Bug#819017: kadm5.acl stub should be provided as is

23.03.2016, 01:10, Sam Hartman kirjoitti: > Not really. > The acl is clearly not a conffile, because there is no default that is > correct for a majority of sites. > So, it's not appropriate to ship in a package, but instead should be > created by a postinst somewhere. > (I've been planning to get

Bug#817142: [Pkg-dns-devel] Bug#817142: Add systemd support

08.03.2016, 18:21, Timo Aaltonen kirjoitti: > 08.03.2016, 17:30, Daniel Kahn Gillmor kirjoitti: >> On Tue 2016-03-08 08:01:44 -0500, Timo Aaltonen wrote: >>> diff --git a/debian/opendnssec-enforcer.service >>> b/debian/opendnssec-enforcer.service >>> ne

Bug#819017: kadm5.acl stub should be provided as is

Package: krb5-admin-server Severity: normal Hi I'm packaging freeipa, which does it's own thing when configuring krb5kdc among other things. That means that when everything is set up it's missing kadm5.acl since freeipa doesn't use krb5_newrealm. Could it just be shipped in /etc/krb5kdc

Bug#798430: apache2: please add systemd service file

h works great with 389-ds-base and pki-server. -- t commit ff10ac8e17f358968fef795e62ff054112a4a0e1 Author: Timo Aaltonen <tjaal...@debian.org> Date: Sat Mar 19 11:48:00 2016 +0200 systemd integration diff --git a/debian/apache2.dirs b/debian/apache2.dirs index 531c08f..4060de8 1006

Bug#817862: Please document which packages this package can replace

11.03.2016, 06:42, Josh Triplett kirjoitti: > Source: xserver-xorg-input-libinput > Severity: wishlist > > The driver in this package can replace the one in > xserver-xorg-video-libinput, and xserver-xorg-video-mouse already > shouldn't get used on current Linux systems. However, does this

Bug#817784: xserver-xorg-video-intel: gnome dont load after xserver-xorg-video-intel upgrade

10.03.2016, 15:23, Mario Geiger kirjoitti: >> Interesting, you should have >> /usr/lib/xorg/modules/drivers/modesetting_drv.so shipped by >> xserver-xorg-core which would be used on Skylake... can you verify it's >> there? > > Yes, the file exists. Right, but you also have an xorg.conf

Bug#817784: xserver-xorg-video-intel: gnome dont load after xserver-xorg-video-intel upgrade

10.03.2016, 11:23, Mario Geiger kirjoitti: > Package: xserver-xorg-video-intel > Version: 2:2.99.917+git20160218-1 > Severity: important > > Dear Maintainer, > > After upgrade xserver-xorg-video-intel to version 2:2.99.917+git20160307-1 > (with sudo apt-get upgrade) > gdm3 load but after typing

Bug#817142: [Pkg-dns-devel] Bug#817142: Add systemd support

08.03.2016, 17:30, Daniel Kahn Gillmor kirjoitti: > On Tue 2016-03-08 08:01:44 -0500, Timo Aaltonen wrote: >> diff --git a/debian/opendnssec-enforcer.service >> b/debian/opendnssec-enforcer.service >> new file mode 100644 >> index 000..fb60d14 >> --- /de

Bug#817142: Add systemd support

Source: opendnssec Version: 1.4.9-1 Severity: wishlist Hi The attached patch adds support for systemd to opendnssec, which I need for FreeIPA 4.3. -- t commit 87783f37bf849b9db6fff7973d46fe12c0c3766f Author: Timo Aaltonen <tjaal...@debian.org> Date: Tue Mar 8 14:53:54 2016

Bug#715505: Updated OpenChrome driver available

18.02.2016, 07:23, Jeffrey Walton kirjoitti: > Hi Everyone, > > I tested the updated OpenChrome driver tonight. The driver fixes the > crash I was experiencing under the existing driver. > > I would strongly encourage Debian's Xorg team to get this driver into > Unstable or Testing as soon as

Bug#815395: [Pkg-freeipa-devel] Bug#815395: python-kdcproxy: FTBFS: dh_auto_test: pybuild --test --test-pytest -i python{version} -p 2.7 --dir . returned exit code 13

21.02.2016, 10:37, Chris Lamb kirjoitti: > Source: python-kdcproxy > Version: 0.3.2-1 > Severity: serious > Justification: fails to build from source > User: reproducible-bui...@lists.alioth.debian.org > Usertags: ftbfs > X-Debbugs-Cc: reproducible-bui...@lists.alioth.debian.org > > Dear

Bug#815135: No cursor displayed

19.02.2016, 10:56, Vincent Bernat kirjoitti: > Package: xserver-xorg-video-intel > Version: 2:2.99.917+git20160218-1 > Severity: normal > > Hi! > > Since last upgrade, no cursor is displayed in my case. Dunno exactly > how to investigate such an issue. Tried to reboot several time, to > switch

Bug#814922: ITP: vulkan-loader -- Vulkan loader library and tools

Package: wnpp Severity: wishlist Owner: Timo Aaltonen <tjaal...@debian.org> X-Debbugs-Cc: debian-de...@lists.debian.org * Package name: vulkan-loader Version : 1.0.3~git20160215 Upstream Author : Khronos Group, Inc. * URL : https://github.com/KhronosGroup/

