Bug#814352: ITP: veracrypt -- Cross-platform on-the-fly encryption

[Mike Gabriel]

Hi Francesco,

On  Mi 17 Feb 2016 21:49:54 CET, Francesco Poli wrote:

On Wed, 17 Feb  
2016https://github.com/mhogomchungu/zuluCrypt/releases/download/4.8.0/zuluCrypt-4.8.0-debian-8-Jessie.tar.xz 11:39:00 + Mike Gabriel  
wrote:



On  Mi 17 Feb 2016 00:17:28 CET, Francesco Poli wrote:



Oh, I am sorry. With this mail, I have attached the latest
debian/copyright file as I have it now after having it reworked two
days ago. I should have sent an updated copy to debian-legal
immediately. Sorry for that.


Mmmmh, I cannot see any attachment. Was it forgotten or lost somehow?



As it seems, the VeraCrypt upstream people have come up with a new
license, the VeraCrypt license. See attached copyright file for details.


Please send the updated debian/copyright file...



Oh, I must have forgotten to attach that file. Here it comes.


And personally, I just tried out
zulucrypt-gui the second time and I could not get it running as
non-root. This is probably possible, I did not spend much time on
this, but honestly, I prefer a solution that works right away. Also
ZuluCrypt feels a little nerdy, not so user friendly as VeraCrypt
currently is.


Mmmmh, I see.


OT here, but for completing info on zuluCrypt:

I just learned from the zuluCrypt upstream maintainer, that  
zuluCrypt-gui will work as non-root user if zuluCrypt-cli and  
zuluMount-cli are installed setuid root, it is just that the Debian  
maintainers of zulucrypt-gui do not set those permissions in their  
packaging. (Though, personally, I agree on not having more setuid root  
executables on a Debian system than absolutely necessary).


Also zuluCrypt offers binary built .deb packages of their code on  
their homepage [1] without shipping a source package alongside. They  
install those mentioned executables as setuid root. So here we have a  
binary blob with no directly referenced source, doing filesystem  
crypto _and_ obtaining root privileges. Sigh...


[1] http://mhogomchungu.github.io/zuluCrypt/

Greets,
Mike


--

DAS-NETZWERKTEAM
mike gabriel, herweg 7, 24357 fleckeby
fon: +49 (1520) 1976 148

GnuPG Key ID 0x25771B31
mail: mike.gabr...@das-netzwerkteam.de, http://das-netzwerkteam.de

freeBusy:
https://mail.das-netzwerkteam.de/mailxchange/kronolith/fb.php?u=m.gabriel%40das-netzwerkteam.de
Format: http://www.debian.org/doc/packaging-manuals/copyright-format/1.0/
Upstream-Name: veracrypt
Source: http://sourceforge.net/projects/truecrypt/

Files: *
Copyright: 2003-2011, TrueCrypt Developers Association
   2013-2015, IDRIX
License: VC

Files:  src/Common/Apidrvr.h
src/Common/Cache.*
src/Common/Cmdline.*
src/Common/Combo.*
src/Common/Crc.*
src/Common/Crypto.*
src/Common/Dlgcode.*
src/Common/Endian.*
src/Common/Fat.*
src/Common/Format.*
src/Common/Password.*
src/Common/Pkcs5.*
src/Common/Progress.*
src/Common/Random.*
src/Common/Tcdefs.h
src/Common/Tests.*
src/Common/Volumes.*
src/Core/FatFormatter.cpp
src/Driver/Ntdriver.*
src/Driver/Ntvol.*
src/Format/Tcformat.*
src/Mount/Mount.*
src/Setup/Dir.*
src/Setup/Setup.*
src/Setup/Wizard.*
Copyright: 1998-2000, Paul Le Roux
License: E4M

Files:  src/Common/GfMul.c
src/Common/GfMul.h
src/Crypto/Aescrypt.c
src/Crypto/Aes.h
src/Crypto/Aeskey.c
src/Crypto/Aesopt.h
src/Crypto/AesSmall.c
src/Crypto/AesSmall.h
src/Crypto/AesSmall_x86.asm
src/Crypto/Aestab.c
src/Crypto/Aestab.h
src/Crypto/Aes_x64.asm
src/Crypto/Aes_x86.asm
src/Crypto/Sha2.c
src/Crypto/Sha2.h
src/Crypto/Twofish.c
Copyright: 1998-2007, Brian Gladman, Worcester, UK
License: BSD-3-Clause

Files: src/Boot/Windows/Decompressor.c
Copyright: 2002-2004, Mark Adler
License: zlib

Files: debian/*
Copyright: 2013-2015, Unit 193 
   2016, Mike Gabriel 
License: BSD-3-Clause

License: VC
 VeraCrypt License
 .
 Software distributed under this license is distributed on an "AS IS"
 BASIS WITHOUT WARRANTIES OF ANY KIND. THE AUTHORS AND DISTRIBUTORS OF
 THE SOFTWARE DISCLAIM ANY LIABILITY. ANYONE WHO USES, COPIES, MODIFIES,
 OR (RE)DISTRIBUTES ANY PART OF THE SOFTWARE IS, BY SUCH ACTION(S),
 ACCEPTING AND AGREEING TO BE BOUND BY ALL TERMS AND CONDITIONS OF THIS
 LICENSE. IF YOU DO NOT ACCEPT THEM, DO NOT USE, COPY, MODIFY, NOR
 (RE)DISTRIBUTE THE SOFTWARE, NOR ANY PART(S) THEREOF.
 .
 VeraCrypt is governed by the TrueCrypt License version 3.0, a verbatim
 copy of this version of the TrueCrypt License can be found below.
 .
 Modifications and additions to the original source code (contained in
 this file)  and all other portions of this file are Copyright (c)
 2013-2015 IDRIX and are governed by the Apache License 2.0 the full text
 of which is contained in the file License.txt included in 

Processed: ocrmypdf: block ITP 813562 by RFS 815027

[Debian Bug Tracking System]

Processing commands for cont...@bugs.debian.org:

> block 813562 by 815027
Bug #813562 [wnpp] ITP: ocrmypdf -- add an OCR text layer to PDF files
813562 was not blocked by any bugs.
813562 was not blocking any bugs.
Added blocking bug(s) of 813562: 815027
> stop
Stopping processing here.

Please contact me if you need assistance.
-- 
813562: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=813562
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

Processed: Clone Netbeans bug

[Debian Bug Tracking System]

Processing commands for cont...@bugs.debian.org:

> retitle 809256 netbeans: HTML5 Parser Exception
Bug #809256 [netbeans] JavaScript support is incomplete for Base IDE
Changed Bug title to 'netbeans: HTML5 Parser Exception' from 'JavaScript 
support is incomplete for Base IDE'
> clone 809256 -1
Bug #809256 [netbeans] netbeans: HTML5 Parser Exception
Bug 809256 cloned as bug 815028
809704 was not blocked by any bugs.
809704 was blocking: 742119 809256
Added blocking bug(s) of 809704: 815028
> retitle -1 netbeans: JavaScript support is incomplete for Base IDE
Bug #815028 [netbeans] netbeans: HTML5 Parser Exception
Changed Bug title to 'netbeans: JavaScript support is incomplete for Base IDE' 
from 'netbeans: HTML5 Parser Exception'
> thanks
Stopping processing here.

Please contact me if you need assistance.
-- 
809256: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=809256
809704: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=809704
815028: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=815028
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

Bug#813700: marked as done (ITP: mono-reference-assemblies -- Mono runtime - compiler compatibility for older .NET releases)

[Debian Bug Tracking System]

Your message dated Thu, 18 Feb 2016 01:00:55 +
with message-id 
and subject line Bug#813700: fixed in mono-reference-assemblies 3.12.1+dfsg-1
has caused the Debian Bug report #813700,
regarding ITP: mono-reference-assemblies -- Mono runtime - compiler 
compatibility for older .NET releases
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
813700: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=813700
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Package: wnpp
Severity: wishlist
Owner: Jo Shields 

* Package name: mono-reference-assemblies
  Version : 3.12.1
  Upstream Author : Xamarin Inc
* URL : http://www.mono-project.com/
* License : (Mostly MIT, a few others, see debian/copyright)
  Programming Lang: (C#)
  Description : Mono runtime - compiler compatibility for older .NET 
releases

 Mono is a platform for running and developing applications based on the
 ECMA/ISO Standards. Mono is an open source effort led by Xamarin.
 Mono provides a complete CLR (Common Language Runtime) including compiler and
 runtime, which can produce and execute CIL (Common Intermediate Language)
 bytecode (aka assemblies), and a class library.
 
