Hi,
On Tue, 13 May 2003, Rene Engelhard wrote:
And that looks like it is f*cked. Is this Depends: done manually?
I do not thing dpkg-shlibdeps did that. Where is libc6?
Actually i was only worried about the licence because i know it can't be
there. We use it at work :-)
Fabio
--
Our
Hi,
On Tue, 13 May 2003, Emile van Bergen wrote:
Hi,
On Tue, May 13, 2003 at 10:16:38PM +0200, Fabio Massimo Di Nitto wrote:
I think upload must be moderated somehow. Even the uploader himself claim
that he is unsure about licence of the product.
Well, if the packages can only be
Hi,
On Tue, 13 May 2003, Christoph Haas wrote:
Hi, Fabio...
On Tue, May 13, 2003 at 10:16:38PM +0200, Fabio Massimo Di Nitto wrote:
Really nice job but the first side effect is already there:
Package: icaclient
Thanks for the hint. That was a test package I was uploading to stress
Hi, Colin Watson wrote:
Perhaps an easy thing to do would just be to show whether or not a
pckage is signed by a key which is signed by a real debian developer.
Ie, use the web of trust. Then at least one can be reasonable sure that
the maintainer is real.
Surely getting that signature
On Wed, May 14, 2003 at 09:26:13AM +0200, Matthias Urlichs wrote:
Hi, Colin Watson wrote:
I would strongly suggest that you use a write-only incoming, and a
signature checker which moves packages to the download area if they're OK.
That checker should do the following:
- start with the
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Ivo Marino wrote:
Checking application/pgp-signature: FAILURE
- -- Start of PGP signed section.
On Tue, 13 May 2003, Matthew Palmer wrote:
It appears as though anyone who has an account can upload any package they
like. While this isn't a
On Tue, 13 May 2003, Daniel K. Gebhart wrote:
Matthew Palmer [EMAIL PROTECTED] wrote Tue, May 13, 2003 at 08:36:12AM
+1000:
*very* serious problem for anyone who starts relying on the binary packages
uploaded to m.d.n. What sort of protections do you have in place or plan to
put in
On Mon, May 12, 2003 at 10:48:03PM +0200, Daniel K. Gebhart wrote:
---
Debian Mentors Project
The mentors core-team is:
Christoph Haas (ChrisH)[EMAIL PROTECTED]
Ivo Marino (eim) [EMAIL
On Tue, May 13, 2003 at 01:29:00AM +0100, Colin Watson wrote:
On Mon, May 12, 2003 at 05:41:40PM -0600, Jack Moffitt wrote:
Perhaps an easy thing to do would just be to show whether or not a
pckage is signed by a key which is signed by a real debian developer.
Surely getting that signature
Hi, Anthony...
On Tue, May 13, 2003 at 03:51:42PM +1000, Anthony Towns wrote:
Uh, as far as I can tell, of the above only Daniel is even in the
n-m queue; Christoph, Ivo and Christoph appear to not be developers,
applicants, or even sponsored maintainers of any packages in the archive.
You
On Tue, May 13, 2003 at 08:30:03AM +0100, Mark Brown wrote:
On Tue, May 13, 2003 at 01:29:00AM +0100, Colin Watson wrote:
On Mon, May 12, 2003 at 05:41:40PM -0600, Jack Moffitt wrote:
Perhaps an easy thing to do would just be to show whether or not a
pckage is signed by a key which is
On Tue, May 13, 2003 at 03:51:42PM +1000, Anthony Towns wrote:
Daniel K. Gebhart (con-fuse) [EMAIL PROTECTED]
Christoph Siess (CHS) [EMAIL PROTECTED]
Why are we giving debian.net addresses to people who don't want to go
through the pain of authenticating themselves to
On Tue, May 13, 2003 at 10:02:11AM +0200, Christoph Haas wrote:
Please bear with me but from what I was told by a number of package
maintainers it is a really long way until one has become a DD. Just
because Daniel was assigned an AM does not mean there is a guarantee he
will get his DD access
Hi,
On Tue, May 13, 2003 at 04:34:08AM -0500, Luca - De Whiskey's - De Vitis wrote:
On Tue, May 13, 2003 at 10:02:11AM +0200, Christoph Haas wrote:
Please bear with me but from what I was told by a number of package
maintainers it is a really long way until one has become a DD. Just
On Tue, May 13, 2003 at 03:51:42PM +1000, Anthony Towns wrote:
On Mon, May 12, 2003 at 10:48:03PM +0200, Daniel K. Gebhart wrote:
---
Debian Mentors Project
The mentors core-team is:
Christoph Haas (ChrisH
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Emile,
On Tue, May 13, 2003 at 12:07:12PM +0200, Emile van Bergen wrote:
I think there is a niche for such non-DD contributors. Not only in
bugreporting and bugfixing, but also in packaging work.
I would not emphasize on DD vs. non-DD but on
On Tue, May 13, 2003 at 10:02:11AM +0200, Christoph Haas wrote:
You are right. I do plan to apply in a few weeks. However the service
was created especially for people who e.g. have written an application
themselves and do not care about becoming a DD.
