On Mon, Jan 02, 2006 at 08:10:46PM +0100, Patrick Lauer wrote:
Any automation of that process would be really appreciated :-)
I've got a script that generates it from the rollcall data, as part of
the keyring signing stuff.
I'll attach it tommorrow (limited Net access at the moment, between
On Wed, Jan 04, 2006 at 08:59:04PM +0100, Patrick Lauer wrote:
It installs itself for all versions of Python that are on the
system.
I don't fully understand the magic how it finds all Python versions,
but can this be applied to other packages?
It can and it is. Can't recall offhand which,
I've been cleaning up media-fonts/ to work with modular-X, and I see a
lot of ebuilds with stuff like this:
for font in *.bdf; do
/usr/X11R6/bin/bdftopcf ${font} `basename $font .bdf`.pcf
done
gzip *.pcf
For having 100 files in *bdf, this is so
Newer version now:
http://dev.gentoo.org/~robbat2/earch-0.6
Changes:
- optionally include the category in the output
- new mode to list ebuilds suitable for removal from portage (however
this only checks your current profile so far, so be careful still,
this is work in progress).
- NOCOLOR
Another new version again, with bugfixes and cosmetic output changes.
http://dev.gentoo.org/~robbat2/earch-0.8
Changes:
- keywords are sorted by the order they appear on disk, with the
exception that '-*' will precede it if present.
- All '-arch' flags will always appear in the list if present
On Fri, Jan 20, 2006 at 07:10:02AM -0500, Mike Frysinger wrote:
that depends, does your code actually have things like
#ifdef DEBUG
debug stuff
#endif
And likewise your code should NOT have some logic like the following in
it's build system.
if(debug mode)
ignore user cflags and
On Sat, Jan 28, 2006 at 12:05:30PM +0300, Peter Volkov (pva) wrote:
To solve symlink problem I can suggest the following.
Rather than handling it manually, perhaps eselect can help handle it
consistently, and allow users to switch when they have both csh and
tcsh installed.
--
Robin Hugh
On Fri, Feb 03, 2006 at 10:19:18AM +, Francesco Riosa wrote:
A good solution should be to add the multislot USE flag to the ebuild
and let it to decide whenever make it slotted or not, sorry, this is not
viable, yes it's already used by other important packages but not well
supported by
On Fri, Feb 24, 2006 at 02:19:40PM +, Ciaran McCreesh wrote:
Side note: if the packages in question are fetch restricted, you're
screwed, and will not be able to add them to the tree.
Actually, there is a solution for this, and it's reasonable logical.
Don't use the same name that upstream
On Mon, Feb 27, 2006 at 04:34:00PM +, Ciaran McCreesh wrote:
On Mon, 27 Feb 2006 11:05:00 +0100 Paul de Vrieze [EMAIL PROTECTED]
wrote:
| Is there any valid reason that we can't have portage do this
| automatically. This particular way is very user-un-friendly.
There's exactly one set of
On Sat, Mar 25, 2006 at 08:37:24PM +0100, Paul de Vrieze wrote:
On Friday 24 March 2006 20:18, Chris Gianelloni wrote:
I really can't think of much besides kernel + toolchain that can have
such devastating effects to the rest of the tree. The only other
massive breakages would be via
On Fri, Apr 07, 2006 at 07:07:36PM -0400, Mike Frysinger wrote:
- lots of interest in kickstart-like features in our installer ... people
want
to throw install media into a fresh box, boot it, and come back later and
have it be done/usuable
The 'CLI' frontend I wrote ~9 months ago worked
On Sun, Apr 30, 2006 at 06:30:23PM +0200, Patrick Lauer wrote:
We have ~15k .tar.gz in distfiles. ~6500 .tar.bz2, ~2000 others.
A short run over 477 distfiles spanning 833M gave me 586M of .tar.bz2 -
roughly 30% more efficient!
A comparison run with 7zip gave me 590M files, so bzip2 seems to
This email is a discussion on why we need to care about more than the simple
key parameters, and why - this includes things like changing the validity of an
existing key. We also need to consider: location of key (primary key vs.
subkey), expiry policies (expiries are only one element of key
On Fri, May 19, 2006 at 09:08:08AM -0700, Greg KH wrote:
On Fri, May 19, 2006 at 01:45:30PM +0200, Fernando J. Pereda wrote:
Also, git-sources *should* use this eclass once it is in the tree since
people using it will save _lots_ of bandwidth and disk space.
