Bug#861011: RFS: qt5ct/0.31-2 [ITP]

2017-04-23 Thread Paul Wise 
On Mon, Apr 24, 2017 at 12:41 AM, Mateusz Łukasik wrote:

> qt5ct - Qt5 Configuration Utility

Since Lisandro is a Debian member and a co-maintainer of the package,
will he be uploading this?

I don't intend to sponsor this package, but here is a quick review:

There do not appear to be any issues that block the upload to Debian.

These issues would be nice to fix at some point:

It is common to put the debian/ dir under the same license as upstream
instead of a different one. This is especially important for patches,
so that upstream can just include the patches directly without asking
you for a relicense.

Please get the manual page included upstream if it isn't already.

Please get the patch included upstream if it isn't already.

Please set some more DEP-3 headers, especially Forwarded:

http://dep.debian.net/deps/dep3/

The watch file can be shortened by using @ARCHIVE_EXT@

You could eliminate README.Debian if you do this:

Alternatively, create the file /etc/X11/Xsession.d/100-qt5ct with
the following line:

export QT_QPA_PLATFORMTHEME=qt5ct

Please run this command so that diffs of debian/ are easier to read:

wrap-and-sort --short-indent --wrap-always --sort-binary-packages
--trailing-comma

The Priority field should be optional rather than extra.

Transifex is no longer a Free Software service, it would be nice if
upstream could switch to something else.

https://mako.cc/writing/hill-free_tools.html

utils/update_ts.sh should probably run lupdate from $PATH instead of /opt

Please add some upstream metadata: https://wiki.debian.org/UpstreamMetadata

Automated checks:

build

Project MESSAGE: This project is using private headers and will
therefore be tied to this specific Qt module build version.
Project MESSAGE: Running this project against other versions of the Qt
modules may crash at any arbitrary point.
Project MESSAGE: This is not a bug, but a result of using Qt
internals. You have been warned!

dpkg-shlibdeps: warning: package could avoid a useless dependency if
debian/qt5ct/usr/lib/x86_64-linux-gnu/qt5/plugins/platformthemes/libqt5ct.so
was not linked against libX11.so.6 (it uses none of the library's
symbols)


lintian

P: qt5ct source: debian-watch-may-check-gpg-signature

check-all-the-things

# is a good idea, people who have different style
# preferences will want to ignore some of the output.
# Do not bother adding non-upstreamable patches for this.
$ find . -type f \( -iname '*.sh' -o -iname '*.bash' \) -exec bashate
--ignore E002,E003 {} +
E010: Do not on same line as for: 'for tr_dir in `find ../src/ -type d
-name "translations"`'
 - ./utils/update_tx.sh : L10
E010: Do not on same line as for: 'for RESOURCE_NAME in qt5ct'
 - ./utils/update_tx.sh : L29
E010: Do not on same line as for: 'for tr_dir in `find ../src/ -type d
-name "translations"`'
 - ./utils/update_ts.sh : L7
E010: Do not on same line as for: ' for code in $LOCALES'
 - ./utils/update_ts.sh : L17
E010: Do not on same line as for: ' for qm_file in $qm_files'
 - ./utils/update_ts.sh : L34
5 bashate error(s) found

$ env PERL5OPT=-m-lib=. cme check dpkg
...
Warning in 'copyright Format' value
'http://www.debian.org/doc/packaging-manuals/copyright-format/1.0/':
Format uses insecure http protocol instead of https
...

$ codespell --quiet-level=3
./ChangeLog.svn:553: inital  ==> initial

$ env PERL5OPT=-m-lib=. duck
I: debian/copyright:3: URL:
http://downloads.sourceforge.net/project/qt5ct: INFORMATION
(Certainty:possible)
   URL schema changed from HTTP to HTTPS during redirect(s):
http://downloads.sourceforge.net -> https://sourceforge.net
   Please investigate and update the URL eventually, to avoid
unneccesary redirects!

$ fdupes -q -r . | grep -vE
'/(\.(git|svn|bzr|hg|sgdrawer|pc)|_(darcs|FOSSIL_)|CVS)(/|$)' | cat -s
./src/qt5ct/translations/qt5ct_pt_BR.ts
./src/qt5ct/translations/qt5ct_pt.ts

$ grep -nHEr '/(home|srv|opt)(\W|$)' .
./utils/update_ts.sh:27: /opt/qt56/bin/lupdate -no-obsolete
-silent -extensions "cpp,ui" ${tr_dir}/../ -ts ${ts_files}

$ flawfinder -Q -c .


