Your message dated Sun, 23 Dec 2012 22:02:27 +0000
with message-id <[email protected]>
and subject line Bug#680540: fixed in hydra 7.4-1
has caused the Debian Bug report #680540,
regarding hydra: package description review
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)


-- 
680540: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=680540
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: hydra
Version: 7.3-1
Severity: wishlist
Tags: patch

The package description for hydra (and hydra-gtk) has a number of
minor typos and language errors:

> Package: hydra
[...]
> Description: Very fast network logon cracker

(DevRef recommends not capitalising the first letter, but otherwise
this is fine.  I could be pedantic about the fact that it's the
password that's cracked, not the "logon", but never mind.)

>  Hydra is a parallized login cracker which supports numerous protocols

Typo: s/parallized/parallelized/

>  to attack. New modules are easy to add, beside that, it is flexible and

Was this aiming for "and besides that" or "besides which"?  Either
way, it has missed.

>  very fast.

(In fact I'd suggest reshuffling to mention the speed and flexibility
first, then the extensibility.)

>  .
>  This tool gives researchers and security consultants the possiblity to

Typo (s/possiblity/possibility/), but it's not quite the right word
anyway.  I would recommend "makes it possible for" them to do this.

>  show how easy it would be to gain unauthorized access from remote to a
>  system.

Is that "from somewhere that is remote to a system" or do you mean it
in the sense of "from A to B"?  Just say "to gain unauthorized access
to a system remotely".

>  .
>  Currently this tool supports:

Repeating "this tool" is slightly awkward; either say "hydra" or just
"it".  And this newline is pointless, since whitespace formatting
isn't respected within ordinary non-verbatim paragraphs, and gets
re-flowed in displays like http://packages.debian.org/sid/hydra

>  TELNET, FTP, HTTP, HTTPS, HTTP-PROXY, LDAP, SMB, SMBNT, MS-SQL, MySQL,
>  REXEC, SOCKS5, VNC, POP3, IMAP, NNTP, PCNFS, ICQ, Cisco auth,
>  Cisco enable, Cisco AAA (incorporated in telnet module).

There's no reason for "TELNET", "-PROXY", or REXEC to be all-caps,
and the ordering is just close enough to alphabetical for the flaws to
be annoying (I'll sort it but leave the Cisco ones to the end).  The
equivalent list on the Hydra homepage includes quite a few other
protocols - do they all require non-free plugins, or is this list
stale (as one might guess from the inclusion of SMBNT and omission of
SSH), or what?  I'm at least suspicious enough to remove the claim
that this list is what it *currently* supports (which is useless
anyway without a last-modified date).

While I'm fixing hydra's package description I'd better do the rest of
the control file:
 
> Package: hydra-gtk
[...]
> Description: Very fast network logon cracker - GTK+ based GUI
>  Hydra is a parallized login cracker which supports numerous protocols
>  to attack. New modules are easy to add, beside that, it is flexible and
>  very fast.
>  .
>  This tool gives researchers and security consultants the possiblity to
>  show how easy it would be to gain unauthorized access from remote to a
>  system.
>  .
>  Currently this tool supports:
>  TELNET, FTP, HTTP, HTTPS, HTTP-PROXY, LDAP, SMB, SMBNT, MS-SQL, MySQL,
>  REXEC, SOCKS5, VNC, POP3, IMAP, NNTP, PCNFS, ICQ, Cisco auth,
>  Cisco enable, Cisco AAA (incorporated in telnet module).

As above.

>  .
>  This package is the GTK+ based GUI for hydra.

Technically the package isn't the GUI; the package *provides* the GUI.

So my suggested version is:

| Package: hydra
[...]
| Description: very fast network logon cracker
|  Hydra is a parallelized login cracker which supports numerous protocols
|  to attack. It is very fast and flexible, and new modules are easy to add.
|  .
|  This tool makes it possible for researchers and security consultants to
|  show how easy it would be to gain unauthorized access to a system
|  remotely.
|  .
|  It supports: FTP, HTTP(S), HTTP-Proxy, ICQ, IMAP, LDAP, MS-SQL, MySQL,
|  NNTP, PC-NFS, POP3, rexec, SMB(NT), SOCKS5, telnet, VNC, Cisco auth,
|  Cisco enable, Cisco AAA (incorporated in the telnet module).
| 
| Package: hydra-gtk
[...]
| Description: very fast network logon cracker - GTK+ based GUI
|  Hydra is a parallelized login cracker which supports numerous protocols
|  to attack. It is very fast and flexible, and new modules are easy to add.
|  .
|  This tool makes it possible for researchers and security consultants to
|  show how easy it would be to gain unauthorized access to a system
|  remotely.
|  .
|  It supports: FTP, HTTP(S), HTTP-Proxy, ICQ, IMAP, LDAP, MS-SQL, MySQL,
|  NNTP, PC-NFS, POP3, rexec, SMB(NT), SOCKS5, telnet, VNC, Cisco auth,
|  Cisco enable, Cisco AAA (incorporated in the telnet module).
|  .
|  This package provides the GTK+ based GUI for hydra.

Alternative version of that list (not in my patch):

¦  It supports: AFP, Cisco, CVS, Firebird, FTP, HTTP(-Proxy), ICQ, IMAP,
¦  IRC, LDAP, MS-/My/PostgreSQL, NCP, NNTP, Oracle, PC-NFS, pcAnywhere,
¦  POP3, RDP, rexec/rlogin/rsh, SAP-R3, SIP, SMB, SNMP, SOCKS, SSH, SVN,
¦  TeamSpeak, telnet, VMware, VNC, XMPP.

(This leaves out the details for Cisco, since similar complications
are ignored for many other protocols.)
-- 
JBR
Ankh kak! (Ancient Egyptian blessing)
diff -ru hydra-7.3.pristine/debian/control hydra-7.3/debian/control
--- hydra-7.3.pristine/debian/control	2012-05-24 02:36:34.000000000 +0100
+++ hydra-7.3/debian/control	2012-07-06 16:49:38.591392900 +0100
@@ -26,35 +26,31 @@
 Architecture: any
 Depends: ${shlibs:Depends}, ${misc:Depends}
 Suggests: hydra-gtk
-Description: Very fast network logon cracker
- Hydra is a parallized login cracker which supports numerous protocols
- to attack. New modules are easy to add, beside that, it is flexible and
- very fast.
+Description: very fast network logon cracker
+ Hydra is a parallelized login cracker which supports numerous protocols
+ to attack. It is very fast and flexible, and new modules are easy to add.
  .
- This tool gives researchers and security consultants the possiblity to
- show how easy it would be to gain unauthorized access from remote to a
- system.
+ This tool makes it possible for researchers and security consultants to
+ show how easy it would be to gain unauthorized access to a system
+ remotely.
  .
- Currently this tool supports:
- TELNET, FTP, HTTP, HTTPS, HTTP-PROXY, LDAP, SMB, SMBNT, MS-SQL, MySQL,
- REXEC, SOCKS5, VNC, POP3, IMAP, NNTP, PCNFS, ICQ, Cisco auth,
- Cisco enable, Cisco AAA (incorporated in telnet module).
+ It supports: FTP, HTTP(S), HTTP-Proxy, ICQ, IMAP, LDAP, MS-SQL, MySQL,
+ NNTP, PC-NFS, POP3, rexec, SMB(NT), SOCKS5, telnet, VNC, Cisco auth,
+ Cisco enable, Cisco AAA (incorporated in the telnet module).
 
 Package: hydra-gtk
 Architecture: any
 Depends: ${shlibs:Depends}, ${misc:Depends}, hydra (>= 6.1-1)
-Description: Very fast network logon cracker - GTK+ based GUI
- Hydra is a parallized login cracker which supports numerous protocols
- to attack. New modules are easy to add, beside that, it is flexible and
- very fast.
+Description: very fast network logon cracker - GTK+ based GUI
+ Hydra is a parallelized login cracker which supports numerous protocols
+ to attack. It is very fast and flexible, and new modules are easy to add.
  .
- This tool gives researchers and security consultants the possiblity to
- show how easy it would be to gain unauthorized access from remote to a
- system.
+ This tool makes it possible for researchers and security consultants to
+ show how easy it would be to gain unauthorized access to a system
+ remotely.
  .
- Currently this tool supports:
- TELNET, FTP, HTTP, HTTPS, HTTP-PROXY, LDAP, SMB, SMBNT, MS-SQL, MySQL,
- REXEC, SOCKS5, VNC, POP3, IMAP, NNTP, PCNFS, ICQ, Cisco auth,
- Cisco enable, Cisco AAA (incorporated in telnet module).
+ It supports: FTP, HTTP(S), HTTP-Proxy, ICQ, IMAP, LDAP, MS-SQL, MySQL,
+ NNTP, PC-NFS, POP3, rexec, SMB(NT), SOCKS5, telnet, VNC, Cisco auth,
+ Cisco enable, Cisco AAA (incorporated in the telnet module).
  .
- This package is the GTK+ based GUI for hydra.
+ This package provides the GTK+ based GUI for hydra.