Yes, I'll convert it over once
On Fri, May 19, 2006 at 02:32:13PM -0700, Donnie Berkholz wrote:
Robin H. Johnson wrote:
On Fri, May 19, 2006 at 09:08:08AM -0700, Greg KH wrote:
On Fri, May 19, 2006 at 01:45:30PM +0200, Fernando J. Pereda wrote:
Also, git-sources *should* use this eclass once it is in the tree since
On Thu, May 18, 2006 at 12:22:25PM -0400, Mark Loeser wrote:
This package is currently without a maintainer and has open QA issues;
bug #123708. It was marked as testing on every arch without being
tested and could really use someone to clean it up. It will be booted
in 30 days if no one
On Sat, May 20, 2006 at 03:21:13PM +0200, Jan Kundr?t wrote:
I don't know much about cryptography, but could you please elaborate on
why is using one subkey for all the stuff considered a Bad Thing?
The basic form of it, is a vulnerability towards a class of attacks that
require a large supply
On Sat, May 20, 2006 at 06:54:44AM -0400, Peter wrote:
On Thu, 18 May 2006 23:45:17 +0200, Patrick Lauer wrote:
The problem, in short, is how to handle the checksumming and signing of
gentoo-provided files so that manipulation by external entities becomes
difficult.
all snip...
PMFJI,
While digging in the tree, I found this pair.
1. sys-apps/ldetect-lst has been broken for the last 9 months since
perl-MDK-Common was removed from the tree.
2. Both of them are live CVS ebuilds, there are no fixed versions
available (upstream does have outdated SRPMs).
3. The ONLY bug ever
On Sun, May 28, 2006 at 02:20:55PM -0400, Ned Ludd wrote:
Package: net-nds/openldap Herd: ldap Maintainer: [EMAIL PROTECTED]
We will be keeping the most recent version of each of the major
releases, as there are still people using them for interoperability with
other systems.
Package:
On Mon, May 29, 2006 at 07:30:25PM -0400, Alec Warner wrote:
So we created this awesome alias to put ebuilds that need a maintainer.
Good idea at the time, decent idea still. The problem? We have nearly
2000 open bugs assigned to maintainer-wanted[1]. I would like to
discuss policy on
On Tue, May 30, 2006 at 01:06:33PM +0200, Enrico Weigelt wrote:
Hi folks,
JFYI: I've made an mii-tool single distribution, which is
independent from the rest of the net-tools stuff.
http://www.metux.de/articles/oss/mii-tool-1_9_1_1
This is especially interesting for embedded systems with
On Wed, May 31, 2006 at 09:36:07PM +0200, Enrico Weigelt wrote:
* Robin H. Johnson [EMAIL PROTECTED] schrieb:
On Tue, May 30, 2006 at 01:06:33PM +0200, Enrico Weigelt wrote:
Hi folks,
JFYI: I've made an mii-tool single distribution, which is
independent from the rest of the net-tools
On Tue, Jun 06, 2006 at 10:48:51AM +0100, J?rgen Schinker wrote:
actually my x86 maschine makes at boot when it starts udev
an ldap request and waits 6 ... 8 ...16 sec
so at this time ldap is not running
so what wants udev at this early stage ?
my nsswitch.conf
hosts files dns
On Mon, Jun 05, 2006 at 08:58:46PM +0100, Luis Medinas wrote:
Xmms will be removed soon... Lot's of users still use xmms mostly
because it has many plugins that others don't. Xmms is still stable but
the upstream is dead so it won't take our patchset. In the end of this
year i would like to
In the present devmanual, for src_install, it notes that
make install DESTDIR=${D}
is the preferred way to fire off the install, and to not use emake, for
fear of parallel issues.
This has four nasty side effects:
- Global assumption that make is GNU Make (Hi flameeyes).
- Doesn't pass
On Thu, Jun 08, 2006 at 01:58:07AM -0700, Robin H. Johnson wrote:
For a start, practically all Makefiles generated by a recent version
(newer than 2001 for definite) are parallel safe. There are a few minor
cases I saw where this wasn't true, but those packages also had other
parallel build
On Mon, Jun 12, 2006 at 03:41:56PM -0500, Mike Doty wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Molle Bestefich wrote:
Hi
Portage takes up a lot of space and time when doing server backups.