# check if these can be switched to https://
$ grep -nHrF http: .
./README:42:http://doc.qt.io/qt-5/qloggingcategory.html (paragraph
"Configuring Categories")
./debian/watch:2:http://sf.net/qt5ct/qt5ct-(\d\S*)\.(?:zip|tgz|tbz|txz|(?:tar\.(?:gz|bz2|xz)))
./debian/copyright:1:Format:
http://www.debian.org/doc/packaging-manuals/copyright-format/1.0/
./debian/copyright:3:Source: http://downloads.sourceforge.net/project/qt5ct
./debian/copyright:46: along with this program. If not, see


$ find . -type f \( -iname '*.sh' -o -iname '*.bash' -o -iname '*.zsh'
\) -exec shellcheck {} +


$ find . -type d \( -iname .bzr -o -iname .git -o -iname .hg -o -iname
.svn -o -iname CVS -o -iname RCS -o -iname SCCS -o -iname _MTN -o
-iname _darcs -o -iname .pc -o -iname .cabal-sandbox -o -iname .cdv -o
-iname .metadata -o -iname CMakeFiles -o -iname _build -o -iname
_sgbak -o -iname autom4te.cache -o -iname blib -o -iname

Bug#861009: marked as done (RFS: gxkb/0.7.9-1)

2017-04-23 Thread Debian Bug Tracking System 
Your message dated Mon, 24 Apr 2017 05:14:42 +0200
with message-id <20170424031442.jg2b3fjn2tyuj...@angband.pl>
and subject line Re: Bug#861009: RFS: gxkb/0.7.9-1
has caused the Debian Bug report #861009,
regarding RFS: gxkb/0.7.9-1
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
861009: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=861009
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---

Package: sponsorship-requests
Severity: normal

Dear mentors,

  I am looking for a sponsor for my package "gxkb"

 * Package name: gxkb
   Version : 0.7.9-1
   Upstream Author : Dmitriy Poltavchenko 
 * URL : http://sourceforge.net/projects/gxkb
 * License : GPL-2+
   Section : x11

  It builds those binary packages:

gxkb  - X11 keyboard indicator and switcher

  To access further information about this package, please visit the 
following URL:


  https://mentors.debian.net/package/gxkb


  Alternatively, one can download the package with dget using this command:

dget -x 
https://mentors.debian.net/debian/pool/main/g/gxkb/gxkb_0.7.9-1.dsc


  Changes since the last upload:

* New upstream release.
  * Enable support for indicator.
  * Add repack script.
  * Add debian/patches/drop-copying.patch to drop coping no needed 
coping file.



  Regards,
   Mateusz Łukasik
--- End Message ---
--- Begin Message ---
On Sun, Apr 23, 2017 at 06:36:34PM +0200, Mateusz Łukasik wrote:
>   I am looking for a sponsor for my package "gxkb"
> 
>  * Package name: gxkb
>Version : 0.7.9-1

>   Changes since the last upload:
> 
> * New upstream release.
>   * Enable support for indicator.
>   * Add repack script.
>   * Add debian/patches/drop-copying.patch to drop coping no needed coping
> file.

It's an upload to unstable not targetted at Stretch, but, as the package
looks very unlikely to get a last-minute RC bug, it's probably ok.

Uploaded!

-- 
⢀⣴⠾⠻⢶⣦⠀ Meow!
⣾⠁⢠⠒⠀⣿⡁
⢿⡄⠘⠷⠚⠋⠀ Collisions shmolisions, let's see them find a collision or second
⠈⠳⣄ preimage for double rot13!--- End Message ---

Bug#861008: marked as done (RFS: slim/1.3.6-5 [RC])

2017-04-23 Thread Debian Bug Tracking System 
Your message dated Mon, 24 Apr 2017 05:00:38 +0200
with message-id <20170424030038.3udzvbc2rkhx4...@angband.pl>
and subject line Re: Bug#861008: RFS: slim/1.3.6-5 [RC]
has caused the Debian Bug report #861008,
regarding RFS: slim/1.3.6-5 [RC]
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
861008: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=861008
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---

Package: sponsorship-requests
Severity: important

Dear mentors,

  I am looking for a sponsor for my package "slim"

 * Package name: slim
   Version : 1.3.6-5
   Upstream Author : Nobuhiro Iwamatsu 
 * URL : http://sourceforge.net/projects/slim.berlios/
 * License : GPL-2+
   Section : x11

