Your message dated Fri, 02 May 2008 14:32:08 +0000 with message-id <[EMAIL PROTECTED]> and subject line Bug#65630: fixed in dupload 2.6.4 has caused the Debian Bug report #65630, regarding dupload: Dupload should check for PGP signatures on .dsc and .changes before uploading to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact [EMAIL PROTECTED] immediately.) -- 65630: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=65630 Debian Bug Tracking System Contact [EMAIL PROTECTED] with problems
--- Begin Message ---Package: dupload Version: 2.4 Severity: wishlist In order to have to not type my long GPG password more than necessary, I usually build a package with -us -uc until it has all its issues resolved (lintian clean, etc). Unfortunately, I often then forget to recompile without -us -uc, and make a bogus upload, which then gets rejected because nothings signed. Perhaps it would be possible for dupload to peed at the .changes and .dsc files and at least complain if they don't appear to be signed. Cheers, Mike. -- System Information Debian Release: potato Kernel Version: Linux kate 2.2.14 #1 SMP Wed Jan 5 07:46:17 CST 2000 i686 unknown Versions of the packages dupload depends on: ii libnet-perl 1.0606-3 Implementation of Internet protocols for Per perl Not installed or no info ii perl-5.005 5.005.03-5.3 Larry Wall's Practical Extracting and Report ^^^ (Provides virtual package perl5)
--- End Message ---
--- Begin Message ---Source: dupload Source-Version: 2.6.4 We believe that the bug you reported is fixed in the latest version of dupload, which is due to be installed in the Debian FTP archive: dupload_2.6.4.dsc to pool/main/d/dupload/dupload_2.6.4.dsc dupload_2.6.4.tar.gz to pool/main/d/dupload/dupload_2.6.4.tar.gz dupload_2.6.4_all.deb to pool/main/d/dupload/dupload_2.6.4_all.deb A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to [EMAIL PROTECTED], and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Frank Lichtenheld <[EMAIL PROTECTED]> (supplier of updated dupload package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing [EMAIL PROTECTED]) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.8 Date: Fri, 02 May 2008 13:43:03 +0200 Source: dupload Binary: dupload Architecture: source all Version: 2.6.4 Distribution: unstable Urgency: low Maintainer: Frank Lichtenheld <[EMAIL PROTECTED]> Changed-By: Frank Lichtenheld <[EMAIL PROTECTED]> Description: dupload - utility to upload Debian packages Closes: 54344 56877 65630 98949 101882 222934 222938 225400 226101 226101 229744 249341 251286 279308 319910 321126 345078 356780 360161 384703 387678 395593 398135 420693 473518 477220 Changes: dupload (2.6.4) unstable; urgency=low . * Add myself to Uploaders with Josip's approval + acknowledge NMUs * Make a few clean-ups I refrained from in the NMUs: + Increase debhelper compat level to 5 + Add some missing dh_* calls (md5sums and installman) + Use dh_install and dh_link instead of install and ln + Bump Standards-Version to 3.7.3 (no changes) . dupload (2.6.3.4) unstable; urgency=low . * Non-maintainer upload (Closes: #477220) * Update mentors.debian.net configuration. Patch by Charles Plessy. (Closes: #226101) * Add volatile configuration. (Closes: #420693) * Add backports.org configuration. * Abort upload if distribution is UNRELEASED. (Closes: #384703) (also remove support for "frozen") * Add support for parsing and testing new checksums-* fields. dupload will not complain if the fields are absent. (Closes: #473518) * Check file sizes, too. (Closes: #360161) . dupload (2.6.3.3) unstable; urgency=low . * NMU (with maintainers consent) (Closes: #398135) * Recommend openssh-client instead of ssh, keep ssh as alternative for now. Reported by Aaron Schrab (Closes: #387678) * Setting $default_host from a local dupload.conf is now possible again. Reported by martin f krafft (Closes: #249341) * Add empty binary-arch target in debian/rules. Reported by Aurelien Jarno (Closes: #395593) * Treat DEBDELAY=0 correctly. Patch by Matej Vela (Closes: #356780) * Fix headers of man pages. Reported by Denis Barbier (Closes: #222934) * Update location of security upload queues. Reported by adrian (Closes: #345078) * Fix move of files to the queuedir. Patch by Bob Proulx (Closes: #279308) * Remove build-stamp in debian/rules' clean target . dupload (2.6.3.2) unstable; urgency=low . * NMU during BSP. * Try to differentiate between different gpg --verify error reasons to allow uploads from hosts where the public key is not available. (Closes: #321126) . dupload (2.6.3.1) unstable; urgency=low . * NMU to remove obsolete queues, based on http://www.debian.org/doc/developers-reference/ch-pkgs.en.html and http://lists.debian.org/debian-devel/2004/debian-devel-200401/msg01950.html> also cleaned up the bug list. * Removed non-functioning upload queues: anonymous-non-us, non-us, chiark, erlangen, uk, jp, and samosa. (Closes: #222938, #229744) * Added notes extracted from the Developer's reference regarding uploads to security and commented out these entries to prevent developers from uploading there unintentionally. (Closes: #251286) * Added a default configuration for uploading to mentors.debian.net (Closes: #226101) * Changed default (commented) upload queue to be anonymous-ftp-master * Use Goswin's patch to add an 'options' field in the configuration file which can be used to setup --progress and -L in rsync calls, or additional options to SSH if needed (Closes: #98949, #319910, #225400) * Check the .changes signature using gpg or pgp (if available) in order to prevent unsigned uploads. This is active by default for GPG but can be disabled in dupload.conf at will. Also, added two new simple scripts gpg-check and pgp-check to provide a wrapper to the check so that the error message in case of a failure is more user-friendly. I've implemented this as hooks rather than as new code in dupload to allow users to customise as needed. Note: DSC files are not checked since that should be done in a separate hook (and there is none for those files). (Closes: #54344, #56877, #65630, #101882) * Related to the above add references to the preupload/postupload hooks in the dupload.conf file. Checksums-Sha1: 6330ce84c99a3e8bfca994743dfc93e514f3b9e2 775 dupload_2.6.4.dsc e3c7bfc39ad5b2f3ca187efd6cf9a92df35d3dc4 23738 dupload_2.6.4.tar.gz 33541d515c2d1380c9eeb4753dd2768e538e8423 30728 dupload_2.6.4_all.deb Checksums-Sha256: db4548b8b0e019ea9152a3c5ddea367845b21ecabe81387c1d87613d59a73572 775 dupload_2.6.4.dsc f6a0e8885d2175f47051d3e750c24f11fdc6e6269d191a10111a895c30be9a79 23738 dupload_2.6.4.tar.gz 85c5807b763f646dcc81aec80a0a3e934b120b698daf854dcaab9c74c4d0e2ca 30728 dupload_2.6.4_all.deb Files: 08eb237b551497e5408d26bdb5c2011f 775 devel optional dupload_2.6.4.dsc a1e39af16a50d77e57712814a26f7083 23738 devel optional dupload_2.6.4.tar.gz 7b64d850ac764f1f2bed94bde950d67c 30728 devel optional dupload_2.6.4_all.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) iD8DBQFIGxNnQbn06FtxPfARAle5AKDUo1N+B4LOePMTySQOCz6V+j+kpACfbstN DjPaoUjjiFU2l/KbJAgR14Y= =rsV0 -----END PGP SIGNATURE-----
--- End Message ---
