Bug#993745: O: psad -- Designed to work with iptables to detect port scans
X-Debbugs-CC: t...@debian.org Control: tags 993802 -moreinfo Hi, 在 2021-09-07星期二的 03:31 -0300,Leandro Cunha写道: > X-Debbugs-CC: by...@debian.org > > > I believe what you are doing is exactly called "packaging hijacking", > > which is > > unfavorable. Since the original maintainer did not volunteerly orphan the > > package and that the Debian MIA Team did not kick in, we must not assume > > that > > the original package maintainer has given up the maintenance > > responsibility. > > > > Debian has a readily-available process to handle current situation (ITS) > > and I > > believe you also know it. We should follow this procedure to take over > > package > > maintenance in order to ensure smooth takeover where no argument would > > take > > place. > > > > My suggestion is to convert this orphaning report to ITS report and start > > ITS > > process immediately according to > > https://www.debian.org/doc/manuals/developers-reference/pkgs.html#package-salvaging > > . > > > > This mail copy is also sent to the original package maintainer (Franck > > Joncourt). Franck: please let us know whether you are still going to > > maintain > > this package in Debian. If there's no response, we will continue with the > > ITS > > process and take over the maintenance of package psad in Debian. > > > > Thanks, > > Boyuan Yang > > He was a maintainer of fwsnort according to the bug report [1]. That's > where I made this decision. I was in doubt if the package is orphaned > directly or needs to go through ITS. But I've never seen this before and > seeing bug reports like this that the package has simply been orphaned. > > I had emailed him, let's not fill his inbox. > > I have a little over a year and I'm still learning to deal with situations. > And yes, I've read the documentation, link below: > https://www.debian.org/doc/manuals/developers-reference/pkgs.en.html#orphaning-a-package > > [1] https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=831274 I just reviewed the information, and the logic seems to be like this: * Package psad listed Franck Joncourt as the maintainer, * Franck Joncourt has multiple email addresses known to Debian as shown in https://qa.debian.org/developer.php?login=franck.joncourt%40gmail.com , including the one called fra...@debian.org , * Looking at fra...@debian.org , Franck's role as Debian Developer has ended ( https://nm.debian.org/person/franck/ shows emeritus status since 2015), * The Debian QA/MIA Team should have filed bugs to all packages Franck previously maintained to remove the name from package maintenance, and it indeed happened in https://bugs.debian.org/831274 . However, since Franck was not using the debian.org email for package psad, package psad was not covered. In this case, I think orphaning the package looks reasonable. CC-ing tobi (from MIA Team) about this issue: I believe we also need more bug reports on packages on https://qa.debian.org/developer.php?login=franck.joncourt%40gmail.com to have the name removed from package uploaders list. Thanks, Boyuan Yang signature.asc Description: This is a digitally signed message part
Bug#993745: O: psad -- Designed to work with iptables to detect port scans
