On Thu, 19 Nov 2009, Conrad Meyer wrote:
I think it's fair to say that having this happen as root would generally
be worse than it happening as an unprivileged user. For the latter, the
attacker would need to also then succeed with a local privilege escalation
attack to the same effect.
On 11/20/2009 09:21 AM, Peter Robinson wrote:
2009/11/18 Martin Stranskystran...@redhat.com:
Hi,
a new firefox (3.6 beta 2) just hit rawhide (a.k.a f13). There are some
changes which affect everyone who builds with xulrunner-devel-unstable
package.
Mozilla decided to merge all include
On 11/20/2009 02:21 AM, Rudolf Kastl wrote:
there are also inconsistencies between gui clickery and shell usage...
simple example:
click shutdown in gnome just does it in f12
Yeah, you can do that in F11 as well :(
I agree, this needs protecting with a root password too.
Jeff
--
2009/11/20 Orcan Ogetbil oget.fed...@gmail.com:
On Thu, Nov 19, 2009 at 10:21 PM, Stu Tomlinson wrote:
On Thu, Nov 19, 2009 at 22:01, Orcan Ogetbil wrote:
On Wed, Nov 18, 2009 at 12:57 AM, Toshio Kuratomi wrote:
There's many things that need to be changed in rpm but IMHO this isn't one
of
On 11/20/2009 09:02 AM, Nicu Buculei wrote:
On 11/19/2009 08:14 PM, Jesse Keating wrote:
On Thu, 2009-11-19 at 18:45 +0100, Ralf Corsepius wrote:
You must not confuse moblin with netbooks, nettops or with i386/32bit
machines in general. The moblin desktop is addressing a completely
different
http://www.musepack.net/index.php?pg=src
http://files.musepack.net/source/musepack_src_r435.tar.gz
It seems we only have the old libmpcdec 1.2.6 in Fedora, which can decode
SV7 but not SV8.
Is the new set of libs and tools (from March 2009) hidden somewhere?
Or are there new legal problems?
--
You must not confuse moblin with netbooks, nettops or with i386/32bit
machines in general. The moblin desktop is addressing a completely
different audience.
Oh? That's not what I got from
http://fedoraproject.org/wiki/Features/FedoraMoblin
It's what I get from this web-page and what I
On 11/20/2009 11:20 AM, Ralf Corsepius wrote:
Users of the Fedora Moblin Spin would have a much better user
experience on their NetBook, NetTop and other small devices
That's what the marketing department wants it to be.
Meh. You said the target of the spin is not netbooks but it clearly
On 11/20/2009 11:58 AM, Peter Robinson wrote:
IMO, they are targetting MID devices, competing with Android, Smart phones
and similar.
Not at the moment they're not/
Then please explain what they are targetting.
So far, all of Moblin I have seen was them trying to turn a multi-user
Kevin Kofler kevin.kof...@chello.at writes:
This is, sadly, intentional. I and others have been complaining about this
for months, we got ignored, all in the names of making things work for
people who are not smart enough to figure out whether their computer is 64-
bit or not. The argument
Firstly, I'd like to say I think abrt is fantastic. Call what follows a
nit-pick. It's just a pretty in-your-face nit.
After installing F12, after a short while I got presented with a couple
of SELinux errors. This is nothing unusual in a new Fedora release, but
this time it asked me for my
On Fri, Nov 20, 2009 at 11:14 AM, Ralf Corsepius rc040...@freenet.de wrote:
On 11/20/2009 11:58 AM, Peter Robinson wrote:
IMO, they are targetting MID devices, competing with Android, Smart
phones
and similar.
Not at the moment they're not/
Then please explain what they are targetting.
I've been trying to fix libotf, but make tag is doing something really
strange.
Here is my previous post:
Something seems strange here with libotf. I want to push 0.9.9-3 for F12.
I went into my F-12 subdir and did the usual
make tag build
ERROR: Tag libotf-0_9_9-3_fc12 has been already
I can't seem to get abrt to work at all. I suspect it's stuck on trying to
get bz username password. I suspect it doesn't work correctly with kde.