--- End Message ---
--- Begin Message ---
Source: hydra
Source-Version: 7.4-1

We believe that the bug you reported is fixed in the latest version of
hydra, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Julián Moreno Patiño <[email protected]> (supplier of updated hydra package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sun, 23 Dec 2012 14:22:46 -0500
Source: hydra
Binary: hydra hydra-gtk
Architecture: source i386
Version: 7.4-1
Distribution: unstable
Urgency: low
Maintainer: Julián Moreno Patiño <[email protected]>
Changed-By: Julián Moreno Patiño <[email protected]>
Description: 
 hydra      - very fast network logon cracker
 hydra-gtk  - very fast network logon cracker - GTK+ based GUI
Closes: 680540
Changes: 
 hydra (7.4-1) unstable; urgency=low
 .
   * New upstream release.
   * d/watch: Update regular expression.
   * d/control:
     + Remove DM-Upload-Allowed.
     + Update my email.
     + Add libncurses-dev to B-D.
     + Improve description. Thanks to Justin B Rye. (Closes: #680540)
     + Bump Standards-Version to 3.9.4 (no changes).
   * d/copyright: Update my email.
   * d/patches:
     + Refresh 02_using_supported_protocols.diff patch offset.
     + Update 04_fix_hyphen-used-as-minus-sign.diff.
     + Refresh 05_add_option_to_cflag.diff patch offset.
     + Add 08_fix_spelling_mistakes.diff patch to fix spelling
       mistakes.
Checksums-Sha1: 
 7f7ff01eb29e2de4a2aa4a76dc6e8225f8ba20b7 2120 hydra_7.4-1.dsc
 634ad2a1d437b97cefa332e1d95023bd0fef10df 665967 hydra_7.4.orig.tar.gz
 c0079576097ca2c6f90effee73007325454326f1 10291 hydra_7.4-1.debian.tar.bz2
 1a678a9cb1ba576cd754653d0c0a0d24ba93dcac 175498 hydra_7.4-1_i386.deb
 ac420208ce878aa997b7d64c730852f7a2313858 44218 hydra-gtk_7.4-1_i386.deb
Checksums-Sha256: 
 a5f51da079e5779232554ed0bc1f9f613bbd3817751b79e157e8ee0c3a3f2bbd 2120 
hydra_7.4-1.dsc
 adfe253428416ece9257957cb21e606d178dc448da92c137783f0162160a0f6b 665967 
hydra_7.4.orig.tar.gz
 8ec5888df219db0c48a84b811598923bc11022d52531c391de674b2f01fba78c 10291 
hydra_7.4-1.debian.tar.bz2
 30a6c3d717536ec732229da5992322ea36a8170edc64c99ef0cf96a8cebf500a 175498 
hydra_7.4-1_i386.deb
 6ff0f07065ded794eb335b1af08d5bcc2e5b603238b4024a5a0758ef13ad1e82 44218 
hydra-gtk_7.4-1_i386.deb
Files: 
 2945b59cb3dea277999bed788cfdae0c 2120 net extra hydra_7.4-1.dsc
 48a6ab847999458184ca30620c70fd87 665967 net extra hydra_7.4.orig.tar.gz
 5004919a7cb05392bf2e10a247cecf21 10291 net extra hydra_7.4-1.debian.tar.bz2
 2aee66179270903902a2f719569af9c0 175498 net extra hydra_7.4-1_i386.deb
 678949eb2da302ad23592b71b4178553 44218 net extra hydra-gtk_7.4-1_i386.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
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=tkfj
-----END PGP SIGNATURE-----

--- End Message ---

Reply via email to