How much of Portage needs to be backup up?
Any large parts of the tree that I
On Tue, Jun 13, 2006 at 12:00:43AM +0100, Stephen Bennett wrote:
My current idea is to draw up a formal specification of what ebuilds
are allowed to do, and what to assume about the environment in which
they run, as well as defining the formats of everything under
profiles/, metadata.xml
On Thu, Jun 15, 2006 at 11:03:36PM -0400, Mike Frysinger wrote:
However, in consultation with some
folks, it seems that what may be more desirable is to just add
users/groups to the local files/compat backends instead, and not make
any changes to the remote databases.
you mean update
On Fri, Jun 16, 2006 at 11:02:27PM -0700, Drake Wyrm wrote:
Thomas Cort [EMAIL PROTECTED] wrote:
What is the proper quoting style for using epatch? In the tree there
are about 3 different styles...
snip
What is the proper quoting style for defining the S variable? In the
tree there are
On Mon, Jun 19, 2006 at 05:00:41PM -0700, infowolfe wrote:
Kernel headers being the virtual/linux-headers dependency that Georgi
mentioned. `uname -r` works, but is annoying because you can't build
for a kernel other than the one you're running.
Which only applies to kernel modules, not
On Tue, Jun 20, 2006 at 08:49:41PM +0900, Georgi Georgiev wrote:
Could upstream have handled it better? Yes, most definitely. Did they?
No, not yet. We're stuck picking up the pieces.
What does upstream have to do with the decision to chmod u+s,go-r
/usr/bin/gpg or not?
If using a kernel
If you have an ebuild with a non-standard pkg_nofetch, please ensure
that you use $SRC_URI instead of $A!
This is because if you have FEATURES=mirror or FEATURES=cvs, attempts to
download all of the source files for digesting or verification will hit
pkg_nofetch and $A is only the subset of
On Mon, Jul 03, 2006 at 07:13:35PM -0700, Donnie Berkholz wrote:
Robin H. Johnson wrote:
If you have an ebuild with a non-standard pkg_nofetch, please ensure
that you use $SRC_URI instead of $A!
This is because if you have FEATURES=mirror or FEATURES=cvs, attempts to
download all
This is a testing request aimed at all arches that have differing
kernel/userspace bit counts. My short list so far is:
- ppc64 - 64/32 (tested myself, but more testing needed)
- sparc64 - 64/32
- mips64 - 64/32 [1]
Other possibles (they should be theoretically capable of it, but the
profile is
On Tue, Jul 04, 2006 at 12:35:04PM -0700, Zac Medico wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Robin H. Johnson wrote:
When FEATURES=mirror, and you try to fetch, it does indeed contain
unevaluated
USE flags. However for FEATURES=-mirror, the content of it is correct
On Tue, Jul 04, 2006 at 03:32:47PM -0400, Mike Frysinger wrote:
sorry, i just re-read your message ... perhaps a better fix would be to not
force people to download all the packages when something has fetch
restrictions ?
That's not an option if you are re-digesting the package
On Mon, Jul 10, 2006 at 04:36:55AM +0200, Diego 'Flameeyes' Petten?? wrote:
On Monday 10 July 2006 02:25, Luca Barbato wrote:
c is simpler. I like it.
Yes, of course if _all wranglers_ respected metadata, instead of stopping to
herd tag and assigning to that even when a particular maintainer
On Sat, Jul 15, 2006 at 08:25:45PM +0200, Henrik Brix Andersen wrote:
net-wireless/wispy-tools
I'll take this one, since I have the hardware.
--
Robin Hugh Johnson
E-Mail : [EMAIL PROTECTED]
GnuPG FP : 11AC BA4F 4778 E3F6 E4ED F38E B27B 944E 3488 4E85
On Mon, Jul 17, 2006 at 06:00:04PM -0400, Mike Frysinger wrote:
at this point i'm against it due to the loss of information/granularity in
the
die message ... and utilizing DIE_MSG is garbage
if die can be made more useful, then i'd be for the do* functions calling die
for me
-mike
How
On Sat, Jul 01, 2006 at 02:46:59AM -0400, Mike Frysinger wrote:
well it's about that time of the year ... time for nominating people
for the next Gentoo Council
Hi,
I know I haven't been around a huge amount lately, I'm getting married
in a month, so I've been a bit busy. However I
On Fri, Aug 04, 2006 at 11:07:44AM -0700, kashani wrote:
Another technique is to change high transaction tables to Innodb
table format. Innodb is going to be roughly 30% slower than MyISAM for
selects and take up much more space on disk approx 3-5x larger. However it
has row
On Sat, Aug 05, 2006 at 05:31:27PM +0900, Chris White wrote:
The PDA herd is pretty slim right now and the only active members are
really liquidx and myself. That said I'm looking around for people
that can help with confirmations/patches/etc. for app-pda packages.
