On Mon, Apr 28, 2008 at 2:14 AM, Russ Allbery <[EMAIL PROTECTED]> wrote:
> "Bryan Donlan" <[EMAIL PROTECTED]> writes:
>
> > Currently I have a situation where attempting to upgrade imagemagick
> > from version 7:6.2.4.5.dfsg1-1+lenny1 to version 7:6.3.7.9.dfsg1-2+b1
> > pulls in over 200mb of de
Colin Watson [2008-04-27 13:19 +0100]:
> > Can't you do something against ptrace in the binary itself and only
> > for critical sections?
>
> You can (use prctl() to disable PR_SET_DUMPABLE), but it's only checked
> on ptrace_attach so that would be racy.
That's what the current Ubuntu version of
Martin Pitt [2008-04-28 9:22 +0200]:
> That's what the current Ubuntu version of libpolkit does (patch
> attached FYI).
*cough*
--
Martin Pitt| http://www.piware.de
Ubuntu Developer (www.ubuntu.com) | Debian Developer (www.debian.org)
# Description: Disable ptrace() an
Russ Allbery wrote:
"Bryan Donlan" <[EMAIL PROTECTED]> writes:
Currently I have a situation where attempting to upgrade imagemagick
from version 7:6.2.4.5.dfsg1-1+lenny1 to version 7:6.3.7.9.dfsg1-2+b1
pulls in over 200mb of dependencies, including mozilla-browser,
iceape-browser, and half of g
On Fri, Dec 7, 2007 at 2:18 PM, Martin Pitt <[EMAIL PROTECTED]> wrote:
> Hi all,
>
> one thing that has bothered me for a long time already is the
> complete lack of a security boundary between processes of the same
> user. Things like LD_PRELOAD and ptrace() (IOW, gdb) are enabled by
> default
On 25/04/08 at 10:59 +0200, Holger Levsen wrote:
> Hi,
>
> thanks for starting an initiative to make NMs more useful and accepted!
> For now I just have two procedural remarks.
>
> On Thursday 24 April 2008 21:42, Bas Wijnen wrote:
> > [0] http://dep.debian.net/deps/dep0/
> > [1] http://wiki.debi
On 25/04/08 at 18:32 +0200, Nico Golde wrote:
> What about introducing a special case regarding the waiting
> period before uploading an NMU for security bugs? There are
> often cases in which we already have a patch handy to fix a
> security issue but still wait a few days on the maintainers
>
> Programming Lang: bash
> Description : Builds a single Debian source package with a remote
> cowbuilder
>
> The cowpoke script automates the task of sending a package to a remote
do we really need a package for a single script?! I think such stuff
could go into the pbuilder package,
Martin Pitt <[EMAIL PROTECTED]> writes:
> In the end I did not worry too much about the startup race condition.
> If there is already a Trojan in the user's session, it is trivial to
> circumvent PR_SET_DUMPABLE, of course (by running the target
> application through gdb right from the start). But
"Bryan Donlan" <[EMAIL PROTECTED]> writes:
> On Mon, Apr 28, 2008 at 2:14 AM, Russ Allbery <[EMAIL PROTECTED]> wrote:
>> "Bryan Donlan" <[EMAIL PROTECTED]> writes:
>>
>> > Currently I have a situation where attempting to upgrade imagemagick
>> > from version 7:6.2.4.5.dfsg1-1+lenny1 to version 7
Package: wnpp
Severity: wishlist
Owner: Charles Plessy <[EMAIL PROTECTED]>
Package name: libdata-stag-perl
Version : 0.10
Upstream Author : Chris Mungall
URL : http://stag.sourceforge.net
License : Artistic | GPL-1+ (same terms as perl itself)
Programmi
Hi, I maintain nss-ldapd, a replacement for nss_ldap which uses a local
daemon (nslcd) to proxy name lookup requests (passwd/group/hosts/etc)
to an LDAP server. I have received a bug report (#475626) that I would
welcome some input on.
The problem is that a lot of daemons are started at sequenc
On Mon, Apr 28, 2008 at 01:17:24AM -0400, Bryan Donlan <[EMAIL PROTECTED]> was
heard to say:
> Currently I have a situation where attempting to upgrade imagemagick
> from version 7:6.2.4.5.dfsg1-1+lenny1 to version 7:6.3.7.9.dfsg1-2+b1
> pulls in over 200mb of dependencies, including mozilla-brows
On Mon, Apr 28, 2008 at 07:05:24AM -0700, Daniel Burrows <[EMAIL PROTECTED]>
was heard to say:
> One option you have is to run "aptitude why -v imagemagick iceape-browser",
> which will show you all the possible dependency chains between those
> packages.
On my computer, I get this (reformatt
[Arthur de Jong]
> So, what would the best solution for this problem?
