[Bug 999969] Re: PHP5 doesn't send errors or warnings to fastcgi clients

2012-12-21 Thread Thomas Ward
*** This bug is a duplicate of bug 1014044 *** https://bugs.launchpad.net/bugs/1014044 Can anyone confirm if this exists in Quantal and Raring as well, or if it was fixed in Raring? -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to

[Bug 1014044] Re: PHP5-FPM not reporting errors to web servers (fastcgi clients, such as nginx)

2012-12-21 Thread Thomas Ward
** Summary changed: - PHP5-FPM not reporting errors to web server (nginx) + PHP5-FPM not reporting errors to web servers (fastcgi clients, such as nginx) -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to php5 in Ubuntu.

[Bug 999969] Re: PHP5 doesn't send errors or warnings to fastcgi clients

2012-12-21 Thread Thomas Ward
*** This bug is a duplicate of bug 1014044 *** https://bugs.launchpad.net/bugs/1014044 Actually, you know what, I already SRU'd this. This bug evaded me, but I caught the fix as part of Bug #1014044, and SRU'd the fix in, alongside a segfault fix. That was included in 5.3.10-1ubuntu3.3 for

[Bug 1095180] Re: incorrect bash-completion

2013-01-02 Thread Thomas Ward
\*` (which will tell us which version of etckeeper you are using) to your bug as a comment? -- Thomas Ward BugSquad Member ** Changed in: etckeeper (Ubuntu) Status: New = Incomplete -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed

[Bug 1095180] Re: incorrect bash-completion

2013-01-04 Thread Thomas Ward
a bug: ubuntu-bug [package] This will add important information such as the release you're using, the version of the package, and other information that could be useful for triagers and developers. -- Thomas Ward Ubuntu BugSquad Member ** Tags added: precise ** Description changed: bash

[Bug 1095180] Re: incorrect bash-completion

2013-01-04 Thread Thomas Ward
Okay, so I spun up a VM for Lubuntu 12.04, and dropped it into tty mode. After installing etckeeper (sudo apt-get install etckeeper) after updating the packages, I can confirm this issue happens on Precise. I can also reproduce this with Quantal. But there's specific information here that I

[Bug 1095180] Re: incorrect bash-completion

2013-01-04 Thread Thomas Ward
Also confirmed in Raring. Although, the same Additional details I added in Comment #5 are still valid. Perhaps this is an issue with how 'sudo' affects bash completion? Adding 'raring' tags, and nominating against Precise and Quantal. ** Tags added: raring ** Description changed:

[Bug 1095180] Re: incorrect bash-completion

2013-01-08 Thread Thomas Ward
** Also affects: bash-completion (Ubuntu) Importance: Undecided Status: New -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to etckeeper in Ubuntu. https://bugs.launchpad.net/bugs/1095180 Title: incorrect bash-completion To

[Bug 1095180] Re: incorrect bash-completion

2013-01-09 Thread Thomas Ward
** Changed in: etckeeper (Ubuntu) Importance: Undecided = Low ** Changed in: bash-completion (Ubuntu) Importance: Undecided = Low -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to etckeeper in Ubuntu.

[Bug 1096081] Re: server reboots because of php5 cron job

2013-01-21 Thread Thomas Ward
newly-provided information, that is provided in the bug (or at the most, set it back to New). If it can be confirmed by someone else with the new information you have provided, then they can set it as Confirmed. Thanks! -- Thomas Ward Ubuntu Bug Squad Member Ubuntu Server Team Member

[Bug 1096081] Re: server reboots because of php5 cron job

2013-01-21 Thread Thomas Ward
Oops, contrary to my last comment, to the original bug poster: If you provide more information when the bug is Incomplete set it back to new status. I made a mistake in saying you should leave it as Incomplete if you provide more information :) -- You received this bug notification because you

[Bug 1105411] Re: apache2 default conf file contains Listen directive

2013-01-25 Thread Thomas Ward
Importance: Low. Reason: not really a bug that prevents operation, more rather a bug that addresses minor housekeeping of the default configs. Requested via IRC, by bluefoxxx. Processed by myself (TheLordOfTime): [15:13:33] bluefoxxx That should be a very low importance but I can't triage my