Plans are to hopefully pull
On Wed, Aug 23, 2006 at 09:30:20PM +0100, Luis Medinas wrote:
I'm the current maintainer for xmms and all plugins. As you all know
xmms is writen over GTK+-1. This toolkit is not supported by the
upstream like xmms. We have lot's of dead upstream plugins on portage
and this is a pain to
On Fri, Sep 01, 2006 at 05:51:07AM +, Mike Frysinger wrote:
This is your monthly friendly reminder ! Same bat time (typically the
2nd Thursday once a month), same bat channel (#gentoo-council @
irc.freenode.net) !
Is this the new council for which the voting should have just ended, or
the
On Sat, Sep 02, 2006 at 08:55:33AM -0500, Mike Doty wrote:
If that's not good enough for you, please find a distribution that you
have to pay for like RHEL. Their testing is no better than ours, but
at least paying something entitles you to bitch at them.
Or consider paying a Gentoo developer
On Mon, Sep 11, 2006 at 04:02:53PM -0700, Chris White wrote:
On Monday 11 September 2006 15:22, Ciaran McCreesh wrote:
* Otherwise, try again with ``._cfg0001_name``, then ``._cfg0002_name`` and
so on (base ten is used for the number part) until a usable filename is
found.
For what
On Mon, Sep 18, 2006 at 08:00:48PM +0100, Gustavo Felisberto wrote:
x11-themes/gkrellm-themes
I'll take these if nobody else wants 'em.
--
Robin Hugh Johnson
E-Mail : [EMAIL PROTECTED]
GnuPG FP : 11AC BA4F 4778 E3F6 E4ED F38E B27B 944E 3488 4E85
pgpllQF1F98x7.pgp
Description: PGP
On Sat, Sep 30, 2006 at 03:48:53PM -0600, Ryan Hill wrote:
Lionel Bouton wrote:
There are already good resources (http://gentoo-wiki.com/CFLAGS_matrix
was mentioned to me by robbat2) but they may not be advertised enough.
Most of the info on that page is wrong.
The items on there that note
On Sat, Sep 30, 2006 at 04:37:05PM -0600, Ryan Hill wrote:
I thought he wanted flags that broke upgrading between GCC 3.4 and 4.1.
tree-loop-linear wasn't in 3.4. If you want flags that just break
stuff with 4.1 you can include -ftree-vectorize.
Thanks.
The objective here was mainly to
On Sun, Oct 01, 2006 at 09:41:08PM +0100, Stuart Herbert wrote:
Please reply to the list naming your favourite tool for this job, and why.
Ok, something is not clear here at all.
Do you intend to provide all statistics via SNMPd (writing agents to
provide the data that net-snmp doesn't provide
Hi,
Pylon and I will be doing some maintenance on CVS and Subversion later
this week.
Thursday, October 5th, starting at 1900 UTC.
During this time, CVS and Subversion will not be available.
We're estimating a worst case of 4 hours at this point, but if
everything goes smoothly, it should be
The attached list notes all of the packages that were added or removed
from the tree, for the week ending 2012-11-25 23h59 UTC.
Removals:
app-portage/pyGPG 2012-11-19 02:56:38 dolsen
net-im/jabberd 2012-11-20 19:19:59 hwoarang
On Fri, Nov 30, 2012 at 09:35:07AM -0800, Zac Medico wrote:
However, I'm not aware of gnu tar's incremental archive. If it's much
faster than the above, then it should probably replace
emerge-delta-webrsync.
If it has benefits over the current diffball approach used by
The attached list notes all of the packages that were added or removed
from the tree, for the week ending 2012-12-02 23h59 UTC.
Removals:
app-editors/XML-XSH 2012-11-26 04:19:46 tove
games-emulation/snes9express2012-11-29 22:18:41 mr_bones_
Additions:
The attached list notes all of the packages that were added or removed
from the tree, for the week ending 2012-12-09 23h59 UTC.