Bug#813610: Please update to 0.4.4

Package: xf86-video-omap Severity: wishlist Please update to 0.4.4: Khem Raj (1): drmmode_output_dpms: Replace logical && with bitwise & operation Rob Clark (1): NEWS: Bump version to 0.4.4 Robert Nelson (1): add support for AM572x in the DDX Steve Wilkins

Bug#759645: [Pkg-freeipa-devel] Bug#759645: tomcatjss: Please replace dependencies on tomcat7 with tomcat8

28.01.2016, 15:03, Emmanuel Bourg kirjoitti: > It looks like the switch to libtomcat8-java was attempted in the version > 7.1.2-1 and then reverted. What went wrong? I couldn't get dogtag-pki migrated to tomcat8, it failed to create new instances and I wasn't able to figure out why. -- t

Bug#787593: [Pkg-freeipa-devel] Bug#787593: Some sources are not included in your package

On 03.06.2015 13:01, bastien ROUCARIÈS wrote: > Package: src:freeipa > version; 4.0.5-5 > user: lintian-ma...@debian.org > usertags: source-is-missing > severity: serious > X-Debbugs-CC: ftpmas...@debian.org > > Hi, > > Your package seems to include some files that lack sources > in prefered

Bug#809271: [Pkg-freeipa-devel] Bug#809271: freeipa: FTBFS: configure: error: libpdb does not have make_pdb_method

On 01.01.2016 22:58, Alexander Bokovoy wrote: > On Mon, 28 Dec 2015 21:29:58 + Chris Lamb wrote: >> Source: freeipa >> Version: 4.0.5-6 >> Severity: serious >> Justification: fails to build from source >> User: reproducible-bui...@lists.alioth.debian.org >> Usertags: ftbfs

Bug#808640: [Pkg-freeipa-devel] Bug#808640: custodia: FTBFS: Could not find any downloads that satisfy the requirement sphinx<1.3.0

On 21.12.2015 18:18, Chris West (Faux) wrote: > Source: custodia > Version: 0.1.0-2 > Severity: serious > Justification: fails to build from source > Tags: sid stretch > User: reproducible-bui...@lists.alioth.debian.org > Usertags: ftbfs > X-Debbugs-CC: reproducible-bui...@lists.alioth.debian.org

Bug#802609: ITP: oddjob -- D-Bus service which runs odd jobs

Package: wnpp Severity: wishlist Owner: Timo Aaltonen <tjaal...@debian.org> * Package name: oddjob Version : 0.34.3 Upstream Author : Red Hat, Inc. * URL : https://www.fedorahosted.org/oddjob/ * License : BSD Programming Lang: C Description :

Bug#802491: ITP: python-kdcproxy -- Kerberos KDC HTTP proxy WSGI module for python

Package: wnpp Severity: wishlist Owner: Timo Aaltonen <tjaal...@debian.org> * Package name: python-kdcproxy Version : 0.3.2 Upstream Author : Red Hat, Inc. * URL : http://github.com/npmccallum/kdcproxy * License : MIT Programming Lang: Python Descr

Bug#801061: [Pkg-freeipa-devel] Bug#801061: pki-server: pki-tomcatd@.service ExecStart and ExecStop refer to non-existant path /usr/libexec/tomcat/server

On 05.10.2015 22:38, Diane Trout wrote: > Package: pki-server > Version: 10.2.6-2 > Severity: important > > Hello again, > > Thank you for the quick response for the last two bugs I filed. > > I got a bit further starting up pki-server under systemd, the paths in > the systemd .service file are

Bug#801061: [Pkg-freeipa-devel] Bug#801061: pki-server: pki-tomcatd@.service ExecStart and ExecStop refer to non-existant path /usr/libexec/tomcat/server

On 05.10.2015 22:38, Diane Trout wrote: > Package: pki-server > Version: 10.2.6-2 > Severity: important > > Hello again, > > Thank you for the quick response for the last two bugs I filed. > > I got a bit further starting up pki-server under systemd, the paths in > the systemd .service file are

Bug#781607: [Pkg-freeipa-devel] Bug#781607: Bug#781607: Bug#781607: FreeIPA 4.2

On 04.10.2015 09:12, Harald Dunkel wrote: > Hi freeipa maintainers and everybody involved, > > I just found the new version 4.1.4 in the repository. This > is amazing. Can't wait to try it out. Yes, it wasn't too hard to finish after dogtag 10.2.6. For 4.2 unstable now has SSSD 1.13.1, and I'm

Bug#800702: ITP: python-jwcrypto -- Python implementation of JOSE Web standards

Package: wnpp Severity: wishlist Owner: Timo Aaltonen <tjaal...@debian.org> * Package name: python-jwcrypto Version : 0.2.1 Upstream Author : Simo Sorce * URL : https://github.com/simo5/jwcrypto * License : LGPL-3+ Programming Lang: Python Descr