[Bug 1105411] Re: apache2 default conf file contains Listen directive

2013-01-25 Thread Thomas Ward
** Bug watch added: Debian Bug tracker #698967 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=698967 ** Also affects: apache2 (Debian) via http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=698967 Importance: Unknown Status: Unknown -- You received this bug notification because

[Bug 1105411] Re: apache2 default conf file contains Listen directive

2013-01-25 Thread Thomas Ward
Marked invalid per email response from original poster. ** Changed in: apache2 (Ubuntu) Status: New = Invalid -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to apache2 in Ubuntu. https://bugs.launchpad.net/bugs/1105411 Title:

[Bug 900620] [NEW] Possible Bug: php5-fpm does not listen on a socket by default

2011-12-05 Thread Thomas Ward
Public bug reported: At the last I checked, the php5-fpm default config for the /etc/php5/fpm/pool.d/www.conf file does not have the listener listen on a UNIX socket. As UNIX sockets are (generally) easier to use with web servers to pass data to the process, I'd suggest having php5-fpm listen on

[Bug 900620] Re: Possible Bug: php5-fpm does not listen on a socket by default

2011-12-09 Thread Thomas Ward
Unfortunately, I do not know enough about the structure of the PHP upstream code (nor the package) to make such a modification. I am sure someone else will, though. -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to php5 in Ubuntu.

[Bug 1011621] Re: package samba-common 2:3.6.3-2ubuntu2.2 failed to install/upgrade: le sous-processus script post-installation installé a retourné une erreur de sortie d'état 10

2012-06-11 Thread Thomas Ward
We noticed that some of the sentences in this bug report are not in English. If they were translated in English they would be more understandable to triagers. Could you please translate them? ** Changed in: samba (Ubuntu) Status: New = Incomplete -- You received this bug notification

[Bug 1014044] Re: PHP5-FPM not reporting errors to web server (nginx)

2012-06-18 Thread Thomas Ward
Can you do me a favor and define what errors you're talking about? Are you talking specifically about php-level errors, and not HTTP status code errors (403, 404, 500, 502, etc.)? -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to php5

[Bug 1014044] Re: PHP5-FPM not reporting errors to web server (nginx)

2012-06-18 Thread Thomas Ward
** Tags added: precise -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to php5 in Ubuntu. https://bugs.launchpad.net/bugs/1014044 Title: PHP5-FPM not reporting errors to web server (nginx) To manage notifications about this bug go to:

[Bug 900620] Re: Possible Bug: php5-fpm does not listen on a socket by default

2012-06-25 Thread Thomas Ward
According to what I can see, 5.4.4 (which already has this fix) is in Quantal, but the debian/changelog did not reference this LP bug. Should this bug here (which is Wishlist / Triaged) be changed to Wishlist / Fix Released ? -- You received this bug notification because you are a member of

[Bug 1020788] Re: package winbind 2:3.4.7~dfsg-1ubuntu3.10

2012-07-03 Thread Thomas Ward
Some of this bug report is not in English. Please translate it into English to make it more understandable to triagers. Thanks! -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to samba in Ubuntu. https://bugs.launchpad.net/bugs/1020788

[Bug 1022360] Re: (CVE-2012-3812) CVE-2012-3812 asterisk: Remote crash vulnerability in voice mail application (CVE-2012-3863) CVE-2012-3863 asterisk: Possible resource leak on uncompleted re-invite t

2012-07-08 Thread Thomas Ward
** Bug watch added: Debian Bug tracker #680470 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=680470 ** Also affects: asterisk (Debian) via http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=680470 Importance: Unknown Status: Unknown ** CVE added: http://www.cve.mitre.org/cgi-

[Bug 1014044] Re: PHP5-FPM not reporting errors to web server (nginx)

2012-07-31 Thread Thomas Ward
, as my + packaging system is not able to connect to the internet from work. -- + Thomas Ward trekcaptainusa-tw + + -- + Since updating Ubuntu to 12.04, the included php version contains a bug that causes errors to not be sent upstream to the web server. This error is a regression from

