Package: network-manager
Version: 1.14.4-4
Severity: normal
My laptop running Debian/Testing works perfectly at home. Connects to wifi
every time without problems. At home there is my own Wifi network and a few
networks of neighbors. At the office it usually fails to connect, the list of
Wifi A
When I first saw this last year Lukas correctly identified the problem, sorry
for not mentioning this.
Now it happened again and it turned out that this bug report was one of only 2
google hits about it. I had forgotten about having this problem before.
Could you please patch the btrfs utility
Package: kmail
Version: 4:17.12.3-1
Severity: normal
Previously when a message was saved to a drafts folder you could press 't' to
edit it and send it later. This doesn't work now, neither on the IMAP Drafts
folder or the local drafts folder. It now seems impossible to do anything with
a draft m
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=865441
We already have the above bug report suggesting that this package is obsolete.
The package postfix-policyd-spf-python has a configuration file and seems to
do everything that postfix-policyd-spf-perl does.
--
My Main Blog http:/
Package: postfix-policyd-spf-perl
Version: 2.010-2
Severity: normal
This program should have a configuration file for distribution with Debian.
For a non-packaged program it might be regarded as OK to just edit the code to
change the configuration. But for a program that is part of a package (an
Package: fail2ban
Version: 0.9.6-2
Severity: normal
./jail.conf:port= pop3,pop3s,imap,imaps,submission,465,sieve
./jail.conf:port= imap,smtp,imaps,465
./jail.conf:port = smtp,465,submission,imap3,imaps,pop3,pop3s
./jail.conf:port = smtp,465,submission,imap3,imaps,pop3,pop3s
./jail.
close 896134
thanks
After upgrading to 8.00~svn3725-2 this works. It appears to be fixed.
--
My Main Blog http://etbe.coker.com.au/
My Documents Bloghttp://doc.coker.com.au/
Source: secilc
Version: 2.7-1
Severity: normal
dpkg-source: info: using source format '3.0 (quilt)'
dpkg-source: info: building secilc using existing ./secilc_2.7.orig.tar.gz
dpkg-source: error: cannot represent change to
docs/pdf/CIL_Reference_Guide.pdf: binary file contents changed
dpkg-source:
https://www.akkadia.org/drepper/nonselsec.pdf
Page 8 of the above document gives some suggestions on how to solve this class
of problem.
Do you need some help with this?
--
My Main Blog http://etbe.coker.com.au/
My Documents Bloghttp://doc.coker.com.au/
https://www.akkadia.org/drepper/nonselsec.pdf
Page 8 of the above document gives some suggestions on how to solve this class
of problem.
Do you need some help with this?
--
My Main Blog http://etbe.coker.com.au/
My Documents Bloghttp://doc.coker.com.au/
Package: boinc-app-seti
Version: 8.00~svn3701-1
Severity: normal
The boincmgr program when it connects to thie system reports all SETI@home
tasks as having status "Computation error". The daemon.log file has the
following which may be related (or may be something different):
Apr 19 11:03:49 local
Package: checkpolicy
Version: 2.7-1
Severity: normal
Tags: upstream patch
https://marc.info/?l=selinux&m=152078548332657&w=2
The above URL has patches to make checkpolicy etc support sctp. The latest
git refpolicy has sctp and needs those patches to compile.
Below are the compilation errors you
Package: kmail
Version: 4:17.08.3-2
Severity: normal
On 2 systems, a workstation with an AMD video card and a laptop with built in
Intel video I have Kmail displaying a rectangle of the background after it
has been running for a while. I will attach screen shots after the bug number
has been assi
https://etbe.coker.com.au/2018/03/05/compromised-guest-account/
I just had one of my systems compromised. While I did stuff up, if the
default had been to have AllowUsers I would have set it to only allow desired
ssh users and everything would have been fine.
I suggest that the default configu
$ goplay
Xapian DatabaseOpeningError: Couldn't stat '/var/lib/apt-xapian-index/index'
Instead of just giving the above message it should say "the index should be
generating in the background, it should work soon". A progress indicator
isn't necessary, anything other than just exiting with a str
What's the situation with this one? Could it be included in the next Stretch
update?
