Bug#895426: RFA: ocsinventory-agent -- Hardware and software inventory tool (client)

2018-04-11 Thread Pierre Chifflier 
Package: wnpp
Severity: normal

Hi,

I have no more time to maintain ocsinventory, so I'm RFA-ing this
package.
Adoption is planned by the Debian-Perl group.

Pierre

Bug#895424: RFA: ocsinventory-server -- Hardware and software inventory tool (Communication Server)

2018-04-11 Thread Pierre Chifflier 
Package: wnpp
Severity: normal

Hi,

I have no more time to maintain ocsinventory, so I'm RFA-ing this
package.
Adoption is planned by the Debian-Perl group.

Pierre

Bug#815846: ITP: tpm2-tss -- TPM (Trusted Platform Module) 2.0 Software Stack

2016-03-05 Thread Pierre Chifflier 
On Wed, Feb 24, 2016 at 09:08:58PM -0500, Mathieu Trudel-Lapierre wrote:
> Package: wnpp
> Severity: wishlist
> Owner: "Mathieu Trudel-Lapierre" 
> 
> * Package name: tpm2-tss
>   Version : 0.9.8
>   Upstream Author : Will Arthur 
> * URL : https://github.com/01org/TPM2.0-TSS
> * License : MIT/BSD
>   Programming Lang: C, C++
>   Description : TPM (Trusted Platform Module) 2.0 Software Stack
> 
> TPM2.0-TSS is a software stack comprising a few layers:
>  - Feature API (FAPI)
>  - Enhanced System API (ESAPI)
>  - System API (SAPI)
>  - TPM Command Transmission Interface (TCTI)
>  - Trusted Access Broker/Resource Manager (TAB/RM)
> 
> These are used to interface with TPM chips to provide specific cryptographic
> services to the system in a secure manner.
> 
> TPM2.0-TSS is a requirement (for tss2 and tcti) for tpm2-tools (TPM2.0-tools),
> for which I will file another ITP.
> 
> It may be relevant here to merge efforts for maintaining TPM tools in a team,
> there has been lots of work by pollux in maintaining the trousers stack for
> which this project seeks to be an improvement / evolution.
> 

Hi Mathieu,

I was indeed intending to package it, since we discussed that during the
last TCG meeting in San Francisco.
If you are OK to create a team and a project on alioth, I can do it if
you want.

Regards,
Pierre


signature.asc
Description: PGP signature

Bug#702255: efitools: changing back from ITP to RFP

2015-09-23 Thread Pierre Chifflier 
retitle 702255 ITP: efitools -- Tools to manipulate EFI secure boot keys and 
signatures
owner 702255 !
block 702255 by 702254
thanks

Hi,

I've finally managed to get some time to work again on this ITP.

I've uploaded the sbsigntool package to NEW (See #702254), which is
required to build efitools. If/when sbsigntool is accepted, upload for
efitools will follow.

Pierre

Bug#702254: sbsigntool package

2015-09-23 Thread Pierre Chifflier 
tags 702254 + pending
thanks

Hi,

I finally got some time to work on the package again, and fix it
according to the answers from FTPmasters.

I'll upload it to NEW.

Cheers,
Pierre

Bug#702254: ITP: sbsigntool -- Utility for signing and verifying files for UEFI Secure Boot

2013-03-04 Thread Pierre Chifflier 
Package: wnpp
Severity: wishlist
Owner: Pierre Chifflier pol...@debian.org

* Package name: sbsigntool
  Version : 0.6
  Upstream Author : Jeremy Kerr jeremy.k...@canonical.com
* URL : http://packages.ubuntu.com/quantal/sbsigntool
* License : GPL-3+ with OpenSSL exception
  Programming Lang: C
  Description : Utility for signing and verifying files for UEFI Secure Boot

 This package provides utilities that can be used for signing PE programs
 for use with UEFI Secure Boot, and for verifying the signatures included
 in the same.


-- 
To UNSUBSCRIBE, email to debian-wnpp-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: 
http://lists.debian.org/20130304145552.24140.15174.report...@ks26688.kimsufi.com

Bug#702255: ITP: efitools -- Tools to manipulate EFI secure boot keys and signatures

2013-03-04 Thread Pierre Chifflier 
Package: wnpp
Severity: wishlist
Owner: Pierre Chifflier pol...@debian.org

* Package name: efitools
  Version : 1.4.0
  Upstream Author : James Bottomley jbottom...@parallels.com
* URL : http://blog.hansenpartnership.com/uefi-secure-boot/
* License : GPLv2
  Programming Lang: C
  Description : Tools to manipulate EFI secure boot keys and signatures

 This package installs a variety of tools for manipulating keys and binary
 signatures on UEFI secure boot platforms.
 The tools provide access to the keys and certificates stored in the
 secure variables of the UEFI firmware, usually in the NVRAM area.


-- 
To UNSUBSCRIBE, email to debian-wnpp-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: 
http://lists.debian.org/20130304150152.28049.42301.report...@ks26688.kimsufi.com

Bug#650842: debian packages for libbfio

2013-03-03 Thread Pierre Chifflier 
On Sun, Mar 03, 2013 at 04:17:46PM +0100, Pierre Chifflier wrote:
 Hi Julien,
 
 I am maintaining the Debian packages for DFF, an open source forensics
 application and framework.
 The new version of dff requires a dependency on libbfio, and I saw you
 have filled an ITP (#650842) for it. Since it have some packages ready

Err, should read: Since I have some packages ...

/P

 here, I would like to know if you are still working on the packaging, or
 if we could take these one for an initial upload.
 
 If you want, we could co-maintain it (and set the package ownership to
 the Debian Forensics team).
 
 Cheers,
 Pierre
 
 ___
 forensics-devel mailing list
 forensics-de...@lists.alioth.debian.org
 http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/forensics-devel
 


-- 
To UNSUBSCRIBE, email to debian-wnpp-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/20130303152312.gm27...@mail.wzdftpd.net

Bug#650842: debian packages for libbfio

2013-03-03 Thread Pierre Chifflier 
Hi Julien,

I am maintaining the Debian packages for DFF, an open source forensics
application and framework.
The new version of dff requires a dependency on libbfio, and I saw you
have filled an ITP (#650842) for it. Since it have some packages ready
here, I would like to know if you are still working on the packaging, or
if we could take these one for an initial upload.

If you want, we could co-maintain it (and set the package ownership to
the Debian Forensics team).

Cheers,
Pierre


-- 
To UNSUBSCRIBE, email to debian-wnpp-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/20130303151746.gk27...@mail.wzdftpd.net

Bug#575358: debian packages for libpff

2013-03-03 Thread Pierre Chifflier 
Hi,

I am maintaining the Debian packages for DFF, an open source forensics
application and framework.
The new version of dff requires a dependency on libpff, and I saw an
ITP is already filled (#575358) for it.
Since I have some packages ready here, I would like to know if anyone is
working on it, or if I can upload the packages to unstable (same as
libbfio, set maintainer to the Forensics Team).

Cheers,
Pierre


-- 
To UNSUBSCRIBE, email to debian-wnpp-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/20130303152231.gl27...@mail.wzdftpd.net

Bug#649599: ITP: tpm-tools -- Management tools for the TPM hardware

2011-11-22 Thread Pierre Chifflier 
Package: wnpp
Severity: wishlist
Owner: Pierre Chifflier pol...@debian.org


* Package name: tpm-tools
  Version : 1.3.7
  Upstream Author : Kent Yoder shpedoi...@gmail.com
* URL : http://trousers.sourceforge.net/
* License : CPL (http://www.opensource.org/licenses/cpl1.0.php)
  Programming Lang: C
  Description : Management tools for the TPM hardware

 tpm-tools is a group of tools to manage and utilize the Trusted Computing
 Group's TPM hardware. TPM hardware can create, store and use RSA keys securely
 (without ever being exposed in memory), verify a platform's software state
 using cryptographic hashes and more.  .
 This package contains tools to allow the platform administrator the ability
 to manage and diagnose the platform's TPM. Additionally, the package contains
 commands to utilize some of the capabilities available in the TPM PKCS#11
 interface implemented in the openCryptoki project.

Note that this is not really a new package: it was part of main, but was
orphaned, and removed due to the lack of maintainer and low popcon [1].
Since I'm now using this tool, and that it is required to make a TPM
work, I'm adopting it.

Pierre

[1] http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=543927



-- 
To UNSUBSCRIBE, email to debian-wnpp-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: 
http://lists.debian.org/2022141809.20149.40359.report...@ks26688.kimsufi.com

Bug#502305: ulogd2: Status of package?

2011-11-08 Thread Pierre Chifflier 
On Thu, Nov 03, 2011 at 04:36:31PM +0100, Nils Olav Fossum wrote:
 Hi,
 
 I just wonder if there is any news on getting the ulogd2 package into debian.

Hi,

Thanks for raising this bug report .. I had tons of stuff to do, and
left the ulogd packages for too long.
I have started again some work here.

 
 Could it be uploaded to experimental as a first?
 That way it should get some testing..

Indeed.
The libnetfilter-log problem is now resolved (version in unstable is
ok). The main problem remains the upgrade path (if any) from ulogd.

 
 I need ulog2 on a handful of machines now, so I started with the files at
 https://www.wzdftpd.net/downloads/ulogd2-deb/
 
 I used instructions from Jim Barber  
 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=502305#73 
 (thanks, that saved me a lot of research time!) 
 to build the package on a amd64 wheezy machine.
 