[Bug 1014044] Re: PHP5-FPM not reporting errors to web server (nginx)

2012-07-31 Thread Thomas Ward
the debdiff - later today after i get to a place where i have internet, as my - packaging system is not able to connect to the internet from work. -- - Thomas Ward trekcaptainusa-tw + * I fully plan to attach the upstream bug to here. I also plan on + making the debdiff later today after i get to a place

[Bug 1006738] Re: php5-fpm segfaults with error 4 in libc-2.15.so

2012-07-31 Thread Thomas Ward
: (unassigned) = Thomas Ward (trekcaptainusa-tw) ** Changed in: php5 (Ubuntu Precise) Status: Triaged = In Progress -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to php5 in Ubuntu. https://bugs.launchpad.net/bugs/1006738 Title

[Bug 1014044] Re: PHP5-FPM not reporting errors to web server (nginx)

2012-07-31 Thread Thomas Ward
Upstream patch. ** Attachment added: Upstream patch (filename not matching) to fix this bug https://bugs.launchpad.net/ubuntu/precise/+source/php5/+bug/1014044/+attachment/3244055/+files/php5.3_fpm_error-reporting-to-webserver-fix.patch.upstream -- You received this bug notification because

[Bug 1014044] Re: PHP5-FPM not reporting errors to web server (nginx)

2012-07-31 Thread Thomas Ward
The debdiff for both this bug (LP Bug 1014044), and LP Bug 1006738 for Precise is attached. This was generated based off of the package in precise-security and precise-updates, php5 5.3.10-1ubuntu3.2. This debdiff includes patches based upstream for both bugs, and includes a new changelog entry.

[Bug 1006738] Re: php5-fpm segfaults with error 4 in libc-2.15.so

2012-07-31 Thread Thomas Ward
The debdiff for both this bug (LP Bug 1006738), and LP Bug 1014044 for Precise is attached to LP Bug 1014044. This was generated based off of the package in precise-security and precise-updates, php5 5.3.10-1ubuntu3.2. This debdiff includes patches based upstream for both bugs, and includes a

[Bug 1014044] Re: PHP5-FPM not reporting errors to web server (nginx)

2012-07-31 Thread Thomas Ward
Sponsors team: You will need to review both this bug, and LP Bug 1006738. Clint Byrum had suggested that Bug 1006738 should be fixed in Precise since it was fixed upstream (see comments on that bug). On IRC, in #ubuntu-server, it was suggested I include that fix with the fix for this bug here,

[Bug 1006738] Re: php5-fpm segfaults with error 4 in libc-2.15.so

2012-08-06 Thread Thomas Ward
** Changed in: php5 (Ubuntu) Assignee: (unassigned) = Thomas Ward (trekcaptainusa-tw) ** Changed in: php5 (Ubuntu) Status: Triaged = In Progress -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to php5 in Ubuntu. https

[Bug 1006738] Re: php5-fpm segfaults with error 4 in libc-2.15.so

2012-08-06 Thread Thomas Ward
Attached is a Quantal debdiff, based off of Quantal package php5_5.4.4-3ubuntu1. ** Patch added: Quantal debdiff with Upstream Patch for LP #1006738 https://bugs.launchpad.net/ubuntu/+source/php5/+bug/1006738/+attachment/3250571/+files/quantal_lp1006738.debdiff -- You received this bug

[Bug 1006738] Re: php5-fpm segfaults with error 4 in libc-2.15.so

2012-08-06 Thread Thomas Ward
** Changed in: php5 (Ubuntu) Status: In Progress = Opinion ** Changed in: php5 (Ubuntu) Status: Opinion = Triaged ** Changed in: php5 (Ubuntu) Assignee: Thomas Ward (trekcaptainusa-tw) = (unassigned) -- You received this bug notification because you are a member of Ubuntu

[Bug 1014044] Re: PHP5-FPM not reporting errors to web server (nginx)