>
> - request slapd to be started at sequence 18 and start nslcd at
> sequence 19 when this has changed (haven't extensively checked if that
> would cause problems for slapd)
> - add some magic to nslcd to do more retries du
Am 2008-04-25 16:07:51, schrieb Stefano Zacchiroli:
> You are asking generically Packages without specifying a mirror. Are
> they granted to be identically replicated among all mirrors? Of course
> they *probably* are due to how mirroring works, but is it *granted* that
> there are no differences
Goswin von Brederlow <[EMAIL PROTECTED]> writes:
> I recommend to always do an upgrade before doing a dist-upgrade (or
> install of something pulling in 200mb). The upgrade will never install
> new or remove packages so it is save. It usualy reduces the number of
> packages to something where the
On Mon, 2008-04-28 at 09:40 -0700, Russ Allbery wrote:
> Goswin von Brederlow <[EMAIL PROTECTED]> writes:
>
> > I recommend to always do an upgrade before doing a dist-upgrade (or
> > install of something pulling in 200mb). The upgrade will never install
> > new or remove packages so it is save. I
Michelle Konzack <[EMAIL PROTECTED]> writes:
> Am 2008-04-25 16:07:51, schrieb Stefano Zacchiroli:
>> You are asking generically Packages without specifying a mirror. Are
>> they granted to be identically replicated among all mirrors? Of course
>> they *probably* are due to how mirroring works, b
On Mon, Apr 28, 2008 at 10:05 AM, Daniel Burrows <[EMAIL PROTECTED]> wrote:
> On Mon, Apr 28, 2008 at 01:17:24AM -0400, Bryan Donlan <[EMAIL PROTECTED]>
> was heard to say:
>
> > Currently I have a situation where attempting to upgrade imagemagick
> > from version 7:6.2.4.5.dfsg1-1+lenny1 to vers
Package: wnpp
Severity: wishlist
Owner: Jelmer Vernooij <[EMAIL PROTECTED]>
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
* Package name: samba4
Version : 4.0.0~alpha4~git20080428
Upstream Author : Samba Team <[EMAIL PROTECTED]>
* URL : http://www.samba.org/
* License
Filipus Klutiero wrote:
> One of the things you could do is wait one day, after which
> cyrus-imapd-2.2 would be old enough to transition. cyrus-imapd-2.2
> needs to be updated, otherwise cyrus-common-2.2 would become
> uninstallable due to its dependency on libkrb5-22-heimdal in testing.
>
>
Anoth
Le April 28, 2008 06:17:10 pm Brian May, vous avez écrit :
> Filipus Klutiero wrote:
> > One of the things you could do is wait one day, after which
> > cyrus-imapd-2.2 would be old enough to transition. cyrus-imapd-2.2
> > needs to be updated, otherwise cyrus-common-2.2 would become
> > uninstalla
Russ Allbery <[EMAIL PROTECTED]> writes:
> This new recommendation is *not* RC for lenny, only a recommendation.
> However, it is still a recommendation that most affected packages don't
> currently follow, so I wanted to give the development community a heads-up
> on this change.
Can this be sav
Goswin von Brederlow <[EMAIL PROTECTED]> writes:
> Russ Allbery <[EMAIL PROTECTED]> writes:
>> This new recommendation is *not* RC for lenny, only a recommendation.
>> However, it is still a recommendation that most affected packages don't
>> currently follow, so I wanted to give the development c
Russ Allbery <[EMAIL PROTECTED]> writes:
> Goswin von Brederlow <[EMAIL PROTECTED]> writes:
>> Russ Allbery <[EMAIL PROTECTED]> writes:
>
>>> This new recommendation is *not* RC for lenny, only a recommendation.
>>> However, it is still a recommendation that most affected packages don't
>>> curren
On Sat, Apr 19, 2008 at 03:43:35PM -0500, Steve M. Robbins wrote:
> On Fri, Apr 18, 2008 at 12:20:39PM +0200, Domenico Andreoli wrote:
>
> > I think new and separate boost-1.35 package is the best option we have:
> >
> > 1. It may be uploaded now and released with lenny without touching
> >
I have made changes to source package newspost_2.1.1-4, so that a bigger
-l (lines) parameter can be given, and and indroduced a new parameter -2
with which it calls another program - such as par2create - to make the
desired par2 files. I renamed the dir into newspost-2.1.2.beta.
*Open questio
I also have changed the manpage and want to show it:
.TH "NEWSPOST" "1" "2.1.1" "Jim Faulkner" ""
.SH "NAME"
.LP
newspost \- a usenet binary autoposter
.SH "SYNTAX"
.LP
... no changes before here ...
\fB\-2\fR
This causes par2 files to be made, by calling an external program, usually
par2create
29 matches
Mail list logo