--
fedora-devel-list mailing list
fedora-devel-list@redhat.com
https://www.redhat.com/mailman/listinfo/fedora-devel-list
On Friday 20 November 2009 12:29:34 Neal Becker wrote:
I can't seem to get abrt to work at all. I suspect it's stuck on trying to
get bz username password. I suspect it doesn't work correctly with kde.
From what I know it works correctly in KDE, even we have several KDE related
bugreports
On Fri, Nov 20, 2009 at 12:23:33PM +0100, Benny Amorsen wrote:
Kevin Kofler kevin.kof...@chello.at writes:
This is, sadly, intentional. I and others have been complaining about this
for months, we got ignored, all in the names of making things work for
people who are not smart enough to
On Friday 20 November 2009 13:11:49 Jiri Moskovcak wrote:
On 11/20/2009 01:08 PM, Neal Becker wrote:
Jiri Moskovcak wrote:
On 11/20/2009 12:54 PM, Neal Becker wrote:
Jaroslav Reznik wrote:
On Friday 20 November 2009 12:29:34 Neal Becker wrote:
I can't seem to get abrt to work at all. I
Seth Vidal skvi...@fedoraproject.org writes:
If there are pkgs which run daemons which are defaulting to ON when
installed or on next reboot - then we should be auditing those pkgs.
Last I checked we default to OFF and that should continue to be the
case.
Is there a blanket prohibition on
On 11/20/2009 01:15 PM, Jaroslav Reznik wrote:
On Friday 20 November 2009 13:11:49 Jiri Moskovcak wrote:
On 11/20/2009 01:08 PM, Neal Becker wrote:
Jiri Moskovcak wrote:
On 11/20/2009 12:54 PM, Neal Becker wrote:
Jaroslav Reznik wrote:
On Friday 20 November 2009 12:29:34 Neal Becker wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
King InuYasha wrote:
Except, that could be false advertising. In most cases, where CPU
computation is not used heavily, 64-bit is actually SLOWER than the
32-bit counterpart. Optimizations are narrowing the gap, but it still
remains true.
On
Wouldn't it be a good idea to disallow a push to updates that has broken
deps?
--
fedora-devel-list mailing list
fedora-devel-list@redhat.com
https://www.redhat.com/mailman/listinfo/fedora-devel-list
Mike A. Harris wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
King InuYasha wrote:
Except, that could be false advertising. In most cases, where CPU
computation is not used heavily, 64-bit is actually SLOWER than the
32-bit counterpart. Optimizations are narrowing the gap, but it
On Fri, Nov 20, 2009 at 07:26:27AM -0500, Neal Becker wrote:
Wouldn't it be a good idea to disallow a push to updates that has broken
deps?
Yes, it would. It's been discussed numerous times on this list an others.
Summary: Needs hard thinking and people actually working on it. Not trivial.
2009/11/20 Neal Becker ndbeck...@gmail.com:
Wouldn't it be a good idea to disallow a push to updates that has broken
deps?
If the special case is kde-plasma-smooth-tasks. It is not in updates
yet. The needed deps are in updates-testing.
--
LG Thomas
Dubium sapientiae initium
--
On Fri, Nov 20, 2009 at 12:26 AM, Conrad Meyer ceme...@u.washington.edu wrote:
On the contrary. On the typical single user system, it's just as bad if an
attacker can steal / delete / modify the user's files as it is if the attacker
can modify / delete system files. Privilege escalation isn't
On Thu, Nov 19, 2009 at 11:52:42PM -0500, Orcan Ogetbil wrote:
It's a hack. It's Fedora-specific, so doesn't belong in RPM (or
anything else). And RPM will no longer produce predictable versioning.
My proposed hack's outcome is quite predictable.
I just faced this same attitude in
Jesse Keating wrote:
You're making the assumption that the change was made to save space. It
wasn't. I can't find the original thread right now, but it's part of a
cleanup on configuration tools. Upstream felt it no longer necessary to
expose this
Wow. Did they get any estimates on the %
On Fri, Nov 20, 2009 at 04:09:15PM +1100, James Morris wrote:
Many users limit their use of the root account to essential system
maintenance, and run general purpose applications as a regular
unprivileged user.
