Bug#765871: does not start with new openssl version

control: owner -1 ! Aaaargh. I am going to disable the openssl version check entirely because freeradius has no business getting in the way of Debian security updates. Thanks for the heads up and I hope to have an upload tonight. -- To UNSUBSCRIBE, email to

Bug#760804: serf: FTBFS: Directory /usr/include/mit-krb5 found where file expected.

Hi. I seem to have missed this somehow. I don't think the -config interface is well defined. In particular, I don't think it's clear what flags can be included in foo-config output and what cannot. When including the -isystem patch, we evaluated and made sure all the compilers in Debian could

Bug#766569: Please reduce time for freeradius 2.2.5+dfsg-0.2

: #765871 * Non-Maintainer Upload -- Sam Hartman hartm...@debian.org Thu, 23 Oct 2014 21:45:36 -0400 -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org

Bug#765803: Status of prompting / notification on upgrade for init system switch?

Josh == Josh Triplett j...@joshtriplett.org writes: Josh - It can't check for generated lines for serial consoles or Josh similar; finish-install can generate various additional Josh inittab lines, which the check should include. Since when did systemd actually handle these

Bug#766569: Please reduce time for freeradius 2.2.5+dfsg-0.2

control: tags -1 -moreinfo Adam == Adam D Barratt a...@adam-barratt.org.uk writes: Adam Control: tags -1 + moreinfo freeradius (2.2.5+dfsg-0.2) unstable; urgency=high * Disable OpenSSL version check; Debian will maintain ABI stability or change the soname, Closes:

Bug#494381: (no subject)

source: gnome-orca source-version: 3.14 Yeah, I agree this no longer seems to be an issue. -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org

Bug#752409: krb5: Modify the control file for bootstrapping without LDAP

These still aren't in a state wwhere both patches can be applied right? I wonder whether it would be better to close these bugs and open new bugs when you're actually in a position that applying a complete patch would be useful to you and would not break the package working with dak, debhelper or

Bug#764669: kinit without username, behaviour changes betweek wheezy and jessie

I'm sort of horrified if krb5-auth-dialogue actually calls kinit rather than using APIs directly. But that's not really related to this bug. just kinit seems to work fine for me with 1.12.1+dfsg-9 so I'd like more detail on what goes wrong. -- To UNSUBSCRIBE, email to

Bug#745322: Using -isystem for krb5 headers breaks mixed MIT/heimdal applications

Convince heimdal to emit -Isystem as well? Just to play nice? -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org

Bug#763569: git-dpm generates incorrect patches with the ident gitattribute

version 3.9.5, no changes * New upstream version, Closes: #740857, #691770 - Include dictionary.mikrotik, Closes: #672200 Author: Sam Hartman hartm...@debian.org Bug-Debian: http://bugs.debian.org/661915 Bug-Debian: http://bugs.debian.org/669741 Bug-Debian: http://bugs.debian.org/672200 Bug

Bug#763806: krb5-kdc: initscript should dependency towards slapd

Are you using systemd or sysvinit? If you have krb5-kdc-ldap installed, I'd expect that we already have a dependency on slapd set up with an innserv-override in krb5-kdc-ldap. If you are using systemd this is a known problem. -- To UNSUBSCRIBE, email to

Bug#763806: krb5-kdc: initscript should dependency towards slapd

Russ == Russ Allbery r...@debian.org writes: Russ The real long-term solution is to convert both services to use Russ systemd socket activation. Josh Tripplet (SP?) and I had a long conversation about socket activation at Debconf. my position is that socket activation is a bad choice

Bug#763806: krb5-kdc: initscript should dependency towards slapd

Russ == Russ Allbery r...@debian.org writes: Russ Sam Hartman hartm...@debian.org writes: my position is that socket activation is a bad choice for network services where the primary user of the socket is non-local. The issue is that inherently socket-activation requires

Bug#763806: krb5-kdc: initscript should dependency towards slapd

Russ == Russ Allbery r...@debian.org writes: Russ Sam Hartman hartm...@debian.org writes: Are you using systemd or sysvinit? If you have krb5-kdc-ldap installed, I'd expect that we already have a dependency on slapd set up with an innserv-override in krb5-kdc-ldap

