Package: fai-server Version: 2.10.2 Severity: critical Justification: breaks unrelated software
After installtion of a client fai leaves the files 10fai and 90fai in /etc/apt/apt.conf.d/. The first file disables checking of trust violations and unauthenticated packages. After a system is installed this could be required. The second file has as effect that when removing a package, it's also purged. Also it assumes yes to all answers. itext:/etc/apt/apt.conf.d# cat 10fai APT::Get::AllowUnauthenticated "true"; Aptitude::CmdLine::Ignore-Trust-Violations yes; itext:/etc/apt/apt.conf.d# cat 90fai // This file is used in the chroot environment from install_packages // (called by rcS_fai) // Options for apt-get for FAI APT { // Options for apt-get Get { Assume-Yes "true"; Fix-Missing "true"; Show-Upgraded "true"; Purge "true"; // really purge! Also removes config files List-Cleanup "true"; ReInstall "false"; AllowUnauthenticated "true"; }; }; Aptitude::Cmdline::Ignore-Trust-Violations yes; DPkg { Options { "--abort-after=4711"; // a magic number in cologne ;-) "--force-confdef"; } }; The second file breaks the normal workings of package upgrading and installing. This can have severe consequences on an installed system. -- System Information: Debian Release: 3.1 Architecture: i386 (x86_64) Kernel: Linux 2.6.16.20 Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) Versions of packages fai-server depends on: ii debootstrap 0.2.45-0.2 Bootstrap a basic Debian system ii fai-client 2.10.2 Fully Automatic Installation clien -- no debconf information -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]