Removals:
dev-haskell/hdoc2012-12-06 22:57:06 slyfox
kde-base/dragonplayer 2012-12-08 12:15:36 dilfridge
The attached list notes all of the packages that were added or removed
from the tree, for the week ending 2012-12-16 23h59 UTC.
Removals:
dev-ruby/ruby-bsearch 2012-12-10 18:49:29 graaff
net-misc/ptunnel2012-12-10 21:27:03 dastergon
Additions:
On Mon, Dec 17, 2012 at 01:16:25PM -0800, Greg KH wrote:
On a personal note, if any copyright assignment was in place, I would
never have been able to become a Gentoo developer, and if it were to be
put into place, I do not think that I would be allowed to continue to be
one. I'm sure lots of
For further messages in this thread, please keep:
Reply-To: gentoo-dev@lists.gentoo.org, gentoo-...@lists.gentoo.org
On Thu, Dec 20, 2012 at 08:08:45PM -0800, Greg KH wrote:
On Fri, Dec 21, 2012 at 02:32:25AM +, Robin H. Johnson wrote:
On Mon, Dec 17, 2012 at 01:16:25PM -0800, Greg KH
torrents.gentoo.org has been down for a few months now, and there have
been very few comments about it. Up until a few years ago, it was still
quite useful, but I believe that we have sufficient bandwidth and
mirror-coverage around the world that it's become a moot point.
If you have any
The attached list notes all of the packages that were added or removed
from the tree, for the week ending 2012-12-23 23h59 UTC.
Removals:
media-sound/leechcraft-muziczombie 2012-12-18 17:31:53 maksbotan
media-sound/leechcraft-muziczombie 2012-12-18 18:05:32 maksbotan
The attached list notes all of the packages that were added or removed
from the tree, for the week ending 2012-12-30 23h59 UTC.
Removals:
net-misc/ups-monitor2012-12-24 08:56:39 pinkbyte
dev-haskell/hsql-sqlite 2012-12-24 22:25:23 slyfox
net-proxy/paros
The attached list notes all of the packages that were added or removed
from the tree, for the week ending 2013-01-06 23h59 UTC.
Removals:
mail-client/pine2013-01-04 08:55:25 eras
Additions:
media-video/pgcedit 2012-12-31 00:46:07 vapier
Just a heads up,
DNSSEC is now live on *.dev.gentoo.org hosts.
There is a DLV anchor registered at dlv.isc.org, so all public DNSSEC
lookups within the domain should work fine.
Here's visualisation on my two test cases:
http://dnsviz.net/d/dev.gentoo.org/dnssec/
On Mon, Jan 07, 2013 at 04:34:09PM +0200, Maxim Kammerer wrote:
On Mon, Jan 7, 2013 at 3:31 AM, Robin H. Johnson robb...@gentoo.org wrote:
Thereafter, I'd also like to deploy DANE and SSH
fingerprints in DNS, and remove our reliance any elements of the CA
chain.
Isn't DANE highly
On Mon, Jan 07, 2013 at 01:31:39AM +, Robin H. Johnson wrote:
If there are no problems reported in a week or two, I'm going to enable
this for the rest of our DNS zones, as well as registering the DS
records with the TLD. Thereafter, I'd also like to deploy DANE and SSH
fingerprints in DNS
The attached list notes all of the packages that were added or removed
from the tree, for the week ending 2013-01-13 23h59 UTC.
Removals:
dev-haskell/time2013-01-11 22:11:52 slyfox
app-emulation/qemulator 2013-01-12 07:49:01 cardoe
On Sat, Jan 12, 2013 at 02:49:52PM -0800, Paweł Hajdan, Jr. wrote:
# robbat2
app-admin/diradm-2.9.7.1
+1
# robbat2
app-shells/localshell-1.3.4
+1
# netmon
dev-libs/geoip-1.4.8-r2
+0.5 looking for another vote
# base-system
sys-apps/irqbalance-1.0.5
+1
# base-system
On Sat, Jan 12, 2013 at 10:36:31PM +, Robin H. Johnson wrote:
If there are no problems reported by Jan 17th, I'm going to complete the
DNSSEC configuration on gentoo.org and remaining delegated sub-domains.
Everything is in place except the final trust binding from the org. zone
The attached list notes all of the packages that were added or removed
from the tree, for the week ending 2013-01-20 23h59 UTC.