 The build failed at the end creating ulogd-output-pcap_2.0.0~beta4-1_amd64.deb
 It could not find usr/lib/ulogd/ulogd_output_PCAP.so*

This is caused by the multiarch changes in libpcap-dev.

 
 I applied some of the patches from upstream, but that did not help.
 
 In the end I cheated, and just commented out the line 
 usr/lib/ulogd/ulogd_output_PCAP.so*
 in debian/ulogd-output-pcap.install.
 Not a real fix of course..

I have solved this issue here. Part of the fix is to use:

override_dh_auto_configure:
,,,dh_auto_configure -- 
--with-pcap-lib=/usr/lib/$(DEB_HOST_MULTIARCH)

in debian/rules.

Regards,
Pierre



-- 
To UNSUBSCRIBE, email to debian-wnpp-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/2008194856.gm25...@mail.wzdftpd.net

Bug#644928: ITP: dff -- A powerful, efficient and modular digital forensic tool

2011-10-10 Thread Pierre Chifflier 
Package: wnpp
Severity: wishlist
Owner: Pierre Chifflier pol...@debian.org

* Package name: dff
  Version : 1.2.0
  Upstream Author : ArxSys
* URL : http://www.digital-forensic.org/
* License : GPLv2
  Programming Lang: C and Python
  Description : A powerful, efficient and modular digital forensic tool

This is the description from the website:

The Digital Forensics Framework (DFF) is both a digital investigation
tool and a development platform. The framework is used by system
administrators, law enforcement examinors, digital forensics researchers
and students, and security professionals world-wide. Written in Python
and C++, it exclusively uses Open Source technologies.
DFF combines an intuitive user interface with a modular and
cross-platform architecture.

DFF consists of tools, libraries, modules, and user interfaces. The
basic function of the framework is to agregate information and
methodologicaly analyze volumes, file systems, user and applications
data, while extracting metadata, deleted and hidden items. Information
are processed into virtual read-only containers, thus preserving the
integrity and authenticity of data.

BR,
Pierre



-- 
To UNSUBSCRIBE, email to debian-wnpp-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: 
http://lists.debian.org/20111010194628.10058.75958.report...@ks26688.kimsufi.com

Bug#619925: ITP: libtap-parser-sourcehandler-pgtap-perl -- Unit testing tools for pgTAP

2011-03-28 Thread Pierre Chifflier 
Package: wnpp
Severity: wishlist
Owner: Pierre Chifflier pol...@debian.org


* Package name: libtap-parser-sourcehandler-pgtap-perl
  Version : 3.25
  Upstream Author : David E. Wheeler
* URL : * 
http://search.cpan.org/dist/TAP-Parser-SourceHandler-pgTAP/
* License : Artistic and GPL
  Programming Lang: Perl
  Description : Unit testing tools for pgTAP

 TAP::Parser::SourceHandler::pgTAP is a set of tools for PostgreSQL unit
 testing. 
 It contains the pg_prove and pg_tapgen scripts, which allows running
 and harnessing pgTAP tests on command-line, and summarizing the
 results.
 TAP is the Test Anything Protocol (http://testanything.org/).



-- 
To UNSUBSCRIBE, email to debian-wnpp-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: 
http://lists.debian.org/20110328130719.23391.92345.report...@ks26688.kimsufi.com

Bug#618674: ITP: sagan-rules -- Real-time System Event Log Monitoring System [rules]

2011-03-17 Thread Pierre Chifflier 
Package: wnpp
Severity: wishlist
Owner: Pierre Chifflier pol...@debian.org

* Package name: sagan-rules
  Version : 10212010-r1
  Upstream Author : Champ Clark III ch...@softwink.com
* URL : http://sagan.softwink.com/
* License : BSD
  Programming Lang: other (text files)
  Description : Real-time System  Event Log Monitoring System [rules]

 Sagan is a multi-threaded, real time system- and event-log monitoring
 system, but with a twist. Sagan uses a “Snort” like rule set for
 detecting malicious events happening on your network and/or computer
 systems.
 If Sagan detects a potentially bad event, that event can be stored to a
 Snort database (MySQL/PostgreSQL), send it to a SIEM tool like Prelude,
 or send an email.
 .
 This package provides the rules for Sagan.



--
To UNSUBSCRIBE, email to debian-wnpp-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: 
http://lists.debian.org/20110317140905.26473.35592.report...@piche2.inl.fr

Bug#609893: ITP: sagan -- Real-time System Event Log Monitoring System

2011-01-13 Thread Pierre Chifflier 
Package: wnpp
Severity: wishlist
Owner: Pierre Chifflier pol...@debian.org

* Package name: sagan
  Version : 0.7.1
  Upstream Author : Champ Clark III ch...@softwink.com
* URL : http://sagan.softwink.com/
* License : GPLv2
  Programming Lang: C
  Description : Real-time System  Event Log Monitoring System

Sagan is a multi-threaded, real time system- and event-log monitoring
system, but with a twist. Sagan uses a “Snort” like rule set for
detecting “bad things” happening on your network and/or computer
systems.
If Sagan detects a “bad thing” happening, that event can be stored to a
Snort database (MySQL/PostgreSQL) and Sagan will correlate the event
with your Snort Intrusion Detection/Intrusion Prevention system or send
it to a SIEM tool like Prelude.
Sagan is meant to be used in a ‘centralized’ logging environment, but
will work fine as part of a standalone Host IDS system for workstations.



--
To UNSUBSCRIBE, email to debian-wnpp-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: 
http://lists.debian.org/20110113161215.14464.73755.report...@piche2.inl.fr

Bug#609121: ITP: nflog-bindings -- High-level bindings for libnetfilter_log

2011-01-06 Thread Pierre Chifflier 
Package: wnpp
Severity: wishlist
Owner: Pierre Chifflier pol...@debian.org

* Package name: nflog-bindings
  Version : 0.1
  Upstream Author : Pierre Chifflier chiffl...@edenwall.com
* URL : 
https://www.wzdftpd.net/redmine/projects/nflog-bindings/wiki/
* License : GPLv3
  Programming Lang: C, Python, Perl
  Description : High-level bindings for libnetfilter_log

 nflog-bindings is a set of high-level modules for several languages
 (Python and Perl, for the moment), for libnetfilter_log.
 It provides a userspace API to access packets that have been queued by
 the kernel packet filter using the NFLOG target.



-- 
To UNSUBSCRIBE, email to debian-wnpp-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: 
http://lists.debian.org/20110106102208.12282.86853.report...@piche2.inl.fr

Bug#502305: Temporary packages for ulogd2

2010-12-27 Thread Pierre Chifflier 
Hi (and merry Christmas),

Now that libnetfilter-log has been uploaded to sid, I can now work again
on the packages for ulogd2.

I've uploaded my current packages for ulogd2 at this location:
https://www.wzdftpd.net/downloads/ulogd2-deb/

I've rewritten the packaging from scratch, it was easier, (the packaging
stuff is almost empty). I've not taken the previous changelog / authors
/ uploaders etc., but it's part of the things I want to do.

The plan would be to upload to experimental, but before doing that, can
you check the packages and tell me if you agree with the current ones or
have any comment ?

Regards,
Pierre



-- 
To UNSUBSCRIBE, email to debian-wnpp-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/4d1875f6.1070...@debian.org

Bug#502305: ping ?

2010-12-16 Thread Pierre Chifflier 
Hi,

It's now more than 6 months since this bug was reported, and it is still
a blocker for ulogd2 (see #502305). Version 1.0.0 also fixes several
important bugs.

The packages are ready since some time and have been proposed in august,
with no reply (see
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=589157#10
).

I'm therefore resending this email to discuss a proper (maintainer)
upload and am still proposing my help again for libnetfilter-{queue,log}
packages.

Cheers,
Pierre



-- 
To UNSUBSCRIBE, email to debian-wnpp-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/4d0a1926.3050...@debian.org

Bug#606750: ITP: liblognorm -- Log normalizing library

2010-12-13 Thread Pierre Chifflier 
On 12/12/2010 06:23 PM, Ron Johnson wrote:
 On 12/11/2010 07:41 AM, Pierre Chifflier wrote:
 Package: wnpp
 Severity: wishlist
 Owner: Pierre Chifflierpol...@debian.org


 * Package name: liblognorm
Version : 0.1.0
Upstream Author : Rainer Gerhardsrgerha...@hq.adiscon.com
 * URL : http://liblognorm.sourceforge.net/
 * License : LGPL 2.1
Programming Lang: C
Description : Log normalizing library

   Liblognorm is a log normalizing library with a small tool called “the
   normalizer”. With this tool you can normalize all your logs. All you
   need is liblognorm, its dependencies and a rulebase that fits the logs
   you want to normalize.

 
 What does normalize all your logs mean?
 
Hi,

Log normalization happens when collecting logs from different sources
(servers, network equipments, applications etc.). Since all logs sources
are using different formats and vocabularies to report events, the idea
is to have a set of rules to describe what modifications you want to do
and the conditions to check. Normalizing your logs means you ensure they
will all follow a common standard.

Pierre



--
To UNSUBSCRIBE, email to debian-wnpp-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/4d0678ec.4030...@debian.org

Bug#606750: ITP: liblognorm -- Log normalizing library

2010-12-11 Thread Pierre Chifflier 
Package: wnpp
Severity: wishlist
Owner: Pierre Chifflier pol...@debian.org


* Package name: liblognorm
  Version : 0.1.0
  Upstream Author : Rainer Gerhards rgerha...@hq.adiscon.com
* URL : http://liblognorm.sourceforge.net/
* License : LGPL 2.1
  Programming Lang: C
  Description : Log normalizing library

 Liblognorm is a log normalizing library with a small tool called “the
 normalizer”. With this tool you can normalize all your logs. All you
 need is liblognorm, its dependencies and a rulebase that fits the logs
 you want to normalize.



