* Paul Wise:
> To fully solve the problem you need a whitelist based approach that
> ends up something completely different like Flatpak.
Flatpaks don't work this way. Try installing gedit and open a file
like ~/.ssh/id_rsa with it. There are no security prompts whatsoever,
yet the software in
On 03.10.2018 18:01, John Paul Adrian Glaubitz wrote:
>> For s390x I can say that the port was driven without any commercial
>> interest on both Aurelien's and my side
> The question is though: Is there quantifiable amount of users that is
> running Debian on such big iron instead of one of the Lin
>- a "searchmode=plain" line option can be used to parse the full
> content of a web page instead of searching only tags
> (#897382), useful for JSON contents. Example:
Cool, I just wrote a hack for such a functionality in one of my project :-)
Cyr
On Wed, Oct 3, 2018 at 5:42 PM Xavier wr
On Thu, 04 Oct 2018 at 08:34:15 +0200, Florian Weimer wrote:
> * Paul Wise:
> > To fully solve the problem you need a whitelist based approach that
> > ends up something completely different like Flatpak.
>
> Flatpaks don't work this way. Try installing gedit and open a file
> like ~/.ssh/id_rsa
On Thu, Oct 4, 2018 at 3:24 PM Florian Weimer wrote:
> Flatpaks don't work this way. Try installing gedit and open a file
> like ~/.ssh/id_rsa with it. There are no security prompts whatsoever,
> yet the software in a flatpak can read your SSH private key.
AFAIK, the only way a Flatpak can read
Package: wnpp
Severity: wishlist
Owner: Sophie Brun
* Package name: python-yaswfp
Version : 0.9.3
Upstream Author : Facundo Batista
* URL : http://github.com/facundobatista/yaswfp
* License : GPL-3
Programming Lang: Python
Description : Python SWF pars
On Wed, Oct 03, 2018 at 11:30:40PM -0400, Antoine Beaupré wrote:
Yet I still think we should start fixing those problems.
+1
Yes, there are a billion things that could go wrong in the current
approach, but if we had *some* safety net, controlled in the
sources.list file, we could at least res
* Simon McVittie:
> On Thu, 04 Oct 2018 at 08:34:15 +0200, Florian Weimer wrote:
>> * Paul Wise:
>> > To fully solve the problem you need a whitelist based approach that
>> > ends up something completely different like Flatpak.
>>
>> Flatpaks don't work this way. Try installing gedit and open a
On 2018-10-04 09:06, Jonathan Dowland wrote:
> What about running Chromium as root? Certainly not recommended, but what
> are the user's expectations if they try it anyway?
With nowadays web, I would disallow this by default. If root
types their sentence ("Yes, I know..."), they can shoot themself
On 2018-10-03 23:30, Antoine Beaupré wrote:
> There
> are somewhat low-hanging fruits in there like declarative maintainer
> scripts.
I am very much in favour of declarative maintainer scripts!
AFAIK, Niels Thykier has done a lot of work there, while Ralf
Treinen and colleagues are analysing maint
On 10/4/18 1:19 AM, Carl-Valentin Schmitt wrote:
> It would be a possibility, for safety to create a new directory only for
> brandy 3rd-party-software like skype, Google Chrome, Swift, and else
> Software where huge companies are Sponsors.
>
> This would then mean, to create a second sources lis
On 10/4/18 10:06 AM, Jonathan Dowland wrote:
> On Wed, Oct 03, 2018 at 11:30:40PM -0400, Antoine Beaupré wrote:
>> Yet I still think we should start fixing those problems.
>
> +1
>
>> Yes, there are a billion things that could go wrong in the current
>> approach, but if we had *some* safety net,
On Thu, Oct 04, 2018 at 01:19:43AM +0200, Carl-Valentin Schmitt wrote:
It would be a possibility, for safety to create a new directory only for
brandy 3rd-party-software like skype, Google Chrome, Swift, and else
Software where huge companies are Sponsors.