X-Debbugs-CC: by...@debian.org > I believe what you are doing is exactly called "packaging hijacking", which is > unfavorable. Since the original maintainer did not volunteerly orphan the > package and that the Debian MIA Team did not kick in, we must not assume that > the original package maintainer has given up the maintenance responsibility. > > Debian has a readily-available process to handle current situation (ITS) and I > believe you also know it. We should follow this procedure to take over package > maintenance in order to ensure smooth takeover where no argument would take > place. > > My suggestion is to convert this orphaning report to ITS report and start ITS > process immediately according to > https://www.debian.org/doc/manuals/developers-reference/pkgs.html#package-salvaging > . > > This mail copy is also sent to the original package maintainer (Franck > Joncourt). Franck: please let us know whether you are still going to maintain > this package in Debian. If there's no response, we will continue with the ITS > process and take over the maintenance of package psad in Debian. > > Thanks, > Boyuan Yang He was a maintainer of fwsnort according to the bug report [1]. That's where I made this decision. I was in doubt if the package is orphaned directly or needs to go through ITS. But I've never seen this before and seeing bug reports like this that the package has simply been orphaned. I had emailed him, let's not fill his inbox. I have a little over a year and I'm still learning to deal with situations. And yes, I've read the documentation, link below: https://www.debian.org/doc/manuals/developers-reference/pkgs.en.html#orphaning-a-package [1] https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=831274 -- Cheers, Leandro Cunha Debian Contributor and developer. signature.asc Description: Binary data
Bug#993745: O: psad -- Designed to work with iptables to detect port scans
X-Debbugs-CC: franck.jonco...@gmail.com leandrocunha...@gmail.com Hi, On Sun, 5 Sep 2021 18:02:50 -0300 Leandro Cunha wrote: > Package: wnpp > Severity: normal > > Hi, > > I communicate that due to the inactivity since 2018 in the psad package, > I am orphaning this package and in this case the QA group becomes the > maintainer. If you are still interested in working on this package, please > respond to this bug, which I can close. Thanks for the work. > > Maintaining a package requires time and skills. Please only adopt this > package if you will have enough time and attention to work on it. > > If you want to be the new maintainer, please see > https://www.debian.org/devel/wnpp/index.html#howto-o for detailed > instructions how to adopt a package properly. I believe what you are doing is exactly called "packaging hijacking", which is unfavorable. Since the original maintainer did not volunteerly orphan the package and that the Debian MIA Team did not kick in, we must not assume that the original package maintainer has given up the maintenance responsibility. Debian has a readily-available process to handle current situation (ITS) and I believe you also know it. We should follow this procedure to take over package maintenance in order to ensure smooth takeover where no argument would take place. My suggestion is to convert this orphaning report to ITS report and start ITS process immediately according to https://www.debian.org/doc/manuals/developers-reference/pkgs.html#package-salvaging . This mail copy is also sent to the original package maintainer (Franck Joncourt). Franck: please let us know whether you are still going to maintain this package in Debian. If there's no response, we will continue with the ITS process and take over the maintenance of package psad in Debian. Thanks, Boyuan Yang signature.asc Description: This is a digitally signed message part
Bug#993745: O: psad -- Designed to work with iptables to detect port scans