I know basically nobody who, on a generally single user system,
explicitly
On 11/20/2009 03:28 PM, Neal Becker wrote:
Jiri Moskovcak wrote:
On 11/20/2009 01:15 PM, Jaroslav Reznik wrote:
On Friday 20 November 2009 13:11:49 Jiri Moskovcak wrote:
On 11/20/2009 01:08 PM, Neal Becker wrote:
Jiri Moskovcak wrote:
On 11/20/2009 12:54 PM, Neal Becker wrote:
Jaroslav
On Fri, Nov 20, 2009 at 9:34 AM, Matthew Garrett m...@redhat.com wrote:
On Fri, Nov 20, 2009 at 04:09:15PM +1100, James Morris wrote:
Many users limit their use of the root account to essential system
maintenance, and run general purpose applications as a regular
unprivileged user.
I
On Thu, Nov 19, 2009 at 08:50:06PM -0800, Jesse Keating wrote:
On Fri, 2009-11-20 at 00:50 +0100, Kevin Kofler wrote:
And why can't all this be done with s/git/SVN/? All we really need apart
from what CVS already provides is atomic commit IDs, to make the
maintainers would not tag
On Fri, Nov 20, 2009 at 06:46:59AM -0500, Neal Becker wrote:
I'd like to add my favorite repo. Possible?
I thought preupgrade already took whatever repos you have enabled in yum.
Do you want it to have UI for selecting repositories? Or something else?
-Toshio
pgpxlKePkYGCm.pgp
Description:
On Wednesday 18 November 2009 11:25:15 am Richard W.M. Jones wrote:
A package I'm building has an (optional) test which does a local
non-root fuse mount in order to run some tests. In Koji this gives
the error:
fuse: device not found, try 'modprobe fuse' first
So I have a couple of
On Fri, Nov 20, 2009 at 09:38:43AM -0500, Fulko Hew wrote:
I do! And I tell everyone else too, so they learn/understand the
difference
between 'god' and a 'mere mortal user' (ie. root and anyone else).
Actually, thinking about it, even this isn't sufficient. An attacker
could
Benny Amorsen (benny+use...@amorsen.dk) said:
If there are pkgs which run daemons which are defaulting to ON when
installed or on next reboot - then we should be auditing those pkgs.
Last I checked we default to OFF and that should continue to be the
case.
Is there a blanket
Rudolf Kastl (che...@gmail.com) said:
there are also inconsistencies between gui clickery and shell usage...
simple example:
click shutdown in gnome just does it in f12
issuesing shutdown -h now on the shell asks for root password ... id
really expect a system to show consistent
Am Freitag, den 20.11.2009, 11:24 + schrieb Matthew Booth:
To get useful bug reports from the unwashed
masses we need anonymous submission, or at least submission which
doesn't require any kind of account creation or authentication.
I disagree. As the maintainer, I need to be able to ask
This is a heads up for people using the PackageDB in scripts. The plan is
to have the 0.5.x PackageDB deployed in infrastructure no later than Fedora
13 Alpha (currently penciled in as 2010-02-09). This release will include
major changes in the URL structure and a few removals of unused methods.
James Morris (jmor...@namei.org) said:
- The local session can now install any signed packages from the Fedora
repos:
- I think this includes old versions of packages (correct?)
Incorrect.
MAC policy can be updated without administrative privilege, breaking our
MAC model in a
On 11/20/2009 10:04 AM, Matthew Garrett wrote:
I know basically nobody who, on a generally single user system,
explicitly switches to a console to log in as root and perform package
installs there. If you're not doing that then the issue is basically
moot - a user-level compromise will become a
Hi,
Alexander pointed out that I was suggesting a wrong name for Saxon 9
package [1]. In fact there's a couple of packages in repositories now
that violate the naming policy [2] in the very same way. Apart from
wondering what does Devrim think about renaming the existing saxon
package, I'm
On 11/20/2009 04:29 AM, Neal Becker wrote:
I can't seem to get abrt to work at all. I suspect it's stuck on trying to
get bz username password. I suspect it doesn't work correctly with kde.