This would then mean, to create a secon
On Thu, Oct 04, 2018 at 12:09:05PM +0200, Thomas Goirand wrote:
And prevent stuff like with the bumblebee uninstall disaster because of
an added space, for example:
rm -rf /usr /share/foo/bar.conf
Yes, or the similar bug in steam-for-linux steam.sh. Although neither
made it into the Debian arc
Package: wnpp
Severity: wishlist
Owner: Drew Parsons
* Package name: pygalmesh
Version : 0.2.5
Upstream Author : Nico Schlömer
* URL : https://github.com/nschloe/pygalmesh
* License : MIT
Programming Lang: Python
Description : a Python frontend to CGAL'
Package: wnpp
Severity: wishlist
Owner: Drew Parsons
* Package name: optimesh
Version : 0.4.3
Upstream Author : Nico Schlömer
* URL : optimesh
* License : MIT
Programming Lang: Python
Description : Mesh optimization, mesh smoothing.
Several mesh smooth
On 03.10.2018 19:19, Lars Wirzenius wrote:
> Sometimes what they do is an unwelcome surprise to the user. For
> example, the Microsoft Skype .deb and the Google Chrome .deb add to
> the APT sources lists and APT accepted signing keys. Some users do not
> realise this, and are unpleasantly surprise
Lars Wirzenius wrote on 03/10/2018:
> The problem: when a .deb package is installed, upgraded, or removed,
> the maintainer scripts are run as root and can thus do anything.
>
> Sometimes what they do is an unwelcome surprise to the user. For
> example, the Microsoft Skype .deb and the Google Chro
Package: wnpp
Severity: wishlist
Owner: Victor Seva
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
* Package name: kamcli
Version : 1.1.0
Upstream Author : Daniel-Constantin Mierla
* URL : https://github.com/kamailio/kamcli
* License : GPL-2+
Programming L
On 04.10.2018 01:19, Carl-Valentin Schmitt wrote:
> It would be a possibility, for safety to create a new directory only for
> brandy 3rd-party-software like skype, Google Chrome, Swift, and else
> Software where huge companies are Sponsors.
>
> This would then mean, to create a second sources li
Le 04/10/2018 à 13:20, Paride Legovini a écrit :
> Lars Wirzenius wrote on 03/10/2018:
>> The problem: when a .deb package is installed, upgraded, or removed,
>> the maintainer scripts are run as root and can thus do anything.
>>
>> Sometimes what they do is an unwelcome surprise to the user. For
>
On 04.10.2018 13:17, Enrico Weigelt, metux IT consult wrote:
>> (Note that I'm not saying Microsoft or Google are doing something
>> nefarious here:
>
> But I do think that. If they really wanted to do that in a reasonably
> secure and safe way (assuming they're not completely incompetent),
> the
On Wed, Oct 3, 2018 at 9:28 AM Joseph Herlant wrote:
>
> Hi,
>
> On Tue, Oct 2, 2018 at 6:10 PM Seth Arnold wrote:
> > Two thoughts: first, give it another try. I was able to refresh my
> > keyring using the debian keyserver a few seconds ago:
> >
> > $ gpg --refresh-keys --keyserver keyring.deb
Package: wnpp
Severity: wishlist
Owner: Steffen Moeller
* Package name: schroedinger-maeparser
Version : 1.0.1
Upstream Author : Schroedinger
* URL : https://github.com/schrodinger/maeparser
* License : BSD-like
Programming Lang: C++
Description : parse
Paul Wise:
> On Thu, Oct 4, 2018 at 11:31 AM Antoine Beaupré wrote:
>> Beyond this issue, what I'm mostly concerned about these days is
>> isolation between different apps. Our only solution on the desktop right
>> now is Qubes and it seems rather overengineered for my needs.