--
To UNSUBSCRIBE, email to debian-wnpp-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: 
http://lists.debian.org/20101211134152.6901.41278.report...@ks26688.kimsufi.com

Bug#606754: ITP: libee -- Event expression library inspired by CEE

2010-12-11 Thread Pierre Chifflier 
Package: wnpp
Severity: wishlist
Owner: Pierre Chifflier pol...@debian.org


* Package name: libee
  Version : 0.1.0
  Upstream Author : Rainer Gerhards rgerha...@hq.adiscon.com
* URL : http://libee.sourceforge.net/
* License : LGPL 2.1
  Programming Lang: C
  Description : Event expression library inspired by CEE

 Libee is an event expression library which is inspired by the upcoming
 CEE standard. It provides capabilities to generate and emit messages in
 a set of standard format and read a set of different input formats.



-- 
To UNSUBSCRIBE, email to debian-wnpp-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: 
http://lists.debian.org/20101211133929.5939.84119.report...@ks26688.kimsufi.com

Bug#606752: ITP: libestr -- Helper functions for handling strings

2010-12-11 Thread Pierre Chifflier 
Package: wnpp
Severity: wishlist
Owner: Pierre Chifflier pol...@debian.org


* Package name: libestr
  Version : 0.1.0
  Upstream Author : Rainer Gerhards rgerha...@hq.adiscon.com
* URL : http://libestr.sourceforge.net/
* License : LGPL 2.1
  Programming Lang: C
  Description : Helper functions for handling strings

The 'libestr' library implements some helper functions to
handle strings and easily, escaping special characters etc.

This package is required for libee and liblognorm.



-- 
To UNSUBSCRIBE, email to debian-wnpp-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: 
http://lists.debian.org/20101211133536.4491.3276.report...@ks26688.kimsufi.com

Bug#502305: Any update on this?

2010-08-25 Thread Pierre Chifflier 
On Tue, Aug 24, 2010 at 05:12:02PM +0200, Martin Zobel-Helas wrote:
 Hi,
 
 are there plans when to upload ulogd2 to Debian?
 

Hi,

I plan to upload ulogd2 in experimental as soon as possible. The current
problems are:
- libnetfilter-log = 1.0.0 is required (See #589157)
- there is no upgrade plan from ulogd 1.x

I have recently updated the code to 2.0.0 beta4, without any problems,
so when (at least) the deps problem is resolved it should be fine.

Cheers,
Pierre



-- 
To UNSUBSCRIBE, email to debian-wnpp-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/20100825124146.gc6...@piche.inl.fr

Bug#502305: wishlist: new upstream release

2010-08-25 Thread Pierre Chifflier 
Hi,

libnetfilter_log = 1.0.0 is required by ulogd2 (See #502305) and 1.0.0
is available since July.
Is an upload ready ?

I have built the package just by updating the sources and updating the
changelog file. The package is available here:
http://www.wzdftpd.net/downloads/libnetfilter-log/

If you want, I can either NMU the package or maybe join the
co-maintainers list for libnetfilter-* ?

PS: same applies to libnetfilter-queue

Cheers,
Pierre




-- 
To UNSUBSCRIBE, email to debian-wnpp-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/20100825143454.gd6...@piche.inl.fr

Bug#502305: ulogd2 still not in Debian

2010-04-19 Thread Pierre Chifflier 
On Sat, Apr 17, 2010 at 10:53:47PM +0100, Jurij Smakov wrote:
 Hello,
 
 Over 18 months passed since the last update to this ITP, but ulogd2 is 
 still not in Debian. Recently we figured out that ulogd is completely 
 broken on sparc, and, more generally, whenever storage size of 
 long/size_t are different in kernel and in userspace (see [0] and bugs 
 merged with it). I've filed an upstream bug against ulogd, but it does 
 not look like it's going to be fixed. I would like to see a working 
 ulog solution on sparc and other arches in the next release, so it 
 looks like the only option we have is to get ulogd2 into the archive 
 ASAP. If you are no longer interested in working on it, I might find 
 interested developers and/or work on it myself, otherwise I would be 
 glad to review and test existing package, and sponsor an upload if 
 necessary.
 
 [0] http://bugs.debian.org/265985
 [1] https://bugzilla.kernel.org/show_bug.cgi?id=15765
 

Hi Jurij,

I am still working on ulogd2 though I must admit I did not have much
time.
The current state is that the packages are basically working and ulogd2
seems functional (rather stable here).
However, there are still some problems:
- there is no upgrade path (and there will probably never be upstream)
  from ulogd1.
- I'd like to propose dbconfig as an option, to be able to create the
  database etc. automatically
- Current packaging was copied from another package, and is using cdbs
  (which I do not like personally), but this is a minor point unless it
  prevents from maintaining it correctly
- Things upstream are not finished, there are still some pending patches

That said, I could have uploaded something to experimental.

Temporary (old) packages can be found here:
http://www.wzdftpd.net/downloads/ulogd2-deb/
(Version numbering is not correct)

I am just about leaving Paris for vacation, so I won't be able to work
on it this week. I'll try to update the packages after.

Cheers,
Pierre





-- 
To UNSUBSCRIBE, email to debian-wnpp-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/20100419142707.ga10...@piche.inl.fr

Bug#567130: O: newpki -- PKI based on the OpenSSL low-level API

2010-01-27 Thread Pierre Chifflier 
Package: wnpp
Severity: normal

NewPKI has several bugs, and upstream has not been active since now 3
years. I'm therefore orphaning this project.

If you want to be the new maintainer, please see
http://www.debian.org/devel/wnpp/index.html#howto-o for detailed
instructions how to adopt a package properly.

The impacted packages are:
newpki-client - PKI based on the OpenSSL low-level API (client package)
libnewpki-dev - Development files for newpki
libnewpki2 - PKI based on the OpenSSL low-level API (core library)
newpki-server - PKI based on the OpenSSL low-level API (server package)



-- 
To UNSUBSCRIBE, email to debian-wnpp-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org

Bug#565334: ITP: libhtp -- HTTP normalizer and parser library

2010-01-14 Thread Pierre Chifflier 
Package: wnpp
Severity: wishlist
Owner: Pierre Chifflier pol...@debian.org

* Package name: libhtp
  Version : 0.2.1
  Upstream Author : Ivan Ristic
* URL : http://www.openinfosecfoundation.org/downloads/
* License : GPLv2
  Programming Lang: C
  Description : HTTP normalizer and parser library

 The HTP Library is an HTTP normalizer and parser.  This integrates and
 provides very advanced processing of HTTP streams for Suricata. The HTP
 library is required by the engine, but may also be used independently
 in a range of applications and tools.



-- 
To UNSUBSCRIBE, email to debian-wnpp-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org

Bug#563422: ITP: suricata -- Next Generation Intrusion Detection and Prevention Tool

2010-01-02 Thread Pierre Chifflier 
Package: wnpp
Severity: wishlist
Owner: Pierre Chifflier pol...@debian.org

* Package name: suricata
  Version : 0.8.0
  Upstream Author : Open Information Security Foundation Team 
t...@openinfosecfoundation.org
* URL : http://www.openinfosecfoundation.org/
* License : GPL
  Programming Lang: C
  Description : Next Generation Intrusion Detection and Prevention Tool

(The description is being worked on)

Suricata is a network Intrusion Detection System (IDS). It is based on
rules (and is fully compatible with snort rules) to detect a variety of
attacks / probes by searching packet content.
This new Engine supports Multi-Threading, Automatic Protocol Detection
(IP, TCP, UDP, ICMP, HTTP, TLS, FTP and SMB), Gzip Decompression, Fast
IP Matching and coming soon hardware acceleration on CUDA and OpenCL GPU
cards.

More details here: http://seclists.org/snort/2009/q4/599

Note that Suricata depends on the libhtp library which I intend to
package as well.



-- 
To UNSUBSCRIBE, email to debian-wnpp-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org

Bug#542472: ITP: sslsniff -- SSL/TLS man-in-the-middle attack tool

2009-08-22 Thread Pierre Chifflier 
On Thu, Aug 20, 2009 at 10:52:45AM +0200, Alexander Reichle-Schmehl wrote:
 Hi!
 
  * Package name: sslsniff
Version : 0.6
Upstream Author : Moxie Marlinspike mo...@thoughtcrime.org
  * URL : http://www.thoughtcrime.org/software/sslsniff/
  * License : GPLv3
Programming Lang: C++
Description : SSL/TLS man-in-the-middle attack tool
 
 Maybe I miss something, but what's the intended (legal) purpouse of this
 tool?  Is there anything else but being a proof of concept that such
 things are possible?
 

Hi,

sslsniff is a very useful tool for security assessment, especially when
verifying if certificate checking code is correct in applications.
It can also help understanding protocols by standing as a
man-in-the-middle application, able to log the decrypted session of the
protocol.

I'd say it's a nice tool to have for people working (or interested) in
security.

