Guillem Jover wrote:
Exactly. I don't have any intention to change the current dpkg-source
default behavior in that regard.
ACK.
But people who touch packages without d/s/format can just
write 1.0\n into it, to retain existing behaviour without
the warning. Still, changing the default is badâ¦
Russ Allbery wrote:
Steven Chamberlain ste...@pyro.eu.org writes:
* first-forked process does not use the PRNG yet, but forks again
Actually, it does: it calls RAND_poll(), which libressl made
into a nop.
control. There has been some talk of implementing PID randomization
precisely to make
Ben Hutchings wrote:
Since Linux 2.6.29, you get 128 random bits at each execve(), which you
can access like this:
getauxval() is only in (e)glibc, not in dietlibc or klibc, though.
Also, glibc already uses all 128 bits in some other place.
bye,
//mirabilos
--
To UNSUBSCRIBE, email to
Tollef Fog Heen wrote:
What are the reasons behind are you going for required and not standard?
A Priority: required package (init) isn't allowed to depend on something
with Priority: standard per policy.
Among even minbase, there are a *lot* of violations of this
particular rule of Policy.
Luca Falavigna wrote:
Among even minbase, there are a *lot* of violations of this
particular rule of Policy. There is also nothing in place
checking them.
Actually, there are two tools to check this:
* [4]https://ftp-master.debian.org/override-disparity.gz
Ah, that's new... before this,
Luca Falavigna wrote:
IMO, these should be handled on a case-by-case basis.
Agreed.
Looking more at it, it seems there are a lot of packages requiring
dependencies which are extra:
There is a bug in the file, IMHO, though:
mediawiki:
dependency:
php5-mysqlnd: extra
The situation is:
|
Dixi quod…
Martin Zobel-Helas dixit:
Furthermore, we will change the people.debian.org web-service such that
only HTTPS connections will be supported (unencrypted requests will be
redirected).
[…]
Take it as a heads-up to maybe move stuff elsewhere, if it needs http
(e.g. APT repos work well via
Kibi wrote:
Joachim Breitner nome...@debian.org (2014-07-13):
Am Sonntag, den 13.07.2014, 13:02 +0200 schrieb Cyril Brulebois:
[10]https://www.debian.org/intro/organization
not really helpful. It links to
[11]https://buildd.debian.org/
from where no information about how to query for rebuilds
h01ger wrote:
I've never used upgrade --purge _in one step_ and I don't think it's a
particularily smart idea at all. But if people want to shoot themselves in
The --purge is a no-op with upgrade.
But I normally use apt-get --purge dist-upgrade both to upgrade
across distros and to stay within
h01ger wrote:
On Sonntag, 13. Juli 2014, Thorsten Glaser wrote:
Furthermore, we will change the people.debian.org web-service such that
only HTTPS connections will be supported (unencrypted requests will be
redirected).
This means that requests from wget (since it switched from OpenSSL
at the end means “remove, not install, this package”.
It also works like “apt-get install foo bar- baz bla-”.
nb. i sent this directly to you rather than the list because i wasn't sure
if it was offtopic, feel free to mail it back to the list.
List works for me…
On 14 July 2014 09:53, Thorsten Glaser t
Cyril Brulebois dixit:
Thorsten Glaser t...@mirbsd.de (2014-07-12):
OK, can you please give-back makefs on mips once the new bmake
binaries are available for all buildds?
Please send your request to the appropriate place.
Ookay. Yes, this was a mistake of mine. But it took me about
six
Martin Zobel-Helas dixit:
Furthermore, we will change the people.debian.org web-service such that
only HTTPS connections will be supported (unencrypted requests will be
redirected).
This means that requests from wget (since it switched from OpenSSL to
GnuTLS) and other utilities from slow
...@lists.alioth.debian.org
Changed-By: Thorsten Glaser t...@mirbsd.de
Description:
pbuilder - personal package builder for Debian packages
pbuilder-uml - user-mode-linux version of pbuilder
Closes: 753944
Changes:
pbuilder (0.215+nmu3) unstable; urgency=low
.
* Non-maintainer upload.
* Enable
Norbert Preining wrote:
On Mon, 07 Jul 2014, Josselin Mouette wrote:
If they donât need any of the systemd features, I guess they donât need
any of its reverse dependencies either.