> Our solution here i
Package: wnpp
Severity: wishlist
Owner: Sophie Brun
* Package name: python-tld
Version : 0.9.1
Upstream Author : Artur Barseghyan
* URL : https://github.com/barseghyanartur/tld
* License : MPL-1.1/GPL-2/LGPL-2.1+
Programming Lang: Python
Description :
Package: wnpp
Severity: wishlist
Owner: Markus Koschany
* Package name: commons-dbcp2
Version : 2.5.0
Upstream Author : Apache Software Foundation
* URL : https://commons.apache.org/proper/commons-dbcp/
* License : Apache-2.0
Programming Lang: Java
Descript
Hi guys,
Sorry I was out yesterday, slammed by work & life! :)
On Wed, Oct 3, 2018 at 12:19 AM Chris Knadle wrote:
> Which Debian branch of GnuPG is this error happening with?
> (I assume it's Sid/Unstable).
Yes, it's unstable.
On Thu, Oct 4, 2018 at 6:23 AM Shengjing Zhu wrote:
> Have you su
Hi Simon,
On Wed, Oct 3, 2018 at 7:07 PM Simon Quigley wrote:
> Ubuntu has some very detailed Gmail-specific documentation, I would
> recommend that you grab relevant information from that as well:
> https://wiki.ubuntu.com/UbuntuEmail
Thanks for the link pretty well explained. I added a note ab
Package: wnpp
Severity: wishlist
Owner: Markus Koschany
* Package name: jiconfont
Version : 1.0.0
Upstream Author : jiconfont
* URL : https://github.com/jIconFont/jiconfont
* License : MIT
Programming Lang: Java
Description : API to provide icons genera
Package: wnpp
Severity: wishlist
Owner: Markus Koschany
* Package name: jiconfont-swing
Version : 1.0.1
Upstream Author : Cadu Andrade
* URL : https://github.com/jIconFont/jiconfont-swing
* License : MIT
Programming Lang: Java
Description : jIconFont -
Package: wnpp
Severity: wishlist
Owner: Markus Koschany
* Package name: jiconfont-font-awesome
Version : 4.7.0.0
Upstream Author : Cadu Andrade
* URL : https://github.com/jIconFont/jiconfont-font_awesome
* License : MIT, SIL-OFL 1.1
Programming Lang: Java
D
On Thu, Oct 04, 2018 at 11:07:37AM +0200, W. Martin Borgert wrote:
> On 2018-10-03 23:30, Antoine Beaupré wrote:
> > There
> > are somewhat low-hanging fruits in there like declarative maintainer
> > scripts.
>
> I am very much in favour of declarative maintainer scripts!
> AFAIK, Niels Thykier ha
On Thu, Oct 04, 2018 at 01:27:29PM +0200, Enrico Weigelt, metux IT consult
wrote:
> Yes, that would have to be customized per-package, but we're only
> talking about a hand full of packages, anyways.
Eh, no.
--
Could you people please use IRC like normal people?!?
-- Amaya Rodrigo Sastre, tr
Hi,
> A suggestion: we restrict where packages can install files and what
> maintainer scripts can do. The default should be as safe as we can
> make it, and packages that need to do things not allowed by the
> default should declare they that they intend to do that.
I've held a short inflammator
On 2018-10-04 21:10, Simon Richter wrote:
> We could bring the same to dpkg by moving things out of maintainer scripts
> and into control files. The big items would be
>
> - alternatives
> - diversions
> - statoverride
> - service start/stop
I agree and like to add:
- create system users/gro
The following is a listing of packages for which help has been requested
through the WNPP (Work-Needing and Prospective Packages) system in the
last week.
Total number of orphaned packages: 1308 (new: 6)
Total number of packages offered up for adoption: 185 (new: 18)
Total number of packages reque
On Fri, Oct 5, 2018 at 3:20 AM Simon Richter wrote:
> We could bring the same to dpkg by moving things out of maintainer scripts
> and into control files. The big items would be
>
> - alternatives
> - diversions
> - statoverride
> - service start/stop
The dpkg maintainers have this on their r
38 matches
Mail list logo