Regards,
Pierre




-- 
To UNSUBSCRIBE, email to debian-wnpp-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org

Bug#542472: ITP: sslsniff -- SSL/TLS man-in-the-middle attack tool

2009-08-19 Thread Pierre Chifflier 
Package: wnpp
Severity: wishlist
Owner: Pierre Chifflier pol...@debian.org

* Package name: sslsniff
  Version : 0.6
  Upstream Author : Moxie Marlinspike mo...@thoughtcrime.org
* URL : http://www.thoughtcrime.org/software/sslsniff/
* License : GPLv3
  Programming Lang: C++
  Description : SSL/TLS man-in-the-middle attack tool

sslsniff is designed to create man-in-the-middle (MITM) attacks for
SSL/TLS connections, and dynamically generates certs for the domains
that are being accessed on the fly. The new certificates are constructed
in a certificate chain that is signed by any certificate that is
provided.
sslsniff also supports other attacks like null-prefix or OCSP attacks to
achieve silent interceptions of connections when possible.



sidenote: while the project has a COPYING file containing the GPLv3
text, almost all source files have a BSD-license header, and none of
them have the GPL header ?!



-- 
To UNSUBSCRIBE, email to debian-wnpp-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org

Bug#533508: prelimenary libcap-ng packages

2009-06-28 Thread Pierre Chifflier 
On Thu, Jun 25, 2009 at 11:29:37AM +0200, Guido Günther wrote:
 Hi,
 I packaged libcap-ng a couple of days ago:
   http://git.debian.org/?p=users/agx/libcap-ng.git;a=summary
 Maybe this helps if you didn't start already.

Hi Guido,

Thanks for the packages, but I already created the packages (split in 3
binary packages: libcap-ng0, libcap-ng-dev and libcap-ng-utils). I was
more or less waiting for a new release from upstream.
I just uploaded the packages to NEW

BR,
Pierre



--
To UNSUBSCRIBE, email to debian-wnpp-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org

Bug#533508: ITP: libcap-ng -- Library for manipulating POSIX.1e capabilities

2009-06-18 Thread Pierre Chifflier 
Package: wnpp
Severity: wishlist
Owner: Pierre Chifflier pol...@debian.org

* Package name: libcap-ng
  Version : 0.4.2
  Upstream Author : Steve Grubb sgr...@redhat.com
* URL : http://people.redhat.com/sgrubb/libcap-ng
* License : LGPLv2+
  Programming Lang: C
  Description : An alternate posix capabilities library

 This library implements the user-space interfaces to the POSIX
 1003.1e capabilities available in Linux kernels.  These capabilities
are
 a partitioning of the all powerful root privilege into a set of
distinct
 privileges.
 .
 The libcap-ng library is intended to make programming with posix
 capabilities much easier than the traditional libcap library.



-- 
To UNSUBSCRIBE, email to debian-wnpp-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org

Bug#522176: ITP: nftables -- packet administration tool for kernel nftables

2009-04-06 Thread Pierre Chifflier 
On Wed, Apr 01, 2009 at 08:17:14AM -0400, Laurence J. Lane wrote:
 Package: wnpp
 Severity: wishlist
 Owner: Laurence J. Lane ljl...@debian.org
 
 
 * Package name: nftables
   Version : 0.01-alpha1 
   Upstream Author : Patrick McHardy ka...@trash.net
 * URL : 
 * License : GPL
   Programming Lang: C
   Description : packet administration tool for kernel nftables
 
 nftables is an IP packet administration tool and is intended to be
 the successor to iptables.
 


Hi,

As I am also greatly interested in using nftables, I would like to know
if you have already compiled the required libraries (and specific
kernel), or if this is more a I will work on this email.

In any case, I am interested, maybe setting up a team would be good.

I had to patch several things to build nftables libs and executable to
make it build, and runtime isn't working yet (due to incompatibilities
in the parser and the bison version).

Cheers,
Pierre


signature.asc
Description: Digital signature

Bug#522265: ITP: openscap -- Set of libraries enabling integration of the SCAP line of standards

2009-04-02 Thread Pierre Chifflier 
Package: wnpp
Severity: wishlist
Owner: Pierre Chifflier pol...@debian.org

* Package name: openscap
  Version : 0.1.4
  Upstream Author : Peter Vrabec
* URL : http://www.open-scap.org/
* License : LGPL
  Programming Lang: C
  Description : Set of libraries enabling integration of the SCAP line of 
standards

OpenSCAP is a set of open source libraries providing an easier path
for integration of the SCAP line of standards. SCAP is a line of
standards managed by NIST with the goal of providing a standard language
for the expression of Computer Network Defense related information.

The intended scope of this project is to implement working interface
wrappers for parsing and querying SCAP content including:

* Common Vulnerabilities and Exposures (CVE)
* Common Configuration Enumeration (CCE)
* Common Platform Enumeration (CPE)
* Common Vulnerability Scoring System (CVSS)
* Extensible Configuration Checklist Description Format (XCCDF)
* Open Vulnerability and Assessment Language (OVAL)



-- 
To UNSUBSCRIBE, email to debian-wnpp-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org

Bug#511435: ITP: picviz -- Parallel coordinates plotter

2009-01-10 Thread Pierre Chifflier 
Package: wnpp
Severity: wishlist
Owner: Pierre Chifflier pol...@debian.org

* Package name: picviz
  Version : 0.4
  Upstream Author : Sébastien Tricaud s.tric...@inl.fr
* URL : http://www.wallinfire.net/picviz
* License : GPL
  Programming Lang: C
  Description : Parallel coordinates plotter

 Picviz is a parallel coordinates plotter which enables easy scripting
 from various input (tcpdump, syslog, iptables logs, apache logs,
 etc..) to visualize your data and discover interesting results
 quickly.
 .
 Its primary goal is to graph data in order to be able to quickly
 analyze problems and find correlations among variables. With security
 analysis in mind, the program has been designed to be very flexible,
 able to graph millions of events.
 .
 The language is designed to be close to the graphviz graph description
 language.


-- System Information:
Debian Release: 5.0
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'stable'), (1, 'experimental')
Architecture: amd64 (x86_64)



--
To UNSUBSCRIBE, email to debian-wnpp-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org

Bug#507233: ITP: appliancekit -- tools for managing, creating and deploying software appliances

2008-12-02 Thread Pierre Chifflier 
On Fri, Nov 28, 2008 at 11:46:30PM -0600, William Pitcock wrote:
 Package: wnpp
 Severity: wishlist
 Owner: William Pitcock [EMAIL PROTECTED]
 
 * Package name: appliancekit
   Version : 0.131
   Upstream Author : William Pitcock [EMAIL PROTECTED]
 * URL : http://appliancekit.systeminplace.net/


To change this page, upload your website into the public_html
directory

Looks like the website is not here.

Can you provide a link to the sources ? I would like to test
appliancekit.

Cheers,
Pierre

 * License : ISC
   Programming Lang: Python
   Description : tools for managing, creating and deploying software 
 appliances
  ApplianceKit is a tool for authoring and distributing software appliances.   
  Appliance authors typically distribute the appliance in the form of an XML
  metadata file, which ApplianceKit uses to compile into a functional
  appliance.
  .
  ApplianceKit supports deploying to chroots, Xen domains, and VServer 
  containers. It is an essential tool for deploying virtual machines in a
  hosting environment due to it's abilities to provide for a fully customized
  environment inside the appliance instance.
 
 -- System Information:
 Debian Release: lenny/sid
   APT prefers testing
   APT policy: (500, 'testing')
 Architecture: amd64 (x86_64)
 
 
 
 -- 
 To UNSUBSCRIBE, email to [EMAIL PROTECTED]
 with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
 



-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]

Bug#497667: sqlmap

2008-11-07 Thread Pierre Chifflier 
Hi,

Are you still looking for a sponsor ? I have looked at the sqlmap
package, and it looks quite clean.

I only have a few remarks:
- it's subjective, but I'd advise to prefer quilt over dpatch
- you should rephrase the description to something readable, splitting
  lines and adding some CR

If you want, I can sponsor you for this package, it would be nice to
have sqlmap in Debian :)

Cheers,
Pierre



signature.asc
Description: Digital signature

Bug#497667: sqlmap

2008-11-07 Thread Pierre Chifflier 
On Fri, Nov 07, 2008 at 04:14:19PM +, Bernardo Damele A. G. wrote:
 Hi Pierre,
 
 Yes, I am still looking for a sponsor.
 I handled the patch files with dpatch simply because I am not used to quilt.

I only said that because quilt is much more flexible. Of course, you can
use dpatch if you prefer.

 Feel free to propose a new description and I will consider to update it,
 anyway I do not see your point about CR and, if you mean the description
 in debian/control file, it's the same of the sqlmap main site[1]. Isn't
 it clear enough?

Fair enough, description is ok for me.

 
 By the way I just reuploaded to mentors server the updated version of
 sqlmap[2] (0.6.2).

Yes, I have seen it using the watch file.

Package looks fine and is lintian clean, so I'm ok. Do you want me to
upload it ?

Pierre



-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]

Bug#502770: ITP: setroubleshoot-plugins -- Tool to help troubleshoot SELinux problems (plugins)

2008-10-19 Thread Pierre Chifflier 
Package: wnpp
Severity: wishlist
Owner: Pierre Chifflier [EMAIL PROTECTED]

* Package name: setroubleshoot-plugins
  Version : 2.0.8
  Upstream Author : Red Hat
* URL : https://fedorahosted.org/setroubleshoot
* License : GPL
  Programming Lang: Python
  Description : Tool to help troubleshoot SELinux problems (plugins)

 Tools to help diagnose SELinux problems. When AVC messages
 are generated an alert can be generated that will give information
 about the problem and help track its resolution. Alerts can be configured
 to user preference. The same tools can be run on existing log files.
 .
 This package provides the plugins for analyzing the AVC messages.