Rubbish. I want network-manager, but I don't want systemd.
I donât, but I want most KDE packages, so I
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA384
Format: 1.8
Date: Tue, 08 Jul 2014 16:10:54 +0200
Source: cvs
Binary: cvs
Architecture: source i386
Version: 2:1.12.13+real-14
Distribution: unstable
Urgency: low
Maintainer: Thorsten Glaser t...@mirbsd.de
Changed-By: Thorsten Glaser t...@mirbsd.de
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA384
Format: 1.8
Date: Tue, 08 Jul 2014 16:11:05 +0200
Source: jupp
Binary: jupp joe-jupp
Architecture: source i386 all
Version: 3.1.27-2
Distribution: unstable
Urgency: low
Maintainer: Thorsten Glaser t...@mirbsd.de
Changed-By: Thorsten Glaser t
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA384
Format: 1.8
Date: Tue, 08 Jul 2014 16:25:28 +0200
Source: makefs
Binary: makefs
Architecture: source i386
Version: 20100306-4
Distribution: unstable
Urgency: low
Maintainer: Thorsten Glaser t...@mirbsd.de
Changed-By: Thorsten Glaser t...@mirbsd.de
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA384
Format: 1.8
Date: Tue, 08 Jul 2014 16:11:20 +0200
Source: kwalletcli
Binary: kwalletcli
Architecture: source i386
Version: 2.12-2
Distribution: unstable
Urgency: low
Maintainer: Thorsten Glaser t...@mirbsd.de
Changed-By: Thorsten Glaser t
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA384
Format: 1.8
Date: Tue, 08 Jul 2014 16:12:12 +0200
Source: rs
Binary: rs
Architecture: source i386
Version: 20140609-2
Distribution: unstable
Urgency: low
Maintainer: Thorsten Glaser t...@mirbsd.de
Changed-By: Thorsten Glaser t...@mirbsd.de
OdyX wrote:
all means, go for it. That said, as far as I remember, the latest GR
proposal [4] on this subject failed to gather the mandatory K seconds
though. For me, this indicates that not even K=5 DDs were interested in
I was not even aware of that proposal. This may also indicate lack
of,
Juliusz Chroboczek wrote:
The problem is that some people bitch endlessly abut how evil systemd is
_instead_of_ producing software (not just patches) to replace what
systemd offers.
Abstracting away from your somewhat offensive choice of language, that's
a good point. As far as I'm aware, the
Dominik George dixit:
systemd, in its nature as an init system, starts what you tell it to
start. There is nothing that can prevent it from starting openntpd if
you want that. If you through a service file at it, or even an LSB
init script, then systemd has no choice but to start it.
No, this is
Matthias Urlichs wrote:
Thorsten Glaser:
systemd is a backdoor in that, like the availability of Steam
games for DDs, it has a chance to hinder the progress of all
projects done in the spare time of the people affected.
Yeah. It has a chance.
Yes. (I was more or less referring
Steve McIntyre wrote:
with this constant bickering and sniping. If you must do it, start the
GR and see how that goes. I even offer to second it just to help get
Can you help formulate? I do not feel my English skills are
up to that.
Also, what options do we need?
1) systemd is the only init
Matthias Urlichs wrote:
For Zurg (Jessie+1), we're likely to switch to Wayland. How do you plan to
We're *what*?
(Says someone who uses X11 forwarding, VNC in, VNC out, and all
that on an almost-, if not daily, basis.)
OT: prevent-systemd-*_9_all.deb are in my repo. Wookey, feel
free to
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA384
Format: 1.8
Date: Fri, 04 Jul 2014 12:58:11 +0200
Source: mksh
Binary: mksh pdksh
Architecture: source all i386
Version: 50-3
Distribution: unstable
Urgency: medium
Maintainer: Thorsten Glaser t...@mirbsd.de
Changed-By: Thorsten Glaser t
...@lists.alioth.debian.org
Changed-By: Thorsten Glaser t...@mirbsd.de
Description:
pbuilder - personal package builder for Debian packages
pbuilder-uml - user-mode-linux version of pbuilder
Closes: 753690
Changes:
pbuilder (0.215+nmu2) unstable; urgency=low
.