On Saturday, 9 December 2017 1:33:39 PM AEDT Russell Coker wrote:
> On Saturday, 2 December 2017 11:05:24 AM AEDT Adam D. Barratt wrote:
> > IFF it's versioned as 2:2.20161023.1-9+deb9u1, us
Package: libparted2
Version: 3.2-20
Severity: normal
http://oss.tresys.com/pipermail/refpolicy/2018-February/010476.html
The udisks2 access to /dev/mem is discussed on the SE Linux list at the above
URL.
https://sources.debian.org/patches/parted/3.2-20/gptsync.patch/
It seems that the access is
Package: policycoreutils-python-utils
Version: 2.6-3
Severity: normal
# semanage port -a -t ssh_port_t -p tcp 1234
ValueError: Port tcp/1234 already defined
# apt-get install python3-numpy
[...]
Setting up python3-numpy (1:1.12.1-3) ...
# semanage port -a -t ssh_port_t -p tcp 1234
Traceback (most
Package: libqt5webenginecore5
Version: 5.9.2+dfsg-2
Severity: normal
$ execstack -q /usr/lib/x86_64-linux-gnu/libQt5WebEngineCore.so.5.9.2
X /usr/lib/x86_64-linux-gnu/libQt5WebEngineCore.so.5.9.2
The shared object is listed as requiring an executable stack. This weakens
the security of every app
Package: systemd
Version: 232-25+deb9u1
Severity: normal
On a vm at linode.com /home wouldn't be mounted (mount would hang forever with
x-systemd.automount and abort leading to sulogin without it) and swap wouldn't
be enabled when udev wasn't installed.
udev was in "rc" state, so maybe a "dpkg --
On Monday, 15 January 2018 2:15:40 PM AEDT James Cowgill wrote:
> > Sorry, we do not control the binaries that Valve
> > use in Steam. You're welcome to take this upstream to
> > https://github.com/ValveSoftware/steam-for-linux/issues/ if you believe
> > the use of generic i386 binaries is a securi
> Impact: am I right in thinking that this is not in itself a security
> vulnerability, but that if there is a separate security vulnerability
> somewhere in Valve's binaries, having execmod access makes it
> significantly easier for an attacker to turn that vulnerability into
> arbitrary code exec
On Monday, 15 January 2018 11:18:42 AM AEDT Simon McVittie wrote:
> Sorry, we do not control the binaries that Valve
> use in Steam. You're welcome to take this upstream to
> https://github.com/ValveSoftware/steam-for-linux/issues/ if you believe
> the use of generic i386 binaries is a security pro
Package: steam
Version: 1.0.0.54-3
Severity: normal
Tags: upstream
type=AVC msg=audit(1516012042.500:1381380): avc: denied { execmod } for
pid=4488 comm="steam" path="/home/rjc/.steam/ubuntu12_32/libavutil.so.55"
dev="sda2" ino=64950
scontext=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c
Package: prosody
Version: 0.9.12-2
Severity: normal
Tags: patch
For a long time /var/run has been a symlink to /run. Therefore it's best to
use /run directly which avoids problems if /var isn't mounted (admittedly
a configuration that's not common) and makes the operation clearer.
On SE Linux sy
Closes: #875669
+ * Give bootloader_t all the access it needs to create initramfs images in
+different situations and communicate with dpkg_t.
+Closes: #875676
+ * Allow dnsmasq_t to read it's config dir
+Closes: #875681
+
+ -- Russell Coker Sat, 09 Dec 2017 13:12:05 +1100
+
On Sunday, 19 November 2017 9:41:58 PM AEDT Adam D. Barratt wrote:
> > Section 5.5.1 of the above seemed to indicate that I should do it
> > that way.
> > Did I misunderstand it or does the documentation need improving?
>
> Some combination. :-)
>
> You used reportbug to file the report - did it
Package: swaks
Version: 20170101.0-2
Severity: normal
Tags: upstream
Here is what happens when I try to generate a TLS error:
$ swaks -tls --tls-verify --ehlo test.coker.com.au -f russ...@coker.com.au -t
exam...@example.com -s pop.sws.net.au
=== Trying pop.sws.net.au:25...
=== Con
On Monday, 20 November 2017 7:48:18 AM AEDT Chris Lamb wrote:
> Sorry for replying earlier but I seemingly did not receive this bug report
> by mail and have just seen it via my QA page.
Maybe a DMARC issue. No big deal.
> > redis-server: Unknown lvalue 'RunTimeDirectory' in section 'Service'
>
I sent such a debdiff almost 2 months ago. Is it ok?