-- System Information:
Debian Release: lenny/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)



-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]

Bug#502402: ITP: xtables-addons -- Extensions for iptables

2008-10-16 Thread Pierre Chifflier 
Package: wnpp
Severity: wishlist
Owner: Pierre Chifflier [EMAIL PROTECTED]

* Package name: xtables-addons
  Version : 1.5.7
  Upstream Author : Jan Engelhardt [EMAIL PROTECTED]
* URL : http://jengelh.medozas.de/projects/xtables/
* License : GPLv2
  Programming Lang: C
  Description : Extensions for iptables

The xtables userspace code is an ongoing development effort to bring new
ideas to the iptables, ip6tables, arptables and ebtables userspace
programs. It provides a lot of patches for new features in Linux kernels
2.6.25 that have not yet gone upstream into the official “iptables”
package.
It contains new targets for iptables, such as TARPIT, CHAOS, TEE, geoip,
etc.

-- System Information:
Debian Release: lenny/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)



--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]

Bug#502305: ITP: ulogd2 -- The Netfilter Userspace Logging Daemon, version 2

2008-10-15 Thread Pierre Chifflier 
Package: wnpp
Severity: wishlist
Owner: Pierre Chifflier [EMAIL PROTECTED]

* Package name: ulogd2
  Version : 2.0.0beta2
  Upstream Author : Harald Welte and netfilter team
* URL : http://www.netfilter.org/projects/ulogd/
* License : GPLv2
  Programming Lang: C
  Description : The Netfilter Userspace Logging Daemon, version 2

 ulogd is a daemon that listens for Netlink packets generated by iptables's
 ULOG and NFLOG target, using ibnetfilter_log and libnetfilter_conntrack.
 Basically, it's a replacement for syslog for logging packets,
 and does a much better job - it logs to files, pcap files, MySQL, PostgreSQL,
 SQLite 3 and soon will be able to log remotely.
 .
 MySQL, PostgreSQL and SQLite 3 support is in separate packages, called
 ulogd-mysql, ulogd-pgsql and ulogd-sqlite3 respectively. pcap file support
 is in package called ulogd-pcap.

Ulogd is already packaged in Debian, but I think ulogd2 should be proposed as
a separate package, because:
- they are completely different projects, supporting different targets (NFLOG)
  or features (connection tracking)
- ulogd is still the stable daemon, for some time I think
- some applications are based on version 1, and a transition to v2 require
  many changes
- both can be installed at the same time
- packages for ulogd2 will be completely different, for ex. using dbconfig

-- System Information:
Debian Release: lenny/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)



-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]

Bug#471701: status ?

2008-10-15 Thread Pierre Chifflier 
Hi,

Are you still working on this package ?
I have started some work here and will have a working package in a few
days. If you are still interested in setroubleshootd, would you agree on
a co-maintenance ?

Regards,
Pierre



-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]

Bug#500671: ITP: pgtap -- Unit testing framework for PostgreSQL

2008-09-30 Thread Pierre Chifflier 
Package: wnpp
Severity: wishlist
Owner: Pierre Chifflier [EMAIL PROTECTED]

* Package name: pgtap
  Version : 0.11
  Upstream Author : David E. Wheeler
* URL : http://pgtap.projects.postgresql.org/
* License : BSD-like
  Programming Lang: C
  Description : Unit testing framework for PostgreSQL

 pgTAP is a suite of database functions that make it easy to write
 TAP-emitting unit tests in psql scripts suitable for harvesting,
 analysis, and reporting by a TAP harness, such as those used in Perl
 and PHP applications.

-- System Information:
Debian Release: lenny/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)



-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]

Bug#497943: ITP: nfqueue-bindings -- High level bindings for libnetfilter_queue

2008-09-05 Thread Pierre Chifflier 
Package: wnpp
Severity: wishlist
Owner: Pierre Chifflier [EMAIL PROTECTED]

* Package name: nfqueue-bindings
  Version : 0.1.0
  Upstream Author : Pierre Chifflier [EMAIL PROTECTED]
* URL : http://software.inl.fr/trac/wiki/nfqueue-bindings
* License : GPLv3
  Programming Lang: C, Perl, Python
  Description : High level bindings for libnetfilter_queue

 nfqueue-bindings is a set of high-level modules for several languages
 (Python and Perl, for the moment), for libnetfilter_queue.
 It provides a userspace API to access packets that have been queued by
 the kernel packet filter using the NFQUEUE target.

-- System Information:
Debian Release: lenny/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)



-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]

Bug#491060: ITP: python-ptrace -- Python bindings for ptrace

2008-07-16 Thread Pierre Chifflier 
Package: wnpp
Severity: wishlist
Owner: Pierre Chifflier [EMAIL PROTECTED]

* Package name: python-ptrace
  Version : 0.3.1
  Upstream Author : Victor Stinner [EMAIL PROTECTED]
* URL : http://fusil.hachoir.org/trac/wiki/Ptrace
* License : GPLv2
  Programming Lang: Python
  Description : Python bindings for ptrace

This package provides Python bindings for the ptrace library. It allows
to control, debug, or modify processes using the ptrace syscall.

Features:

 * High level Python object API
 * Able to control multiple processes: catch fork events
 * Read/write bytes to arbitrary addresses
 * Execution step by step using ptrace_singlestep() or hardware int 3
 * Can use distorm disassembler
 * Dump registers, memory mappings, stack, etc.
 * Syscall tracer and parser (strace command)


-- System Information:
Debian Release: lenny/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 2.6.25-2-amd64 (SMP w/1 CPU core)
Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash



-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]

Bug#488664: ITP: prelude-correlator -- Hybrid Intrusion Detection System [ Correlator ]

2008-06-30 Thread Pierre Chifflier 
Package: wnpp
Severity: wishlist
Owner: Pierre Chifflier [EMAIL PROTECTED]

* Package name: prelude-correlator
  Version : 0.9.0~beta1b
  Upstream Author : Yoann Vandoorselaere [EMAIL PROTECTED]
* URL : http://www.prelude-ids.com
* License : GPLv2
  Programming Lang: C, Lua
  Description : Hybrid Intrusion Detection System [ Correlator ]

 Prelude is a general-purpose hybrid intrusion detection system.
 .
 This package provides the Prelude Correlator, which is a powerful
 correlation engine using Lua to write correlation rules.
 .
 The features currently include:
  * Rapid identification of important security events, enabling the analyst to
assign task priorities
  * Alert correlation originally from heterogeneous sensors deployed on the
whole infrastructure
  * Real-time analysis of events received by the Prelude Manager

-- System Information:
Debian Release: lenny/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 2.6.25-2-amd64 (SMP w/1 CPU core)
Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) (ignored: LC_ALL set to C)
Shell: /bin/sh linked to /bin/bash



-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]

Bug#477837: ITP: pgsnap -- PostgreSQL report tool

2008-04-25 Thread Pierre Chifflier 
Package: wnpp
Severity: wishlist
Owner: Pierre Chifflier [EMAIL PROTECTED]

* Package name: pgsnap
  Version : 0.2.0
  Upstream Author : Guillaume Lelarge guillaume at lelarge dot info
* URL : http://pgfoundry.org/projects/pgsnap
* License : BSD
  Programming Lang: PHP
  Description : PostgreSQL report tool

 pgsnap is a PostgreSQL report tool, which creates HTML reports
 from a database.
 pgsnap mimics orasnap performance report tool for Oracle.

-- System Information:
Debian Release: lenny/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 2.6.24-1-amd64 (SMP w/1 CPU core)
Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash



-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]

Bug#469908: ITP: pgdesigner -- Graphical database designer for PostgreSQL

2008-03-07 Thread Pierre Chifflier 
Package: wnpp
Severity: wishlist
Owner: Pierre Chifflier [EMAIL PROTECTED]

* Package name: pgdesigner
  Version : 1.2.1
  Upstream Author : Luigi Carlotto  [EMAIL PROTECTED] 
* URL : http://pgdesigner.sourceforge.net/
* License : GPL
  Programming Lang: Gambas
  Description : Graphical database designer for PostgreSQL

 pgDesigner is a database design application for PostgreSQL, for
 versions 7.x and 8.x.
 .
 pgDesigner provides the following features:
  * Complete datamodel editor
  * Support for PostgreSQL objects: tables, views, relations,
tablespaces, procedures, triggers, types, domains and sequences
  * Automatic updating of relations between tables.
  * Wizard for the construction of views.
  * Report generator, with statistics
  * Printing the diagram
  * SQL export
  * Creation of the database
  * Management of the project on a diagram chart

-- System Information:
Debian Release: lenny/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 2.6.24-1-amd64 (SMP w/1 CPU core)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) (ignored: LC_ALL 
set to fr_FR.UTF-8)
Shell: /bin/sh linked to /bin/bash



-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]

Bug#465204: ITP: fusil -- Fuzzing program to test applications

2008-02-11 Thread Pierre Chifflier 
On Mon, Feb 11, 2008 at 03:37:44AM -0600, William Pitcock wrote:
 Hi,
 
 On Mon, 2008-02-11 at 09:46 +0100, Pierre Chifflier wrote:
  Package: wnpp
  Severity: wishlist
  Owner: Pierre Chifflier [EMAIL PROTECTED]
  
  * Package name: fusil
Version : 0.7
Upstream Author : Victor Stinner [EMAIL PROTECTED]
  * URL : http://fusil.hachoir.org
  * License : GPLv2
Programming Lang: Python
Description : Fuzzing program to test applications
  
   Fusil project is a fuzzing program for any project type (remote
   process, fake HTTP server, fuzz network socket, etc.). Fusil
   implementation is based on multi-agent system architecture.
   Fusil is able to crash ClamAV, Image Magick, libc printf(),  Mplayer,
   PHP, RPM, xterm, libc gettext, libc environment variables, libpoppler
   (pdf), vim, etc
 
 How do you crash an environment variable?