Yeah, gnome-keyring and KDE don't play together nicely at times. Try
removing ~/.gnome2/keyrings
Lubomir Rintel (lkund...@v3.sk) said:
glib1:1.2.10-32.fc11
glib2 2.20.5-1.fc11
gtk+1:1.2.10-68.fc11
gtk22.16.6-2.fc11
Given the history of these, this sounds like way more work to change
than it's worth. (They'd certainly have
On 11/20/2009 05:01 AM, Paul Howarth wrote:
FWIW, you could configure this for your own account by editing your
bugzilla email preferences to not send you mail when the Cc: list changes.
I did this long ago - I'm tempted to say it should be the default.
--
Orion Poplawski
Technical Manager
On Fri, 2009-11-20 at 11:50 -0430, Robert Marcano wrote:
On 11/20/2009 10:04 AM, Matthew Garrett wrote:
I know basically nobody who, on a generally single user system,
explicitly switches to a console to log in as root and perform package
installs there. If you're not doing that then the
I'm looking into the build failures Matt identified. With my shiny
new Rawhide VM, I'm seeing this output on a local build of a package
with no python sources:
[ ... successful build messages ...]
+ /usr/lib/rpm/brp-python-bytecompile
Bytecompiling .py files below [BUILDROOT]/usr/lib*/python*/
On Fri, 20 Nov 2009, Owen Taylor wrote:
On Fri, 2009-11-20 at 11:50 -0430, Robert Marcano wrote:
On 11/20/2009 10:04 AM, Matthew Garrett wrote:
I know basically nobody who, on a generally single user system,
explicitly switches to a console to log in as root and perform package
installs
Compose started at Fri Nov 20 08:15:09 UTC 2009
New package fvkbd
Free Virtual Keyboard
New package gdouros-alexander-fonts
A Greek typeface inspired by Alexander Wilson
New package gdouros-analecta-fonts
An ecclesiastic scripts font
New package hunspell-ht
Haitian
On Fri, 20 Nov 2009, Frank Ch. Eigler wrote:
otaylor wrote:
This actually is one of the big advantages of PackageKit - because the
installation is being done by a daemon rather than a process running in
your session, if the X session dies during package installation, you
won't be left with
On 09-11-20 07:06:34, Jiri Moskovcak wrote:
On 11/20/2009 12:24 PM, Matthew Booth wrote:
...
5. Can abrt give me a list of submitted BZs so I can browse them if
I want to?
This is in our TODO: ABRT should find possible duplicates and offer
the reporter to browse them and manually mark
On Fri, Nov 20, 2009 at 08:48:56 -0500,
Simo Sorce sso...@redhat.com wrote:
On Fri, 2009-11-20 at 03:42 -0500, Jeff Garzik wrote:
On 11/20/2009 02:21 AM, Rudolf Kastl wrote:
there are also inconsistencies between gui clickery and shell usage...
simple example:
click shutdown in
On Fri, 2009-11-20 at 12:23 -0600, Bruno Wolff III wrote:
On Fri, Nov 20, 2009 at 08:48:56 -0500,
Simo Sorce sso...@redhat.com wrote:
On Fri, 2009-11-20 at 03:42 -0500, Jeff Garzik wrote:
On 11/20/2009 02:21 AM, Rudolf Kastl wrote:
there are also inconsistencies between gui clickery
On Fri, 2009-11-20 at 11:24 +, Matthew Booth wrote:
Firstly, I'd like to say I think abrt is fantastic. Call what follows a
nit-pick. It's just a pretty in-your-face nit.
After installing F12, after a short while I got presented with a couple
of SELinux errors. This is nothing unusual
On Fri, 2009-11-20 at 10:50 -0500, Bill Nottingham wrote:
Benny Amorsen (benny+use...@amorsen.dk) said:
If there are pkgs which run daemons which are defaulting to ON when
installed or on next reboot - then we should be auditing those pkgs.