On 30 September 2017 1:39:15 am AEST, "Adam D. Barratt"
wrote:
>On Sat, 2017-09-30 at 01:08 +1000, Russell Coker wrote:
>> I've attached the patches. These all come from the package currently
>> in
>>
reassign 880846 libc-bin
thanks
OK it's a libc-bin bug.
--
My Main Blog http://etbe.coker.com.au/
My Documents Bloghttp://doc.coker.com.au/
Package: debian-installer
Severity: minor
https://cdimage.debian.org/cdimage/daily-builds/daily/arch-latest/amd64/iso-cd/
I just did an install from the image downloaded from the above URL using
debootstrap. I'm not sure if this bug applies to debian-installed,
debootstrap, or both.
When I inst
Package: mon
Version: 1.3.2-1
Severity: normal
GROUP SERVICE STATUS LAST NEXT ALERTS SUMMARY
R servername basicps untesteduntested 0s none
Monshow includes output like the above when the monitor script can't be
executed (EG due to wrong nam
Package: redis-server
Version: 3:3.2.6-1
Severity: normal
[ 10.306287] systemd[1]: [/lib/systemd/system/redis-server.service:14]
Unknown lvalue 'RunTimeDirectory' in section 'Service'
I get the above in the kernel message log at boot. It seems that this version
of redis-server has a service f
Package: sysstat
Version: 11.6.0-1
Severity: wishlist
Below is part of the output of "iostat -m" on one of my system. For reporting
io speeds (the documented purpose of the -m option) megabytes per second is
sufficient for today's hardware. But for reporting the overall transfer
volumes gigabyte
Package: mon
Version: 1.3.2-1
Severity: normal
When an alert script returns non-zero that should be logged and treated
specially. That's an unusually significant error because it means other
errors aren't being reported.
-- System Information:
Debian Release: 9.2
APT prefers stable-updates
A
Package: postfixadmin
Version: 3.0.2-2
Severity: normal
If you have emailcheck_resolve_domain set to YES in the configuration then
postfixadmin doesn't allow you to add a domain ending in .onion. I think that
it's reasonable to want DNS checks for the cases of domains that are being
used on the p
On Friday, 29 September 2017 4:39:15 PM AEDT Adam D. Barratt wrote:
> On Sat, 2017-09-30 at 01:08 +1000, Russell Coker wrote:
> > I've attached the patches. These all come from the package currently
> > in
> > Testing.
>
> Thanks, but we don't review individ
I've attached the patches. These all come from the package currently in
Testing.
--
My Main Blog http://etbe.coker.com.au/
My Documents Bloghttp://doc.coker.com.au/
Index: refpolicy-2.20161023.1/policy/modules/system/init.te
==
Package: release.debian.org
Severity: normal
Tags: stretch
User: release.debian@packages.debian.org
Usertags: pu
0210-bounds-874201 is the most important patch. Without it programs that
should run as tor_t, mysqld_t, and entropyd_t run as init_t and get
unrestricted access to the system. Thi
Package: mon
Version: 1.3.2-1
Severity: normal
When an alert script hangs (EG sendxmpp goes into an infinite loop and hangs
mailxmpp.alert) the main mon process stops normal operation and doesn't send
other alerts or even shutdown normally.
It should have some basic controls in place to minimise
Package: sendxmpp
Version: 1.23-1.1
Severity: normal
PID USER PR NIVIRTRESSHR S %CPU %MEM TIME+ COMMAND
14489 mon 20 0 74188 27640 7204 R 100.0 0.2 4924:43 sendxmpp
27711 mon 20 0 74240 27396 6984 R 100.0 0.2 4859:49 sendxmpp
Above is part
init_dbus_chat(udev_t)
init_stream_connect(udev_t)
Also needs the above.
