Bug#978556: ITP: netr -- Display network interface throughput in terminal

2020-12-28 Thread Edward Neville 
Package: wnpp
Severity: wishlist
Owner: Edward Neville 

* Package name: netr
  Version : 0.1.3
  Upstream Author : Ed Neville 
* URL : http://www.usenix.org.uk/content/net.html
* License : GPL
  Programming Lang: Rust
  Description : Display network interface throughput in terminal

Display network interface throughput by second and by minute along with
a graph. This is quick and easy to use via a mobile handset or similar
device where typing is cumbersome.

A sponsor is required, but check with stappers as he may be looking at
this.

I plan to maintain this within the rust team.

Bug#973481: ITP: please -- Please, a sudo clone with regex support

2020-10-31 Thread Edward Neville 
Package: wnpp
Severity: wishlist
Owner: Edward Neville 

* Package name: please
  Version : 0.3.12
  Upstream Author : Ed Neville 
* URL : https://gitlab.com/edneville/please
* License : GPL
  Programming Lang: Rust
  Description : Please, a sudo clone with regex support

Please is a sudo clone with a strong preference for delegation of access 
defined by regular expression rules.

The aim is to allow admins to delegate accurate least privilege access 
with ease. There are times when what is intended to be executed can be 
expressed easily with a regex to expose only what is needed and nothing 
more.

When a subset of complex commands are only required and implementing the 
principle of least privilege, it is easier to use regular expressions to 
define the commands. Often intermediate scripts with sudo to do the same 
can confuse end users.

A sponsor is required.

Ed

Bug#945366: sudoers permits arguments beyond what is normally expected

2019-11-23 Thread Edward Neville 
Package: sudo
Version: 1.8.27-1+deb10u1
Severity: important
Tags: patch upstream

Dear Maintainer,

Entries in sudoers files that include * do not behave like shell globs.
When mistakenly used in the argument list it can expand to protected
content, such as /etc/shadow. Most users do not expect this.

This patch adds regex style matching to sudoers to improve security and
tighten the available input.

Patch available here:

  



-- System Information:
Debian Release: 10.1
  APT prefers stable-updates
  APT policy: (500, 'stable-updates'), (500, 'stable')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.9.0-8-amd64 (SMP w/4 CPU cores)
Kernel taint flags: TAINT_FIRMWARE_WORKAROUND, TAINT_OOT_MODULE
Locale: LANG=en_GB.utf8, LC_CTYPE=en_GB.utf8 (charmap=UTF-8), LANGUAGE=en_GB:en 
(charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
LSM: SELinux: enabled - Mode: Permissive - Policy name: default

Versions of packages sudo depends on:
ii  libaudit1   1:2.8.4-3
ii  libc6   2.28-10
ii  libpam-modules  1.3.1-5
ii  libpam0g1.3.1-5
ii  libselinux1 2.8-1+b1
ii  lsb-base10.2019051400

sudo recommends no packages.

sudo suggests no packages.

-- Configuration Files:
/etc/sudoers [Errno 13] Permission denied: '/etc/sudoers'
/etc/sudoers.d/README [Errno 13] Permission denied: '/etc/sudoers.d/README'

-- no debconf information