Is that such a good thing? It might get
Christoph Haas [EMAIL PROTECTED] writes:
However the service
was created especially for people who e.g. have written an application
themselves and do not care about becoming a DD.
I object to the conept of people who do not care about
Hi,
On Tue, May 13, 2003 at 09:48:49AM -0500, Luca - De Whiskey's - De Vitis wrote:
On Tue, May 13, 2003 at 12:07:12PM +0200, Emile van Bergen wrote:
[...]
Regardless, I actually think it's a wonderful scaleability measure
to provide some infrastructure that allows DDs to delegate some of
On Tue, May 13, 2003 at 05:41:12PM +0200, Emile van Bergen wrote:
That's not mutually exclusive. Also, you ask who would ever wish to
delegate the maintainership of a package. I think the answer is every DD
who has filed a RFA on a package.
RFA is a Request For Adoption, not a delegation.
On Tue, 13 May 2003 14:11:05 +0200
Bastian Kleineidam [EMAIL PROTECTED] wrote:
snip
If there are people willing to adopt a package, they should start
renaming the O: bug to an ITA:. If the bug is still O:, there is
nobody caring for that packge.
I have attempted to indicate my willingness to
for Sponsorship of future Debian developers.
It's a great resource, but The Debian Mentors Project takes things a few
steps further. mentors.debian.net provides a place to put packages and a
chance for people to use the Debian system for uploading packages
(dupload, dput...). It also allows
Hi Daniel,
On Mon, 12 May 2003, Daniel K. Gebhart wrote:
We are very proud to announce the opening of the mentors project. We
have been working very hard[1] on this project since beginning of 2003.
Now the time has come to test and use it!
Really nice job but the first side effect is
Hi, Fabio...
On Tue, May 13, 2003 at 10:16:38PM +0200, Fabio Massimo Di Nitto wrote:
Really nice job but the first side effect is already there:
Package: icaclient
Thanks for the hint. That was a test package I was uploading to stress
test the dupload process on the server. It wasn't really
Hi,
Fabio Massimo Di Nitto wrote:
Really nice job but the first side effect is already there:
Package: icaclient
Version: 6.30-2
Priority: optional
Section: net
Maintainer: Christoph Haas [EMAIL PROTECTED]
Depends: libxaw7
And that looks like it is f*cked. Is this Depends: done
Hi,
On Tue, May 13, 2003 at 10:16:38PM +0200, Fabio Massimo Di Nitto wrote:
I think upload must be moderated somehow. Even the uploader himself claim
that he is unsure about licence of the product.
Well, if the packages can only be downloaded by registered DDs, then the
problem's solved I'd
On Mon, May 12, 2003 at 11:40:04PM -0400, Joe Nahmias wrote:
If I may make a suggestion, a user should only be able to upload a
package that either:
a) doesn't appear in the repository
- -or-
b) already has the uploader as maintainer
- -or-
c) has a RFA/O bug filed in WNPP
On Mon, 12 May 2003, tony mancill wrote:
Appropos of this and Colin's statement, my suggestion is to make only a
deb-src URL available on the site, and to only host source packages. For
That would be one way to solve the problem.
packages destined for the Debian archive, it's critical that
---
Debian Mentors Project
http://mentors.debian.net/
opening - 12. May 2003
---
We are very proud to announce the opening of the mentors project. We
On Mon, 12 May 2003, Daniel K. Gebhart wrote:
This project is a benefit for maintainers (non-DDs) and their sponsors
(DDs). Maintainers are able to upload packagages to mentors.debian.net
and point their sponsors to this server. Sponsors can download and test
this packages by downloading
On Tue, 13 May 2003, Matthew Palmer wrote:
First off, thanks for the effort spent in getting this working. It seems
like it could be a useful resource for the non-DD packaging public (heh). I
have a few issues with your upload queue support, in particular.
First of all thanks for your
Of course we can't actually ensure that all uploaded packages on the
system are secure, for now we trust the testers of the system but in
future we'll introduce higher security standards.
If someone can allready point out an eventual solution for this problem
we'll open to consider any
Matthew Palmer [EMAIL PROTECTED] wrote Tue, May 13, 2003 at 08:36:12AM +1000:
*very* serious problem for anyone who starts relying on the binary packages
uploaded to m.d.n. What sort of protections do you have in place or plan to
put in place to protect against this sort of thing?
The mentors
On Mon, May 12, 2003 at 05:41:40PM -0600, Jack Moffitt wrote:
Ivo Marino wrote:
Of course we can't actually ensure that all uploaded packages on the
system are secure, for now we trust the testers of the system but in
future we'll introduce higher security standards.
If someone can
On Tue, 13 May 2003, Daniel K. Gebhart wrote:
Matthew Palmer [EMAIL PROTECTED] wrote Tue, May 13, 2003 at 08:36:12AM
+1000:
*very* serious problem for anyone who starts relying on the binary packages
uploaded to m.d.n. What sort of protections do you have in place or plan to
put in
35 matches
Mail list logo