Bug#800735: ITP: custodia -- Modular and pluggable Secrets Manager

Package: wnpp Severity: wishlist Owner: Timo Aaltonen <tjaal...@debian.org> * Package name: custodia Version : 0.1.0 Upstream Author : Simo Sorce * URL : https://github.com/simo5/custodia * License : LGPL-3+ Programming Lang: Python Descr

Bug#800558: [Pkg-freeipa-devel] Bug#800558: pki-server: pki-tomcatd@.service reads /etc/default/tomcat8 but package depends on tomcat7-user

On 01.10.2015 00:22, Diane Trout wrote: > Package: pki-server > Version: 10.2.6-1 > Severity: important > > > Dear Maintainer, > > I was attempting to test freeipa in a VM that was upgraded from jessie to > testing. On boot systemd was reporting that pki-tomcatd@pki-tomcat.service > was

Bug#800361: ITP: libnunc-stans -- Thread pool based event framework wrapper

Package: wnpp Severity: wishlist Owner: Timo Aaltonen <tjaal...@debian.org> * Package name: libnunc-stans Version : 0.1.5 Upstream Author : Red Hat * URL : http://fedorahosted.org/nunc-stans * License : GPL-3+ Programming Lang: C Description :

Bug#795399: [Pkg-freeipa-devel] Bug#795399: freeipa: CVE-2015-5179: non-printable characters aren't check in every case of user data

On 13.08.2015 20:33, Salvatore Bonaccorso wrote: > Source: freeipa > Version: 4.0.5-5 > Severity: important > Tags: security upstream > > Hi Timo, > > the following vulnerability was published for freeipa. I cannot easily > test it for older version 4.0.5, could you confirm that? > >

Bug#794332: [Pkg-sssd-devel] Bug#794332: sssd-common: deletes conffile owned by sssd: /etc/logrotate.d/sssd

On 01.08.2015 17:19, Andreas Beckmann wrote: > Package: sssd-common > Version: 1.12.5-2 > Severity: serious > User: debian...@lists.debian.org > Usertags: piuparts > Control: affects -1 + sssd > > Hi, > > during a test with piuparts I noticed your package deletes an > (obsolete) conffile owned

Bug#793660: [Pkg-sssd-devel] Bug#793660: libsss-sudo: breaks sudo's default entry / floods root inbox with many "SECURITY information" emails.

reassign 793660 sudo thanks On 26.07.2015 10:17, Dmitry Smirnov wrote: > Package: libsss-sudo > Version: 1.12.5-1 > Severity: normal > Control: affects -1 sudo > > As reported in > > * https://bugs.launchpad.net/ubuntu/+source/sssd/+bug/1249777 > *

Bug#781607: [Pkg-freeipa-devel] Bug#781607: FreeIPA 4.2

On 04.09.2015 10:38, Harald Dunkel wrote: > AFAICS softhsm2 is available since last week. ok, a new source package, missed that. > bind9 9.10 rc2 appears to be in experimental for >1y. > Its not set to RFH or RFA, #781739 doesn't tell, so I > wonder what is wrong with upstreams current version?

Bug#781607: [Pkg-freeipa-devel] Bug#781607: Bug#781607: FreeIPA 4.2

On 04.09.2015 10:59, Harald Dunkel wrote: > On 09/04/15 09:43, Timo Aaltonen wrote: >> On 04.09.2015 10:38, Harald Dunkel wrote: >>> bind9 9.10 rc2 appears to be in experimental for >1y. >>> Its not set to RFH or RFA, #781739 doesn't tell, so I >>> wond

Bug#781607: [Pkg-freeipa-devel] Bug#781607: FreeIPA 4.2

On 03.09.2015 14:24, Harald Dunkel wrote: > I would be highly interested, too. It hurts to see Debian > and Ubuntu fell behind on opensource identity management > services. still missing dependencies: dogtag 10.2.6 (in git, doesn't work properly yet) BIND 9.10.x softhsm 2.0 then there's also

Bug#770375: offer to adopt nss-wrapper

Hi pkg-sssd could adopt nss-wrapper. -- t

Bug#782374: offer to adopt uid-wrapper

Hi pkg-sssd could adopt uid-wrapper. -- t

Bug#795686: ITP: xserver-xorg-video-amdgpu -- X.Org X server -- AMDGPU video driver

Package: wnpp Severity: wishlist Owner: Timo Aaltonen tjaal...@debian.org X-Debbugs-Cc: debian-de...@lists.debian.org * Package name: xserver-xorg-video-amdgpu Version : 0.0.01~git20150807 Upstream Author : Advanced Micro Devices, Inc. * URL : http://www.x.org

Bug#795647: ITP: gss-ntlmssp -- GSSAPI NTLMSSP Mechanism

Package: wnpp Severity: wishlist Owner: Timo Aaltonen tjaal...@debian.org * Package name: gss-ntlmssp Version : 0.6.0 Upstream Author : Simo Sorce * URL : https://fedorahosted.org/gss-ntlmssp/ * License : LGPL-3 Programming Lang: C Description : GSSAPI

Bug#794301: [Pkg-fedora-ds-maintainers] Bug#794301: Bug#794301: 389-console: missing bogus dependency

reassign 794301 389-ds-base thanks On 10.08.2015 22:47, Ben Hildred wrote: The console depends on the directory server, which does not depend on systemd, but still acts as if it does. And since the directory server conflicts with slapd, and I need a ldap server to test the ldap client, and I