2012-08-08 Thread Thomas Ward
. + [Other Info] - * I fully plan to attach the upstream bug to here. I also plan on - making the debdiff later today after i get to a place where i have - internet, as my packaging system is not able to connect to the internet - from work. -- Thomas Ward trekcaptainusa-tw + + * [Other Info

[Bug 1033637] Re: VM reboot fails with EC 42 (natty)

2012-08-08 Thread Thomas Ward
** Tags added: natty -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to nova in Ubuntu. https://bugs.launchpad.net/bugs/1033637 Title: VM reboot fails with EC 42 (natty) To manage notifications about this bug go to:

[Bug 1047520] [NEW] NEWS and release notes need updating

2012-09-07 Thread Thomas Ward
configuration files for php5-fpm's listener, which instructs php5-fpm to listen on a UNIX socket at /var/run/php5-fpm.sock instead of at the TCP listener at 127.0.0.1:9000 which prior versions of the php5 packages used. ** Affects: php5 (Ubuntu) Importance: Critical Assignee: Thomas Ward

[Bug 1047520] Re: NEWS and release notes need updating

2012-09-07 Thread Thomas Ward
Post bug-report find: This was in the debian/NEWS for the package: php5 (5.4.0~rc8-1) unstable; urgency=low php5-fpm default www spool now listens on unix socket located in /var/run/php5-fpm.sock instead of localhost:9000. If you have configured your webserver to use localhost:9000, you

[Bug 1014044] Re: PHP5-FPM not reporting errors to web server (nginx)

2012-09-11 Thread Thomas Ward
I tested this directly from the precise-proposed repos, and this did indeed fix the issue. PHP was correctly reporting errors to the webserver error logs (tested in nginx). -- Thomas Ward ** Tags removed: verification-needed ** Tags added: verification-done -- You received this bug

[Bug 1047520] Re: NEWS and release notes need updating

2012-09-16 Thread Thomas Ward
** Changed in: php5 (Ubuntu Quantal) Assignee: Thomas Ward (trekcaptainusa-tw) = (unassigned) ** Changed in: php5 (Ubuntu Quantal) Status: In Progress = New -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to php5 in Ubuntu

[Bug 1059272] [NEW] php5-fpm init.d script does not return when php5-fpm is started or stopped

2012-09-30 Thread Thomas Ward
Public bug reported: Apport information is missing, because I am reporting this on a non- networked location. I will pull apport information after I get the system onto a networked area (installation was via a local repository on a secured subnet of this area). php5-fpm when using

[Bug 1059272] Re: php5-fpm init.d script does not return when php5-fpm is started or stopped

2012-09-30 Thread Thomas Ward
Update: The 'restart' command does give output similar to this: [orion]# service php5-fpm restart * Restarting PHP5 FastCGI Process Manager php5-fpm I'd expect similar stuff for 'stop' and 'start' as well, saying Starting or Stopping accordingly. -- You received this bug notification

[Bug 744371] Re: PHP5-FPM doesn't always restart on 10.10

2012-10-08 Thread Thomas Ward
of Ubuntu? (I am skipping 11.04, as it will EndOfLife at some point this month) -- Thomas Ward Ubuntu BugSquad Member ** Tags added: maverick -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to php5 in Ubuntu. https://bugs.launchpad.net

[Bug 744371] Re: PHP5-FPM doesn't always restart on 10.10

2012-10-08 Thread Thomas Ward
** Tags added: natty -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to php5 in Ubuntu. https://bugs.launchpad.net/bugs/744371 Title: PHP5-FPM doesn't always restart on 10.10 To manage notifications about this bug go to:

[Bug 1056072] Re: php5-dev missing mysqlnd header files

2012-10-09 Thread Thomas Ward
** Tags added: precise -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to php5 in Ubuntu. https://bugs.launchpad.net/bugs/1056072 Title: php5-dev missing mysqlnd header files To manage notifications about this bug go to:

[Bug 1059272] Re: php5-fpm init.d script does not return any output when php5-fpm is started or stopped

2012-10-09 Thread Thomas Ward
** Summary changed: - php5-fpm init.d script does not return when php5-fpm is started or stopped + php5-fpm init.d script does not return any output when php5-fpm is started or stopped -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed

[Bug 191251] Re: [needs-packaging] php5-embed

2012-10-09 Thread Thomas Ward
According to this changelog excerpt from the current package in Quantal (as part of 5.4.6-1ubuntu1), the embed SAPI was enabled in that update: php5 (5.4.1-1) unstable; urgency=low * Imported Upstream version 5.4.1 + Fixed insufficient validating of upload name leading to corrupted

[Bug 183933] Re: [needs-packaging] php-Fileinfo package

2012-10-09 Thread Thomas Ward
According to the Debian Bug Report (http://bugs.debian.org/cgi- bin/bugreport.cgi?bug=492442), the PHP team included fileinfo as part of 5.3.x. This is included in 5.3.0-1 and beyond. As such, I am marking this as Fix Released because of the inclusion of fileinfo as part of 5.3.x upstream (which

[Bug 1059272] Re: php5-fpm init.d script does not return any output when php5-fpm is started or stopped

2012-10-09 Thread Thomas Ward
** Bug watch added: Debian Bug tracker #690091 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=690091 ** Also affects: php5 (Debian) via http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=690091 Importance: Unknown Status: Unknown -- You received this bug notification because you

[Bug 1059272] Re: php5-fpm init.d script does not return any output when php5-fpm is started or stopped

2012-10-10 Thread Thomas Ward
This is closed in Debian as Not a Bug, but rather a By Design thing. This should be discussed, whether we want to change what the default verbose setting is in /lib/init/vars.sh. That should be decided upon in future, but in the mean time this isn't a bug according to the PHP maintainers. --

[Bug 723480] Re: php5-fpm uses too high value for pm.max_children by default

2012-11-06 Thread Thomas Ward
I believe this bug was fixed with the 5.3.6-11 version of the package (in Debian). This version of the package was a predecesor for the versions in Oneiric, Precise, Quantal, and Raring, and the default is now set to 5. php5 (5.3.6-11) unstable; urgency=low * Use more reasonable default

[Bug 1014044] Re: PHP5-FPM not reporting errors to web server (nginx)

2012-11-12 Thread Thomas Ward
This fix was put in precise-updates well over a month ago, Everaldo. The post before yours shows where this was committed to precise-updates (it says precise-proposed, but it is in -updates). -- You received this bug notification because you are a member of Ubuntu Server Team, which is

[Bug 1262710] Re: [MIR] nginx

2014-03-09 Thread Thomas Ward
Valentin, regarding your comment in comment 7 about things being fixed in mainline, that fix won't hit Ubuntu until Debian has mainline. As of right now, I don't think they're switching to the mainline branch yet. To all: We're going to drop the Lua module from nginx-extras for the MIR. If you

[Bug 1262710] Re: [MIR] nginx

2014-03-09 Thread Thomas Ward
Attached is a possible debdiff that can be used to do following for this MIR: (1) Adds an nginx-core package which contains only the modules that are shipped with the nginx upstream source. (2) Removes the Lua module from nginx-extras (because the liblua5.1-dev build-dependency is not permitted

[Bug 1290063] [NEW] [FFe needed] Please merge nginx 1.4.6-1 (universe) from Debian unstable (main)

2014-03-09 Thread Thomas Ward
Public bug reported: As part of the process of getting the nginx MIR handled, I'd love to see the latest stable release of nginx in Trusty before the MIR is completed. This needs an FFe, and I've already poked infinity in #ubuntu-release and handed them a debdiff of Debian 1.4.5-1 to Debian

[Bug 1262710] Re: [MIR] nginx

2014-03-09 Thread Thomas Ward
** Patch removed: Potential full debdiff for the MIR https://bugs.launchpad.net/ubuntu/+source/nginx/+bug/1262710/+attachment/4015030/+files/NGINX_trusty_MIR.debdiff -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to nginx in Ubuntu.

