Re: F29 System Wide Change: Strong crypto settings: phase 2

On Wed, 6 Jun 2018, Nikos Mavrogiannopoulos wrote: I think the debate here is whether fedora (and in general operating systems) can afford to be stricter than the browsers. As an OS our attack surface is much larger than the browser setup, and thus it makes sense (to me), to be more careful. Y

Cryptominisat license change

I will build cryptominisat 5.6.3 for Rawhide momentarily. With this version, the license changes from LGPLv2 to MIT. This version also carries an soname bump. I will rebuild the only dependent package in Fedora, namely stp. -- Jerry James http://www.jamezone.org/ ___

Re: Prioritizing ~/.local/bin over /usr/bin on the PATH

On Tue, Jun 12, 2018 at 08:26:52PM +0200, Miro Hrončok wrote: > On 12.6.2018 20:15, Reindl Harald wrote: > >>This is more like a security by obscurity approach. This "another layer" > >>is just one step. It's like putting a duct tape over a keyhole and call > >>it extra security > >bullshit > Thank

Re: Release criteria proposal: installing / removing software

On Tue, Jun 12, 2018 at 11:35:21AM -0700, Adam Williamson wrote: > "The installed system must be able to install, remove, and install > appropriate updates for software with the default console tool for the > relevant software type (e.g. default console package manager). This > includes downloading

Re: Release criteria proposal: installing / removing software

On Tue, 2018-06-12 at 22:02 +, Zbigniew Jędrzejewski-Szmek wrote: > On Tue, Jun 12, 2018 at 12:03:51PM -0700, Adam Williamson wrote: > > On Tue, 2018-06-12 at 20:55 +0200, Miro Hrončok wrote: > > > On 12.6.2018 20:35, Adam Williamson wrote: > > > > "The installed system must be able to install,

Re: Release criteria proposal: installing / removing software

On Tue, Jun 12, 2018 at 12:03:51PM -0700, Adam Williamson wrote: > On Tue, 2018-06-12 at 20:55 +0200, Miro Hrončok wrote: > > On 12.6.2018 20:35, Adam Williamson wrote: > > > "The installed system must be able to install, remove, and install > > > > Install, remove and update? > > That would be s

Re: Elections for Council - May 2018 - Result announcement

Hi, On Thu, Jun 07, 2018 at 09:06:34AM -0400, Matthew Miller wrote: > On Thu, Jun 07, 2018 at 04:34:10AM +0200, Jan Kurik wrote: > > The elections for Council - May 2018 [1] have concluded, and the > > results are shown below. > > Welcome, Till! And, thank you Nick for your work on the Council ov

Re: Release criteria proposal: drop kickstart package criterion

On Mon, 2018-06-04 at 16:39 -0700, Adam Williamson wrote: > Hi, folks! > > We currently have a Final release criterion that reads as follows: > > "A spin-kickstarts package which contains the exact kickstart files > used to build the release must be present in the release repository. > The includ

Re: CA certificate directory for a VPN client

Hi Kai, 2018-06-12 16:55 GMT+03:00 Kai Engert : > > If a single CA list for both TLS and VPNs was used, and a user added a > VPN's private CA to that shared list, it would technically enable the > VPN operator to issue false certificates, and TLS clients like Firefox > would then trust such false

Re: Release criteria proposal: installing / removing software

On Tue, 2018-06-12 at 20:55 +0200, Miro Hrončok wrote: > On 12.6.2018 20:35, Adam Williamson wrote: > > "The installed system must be able to install, remove, and install > > Install, remove and update? That would be simpler but unfortunately loses the "appropriate" wording, which is important. W

Re: Release criteria proposal: installing / removing software

On 12.6.2018 20:35, Adam Williamson wrote: "The installed system must be able to install, remove, and install Install, remove and update? -- Miro Hrončok -- Phone: +420777974800 IRC: mhroncok ___ devel mailing list -- devel@lists.fedoraproject.org To

Release criteria proposal: installing / removing software

Hi, folks! It's been noted a few times before that we have a release criterion that requires *updating* packages (or, these days, 'software', to cover things like modules) to work...but we don't have criteria covering other basic software management tasks, notably installing and removing. There i