Bug#746578: libpam-systemd to flip dependencies - proposal

josh == josh j...@joshtriplett.org writes: josh I wouldn't necessarily suggest using this as an argument josh against the proposed resolution. Instead, I'd recommend josh making sure that cgmanager is just as harmless under systemd josh as systemd-shim 8-4 currently is, by

Bug#746578: libpam-systemd to flip dependencies - proposal

I don't think this matters for the vote, and apologies because there's probably a better place to send this advice. I was thinking last night about the apt and debootstrap resolver issues and was wondering whether the following solution might help. I realize the issue is minor and is more about

Bug#769710: krb5-admin-server: kadmind tries to start before LDAP is available (combined with krb5-kdc-ldap)

It belongs in krb5-kdc-ldap as with the krb5-kdc overried. Really same structure. I just missed the need when making that change. --Sam -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org

Bug#769907: general: non-sysvinit init systems are made of fail

Didier == Didier 'OdyX' Raboud o...@debian.org writes: Didier Systems cross-craded from Ubuntu to Debian are absolutely Didier not supported, and I wouldn't be surprised if some of the Didier issues you're seeing are in some way related to this. I've seen both these issues on pure

Bug#769907: general: non-sysvinit init systems are made of fail

Didier == Didier 'OdyX' Raboud o...@debian.org writes: Didier Steve's suggestions stands though: separated and actionable Didier bugs for these two issues filed on the corresponding Didier packages are way more helpful than a general non-sysvinit Didier init systems are made of

Bug#766708: Processed: Re: Bug#766708: breaks multiarch cross building

Ron == Ron r...@debian.org writes: Ron I'd be kind of sad if that stopped being possible again for the Ron final released version of Jessie, and we had to skip yet Ron another release before being able to do this on Debian again. Ron It may not be the best and final answer, but

Bug#766708: Processed: Re: Bug#766708: breaks multiarch cross building

Dimitri == Dimitri John Ledkov x...@debian.org writes: Dimitri Comparing squeeze and jessies - have things regressed? if Dimitri yes, how? As far as I expect, the way one uses debian Dimitri source packaging to produce cross toolchains has not Dimitri changed, nor has been

Bug#763569: git-dpm generates incorrect patches with the ident gitattribute

I've been working with this a bit more. One possibility would be to add an export option or some git dpm option to generate a dsc or a tree that could be used to generate a dsc. At that point you could either add the changes as a final patch or unapply them. What I'm doing now is running

Bug#763569: git-dpm generates incorrect patches with the ident gitattribute

Bernhard == Bernhard R Link brl...@debian.org writes: Bernhard * Sam Hartman hartm...@debian.org [141109 19:15]: I've been working with this a bit more. One possibility would be to add an export option or some git dpm option to generate a dsc or a tree that could be used

Bug#758600: shibboleth-sp2-utils: postinst fails on initial installation

I'd like to better understand the severity issue. Are you saying that there's no order I can install shibboleth and apache in wheezy that will work? I.E. even if I manually install the module first? -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of

Bug#769499: syslog-ng-core fails to enable systemd service unit

package: syslog-ng-core severity: important version:3.3.5-4 justification: does not enable systemd unit. syslog-ng-core's postinst does not enable its syslog unit. I'm guessing that including systemd in the dh sequence is not quite doing enough to actually turn it on. Unfortunately dh-systemd

Bug#769499: syslog-ng-core fails to enable systemd service unit

Simon == Simon McVittie s...@debian.org writes: Simon On 14/11/14 03:50, Sam Hartman wrote: # Automatically added by dh_installinit if [ -x /etc/init.d/syslog-ng ]; then update-rc.d syslog-ng defaults 10 90 /dev/null || exit $? fi # End automatically added section Simon

Bug#762194: Automatic switch to systemd on wheezy-jessie upgrades (thoughts)

Thanks. I found this post of your to be really thought-provoking and useful and an example of the sort of discourse we should strive to when discussing these issues. I think the discussion of switching default inits in the future is something to particularly consider. --Sam -- To UNSUBSCRIBE,

Bug#773228: CVE-2014-5354: kadmin crashes on keyless principals

control: severity -1 important It might be worth getting these two into jessie if the release team is willing. I think pre-approved fixes are valid until KJanuary 5 and so we should figure out how to get pre-approval if you agree. --sam -- To UNSUBSCRIBE, email to

Bug#773778: libverto-libev1: set_flags implementation broken

This looks simple and I'll put together a request. My understanding is that unless we call this RC because it totally breaks libkrad, that I need to file for a pre-approved change, and that such a change must be approved by Jan 5. I should be able to put together the unblock by Monday or so.