--
My Main Blog http://etbe.coker.com.au/
My Documents Bloghttp://doc.coker.com.au/
Package: selinux-policy-default
Version: 2:2.20161023.1-9
Severity: normal
type=USER_AVC msg=audit(1505361590.348:23): pid=1 uid=0 auid=4294967295
ses=4294967295 subj=system_u:system_r:init_t:s0 msg='avc: denied { status }
for auid=n/a uid=0 gid=0 path="/lib/systemd/system/ifup@.service" cmdli
Package: selinux-policy-default
Version: 2:2.20161023.1-9
Severity: normal
[9.079307] audit: type=1400 audit(1505357240.712:4): avc: denied { create
} for pid=254 comm="systemd-tmpfile" name="lastlog"
scontext=system_u:system_r:systemd_tmpfiles_t:s0
tcontext=system_u:object_r:lastlog_t:s
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=850116
Due to the above issue I'm not going to fix this for stretch. I'm about to
make a policy upload for unstable that will be the basis of a proposed update
to stretch to fix a number of issues. After I get that resolved I will upload
the n
severity 875672 wishlist
thanks
userdom_user_home_dir_filetrans(xdm_t, user_home_t, file, ".xsession-errors")
HOME_DIR/\.xsession-errors -- gen_context(system_u:object_r:xauth_home_t,s0)
We currently have the above 2 inconsistent lines in the policy, but it appears
to mostly work anyway. Let's
userdom_user_home_dir_filetrans(xdm_t, user_home_t, file, ".xsession-errors")
HOME_DIR/\.xsession-errors -- gen_context(system_u:object_r:xauth_home_t,s0)
We currently have the above 2 inconsistent lines in the policy, but it appears
to mostly work anyway. Let's leave this for stretch+1.
--
My
[9.141268] audit: type=1400 audit(1505308305.065:5): avc: denied {
execute_no_trans } for pid=407 comm="run-parts" path="/lib/bridge-utils/
ifupdown.sh" dev="sda2" ino=2495123 scontext=system_u:system_r:udev_t:s0-
s0:c0.c1023 tcontext=system_u:object_r:lib_t:s0 tclass=file permissive=0
/us
grub-mount needs to access debugfs:
--
My Main Blog http://etbe.coker.com.au/
My Documents Bloghttp://doc.coker.com.au/
Package: selinux-policy-default
Version: 2:2.20161023.1-9.1
Severity: normal
type=AVC msg=audit(1505307355.059:585): avc: denied { read } for pid=17991
comm="dnsmasq" name="dnsmasq.d" dev="sdb2" ino=3061167
scontext=system_u:system_r:dnsmasq_t:s0
tcontext=system_u:object_r:dnsmasq_etc_t:s0 t
fs_unmount_xattr_fs(bootloader_t)
allow bootloader_t bootloader_tmp_t:dir mounton;
files_search_mnt(bootloader_t)
fs_mount_fusefs(bootloader_t)
fs_mounton_fusefs(bootloader_t)
fs_read_fusefs_symlinks(bootloader_t)
fs_read_fusefs_files(bootloader_t)
f
Package: selinux-policy-default
Version: 2:2.20161023.1-9
Severity: normal
Found memtest86+ image: /memtest86+.bin
Found memtest86+ multiboot image: /memtest86+_multiboot.bin
rm: cannot remove '/var/lib/os-prober/labels': Permission denied
done
If you run update-grub when os-prober is installed y
Package: selinux-policy-default
Version: 2:2.20161023.1-9
Severity: normal
type=AVC msg=audit(1505302255.167:268): avc: denied { write } for pid=7218
comm="xauth" path="/home/user/.local/share/sddm/xorg-session.log" dev="sdb2"
ino=903949 scontext=unconfined_u:unconfined_r:xauth_t:s0-s0:c0.c10
Package: selinux-policy-default
Version: 2:2.20161023.1-9
Severity: normal
type=AVC msg=audit(1505299977.725:20): avc: denied { add_name } for pid=565
comm="brctl" name="hello_time" scontext=system_u:system_r:brctl_t:s0
tcontext=system_u:object_r:sysfs_t:s0 tclass=dir permissive=0
type=AVC ms
Package: selinux-policy-default
Version: 2:2.20161023.1-9
Severity: normal
[ 11.596038] audit: type=1400 audit(1505299976.513:5): avc: denied { unlink
} for pid=451 comm="systemd-tmpfile" name="mon" dev="sdb2" ino=2261257
scontext=system_u:system_r:systemd_tmpfiles_t:s0
tcontext=system_u:o
Package: selinux-policy-default
Version: 2:2.20161023.1-9
Severity: normal
libsemanage.semanage_pipe_data: Child process /usr/lib/selinux/hll/pp failed
with code: 255. (No such file or directory).
accountsd: libsepol.policydb_read: policydb module version 19 does not match my
version range 4-17
severity 874191 normal
thanks
Daemon in the wrong domain is not a reason to have the package removed from
testing.