  It builds those binary packages:

slim  - desktop-independent graphical login manager for X11

  To access further information about this package, please visit the 
following URL:


  https://mentors.debian.net/package/slim


  Alternatively, one can download the package with dget using this command:

dget -x 
https://mentors.debian.net/debian/pool/main/s/slim/slim_1.3.6-5.dsc



  Changes since the last upload:

  slim (1.3.6-5) unstable; urgency=medium

  * Fix bugged Debian-Lines theme. (Closes: #776693)
Thanks HJ 
  * Fix missing handling of plymouth by replace plymouth-quit.service 
since slim will quit plymouth by itself. (Closes: #860465)

  * Add The Soft Lines theme and set as default.
  * Drop Lenny themes.
  * Add lsb-base (>= 3.0-6) to depends.

 -- Mateusz Łukasik   Sun, 23 Apr 2017 18:14:21 +0200


  Regards,
   Mateusz Łukasik
--- End Message ---
--- Begin Message ---
On Sun, Apr 23, 2017 at 06:23:32PM +0200, Mateusz Łukasik wrote:
>   I am looking for a sponsor for my package "slim"
> 
>  * Package name: slim
>Version : 1.3.6-5

>   Changes since the last upload:
> 
>   slim (1.3.6-5) unstable; urgency=medium
> 
>   * Fix bugged Debian-Lines theme. (Closes: #776693)
> Thanks HJ 
>   * Fix missing handling of plymouth by replace plymouth-quit.service since
> slim will quit plymouth by itself. (Closes: #860465)
>   * Add The Soft Lines theme and set as default.
>   * Drop Lenny themes.
>   * Add lsb-base (>= 3.0-6) to depends.
> 
>  -- Mateusz Łukasik   Sun, 23 Apr 2017 18:14:21 +0200

The theme changes don't quite look like late freeze appropriate changes to
me, but then, I guess official Stretch branding is exempt.  If I'm wrong,
the Release Team will come shouting and we'll revert...

Uploaded.

-- 
⢀⣴⠾⠻⢶⣦⠀ Meow!
⣾⠁⢠⠒⠀⣿⡁
⢿⡄⠘⠷⠚⠋⠀ Collisions shmolisions, let's see them find a collision or second
⠈⠳⣄ preimage for double rot13!--- End Message ---

Bug#858454: marked as done (RFS: simple-obfs/0.0.3-1 [ITP] -- simple obfusacting plugin for shadowsocks server)

2017-04-23 Thread Debian Bug Tracking System 
Your message dated Sun, 23 Apr 2017 22:22:25 +
with message-id 
and subject line closing RFS: simple-obfs/0.0.3-1 [ITP] -- simple obfusacting 
plugin for shadowsocks server
has caused the Debian Bug report #858454,
regarding RFS: simple-obfs/0.0.3-1 [ITP] -- simple obfusacting plugin for 
shadowsocks server
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
858454: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=858454
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Package: sponsorship-requests
Severity: wishlist
X-Debbugs-Cc: max.c...@gmail.com, rogershim...@gmail.com

Dear mentors,

I am looking for a sponsor for my package "simple-obfs", which is a new
dependency of shadowsocks-libev since v3.0.3

 * Package name: simple-obfs
   Version : 0.0.3-1~exp1
   Upstream Author : Max Lv 
 * URL : https://github.com/shadowsocks/simple-obfs
 * License : GPL-3+
   Section : net

It builds those binary packages:

  simple-obfs - simple obfusacting plugin for shadowsocks server

To access further information about this package, please visit the following 
URL:

  https://mentors.debian.net/package/simple-obfs

Alternatively, one can download the package with dget using this command:

  dget -x 
https://mentors.debian.net/debian/pool/main/s/simple-obfs/simple-obfs_0.0.3-1~exp1.dsc

or you can use git-buildpackage to build:
  gbp clone --pristine-tar https://github.com/rogers0/simple-obfs.git
  cd simple-obfs
  git checkout mentors
  mk-build-deps --root-cmd sudo --install --tool "apt-get -o 
Debug::pkgProblemResolver=yes --no-install-recommends"
  gbp buildpackage -uc -us --git-ignore-branch --git-pristine-tar

I also built this package on debomatic (amd64):
  
http://debomatic-amd64.debian.net/distribution#experimental/simple-obfs/0.0.3-1~exp1/buildlog

[changelog]
simple-obfs (0.0.3-1~exp1) experimental; urgency=low

  * Initial release. (Closes: #858370)

Thanks advance for your review and upload!