Bug#774190: unblock: libverto/0.2.4-2

. + * + + -- Sam Hartman hartm...@debian.org Mon, 29 Dec 2014 20:17:46 -0500 + libverto (0.2.4-1) unstable; urgency=low * Update to new upstream diff --git a/src/verto-libev.c b/src/verto-libev.c index 2eb08fc..9c7c324 100644 --- a/src/verto-libev.c +++ b/src/verto-libev.c @@ -106,7 +106,9

Bug#776981: unblock: krb5/1.12.1+dfsg-17

+- CVE-2014-9422: kadmind incorrectly validates server principal name + - CVE-2014-9423: libgssrpc server applications leak uninitialized bytes + + + -- Sam Hartman hartm...@debian.org Tue, 03 Feb 2015 10:29:35 -0500 + krb5 (1.12.1+dfsg-16) unstable; urgency=medium * Import

Bug#777579: krb5-admin-server: kadmind reports Insufficient access to lock database

Do you see any differences in /etc/krb5.conf or /etc/krb5kdc/kdc.conf in the successful vs unsuccessful situations? -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org

Bug#777579: Fwd: Bug#777579: krb5-admin-server: kadmind reports Insufficient access to lock database

Is your realm actually called EXAMPLE.COM? my guess is that somehow the realm in kdc.conf was incorrect and so that stanza is not being used. -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org

Bug#777579: krb5-admin-server: kadmind reports Insufficient access to lock database

control: tags -1 moreinfo I took the following steps: 1) create a new sid chroot. 2) apt-get update 3) apt-get install krb5-user As part of 3 krb5-config got installed and because of my DNS I was prompted to configure my krb5.conf. I entered the realm I was going to create (EXAMPLE.COM) but

Bug#760754: Debian freeradius consider all files in modules/ folder, also *.dpkg-* ones...

I'd recommend holding on on fixing this bug until we get freeradius 3 into the archive. We'll still have some sort of problem for policy.d. It may be worth bringing this up on the upstream development list. -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject

Bug#777579: Fwd: Bug#777579: krb5-admin-server: kadmind reports Insufficient access to lock database

Erik == Erik Haller erik.hal...@gmail.com writes: Erik What is telling kadmind to use the /etc/krb5kdc directory? Erik configure script? Because the /etc/krb5kdc/kdc.conf points - Erik /var/lib and it runs just fine with the databases under Erik /etc. That's the big

Bug#777579: Fwd: Bug#777579: krb5-admin-server: kadmind reports Insufficient access to lock database

Yeah, but the config file should override that. -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org

Bug#777579: Fwd: Bug#777579: krb5-admin-server: kadmind reports Insufficient access to lock database

No, I cannot reproduce. -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org

Bug#777579: Fwd: Bug#777579: krb5-admin-server: kadmind reports Insufficient access to lock database

OK, so the default_realm in /etc/krb5.conf matches the realm in kdc.conf and yet the kdc is not using /var/lib/krb5kdc. Ben, any thoughts here? -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org

Bug#777579: Fwd: Bug#777579: krb5-admin-server: kadmind reports Insufficient access to lock database

The database (principal and principal.*) live under /var/lib. The ACL and stash file live in /etc/krb5kdc. -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org

Bug#781108: unblock: krb5/1.12.1+dfsg-19

systemd unit directories as optional, Closes: #780831 + + -- Sam Hartman hartm...@debian.org Fri, 20 Mar 2015 16:22:33 -0400 + krb5 (1.12.1+dfsg-18) unstable; urgency=high * Import upstream patch for CVE-2014-5355, Closes: #778647 diff --git a/debian/krb5-admin-server.service b/debian/krb5

Bug#781108: unblock: krb5/1.12.1+dfsg-19

Of this already seems to have migrated into testing On March 28, 2015 2:57:33 PM EDT, Niels Thykier ni...@thykier.net wrote: Control: tags -1 confirmed moreinfo On 2015-03-24 16:51, Sam Hartman wrote: Package: release.debian.org Severity: normal User: release.debian@packages.debian.org

Bug#741573: Requesting input on TC deliberations about menu system and policy

Dear Charles, Last Thursday, the TC met. As part of that meeting we discussed #741573. See the logs at http://meetbot.debian.net/debian-ctte/2015/debian-ctte.2015-03-26-18.59.log.html . Currently the plan is that Keith is going to propose some text within the policy process that he