--
My Main Blog http://etbe.coker.com.au/
My Documents Bloghttp://doc.coker.com.au/
On Thursday, 7 September 2017 8:06:12 PM AEST Harlan Lieberman-Berg wrote:
> Hm. Looking more, you may be right. What's odd is that some binaries
> that are (presumably) being launched by Gnome are being correctly
> given the right context; for example, gdm and X are running as
> system_u:system_
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=874201
Yesterday I was investigating an issue that might be related and I just filed
the above bug report. Please investigate whether that might be the cause.
# ps axZ|grep sddm
system_u:system_r:xdm_t:s0-s0:c0.c1023 963 ? Ssl0:00 /usr/bin
Package: selinux-policy-default
Version: 2:2.20161023.1-9
Severity: normal
https://github.com/systemd/systemd/issues/3845
https://bugzilla.redhat.com/show_bug.cgi?id=1411981
https://stackoverflow.com/questions/44127247/does-anyone-know-a-workaround-for-no-new-privileges-blocking-selinux-transition
Package: kwin-x11
Version: 4:5.8.7-1
Severity: normal
After upgrading to the latest Unstable my laptop appears to have title bars
that are about 50% higher than previously. It also doesn't seem possible to
configure the height.
On a laptop with a wide screen vertical space is at a premium and th
Package: konsole
Version: 4:16.12.0-4
Severity: normal
If I edit the current profile and set 80 columns by 25 rows then when I start
a new konsole I will get 80*27.
If I edit it and set 80*23 then I will get 80*25. It seems to consistently
give 2 more rows than requested.
-- System Information:
Package: dnsmasq
Version: 2.76-5
Severity: normal
A patch like the following is needed for correct operation on SE Linux systems
that aren't using systemd. This sets the correct context on that directory,
running restorecon multiple times is not a problem and running it when SE
Linux is disabled
Package: dnsmasq
Version: 2.76-5
Severity: normal
d /run/dnsmasq 755 dnsmasq nogroup
Something like the above in /usr/lib/tmpfiles.d/dnsmasq.conf will correctly
create the directory and assign the correct SE Linux context when running
systemd.
-- System Information:
Debian Release: 9.1
APT pr
Package: qemu-user-static
Version: 1:2.8+dfsg-6
Severity: normal
When /usr/bin/qemu-arm-static is run by default it emulates armv7l. I want to
emulate armv5tel so I need to set QEMU_CPU=pxa250 before running
/usr/bin/qemu-arm-static. This is OK when I want to run a single process
or chroot shell
This only happens when there's a timeout, not on other errors.
--
My Main Blog http://etbe.coker.com.au/
My Documents Bloghttp://doc.coker.com.au/
Package: mon
Version: 1.3.0-1
Severity: normal
until /usr/lib/mon/mon.d/remote.monitor --failure_duration=1800 --exclude
othello:montrexmon othello ; do sleep 1; done
When a mon server is unreachable (EG a router is down) a command like the above
will mostly give an error result (IE return somet
Package: mon
Version: 1.3.0-1
Severity: normal
9.4 13855 root qemu-system-x86_64 -
1.4 14113 root qemu-system-x86_64 -
5.3 14675 root qemu-system-x86_64 -
Above is part of the output of a loadavg alert, it shows a 1.4% CPU process
ahead of a 5.3% CPU process and it could miss listi
I've attached the patch I use to deal with this. While this patch may not be
suitable for a Debian package I think that it's worth sharing so other users
can make a custom version to fix this problem. It's really a big deal when
you have 30,000 logins per day...
--
My Main Blog http:
Package: btrfs-progs
Version: 4.7.3-1
Severity: normal
First I don't know if this is a btrfs-progs error or a kernel error. But when
in doubt it seems most reasonable to file against btrfs-progs to get the
attention of someone who can help work this out. Even if the kernel is doing
the wrong thi
On Tuesday, 27 June 2017 4:19:56 AM AEST Michael Biebl wrote:
> > Now what can we do about /dev and /sys/fs/cgroup neither of which needs to
> > be 24G in size on a system with 48G of RAM? Should I open a new bug
> > report about this?
>
> What exactly would that solve?