Bug#794301: [Pkg-fedora-ds-maintainers] Bug#794301: Bug#794301: 389-console: missing bogus dependency

On 11.08.2015 05:43, Ben Hildred wrote: On Mon, Aug 10, 2015 at 8:30 PM, Timo Aaltonen tjaal...@debian.org mailto:tjaal...@debian.org wrote: reassign 794301 389-ds-base thanks On 10.08.2015 22:47, Ben Hildred wrote: The console depends on the directory server, which

Bug#794301: [Pkg-fedora-ds-maintainers] Bug#794301: 389-console: missing bogus dependency

On 01.08.2015 05:12, Ben Hildred wrote: Package: 389-console Version: 1.1.7-2 Severity: serious Justification: Policy 9.11 386-ds assumes systemd but does not include it in its list of dependencies. Further why does a ldap browser need to depend on init? [15/07/31:19:15:16] - [Setup] Info

Bug#793782: ITP: nuxwdog -- Watchdog daemon

Package: wnpp Severity: wishlist Owner: Timo Aaltonen tjaal...@debian.org * Package name: nuxwdog Version : 1.0.3 Upstream Author : Red Hat, Inc. * URL : https://fedorahosted.org/nuxwdog/ * License : LGPL-2.1 Programming Lang: C++, Java, Perl Description

Bug#725153: [Pkg-freeipa-devel] [Pkg-openldap-devel] Bug#725153: freeipa-server backport to Jessie?

On 17.04.2015 21:54, Ryan Tandy wrote: On Fri, Apr 17, 2015 at 07:45:24AM +0300, Timo Aaltonen wrote: Actually, I pushed a hacked up libldap to my openldap git on alioth yesterday, but forgot to update this bug, oops git://git.debian.org/git/users/tjaalton/openldap.git it doesn't build

Bug#725153: [Pkg-freeipa-devel] [Pkg-openldap-devel] Bug#725153: freeipa-server backport to Jessie?

On 17.04.2015 02:32, Ryan Tandy wrote: On Wed, Apr 15, 2015 at 06:45:39PM +0200, Holger Levsen wrote: to build the openldap package against libnss3-dev, one has to: - in debian/control: replace the build-dependency on libgnutls28-dev with libnss3-dev - in debian/configure.options: use

Bug#725153: [Pkg-freeipa-devel] freeipa-server backport to Jessie?

On 15.04.2015 19:45, Holger Levsen wrote: Hi, this has become off-topic for debian-backports so please don't include debian- backpo...@lists.debian.org in your replies. On Mittwoch, 15. April 2015, Holger Levsen wrote: On Mittwoch, 15. April 2015, Timo Aaltonen wrote: That's separate libldap

Bug#781793: unblock: slapi-nis/0.54.2-1

@@ -1,3 +1,11 @@ +slapi-nis (0.54.2-1) unstable; urgency=medium + + * New upstream bugfix release +- CVE-2015-0283: infinite loop in getgrnam_r() and getgrgid_r() + (Closes: #781346) + + -- Timo Aaltonen tjaal...@debian.org Thu, 02 Apr 2015 09:24:07 +0300 + slapi-nis (0.54-1) unstable

Bug#781607: [Pkg-freeipa-devel] Bug#781607: Bug#781607: Bug#781607: freeipa: please package new upstream version

On 02.04.2015 08:44, Timo Aaltonen wrote: On 01.04.2015 13:06, Holger Levsen wrote: control: block -1 by 780354 Hi Timo, On Dienstag, 31. März 2015, Timo Aaltonen wrote: It needs at least bind 9.10 or up and softhsm 2.0.0b2 (see bug #780354). Could be others too, didn't really bother

Bug#781346: [Pkg-freeipa-devel] Bug#781346: slapi-nis: CVE-2015-0283: infinite loop in getgrnam_r() and getgrgid_r()

On 27.03.2015 21:03, Salvatore Bonaccorso wrote: Source: slapi-nis Version: 0.54-1 Severity: grave Tags: security upstream fixed-upstream Hi Timo, the following vulnerability was published for slapi-nis. I was not able to verify the issue itself but only checked patch-wise.

Bug#781607: [Pkg-freeipa-devel] Bug#781607: Bug#781607: freeipa: please package new upstream version

On 01.04.2015 13:06, Holger Levsen wrote: control: block -1 by 780354 Hi Timo, On Dienstag, 31. März 2015, Timo Aaltonen wrote: It needs at least bind 9.10 or up and softhsm 2.0.0b2 (see bug #780354). Could be others too, didn't really bother checking further. Thanks for the info

Bug#781607: [Pkg-freeipa-devel] Bug#781607: freeipa: please package new upstream version

On 31.03.2015 17:31, Holger Levsen wrote: package: freeipa severity: wishlist Hi Timo, as you'll undoubtly know, freeipa 4.1.3 is out - do you have any estimate when you'll get around packaging it? And, do you happen to know if it will be sufficient to upgrade just the freeipa source