 These packages contains files required to compile applications against an
 older version of .NET, using Mono 4.0 or above, which only include the latest
 version of the class library as-is. This is important for producing apps for
 wider distribution

 This is essentially a re-upload of an obsolete Mono version, as a new source
 package - the files generated here are bundled as binary blobs in upstream
 Mono releases, and we are simply regenerating them cleanly from source for
 inclusion in the Debian archive - this is similar to libstdc++5/gcc-3.3
 still being in the archive
--- End Message ---
--- Begin Message ---
Source: mono-reference-assemblies
Source-Version: 3.12.1+dfsg-1

We believe that the bug you reported is fixed in the latest version of
mono-reference-assemblies, which is due to be installed in the Debian FTP 
archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 813...@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Jo Shields  (supplier of updated 
mono-reference-assemblies package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmas...@ftp-master.debian.org)


-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

Format: 1.8
Date: Thu, 04 Feb 2016 11:52:32 +
Source: mono-reference-assemblies
Binary: mono-reference-assemblies-2.0 mono-reference-assemblies-3.5 
mono-reference-assemblies-4.0
Architecture: source all
Version: 3.12.1+dfsg-1
Distribution: unstable
Urgency: low
Maintainer: Debian Mono Group 
Changed-By: Jo Shields 
Description:
 mono-reference-assemblies-2.0 - Mono runtime - compiler compatibility for .NET 
2.0
 mono-reference-assemblies-3.5 - Mono runtime - compiler compatibility for .NET 
3.5
 mono-reference-assemblies-4.0 - Mono runtime - compiler compatibility for .NET 
4.0
Closes: 813700
Changes:
 mono-reference-assemblies (3.12.1+dfsg-1) unstable; urgency=low
 .
   * Initial release (Closes: #813700)
Checksums-Sha1:
 a5047c780bb6cd327b8c44b64534186791595efb 2166 
mono-reference-assemblies_3.12.1+dfsg-1.dsc
 a31464806ab81118ab5fa4102826611a0ba0f1f2 88951934 
mono-reference-assemblies_3.12.1+dfsg.orig.tar.gz
 9fb412da8b6fca5b8e5e5e4af6675dccbad89aea 14176 
mono-reference-assemblies_3.12.1+dfsg-1.debian.tar.xz
 844df7d24aa365bc0f05e6fd4346c5855248e7b9 3687120 
mono-reference-assemblies-2.0_3.12.1+dfsg-1_all.deb
 d2449dc99c43d0ca072f79b36527a48d5f42a2c6 101768 
mono-reference-assemblies-3.5_3.12.1+dfsg-1_all.deb
 c946d0961fa7c6a6651b7d7c9bec544dacce984a 4089538 
mono-reference-assemblies-4.0_3.12.1+dfsg-1_all.deb
Checksums-Sha256:
 18b7928ba43f78bce1136d32982e65ddb089981cc3680f586b80078bf6997ed4 2166 
mono-reference-assemblies_3.12.1+dfsg-1.dsc
 5a70bbb19f56dc976e5cee2621d0a4777802da08740b675e754247e58c6172a6 88951934 
mono-reference-assemblies_3.12.1+dfsg.orig.tar.gz
 cc83e2cab2851f01e289221999c4398165f2ca984952ef1b614a36cb0409dfaa 14176 
mono-reference-assemblies_3.12.1+dfsg-1.debian.tar.xz
 

Bug#810722: marked as done (ITP: gplaycli -- Google Play Downloader via Command line)

[Debian Bug Tracking System]

Your message dated Thu, 18 Feb 2016 01:00:51 +
with message-id 
and subject line Bug#810722: fixed in gplaycli 0.1.2+git15~g20f65ca-1
has caused the Debian Bug report #810722,
regarding ITP: gplaycli -- Google Play Downloader via Command line
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
810722: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=810722
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Package: wnpp
Severity: wishlist
Owner: "Matlink" 

* Package name: gplaycli
  Version : 0.1.2
  Upstream Author : Matlink
* URL : https://github.com/matlink/gplaycli
* License : AGPLv3
  Programming Lang: Python
  Package source  : https://github.com/matlink/gplaycli
  Description : Interested by packaging gplaycli for debian

 GPlayCli is a command line tool to search, install, update Android
applications from the Google Play Store.
 The main goal was to be able to run this script with a cronjob, in
order to automatically update an F-Droid server instance.

-- 
Matlink - Sysadmin matlink.fr
Sortez couverts, chiffrez vos mails : https://café-vie-privée.fr/
XMPP/Jabber : matl...@matlink.fr
Clé publique PGP : 0x186BB3CA
Empreinte Off-the-record : 572174BF 6983EA74 91417CA7 705ED899 DE9D05B2
--- End Message ---
--- Begin Message ---
Source: gplaycli
Source-Version: 0.1.2+git15~g20f65ca-1

We believe that the bug you reported is fixed in the latest version of
gplaycli, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 810...@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Matlink (Matlink - Sysadmin matlink.fr)  (supplier of 
updated gplaycli package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmas...@ftp-master.debian.org)


-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

Format: 1.8
Date: Mon, 24 Aug 2015 21:38:29 +0200
Source: gplaycli
Binary: gplaycli
Architecture: source all
Version: 0.1.2+git15~g20f65ca-1
Distribution: unstable
Urgency: low
Maintainer: Matlink (Matlink - Sysadmin matlink.fr) 
Changed-By: Matlink (Matlink - Sysadmin matlink.fr) 
Description:
 gplaycli   - Google Play downloader command line interface
Closes: 810722
Changes:
 gplaycli (0.1.2+git15~g20f65ca-1) unstable; urgency=low
 .
   * Initial release. (Closes: #810722)
Checksums-Sha1:
 623d21aa71146d1486abfd23827b059957ee4898 1737 
gplaycli_0.1.2+git15~g20f65ca-1.dsc
 da9f9b844c92974e7ca8d7e90e65659bd313ca07 69296 
gplaycli_0.1.2+git15~g20f65ca.orig.tar.gz
 278e92eb7fe5c3d1f86c7fdf3f5cec1aa5a8 2748 
gplaycli_0.1.2+git15~g20f65ca-1.debian.tar.xz
 721d499be8163a7987df565ab803a710c02be6a1 53786 
gplaycli_0.1.2+git15~g20f65ca-1_all.deb
Checksums-Sha256:
 fa1befbc583d66d15fb3c3ca8c46fce9cb99f8bdb46832c508ecba39ed82aec1 1737 
gplaycli_0.1.2+git15~g20f65ca-1.dsc
 c01053f6df21c3037ec46380ce061288ccc3d0c06af904089258abd944a41c01 69296 
gplaycli_0.1.2+git15~g20f65ca.orig.tar.gz
 b4d32a5dc74f5123640ae0fcb6c18bf0634474bcbafa2eb1fda4eed42a8484c3 2748 
gplaycli_0.1.2+git15~g20f65ca-1.debian.tar.xz
 930f1faaca29fcef0222e8e20b089a5a7dd80ed2c7ae242b9525e3f249ba3caa 53786 
gplaycli_0.1.2+git15~g20f65ca-1_all.deb
Files:
 d7f808df5ed72049173cc2400ba0032e 1737 utils optional 
gplaycli_0.1.2+git15~g20f65ca-1.dsc
 24d941afe8ec5346f7bc087b859298bf 69296 utils optional 
gplaycli_0.1.2+git15~g20f65ca.orig.tar.gz
 bc94f9f99ffe1934c41bd19d105a4bf4 2748 utils optional 
gplaycli_0.1.2+git15~g20f65ca-1.debian.tar.xz
 543fc5c7cd6648506584640e6c086fa9 53786 utils optional 
gplaycli_0.1.2+git15~g20f65ca-1_all.deb