I support the author meant libc *using* environment variables :) (I
have experimented it using a huge value for COLUMNS, for ex.)
I'll change this part to libc only.

Regards,
Pierre




-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]

Bug#465204: ITP: fusil -- Fuzzing program to test applications

2008-02-11 Thread Pierre Chifflier 
Package: wnpp
Severity: wishlist
Owner: Pierre Chifflier [EMAIL PROTECTED]

* Package name: fusil
  Version : 0.7
  Upstream Author : Victor Stinner [EMAIL PROTECTED]
* URL : http://fusil.hachoir.org
* License : GPLv2
  Programming Lang: Python
  Description : Fuzzing program to test applications

 Fusil project is a fuzzing program for any project type (remote
 process, fake HTTP server, fuzz network socket, etc.). Fusil
 implementation is based on multi-agent system architecture.
 Fusil is able to crash ClamAV, Image Magick, libc printf(),  Mplayer,
 PHP, RPM, xterm, libc gettext, libc environment variables, libpoppler
 (pdf), vim, etc

-- System Information:
Debian Release: lenny/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 2.6.24-1-amd64 (SMP w/1 CPU core)
Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash



-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]

Bug#465204: ITP: fusil -- Fuzzing program to test applications

2008-02-11 Thread Pierre Chifflier 
On Mon, Feb 11, 2008 at 01:08:38PM +0100, Guus Sliepen wrote:
 The description is very unclear to me. After looking at the Fusil
 website, I have some understanding of what fusil does.  It is not a
 stand-alone program like fuzz or zzuf that work directly with any
 program. It rather is a framework that allows you to write Python
 scripts that specifically target a certain program. You should mention
 that in the long description.
 
 The part about the implementation being based on a multi-agent system
 architecture is not useful information. multi-agent is a bit of a
 buzzword that can mean many things. Furthermore, it is not useful for a
 user of a program to know whether it is implemented in C, with a
 multi-agent system or with bananas.
 
 The list of programs and libraries that Fusil can crash will change over
 time, since the whole point of Fusil is to find bugs so one can fix
 them. If you want to mention it, change the sentence to the past or
 perfect tense, like Fusil was able to... or Fusil has been used
 to
 

Right, the previous description was not clear. I have reworded it, from
the README file, and from the author description:

 Fusil is a fuzzing framework designed to expose bugs in software by
 changing random bits of its input.
 It helps to start process with a prepared environment (limit memory,
 environment variables, redirect stdout, etc.), start network client or
 server, and create mangled files. Fusil has many probes to detect
 program crash: watch process exit code, watch process stdout and syslog
 for text patterns (eg. segmentation fault), watch session duration,
 watch cpu usage (process and system load), etc.
 .
 Fusil is based on a modular architecture. It computes a session score
 used to guess fuzzing parameters like number of injected errors to
 input files.
 .
 Available fuzzing projects: ClamAV, Firefox (contains an HTTP server),
 gettext, gstreamer, identify, libc_env, libc_printf, libexif, 
 linux_syscall, mplayer, php, poppler, vim, xterm.

Regards,
Pierre



-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]

Bug#456512: ITP: inguma -- Penetration testing toolkit

2007-12-16 Thread Pierre Chifflier 
Package: wnpp
Severity: wishlist
Owner: Pierre Chifflier [EMAIL PROTECTED]

* Package name: inguma
  Version : 0.0.6
  Upstream Author : Joxean Koret [EMAIL PROTECTED]
* URL : http://inguma.sourceforge.net/
* License : GPL
  Programming Lang: Python
  Description : Penetration testing toolkit

Inguma is a free penetration testing and vulnerability discovery toolkit
entirely written in python. Framework includes modules to discover
hosts, gather information about, fuzz targets, brute force usernames and
passwords, exploits, and a disassembler.

-- System Information:
Debian Release: lenny/sid
  APT prefers unstable
  APT policy: (500, 'unstable')
Architecture: amd64 (x86_64)

Kernel: Linux 2.6.22-3-amd64 (SMP w/1 CPU core)
Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8) (ignored: LC_ALL 
set to fr_FR.UTF-8)
Shell: /bin/sh linked to /bin/bash



-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]

Bug#454477: ITP: nulog -- Graphical firewall log analysis interface

2007-12-05 Thread Pierre Chifflier 
Package: wnpp
Severity: wishlist
Owner: Pierre Chifflier [EMAIL PROTECTED]

* Package name: nulog
  Version : 2.0
  Upstream Author : INL
* URL : http://software.inl.fr/trac/trac.cgi/wiki/EdenWall/NuLog2
* License : GPL
  Programming Lang: Python
  Description : Graphical firewall log analysis interface

 NuLog is a web interface to netfilter logs, when stored in a database
 using ulog.
 .
 The features currently include:
 o Index page with a summary of firewall activity:
 * Packet dropped per host
 * Packets dropped per UDP port
 * Packets dropped per TCP port
 * Packets dropped per user (NuFW only) 
 o Fully browsable tables
 o Search engine
 o Graphing capabilities (display clickable array, histogram or pie for a 
dataset)
 o SOAP request system for integration with other systems
 o IPv6 support.
 o Customizable pages (index page, etc)
 o AJAX features.
 o Special pages for user, ip and ports.
 o CSV export. 
 .
  Homepage: http://software.inl.fr/trac/trac.cgi/wiki/EdenWall/NuLog2

-- System Information:
Debian Release: lenny/sid
  APT prefers unstable
  APT policy: (500, 'unstable')
Architecture: amd64 (x86_64)

Kernel: Linux 2.6.22-3-amd64 (SMP w/1 CPU core)
Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash



-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]

Bug#448135: ITP: nuapplet -- Graphical client for NuFW

2007-10-26 Thread Pierre Chifflier 
Package: wnpp
Severity: wishlist
Owner: Pierre Chifflier [EMAIL PROTECTED]


* Package name: nuapplet
  Version : 2.0
  Upstream Author : Laurent Deffert [EMAIL PROTECTED]
* URL : http://software.inl.fr/trac/trac.cgi/wiki/EdenWall/NuApplet2
* License : GPL
  Programming Lang: C++
  Description : Graphical client for NuFW

 NuApplet2 is a systray application for the authenticating firewall NuFW,
 written in Qt.
 .
 It is compliant with FreeDesktop and can be used with several desktop
 environments.
 .
  Homepage: http://software.inl.fr/trac/trac.cgi/wiki/EdenWall/NuApplet2


-- System Information:
Debian Release: lenny/sid
  APT prefers unstable
  APT policy: (500, 'unstable')
Architecture: amd64 (x86_64)

Kernel: Linux 2.6.22-2-amd64 (SMP w/1 CPU core)
Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8) (ignored: LC_ALL 
set to fr_FR.UTF-8)
Shell: /bin/sh linked to /bin/bash



-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]

Bug#428861: ITP: oreon -- A monitoring solution based on Nagios

2007-06-14 Thread Pierre Chifflier 
On Thu, Jun 14, 2007 at 09:56:28PM +0200, Yann Rouillard wrote:
 * Package name: oreon
   Version : 1.4
 * URL : http://www.oreon-project.org/
 * License : GPL
   Programming Lang: Php
   Description : A monitoring solution based on Nagios
 
 Quoting the website:
 Oreon provide enterprise monitoring based on Nagios core.
 It offers a complete tool from administration to reporting/visualisation 
 with the most powerful monitoring and alerting engine.  
 
 I intend to package this software for Debian.
 

Hi,

Glad to see that someone is trying to package this software ! This may
be difficult, however, as Oreon use many Pear modules which are not
packaged in Debian ...

Have you already started to work on the package, or just publishing the
ITP ? I'd be interested.

BTW, do you intend to package perfparse too ? It would be great to have
the complete monitoring solution in Debian.

Cheers,
Pierre


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]

Bug#419226: ocsinventory-server packaging status

2007-06-08 Thread Pierre Chifflier 
On Fri, Jun 08, 2007 at 05:46:01PM +0200, Ludovic Drolez wrote:
 Hi !
 
 I find very interesting the packaging you begun on OCSinventory. I
 just wanted to know if your ocsinventory-server package is nearing
 completion ? If not what do you think of Eric DECORNOD's package (sent
 on your WNPP bug entry) ? 
 
 In any case I could help for packaging.
 

Hi,

The server has been packaged in two binaries: the reports engine, and
the server. The package has been uploaded to NEW, and is waiting for
approval of the ftpmasters.

If you want to test it, you can find the pckages here:
http://www.wzdftpd.net/debian/unstable/

The package has been written in co-maintainance with Eric Decornod, so
we've merged our work in one common package.