Bug#781224: [Pkg-freeipa-devel] Bug#781224: freeipa: CVE-2015-1827

close 781224 thanks On 26.03.2015 10:31, Moritz Muehlenhoff wrote: Package: freeipa Severity: grave Tags: security Justification: user security hole This was assigned CVE-2015-1827: https://fedorahosted.org/freeipa/ticket/4908 Upstream says this only affects 4.1 and master, not 4.0.x

Bug#780386: [Pkg-freeipa-devel] Bug#780386: missing Depends

On 13.03.2015 10:20, Harald Dunkel wrote: Package: freeipa-server Version: 4.0.5-3 root@ldap0:~# systemctl -bash: systemctl: command not found Oh yes, freeipa essentially depends on systemd anyway as it's install would fail later on if not running systemd as init. I'll make it depend on

Bug#780354: Please update to 2.0.0b2

Package: softhsm Severity: wishlist Hi Freeipa 4.1.x depends on the native pkcs11 implementation in BIND 9.10. But it can't be used without SoftHSMv2, so it'd need to be packaged first. Please consider packaging it in experimental. -- t -- To UNSUBSCRIBE, email to

Bug#772136: [Pkg-freeipa-devel] Bug#772136: freeipa-server-trust-ad: unnecessary depends on libssl1.0.0 or possible licensing issue

On 05.12.2014 14:33, Jelmer Vernooij wrote: Package: freeipa-server-trust-ad Version: 4.0.5-2 Severity: normal Dear Maintainer, freeipa-server-trust-ad depends on libssl1.0.0. This appears to be unnecessary from what I can tell - none of the so files in the package actually link

Bug#772107: unblock: bind-dyndb-ldap/6.0-4

On 18.02.2015 01:06, Mehdi Dogguy wrote: From the diff, I see that there might be a missing dependency on bind9, cache directory not writable, default keytab file non-existent. There are other changes but didn't read them carefully, tbh. Huh? -4 added bind9 dependency.. and the only consumer

Bug#775781: mesa 10.4.2 from unstable won't build packages on jessie

On 19.01.2015 22:01, Darius Spitznagel wrote: Source: mesa Version: 10.4.2 Severity: normal Dear Maintainer, since Mesa 10.4.x landed in Debian I cannot compile mesa anymore because the build process does not know what to do with gallium_drv_video.so. I know how to solve this, but I am

Bug#772195: [Pkg-fedora-ds-maintainers] Bug#772195: 389-ds-base: bashism in /bin/sh script

On 15.01.2015 08:18, Vagrant Cascadian wrote: On 2014-12-10, Rowan Thorpe wrote: I've attached a debian-patch which hopefully addresses all of these (and one or two which checkbashisms didn't get). Please let me know if I missed anything. This seems like a patch that should be forwarded

Bug#772695: [Pkg-sssd-devel] Bug#772695: sssd crashes on startup because of samba ldb modules version

On 10.12.2014 09:17, Michal Kašpar wrote: Package: sssd Version: 1.11.7-2 Severity: important Dear Maintainer, After some late updates of Samba/libldb packages sssd doesn't start anymore. It crashes with error message: db: module version mismatch in ../source4/dsdb/samdb/ldb_modules/acl.c

Bug#772107: unblock: bind-dyndb-ldap/6.0-4

On 06.12.2014 19:40, Ivo De Decker wrote: Control: tags -1 moreinfo Hi, On Fri, Dec 05, 2014 at 10:10:29AM +0200, Timo Aaltonen wrote: Please unblock package bind-dyndb-ldap It has no reverse deps in jessie to break, freeipa-server is the only one which isn't there. Unblocking would

Bug#772107: unblock: bind-dyndb-ldap/6.0-4

:48:08.0 +0300 +++ bind-dyndb-ldap-6.0/debian/changelog2014-11-07 08:15:30.0 +0200 @@ -1,3 +1,23 @@ +bind-dyndb-ldap (6.0-4) unstable; urgency=medium + + * control: Depend on bind9. (Closes: #768392) + + -- Timo Aaltonen tjaal...@debian.org Fri, 07 Nov 2014 08:15:27 +0200

Bug#772108: unblock: tomcatjss/7.1.1-2

@@ +tomcatjss (7.1.1-2) unstable; urgency=medium + + * control: Add versioned depends on libjss-java with TLS support to the +binary too. + + -- Timo Aaltonen tjaal...@debian.org Wed, 26 Nov 2014 15:50:17 +0200 + tomcatjss (7.1.1-1) unstable; urgency=medium * New upstream release. diff -Nru

Bug#772111: unblock: jss/4.3.1-6

-4.3.1/debian/changelog --- jss-4.3.1/debian/changelog 2014-10-25 13:14:36.0 +0300 +++ jss-4.3.1/debian/changelog 2014-11-26 15:48:23.0 +0200 @@ -1,3 +1,9 @@ +jss (4.3.1-6) unstable; urgency=medium + + * jss-PBE-PKCS5-V2-secure-P12.patch: Bump NUM_ALGS. (Closes: #688472) + + -- Timo

Bug#769446: [Pkg-freeipa-devel] Bug#769446: Bug#769446: certmonger: Failed to issue method call: Unit dbus.socket failed to load: No such file or directory.