-BEGIN PGP SIGNATURE-
Version: GnuPG v1
Comment: GPG for Android - https://guardianproject.info/code/gnupg/

iQEcBAEBCAAGBQJWxI8zAAoJED4XeBe6G5v6Js4IAKy7wH/DwzpY1qPKYG4hNncZ
kZPh2ILh8v51ua02MWdacpm3hNYWWQ94ek3D7R5dmrwe4s8Usz7Le697CBbbBIh+
9m9mavuGnpjEHHjqx4dCDNiQ1gr7MEC1G57xXMW6q6qALCn6jIw9AofVhjl+fzB2
79gntrvW1e65pwn9ilWrrUOjr4aNMTlYg93HZA03gW2OsxR6CgLCbJHmHaSKkOIZ
efJDlzIaIgngiKhpmiewgxS5co7AIegJ8s+jArqBriPdNmt7bEPZJZbbgUF/aOXr
PmstQtmvjyKdSopiC8COSFoTDaeJkvZtUc3slVYGi3w2O8pAr7l5dZ+RkCSlSBw=
=1bte
-END PGP SIGNATURE End Message ---

Bug#812187: marked as done (ITP: pnetcdf -- parallel netCDF library for scientific I/O)

[Debian Bug Tracking System]

Your message dated Thu, 18 Feb 2016 01:01:08 +
with message-id 
and subject line Bug#812187: fixed in pnetcdf 1.7.0~pre1-1
has caused the Debian Bug report #812187,
regarding ITP: pnetcdf -- parallel netCDF library for scientific I/O
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
812187: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=812187
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Package: wnpp
Severity: wishlist
Owner: Alastair McKinstry 

* Package name: pnetcdf
  Version : 1.7.0
  Upstream Author : Northwestern University and Argonne National Laboratory
* URL : https://trac.mcs.anl.gov/projects/parallel-netcdf
* License : BSD 
  Programming Lang: C
  Description : parallel netCDF library for scientific I/O

 PnetCDF is a library providing high-performance parallel I/O while still
 maintaining file-format compatibility with  Unidata's NetCDF,
 specifically the formats of CDF-1 and CDF-2.
 Although NetCDF supports parallel I/O starting from version 4, the files
 must be in HDF5 format. PnetCDF is currently the only choice for carrying
 out parallel I/O on files that are in classic formats (CDF-1 and 2).
 .
 In addition, PnetCDF supports the CDF-5 file format, an extension of CDF-2,
 that supports more data types and allows users to define large dimensions,
 attributes, and variables (>2B elements).
 .
 This package will be used as a dependency of the NetCDF package already present
 in Debian to provide additional functionality, and when stable will be
 co-maintained in the Debian GIS project.
--- End Message ---
--- Begin Message ---
Source: pnetcdf
Source-Version: 1.7.0~pre1-1

We believe that the bug you reported is fixed in the latest version of
pnetcdf, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 812...@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Alastair McKinstry  (supplier of updated pnetcdf package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmas...@ftp-master.debian.org)


-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

Format: 1.8
Date: Tue, 16 Feb 2016 23:59:30 +
Source: pnetcdf
Binary: libpnetcdf-dev pnetcdf-bin libpnetcdf0d
Architecture: source amd64
Version: 1.7.0~pre1-1
Distribution: sid
Urgency: medium
Maintainer: Alastair McKinstry 
Changed-By: Alastair McKinstry 
Description:
 libpnetcdf-dev - Development files for the parallel netCDF library
 libpnetcdf0d - Libraryfor reading and writing parallel NetCDF files
 pnetcdf-bin - Programs for reading and writing parallel NetCDF files
Closes: 812187
Changes:
 pnetcdf (1.7.0~pre1-1) unstable; urgency=medium
 .
   * Initial release. (Closes: #812187)
 Re-submitted with updated Copyright Information.
Checksums-Sha1:
 6fba3ae0d1ce9f63a0375a01d5d9af3dcea62178 1965 pnetcdf_1.7.0~pre1-1.dsc
 3690ed4605d7b6d4d051ac8dbf8b334688137ae7 738856 pnetcdf_1.7.0~pre1.orig.tar.xz
 3041e3fbbacece223fd7d254090cc5b1cdecefb4 5476 
pnetcdf_1.7.0~pre1-1.debian.tar.xz
 35e3b8729d144d3ba0c8b1fdb50d5850906fc149 640156 
libpnetcdf-dev_1.7.0~pre1-1_amd64.deb
 da719e5d782fca0dd56ccc05cd3b9793ec909d1a 2576622 
libpnetcdf0d-dbgsym_1.7.0~pre1-1_amd64.deb
 309d600e4937efa43bbc120b763a72570f2b83d1 364000 
libpnetcdf0d_1.7.0~pre1-1_amd64.deb
 4890ee95975fb3f3bee0b0cc8e621209edd0dd30 1196476 
pnetcdf-bin-dbgsym_1.7.0~pre1-1_amd64.deb
 c0f87d79851728c6d0507edc5f5f010b83a78016 247558 
pnetcdf-bin_1.7.0~pre1-1_amd64.deb
Checksums-Sha256:
 efee36506e6c80d70b6c0e3831192dd90109271c9c5dd5fb21b9083b4820c4dc 1965 
pnetcdf_1.7.0~pre1-1.dsc
 7918d3482dbdec6099cd8b7d4a487f00fb00d19eb437dc08b55b0f69e3a65bcb 738856 
pnetcdf_1.7.0~pre1.orig.tar.xz
 e98e0c13f85a9aec13fc0432a290d75af6a58d76ec654f9353753e9cfe6245f3 5476 
pnetcdf_1.7.0~pre1-1.debian.tar.xz
 ad0a169ea0e8ebda2f941a58314ef004ea5c05278601dc02d64967e12c35f954 640156 
libpnetcdf-dev_1.7.0~pre1-1_amd64.deb
 8774ee2788f1583ba269e24301f8219bee0a52ba3aab52fcb708baac7d9c6141 2576622 
libpnetcdf0d-dbgsym_1.7.0~pre1-1_amd64.deb
 d4982f95af6e2b17e1e80645d77672c6bc02addf0a68387cb2830222fd80b16a 364000 
libpnetcdf0d_1.7.0~pre1-1_amd64.deb
 

Bug#814874: marked as done (ITP: win-iconv -- iconv implementation using Windows API (for cross-building))

[Debian Bug Tracking System]

Your message dated Thu, 18 Feb 2016 01:01:13 +
with message-id 
and subject line Bug#814874: fixed in win-iconv 0.0.8-1
has caused the Debian Bug report #814874,
regarding ITP: win-iconv -- iconv implementation using Windows API (for 
cross-building)
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
814874: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=814874
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Package: wnpp
Severity: wishlist
Owner: Daniel Kahn Gillmor 

* Package name: win-iconv
  Version : 0.0.8
  Upstream Author : Yukihiro Nakadaira 
* URL : https://www.github.com/win-iconv/win-iconv
* License : public domain
  Programming Lang: C
  Description : iconv implementation using Windows API (for cross-building)

 Windows systems have native character set conversion
 routines. win-iconv wraps those routines in a standard-looking iconv
 interface.  This package provides a means to cross-build tools for
 Windows that depend on libiconv.

 On native debian systems, iconv is provided directly by glibc; you
 should not need this package unless you are cross-building Windows
 tools.


It's healthy for debian to have a cross-building toolchain that
targets the Windows platform.  We currently build things like
win32-loader (for launching the debian-installer directly from a
Microsoft Windows machine), for example.  It can be handy to help free
software developers in general target Windows without needing to
install that platform or work on it directly.  Win-iconv provides a
helpful shim for free software projects that depend on libiconv but
want to also target Windows.

