Raphael Hertzog writes:
> >> On Mon, 06 May 2013, Joerg Jaspert wrote:
> >
> >>> Nah, the webinterface just should end up like the DAM
> >>> webinterface: You do whatever you need, then click a button - and
> >>> voila,
On Tue, May 14, 2013 at 02:27:51PM +0200, Olivier Berger wrote:
> >>> Nah, the webinterface just should end up like the DAM webinterface: You
> >>> do whatever you need, then click a button - and voila, there is
> >>> everything ready to copy/paste into a MUA. Send with sig, done.
> >
> >> Why? Thi
Russ Allbery writes:
> Raphael Hertzog writes:
>> On Mon, 06 May 2013, Joerg Jaspert wrote:
>
>>> Nah, the webinterface just should end up like the DAM webinterface: You
>>> do whatever you need, then click a button - and voila, there is
>>> everything ready to copy/paste into a MUA. Send with s
Raphaël wrote:
> I don't think that you're speaking of the same thing. I see no
> information about "X.509 client certificates" in Monkeysphere. It
> offers ways to validate the server certificate (if it's not signed by
> known CA) but it doesn't seem to offer any solution to manage client
> certi
On Fri, May 10, 2013 at 2:16 PM, Raphael Hertzog wrote:
> I don't think that you're speaking of the same thing. I see no information
> about "X.509 client certificates" in Monkeysphere. It offers ways to
> validate the server certificate (if it's not signed by known CA) but it
> doesn't seem to of
On Fri, 10 May 2013, Paul Wise wrote:
> On Fri, May 10, 2013 at 4:33 AM, Russ Allbery wrote:
>
> > That level of security isn't great, though. GPG keys are much more secure
> > than that password. What we would want for equivalent security in a web
> > interface is personal X.509 certificates.
>
On Fri, May 10, 2013 at 4:33 AM, Russ Allbery wrote:
> That level of security isn't great, though. GPG keys are much more secure
> than that password. What we would want for equivalent security in a web
> interface is personal X.509 certificates.
>
> I think it would be interesting to have that
Raphael Hertzog writes:
> On Mon, 06 May 2013, Joerg Jaspert wrote:
>> Nah, the webinterface just should end up like the DAM webinterface: You
>> do whatever you need, then click a button - and voila, there is
>> everything ready to copy/paste into a MUA. Send with sig, done.
> Why? This is just
Hi,
On Mon, 06 May 2013, Joerg Jaspert wrote:
> Nah, the webinterface just should end up like the DAM webinterface: You
> do whatever you need, then click a button - and voila, there is
> everything ready to copy/paste into a MUA. Send with sig, done.
Why? This is just a band-aid and not what I w
On 13203 March 1977, Raphael Hertzog wrote:
>> - any member of the uploading keyrings can create a PPAMAIN using a
>>defined interface[1].
>> [1] Most probably it will either be a signed mail or a signed .commands
>> style file.
> While I won't question the need to support signed mails or
On Mon, May 06, 2013 at 09:05:43AM +0200, Raphael Hertzog wrote:
>
> While I won't question the need to support signed mails or commands files,
> I would like to argue for the support of a web interface as well. The
> sheer number of operations that are possible on such repositories will
> make it
Hi,
On Montag, 6. Mai 2013, Raphael Hertzog wrote:
> While I won't question the need to support signed mails or commands files,
> I would like to argue for the support of a web interface as well.
how about a web interface which creates such mails/commands, which then only
need to be copied into
Hi Jörg,
we definitely needs something like this and your suggested set of rules
seems sane.
On Sun, 05 May 2013, Joerg Jaspert wrote:
> - any member of the uploading keyrings can create a PPAMAIN using a
>defined interface[1].
>
> [1] Most probably it will either be a signed mail or a signe
On Sun, May 05, 2013 at 04:48:01PM +0200, Joerg Jaspert wrote:
> > Feature suggestion: Optionally only allow the package set transferred to
> > unstable if all transferred packages are installable in the final set,
> > or similar checks as applied in the unstable → testing transition.
>
> That wou
On 13202 March 1977, Joachim Breitner wrote:
>> - a PPAMAIN can have its full package set transferred into its base
>>suite with one command, provided the base suite is configured to
>>receive such transfers. (Currently we imagine only unstable will be
>>configured for it, but other
Hi,
let me comment
Am Sonntag, den 05.05.2013, 14:22 +0200 schrieb Joerg Jaspert:
> Preparing Transitions:
> Some base package(s) should be changed in a maybe incompatible
> way. All of its reverse (Build-)Depends will be rebuild, updated,
> and fixed in the PPA before they get t
39 matches
Mail list logo