Regards,
Pierre


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]

Bug#419226: ITP: ocsinventory-server -- Hardware and software inventory tool (server)

2007-04-14 Thread Pierre Chifflier 
Package: wnpp
Severity: wishlist
Owner: Pierre Chifflier [EMAIL PROTECTED]


* Package name: ocsinventory-server
  Version : 1.0.1
  Upstream Author : Pascal DANEK
* URL : http://ocsinventory.sourceforge.net/index.php
* License : GPL
  Programming Lang: Perl, PHP
  Description : Hardware and software inventory tool (server)

 Open Computer and Software Inventory Next Generation is an application
 designed to help a network or system administrator keep track of the computers
 configuration and software that are installed on the network. It also
 allows deploying softwares, commands or files on client computers.
 .
 This package contains the server part.
 .
  Homepage: http://ocsinventory.sourceforge.net

-- System Information:
Debian Release: lenny/sid
  APT prefers unstable
  APT policy: (500, 'unstable')
Architecture: amd64 (x86_64)

Kernel: Linux 2.6.18vz (SMP w/1 CPU core)
Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8) (ignored: LC_ALL 
set to fr_FR.UTF-8)
Shell: /bin/sh linked to /bin/bash


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]

Bug#417057: ITP: brouette -- Monitoring applet for prelude

2007-04-01 Thread Pierre Chifflier 
Package: wnpp
Severity: wishlist
Owner: Pierre Chifflier [EMAIL PROTECTED]


* Package name: brouette
  Version : 0.1
  Upstream Author : Sébastien Tricaud [EMAIL PROTECTED]
* URL : http://www.wallinfire.net/brouette/
* License : GPL
  Programming Lang: C
  Description : Monitoring applet for prelude

Brouette is an event displayer for prelude manager. Registered as a prelude
sensor, it displays events using libnotify to display passive pop-up
notifications on security alerts.

-- System Information:
Debian Release: 4.0
  APT prefers unstable
  APT policy: (500, 'unstable')
Architecture: amd64 (x86_64)
Shell:  /bin/sh linked to /bin/bash
Kernel: Linux 2.6.18vz
Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8) (ignored: LC_ALL 
set to fr_FR.UTF-8)

Bug#410090: ITP: prewikka -- Graphical front-end analysis console for the Prelude Hybrid IDS Framework

2007-02-07 Thread Pierre Chifflier 
Package: wnpp
Severity: wishlist
Owner: Pierre Chifflier [EMAIL PROTECTED]


* Package name: prewikka
  Version : 0.9.9
  Upstream Author : Yoann Vandoorselaere [EMAIL PROTECTED]
* URL : http://www.prelude-ids.org/
* License : GPL
  Programming Lang: Python
  Description : Graphical analysis console for the Prelude IDS Framework

 Prewikka is a graphical front-end analysis console for the Prelude
 Hybrid IDS Framework.
 .
 Providing numerous features, Prewikka facilitates the work of users and
 analysts. It provides alert aggregation and sensor and hearbeat views,
 and has user management and configurable filters. It has access to
 external tools such as whois and traceroute.

-- System Information:
Debian Release: 4.0
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'stable')
Architecture: i386 (i686)
Shell:  /bin/sh linked to /bin/bash
Kernel: Linux 2.6.18-3-686
Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8) (ignored: LC_ALL 
set to fr_FR.UTF-8)


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]

Bug#406964: ITP: ocsinventory-agent -- Hardware and software inventory tool (client)

2007-01-15 Thread Pierre Chifflier 
Package: wnpp
Severity: wishlist
Owner: Pierre Chifflier [EMAIL PROTECTED]

* Package name: ocsinventory-agent
  Version : 1.0~rc3
  Upstream Author : Pascal DANEK 2005
* URL : http://ocsinventory.sourceforge.net/index.php
* License : GPL
  Programming Lang: Perl
  Description : Hardware and software inventory tool (client)

 Open Computer and Software Inventory Next Generation is an application
 designed to help a network or system administrator keep track of the computers
 configuration and software that are installed on the network. It also
 allows deploying softwares, commands or files on client computers.
 .
 This package contains the client part.
 .
  Homepage: http://ocsinventory.sourceforge.net


-- System Information:
Debian Release: 4.0
  APT prefers unstable
  APT policy: (500, 'unstable')
Architecture: i386 (i686)
Shell:  /bin/sh linked to /bin/bash
Kernel: Linux 2.6.18-3-686
Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8)


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]

Bug#406964: ITP: ocsinventory-agent -- Hardware and software inventory tool (client)

2007-01-15 Thread Pierre Chifflier 
On Mon, Jan 15, 2007 at 02:03:10PM +0100, Vincent Danjean wrote:
 Pierre Chifflier a écrit :
  Package: wnpp
  Severity: wishlist
  Owner: Pierre Chifflier [EMAIL PROTECTED]
  
  * Package name: ocsinventory-agent
Version : 1.0~rc3
Upstream Author : Pascal DANEK 2005
  * URL : http://ocsinventory.sourceforge.net/index.php
  * License : GPL
Programming Lang: Perl
Description : Hardware and software inventory tool (client)
  
   Open Computer and Software Inventory Next Generation is an application
   designed to help a network or system administrator keep track of the 
  computers
   configuration and software that are installed on the network. It also
   allows deploying softwares, commands or files on client computers.
 
 Last time I looked at this software, I was very disappointed by the
 security on the last part : the agent was downloading and installing
 new software without any verification (signature, ...).
   As my lab would like to try this tool, I made a debian package.
 I try to disable this remote deployment facility (as we did not want
 to use it) and let only the configuration and software report part.
 Even that was not secured at all !
   So, we use it for non laptop computer inside our lab (behind a
 firewall), but not on our laptops that can be connected in hostile
 environments.
   As I did not look at this software for several months, it is
 possible that some of my criticisms are wrong (and I would be very
 happy in this case).
 
   So, I hope you will address these issues if you create a official
 debian package. If you want, you are free to use the packaging I did
 for the 1.0-RC2-FINAL release :
 http://people.debian.org/~vdanjean/debian/pool/main/o/ocsinventory-client/
 

Thanks for your mail, and your remarks. I have indeed looked at the
software deployment part, it /seems/ to be better now (I must admit I
haven't tested it in a production environment) since the client and
the server must have a trust relation (it uses a PKI, or a self signed
certificate). I fully agree that this feature must be disabled by
default if not fully secure, this point is quite important.

I've downloaded your packages, thanks a lot. Version 1.0rc3 has lots
of important changes since 1.0rc2 (in particular, for the
installation), I believe most of your points are addressed, or will be
in the next stable release.

If you are still interested in the packaging, I would see no problem
in co-maintaining the packages (I plan to package the server as soon
as the client packages are ready).

Regards,
Pierre

Bug#395476: ITP: glpi -- IT and Asset management software

2006-10-27 Thread Pierre Chifflier 
Package: wnpp
Severity: wishlist
Owner: Pierre Chifflier [EMAIL PROTECTED]


* Package name: glpi
  Version : 0.68.2
  Upstream Author : Jean-Mathieu Doleans (jmd at indepnet.net),
Julien Dombre (moyo at indepnet.net)
* URL : http://www.glpi-project.org/
* License : GPL
  Programming Lang: PHP
  Description : IT and Asset management software

 GLPI stands for “Gestionnaire libre de parc informatique”,
 GLPI is the Information Resource-Manager with an additional Administration
 Interface.
 .
 You can use it to build up a database with an inventory for your company
 (computer, software, printers…). It has enhanced functions to make the
 daily life for the administrators easier, like a job tracking system with
 mail-notification and methods to build a database with basic information
 about your network-topology.

-- System Information:
Debian Release: testing/unstable
  APT prefers unstable
  APT policy: (500, 'unstable')
Architecture: i386 (i686)
Shell:  /bin/sh linked to /bin/bash
Kernel: Linux 2.6.18-1-686
Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8)

Bug#364856: ITP: newpki-php -- PKI based on the OpenSSL low-level API (php module)

2006-04-26 Thread Pierre Chifflier 
Package: wnpp
Severity: wishlist
Owner: Pierre Chifflier [EMAIL PROTECTED]


* Package name: newpki-php
  Version : 2.0.0+rc1
  Upstream Author : Frederic Giudicelli [EMAIL PROTECTED]
* URL : http://www.newpki.org/
* License : GPL with openssl exception
  Programming Lang: C
  Description : PKI based on the OpenSSL low-level API (php module)

 Public Key Infrastructure (PKI) are designed to manage certificates
 on a long term. All the data are handled through a MySQL database,
 which provides a convenient frontend to OpenSSL, and options such as
 seeking a certificate with a search engine.
 .
 The actual version is able to handle multiple Certificate Authorities
 in one server, to publish a certificate request from a Certificate
 Signing Request, to certify a request, to revoke a certificate and to
 manage one or more Certificate Revocation Lists. It also able to search
 for the waiting requests or certificates, to respond to OCSP requests
 and to seek in and publish to LDAP Directory.
 .
 This package provides the PHP module for newpki-server.
 .
 Homepage: http://www.newpki.org/

-- System Information:
Debian Release: testing/unstable
  APT prefers unstable
  APT policy: (500, 'unstable')
Architecture: i386 (i686)
Shell:  /bin/sh linked to /bin/bash
Kernel: Linux 2.6.16-1-vserver-686
Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8) (ignored: LC_ALL 
set to fr_FR.UTF-8)


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]

Bug#315098: ITP: newpki-client -- PKI based on the OpenSSL low-level API (client package)

2005-06-20 Thread Pierre Chifflier 
Package: wnpp
Severity: wishlist
Owner: Pierre Chifflier [EMAIL PROTECTED]


* Package name: newpki-client
  Version : 2.0.0beta4
  Upstream Author : Frederic Giudicelli [EMAIL PROTECTED]
* URL : http://www.newpki.org/
* License : GPL
  Description : PKI based on the OpenSSL low-level API (client package)