I'm currently using win-iconv to be able to build Windows versions of
the GnuPG suite.  See https://bugs.gnupg.org/gnupg/issue2134
--- End Message ---
--- Begin Message ---
Source: win-iconv
Source-Version: 0.0.8-1

We believe that the bug you reported is fixed in the latest version of
win-iconv, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 814...@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Daniel Kahn Gillmor  (supplier of updated win-iconv 
package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmas...@ftp-master.debian.org)


-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Thu, 11 Feb 2016 00:58:54 -0500
Source: win-iconv
Binary: win-iconv-mingw-w64-dev
Architecture: source all
Version: 0.0.8-1
Distribution: unstable
Urgency: medium
Maintainer: Daniel Kahn Gillmor 
Changed-By: Daniel Kahn Gillmor 
Description:
 win-iconv-mingw-w64-dev - iconv implementation using Windows API (for 
cross-building)
Closes: 814874
Changes:
 win-iconv (0.0.8-1) unstable; urgency=medium
 .
   * Initial release. (Closes: #814874)
Checksums-Sha1:
 7b4043663cd815025a82cbfce7ec4b3df275a7f2 2106 win-iconv_0.0.8-1.dsc
 9f77f7c0844c1e5d39c2f1b249bd454f14a12704 21396 win-iconv_0.0.8.orig.tar.gz
 c2490793057302bd21b24a3285d85eabc576cd8a 2932 win-iconv_0.0.8-1.debian.tar.xz
 7a06776f8104853dad57ea758dee4343d3cfe8db 62370 
win-iconv-mingw-w64-dev_0.0.8-1_all.deb
Checksums-Sha256:
 aa80a21f31f0e9dc2f339344424376db710bbd78e805e15e7570eab0e98c4b97 2106 
win-iconv_0.0.8-1.dsc
 23adea990a8303c6e69e32a64a30171efcb1b73824a1c2da1bbf576b0ae7c520 21396 
win-iconv_0.0.8.orig.tar.gz
 8c1e33fd0d4c9ecbeebac96d08e131af8697577ef0d08be0408d5186f0fb4e15 2932 
win-iconv_0.0.8-1.debian.tar.xz
 ff16971a87afdec2cfdc949fdcc076597f0303b1f339920320682b706ed79570 62370 
win-iconv-mingw-w64-dev_0.0.8-1_all.deb
Files:
 b09072f778fb53a2541276e8a3b210f0 2106 libdevel extra win-iconv_0.0.8-1.dsc
 e4574721c2d9667af32283175c828833 21396 libdevel extra 
win-iconv_0.0.8.orig.tar.gz
 f7ab44b739c1687a52376f38d28b8dc5 2932 libdevel extra 
win-iconv_0.0.8-1.debian.tar.xz
 02ac195fe948c6a568099895b189908e 62370 libdevel extra 
win-iconv-mingw-w64-dev_0.0.8-1_all.deb

-BEGIN PGP SIGNATURE-
Version: GnuPG v1

iQJ8BAEBCgBmBQJWwtzvXxSAAC4AKGlzc3Vlci1mcHJAbm90YXRpb25zLm9w
ZW5wZ3AuZmlmdGhob3JzZW1hbi5uZXQwRUU1QkU5NzkyODJEODBCOUY3NTQwRjFD

Bug#811421: marked as done (ITP: androguard -- a full Python tool to play with Android files)

[Debian Bug Tracking System]

Your message dated Thu, 18 Feb 2016 01:00:22 +
with message-id 
and subject line Bug#811421: fixed in androguard 2.0-1
has caused the Debian Bug report #811421,
regarding ITP: androguard -- a full Python tool to play with Android files
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
811421: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=811421
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Package: wnpp
Severity: wishlist
Owner: "Hans-Christoph Steiner" 

* Package name: androguard
  Version : 1.16.6
  Upstream Author : Anthony Desnos and Geoffroy Gueguen
* URL : https://github.com/androguard/androguard
* License : Apache-2.0
  Programming Lang: Python
  Package source  :
https://anonscm.debian.org/cgit/python-apps/androguard.git
  Description : a full Python tool to play with Android files

Androguard is a full python tool to play with Android files.

* DEX, ODEX
* APK
* Android's binary xml
* Android resources
* Disassemble DEX/ODEX bytecodes
* Decompiler for DEX/ODEX files
--- End Message ---
--- Begin Message ---
Source: androguard
Source-Version: 2.0-1

We believe that the bug you reported is fixed in the latest version of
androguard, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 811...@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Hans-Christoph Steiner  (supplier of updated androguard package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmas...@ftp-master.debian.org)


-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

Format: 1.8
Date: Mon, 18 Jan 2016 20:54:01 +0100
Source: androguard
Binary: androguard
Architecture: source amd64
Version: 2.0-1
Distribution: unstable
Urgency: low
Maintainer: Hans-Christoph Steiner 
Changed-By: Hans-Christoph Steiner 
Description:
 androguard - full Python tool to play with Android files
Closes: 811421
Changes:
 androguard (2.0-1) unstable; urgency=low
 .
   * Initial release. (Closes: #811421)
Checksums-Sha1:
 4442cedb21db44bc2b3fa7a497306bfc3d27225d 1549 androguard_2.0-1.dsc
 53747bdae5d95dfb6f701aa27141d38114dcb037 4739992 androguard_2.0.orig.tar.gz
 6b193377ab2f28ccd90473af83e1cd85bbdfca3b 3392 androguard_2.0-1.debian.tar.xz
 39862b399bb1772fec253530a0928b84a59d5043 512078 
androguard-dbgsym_2.0-1_amd64.deb
 058ddfa2055aeeb332215bf17c84cb01c66b2bb9 2189716 androguard_2.0-1_amd64.deb
Checksums-Sha256:
 c2653469fdafae2103f12b84f8bf9f0786217bb7f5e61cde8029125574bfdb1f 1549 
androguard_2.0-1.dsc
 ec2a8c3b7234003809be5846550cfa7002a079da3a4b7f301ad5101b697f4d28 4739992 
androguard_2.0.orig.tar.gz
 1730b7e88d0e36e68741009dfbb79c7697950231ca57e264e223fd191a889a07 3392 
androguard_2.0-1.debian.tar.xz
 af53b53292dc5408fb2d5f7f8e6cd8ca157bdd504662fddd5eefc8383d9a36e6 512078 
androguard-dbgsym_2.0-1_amd64.deb
 181815374d695de282b3d477b258304dd0fde7280bbe908c1b68604be2b00eb2 2189716 
androguard_2.0-1_amd64.deb
Files:
 4efe6b26dcb1aae12a0d1f72de808a5f 1549 python optional androguard_2.0-1.dsc
 8674d4c5da5738cb0eb5e15a51f1b182 4739992 python optional 
androguard_2.0.orig.tar.gz
 269106069a5c57f63218f6756593e0fb 3392 python optional 
androguard_2.0-1.debian.tar.xz
 41284e8009ac0c786c3adc6fd8b25fce 512078 debug extra 
androguard-dbgsym_2.0-1_amd64.deb
 5a83dbd5f3665547d044ce4b80238272 2189716 python optional 
androguard_2.0-1_amd64.deb

-BEGIN PGP SIGNATURE-
Version: GnuPG v1
Comment: GPG for Android - https://guardianproject.info/code/gnupg/

iQEcBAEBCAAGBQJWxM74AAoJED4XeBe6G5v6pc0H/30AjSR6tlf5WVL/eUCtX/uw
CYLM5KY89J0JUtHpoVaN9W9Z6WdnWIVzyggYBmHsvIW48X580fN4DedyXNygsVn1
OLDBi1jzF8MFSqzQDsUu5tZ28Ew5adcggnH4xRY0aWOaNeleGV2DJ/XH5Ffi7MbX
pUh1wtPIsoAEuN/VkUFZdIwprbDBPOiLKwQoJliDn53+l9ylZPMouDcSAtdLAvsH
eqYAJVuFePsb0TPXB5zJ6AGEg899TBq0K82lSCFUvLcrcEvZcROQZmB1dtQJwauc
6JvJO07d2HJl5M/DhFm6RQyRuQRcXWA8ONXLLVBBYfB+zepVmkRGxzbhrzeOgDg=
=UfY0
-END PGP SIGNATURE End Message ---

Bug#784013: marked as done (RFP: apktool -- tool for reverse engineering Android apk files)

[Debian Bug Tracking System]

Your message dated Thu, 18 Feb 2016 01:00:26 +
with message-id 
and subject line Bug#806855: fixed in apktool 2.0.2+dfsg-1
has caused the Debian Bug report #806855,
regarding RFP: apktool -- tool for reverse engineering Android apk files
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
806855: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=806855
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Package: wnpp
Severity: wishlist

* Package name: apktool
  Version : 2.0.0
  Upstream Author : Ryszard Wiśniewski 
* URL : https://ibotpeaches.github.io/Apktool/
* License : Apache 2.0
  Programming Lang: Java
  Description : tool for reverse engineering Android apk files


A tool for reverse engineering 3rd party, closed, binary Android apps. 
It can decode resources to nearly original form and rebuild them after 
making some modifications; it makes possible to debug smali code step by 
step. Also it makes working with an app easier because of project-like 
file structure and automation of some repetitive tasks like building 
apk, etc.