Removals:
media-gfx/opencolorio 2013-01-16 05:57:48 pinkbyte
dev-util/nvidia-cuda-npp2013-01-17 10:14:37 jlec
virtual/pcmcia
I'm raising this patch because of the recent spate of bugs with the
latest udev that now fails to boot your system if CONFIG_DEVTMPFS is
not available in your kernel.
Bugs: 408947, 409393, 437320, 453074
CONFIG_CHECK has not been fatal for some years now, because there turned
out to be some
On Tue, Jan 22, 2013 at 06:51:54AM -0800, Zac Medico wrote:
On 01/21/2013 10:22 PM, Sergey Popov wrote:
22.01.2013 08:23, Mike Gilbert wrote:
I guess this change is ok, given that I can opt-out fairly easily. Zac's
workaround for binary packages makes me feel better too.
I am curious,
On Wed, Jan 23, 2013 at 12:32:40PM +, Fabio Erculiani wrote:
I hope this is going to be binary package manager friendly.
In Sabayon for instance, kernel sources are not even installed and at
the same time, /proc/config.gz may not even be available.
There were some corner cases in where
On Fri, Jan 25, 2013 at 01:39:08AM +, Duncan wrote:
Meanwhile, my vote is for a NON-FATAL pkg_pretend warning. That gets run
at the beginning when people are still likely to be watching, so should
be good enough. Beyond that, gentoo can't keep the obtuse from ignoring
the warnings, so
The attached list notes all of the packages that were added or removed
from the tree, for the week ending 2013-01-27 23h59 UTC.
Removals:
app-admin/busybox-sysklogd 2013-01-22 17:54:31 vapier
net-misc/busybox-ntpd 2013-01-22 17:55:00 vapier
The attached list notes all of the packages that were added or removed
from the tree, for the week ending 2013-02-03 23h59 UTC.
Removals:
app-cdr/cdemud 2013-01-28 00:27:30
tetromino
media-fonts/freefont-ttf2013-01-29 20:57:36
The attached list notes all of the packages that were added or removed
from the tree, for the week ending 2013-02-10 23h59 UTC.
Removals:
x11-themes/oxygen-gtk3 2013-02-07 04:13:24 zx2c4
dev-python/wsgiref 2013-02-07 19:02:23
On Wed, Feb 13, 2013 at 12:12:35AM +0100, Michael Weber wrote:
On 02/12/2013 10:14 PM, William Hubbs wrote:
If you have any questions on this, please feel free to let us
know.
What is the rotation strategy for (near) outdated keys?
Alter the key or create a new one? Sign the new with the
The attached list notes all of the packages that were added or removed
from the tree, for the week ending 2013-02-17 23h59 UTC.
Removals:
media-tv/ivtv-firmware 2013-02-11 05:02:06 cardoe
net-wireless/zd1201-firmware2013-02-11 14:15:51
Hi all,
I've been asked a couple of times in IRC and other mediums, about what
GPG key settings etc to use. I would not not call these final yet, but should
be fairly close to final.
This was originally intended to be part of the tree-signing GLEP series, but
was in one of the unpublished ones
On Mon, Feb 18, 2013 at 11:27:46PM +, Robin H. Johnson wrote:
2. root key signing subkey of EITHER:
2.1. DSA, 1024 or 2048 bits
2.2. RSA, =2048 bits
3. Key expiry: 5 years.
Clarification on reason:
These key sizes are the largest supported by many smartcards.
--
Robin Hugh Johnson
On Tue, Feb 19, 2013 at 04:36:08PM +1300, Kent Fredric wrote:
It may be advantageous to have a gentoo wrapper script that calls GPG
with recommended settings to make some tasks easier,
gentoo-gpg-create --recommended
EDITOR=vim gentoo-gpg-rotation --recommended --old=DEADBEEF
and
On Wed, Feb 20, 2013 at 01:34:57AM +0100, Stefan Behte wrote:
2. root key signing subkey of EITHER: 2.1. DSA, 1024 or 2048 bits
2.2. RSA, =2048 bits
...
1024 DSA keys seem pretty short to me. Surely it might be inconvenient
for some (2-3? please write a mail here!) people with smart cards.