 Public Key Infrastructure (PKI) are designed to manage certificates
 on a long term. All the data are handled through a MySQL database,
 which provides a convenient frontend to OpenSSL, and options such as
 seeking a certificate with a search engine.
 .
 The actual version is able to handle multiple Certificate Authorities
 in one server, to publish a certificate request from a Certificate
 Signing Request, to certify a request, to revoke a certificate and to
 manage one or more Certificate Revocation Lists. It also able to search
 for the waiting requests or certificates, to respond to OCSP requests
 and to seek in and publish to LDAP Directory.
 .
 This package provides a graphical client for NewPKI, written in C++
 with using the wxWidgets (http://www.wxwidgets.org) cross-platform framework
 to allow it to run on multiple platforms.
 .
 Homepage: http://www.newpki.org/

-- System Information:
Debian Release: testing/unstable
  APT prefers unstable
  APT policy: (500, 'unstable'), (1, 'experimental')
Architecture: i386 (i686)
Shell:  /bin/sh linked to /bin/bash
Kernel: Linux 2.6.11ac7
Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8)


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]

Bug#289545: ITP: gromit -- GTK based tool to make annotations on screen

2005-01-19 Thread Pierre Chifflier 
On Thu, Jan 20, 2005 at 02:05:12AM +1100, Andrew Lau wrote:
 On Wed, Jan 19, 2005 at 03:55:35PM +0100, Aurelien Jarno wrote:
  Pierre's packages are also ready. I am his sponsor, and he asked me to
  upload his packages two or three days ago. I didn't have the time the
  last days, because I was at a meeting, but I will do that during the
  afternoon.
 
 Before you do that, please ask Pierre to take a look at my packages and
 see if there's anything in here he might want to use (eg. GNOME/Debian
 menu entry and icon) -- don't want my effort to goto total waste = )
 
 Cheers,
 Andrew Netsnipe Lau

Hi,

Sorry for the delay in the reply, I had some important work to do
these days that took all my time :/

Andrew, if you agree, we should try to merge your package and the work
I've done, there are interesting things in both. In particular, you've
created some icons which I haven't, and I've created a manpage
reviewed by the maintainer and a small patch to use a global config
file.

If the delay is short for that, I propose that we use the packages
I've done for the initial upload, and that we merge your work just
after ?
Of course, if you want, I'm not against co-maintaining the package
(although is seems a bit strange for a so small package ;)

Regards,

Pierre

Bug#289545: ITP: gromit -- GTK based tool to make annotations on screen

2005-01-09 Thread Pierre Chifflier 
Package: wnpp
Severity: wishlist


* Package name: gromit
  Version : 20041213
  Upstream Author : Simon Budig  [EMAIL PROTECTED]
* URL : http://www.home.unix-ag.org/simon/gromit/
* License : GPL
  Description : GTK based tool to make annotations on screen

 Gromit enables you to make annotations on your screen.
 .
 This is especially usefull when making presentations, to highlight
 things or point ou things of interest.
 .
 Gromit is XInput-Aware, so if you have a graphic tablet you can
 draw lines with different strength, color, erase things, etc.

-- System Information:
Debian Release: 3.1
  APT prefers unstable
  APT policy: (500, 'unstable')
Architecture: i386 (i686)
Kernel: Linux 2.6.10-ac4
Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8)

Bug#270274: ITP: esvn -- A Qt frontend for the Subversion revision system

2004-09-06 Thread Pierre Chifflier 
Package: wnpp
Severity: wishlist

* Package name: esvn
  Version : 0.6.0
  Upstream Author : Eugene Bort (Umputun) [EMAIL PROTECTED]
* URL : http://esvn.umputun.com/
* License : GPL
  Description : A Qt frontend for the Subversion revision system

eSvn is a graphical client written in Qt for the subversion revision
control system (svn).

-- System Information:
Debian Release: 3.1
  APT prefers unstable
  APT policy: (500, 'unstable')
Architecture: i386 (i686)
Kernel: Linux 2.6.7-pol
Locale: LANG=C, LC_CTYPE=C

Bug#238143: ITP: wzdftpd -- A portable, modular, efficient and not user-friendly ftp server

2004-03-19 Thread Pierre Chifflier 
On Thu, Mar 18, 2004 at 09:45:35PM +, Henning Makholm wrote:
 Scripsit Pierre Chifflier [EMAIL PROTECTED]
 
 The only thing that is relevant in a Debian package description
 is that it works on Debian, which rather goes without saying.

I agree, this has nothing to do in the .deb description - removed.

 
   Features are: flexible user management, acls, virtual users/groups,
   security, speed, bandwith limitation, per command authorization,
   virtual directories, dynamic ip changes auto-detection, etc.
 
 I'm afraid this still doesn't tell me why I'd want to use this ftp
 server instead of one of the (many) other ftp servers already
 available in Debian.

Well, i've not found any equivalent server in the existing, which
correspond to _all_ these features. Most scriptable servers are not
free, dynamic ip changes are generally not working, I've never seen
virtual directories working, only a very few of them are extensible,
etc.
IMHO the main feature is the online administration, you do not have to
get an account on the hosting server or to edit config files by hand,
all is configurable online.

That said, I agree the description does not reflect these features
correctly, that's why I'm tweaking it according to all your remarks.

 
 And is security really a feature? It ought to be implied.

Funny .. Implied the same as proftpd does ?
I am just saying we use regular audits on code to find vulnerabilities,
and that the server was written with security in mind.

All of this does not mean of course that the server is perfect in a
perfect world - that's just the directions we are taking in the
development.

/P
-- 
[EMAIL PROTECTED]
BOFH excuse #210:

We didn't pay the Internet bill and it's been cut off.

Bug#238143: ITP: wzdftpd -- A portable, modular, efficient and not user-friendly ftp server

2004-03-18 Thread Pierre Chifflier 
On Tue, Mar 16, 2004 at 12:36:44PM +0100, Hilko Bengen wrote:
 Pierre Chifflier [EMAIL PROTECTED] writes:
 
  Package: wnpp
  Severity: wishlist
 
  * Package name: wzdftpd
Version : 0.2.3
Upstream Author : Pierre Chifflier [EMAIL PROTECTED]
  * URL : http://www.wzdftpd.net/
  * License : GPL
Description : A portable, modular, efficient and not user-friendly 
  ftp server

Hi,

Thanks for your reply. Globally, the description is not adequate, mainly
because I pasted the description from sourceforge, which was describing
the server for all possible users (including windows ones, yes).

 
   wzdftpd is designed to run in user-mode, and to be entirely
  ^
 As opposed to what? Kernel mode? 

My bad, I should have said 'to be run as a simple user' as opposed to
root.

 
   configurable using SITE commands (no gui !). It works on
 ^^
 Ahem... Server applications w/o a GUI are not _that_ uncommon in
 Unix-like systems.

No configuration gui. Again, this _is_ uncommon for other users.

 
   linux/win32 (use winsock for best perfs), supports SSL, and is
  ^^
 Irrlevant for Debian. At least for now. ;-)

And for a long time, I hope ! :)

 
   multithreaded.
   .
   Extensions can be written using modules or externals scripts.
   Features are: unix-like permissions+acls, virtual users/groups, security,
   speed, bandwith limitation (user,group,global), group admins, per command
   authorizations, ratio, etc.
 
 Flexible user management

Ok, though I don't think it covers the same features. I'll change these
lines a bit.

 
   Virtual dirs/files can be defined, with restrictions on users/groups/flags.
   Users can belong to several groups, allowing to define group properties.
   wzdftpd is distributed under the terms of the GPL.
^^
 Don't put that into the description.

ok.

 
 Considering that this is not going to be the first ftp server in
 Debian, tell people what makes it special, if you want your package to
 be widely used.

I changed the description to be the following:

 wzdftpd is designed to be run as a user, and to be entirely
 configurable using
 SITE commands. It works on linux/bsd/win32, supports Ipv6, SSL, and is
 multithreaded.
 .
 Features are: flexible user management, acls, virtual users/groups,
 security,
 speed, bandwith limitation, per command authorization, virtual
 directories, dynamic
 ip changes auto-detection, etc.
 .
 It includes several authentication backends, is easily
 scriptable and provides
 a powerfull event-driven system to extend server.


Thanks for you reply !

-- 
[EMAIL PROTECTED]
BOFH excuse #380:

Operators killed when huge stack of backup tapes fell over.

Bug#238143: ITP: wzdftpd -- A portable, modular, efficient and not user-friendly ftp server

2004-03-15 Thread Pierre Chifflier 
Package: wnpp
Severity: wishlist

* Package name: wzdftpd
  Version : 0.2.3
  Upstream Author : Pierre Chifflier [EMAIL PROTECTED]
* URL : http://www.wzdftpd.net/
* License : GPL
  Description : A portable, modular, efficient and not user-friendly ftp 
server

 wzdftpd is designed to run in user-mode, and to be entirely configurable using
 SITE commands (no gui !). It works on linux/win32 (use winsock for best perfs),
 supports SSL, and is multithreaded.
 .
 Extensions can be written using modules or externals scripts.
 Features are: unix-like permissions+acls, virtual users/groups, security,
 speed, bandwith limitation (user,group,global), group admins, per command
 authorizations, ratio, etc.
 .
 Virtual dirs/files can be defined, with restrictions on users/groups/flags.
 Users can belong to several groups, allowing to define group properties.
 wzdftpd is distributed under the terms of the GPL.

-- System Information:
Debian Release: testing/unstable
  APT prefers unstable
  APT policy: (500, 'unstable')
Architecture: i386 (i686)
Kernel: Linux 2.6.4
Locale: LANG=C, LC_CTYPE=C