Your message dated Mon, 22 Feb 2021 03:03:29 +0000
with message-id <[email protected]>
and subject line Bug#972456: fixed in lacme 0.8.0-1
has caused the Debian Bug report #972456,
regarding lacme: please support OCSP must-staple i.e. tlsfeature =
status_request in CSR file
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
972456: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972456
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: lacme
Version: 0.6.1-1
Severity: normal
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
It is possible to indicate in certificates that OCSP stapling is used.
It requires setting tlsfeature = status_request in CSR file,
as documented e.g. at https://scotthelme.co.uk/ocsp-must-staple/
Please support passing that hint in CSR file.
- Jonas
-----BEGIN PGP SIGNATURE-----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=BWCe
-----END PGP SIGNATURE-----
--- End Message ---
--- Begin Message ---
Source: lacme
Source-Version: 0.8.0-1
Done: Guilhem Moulin <[email protected]>
We believe that the bug you reported is fixed in the latest version of
lacme, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Guilhem Moulin <[email protected]> (supplier of updated lacme package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Mon, 22 Feb 2021 03:31:23 +0100
Source: lacme
Architecture: source
Version: 0.8.0-1
Distribution: unstable
Urgency: low
Maintainer: Guilhem Moulin <[email protected]>
Changed-By: Guilhem Moulin <[email protected]>
Closes: 970458 970800 972456
Changes:
lacme (0.8.0-1) unstable; urgency=low
.
* New upstream release (closes: #970458, #970800, #972456).
* The internal webserver now runs as a dedicated system user _lacme-www
(and group nogroup) instead of www-data:www-data. This is configurable
in the [webserver] section of the lacme(8) configuration file.
* The internal ACME client now runs as a dedicated system user _lacme-client
(and group nogroup) instead of nobody:nogroup. This is configurable in
the [client] section of the lacme(8) configuration file.
* The _lacme-www and _lacme-client system users are created automatically by
lacme.postinst (hence a new Depends: adduser), and deleted on purge. (So
make sure not to chown any file to these internal users.)
* d/control: New lacme-accountd Suggests: openssl, gpg (for account key
generation and decryption).
* Add d/upstream/signing-key.asc, the OpenPGP used to signed upstream tags.
* d/control: Bump Standards-Version to 4.5.1 (no changes necessary).
* Add d/watch pointing to the upstream repository.
* d/gbp.conf: Update upstream tag template.
* d/gbp.conf: Update debian and upstream branches in compliance with DEP-14.
* d/control: Point Vcs-* to salsa.
* Add debian/salsa-ci.yml file.
* d/.gitattributes: New file to merge d/changelog with dpkg-mergechangelogs.
* Add d/upstream/metadata with Repository and Repository-Browse.
* d/control: Remove libtypes-serialiser-perl from lacme's Depends.
* d/control: lacme now require openssl 1.1.0 or later.
* d/copyright: Bump copyright years.
* d/copyright: Point Source: to the upstream repository.
* d/control: lacme recommends lacme-accountd 0.8.0-1 or later.
* d/lacme.links: Remove /etc/apache2/conf-available/lacme.conf, now part of
the upstream build system.
* d/lacme.install: include new configuration files and snippets.
Checksums-Sha1:
72d2a3941191b17c6b78063294eae12365f1a495 1892 lacme_0.8.0-1.dsc
844750230de19237db28aaf9a3c0eac29ba00b14 81281 lacme_0.8.0.orig.tar.gz
3282952b1517389dc79252a00b64612c6bae2308 15580 lacme_0.8.0-1.debian.tar.xz
3836c68866b949f7c89b2238477b4c8c68130104 6076 lacme_0.8.0-1_amd64.buildinfo
Checksums-Sha256:
28a279f459d4a67a182d234baddb7305572f458a87f4bae4b36e731aac80f2bd 1892
lacme_0.8.0-1.dsc
9612497a6808d1d9780a6028241e233e78eb10f1ff1efe53f81f6c860708ecd0 81281
lacme_0.8.0.orig.tar.gz
0d689c9fdff6d35b75f7fd2479d2a3694e84d35f0b596d5861e13b87c40308e1 15580
lacme_0.8.0-1.debian.tar.xz
d26211ddd701ac6961232c819118e206959b8016c31580228a1a9dd0c832e7c7 6076
lacme_0.8.0-1_amd64.buildinfo
Files:
41d2defaad25a5c7b98d2316db97842a 1892 utils optional lacme_0.8.0-1.dsc
5b3bde7a93b1dcf42c318fa430dfff89 81281 utils optional lacme_0.8.0.orig.tar.gz
75721feea2f550d49bec17194510a74f 15580 utils optional
lacme_0.8.0-1.debian.tar.xz
4698a4cd712475695a593a8b714b2f68 6076 utils optional
lacme_0.8.0-1_amd64.buildinfo
-----BEGIN PGP SIGNATURE-----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=eXyl
-----END PGP SIGNATURE-----
--- End Message ---