[Bug 1262710] Re: [MIR] nginx

2014-03-09 Thread Thomas Ward
Thanks to Adam Conrad, NGINX 1.4.6 is now in Trusty (see https://bugs.launchpad.net/ubuntu/+source/nginx/+bug/1290063 ) I'll rebase my debdiff off 1.4.6 instead, as soon as I get to stable internet again. (this might be tomorrow :/) -- You received this bug notification because you are a

[Bug 1262710] Re: [MIR] nginx

2014-03-10 Thread Thomas Ward
Attached is a debdiff for this MIR based off of 1.4.6 which Adam Conrad merged into Ubuntu. Whomever needs to review this, please review. Thanks. ** Patch added: nginx-1.4.6 debdiff for the MIR

[Bug 1262710] Re: [MIR] nginx

2014-03-10 Thread Thomas Ward
This debdiff here contains typos that sarnold found, and is in response to this: sarnold teward: hey :) nice debdiff, thanks; there is an UNRELEASED in the changelog, and 'nginx-extra' typo in the Description: field for the nginx-core package. otherwise it looks good to me. Thanks for taking

[Bug 1262710] Re: [MIR] nginx

2014-03-10 Thread Thomas Ward
I meant it contains fixes for typos. -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to nginx in Ubuntu. https://bugs.launchpad.net/bugs/1262710 Title: [MIR] nginx To manage notifications about this bug go to:

[Bug 1294280] [NEW] [CVE-2014-0133] SPDY Heap Buffer Overflow Vulnerability

2014-03-18 Thread Thomas Ward
*** This bug is a security vulnerability *** Public security bug reported: This is CVE-2014-0133. This is Debian Bug 742059. -- This was the nginx announcement of this issue: Hello! A bug in the experimental SPDY implementation in nginx was found, which might allow an attacker to cause

[Bug 1294280] Re: [CVE-2014-0133] SPDY Heap Buffer Overflow Vulnerability

2014-03-18 Thread Thomas Ward
Key thing to check is if all binaries build with the --with-debug option. If they all build with it, then we are not vulnerable. (according to the Debian people) -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to nginx in Ubuntu.

[Bug 1294280] Re: [CVE-2014-0133] SPDY Heap Buffer Overflow Vulnerability

2014-03-18 Thread Thomas Ward
As with Debian, we are not affected by this bug, as we build with the --with-debug option on all binaries, and it's up to the security team if they want to sponsor the patch in, since we're not affected. -- You received this bug notification because you are a member of Ubuntu Server Team, which

[Bug 1294280] Re: [CVE-2014-0133] SPDY Heap Buffer Overflow Vulnerability

2014-03-18 Thread Thomas Ward
I've attached a debdiff for Saucy. ** Patch added: CVE-2014-0133 Debdiff for Saucy https://bugs.launchpad.net/ubuntu/+source/nginx/+bug/1294280/+attachment/4031514/+files/cve-2014-0133_saucy.debdiff -- You received this bug notification because you are a member of Ubuntu Server Team, which

[Bug 1295892] Re: nginx upgrade failed

2014-03-22 Thread Thomas Ward
What version were you upgrading from? -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to nginx in Ubuntu. https://bugs.launchpad.net/bugs/1295892 Title: nginx upgrade failed To manage notifications about this bug go to:

[Bug 1295892] Re: nginx upgrade failed

2014-03-30 Thread Thomas Ward
Seth, I'll take a poke at this, in a little while, I have to spin up a 13.10 VM for testing. -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to nginx in Ubuntu. https://bugs.launchpad.net/bugs/1295892 Title: nginx upgrade failed To

[Bug 1295892] Re: nginx upgrade failed

2014-03-30 Thread Thomas Ward
Seth, I was unable to replicate this using the default configurations, are you running any other webservers on your system, or have any special listen statements in your configs? (This seems like a configuration problem on your setup rather than globally) ** Changed in: nginx (Ubuntu)

[Bug 1299972] [NEW] Default site config is ambiguous in PHP block (precise)

2014-03-30 Thread Thomas Ward
Public bug reported: In the default sites-available configuration file, it is ambiguous which line to use for PHP files in a proxy_pass. It also uses an incorrect configuration line for the PHP files. It may need modified to adapt for this so that php5-fpm+nginx setups work out of the box on