* Fix missing space, thanks gregoa
Juliusz Chroboczek wrote:
Emilio Pozuelo Monfort wrote:
You have not yet explained why apt pinning is not enough.
Simply because apt is not the only way to install packages.
- conflicting packages are honoured by dpkg, unlike pinning;
- a package can conflict with multiple packages, while
Matthias Urlichs wrote:
Thorsten Glaser:
You have not yet explained why apt pinning is not enough.
Simply because apt is not the only way to install packages.
Don't synaptic and/or whatever honor these pins too?
I have no idea about synaptic, but there’s e.g. cupt (which
works as apt
On Thu, 3 Jul 2014, Didier 'OdyX' Raboud wrote:
The proper solution is to stop trying to hide ourselves from to the fact
that some sort of systemd interfaces have been made unavoidable in
modern desktop environments (fact which is rightfully reflected in our
Eh… you know… these are not all
Yet I didn't see any proposal for a consolekit-must-die package=
Must be because most people did not even get consolekit installed.
Or because it was not that intrusive?
(People in the know avoided *kit for a long time already anyway.)
bye,
//mirabilos
--
To UNSUBSCRIBE, email to
...@lists.alioth.debian.org
Changed-By: Thorsten Glaser t...@mirbsd.de
Description:
pbuilder - personal package builder for Debian packages
pbuilder-uml - user-mode-linux version of pbuilder
Closes: 666525 747946 748967
Changes:
pbuilder (0.215+nmu1) unstable; urgency=low
.
[ Ivo De Decker
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA384
Format: 1.8
Date: Thu, 03 Jul 2014 21:34:49 +0200
Source: mksh
Binary: mksh pdksh
Architecture: source all
Version: 50-2
Distribution: unstable
Urgency: medium
Maintainer: Thorsten Glaser t...@mirbsd.de
Changed-By: Thorsten Glaser t...@mirbsd.de
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA384
Format: 1.8
Date: Thu, 03 Jul 2014 23:23:33 +0200
Source: pax
Binary: pax
Architecture: source i386
Version: 1:20140703-1
Distribution: unstable
Urgency: medium
Maintainer: Thorsten Glaser t...@mirbsd.de
Changed-By: Thorsten Glaser t...@mirbsd.de
Jeroen Dekkers wrote:
Wookey wrote:
I think some people are failing to see the humour in this name
(and Dawkins knows we could use some humour round this subject), but I
guess if it's not going to be allowed then it's not going to be
allowed.
Yes, I also completely fail to see the humour,
Juliusz Chroboczek wrote:
So I'm turning to this list for help:
1. Could some competent person tell me the right way to tell apt that it
should fail an upgrade rather than installing systemd? I guess
I could make a dummy package that conflicts with systemd, but I'm
I made such a
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA384
Format: 1.8
Date: Sun, 29 Jun 2014 12:16:42 +
Source: jupp
Binary: jupp joe-jupp
Architecture: source all
Version: 3.1.27-1
Distribution: unstable
Urgency: medium
Maintainer: Thorsten Glaser t...@mirbsd.de
Changed-By: Thorsten Glaser t
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA384
Format: 1.8
Date: Sun, 29 Jun 2014 13:17:35 +
Source: mksh
Binary: mksh pdksh
Architecture: source all
Version: 50-1
Distribution: unstable
Urgency: medium
Maintainer: Thorsten Glaser t...@mirbsd.de
Changed-By: Thorsten Glaser t...@mirbsd.de
Andrei POPESCU dixit:
Yes, I know everything in Debian is a package, but APT *is* the master
of all packages :p
Wrong:
• dpkg (directly or via dselect) does not use APT’s system
(well, not necessarily, anyway)
• aptitude has been known to ignore the view dpkg/apt have
on the system, e.g.
Russ Allbery wrote:
Thorsten Glaser t...@debian.org writes:
Yes, I fully agree. But _please_ also realise that there are people,
a non-neglibile number of them, for whom these frameworks are not an
improvement, and who wish to be not forced to use them.
That's fine for you to feel that way
Sune Vuorela wrote:
The way is to put your time/money where your mouth is and provide the
code. Asking others to do all the work is not the way forward in OSS.
I highly doubt you can call _me_ someone who does not do work in OSS.
