Your message dated Thu, 29 Jan 2026 21:25:44 +0000
with message-id <[email protected]>
and subject line Bug#1098807: fixed in publicfile 0.52-13
has caused the Debian Bug report #1098807,
regarding ITP: publicfile -- http and ftp server by Daniel J. Bernstein
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
1098807: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098807
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: wnpp
Severity: wishlist
* Package name : publicfile
Version : 0.52
Upstream Contact: Daniel J. Bernstein, https://cr.yp.to/lists.html#publicfile
* URL : https://cr.yp.to/publicfile.html
* License : Public Domain
Programming Lang: C
Description : http and ftp server by Daniel J. Bernstein
publicfile supplies files to the public through HTTP and FTP.
.
Security features:
- Before accepting any commands, publicfile chroot()s to the public file area
and sheds root privileges.
- doesn't let users log in. Intruders can't use publicfile to
check your usernames and passwords.
- refuses to supply files that are unreadable to owner, unreadable
to group, or unreadable to world.
- never attempts to modify the public file area. It refuses all
HTTP and FTP modification commands.
- never runs any other programs. It does not support HTTP CGI or
FTP SITE EXEC.
.
HTTP features: publicfile supports:
- virtual hosts through the Host field as well as through absolute URLs.
- HTTP/1.1 persistent connections and chunked responses.
- user-controlled content types.
- exact-prefix If-Modified-Since.
.
FTP features: publicfile:
- has built-in LIST and NLST commands. You don't have to bother
setting up bin/ls, shared libraries, et al. inside the public file area.
- provides EPLF LIST responses, including options "i", "s", and "m".
- supports restarted transfers and pipelining.
- uses local ports above 1024 for PORT connections.
- prohibits remote ports below 1024 for PORT and prohibits PORT relaying.
- includes automatic PASV IP protection.
.
Next to upstream code, this package contains three simple small shellscripts
by the package maintainter: ad1810-autoindex - a tool to genetate index.html
from directory listings; get-publicfile-docs - a tool to download and
install publicfile documentation; and update-publicfile-contenttype -
helpful in making publicfile give suitable MIME types with files served.
.
publicfile was written in 1999 and didn't change a lot after that.
Modern features are not supported. However, if you're
looking for a small, simple and secure webserver, which integrates with
the runit and daemontools UNIX service managers, publicfile will suit
your needs.
I've been maintaining this package since 2014; it is at
https://salsa.debian.org/debian/publicfile/ . Since 2024 publicfile is in the
Public Domain: its license no longer blocks it from being shipped w/ Debian.
See also Bug #1076635 "publicfile-installer: Re: publicfile distribution
license".
Thanks, Bye,
Joost
--- End Message ---
--- Begin Message ---
Source: publicfile
Source-Version: 0.52-13
Done: Joost van Baal-Ilić <[email protected]>
We believe that the bug you reported is fixed in the latest version of
publicfile, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Joost van Baal-Ilić <[email protected]> (supplier of updated publicfile
package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Tue, 08 Jul 2025 15:58:08 +0200
Source: publicfile
Binary: publicfile
Architecture: source amd64
Version: 0.52-13
Distribution: experimental
Urgency: medium
Maintainer: Joost van Baal-Ilić <[email protected]>
Changed-By: Joost van Baal-Ilić <[email protected]>
Description:
publicfile - http and ftp server by Daniel J Bernstein
Closes: 1098807
Changes:
publicfile (0.52-13) experimental; urgency=medium
.
[ Joost van Baal-Ilić <[email protected]> ]
* Before july 2024, publicfile was not free software. We shipped a
publicfile-installer package, to ease building and installing publicfile on
a Debian system. Since publicfile got relicensed, we can ship publicfile
itself via Debian main. And, for the record:
https://salsa.debian.org/debian/publicfile/-/pipelines/889957 : all 3
builds
pass, all 8 tests pass. So: First upload to Debian archive.
Closes: #1098807
* created git upstream branch with pristine upstream sources, in order to
facilitate gbp style maintenance.
* d/rules: force gcc-13: treat all implicit declarations as a mere warnings,
not yet fatal error as in Debian 13 (trixie) default gcc-14. (FWIW, gcc-12
as shipped w/ e.g. Debian 12 (bookworm) works fine too.)
* d/control: explicitly add gcc-13 to Build-Depends, since not listed in
/usr/share/doc/build-essential/list .