Cheers,
-- 
Roger Shimizu, GMT +9 Tokyo
PGP/GPG: 4096R/6C6ACD6417B3ACB1


pgpdIv8mpI_fO.pgp
Description: PGP signature
--- End Message ---
--- Begin Message ---
Package simple-obfs version 0.0.3-1 is in NEW now,
and the package at mentors is not newer (2017-04-19) than the package in NEW 
(2017-04-19),
so there is currently no package to sponsor.

https://ftp-master.debian.org/new/simple-obfs_0.0.3-1.html
https://mentors.debian.net/package/simple-obfs

Please remove the package from mentors or mark it "needs sponsor = no".
If for some reason you need to replace the package in NEW,
then you can upload an updated package to mentors
and feel free to reopen this RFS 858454 or open a new RFS.--- End Message ---

Bug#861010: RFS: spacefm/1.0.5-3

2017-04-23 Thread Mateusz Łukasik 

Package: sponsorship-requests
Severity: normal

  Dear mentors,

  I am looking for a sponsor for my package "spacefm"

 * Package name: spacefm
   Version : 1.0.5-3
   Upstream Author : IgnorantGuru 
 * URL : https://github.com/IgnorantGuru/spacefm
 * License : GPL-3+
   Section : utils

  It builds those binary packages:

spacefm- Multi-panel tabbed file manager - GTK2 version
 spacefm-common - Multi-panel tabbed file manager - common files
 spacefm-gtk3 - Multi-panel tabbed file manager - GTK3 version

  To access further information about this package, please visit the 
following URL:


  https://mentors.debian.net/package/spacefm


  Alternatively, one can download the package with dget using this command:

dget -x 
https://mentors.debian.net/debian/pool/main/s/spacefm/spacefm_1.0.5-3.dsc


  Changes since the last upload:

* Bump debhelper version to 10.
  * debian/patches:
+ Add drop-gnome-common-macros.patch to drop deprecated gnome-common
macros/variables. (Closes: #830003)
+ Add cherry-pick for optionally close the panel/application when last
tab is closed.
+ Add fix-ftbfs.patch stolen from Gentoo to fix FTBFS wit glibc 2.24.
+ Add cherry-picks from 1.0.6 release of fork spacefm-ng.
  * Use fix for Unity menu issue as patch, not script.
  * Update debian/copyright.


  Regards,
   Mateusz Łukasik

Bug#861011: RFS: qt5ct/0.31-2 [ITP]

2017-04-23 Thread Mateusz Łukasik 

Package: sponsorship-requests
Severity: wishlist

Dear mentors,

  I am looking for a sponsor for my package "qt5ct"

 * Package name: qt5ct
   Version : 0.31-2
   Upstream Author : Ilya Kotov 
 * URL : http://downloads.sourceforge.net/project/qt5ct
 * License : BSD-2-clause
   Section : utils

  It builds those binary packages:

qt5ct - Qt5 Configuration Utility

  To access further information about this package, please visit the 
following URL:


  https://mentors.debian.net/package/qt5ct


  Alternatively, one can download the package with dget using this command:

dget -x 
https://mentors.debian.net/debian/pool/main/q/qt5ct/qt5ct_0.31-2.dsc



  Changes since the last upload:

  This is initial upload to Debian.


  Regards,
   Mateusz Łukasik

Bug#861009: RFS: gxkb/0.7.9-1

2017-04-23 Thread Mateusz Łukasik 

Package: sponsorship-requests
Severity: normal

Dear mentors,

  I am looking for a sponsor for my package "gxkb"

 * Package name: gxkb
   Version : 0.7.9-1
   Upstream Author : Dmitriy Poltavchenko 
 * URL : http://sourceforge.net/projects/gxkb
 * License : GPL-2+
   Section : x11

  It builds those binary packages:

gxkb  - X11 keyboard indicator and switcher

  To access further information about this package, please visit the 
following URL:


  https://mentors.debian.net/package/gxkb


  Alternatively, one can download the package with dget using this command:

dget -x 
https://mentors.debian.net/debian/pool/main/g/gxkb/gxkb_0.7.9-1.dsc


  Changes since the last upload:

* New upstream release.
  * Enable support for indicator.
  * Add repack script.
  * Add debian/patches/drop-copying.patch to drop coping no needed 
coping file.