You know, methods to clone a human being, time turners, etc. have
Romain Francoise dixit:
Finally, please note that this new flag will not be used on m68k, or1k,
powerpcspe, sh4, and x32. The stack protector itself is currently
Doko said he’d upload gcc-defaults with *all* arches set to 4.9 next.
If you upload after him, that will suffice. (Or rather: set
Simon McVittie dixit quod...
On 25/06/14 15:43, Svante Signell wrote:
Regarding mate desktop policykit-1 build-depends on libsystemd-login-dev
only for linux-any. What functionality is missing for other
architectures?
[...]
In Debian 7, PolicyKit could answer the question is Svante logged-in
Russ Allbery dixit quod...
Simon McVittie s...@debian.org writes:
[ startx ]
a virtual console, a locked X screensaver is worthless, because someone
can just switch virtual console with Ctrl+Alt+Fn, press Ctrl+C and
they're in your shell session.
This doesn't change anything else that you
No, it didn't work. You had to be root for operations as simple as
shutting down the computer.
Only on Debian. OpenBSD and MirBSD have:
-r-sr-x--- 1 root operator 122716 Sep 10 2013 /sbin/shutdown*
I never understood why Debian doesn't.
bye,
//mirabilos
--
To UNSUBSCRIBE, email to
Wookey wrote:
+++ Matthias Urlichs [2014-06-26 11:58 +0200]:
Hi,
Andrew Shadura:
[14]http://qa.debian.org/popcon-graph.php?packages=systemd-sysv+sysvinitshow_installed=onwant_legend=o
nwant_ticks=onfrom_date=2014-01-01to_date=hlght_date=date_fmt=%Y-%mbeenhere=1
Sorry, but this only
Svante Signell wrote:
On Thu, 2014-06-26 at 11:59 +0200, Ansgar Burchardt wrote:
On 06/26/2014 11:34, Thorsten Glaser wrote:
No, it didn't work. You had to be root for operations as simple as
shutting down the computer.
Only on Debian. OpenBSD and MirBSD have:
-r-sr-x--- 1 root
Jean-Christophe Dubacq wrote:
So that students can do eg ssh mybuddymachine /sbin/shutdown ?
(and they need to be able to shutdown their own machine, power is not free).
Why do people always think that a proposal will automatically
exclude all others?
In your student scenario, you do *not* add
Simon McVittie wrote:
tl;dr: these frameworks were not invented just to troll you, they do
have a purpose :-)
Yes, I fully agree. But _please_ also realise that there are people,
a non-neglibile number of them, for whom these frameworks are not an
improvement, and who wish to be not forced to use
Wookey worte:
[11]http://users.unixforge.de/~tglaser/debs/dists/etch/wtf/Pkgs/mirabilos-support/
Can it be uploaded please? As has been observed, there is a reasonable
number of people who would like an easy way to control explicitly
when/if they change to systemd for pid 1. Having to get it
-de...@lists.alioth.debian.org
Changed-By: Thorsten Glaser t...@mirbsd.de
Description:
mediawiki - website engine for collaborative work
mediawiki-classes - website engine for collaborative work - standalone classes
Changes:
mediawiki (1:1.19.17+dfsg-1) unstable; urgency=medium
.
* New
Sylvestre Ledru sylvestre at debian.org writes:
Build systems that ignore those environment variables are broken and
need to be fixed.
Yes, but we have plenty of packages not honoring CC, CXX or CLFAGS.
Yes, but I have a GCC patch (in MirBSD) that can make such builds
fail, by adding a
Ondřej Surý ondrej at sury.org writes:
Or we can just keep db5.3 forever and wait what will BSD folks do.
Maybe we will end up with LibreDB (*cough*)...
We have what essentially became db185 in libc, so there is no
need for that ;-) All the dbm functions are in libc already.
(This also holds
Ondřej Surý ondrej at sury.org writes:
True, but gdbm is GPL and LGPL and that's a problem for many non-GPL
applications using Berkeley DB now.