[Bug 1304304] Re: nginx ubuntu package possibly affected by CVE 2014-0160

2014-04-08 Thread Thomas Ward
Correct me if I'm wrong, but doesn't this bug affect OpenSSL? The Security team released a fix for this in OpenSSL. I will check to see if it's statically linked, but the last I checked it was not. I haven't recently checked this though. -- You received this bug notification because you are a

[Bug 1304304] Re: nginx ubuntu package possibly affected by CVE 2014-0160

2014-04-08 Thread Thomas Ward
Refer to USN-2165-1 for the OpenSSL notice on this vulnerability, and about it being fixed. This applies to libssl as well. I am almost certain nginx doesn't static-link to libssl. Again, I'll double check this. -- You received this bug notification because you are a member of Ubuntu Server

[Bug 1098654] Re: nginx vulnerable to MITM Attack [CVE-2011-4968]

2014-04-18 Thread Thomas Ward
An upstream commit has been made addressing this issue. Refer to http://trac.nginx.org/nginx/changeset/060c2e692b96a150b584b8e30d596be1f2defa9c/nginx for the fix. I'll check if the other versions of nginx not listed here are affected later, after work. -- You received this bug notification

[Bug 1313224] Re: Outdated naxsi version, incorrect learning tools included in packages

2014-04-26 Thread Thomas Ward
This bug was misfiled, this is an issue with the PPAs. The PPAs are behind because I haven't had a chance to update the PPAs yet. I'll see if I can get to it tomorrow. ** Changed in: nginx (Ubuntu) Status: New = Invalid ** Also affects: nginx Importance: Undecided Status: New

[Bug 1313224] Re: Outdated naxsi version, incorrect learning tools included in packages

2014-04-26 Thread Thomas Ward
If after the PPAs are updated, this still applies, comment on the bug. -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to nginx in Ubuntu. https://bugs.launchpad.net/bugs/1313224 Title: Outdated naxsi version, incorrect learning tools

Re: [Bug 1313224] Re: Outdated naxsi version, incorrect learning tools included in packages

2014-04-27 Thread Thomas Ward
Last I checked, Debian is ahead of the PPAs and Ubuntu. It may be possible they already updated the naxsi version already. If that is not the case I'll forward this bug to Debian. Thomas LP: ~teward -- You received this bug notification because you are a member of Ubuntu Server Team, which

[Bug 1313224] Re: Outdated naxsi version, incorrect learning tools included in packages

2014-04-27 Thread Thomas Ward
** Tags added: stable-ppa -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to nginx in Ubuntu. https://bugs.launchpad.net/bugs/1313224 Title: Outdated naxsi version, incorrect learning tools included in packages To manage notifications

[Bug 1313224] Re: Outdated naxsi version, incorrect learning tools included in packages

2014-04-27 Thread Thomas Ward
, I'll forward this bug to Debian. ** Changed in: nginx Status: New = Incomplete ** Changed in: nginx Assignee: (unassigned) = Thomas Ward (teward) -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to nginx in Ubuntu. https

[Bug 1313224] Re: Outdated naxsi version, incorrect learning tools included in packages

2014-04-27 Thread Thomas Ward
** Changed in: nginx (Ubuntu) Status: New = Invalid ** Changed in: nginx Status: Incomplete = New -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to nginx in Ubuntu. https://bugs.launchpad.net/bugs/1313224 Title:

[Bug 1313224] Re: Outdated naxsi version, incorrect learning tools included in packages

2014-04-27 Thread Thomas Ward
Bug forwarded to Debian, as it also needs fixing there. I've linked to the Debian bug here on the Launchpad system, so the Debian status will be seen here as well. ** Bug watch added: Debian Bug tracker #746199 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=746199 ** Also affects: nginx

[Bug 1313224] Re: Outdated naxsi version, incorrect learning tools included in packages

2014-04-27 Thread Thomas Ward
** No longer affects: nginx (Ubuntu) -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to nginx in Ubuntu. https://bugs.launchpad.net/bugs/1313224 Title: Outdated naxsi version, incorrect learning tools included in packages To manage

[Bug 1313224] Re: Outdated naxsi version, incorrect learning tools included in packages

