Dear Debian maintainer, On Thursday, July 21, 2011, I sent you a notification about the beginning of a review action on debconf templates for haserl.
Then, I sent you a bug report with rewritten templates and announcing the beginning of the second phase of this action: call for translation updates. Translators have been working hard and here is now the result of their efforts. Please consider using it EVEN if you committed files to your development tree as long as they were reported. The attached tarball contains: - debian/changelog with the list of changes - debian/control with rewrites of packages' descriptions - debian/<templates> with all the rewritten templates file(s) - debian/po/*.po with all PO files (existing ones and new ones) As said, please use *at least* the PO files as provided here, preferrably over those sent by translators in their bug reports. All of them have been checked and reformatted. In some cases, formatting errors have been corrected. The patch.rfr file contains a patch for the templates and control file(s) alone. Please note that this patch applies to the templates and control file(s) of your package as of Thursday, July 21, 2011. If your package was updated in the meantime, I may have updated my reference copy....but I also may have missed that. This is indeed why I suggested you do not modified such files while the review process was running, remember..:-) It is now safe to upload a new package version with these changes. Please notify me of your intents with regards to this. There is of course no hurry to update your package but feel free to contact me in case you would need sponsoring or any other action to fix this. --
patch.tar.gz
Description: Binary data
--- haserl.old/debian/haserl.templates 2011-07-16 21:14:32.783410052 +0200 +++ haserl/debian/haserl.templates 2011-07-31 07:35:33.765880516 +0200 @@ -1,9 +1,18 @@ +# These templates have been reviewed by the debian-l10n-english +# team +# +# If modifications/additions/rewording are needed, please ask +# [email protected] for advice. +# +# Even minor modifications require translation updates and such +# changes should be coordinated with translators and reviewers. + Template: haserl/setuid Type: boolean Default: false _Description: Install haserl binary with suid root permissions? When haserl is installed with suid root permissions, it will automatically set - its UID and GID to that of the owner and group of the script. + its UID and GID to match the owner and group of the script. . - WARNING: This is a potential security vulnerability, as scripts that are owned + This is a potential security vulnerability, as scripts that are owned by root will be run as root, even when they do not have the suid root bit. --- haserl.old/debian/control 2011-07-16 21:14:32.783410052 +0200 +++ haserl/debian/control 2011-07-27 22:03:18.457592002 +0200 @@ -17,17 +17,16 @@ Depends: ${shlibs:Depends}, ${misc:Depends} Recommends: lua5.1 Description: CGI scripting program for embedded environments - Haserl is a small cgi wrapper that allows "PHP" style cgi programming, but uses - a UNIX bash-like shell or Lua as the programming language. It is very small, so - it can be used in embedded environments, or where something like PHP is too - big. + Haserl is a CGI wrapper that allows PHP-style programming in Lua or a + POSIX-compliant shell. It is very small, so it can be used in embedded + environments, or where something like PHP is too big. . - It combines three features into a small cgi engine: - * It parses POST and GET requests, placing form-elements as name=value - pairs into the environment for the CGI script to use. This is somewhat like - the uncgi wrapper. - * It opens a shell, and translates all text into printable statements. All - text within <% ... %> constructs are passed verbatim to the shell. This is - somewhat similar to how PHP scripts are parsed. - * It can optionally be installed to drop its permissions to the owner of the - script, giving it some of the security features of suexec or cgiwrapper. + It combines three features into a small CGI engine: + * It parses POST and GET requests, placing form-elements into the + environment as name=value pairs for the CGI script to use. This is + somewhat similar to the uncgi wrapper. + * It opens a shell, and translates all text into printable statements. + All text within <% ... %> constructs is passed verbatim to the shell. + This is somewhat similar to how PHP scripts are parsed. + * It can be set up to drop its permissions to the owner of the script, + giving it some of the security features of suexec or cgiwrapper. --- haserl.old/debian/changelog 2011-07-16 21:14:32.783410052 +0200 +++ haserl/debian/changelog 2011-08-21 14:14:13.738394446 +0200 @@ -1,3 +1,20 @@ +haserl (0.9.29-2) UNRELEASED; urgency=low + + * Debconf templates and debian/control reviewed by the debian-l10n- + english team as part of the Smith review project. Closes: #636101 + * [Debconf translation updates] + * Slovak (Slavko). Closes: #636573 + * Danish (Joe Hansen). Closes: #636950 + * Russian (Yuri Kozlov). Closes: #637010 + * German (Chris Leick). Closes: #637290 + * French (Julien Patriarca). Closes: #637417 + * Czech (Michal Simunek). Closes: #637800 + * Portuguese (Rui Branco). Closes: #638179 + * Spanish; (Francisco Javier Cuadrado). Closes: #638330 + * Dutch; (Jeroen Schot). Closes: #638700 + + -- Christian Perrier <[email protected]> Sun, 31 Jul 2011 09:48:31 +0200 + haserl (0.9.29-1) unstable; urgency=low * Initial release (Closes: #611445)
signature.asc
Description: Digital signature