For applications that are not limited to the on-disc file format
compatibility, but just need an easy key/value storage API, like
gdbm users, you
Adam Borowski kilobyte at angband.pl writes:
On Wed, Jun 18, 2014 at 02:54:43PM +0200, Thorsten Glaser wrote:
Unicode 7.0 was recently released. I discovered some source packages
contain outdated copies of various Unicode data files. At minimum, the
I know that xterm’s wcwidth.c
On Wed, 18 Jun 2014, Paul Wise wrote:
Unicode 7.0 was recently released. I discovered some source packages
contain outdated copies of various Unicode data files. At minimum, the
For mine, mksh and jupp do, but they do not use the data files directly.
Instead, when Unicode is updated, I change
Henrique de Moraes Holschuh dixit:
Make it generic, instead. You could just automatize the table update
through a script, and allow it to either fetch the data over the network
using curl/wget/whatever (default), or to get the data from a local file.
It’s a bit more than a table. Also, the
On Thu, 12 Jun 2014, David Kalnischkies wrote:
For your attack to be (always) successful, you need a full-sources
mirror on which you modify all tarballs, so that you can build a valid
Sources file. You can't just build your attack tarball on demand as the
Erm, no? You can just cache a
Russell Stuart ras at debian.org writes:
messages. One of the reasons raised for not doing it is some felt
uncomfortable carrying around their GPG keys when travelling.
My initial reaction was that's being overly cautious particularly
given there signing every message doesn't mean you have
Gunnar Wolf gwolf at gwolf.org writes:
using entropy to seed a PRNG, if you have several shitty entropy
sources and one _really_ good one, and you xor them all together, the
resulting output is as random as the best of them. If your hardware
Your theory may be good, but we are talking about a
On Wed, 11 Jun 2014, Josh Triplett wrote:
Any program desiring high-performance random numbers has a good reason to use
RDRAND or RDSEED: they produce randomness *far* faster than the kernel, and
Yes, because SIGILL is so much faster…
Anyway. Even on systems supporting RDRAND, user space
On Thu, 12 Jun 2014, Christoph Anton Mitterer wrote:
Anyone who believed in getting trusted sources might have been attacked
with forged packages, and even the plain build of such package might
have undermined users' security integrity.
Then I believe Debian itself may be undermined.
The
Sébastien Villemot wrote:
The OpenLibm code derives from the FreeBSD msun implementation, which in turn
[â¦]
OpenLibm builds on Linux, and with little effort, should build on FreeBSD as
well. It builds with both, GCC and clang. Although largely tested on x86, it
also includes experimental
Kurt Roeckx dixit:
As far as I know, OpenBSD stopped using (A)RC4 for their random
number generation for good reason, even though the function is
They stopped, but not for good reason. But you can also use the
new unlicenced algorithm they use, if you really feel like it,
it’s not bad either,
-de...@lists.alioth.debian.org
Changed-By: Thorsten Glaser t...@mirbsd.de
Description:
mediawiki - website engine for collaborative work
mediawiki-classes - website engine for collaborative work - standalone classes
Changes:
mediawiki (1:1.19.16+dfsg-1) unstable; urgency=medium
.
* New
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA384
Format: 1.8
Date: Mon, 09 Jun 2014 21:35:12 +0200
Source: rs
Binary: rs
Architecture: source i386
Version: 20140609-1
Distribution: unstable
Urgency: medium
Maintainer: Thorsten Glaser t...@mirbsd.de
Changed-By: Thorsten Glaser t...@mirbsd.de
From: Andrei POPESCU andreimpope...@gmail.com
Why bother when a simple pin will do the job:
Because installing a package is cleaner than modifying
some configuration file, and because APT pinning is
sometimes fragile and can have interactions with other
pinning stanzas and is something IMHO
From: Guido =?iso-8859-1?Q?G=FCnther?= a...@sigxcpu.org
GTK+3 supports themes
GTK/GNOME people have stated numerous times that they do not want them.
. This
is a perfectly fine job for a derivate or Pure Blend: to provide a
polished system that serves one use case well.
Proper integration
On Mon, 12 May 2014, Noah Meyerhans wrote:
On Sun, May 11, 2014 at 11:12:08AM +1000, Brian May wrote:
What about the task of running a short program for a brief duration, e.g.
from cron scripts? Is using su considered acceptable?
I thought s-s-d is for starting dæmons, not for things
On Mon, 12 May 2014, James Cloos wrote:
Note that you cannot just strip colour profiles from image containers.