  Regards,
   Mateusz Łukasik

Bug#861008: RFS: slim/1.3.6-5 [RC]

2017-04-23 Thread Mateusz Łukasik 

Package: sponsorship-requests
Severity: important

Dear mentors,

  I am looking for a sponsor for my package "slim"

 * Package name: slim
   Version : 1.3.6-5
   Upstream Author : Nobuhiro Iwamatsu 
 * URL : http://sourceforge.net/projects/slim.berlios/
 * License : GPL-2+
   Section : x11

  It builds those binary packages:

slim  - desktop-independent graphical login manager for X11

  To access further information about this package, please visit the 
following URL:


  https://mentors.debian.net/package/slim


  Alternatively, one can download the package with dget using this command:

dget -x 
https://mentors.debian.net/debian/pool/main/s/slim/slim_1.3.6-5.dsc



  Changes since the last upload:

  slim (1.3.6-5) unstable; urgency=medium

  * Fix bugged Debian-Lines theme. (Closes: #776693)
Thanks HJ 
  * Fix missing handling of plymouth by replace plymouth-quit.service 
since slim will quit plymouth by itself. (Closes: #860465)

  * Add The Soft Lines theme and set as default.
  * Drop Lenny themes.
  * Add lsb-base (>= 3.0-6) to depends.

 -- Mateusz Łukasik   Sun, 23 Apr 2017 18:14:21 +0200


  Regards,
   Mateusz Łukasik

Re: I have some questions about alioth repository

2017-04-23 Thread Roger Shimizu 
On Fri, 21 Apr 2017 10:58:30 +0100
Ghislain Vaillant  wrote:

> If the corresponding Vcs-* fields in d/control are missing for these
> packages, then the packaging work is not stored in a VCS. You may
> generate one by calling `gbp import-dscs $PACKAGE` which will download
> all previous uploads and record them as successive Git commits.

I guess the command should be:
  gbp import-dscs --debsnap $PACKAGE

and I always add two more options:
  --author-date-is-committer-date --author-is-committer
to make the git log looks better.

Cheers,
-- 
Roger Shimizu, GMT +9 Tokyo
PGP/GPG: 4096R/6C6ACD6417B3ACB1


pgp8jmakAX0U3.pgp
Description: PGP signature

Bug#849493: marked as done (RFS: vc/1.3.0-1 [ITP])

2017-04-23 Thread Debian Bug Tracking System 
Your message dated Sun, 23 Apr 2017 20:52:34 +0800
with message-id <2521210.ttdVga03QC@hosiet-tp>
and subject line Bug #849493: closing RFS vc/1.3.0-1; newer version uploaded 
already
has caused the Debian Bug report #849493,
regarding RFS: vc/1.3.0-1 [ITP]
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
849493: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=849493
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---

Package: sponsorship-requests
Severity: wishlist

Dear mentors,

I am looking for a sponsor for my package "vc"

   Package name: vc
   Version : 1.3.0-1
   Upstream Author : Matthias Kretz
   URL :https://github.com/VcDevel/Vc
   License : BSD-3-Clause
   Section : libs

It builds those binary packages:

vc-dev - SIMD Vector Classes for C++

  To access further information about this package, please visit the following 
URL:

  https://mentors.debian.net/package/vc


  Alternatively, one can download the package with dget using this command:

dget -xhttps://mentors.debian.net/debian/pool/main/v/vc/vc_1.3.0-1.dsc


  Changes since the last upload:

  vc (1.3.0-1) unstable; urgency=medium

  * Initial release (Closes: #846491)


  Regards,
   Aleksey Samoilov

--- End Message ---
--- Begin Message ---
Control: tags -1 - moreinfo + wontfix

Package "vc" has been uploaded onto Debian Unstable by someone else, thus 
closing this RFS.

See https://tracker.debian.org/news/844142 .

--
Sincerely,
Boyuan Yang

signature.asc
Description: This is a digitally signed message part.
--- End Message ---

Re: someone knows about https://archive.debian.net/

2017-04-23 Thread PICCORO McKAY Lenz 
oh umm this are out of the main threat.. i want to use the
archive.debian.net interface, that's all, i only have help from someone to
restore, but i refuse that u said.. u are wrong, at the moment o wheeze,
ejabbed was many years outdated!!!

so if the problemof the out service was the certificate, common, provide a
http nude way.. crackers, please, repositories are signed! and in case of
pre-etch older systems dont use https as today!
its the most common solution, easy, simple and withpout problem...

and, about ejabberd case: many users asked to contribute with packages, but
well.. and in other words:
2017-04-23 4:30 GMT-04:00 Philipp Huebner :

> I must protest! Have you checked the facts lately?
>
> https://tracker.debian.org/pkg/ejabberd
>
> I have ported ejabberd 16.09 all the way back to Wheezy (via
> backports-sloppy).
>
so ok, lest see, its not in the main.. so most novice users not have that
and not know..

well as suceded to me, i installed similar case bugreport from onther (not
from main).. due are not in main.. bugreport are broken due if u install
from backport deendences are not good property set:
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=859309#10

and its not the only case, there's many many...