Re: Prioritizing ~/.local/bin over /usr/bin on the PATH

On 12.6.2018 20:15, Reindl Harald wrote: This is more like a security by obscurity approach. This "another layer" is just one step. It's like putting a duct tape over a keyhole and call it extra security bullshit Thanks for the tone, it is very helpful. when the exploit is naively written

Re: Prioritizing ~/.local/bin over /usr/bin on the PATH

On 12.6.2018 19:57, Reindl Harald wrote: Am 12.06.2018 um 19:31 schrieb Miro Hrončok: On 12.6.2018 19:20, Howard Howell wrote: I haven't followed all of this thread, too self busy.  However there is a security argument.  If you have a local executable directory, then the capability for mal

Re: Prioritizing ~/.local/bin over /usr/bin on the PATH

On Tue, Jun 12, 2018 at 10:20:46AM -0700, Howard Howell wrote: > I haven't followed all of this thread, too self busy. However there is > a security argument. If you have a local executable directory, then > the capability for malicious software to attach is wide open for that > user, whatever th

Re: Prioritizing ~/.local/bin over /usr/bin on the PATH

On 12.6.2018 19:20, Howard Howell wrote: I haven't followed all of this thread, too self busy. However there is a security argument. If you have a local executable directory, then the capability for malicious software to attach is wide open for that user, whatever their privelege level might b

Re: Prioritizing ~/.local/bin over /usr/bin on the PATH

On Tue, 2018-06-12 at 12:10 +0100, Tomasz Kłoczko wrote: > On Mon, 11 Jun 2018 at 12:28, Miro Hrončok > wrote: > [..] > > See the change description. > > OK So here is quoted original email with proposal. > > "I'd like to propose putting the ~/.local/bin in front of the > /usr/bin on > the PATH

Re: F29 System Wide Change: Strong crypto settings: phase 2

On Tue, 2018-06-12 at 16:01 +0200, Kai Engert wrote: > On 06/11/18 15:14, Tomas Mraz wrote: > > > Okay, so IIUC now, this is an all-or-nothing kind of change. If > > > I > > > elect/need to use LEGACY to administer some old hardware that I > > > cannot > > > otherwise connect to using the defaults

Re: F29 System Wide Change: Strong crypto settings: phase 2

On 06/11/18 15:14, Tomas Mraz wrote: >> Okay, so IIUC now, this is an all-or-nothing kind of change. If I >> elect/need to use LEGACY to administer some old hardware that I >> cannot >> otherwise connect to using the defaults, then I'm compromising that >> host's security for anything/everything i

Re: CA certificate directory for a VPN client

On 06/01/18 08:39, Mikhail Zabaluev wrote: > A question arose about a good choice of the default directory for > trusted CA certificates over these proposed rpm PRs: > > https://src.fedoraproject.org/rpms/strongswan/pull-request/6 > https://src.fedoraproject.org/rpms/strongswan/pull-request/7 > >

Re: Resurrecting python-logilab-common package

On 12.6.2018 15:07, Jiri Kucera wrote: Hello, I am interested in maintaining python-logilab-common package. It is required by python-pylint-common (not yet packaged), which is required by python-prospector. I have a plan to add prospector to Fedora. It will be used as a csmock plugin if it c

Resurrecting python-logilab-common package

Hello, I am interested in maintaining python-logilab-common package. It is required by python-pylint-common (not yet packaged), which is required by python-prospector. I have a plan to add prospector to Fedora. It will be used as a csmock plugin if it catch issues not covered by recent csmock

Re: Prioritizing ~/.local/bin over /usr/bin on the PATH

On Tue, Jun 12, 2018 at 07:50:29AM -0400, Nico Kadel-Garcia wrote: > The simple fact is that "sudo" inherits $HOME and $PATH by default. Not in Fedora's default configuration. And, this proposal increases my support for keeping that as it is (with secure_path set). -- Matthew Miller Fedora Proj