On 26.11.2014 16:55, Timo Aaltonen wrote: On 22.11.2014 16:35, Simon McVittie wrote: On Thu, 13 Nov 2014 at 23:30:00 -0800, Cameron Norman wrote: On Thu, 13 Nov 2014 17:59:51 +0100 Benjamin Drung benjamin.dr...@profitbricks.com wrote: Setting up certmonger (0.75.14-2) ... Failed to issue

Bug#770629: [Pkg-sssd-devel] Bug#770629: sssd-ldap: ldap_result error: [Can't contact LDAP server] when CNAME

severity 770629 normal thanks On 22.11.2014 20:34, Luca Capello wrote: Package: sssd-ldap Version: 1.11.7-1 Severity: important Usertags: pca.it-authentication Hi there, sorry for the delay, the subject says all: = root@gismo:/etc# tail -f /var/log/sssd/sssd_LDAP.log (Sat Nov 22

Bug#749722: [Pkg-sssd-devel] Bug#749722: libsss-sudo: modified /etc/nsswitch.conf after purge

On 08.11.2014 21:35, Andreas Beckmann wrote: BTW, isn't doing that in the postrm too late anyway? Shouldn't that be removed already by prerm remove? With the postrm approach there is a small timespan where sudo could fail: the libsss library is already removed, but still referenced in

Bug#769446: [Pkg-freeipa-devel] Bug#769446: certmonger: Failed to issue method call: Unit dbus.socket failed to load: No such file or directory.

On 22.11.2014 16:35, Simon McVittie wrote: On Thu, 13 Nov 2014 at 23:30:00 -0800, Cameron Norman wrote: On Thu, 13 Nov 2014 17:59:51 +0100 Benjamin Drung benjamin.dr...@profitbricks.com wrote: Setting up certmonger (0.75.14-2) ... Failed to issue method call: Unit dbus.socket failed to load:

Bug#770825: base-files: add sudoers entry to nsswitch.conf

Package: base-files Version: 7.10 Severity: normal Hi, libsss-sudo and sudo-ldap (at least) modify nsswitch.conf in their postinst, adding 'sudoers: files $foo' to it. The problem is that on purge they'd need to remove the entry completely so that piuparts doesn't fail, but that might break

Bug#749722: [Pkg-sssd-devel] Bug#749722: libsss-sudo: modified /etc/nsswitch.conf after purge

On 21.11.2014 13:47, Andreas Beckmann wrote: On 2014-11-21 07:09, Timo Aaltonen wrote: So I guess it would make sense for base-files to add sudoers: files to the default nsswitch.conf? Yes. Could you file a bug, please? http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=770825 PS: I didn't

Bug#749722: [Pkg-sssd-devel] Bug#749722: libsss-sudo: modified /etc/nsswitch.conf after purge

On 08.11.2014 21:35, Andreas Beckmann wrote: Strange, purge works for me.. This probably depends on how /etc/nsswitch.conf looked before the test, i.e. whether it already contained a sudoers line. :: root@sid:/etc md5sum nsswitch.conf d204d419661fba0df52f9be8e2a29fdd nsswitch.conf I

Bug#769815: ITP: cobbler -- network boot, install and update server

On 16.11.2014 19:34, Thomas Goirand wrote: Package: wnpp Severity: wishlist Owner: Thomas Goirand z...@debian.org * Package name: cobbler Version : 2.6.6+dfsg1 Upstream Author : Michael DeHaan mdeh...@redhat.com * URL : http://www.cobblerd.org/ * License

Bug#768220: dupe of #722665?

On 14.11.2014 12:46, Hilko Bengen wrote: * Timo Aaltonen: This sounds more like a dupe of #722665 where the fault is that libjackson-json-java never should've had the symlink called jackson-core-java... Which package should provide the versionless .jar file? Is the versionless .jar

Bug#768220: dupe of #722665?

This sounds more like a dupe of #722665 where the fault is that libjackson-json-java never should've had the symlink called jackson-core-java... Renaming the versionless jar symlink in -core would break other software (dogtag-pki for instance). So update libjackson-json-java in wheezy instead?

Bug#768122: [Pkg-freeipa-devel] Bug#768122: freeipa-server: Bind fails to start during ipa-server-install because of wrong configuration template

On 05.11.2014 08:01, Michal Kaspar wrote: Package: freeipa-server Version: 4.0.4-2 Severity: normal Dear Maintainer, Bind configuration template (/usr/share/ipa/bind.named.conf.template) fits Fedora conventions of config and other files placement, which leads to inability to start bind9

Bug#768161: unblock: dogtag-pki/10.2.0-3

: dogtag-pki (10.2.0-3) unstable; urgency=medium * control: Add Breaks/Replaces on strongswan-starter to pki-tools. (Closes: #767561) -- Timo Aaltonen tjaal...@debian.org Wed, 05 Nov 2014 00:40:10 +0200 dogtag-pki (10.2.0-2) unstable; urgency=medium * patches: Fix servlet jar name

Bug#767561: [Pkg-freeipa-devel] Bug#767561: pki-tools, strongswan-starter: error when trying to install together