It is NOT intended for piracy and other non-legal uses. It could be used 
for localizing, adding some features or support for custom platforms, 
analyzing applications and much more.

Features

* Disassembling resources to nearly original form (including 
  resources.arsc, classes.dex, 9.png. and XMLs)
* Rebuilding decoded resources back to binary APK/JAR
* Organizing and handling APKs that depend on framework resources
* Smali Debugging
* Helping with repetitive tasks

-- 
 ‎أحمد المحمودي (Ahmed El-Mahmoudy)
  Digital design engineer
 GPG KeyID: 0xEDDDA1B7
 GPG Fingerprint: 8206 A196 2084 7E6D 0DF8  B176 BC19 6A94 EDDD A1B7


signature.asc
Description: Digital signature
--- End Message ---
--- Begin Message ---
Source: apktool
Source-Version: 2.0.2+dfsg-1

We believe that the bug you reported is fixed in the latest version of
apktool, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 806...@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Markus Koschany  (supplier of updated apktool package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmas...@ftp-master.debian.org)


-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Wed, 17 Feb 2016 17:27:21 +0100
Source: apktool
Binary: apktool
Architecture: source all
Version: 2.0.2+dfsg-1
Distribution: unstable
Urgency: medium
Maintainer: Android tools Maintainer 

Changed-By: Markus Koschany 
Description:
 apktool- tool for reverse engineering Android apk files
Closes: 806855
Changes:
 apktool (2.0.2+dfsg-1) unstable; urgency=medium
 .
   * Initial release (Closes: #806855)
Checksums-Sha1:
 aa20fede57b89c67c00dbb7dbab06100d6798724 2377 apktool_2.0.2+dfsg-1.dsc
 e180e8af1dfdd19c3314e39887e323bc460c0795 491096 apktool_2.0.2+dfsg.orig.tar.xz
 72f959c71aff10780d02d4c331bf9a846ff5ada2 7676 
apktool_2.0.2+dfsg-1.debian.tar.xz
 b902f0a53ef34e0c9df4e03cfa261766098dd299 1288334 apktool_2.0.2+dfsg-1_all.deb
Checksums-Sha256:
 83de1e0fb55317e8f094b878f62935e538dfa7686755bb0405967ab972791f72 2377 
apktool_2.0.2+dfsg-1.dsc
 9a3737aa524a73aebbc62bcb0e81261ede09ee11f72ff4495babf4a25109 491096 
apktool_2.0.2+dfsg.orig.tar.xz
 9251bdce5f92e3806561aa853d83cf34b630fff69faa657c394b5e346bdc3f5a 7676 
apktool_2.0.2+dfsg-1.debian.tar.xz
 0290fe0b621def3258e46130adb21d420d502cfd0da67e9029bcb8a7ff72ea38 1288334 
apktool_2.0.2+dfsg-1_all.deb
Files:
 0e6f5f4d4b5170c5a807a5323aa0b5f2 2377 devel optional apktool_2.0.2+dfsg-1.dsc
 67f482d88e5b1920ebbadeb97ae0d732 491096 devel optional 
apktool_2.0.2+dfsg.orig.tar.xz
 5504ace8ebfb52061b29173d514f3185 7676 devel optional 
apktool_2.0.2+dfsg-1.debian.tar.xz
 3e942a5186d49517ea50781a75800d74 1288334 devel optional 
apktool_2.0.2+dfsg-1_all.deb

-BEGIN PGP SIGNATURE-
Version: GnuPG v1

iQJ8BAEBCgBmBQJWxKF+XxSAAC4AKGlzc3Vlci1mcHJAbm90YXRpb25zLm9w
ZW5wZ3AuZmlmdGhob3JzZW1hbi5uZXRBQ0YzRDA4OEVGMzJFREVGNkExQTgzNUZE
OUFEMTRCOTUxM0I1MUU0AAoJENmtFLlRO1HkGkAQAKKVm1sdWUAjMMl8yUJTQhq8

Bug#806855: marked as done (ITP: apktool -- tool for reverse engineering Android apps)

[Debian Bug Tracking System]

Your message dated Thu, 18 Feb 2016 01:00:26 +
with message-id 
and subject line Bug#806855: fixed in apktool 2.0.2+dfsg-1
has caused the Debian Bug report #806855,
regarding ITP: apktool -- tool for reverse engineering Android apps
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
806855: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=806855
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Package: wnpp
Severity: wishlist
Owner: "Android Tools Team" 

* Package name: apktool
  Version : 2.0.1
  Upstream Author : Connor Tumbleson 
* URL : http://ibotpeaches.github.io/Apktool/
* License : Apache 2.0
  Programming Lang: Java
  Package source  :
https://anonscm.debian.org/cgit/android-tools/apktool.git
  Description : tool for reverse engineering Android apps


It is a tool for reverse engineering 3rd party, closed, binary Android
apps. It can decode resources to nearly original form and rebuild them
after making some modifications; it makes possible to debug smali code
step by step. Also it makes working with app easier because of
project-like files structure and automation of some repetitive tasks
like building apk, etc.

It is NOT intended for piracy and other non-legal uses. It could be used
for localizing, adding some features or support for custom platforms and
other GOOD purposes. Just try to be fair with authors of an app, that
you use and probably like.

Reiner Herrmann    has done all of the packaging
work so far.
--- End Message ---
--- Begin Message ---
Source: apktool
Source-Version: 2.0.2+dfsg-1

We believe that the bug you reported is fixed in the latest version of
apktool, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 806...@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Markus Koschany  (supplier of updated apktool package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmas...@ftp-master.debian.org)


-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Wed, 17 Feb 2016 17:27:21 +0100
Source: apktool
Binary: apktool
Architecture: source all
Version: 2.0.2+dfsg-1
Distribution: unstable
Urgency: medium
Maintainer: Android tools Maintainer 

Changed-By: Markus Koschany 
Description:
 apktool- tool for reverse engineering Android apk files
Closes: 806855
Changes:
 apktool (2.0.2+dfsg-1) unstable; urgency=medium
 .
   * Initial release (Closes: #806855)
Checksums-Sha1:
 aa20fede57b89c67c00dbb7dbab06100d6798724 2377 apktool_2.0.2+dfsg-1.dsc
 e180e8af1dfdd19c3314e39887e323bc460c0795 491096 apktool_2.0.2+dfsg.orig.tar.xz
 72f959c71aff10780d02d4c331bf9a846ff5ada2 7676 
apktool_2.0.2+dfsg-1.debian.tar.xz
 b902f0a53ef34e0c9df4e03cfa261766098dd299 1288334 apktool_2.0.2+dfsg-1_all.deb
Checksums-Sha256:
 83de1e0fb55317e8f094b878f62935e538dfa7686755bb0405967ab972791f72 2377 
apktool_2.0.2+dfsg-1.dsc
 9a3737aa524a73aebbc62bcb0e81261ede09ee11f72ff4495babf4a25109 491096 
apktool_2.0.2+dfsg.orig.tar.xz
 9251bdce5f92e3806561aa853d83cf34b630fff69faa657c394b5e346bdc3f5a 7676 
apktool_2.0.2+dfsg-1.debian.tar.xz
 0290fe0b621def3258e46130adb21d420d502cfd0da67e9029bcb8a7ff72ea38 1288334 
apktool_2.0.2+dfsg-1_all.deb
Files:
 0e6f5f4d4b5170c5a807a5323aa0b5f2 2377 devel optional apktool_2.0.2+dfsg-1.dsc
 67f482d88e5b1920ebbadeb97ae0d732 491096 devel optional 
apktool_2.0.2+dfsg.orig.tar.xz
 5504ace8ebfb52061b29173d514f3185 7676 devel optional 
apktool_2.0.2+dfsg-1.debian.tar.xz
 3e942a5186d49517ea50781a75800d74 1288334 devel optional 
apktool_2.0.2+dfsg-1_all.deb