Re: Prioritizing ~/.local/bin over /usr/bin on the PATH

On 06/12/2018 07:50 AM, Nico Kadel-Garcia wrote: > On Tue, Jun 12, 2018 at 7:10 AM, Tomasz Kłoczko > wrote: > >> Just FTR: So far I was unable to find in any of the fredesktop.org or >> other specs (https://www.freedesktop.org/wiki/Software/) things like >> requirement use /usr/local{bi,sbin} or ~

Re: Prioritizing ~/.local/bin over /usr/bin on the PATH

On Tue, Jun 12, 2018 at 07:50:29AM -0400, Nico Kadel-Garcia wrote: > On Tue, Jun 12, 2018 at 7:10 AM, Tomasz Kłoczko > wrote: > > > Just FTR: So far I was unable to find in any of the fredesktop.org or > > other specs (https://www.freedesktop.org/wiki/Software/) things like > > requirement use /u

Re: Prioritizing ~/.local/bin over /usr/bin on the PATH

On 12.6.2018 13:50, Nico Kadel-Garcia wrote: On Tue, Jun 12, 2018 at 7:10 AM, Tomasz Kłoczko wrote: Just FTR: So far I was unable to find in any of the fredesktop.org or other specs (https://www.freedesktop.org/wiki/Software/) things like requirement use /usr/local{bi,sbin} or ~.local/bin in $

Re: ga (global arrays) package maintainer needed

On mardi 12 juin 2018 10:57:34 CEST abdul@wipro.com wrote: > Hello Team, > > Can you please remove my Email from the Distribution list ? > I've been requesting the same from long time and no action has been taken. > To unsubscribe send an email to devel-le...@lists.fedoraproject.org ___

Re: Prioritizing ~/.local/bin over /usr/bin on the PATH

On Tue, Jun 12, 2018 at 7:10 AM, Tomasz Kłoczko wrote: > Just FTR: So far I was unable to find in any of the fredesktop.org or > other specs (https://www.freedesktop.org/wiki/Software/) things like > requirement use /usr/local{bi,sbin} or ~.local/bin in $PATH (and > especially on the front of the

Re: REMINDER: Submission deadline for Changes of Fedora 29 requiring mass rebuild takes effect in one week

Thanks... I was wondering how introduction of a new package enters such schedule [1] ? More specifically, when is the deadline for a new package to enter Fedora 29 ? I recall my introduction from 5 days ago, stating I volunteer to maintain a new EDA package (and co-maintain others ?) : " Hi, I am

Re: Prioritizing ~/.local/bin over /usr/bin on the PATH

On Mon, 11 Jun 2018 at 12:28, Miro Hrončok wrote: [..] > See the change description. OK So here is quoted original email with proposal. "I'd like to propose putting the ~/.local/bin in front of the /usr/bin on the PATH. Currently /usr/bin has priority over ~/.local/bin, which causes a [bug] whe

RE: ga (global arrays) package maintainer needed

Hello Team, Can you please remove my Email from the Distribution list ? I've been requesting the same from long time and no action has been taken. -Original Message- From: Petr Pisar [mailto:ppi...@redhat.com] Sent: 12 June 2018 13:58 To: devel@lists.fedoraproject.org Subject: Re: ga (glo

Re: ga (global arrays) package maintainer needed

On 2018-06-12, Marcin Dulak wrote: > What is the current policy about bundling in Fedora? > . -- Petr ___ devel mailing list -- devel@lists.fedoraproject.o

Re: ga (global arrays) package maintainer needed

What is the current policy about bundling in Fedora? It turns out that the global arrays package, apart from being outdated, and no response from the maintainer has been compiled with incompatible options to the ones required by nwchem: https://bugzilla.redhat.com/show_bug.cgi?id=1514542 If I d

REMINDER: Submission deadline for Changes of Fedora 29 requiring mass rebuild takes effect in one week

Hi everyone! The submission deadline for Changes of Fedora 29 [1], requiring mass rebuild, takes effect in one week on June 19th. All the Changes requiring mass rebuild sent for review after this deadline are going to be moved to Fedora 30 release. The mass rebuild it self is planned on July 11th.