Doing so changes the output.
You'd have to replace the profile with a Free equivilent. Or, if no
free equivilent is available, edit the image to match a Free profile.
Can you
On Tue, 13 May 2014, Josselin Mouette wrote:
My opinion is that many users are migrating away from Debian because we
are unable to make decisions on important technical topics and leave
them with 3 different setups, none of which actually work, instead of
providing one that is correctly
On Mon, 12 May 2014, Tollef Fog Heen wrote:
]] Andrew Shadura
This sort of behaviour is precisely why so many people not only
dislike systemd, but also it's maintainers.
Are you aware that Joss isn't a systemd maintainer? (He's one of the
GNOME maintainers.)
There’s not really a line
Didier 'OdyX' Raboud dixit:
Le mardi, 13 mai 2014, 16.25:31 Thorsten Glaser a écrit :
On Mon, 12 May 2014, Tollef Fog Heen wrote:
Are you aware that Joss isn't a systemd maintainer? (He's one of
the GNOME maintainers.)
There’s not really a line between them, you know
Cyril Brulebois dixit:
The sad thing is: almost nobody reads the release notes.
Many people run testing or unstable, so there are no “release”s
to have notes for, either… (but yes, even those who run stable
don’t).
bye,
//mirabilos
--
“When udev happened I wrote mdev.”
-- Rob Landley
Thijs Kinkhorst dixit:
On Tue, May 13, 2014 18:03, Russ Allbery wrote:
You're aware, right, that my primary background is with enterprise use,
and I've been doing large-site systems administration for twenty years?
systemd is a godsend with basically no downside for our enterprise use
[…]
I
Russ Allbery dixit:
• no /etc/init.d/$foo (to tabcomplete, no less!) any more
I've been telling people to stop using this for years. You should stop
using this too, regardless of what init system you're using, since it
doesn't sanitize environment variables. You leak all kinds of crap from
Thibaut Paumard dixit:
People who run testing or unstable should be prepared to deal with
occasional breakages.
With occasional *temporary* breakages, such as packages disappearing
(in testing) or needing to be set on “hold” temporarily, yes.
With the init system suddenly be swapped out under
Steve Langasek dixit:
On Tue, May 13, 2014 at 08:23:55PM +, Thorsten Glaser wrote:
service foo action works across Linux distributions, with or without
systemd, and does the right thing.
It doesn’t work on lenny, and (unless service /etc/init.d/foo is
allowed) does not tabcomplete well
On Sun, 11 May 2014, Marc Haber wrote:
On Sat, 10 May 2014 22:13:01 +0200, Matthias Urlichs
matth...@urlichs.de wrote:
I also would not expect an end user to add su foo -c /do/whatever to
/etc/rc.local. Your opinion may differ, that's OK.
Especially people who are not as Debian-centric as
On Fri, 9 May 2014, Steve Langasek wrote:
ii systemd 204-10
ii systemd-sysv 204-10
You can purge them. Install sysvinit-core at the same time.
This is unconstructive advice.
No, it is not, for someone who wants systemd gone
On Sat, 10 May 2014, Bas Wijnen wrote:
So please get dirmngr fixed instead of blaming systemd/logind.
This is the part you should _NEVER_ do. It is YOUR responsibitiliy, as a
maintainer (you are the maintainer, right?), to make sure that a bug that is
reported in the wrong place gets sent
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA384
Format: 1.8
Date: Sun, 11 May 2014 16:52:36 +
Source: kwalletcli
Binary: kwalletcli
Architecture: source i386
Version: 2.12-1
Distribution: unstable
Urgency: low
Maintainer: Thorsten Glaser t...@mirbsd.de
Changed-By: Thorsten Glaser t
On Fri, 9 May 2014, Andrew Shadura wrote:
On 9 May 2014 14:32, Tollef Fog Heen tfh...@err.no wrote:
Well, I've not been asked if I wanted to switch to systemd based boot
when upgrading. I think this is a bug in init system choice and should
be reported.
ACK.
I noticed this because I have
Tollef Fog Heen wrote:
Changes to the default init system should not affect existing setups.
Were that true, it would be different to how we handle changes in other
defaults.