> Neither of those are wr
For /run specifying the number of inodes is also a good idea. For a system
with 160M of RAM it will default to 20480 inodes which may be more than you
want on a system with less than the recommended amount of RAM.
tmpfs /run tmpfs nosuid,noexec,size=20M,nr_inodes=4096 0 0
The above might be m
On systems with large amounts of RAM allocating 10% for /run is also
undesirable. My latest server has 48G of RAM (not really big by server
standards) and I don't want a runaway process writing to /run to consume 4.8G
of RAM before it is stopped.
/dev has no size specified in /usr/share/initra
Package: openssh-client
Version: 1:7.4p1-11
Severity: normal
Some sites provide a md5 fingerprint of host keys and some provide sha256.
As the FingerprintHash is only used rarely (the first time you connect to a
server) there is no downside to providing a second line of output.
Please make it pos
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=862956
The above bug in Unstable might be in libxml-stream-perl, my Perl skills
aren't up to fixing this and the sendxmpp maintainer hasn't responded. I
think it would be good if one of the Perl experts could have a look at it.
--
My Main Blog
severity 797964 important
thanks
On Monday, 5 June 2017 10:50:00 AM AEST Christoph Biedl wrote:
> > On Mon, 4 Apr 2016 07:33:18 PM Russell Coker wrote:
> > > This still happens exactly as reported in version 1:7.2p2-2.
> >
> > I've attached a 1 line patch to
Package: opendkim
Version: 2.11.0~alpha-10
Severity: normal
The ownership and permissions of /var/run/opendkim are determined in normal
operation by tmpfiles.d if you are running systemd or /etc/default/opendkim
if not.
# Set ownership if the admin has not overriden it.
if ! dpkg-
reassign 863187 newrole
tags 863187 - unreproducible
tags 863187 - moreinfo
retitle 863187 run_init messes up terminal settings
thanks
On Wed, 24 May 2017 07:10:28 AM Andreas Henriksson wrote:
> Control: tags -1 + unreproducible moreinfo
It turns out that the problem was not running $(arch), but
On Tue, 23 May 2017 02:49:21 AM Michael Biebl wrote:
> > Sorry for the delay in responding. I've attached those files.
>
> The configuration you attached doesn't seem to match up.
> E.g. the original fstab didn't have x-systemd.automount.
I've set the system to not use automount, rebooted it, an
Package: util-linux
Version: 2.29.2-1
Severity: normal
When I run $(arch) at the command-line (which expands to x86_64 on my system)
I then can't run apt-get. Below is what happens, the Abort is immediately
after running apt-get without me entering anything on the terminal.
This was particularly
reopen 851143
thanks
> > Could you attach the output of
> > systemctl status mail.mount
> > systemctl show mail.mount
>
> Since I don't have a selinux enabled system so I could try and reproduce
> this and no further information was provided, I'm closing this bug report.
>
> Please reopen if you
Package: sendxmpp
Version: 1.23-1.1
Severity: normal
# echo test| sendxmpp russ...@coker.com.au
Use of uninitialized value in numeric eq (==) at /usr/share/perl5/XML/Stream.pm
line 631
-- System Information:
Debian Release: 9.0
APT prefers testing
APT policy: (500, 'testing')
Architecture:
Package: torbrowser-launcher
Version: 0.2.6-3.1
Severity: normal
rjc@stretch386:~/.local/share/torbrowser/tbb/i686/tor-browser_en-US/Browser$
./firefox --class 'Tor Browser' -profile TorBrowser/Data/Browser/profile.default
XPCOMGlueLoad error for file
/home/rjc/.local/share/torbrowser/tbb/i686/t
Package: mon-contrib
Version: 1.0+dfsg-3+nmu1
Severity: normal
Generally logs don't belong in /var/lib. Also we want to separate alerts from
monitor scripts for security reasons. While /usr/lib/mon/alert.d/sms.alert
has the line using /var/lib/mon commented out, it's there as a suggestion for
pe
I just took a Jessie system with all updates applied and tested that I could
login with an as limit of 2. I then configured apt for the stretch
repository and used apt to upgrade it:
# apt-get install openssh-server
Reading package lists... Done
Building dependency tree
Reading state
Package: mdadm
Version: 3.4-4+b1
Severity: normal
It seems that if you want to have mdadm installed but not present in the
initramfs then the only option is to remove the mdadm files from under
/usr/share/initramfs-tools. Otherwise you get a larger initramfs and some
delay while it tries to assem
Package: mon
Version: 1.2.0-9+nmu4
Severity: normal
The monshow program can't run without libcgi-pm-perl installed. As monshow is
quite important to installing mon locally the package libcgi-pm-perl should
at least be in the recommended list and possibly be a dependency of mon.