On Tue, Feb 19, 2013 at 10:32:13PM -0800, Alec Warner wrote:
I agree that a smartcard is much better security vs a longer key. I
don't think attackers targetting Gentoo are going to brute force the
key. They are going to steal the key, trivially, by exploiting a 0-day
in a crappy browser, or
On Wed, Feb 20, 2013 at 01:41:03PM -0500, James Cloos wrote:
RHJ == Robin H Johnson robb...@gentoo.org writes:
RHJ 2. Root key type of RSA, 4096 bits
rsa 4k provides no real benefits over rsa 3k here; it is just slower
for everyone, signing or verifying.
You can shorten the subkeys
On Wed, Feb 20, 2013 at 09:22:05PM +0100, Andreas K. Huettel wrote:
Which of course brings up the question, why the hardcoded 4096 limit in
GnuPG... but I guess that's not our problem yet.
https://www.google.de/search?q=gnupg+rsa+8192
Standards interoperability. RSA4096 will not work on legacy
On Wed, Feb 20, 2013 at 09:38:38PM +0100, Luis Ressel wrote:
On Mon, 18 Feb 2013 23:27:46 +
Robin H. Johnson robb...@gentoo.org wrote:
3. Dedicated Gentoo signing subkey
What's the point of this, btw?
Ideally keeping your primary key offline to increase security.
However, the original
The attached list notes all of the packages that were added or removed
from the tree, for the week ending 2013-02-24 23h59 UTC.
Removals:
www-apache/mod_vhs 2013-02-20 23:31:04 pinkbyte
dev-haskell/wash2013-02-22 09:27:03 moult
dev-libs/libole2
Thanks for the partial response Luis.
On Wed, Feb 27, 2013 at 04:12:14PM +0100, Luis Ressel wrote:
On Tue, 26 Feb 2013 17:10:56 +0700 (NOVT)
gro...@gentoo.org wrote:
Hello *,
I am stuck and have many questions.
New addition to the instructions:
0. Copy /usr/share/gnupg/gpg-conf.skel to
On Thu, Feb 28, 2013 at 01:57:10PM +0100, Jason A. Donenfeld wrote:
Hi folks,
Over in #gentoo-dev we've been discussing the need for a new license
for OpenSMTPD (currently in my overlay [1]).
What do we call it, and should it be included, or is it already
covered by another license we
The attached list notes all of the packages that were added or removed
from the tree, for the week ending 2013-03-03 23h59 UTC.
Removals:
net-libs/libutp 2013-02-28 10:31:02 ssuominen
dev-perl/Net-Server 2013-03-02 04:10:48 zx2c4
On Sun, Mar 10, 2013 at 11:01:55AM +0100, Ulrich Mueller wrote:
CMaps for PDF CJK Fonts
---
[...]
Permission is granted for redistribution of this file
provided this copyright notice is maintained intact and
that the contents of this file are not altered
The attached list notes all of the packages that were added or removed
from the tree, for the week ending 2013-03-10 23h59 UTC.
Removals:
virtual/c++-tr1-functional 2013-03-05
13:35:56 flameeyes
virtual/c++-tr1-memory
On Mon, Mar 11, 2013 at 02:19:55PM -0700, Greg KH wrote:
On Mon, Mar 11, 2013 at 04:51:17PM -0400, Rich Freeman wrote:
If you have any concerns/objections to the policy which was outlined,
which includes a mandatory requirement to sign a contributor license
agreement and an option to also
Please don't CC me directly, you explicitly ignored the Reply-To header
that this list has.
On Thu, Mar 14, 2013 at 10:50:00AM +0700, gro...@gentoo.org wrote:
I've followed all the instructions successfully (I think). By the way, the
following lines need a small correction:
perl_ldap -b
On Thu, Mar 14, 2013 at 09:30:19AM -0700, Zac Medico wrote:
We could do that if we simply add all files using the cvs -kb option.
However, Fabian has requested that we keep the keywords for the purposes
of his prefix tree merging script:
On Thu, Mar 14, 2013 at 05:14:15PM +0100, Michał Górny wrote:
If that means doing an additional signature every time something is
going to be committed, that sounds like an overkill. If we were to do
something radical, I'd rather be in favor of disabling keyword
expansion completely and
On Thu, Mar 14, 2013 at 10:32:30PM -0400, Michael Mol wrote:
As to how to accomplish this, it's either a throwaway sig, or poking the
agent protocol directly.
The only trouble with that is if the agent is configured to only unlock
keys for limited periods of time, then your initial check
1 - 100 of 1840 matches
Mail list logo