On 02.11.2014 19:20, Romain Francoise wrote: severity 767561 important quit On Sat, Nov 01, 2014 at 11:37:48AM +0200, Timo Aaltonen wrote: I don't mind adding a Conflicts. On Fedora though strongswan changed the binary/manpage name to strongswan-pki: [...] Either solution would be fine

Bug#767466: unblock: sssd/1.11.7-2

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 31.10.2014 13:57, Jonathan Wiltshire wrote: On Fri, Oct 31, 2014 at 11:15:10AM +0200, Timo Aaltonen wrote: Please unblock package sssd Already unblocked by Ivo in response to #760353. I don't see anything there suggesting that. https

Bug#767561: pki-tools, strongswan-starter: error when trying to install together

On 02.11.2014 19:39, Andreas Beckmann wrote: On 2014-11-02 18:34, Romain Francoise wrote: On Sun, Nov 02, 2014 at 06:25:49PM +0100, Julien Cristau wrote: NAK, this remains a serious bug. And it won't block migration anyway if it also applies to 5.2.0-2. Well, I did update the bug's

Bug#767561: [Pkg-freeipa-devel] Bug#767561: pki-tools, strongswan-starter: error when trying to install together

On 01.11.2014 05:44, Andreas Beckmann wrote: Package: pki-tools,strongswan-starter Version: 10.2.0-2 Severity: serious User: trei...@debian.org Usertags: edos-file-overwrite Control: found -1 5.2.1-4 Architecture: amd64 Distribution: sid Hi, automatic installation tests of packages

Bug#767467: unblock: libapache2-mod-nss/1.0.10-2

On 31.10.2014 23:10, Niels Thykier wrote: On 2014-10-31 10:28, Timo Aaltonen wrote: Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package libapache2-mod-nss [...] Hi Timo, Sorry, I had missed that you

Bug#767470: unblock: freeipa/4.0.4-2

On 31.10.2014 23:03, Niels Thykier wrote: Control: tags -1 wontfix On 2014-10-31 11:11, Timo Aaltonen wrote: Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package freeipa So I forgot to check that the packages

Bug#767425: [Pkg-freeipa-devel] Bug#767425: freeipa-server: ipa-server-install doesn't enable some Apache modules it uses in its configuration

On 31.10.2014 09:18, Michal Kašpar wrote: that's weird, both seem to be enabled on default apache2 install here.. Weird. But my Debian installation on that machine is quite old (upgraded several Debian versions) and used there Apache only occasionally for testing purposes. I'm sure I haven't

Bug#767466: unblock: sssd/1.11.7-2

failure with samba 4.1.13, bump +samba-dev build-dependency to match. + + -- Timo Aaltonen tjaal...@debian.org Thu, 30 Oct 2014 14:49:05 +0200 + sssd (1.11.7-1) unstable; urgency=medium * New upstream release. diff --git a/debian/control b/debian/control index 0bf1a14..75dd849 100644

Bug#767467: unblock: libapache2-mod-nss/1.0.10-2

-mod-nss (1.0.10-2) unstable; urgency=medium + + * rules: Don't enable the module by default. + + -- Timo Aaltonen tjaal...@debian.org Tue, 28 Oct 2014 15:11:45 +0200 + libapache2-mod-nss (1.0.10-1) unstable; urgency=medium * mod_nss-conf.patch: Fix IfModule header so it'll actually load when

Bug#767470: unblock: freeipa/4.0.4-2

and mod_deflate too, +but since they should be part of the default apache2 install, don't +disable them on uninstall like the other modules. (Closes: #767425) + * control: Bump server dependency on -mod-nss to 1.0.10-2 which +doesn't enable the module by default. + + -- Timo Aaltonen tjaal

Bug#767425: [Pkg-freeipa-devel] Bug#767425: freeipa-server: ipa-server-install doesn't enable some Apache modules it uses in its configuration

On 31.10.2014 00:52, Michal Kaspar wrote: Package: freeipa-server Version: 4.0.4-1 Severity: normal Dear Maintainer, While running ipa-server-install, the Apache gets reconfigured to provide some IPA services. However it doesn't enable some Apache modules whose directives it uses in

Bug#766043: [Calendarserver-maintainers] Bug#766043: A patch from Red Hat needed for FreeIPA

On 25.10.2014 10:37, Guido Günther wrote: On Fri, Oct 24, 2014 at 07:58:25PM +0200, Dr. Torge Szczepanek wrote: Hi! Actually, you can close these bugs.. the patch isn't needed anymore, it was for Foreman smart proxy which got dropped. I'll patch freeipa instead to use the old function... I

Bug#760377: implications on GPL-1

On 16.10.2014 15:45, Thorsten Alteholz wrote: Hi Timo, On Thu, 16 Oct 2014, Timo Aaltonen wrote: You mentioned that lib/util/getoptx.* license (GPL-1) needs implications noted as well. AIUI it's compatible with the other licenses, which are BSD-3-clause and Expat, so I don't know what

Bug#766043: [Calendarserver-maintainers] Bug#766043: A patch from Red Hat needed for FreeIPA

On 24.10.2014 19:11, Dr. Torge Szczepanek wrote: Hi! I think the method doc is duplicated in kerberos.c, apart from that it looks fine. Torge took over maintenance of the package so I'd be nice to get a comment from him before NMUing. The patch breaks Python 3 compatibility: python3