>
> If you are running a public server on a Debian release older than Wheezy,
> that is a severe security problem to every participant on the net and
> should be shut down immediately.
> It's also totally your own fault then that you have only an ancient
> ejabberd version available. You cannot expect a current release of any
> software to be present in an obsolete Debian release.
>
it's nonsense said the outdated software are bad

bad its the non-patched software.. the poor tested software, so dont said
ilogic things...

so today systemd have two problems, two open bugs in debian track (now
archived due no have solutions) such as example the killing process
problem, this problem raised once again was switched... but anyway, debian
swict event contrubute to the effors of the other proyects.. systemd was
poor tested.. but most ditribution was swichted..

please how we can trust in software with some "dirty" practices, like merge
udev to force usage of systemd? i remenber the problem.. but here we are---

Lenz McKAY Gerardo (PICCORO)
http://qgqlochekone.blogspot.com

2017-04-23 4:30 GMT-04:00 Philipp Huebner :

> Hi
>
> Am 22.04.2017 um 16:35 schrieb PICCORO McKAY Lenz:
> [...]
>
>> debian have many out (very out) to date packages like ejabberd.. and u
>> tell me about "security" please! theres a issue related to slim, due bad
>> integrtion with pam and systemd, see it
>>
> [...]
>
>> debian have many out (very out) to date packages like ejabberd.. and u
>> tell me about "security" please!
>>
>
>
> I must protest! Have you checked the facts lately?
>
> https://tracker.debian.org/pkg/ejabberd
>
> I have ported ejabberd 16.09 all the way back to Wheezy (via
> backports-sloppy).
>
> ejabberd 16.09 is the latest release before a series of major code
> refactorings introducing a ton of new bugs and regressions.
> It is still quite a recent release which can be configured to be 100%
> compliant with current XMPP compliance suites (XEP-0387).
>
> ejabberd 17.04 is already available in experimental and will be available
> for Jessie and Stretch once stretch-backports and jessie-backports-sloppy
> are open.
>
> If you are running a public server on a Debian release older than Wheezy,
> that is a severe security problem to every participant on the net and
> should be shut down immediately.
> It's also totally your own fault then that you have only an ancient
> ejabberd version available. You cannot expect a current release of any
> software to be present in an obsolete Debian release.
>
> Regards,
> --
>  .''`.   Philipp Huebner 
> : :'  :  pgp fp: 6719 25C5 B8CD E74A 5225  3DF9 E5CA 8C49 25E4 205F
> `. `'`
>   `-
>

Re: someone knows about https://archive.debian.net/

2017-04-23 Thread Philipp Huebner 

Hi

Am 22.04.2017 um 16:35 schrieb PICCORO McKAY Lenz:
[...]

debian have many out (very out) to date packages like ejabberd.. and u
tell me about "security" please! theres a issue related to slim, due bad
integrtion with pam and systemd, see it

[...]

debian have many out (very out) to date packages like ejabberd.. and u
tell me about "security" please!



I must protest! Have you checked the facts lately?

https://tracker.debian.org/pkg/ejabberd

I have ported ejabberd 16.09 all the way back to Wheezy (via 
backports-sloppy).


ejabberd 16.09 is the latest release before a series of major code 
refactorings introducing a ton of new bugs and regressions.
It is still quite a recent release which can be configured to be 100% 
compliant with current XMPP compliance suites (XEP-0387).


ejabberd 17.04 is already available in experimental and will be 
available for Jessie and Stretch once stretch-backports and 
jessie-backports-sloppy are open.


If you are running a public server on a Debian release older than 
Wheezy, that is a severe security problem to every participant on the 
net and should be shut down immediately.
It's also totally your own fault then that you have only an ancient 
ejabberd version available. You cannot expect a current release of any 
software to be present in an obsolete Debian release.


Regards,
--
 .''`.   Philipp Huebner 
: :'  :  pgp fp: 6719 25C5 B8CD E74A 5225  3DF9 E5CA 8C49 25E4 205F
`. `'`
  `-