Last I checked we default to OFF and that
On Fri, 2009-11-20 at 09:53 -0700, Jerry James wrote:
I'm looking into the build failures Matt identified. With my shiny
new Rawhide VM, I'm seeing this output on a local build of a package
with no python sources:
[ ... successful build messages ...]
+ /usr/lib/rpm/brp-python-bytecompile
On 11/19/2009 06:39 PM, Kevin Kofler wrote:
Yes, if the CPU has the lm (long mode) flag, it's a 64-bit-capable CPU and
using the 32-bit version is suboptimal.
how can this be checked from within a web browser? Trusted Java applet?
-Bill
--
Bill McGonigle, Owner
BFC Computing, LLC
Benny Amorsen wrote:
Kevin Kofler kevin.kof...@chello.at writes:
If we don't want to live in the past, we should go away from 32-bit, not
from CDs. ;-) Doubling the download size for everyone is a bad solution.
An extra kernel shouldn't be that big a problem.
But it doesn't really solve
On Sat, Nov 21, 2009 at 12:32 AM, Kevin Kofler kevin.kof...@chello.at wrote:
Colin Walters wrote:
You don't; the submitter of course should get a link to their crash
report, and can perform the bugzilla promotion on their own if they
have more to add.
My experience is that fireforget
Benny Amorsen wrote:
Kevin Kofler kevin.kof...@chello.at writes:
(and not really implementable for the live images)
Why not? It should be reasonably easy to handle that in the boot loader.
1. Needs GRUB hackery to support transparently. (For the DVD, Anaconda can
detect the architecture
On Fri, 20 Nov 2009, Matthew Garrett wrote:
I know basically nobody who, on a generally single user system,
explicitly switches to a console to log in as root and perform package
installs there.
This is how I started doing things in 1993, although I changed to sudo a
few years back.
-
On Fri, 20 Nov 2009, Bill Nottingham wrote:
MAC policy can be updated without administrative privilege, breaking our
MAC model in a fundamental way.
I'm fairly sure that's wrong as well. Installation of another policy
does not override the current one.
What about when the system is
Author: mmaslano
Update of /cvs/pkgs/rpms/perl-XML-LibXSLT/devel
In directory cvs1.fedora.phx.redhat.com:/tmp/cvs-serv2712
Modified Files:
.cvsignore perl-XML-LibXSLT.spec sources
Removed Files:
perl-XML-LibXSLT-refcount.patch
Log Message:
* Fri Nov 20 2009 Marcela Mašláňová
Author: mmaslano
Update of /cvs/pkgs/rpms/perl-PPIx-EditorTools/devel
In directory cvs1.fedora.phx.redhat.com:/tmp/cvs-serv16840
Modified Files:
.cvsignore perl-PPIx-EditorTools.spec sources
Log Message:
* Fri Nov 20 2009 Marcela Mašláňová mmasl...@redhat.com 0.09-1
- update
Index:
Author: eseyman
Update of /cvs/pkgs/rpms/perl-Authen-Simple/devel
In directory cvs1.fedora.phx.redhat.com:/tmp/cvs-serv31687/devel
Modified Files:
.cvsignore sources
Added Files:
import.log perl-Authen-Simple.spec
Log Message:
Initial import.
--- NEW FILE import.log ---
Author: eseyman
Update of /cvs/pkgs/rpms/perl-CGI-Application-Plugin-SuperForm/F-12
In directory cvs1.fedora.phx.redhat.com:/tmp/cvs-serv1423/F-12
Modified Files:
.cvsignore sources
Added Files:
import.log perl-CGI-Application-Plugin-SuperForm.spec
Log Message:
Initial import.
Author: eseyman
Update of /cvs/pkgs/rpms/perl-CGI-Application-Plugin-SuperForm/F-11
In directory cvs1.fedora.phx.redhat.com:/tmp/cvs-serv1941/F-11
Modified Files:
.cvsignore sources
Added Files:
import.log perl-CGI-Application-Plugin-SuperForm.spec
Log Message:
Initial import.
66 matches
Mail list logo