Bug#781311: gss_delete_sec_context breaks openssl usage in other libraries

package: moonshot-gss-eap version: 0.9.2-3 severity: grave Whenever the last gss-eap security context is deleted, the gss-eap mechanism shuts down openssl including freeing x_data, error strings, and engines. In practice this tends to mean that any other library in the same process using openssl

Bug#781312: CA certificates cannot handle internal space

package: moonshot-gss-eap version: 0.9.2-3 severity: serious justification: Broken interoperability with the UK's production Moonshot infrastructure. It turns out that despite code designed specifically to permit internal white space in CA certificates in moonshot trust anchors, the length check

Bug#741573: Menu Systems: Thoughts about Next Steps

Having reviewed the policy team's process.txt document and having reviewed Charles's comments, I'm much less sanguine when I think about the approach for resolving the menu system discussion that we discussed last Thursday. Keith may well have an approach that improves over both the status

Bug#779557: Including additional users file doesn't work without full path to the file in the INCLUDE statement

Can you please reproduce with the 2.2.5 packages in Debian testing/jessie? I suspect this is likely fixed between 2.1.12 and 2.2.5 or has to do with directory definitions in configs between distributions. -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of

Bug#769972: Read before Voting: Note from hartmans about new member ballots

Don == Don Armstrong d...@debian.org writes: Don ===BEGIN Don The Technical Committee recommends that Sam Hartman (hartmans) Don be appointed by the Debian Project Leader to the Technical Don Committee. Don A: Recommend to Appoint Sam Hartman (hartmans) B: Further Don

Bug#750135: Status of #750135 (Maintainer of aptitude package)

Didier == Didier 'OdyX' Raboud o...@debian.org writes: Didier Given the situation (an unresponsive Daniel, a proposal from Didier people with powers to push the situation forward), I'd be Didier more inclined to say yes to Christian, without a formal Didier resolution. Given

Bug#783271: When configuring custom logging in /etc/krb5.conf,, xrb5 services are unable to write to these log files as they are not, permitted in the service configuration used by systemd

It's my plan to close this as not a bug; Russ's explanation for how to relax the permissions check seems entirely reasonable as a solution. --Sam -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org

Bug#780264: Bug #780264 : Improved fix for M2Crypto incompatibility

Hi. I'll be on vacation the rest of this week and will review on my return monday. -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org

Bug#784783: krb5-admin-server: install failure during dpkg --configure

I'm confused about this. The krb5-kdc/debconf template is included in the krb5-kdc package, which is a dependency of krb5-admin-server. That should mean that krb5-kdc is configured (and thus the template available) prior to krb5-admin-server. Russ and ben, am I missing something here? --Sam --

Bug#750135: Initial draft of resolution

Proposed for your consideration and checked into git for your editing: Background/Rationale (Constitution 6.1(5)): 1. In #750135, the technical committee was asked by Manuel Fernandez Montecelo who should be the maintainer of the aptitude projectp. He had been actively committing until his

Bug#775277: krb5-kdc: kpropd init scripts missing from package

Michael == Michael Weiser m.wei...@science-computing.de writes: Michael Hi, Mark and I have built and used our own local packages Michael with this patch applied for some revisions now (at least Michael -17, -18 and -19) and all seems fine. But it it is quite a Michael hassle to

Bug#780403: debian-policy: Define what should happen when installing a package and the init script fails to start it

Russ == Russ Allbery r...@debian.org writes: Russ Ivan Baldo iba...@adinet.com.uy writes: What should happen if installing a package and then when it tries to start its service it fails? Currently the most common behaviour seems to be that the installation fails.