Bug#766453: ITP: libapache2-mod-auth-gssapi -- GSSAPI Authentication module for Apache2

Package: wnpp Severity: wishlist Owner: Timo Aaltonen tjaal...@debian.org * Package name: libapache2-mod-auth-gssapi Version : 1.0.3 Upstream Author : Simo Sorce s...@redhat.com * URL : https://github.com/modauthgssapi/mod_auth_gssapi * License : MIT

Bug#766465: ITP: libapache2-mod-authnz-pam -- PAM authorization checker and PAM Basic Authentication provider

Package: wnpp Severity: wishlist Owner: Timo Aaltonen tjaal...@debian.org * Package name: libapache2-mod-authnz-pam Version : 0.9.3 Upstream Author : Jan Pazdziora * URL : http://www.adelton.com/apache/mod_authnz_pam/ * License : Apache-2.0 Programming Lang

Bug#766469: ITP: libapache2-mod-intercept-form-submit -- Apache module to intercept login form submission and run PAM authentication

Package: wnpp Severity: wishlist Owner: Timo Aaltonen tjaal...@debian.org * Package name: libapache2-mod-intercept-form-submit Version : 0.9.8 Upstream Author : Jan Pazdziora * URL : http://www.adelton.com/apache/mod_intercept_form_submit/ * License : Apache

Bug#766471: ITP: libapache2-mod-lookup-identity -- Apache module to retrieve additional information about the authenticated user

Package: wnpp Severity: wishlist Owner: Timo Aaltonen tjaal...@debian.org * Package name: libapache2-mod-lookup-identity Version : 0.9.2 Upstream Author : Jan Pazdziora * URL : http://www.adelton.com/apache/mod_lookup_identity/ * License : Apache-2.0

Bug#766043: A patch from Red Hat needed for FreeIPA

Package: pykerberos Severity: high Hi I need a new patch in pykerberos ASAP for FreeIPA, which should be uploaded to unstable later this week in order for it to migrate to jessie in time.. The patch is:

Bug#760377: implications on GPL-1

Hi You mentioned that lib/util/getoptx.* license (GPL-1) needs implications noted as well. AIUI it's compatible with the other licenses, which are BSD-3-clause and Expat, so I don't know what implications there are. -- t -- To UNSUBSCRIBE, email to

Bug#762874: ITP: slapi-nis -- NIS Server and Schema Compatibility plugins for 389 Directory Server

Package: wnpp Severity: wishlist Owner: Timo Aaltonen tjaal...@debian.org * Package name: slapi-nis Version : 0.53 Upstream Author : Red Hat, Inc * URL : https://fedorahosted.org/slapi-nis/ * License : GPL-2 Programming Lang: C Description : NIS Server

Bug#762697: ITP: jackson-jaxrs-providers -- Jackson JAX-RS providers

Package: wnpp Severity: wishlist Owner: Timo Aaltonen tjaal...@debian.org * Package name: jackson-jaxrs-providers Version : 2.4.2 Upstream Author : Tatu Saloranta * URL : http://wiki.fasterxml.com/JacksonHome * License : Apache 2.0 Programming Lang: Java

Bug#760877: jackson-annotations: diff for NMU version 2.4.2-1.1

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 10.09.2014 08:07, tony mancill wrote: On 09/09/2014 10:45 AM, Gilles Filippini wrote: tags 760877 + pending thanks Dear maintainer, I've prepared an NMU for jackson-annotations (versioned as 2.4.2-1.1) and uploaded it to DELAYED/2. Please

Bug#537866: please re-enable nssdb

The FTBFS was due to a race because the db target dir was not created in d/rules like on ubuntu, so I suggest to reenable nssdb and create debian/libnss3-nssdb/var/lib/nssdb before certutil commands. Also, I'm still not convinced about https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=736061 it

Bug#760829: ITP: fasterxml-oss-parent -- FasterXML.com parent pom

Package: wnpp Severity: wishlist Owner: Timo Aaltonen tjaal...@debian.org * Package name: fasterxml-oss-parent Version : 16 Upstream Author : Tatu Saloranta * URL : http://github.com/FasterXML/ * License : Apache 2.0 Programming Lang: Java Description

Bug#760834: ITP: jackson-parent -- Jackson parent pom

Package: wnpp Severity: wishlist Owner: Timo Aaltonen tjaal...@debian.org * Package name: jackson-parent Version : 2.4.1 Upstream Author : Tatu Saloranta * URL : https://github.com/FasterXML/jackson-parent * License : Apache 2.0 Programming Lang: Java

Bug#754618: [Pkg-sssd-devel] Bug#754618: sssd: FTBFS on many archs due to testsuite failures

On 17.08.2014 09:56, Petter Reinholdtsen wrote: [Timo Aaltonen] Sigh #748671, another forgotten bug.. the CVE is of low importance though, and is not blocking. Ah, glad to have reminted you, as URL: https://packages.qa.debian.org/s/sssd.html show that #748671 block sssd version 1.11.5.1-2

<    1   2   3   4   5   6   7   8   >