-BEGIN PGP SIGNATURE-
Version: GnuPG v1

iQJ8BAEBCgBmBQJWxKF+XxSAAC4AKGlzc3Vlci1mcHJAbm90YXRpb25zLm9w
ZW5wZ3AuZmlmdGhob3JzZW1hbi5uZXRBQ0YzRDA4OEVGMzJFREVGNkExQTgzNUZE
OUFEMTRCOTUxM0I1MUU0AAoJENmtFLlRO1HkGkAQAKKVm1sdWUAjMMl8yUJTQhq8
oGyiWmO9GcZtTH5raSwssBnKzBOXj50nSg0rW8dmi2Zso6/qaT2IUGZjPRuWyA+Q
+2uxv3GdF7VV0n6naaGntZRh0MqH1/18sm2JBcz9ga51pDSqwWApLinh+AeHgtuN
+B3NHRATCHiDyd9GjEz+UCr1IH7qeRNKyFupwVpo3lJSu9aRq/jvv3ol/PJNilr9

Bug#815025: O: python-braintree

[Alessio Treglia]

Package: wnpp
Severity: normal


Hi,

Due to the lack of time I intend to orphan python-braintree.

Cheers!

Bug#815023: RFP: paperless -- Scan, index, and archive all of your paper documents

[James Valleroy]

Package: wnpp
Severity: wishlist

* Package name: paperless
  Upstream Author : Daniel Quinn 
* URL : https://github.com/danielquinn/paperless
* License : GPL
  Programming Lang: Python
  Description : Scan, index, and archive all of your paper documents

Paperless is a server application for indexing and archiving paper
documents.
It includes a consumption script to OCR scanned PDF files and index them
into a
local database, and a web frontend to search and download the files.

I think this would be a very useful to include in FreedomBox.




signature.asc
Description: OpenPGP digital signature

Bug#814352: ITP: veracrypt -- Cross-platform on-the-fly encryption

[Francesco Poli]

On Wed, 17 Feb 2016 11:39:00 + Mike Gabriel wrote:

[...]
> (taking debian-edu-pkg-team @ Alioth into the discussion loop, as that  
> would be the maintainer team for VeraCrypt in Debian)

OK, fine.

> 
> On  Mi 17 Feb 2016 00:17:28 CET, Francesco Poli wrote:
> 
> > On Wed, 10 Feb 2016 18:07:48 +0100 Mike Gabriel wrote:
> >
> > [...]
> >>  1.
> >>  Is VeraCrypt suitable for the non-free section of Debian?
> >
> > I am not sure: the TC-3.0 license is still fairly unclear (at least
> > to my eyes), so I cannot really speculate on its possible
> > implications...
> 
> Hmmm... ok. I think the ftpmasters would be glad about some guidance  
> on why you see veracrypt (not the TC 3.0 license, see below) unfit for  
> Debian non-free. I have already uploaded VeraCrypt to Debian  
> NEW/non-free and it is waiting approval/rejection from an ftpmaster.

I didn't say that veracrypt is clearly unfit for the non-free archive.

I said that the TC-3.0 license is unclear, and that I am consequently
not sure about the possibility to distribute a package including code
under such a license (even in the non-free archive).

I hope I clarified what I meant.

> 
> Also, it'd be interesting if the upstream people of VeraCrypt can  
> apply any change(s) to the upstream sources, their VeraCrypt license  
> or whatever, to make the software fit at least for Debian non-free.

If VeraCrypt upstream developers (IDRIX, I suppose) are in good terms
with the copyright holders for the Truecrypt version they forked from
(TrueCrypt Developers Association, I suppose) and can persuade them to
agree to a re-licensing of the code-base, the outcome could be
definitely interesting.
Everything re-licensed under the terms of the 3-clause-BSD license
would be a huge win for everyone, since it would mean the possibility
to upload veracrypt to Debian main (assuming no other showstopper comes
up).

[...]
> >>  3.
> >>  The new upstream maintainer also states that all novelties of the code
> >>  are licensed under the Apache-2.0 license, but as long as any line from
> >>  the original code sticks out, the licensing of the code is governed by
> >>  the original Truecrypt 3.0 license, right?
> > [...]
> >
> > Then I am not sure I understand why the debian/copyright file draft
> > you sent states
> >   Files: *
> >   Copyright: 2003-2011, TrueCrypt Developers Association
> >  2013-2014, IDRIX
> >   License: TC-3.0 or Ms-PL
> >
> > What's Ms-PL ? Shouldn't it be Apache-2.0 ?
> > Moreover, "or" means dual-licensing, but I understand this to be a
> > code-mixing case: I think "and" should be used instead.
> >
> > See
> > https://www.debian.org/doc/packaging-manuals/copyright-format/1.0/
> > for more details.
> 
> Oh, I am sorry. With this mail, I have attached the latest  
> debian/copyright file as I have it now after having it reworked two  
> days ago. I should have sent an updated copy to debian-legal  
> immediately. Sorry for that.

Mmmmh, I cannot see any attachment. Was it forgotten or lost somehow?

> 
> As it seems, the VeraCrypt upstream people have come up with a new  
> license, the VeraCrypt license. See attached copyright file for details.

Please send the updated debian/copyright file...

[...]
> > Anyway, without looking at any further details, a question arises:
> > why are you packaging veracrypt for the non-free archive? what does
> > it offer that tcplay doesn't?
> >
> > See
> > https://packages.debian.org/sid/tcplay
> > https://tracker.debian.org/pkg/tcplay
> 
> I have checked tcplay and also zulucrypt-gui again. We provide  
> veracrypt to teachers / students at school that come from the Windows  
> realm mainly. For them, it is essential to recognize some pieces of  
> software on our Linux environment that they have become so used to on  
> their Windows machines. VeraCrypt (for formerly TrueCrypt) is such an  
> application. Teachers here in Germany have to encrypt all personal  
> data that they carry around, so they need _one_ cross platform tool  
> for that. I'd be happy to provide that piece of software to other  
> people in Debian (Edu).
> 
> Working on the command line (tcplay) is not an option for the  
> teachers, we support here.

Then I hope someone will develop a GUI front-end for tcplay, if it is so
important for at least one category of users...

> And personally, I just tried out  
> zulucrypt-gui the second time and I could not get it running as  
> non-root. This is probably possible, I did not spend much time on  
> this, but honestly, I prefer a solution that works right away. Also  
> ZuluCrypt feels a little nerdy, not so user friendly as VeraCrypt  
> currently is.

Mmmmh, I see.


-- 
 http://www.inventati.org/frx/
 There's not a second to spare! To the laboratory!
. Francesco Poli .
 GnuPG key fpr == CA01 1147 9CD2 EFDF FB82  3925 3E1C 27E1 1F69 BFFE


pgpXqMNnPmFZa.pgp
Description: PGP signature

Processed: paredit-el: block ITA 736380 by RFS 814956

[Debian Bug Tracking System]

Processing commands for cont...@bugs.debian.org:

> block 736380 by 814956
Bug #736380 [wnpp] ITA: paredit-el -- Emacs minor mode for structurally editing 
Lisp code
736380 was blocked by: 814825
736380 was not blocking any bugs.
Added blocking bug(s) of 736380: 814956
> stop
Stopping processing here.