A default is a default because it is only applies when the
sysadmin defaults to it, when the sysadmin defaults making
a
On Thu, 8 May 2014, Paul Wise wrote:
/usr/share/doc/doxygen/README.jquery
This is a bug in doxygen. Replacing the embedded jquery copy
in the Debian package shipping it with a link to the jquery
version in Debian should be the right thing to do. Maybe this
entire technology behind doxygen needs
On Wed, 7 May 2014, Ian Jackson wrote:
Yes. But this isn't as bad as you think, because the source
availability requirement exists only if you modify the AGPL'd
software.
Which you may want to do, in order to patch a security issue
you just found, locally, before filing it upstream.
Or
On Sun, 4 May 2014, Timo Weingärtner wrote:
The installer already asks whether to enable non-free repositories. Perhaps
This could get a loud warning, yes.
the warning could be more verbose differentiating between open-source-but-non-
free (GFDL etc.) and closed-source.
There is no
Matthias Urlichs dixit:
Thorsten Glaser:
Did you *read* how upstream answered the one thing I *did* forward
myself?
For the benefit of the other readers here, would you please supply a
reference URL?
Sure: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=728053
igli exceptions: a truly
Russ Allbery dixit:
Svante Signell svante.sign...@gmail.com writes:
Does the Debian guidelines give any hints on who is responsible to
report a patch upstream? Is it the bug submitters or the Debian package
maintainers responsibility (in addition to eventually apply them to the
packages)?
I
Nikolaus Rath dixit:
Ah, wait. So is the requirement that we ship the source to all files in
the source package, or is the requirement to ship the source to all
files in the source package that are used to generate the binary
package?
The former, plus…
Paul Tagliamonte paul...@debian.org
Ben Finney dixit:
That is, to answer the question “what is the source form of the work”,
we need a definition that answers in terms of “such-and-so form of the
work”.
Well, the one you’d want to have when you were to modify (think, fork)
the original work in question.
In the autoconf case: even
Sune Vuorela dixit:
On 2014-05-03, Thorsten Glaser t...@mirbsd.de wrote:
This does not, of course, prevent people like the Mesa maintainers
from refusing to do it. I’ve got no idea how to enforce DevRef on
Thank you for volunteering to help forwarding bug reports for the mesa
Did you *read
Henrique de Moraes Holschuh dixit:
On Wed, 30 Apr 2014, Pierre wrote:
When /tmp is configured as noexec (for example /tmp in RAM), some
scripts fail on package update.
[…]
It may look like it is working, but we don't properly support it,
Sounds like a release goal for jessie+1 or jessie+2.
On Tue, 29 Apr 2014, Steven Chamberlain wrote:
On Mon, 28 Apr 2014 16:52:10 + (UTC), daThorsten Glaser wrote:
For their OpenSSL fork, specifically, they rely on some system
properties such as their RNG’s behaviour way too much [...]
I would think Linux and FreeBSD have much better
On Tue, 29 Apr 2014, Jakub Wilk wrote:
A wide misconception. Chroots are easily implemented and add security
^^^
almost for free (often /dev/log is all that is needed) and so can be used
by default without any
Marko Randjelovic markoran at eunet.rs writes:
On Tue, 29 Apr 2014 11:35:26 +0800
Paul Wise pabs at debian.org wrote:
On Tue, Apr 29, 2014 at 8:07 AM, Marko Randjelovic wrote:
- security patches should be clearly marked as such in every *.patch
file
That sounds like a good
Tollef Fog Heen tfheen at err.no writes:
“openvt” is used to start a program on a new virtual terminal, and
according to
its manual page, it has been renamed from “open” at the end of the XXth
century. The changelog of the kbd package confirms the impression that
it
has been phased out
Kevin Chadwick ma1l1ists at yahoo.co.uk writes:
Security and chroots aren't things I would associate, you need
better.
A wide misconception. Chroots are easily implemented and add security
almost for free (often /dev/log is all that is needed) and so can be
used by default without any
Shachar Shemesh shachar at debian.org writes:
the changes there is a runtime check for undefined behavior. Just
compile with -fsanitize=undefined, and your program will crash with
log if it performs an operation that C/C++ considers to be
undefined.
This does not help. At
501 - 600 of 1102 matches
Mail list logo