Bug#750135: Initial draft of resolution

Didier == Didier 'OdyX' Raboud o...@debian.org writes: Background/Rationale (Constitution 6.1.5): 1. In #750135, the Technical Committee was asked by Manuel Fernandez Montecelo who should be the maintainer of the Aptitude project. He had been actively committing until

Bug#741573: Investigation of the bug log

You are copied on this message because you raised objections noted by the policy editors during the discussion of menu policy or seconded the proposal in #707851. The TC is currently evaluating a request to review that proposal and the process surrounding it. If you seconded the proposal, I'd

Bug#741573: Bug #741573:Process Approach vs Others

Don == Don Armstrong d...@debian.org writes: Don On Wed, 27 May 2015, Sam Hartman wrote: Bdale == Bdale Garbee bd...@gag.com writes: Bdale I hear you, I just don't have any idea what to do differently Bdale on this specific issue in response to knowing how you feel Bdale

Bug#741573: Investigation of the bug log

Lisandro == Lisandro Damián Nicanor Pérez Meyer perezme...@gmail.com writes: Lisandro Hi Sam! A long time has passed since then and I should re Lisandro read the full and extensive bug log to assert whatever you Lisandro want to ask. But I can be sure on one thing: at the time

Bug#750135: Call for Vote: Resolution on Aptitude Maintainer

I here-by call for a vote on the following text (option A); the other option is FD. I will be out much of the next two weeks so if the vote becomes resolved I'd appreciate it if someone could step in and announce the decision. Background/Rationale: 1. In #750135, the Technical Committee was

Bug#750135: Call for Vote: Resolution on Aptitude Maintainer

Sam == Sam Hartman hartm...@debian.org writes: Sam I here-by call for a vote on the following text (option A); the Sam other option is FD. I will be out much of the next two weeks Sam so if the vote becomes resolved I'd appreciate it if someone Sam could step in and announce

Bug#741573: Bug #741573:Process Approach vs Others

Kurt == Kurt Roeckx k...@roeckx.be writes: Kurt On Wed, May 27, 2015 at 09:19:07PM -0400, Sam Hartman wrote: [moving back to the bug, because we're starting to discuss the issue rather than a TC communications matter.] Bdale == Bdale Garbee bd...@gag.com writes

Bug#741573: Bug #741573:Process Approach vs Others

believe that they didn't have consensus rather than just jumping to a conclusion. I don't think we need to vote for that if we have internal rough consensus, although I'd be fine voting on that if we wish to do so. However: Bdale Sam Hartman hartm...@debian.org writes: Bdale I really think

Bug#784651: moonshot-ui: depends on libgee-dev which is deprecated

Emilio == Emilio Pozuelo Monfort po...@debian.org writes: Emilio Control: severity -1 serious We want to remove libgee2 from Emilio unstable RSN, and there are only a few rdeps now, so I'm Emilio bumping the severity of the bugs. For future reference, I don't think it's actually

Bug#784651: moonshot-ui: depends on libgee-dev which is deprecated

Ah, and I see you did actually file the removal request, so yeah this is RC under any evaluation. -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org

Bug#741573: Proposed draft of ballot to resolve menu/desktop question

Don == Don Armstrong d...@debian.org writes: Don On Sun, 16 Aug 2015, Didier 'OdyX' Raboud wrote: What about just adding Keith's proposal to the ballot, and let the Condorcet magic act? Don This has sort of been my plan; I just have not had enough spare Don cycles in the

Bug#636783: Bug#795855: #636783 - New bugs for individual issues

I think that calling for a vote and knowingly dropping options from a ballot actually harms the TC process. It is a strategic technique that I think can change the outcome of the process. I think that strategy does more harm than good and I'd like to forbid it. However, I think that I trust the

Bug#741573: Proposed draft of ballot to resolve menu/desktop question

Don == Don Armstrong d...@debian.org writes: While we're not overturning anything in the sense of an override here, I think we owe an explanation for our actions, and I feel really strongly about that. Don Ideally the patch and its rationale should stand alone without Don

Bug#636783: Bug#795857: Bug#795855: Bug#636783: Bug#795855: #636783 - New bugs for individual issues

Bdale == Bdale Garbee bd...@gag.com writes: Bdale Sam Hartman hartm...@debian.org writes: I'm just sying having seen it used once I'd rather decide never to go there again. Bdale For what it's worth, I agree. I'll note that for this to be fair we need to be able to push back

Bug#795854: Constitutional Amendment: Fix duplicate section numbering (A1)

Didier == Didier 'OdyX' Raboud o...@debian.org writes: Didier Le lundi, 17 août 2015, 14.57:18 j'ai écrit : Ian wrote a full GR proposal in 20996.60469.968631.307...@chiark.greenend.org.uk ( [636783_supermajority/propose-numberfix] in our git repository and I've attached