Please contact me if you need assistance.
-- 
736380: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=736380
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

Bug#801253: Fwd: Re: reason not to upload new versions as fast as possible to unstable? (expect attempt to migrate to testing )

[toogley]

forgot to reply all


 Forwarded Message 
Subject: Re: reason not to upload new versions as fast as possible to 
unstable? (expect attempt to migrate to testing )

Date: Wed, 17 Feb 2016 19:59:02 +0100
From: toogley 
To: Gianfranco Costamagna 

Hey.

yeah, i've got my answer. :)

regarding the upload: why shows lintian in the offical debian build
still the

wicd-gtk

W command-in-menu-file-and-desktop-file
wicd-gtk usr/share/menu/wicd-gtk:5

bug? My local lintian doesn't report this issue.



Please note, a challenge for you/upstream.
http://debomatic-amd64.debian.net/distribution#unstable/wicd/1.7.4+tb2-1/buildlog
it seems to be failing when LANG is set to somewhat else:
Traceback (most recent call last):

[...]

dh_auto_build: python setup.py build --force returned exit code 1


I don't know how to fix this unfortunately!
maybe something like "if $LANG is set use, otherwise skip?"?




The next days, i'll have a look at this issue, maybe i can provide some
additional information.

Processed (with 1 error): Bug#702990: vizigrep: changing to RFP

[Debian Bug Tracking System]

Processing commands for cont...@bugs.debian.org:

> retitle 702990 ITP: vizigrep -- Graphical file contents search tool
Bug #702990 [wnpp] RFP: vizigrep -- Graphical file contents search tool using 
regular expressions
Changed Bug title to 'ITP: vizigrep -- Graphical file contents search tool' 
from 'RFP: vizigrep -- Graphical file contents search tool using regular 
expressions'
> using regular expressions
Unknown command or malformed arguments to command.
> owner 702990 !
Bug #702990 [wnpp] ITP: vizigrep -- Graphical file contents search tool
Owner recorded as "Jason J. Herne" .
> thanks
Stopping processing here.

Please contact me if you need assistance.
-- 
702990: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=702990
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

Bug#753012: ITP: vagrant-libvirt -- Vagrant provider for libvirt

[intrigeri]

Hi Miguel, Antonio and others,

Miguel Landaeta wrote (14 Aug 2015 20:10:32 GMT) :
> On Thu, Aug 13, 2015 at 03:52:11PM +0200, intrigeri wrote:
>> It would not be reasonable of me to add these packages to my plate,
>> but perhaps the pkg-ruby-extras team could?

> Awesome, if nobody beats me to it I could take a look at them and
> upload them soon.

Excellent!

I wanted to move this forward a bit, so I've merged Antonio's previous
work into mine (we had Git history without any common ancestor), and
then updated both packages to the latest upstream release.

The current state of my work can be found there:

  https://git-tails.immerda.ch/intrigeri/ruby-fog-libvirt/
  https://git-tails.immerda.ch/intrigeri/vagrant-libvirt/

The resulting binary packages have seen a bit of manual testing,
conducted by my Tails team-mate anonym (Cc'ed). I assume he'll be
happy to go on testing preliminary packages if needed :)

It would be awesome if this could be uploaded within the next few
weeks or months (we'll likely need this for working on making Tails
builds reproducible soonish, and in any case getting rid of our
dependency on VirtualBox would make the life of some of our developers
easier).

Antonio: for vagrant-libvirt, it seems that you haven't pushed your
upstream and pristine-tar branches, nor the upstream/0.0.31 tag, while
you pushed the corresponding changes in the master branch. And for
ruby-fog-libvirt, it seems that you haven't pushed the upstream/0.0.2
tag. Can you please push the missing bits? Thanks in advance!

Cheers,
--
intrigeri

Processed: changes to bug #783432

[Debian Bug Tracking System]

Processing commands for cont...@bugs.debian.org:

> retitle 783432 ITP: photo-booth -- Motion-detecting photo booth toy
Bug #783432 [wnpp] ITP: booths -- Motion-detecting photo booth toy
Changed Bug title to 'ITP: photo-booth -- Motion-detecting photo booth toy' 
from 'ITP: booths -- Motion-detecting photo booth toy'
>
End of message, stopping processing here.

Please contact me if you need assistance.
-- 
783432: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=783432
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

Processed: ITP: android-platform-development -- Source pacakge for etc1tool

[Debian Bug Tracking System]

Processing commands for cont...@bugs.debian.org:

> owner 814964 殷啟聰 
Bug #814964 [wnpp] ITP: android-platform-development -- Source pacakge for 
etc1tool
Owner recorded as 殷啟聰 .
> stop
Stopping processing here.

Please contact me if you need assistance.
-- 
814964: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=814964
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

Bug#815002: O: malaga

[Timo Jyrinki]

Package: wnpp
Severity: normal

With suomi-malaga (now voikko-fi) and libvoikko no longer using malaga, 
I have no specific interest in maintaining malaga anymore.

Voikko-fi now uses 'foma' finite-state compiler, and libvoikko uses its 
internal code instead of relying on a library. As of today there are no 
remaining reverse dependencies.

The upstream has not seen changes in 2008. During the last 6 months 
the website has also disappeared but a snapshot may be browsed at:

https://web.archive.org/web/20150801232341/http://home.arcor.de/bjoern-beutel/malaga/

However, malaga still seems functional and has seen the required minimal 
maintenance, so it's not in an immediate need of removing.

The most apparent packaging maintenance need would be to fix the 
reported malaga-mode bugs.

Bug#814352: ITP: veracrypt -- Cross-platform on-the-fly encryption

[Mike Gabriel]

Hi again,

On  Mi 17 Feb 2016 12:39:00 CET, Mike Gabriel wrote:

I have checked tcplay and also zulucrypt-gui again. We provide  
veracrypt to teachers / students at school that come from the  
Windows realm mainly. For them, it is essential to recognize some  
pieces of software on our Linux environment that they have become so  
used to on their Windows machines. VeraCrypt (for formerly  
TrueCrypt) is such an application. Teachers here in Germany have to  
encrypt all personal data that they carry around, so they need _one_  
cross platform tool for that. I'd be happy to provide that piece of  
software to other people in Debian (Edu).


Working on the command line (tcplay) is not an option for the  
teachers, we support here. And personally, I just tried out  
zulucrypt-gui the second time and I could not get it running as  
non-root. This is probably possible, I did not spend much time on  
this, but honestly, I prefer a solution that works right away. Also  
ZuluCrypt feels a little nerdy, not so user friendly as VeraCrypt  
currently is.


just a short follow up, why I want to see VeraCrypt installable from Debian:

The current upstream maintainers offer binary blobs of VeraCrypt for  
installation on Linux, also Debian.


With the binary builds, I see the issue that no exact sources of the  
builds are available. The builds probably have been derived from the  
upstream Git or source release tarballs, but who knows.


Mike
--

DAS-NETZWERKTEAM
mike gabriel, herweg 7, 24357 fleckeby
fon: +49 (1520) 1976 148

GnuPG Key ID 0x25771B31
mail: mike.gabr...@das-netzwerkteam.de, http://das-netzwerkteam.de

freeBusy:
https://mail.das-netzwerkteam.de/mailxchange/kronolith/fb.php?u=m.gabriel%40das-netzwerkteam.de


pgps6ixQoquJB.pgp
Description: Digitale PGP-Signatur

Bug#814352: ITP: veracrypt -- Cross-platform on-the-fly encryption

[Mike Gabriel]

Hi Francesco,
(taking debian-edu-pkg-team @ Alioth into the discussion loop, as that  
would be the maintainer team for VeraCrypt in Debian)


On  Mi 17 Feb 2016 00:17:28 CET, Francesco Poli wrote:


On Wed, 10 Feb 2016 18:07:48 +0100 Mike Gabriel wrote:

[...]

 1.
 Is VeraCrypt suitable for the non-free section of Debian?


I am not sure: the TC-3.0 license is still fairly unclear (at least
to my eyes), so I cannot really speculate on its possible
implications...


Hmmm... ok. I think the ftpmasters would be glad about some guidance  
on why you see veracrypt (not the TC 3.0 license, see below) unfit for  
Debian non-free. I have already uploaded VeraCrypt to Debian  
NEW/non-free and it is waiting approval/rejection from an ftpmaster.