-- System Informa
Package: openssh-server
Version: 1:7.4p1-10
Severity: normal
rjc softas 2
On a standard Jessie AMD64 configuration I could have an entry in
/etc/security/limits.conf like the above and still be able to login. The sshd
process for the user login is reported by ps
Package: xserver-xorg-video-intel
Version: 2:2.99.917+git20161206-1
Severity: normal
I am running a i7-2600 which according to Intel was released in 2011 and meets
the "your hw is new enough (ca. 2007 and newer)" criteria for discouraging
the use of this package according to the long description.
Package: grub-common
Version: 2.02~beta3-5
Severity: normal
# dpkg-reconfigure linux-image-4.9.0-2-amd64
/etc/kernel/postinst.d/initramfs-tools:
update-initramfs: Generating /boot/initrd.img-4.9.0-2-amd64
cryptsetup: WARNING: target sda2_crypt has a random key, skipped
/etc/kernel/postinst.d/zz-up
Package: grub-common
Version: 2.02~beta3-5
Severity: normal
mkdir /tmp/foo
cd /tmp/foo
rmdir /tmp/foo
dpkg-reconfigure linux-image-4.9.0-2-amd64
After running the above commands I get lots of expected errors about getcwd,
but also get:
/usr/sbin/grub-probe: error: out of memory.
run-parts: /etc/k
Package: opendkim
Version: 2.11.0~alpha-9
Severity: normal
Tags: upstream
If this table specifies a regular expression file ("refile"),
then the keys are wildcard patterns that are matched against the
address found in the From: header field. Entries ar
Package: opendkim
Version: 2.11.0~alpha-9
Severity: normal
Apr 7 17:06:21 smtp systemd[1]: Configuration file
/etc/systemd/system/opendkim.service.d/override.conf is marked
world-inaccessible. This has no effect as configuration data is accessible via
APIs without restrictions. Proceeding anyw
Package: prosody
Version: 0.9.12-1
Severity: normal
Tags: patch
The following patch will give the pid directory the coorect context when
running SE Linux and have no affect when not running SE Linux.
--- /etc/init.d/prosody.orig2017-04-06 23:36:36.588621558 +1000
+++ /etc/init.d/prosody 2017-
Package: opendkim
Version: 2.11.0~alpha-9
Severity: normal
/run replaced /var/run more than 4 years ago. The canonical name /run should
be used to avoid problems if /var isn't mounted and to have a single name for
the initial labelling of SE Linux and also possibly other security systems.
/usr/li
Package: opendkim
Version: 2.11.0~alpha-9
Severity: important
After upgrading opendkim to the Stretch version from Jessie I get the following
error about liblua5.1.so.0 when running it. To solve the error I need to
upgrade liblua5.1-0 to the Stretch version, so a versioned dependency is
needed.
Package: initramfs-tools
Version: 0.127
Severity: important
# dpkg-reconfigure linux-image-4.9.0-2-amd64
/etc/kernel/postinst.d/initramfs-tools:
update-initramfs: Generating /boot/initrd.img-4.9.0-2-amd64
E: busybox or busybox-static, version 1:1.22.0-17~ or later, is required but
not installed
reopen 858187
thanks
On Tue, 4 Apr 2017 04:14:09 PM Gianfranco Costamagna wrote:
> control: fixed -1 7.6.33+dfsg-10
> control: close -1
>
> Hello,
>
> >Version: 7.6.33+dfsg-10
>
> actually this version should be working (I broke it between -6 and -9, but
> thanks to Christian I fixed it)
>
> p
Package: opendkim
Version: 2.11.0~alpha-9
Severity: normal
Authentication-Results: smtp.sws.net.au;
dkim=fail reason="key not found in DNS" (0-bit key; unprotected)
header.d=etbe.example.com header.i=@etbe.example.com header.b="VHEGE743";
dkim-atps=neutral
Above is a header error
301 - 400 of 1366 matches
Mail list logo