* d/patches/ftbfs-implicit-declaration.patch: add preliminary version of
patch
which is supposed to finally fix all implicit-declaration failures.
* d/{rules,compat}: update debhelper compat version from deprecated 9 to
current 13.
* d/control: add zsh | zsh-beta to Suggests: used by
usr/bin/get-publicfile-docs. Thanks lintian.
* d/copyright: make lintian happy: add an "empty" line.
* d/{publicfile-,}httpd.8: renamed, in order not to conflict with httpd(8) as
shipped with some old merecat packages ( <= 2.31+git20220513+ds-5 ). (BTW,
merecat installs usr/sbin/httpd while we install usr/bin/httpd.) Thanks
'missing-breaks' test @ salsa.d.o.
* d/control: add Conflicts: merecat (<< 2.31+git20220513+ds-6): httpd binary
and manpage.
* d/install: change to dh-exec, install httpd and ftpd as publicfile-httpd
and publicfile-ftpd.
* d/control: add dh-exec Build-Depends.
* d/publicfile-httpd.8: fix layout / roff syntax.
* d/manpages: install publicfile-httpd(8). See also get-publicfile-docs(1).
* d/{,source/}lintian-overrides: added: we keep a comment-only file
d/patches/publicfile.sslserver , and we do not yet install
publicfile-ftpd(8).
* d/TODO: minor update.
* d/control: long description: fix typo, be more explicit about lacking
ssl support.
* d/rules: run dh in verbose mode.
* d/rules: pass extra -g to gcc: trying to get debug information for dwz(1)
and dh_dwz(1).
* d/control: Drop Depends daemontools, demote "runit-init | runit-sysv |
runit-systemd | daemontools-run (>> 1:0.76)" from Depends to Recommends.
.
[ Bastian Germann <[email protected]>, July 2024 ]
* d/patches/implicit-int.patch: Patch: Fix implicit-int warning
* d/copyright: Update according to public-domain release
* d/patches: Drop sslserver.patch which is not clearly DFSG-free
* d/watch: Add watch file for download via uscan
Checksums-Sha1:
7273a9a9b5468dd0754e546f8728a2b4c84908db 1861 publicfile_0.52-13.dsc
067e5a0c57bf8ac04c578cac47bd80c2d88eddeb 34892 publicfile_0.52.orig.tar.gz
d340622aec6c8136465d335962f524252b63fce4 21384 publicfile_0.52-13.debian.tar.xz
cefbfce72cdfd2d2f3179e61ede01970359af1af 5722
publicfile_0.52-13_amd64.buildinfo
23f2da61c250e4e5a048ddc6332ee93b390d98ff 44724 publicfile_0.52-13_amd64.deb
Checksums-Sha256:
efbfb43f94344cf20d86a0ff511bd0d29032bc61516fd1a2f1ba4a02d479b4a8 1861
publicfile_0.52-13.dsc
3f9fcf737bfe48910812cc357a31bf1f2e3da2490dbd175ce535830f251c08ef 34892
publicfile_0.52.orig.tar.gz
f41f4bd4a24b5d912804265d8146e3775ad1aa6924a9df68c30fa5840a62d735 21384
publicfile_0.52-13.debian.tar.xz
b45088c6218171dc4f99a4f6ec2222d869c769510db96ee250905c94285d4b4b 5722
publicfile_0.52-13_amd64.buildinfo
e10a13394e1f38b3a16ded31499649794d0bc5d073aebda6e393089544ea8cfb 44724
publicfile_0.52-13_amd64.deb
Files:
09f109aca6e56659b45c9f4d1cf915f7 1861 net optional publicfile_0.52-13.dsc
e493d69627b4fb2c7c764c0ff34330d7 34892 net optional publicfile_0.52.orig.tar.gz
de99359007331541cf4e7211e0dba99d 21384 net optional
publicfile_0.52-13.debian.tar.xz
e504d74636f9a7dee2b18cdc6e582e74 5722 net optional
publicfile_0.52-13_amd64.buildinfo
6325afc670c0282ce9eef93f29f16f14 44724 net optional
publicfile_0.52-13_amd64.deb
-----BEGIN PGP SIGNATURE-----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=jMlA
-----END PGP SIGNATURE-----
pgpCmGx91cqA0.pgp
Description: PGP signature
--- End Message ---