Bug#792685: Yeah, just looks like metadata backup issue

I deleted the backup metadata by hand from s3 and fsck and mount work fine. I realize that's not exactly a supported operation, but it seemed likely to work and I think gives confidence that the only problem with the patch seems to be with regard to old metadata carried forward. -- To

Bug#741573: Proposed draft of ballot to resolve menu/desktop question

Unless someone objects I propose that the following text also be included in option b: Using its power under §6.1.5 to offer advice: 1. The Technical Committee suggests that the maintainers of the Debian menu package support translating .desktop files of packages which do not

Bug#792685: Unable to upgrade from wheezy to jessie

Hi. I attempted the following: * Built with the patch applied on a jessie chroot * installed s3ql * On a wheezy system mkfs.s3ql, mount and add some data. unmount. * On my patched jessie system run s3qladm upgrade So far so good. Then run fsck.s3ql. It looks like it has trouble with the old

Bug#795380: krb5-config: default krb5.conf has other people's domains

David == David Magda david.ma...@oicr.on.ca writes: David I own the domain magda.ca: can I get it added so that every David Debian (and Ubuntu) install that uses Kerberos will have that David domain in its krb5.conf? David I have a couple of friends that also have domains, can

Bug#795380: krb5-config: default krb5.conf has other people's domains

David == David Magda david.ma...@oicr.on.ca writes: David Why are all of these domains in the default install of David Debian? There are even bugs (621875, 587624) for updating David people's domains: why?! It's generally useful to have the domain-realm entries and if the realm

Bug#795380: krb5-config: default krb5.conf has other people's domains

I'm sorry. I'm still not seeing a harm here. I absolutely agree that setting a default realm to something unexpected would be problematic. However simply having a realm listed in krb5.conf doesn't have any affect unless you try to use that realm. It's not like settind the default URI for

Bug#741573: #741573: Menu Policy and Consensus

Ian == Ian Jackson ijack...@chiark.greenend.org.uk writes: Ian Sam Hartman writes (Re: Bug#741573: #741573: Menu Policy and I think the key area where we differ is that I would give preference other things being mostly equal to upholding the work done in debian-policy. As I

Bug#741573: #741573: Menu Policy and Consensus

Ian == Ian Jackson ijack...@chiark.greenend.org.uk writes: Ian 1. The TC - not the policy process, not the policy editors, and Ian not the consensus on debian-policy - has the ultimate Ian responsibility to set technical policy. (Constitution 6.1(1)) Ian So in the TC the

Bug#741573: #741573: Menu Policy and Consensus

Charles == Charles Plessy ple...@debian.org writes: Charles I made efforts to keep the wording mild, but I think that Charles it was an error. From your attiude as the lead person behind the Debian Menu, it is clear that Charles it has no future. For one decade, you have

Bug#792685: Unable to upgrade from wheezy to jessie

package: s3ql severity: grave version: 2.11.1+dfsg-1 Justification: Renders filesystem unusable and data accessible Hi. I'm upgrading a system from wheezy to jessie. Wheezy ships s3ql 1.11, jessie ships version 2.11. I have a filesystem that I can easily mount and fsck in wheezy, but when I try

Bug#792685: Unable to upgrade from wheezy to jessie

Nikolaus == Nikolaus Rath nikol...@rath.org writes: Nikolaus I agree that this is unfortunate, but preserving backwards Nikolaus compatibility over so many upstream versions just for Nikolaus Debian wheezy users did not seem worth the time. I totally understand that it's a lot of

Bug#741573: #741573: Menu Policy and Consensus

of that, though. (Also, I felt like the proposal was a good path forward, which doesn't make me a particularly unbiased judge of consensus.) Sam hartman Speaking only for myself pgpjsVADEZVn4.pgp Description: PGP signature

Bug#741573: #741573: Menu Policy and Consensus

Bill == Bill Allombert ballo...@debian.org writes: Bill On Fri, Jul 17, 2015 at 10:08:04PM +, Sam Hartman wrote: In March of 2014, Charles Plessy asked the Debian Technical Committee to review one of the policy editors decisions to revert changes to how policy talks about

Bug#741573: #741573: Menu Policy and Consensus

Charles == Charles Plessy ple...@debian.org writes: Charles Le Sat, Jul 18, 2015 at 01:56:49PM +, Sam Hartman a Charles écrit : Bill == Bill Allombert ballo...@debian.org writes: Charles Also, the question is not whether the FreeDesktop menu Charles should be described