Also, it'd be interesting if the upstream people of VeraCrypt can  
apply any change(s) to the upstream sources, their VeraCrypt license  
or whatever, to make the software fit at least for Debian non-free.



 .
 2.
 I suppose VeraCrypt is not suitable for the main section of Debian
 as the TC-3.0 license is not DFSG-compliant. I suppose
 this has not changed for VeraCrypt, compared to TrueCrypt, right?


Personally, I think this package should stay away from Debian main.
As I said, I am not even sure it is safe to be distributed in the
non-free archive.


Ok, I fully agree for the veracrypt license construct not being  
suitable for Debian main.

  .

 3.
 The new upstream maintainer also states that all novelties of the code
 are licensed under the Apache-2.0 license, but as long as any line from
 the original code sticks out, the licensing of the code is governed by
 the original Truecrypt 3.0 license, right?

[...]

Then I am not sure I understand why the debian/copyright file draft
you sent states
  Files: *
  Copyright: 2003-2011, TrueCrypt Developers Association
 2013-2014, IDRIX
  License: TC-3.0 or Ms-PL

What's Ms-PL ? Shouldn't it be Apache-2.0 ?
Moreover, "or" means dual-licensing, but I understand this to be a
code-mixing case: I think "and" should be used instead.

See
https://www.debian.org/doc/packaging-manuals/copyright-format/1.0/
for more details.


Oh, I am sorry. With this mail, I have attached the latest  
debian/copyright file as I have it now after having it reworked two  
days ago. I should have sent an updated copy to debian-legal  
immediately. Sorry for that.


As it seems, the VeraCrypt upstream people have come up with a new  
license, the VeraCrypt license. See attached copyright file for details.


My proposed Debian package is also available online [1], you may want  
to grab the .dsc file and check the upstream files, as well.


[1] http://packages.sunweavers.net/debian/pool/non-free/v/veracrypt/


Anyway, without looking at any further details, a question arises:
why are you packaging veracrypt for the non-free archive? what does
it offer that tcplay doesn't?

See
https://packages.debian.org/sid/tcplay
https://tracker.debian.org/pkg/tcplay


I have checked tcplay and also zulucrypt-gui again. We provide  
veracrypt to teachers / students at school that come from the Windows  
realm mainly. For them, it is essential to recognize some pieces of  
software on our Linux environment that they have become so used to on  
their Windows machines. VeraCrypt (for formerly TrueCrypt) is such an  
application. Teachers here in Germany have to encrypt all personal  
data that they carry around, so they need _one_ cross platform tool  
for that. I'd be happy to provide that piece of software to other  
people in Debian (Edu).


Working on the command line (tcplay) is not an option for the  
teachers, we support here. And personally, I just tried out  
zulucrypt-gui the second time and I could not get it running as  
non-root. This is probably possible, I did not spend much time on  
this, but honestly, I prefer a solution that works right away. Also  
ZuluCrypt feels a little nerdy, not so user friendly as VeraCrypt  
currently is.


Greets,
Mike




--

DAS-NETZWERKTEAM
mike gabriel, herweg 7, 24357 fleckeby
fon: +49 (1520) 1976 148

GnuPG Key ID 0x25771B31
mail: mike.gabr...@das-netzwerkteam.de, http://das-netzwerkteam.de

freeBusy:
https://mail.das-netzwerkteam.de/mailxchange/kronolith/fb.php?u=m.gabriel%40das-netzwerkteam.de


pgpfRxosEYtEz.pgp
Description: Digitale PGP-Signatur

Processed: your mail

[Debian Bug Tracking System]

Processing commands for cont...@bugs.debian.org:

> owner 712830 !
Bug #712830 [wnpp] ITP: dump1090-mutability -- simple Mode S decoder
Owner recorded as Raphael Geissert .
> thanks
Stopping processing here.

Please contact me if you need assistance.
-- 
712830: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=712830
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

Processed: Re: Bug#712830: ITP: dump1090 -- simple Mode S decoder for RTLSDR devices

[Debian Bug Tracking System]

Processing control commands:

> retitle -1 ITP: dump1090-mutability -- simple Mode S decoder
Bug #712830 [wnpp] RFP: dump1090 -- simple Mode S decoder for RTLSDR devices
Changed Bug title to 'ITP: dump1090-mutability -- simple Mode S decoder' from 
'RFP: dump1090 -- simple Mode S decoder for RTLSDR devices'

-- 
712830: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=712830
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

Bug#712830: ITP: dump1090 -- simple Mode S decoder for RTLSDR devices

[Raphael Geissert]

Control: retitle -1 ITP: dump1090-mutability -- simple Mode S decoder
for RTLSDR devices
Control: owner -1 !
thanks

Hi,

I've been working on the existing Debian packaging of mutability's
dump1090 fork and it should be in a good shape for including it in
Debian.
A few changes still need to be made, but I'll get to those. In the
mean time, I'm taking the RFP.

If anyone sees any interest in packaging any of the other forks of
dump1090 please chime-in and clone the report.

References:
https://github.com/mutability/dump1090
https://bugs.debian.org/712830

Cheers,
-- 
Raphael Geissert - Debian Developer
www.debian.org - get.debian.net

Bug#814983: ITP: python-m3u8 -- Python m3u8 parser

[Ondřej Nový]

Package: wnpp
Severity: wishlist
Owner: "Ondřej Nový" 

* Package name: python-m3u8
  Version : 0.2.8
  Upstream Author : Globo.com
* URL : https://github.com/globocom/m3u8
* License : MIT
  Programming Lang: Python
  Description : Python m3u8 parser

This library can load and parse m3u8 HTTP Live Streaming (HLS) playlist.
It supports DRM and variable bitrates.

I'm using this library and I'm going to maintain it myself. I'm DM,
so I need sponsor for first upload to NEW queue.

Bug#814784: ITP: diamond -- smart data producer for graphite graphing package

[Sandro Tosi]

On Wed, Feb 17, 2016 at 8:38 AM, Filippo Giunchedi  wrote:
> On Tue, Feb 16, 2016 at 09:59:12AM +, Sandro Tosi wrote:
>> > FWIW at Wikimedia Foundation we have a diamond deployment, debian package 
>> > is
>> > at https://gerrit.wikimedia.org/r/operations/debs/python-diamond though at
>>
>> returns a "Not Found"; there is also an upstream debian/ dir, I will
>> reuse some of it i guess
>
> err, yeah gerrit won't let you browse it, it is 'git clone'-able though!

I'm too lazy for that! ;)

it's in NEW now, and on PAPT repo (at
http://anonscm.debian.org/viewvc/python-apps/packages/diamond/trunk/debian/)

-- 
Sandro "morph" Tosi
My website: http://sandrotosi.me/
Me at Debian: http://wiki.debian.org/SandroTosi
G+: https://plus.google.com/u/0/+SandroTosi

Bug#814784: ITP: diamond -- smart data producer for graphite graphing package

[Filippo Giunchedi]

On Tue, Feb 16, 2016 at 09:59:12AM +, Sandro Tosi wrote:
> > FWIW at Wikimedia Foundation we have a diamond deployment, debian package is
> > at https://gerrit.wikimedia.org/r/operations/debs/python-diamond though at
> 
> returns a "Not Found"; there is also an upstream debian/ dir, I will
> reuse some of it i guess

err, yeah gerrit won't let you browse it, it is 'git clone'-able though!

HTH!
filippo
-- 
http://esaurito.net - 0x99D49B6B00CAD1E5 - ⠠⠵

Bug#814964: ITP: android-platform-development -- Source pacakge for etc1tool

[殷啟聰]

Package: wnpp
Severity: wishlist

* Package Name: android-platform-development
  Version : 6.0.1+r16-1
* Upstream Author : Android Open Source Project
* URL : https://android.googlesource.com/platform/development
* License : Apache-2.0
* Programming Lang: C++
* Description : Platform engineering tools, sample code
* Alioth  :
http://anonscm.debian.org/cgit/android-tools/android-platform-development.git

This package produces etc1tool, which is part of Android SDK Platform-tools.