Package: wnpp Severity: normal Hi, I communicate that due to the inactivity since 2018 in the psad package, I am orphaning this package and in this case the QA group becomes the maintainer. If you are still interested in working on this package, please respond to this bug, which I can close. Thanks for the work. Maintaining a package requires time and skills. Please only adopt this package if you will have enough time and attention to work on it. If you want to be the new maintainer, please see https://www.debian.org/devel/wnpp/index.html#howto-o for detailed instructions how to adopt a package properly. -- Cheers, Leandro Cunha -BEGIN PGP PUBLIC KEY BLOCK- mQINBF/gQ8gBEADHVKgoWsUWNGVvR6sMhBPUdBUEH+QALpr1QYXhetBfRwaY0HWN pKgejHdxKO8H+kIhRMoh89CCKg3hAJ9LmOOTXkX7U5/Cya/zRMKk5zBD3rKIaugh 0XYT15Nz1jwL7TIDG25yPSloDtVgVXTep0ZzKsNYJjb4OAqa88cvUEJEhhqrldlR gpNbkixEh5ituO8pMShEBWqLs3yt4Hr1VFWnTIm4dl/JLBHpexzubDOw/mKCTpNd A1JGHTvce1wtJ2fMzCVzhEjd5pyjLZV/o8hVw2/ON/yXvpJuz0lV/hiW0M+cDcas sKftErtsZpRy3wwXdkBcJt6soYuqfCHwgMfL2iC6mPviE8xWAHMOmhdC3wDskZpb RcLfH5IMYajJAGRO/GCMcKKbq7WkEOeloivtg64xBlYuJf9aOcHKP/8R3EObiNp7 ubQAJtV3pEGD4mx1mhutFxDHB+CfnxE3dWvxZSV9y1n4UOzkDJ3kDx5Ee0MbRvJD w6aXKc6dhYREgh7hLDcMFz+3LcBiZDLxI3g+SHe3Bl61vdsnPno+0HhCzvB+fL4S eoy7Myfiunz9BrB2HPN+wNCT0YgV+Kv8QoDGzBwos5H1vUJSY4t59w6xoXAYUsAm hjAM8s+rUtG40mcUWePd8kZtgE9IV1eQ+Qt8/SNpSdRnUunmIGl3JjHvEwARAQAB tClMZWFuZHJvIEN1bmhhIDxsZWFuZHJvY3VuaGEwMTZAZ21haWwuY29tPokCTgQT AQoAOBYhBLT5oBCvKN3HzFEPK8LZ4zKUW9A8BQJf4EPIAhsDBQsJCAcCBhUKCQgL AgQWAgMBAh4BAheAAAoJEMLZ4zKUW9A8FjAQAKWYqiLpLUD+DLB+NSy3DI3rf9z3 k0vE7TLaEjdEM5CQWN+j4vBqMnAckdcARvSWPndTjp8K+mtFF4PyfhNbS64z/a7L F3DdhmX73n7LKFG8Ow9NZwcrkmPwH5WcP7mXTh6R+6/+OSL/K85NB8MLlxQTJOni julVax9JEZjwBaP2HLCu53Zq9gZcvJlXoAoTHyTxKdp8Mh8V+Qit26E78o9c6SQD Dq9eyMRG8hYCRfreDjKceRkYHjECySlk+VoI1ssVs07Dqvxg6qSyP4RnW+1+W74C s0yIyuC/eRJpMAf1PBQEOOrVcTfRfpN+go955t21yIAvT58vqotTM5eaqXYIQn/y sC4lThZai/ZBZHxl5Mbv42WkkYdjisLQOCALIMBpj5nq4oh2C+kvMupcuBKfERgV dguU51MzfQktKb6d5y777zYnDaFMQDD2IfiD/C7ln5A9LP/L54ixlA3uRmWx/yAx /m+Zusws98j4Eq/jw5T54XW655m6lMCTE9WXLJkgxrRcEonHSllbgRSsToEmWq0Z doxcnpagHdcGQzW+cu2VOGi1da73ZFmrn+ptJgc8cW2suO06IeArOi0TzIg7e65j Xp2DbJCpFrfzEuBb1u71WvB8V2MkAfJZx/uZJPCA936B4HT8YGPEMzlQRIHI2Y9C +DloyzlBLTS1EMKuuQINBF/gQ8gBEAC47o9u1Wm9jZ6RC+lfxEDEvVS7MmI5VzSy q04rFttWwbKix13pc65aDlk47LxWrb84N3Gnf1E/OTsLTXqC7u5JZ7YJkC6CsPbo D1sQkfCiJCFCTgf7dydEVt8ujS/Uu1kz86ufdRwaMRcvBZAORGdB58LEsLB65WN4 hLRYF7xvcxu6t7FGrIYereaxUAWLA2B/ZnCEdOY94w7s0uaPjHdf4lfHebuZ7T08 iG5ACDvKBjgaFArGfdNYWchXJgbOEg14bGj40/8LuBKQMZASiFSqLPZxoporK9FY xBw+D080dUWWD5g868TZ3pkM3DXO9bdq22IBKqKOep8CnuKgoDpUvA8dTEY/UDCn sdOlBUK/Y9zTGVmD/90cO/xkvkV78suqiBnwBSddPzVS0EuiWwrLGu8gaY4EyM/X 7khlbTcMgh4njzUCAE6Tq+TbXSxn86wuOybVY5Y+I99LNdsocI5SIn2nDh2IOi00 4dE/iwO2MatWIOLFBC7pw8Xv4UHZY+WIf3Y/6XjExpllhUkeB6BwZpTr1SXk+cug q5Dj5i4aGn2LrvQJ57terqUWYyDUBFgXTc4SPOzT5og8CavBgHfrQoFwSnRZ2oyX xtZhEDI5Pk2j1qTbOhXZ29po4rPNWHMq2HQgM0I+BqQndsoVdkPOFzS2wKkdXjCz bNYcyanusQARAQABiQI2BBgBCgAgFiEEtPmgEK8o3cfMUQ8rwtnjMpRb0DwFAl/g Q8gCGwwACgkQwtnjMpRb0Dzh6g//ZjXaWSzKmG5ZS6XJa/ZOokkE2hFOFusWX8Qa hEwLAnTFEy02dLfV54rKwmu2jHPDKLhE+iYtusvytueZAzVRyQahv0RE4BH8Emqw gQdBwyJ/L+QhUp/lMdJ6Hh/2ZSZmzU29U24vnY+U+haoB1fLnA3lXgOP59kMLGud lERR2Vluuc7TcpzvcaRWgrQRU2vSrrBBEp6y07iVKbRM/9yhE/aHJahLbhKh2Dk9 WJvHPnhYJY5yU+Y5vTl3BiW5+EuzMBdPUawOWKhqCq9dswn0GL1g/vlt/bdU/6DO jECQ6fssTAtDjRClXySsS3X0mh8y8qlGvMPB4anfvOy4+4nUV6IESdJftKn2SMGd CA3MaQ+S7frWn5v7GIWSC9vumCsiu1JTOugLmbVmu5m5nFsyllavm/k9LtOtswuF fHM/SlXLFuGBWU6XceqaM2dpP8i5jGz0vIGMhqoFNgXWGO1NhwR1rmeU1CMpnM5e Wue4h/+mJiuEzuZcmzOcwq3HGMUXO0jZDgLEmlnenO9czhrLuGZaMXGdwnIk0G3O +SqH36v7blnDh96RXpgaa+ifTHd0qKeoVXVwSq/9jNtHSQrI+NJcTpMhu73xtxhX UFPr/31+IFLWepC5GDwdu/gQm5E6ntGyxE2p2v76pcjz7SGdXjPFZjqekBveEJuW fNdY6Ns= =rdCA -END PGP PUBLIC KEY BLOCK-