Bug#792685: Unable to upgrade from wheezy to jessie

Nikolaus == Nikolaus Rath nikol...@rath.org writes: Nikolaus I agree. There shouldn't have been an s3ql package in Nikolaus Wheezy. This was when I was young and inexperienced with Nikolaus Debian packaging. However, the situation is different for Nikolaus Jessie. Now that it is

Bug#741573: #741573: Menu Policy and Consensus

Charles == Charles Plessy ple...@debian.org writes: Charles Le Sun, Jul 19, 2015 at 08:05:56AM +, Sam Hartman a Charles écrit : Bill, in his role of policy editor said that he believed there was not a consensus. Charles Hi Sam, Charles I think that what you

Bug#787880: moonshot-ui: FTBFS with valac 0.28

committed upstream, there will be a new upstream version 0.7.2 for this within a day. Thanks. -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org

Bug#741573: Russ's role

You said: I think that what you wrote does not reflect what happened: Charles - Russ gave me the green light for committing the changes, see Charleshttps://lists.debian.org/debian-policy/2014/02/msg00068.html. Only Policy CharlesEditors can decide that a change will be committed,

Bug#792685: Unable to upgrade from wheezy to jessie

Just as an FYI, I'm in Prague at an IETF meeting and that's taking up most of my time, so it may be this weekend before I get a chance to try your patch. --Sam -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact

Bug#741573: #741573: Menu Policy and Consensus

Josselin == Josselin Mouette j...@debian.org writes: Josselin Sam Hartman hartm...@debian.org wrote: Bill, in his role Josselin of policy editor said that he believed there was not a Josselin consensus. He cited a specific set of messages that he Josselin believes were

Bug#741573: Russ's role

Bill == Bill Allombert ballo...@debian.org writes: Bill On Mon, Jul 20, 2015 at 10:34:47AM -0400, Sam Hartman wrote: You said: Hi. As a matter of fact finding. Russ's message, which Charles sites implies to me that Russ was swamped and didn't have time to do the commit

Bug#803083: CVE-2015-2695 in libgssapi-krb5-2, SPNEGO context aliasing

Do I need to do anything here? I have availability this evening and Wednesday evening.

Bug#803083: CVE-2015-2695 in libgssapi-krb5-2, SPNEGO context aliasing

Also, do you want to fix the not a DD problem?

Bug#804093: krb5-clients: Error message from telnet.krb5 is strange

You should be aware that Debian 7.x is the last version of Debian that has krb5-clients. The package has been desupported and is no longer maintained and has been removed from future versions of Debian. The Kerberos telnet application is insecure. While I don't know of specific security problems

Bug#803962: config-package-dev: Requires leading slashes in debian/*.displace

Package: config-package-dev Version: 5.1.2 Severity: normal Hi. According to the dh_configpackage man page, the paths in debian/*.displace need not have a leading slash, just like other debhelper inputs. However, the code generates errors like the following if you leave out the leading slash.

Bug#707851: Debian Menu Systems : Implementation of the TC decision

>>>>> "Wouter" == Wouter Verhelst <w...@uter.be> writes: Wouter> On Tue, Oct 13, 2015 at 07:56:03AM -0400, Sam Hartman wrote: >> >>>>> "Wouter" == Wouter Verhelst <wou...@debian.org> writes: >>

Bug#775277: should we split krb5-kpropd into a separate package?

I'm sorry. I thought I had responded long ago on this, but apparently not. I think the package split makes sense.

Bug#595817: pam-ssh-agen-auth deb package

I have not looked at the specifics of this package. I know that I want something that has a similar user interface for sudo. I have no idea though whether this implementation is any good and don't have time to investigate.

Bug#707851: Debian Menu Systems : Implementation of the TC decision

> "Wouter" == Wouter Verhelst writes: Wouter> So, I'm with Guillem on this one. Wouter> But _forbidding_ maintainers who want to from shipping a Wouter> second file, if that somehow makes the experience of menu Wouter> users better than what the fdo menu

Bug#707851: Debian Menu Systems : Implementation of the TC decision

> "Didier" == Didier 'OdyX' Raboud writes: Didier> Le mardi, 13 octobre 2015, 08.55:07 Wouter Verhelst a écrit Didier> : >> But _forbidding_ maintainers who want to from shipping a second >> file, if that somehow makes the experience of menu users better

<    1   2   3   4   5   6   7   8   9   10   >