2014-04-27 Thread Thomas Ward
** Changed in: nginx Status: New = Triaged -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to nginx in Ubuntu. https://bugs.launchpad.net/bugs/1313224 Title: Outdated naxsi version, incorrect learning tools included in packages

[Bug 1315426] Re: nginx not built as position independent

2014-05-04 Thread Thomas Ward
** Changed in: nginx (Ubuntu) Status: New = Confirmed ** Changed in: nginx (Ubuntu) Assignee: (unassigned) = Thomas Ward (teward) -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to nginx in Ubuntu. https://bugs.launchpad.net

[Bug 1315426] Re: nginx not built as position independent

2014-05-04 Thread Thomas Ward
** Bug watch added: Debian Bug tracker #747025 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=747025 ** Also affects: nginx (Debian) via http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=747025 Importance: Unknown Status: Unknown ** Changed in: nginx (Ubuntu) Status:

[Bug 1323387] Re: Auth Request module does not seem to be loaded in the extras package

2014-05-27 Thread Thomas Ward
** Changed in: nginx (Ubuntu) Importance: Medium = Low -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to nginx in Ubuntu. https://bugs.launchpad.net/bugs/1323387 Title: Auth Request module does not seem to be loaded in the extras

[Bug 1323387] Re: Auth Request module does not seem to be loaded in the extras package

2014-05-27 Thread Thomas Ward
Based on the package description for nginx-extras in the control file in Trusty (http://bazaar.launchpad.net/~ubuntu- branches/ubuntu/trusty/nginx/trusty/view/head:/debian/control), there is no listing for the Auth Request module. This seems to be supported by the rules file that governs building

[Bug 1323387] Re: Please include the Auth Request module in the nginx-extras package

2014-05-27 Thread Thomas Ward
We can just modify this bug to say that this is a feature request, Trevor. I did that for the title. Can you modify your description to request the Auth Request module being added, and give us a brief description of what that module does? ** Summary changed: - Auth Request module does not seem

[Bug 1323387] Re: Please include the Auth Request module in the nginx-extras package

2014-05-27 Thread Thomas Ward
** Description changed: + I would like to request that the Auth Request module be added to the + nginx-extras package in Trusty. + + == + + [Original Description] + Hello, after purging my existing nginx packages (all of them, nginx-*) and installing nginx-extras, the Auth Request

[Bug 1323387] Re: Please include the Auth Request module in the nginx-extras package

2014-05-27 Thread Thomas Ward
** Changed in: nginx (Ubuntu) Status: Incomplete = Triaged -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to nginx in Ubuntu. https://bugs.launchpad.net/bugs/1323387 Title: Please include the Auth Request module in the

[Bug 1347147] Re: krb5 database operations enter infinite loop

2014-07-31 Thread Thomas Ward
Nomination added for krb5 for Trusty per an email thread to bugcontrol. It added for gcc as well but the email chain points to a SRU fix for krb5 and not the compiler at this time. -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to krb5

[Bug 1352617] [NEW] php5-fpm UNIX sockets in Precise do not listen as www-data:www-data by default, and causes 502s with webservers trying to use socket

2014-08-04 Thread Thomas Ward
Public bug reported: *** NOTE: This only affects Precise based on my testing. *** A security change to make the FPM listener have permissions 0660 has introduced an issue in Precise with how the socket is created. While this was resolved in later versions as part of Bug #1334337 (including in

[Bug 1352617] Re: php5-fpm UNIX sockets in Precise do not listen as www-data:www-data by default, and causes 502s with webservers trying to use socket

2014-08-07 Thread Thomas Ward
I'm attaching the patch I wrote for this. As this patch is ultimately going to repair a problem introduced by a security fix, by forcing php5-fpm to force a specific user/group to be the owner:group settings for the fpm socket, I would like the Security Team to review the change preliminarily,

[Bug 1370478] [NEW] [CVE-2014-3616] possible to reuse cached SSL sessions in unrelated contexts

2014-09-17 Thread Thomas Ward
*** This bug is a security vulnerability *** Public security bug reported: A security vulnerability was found in the nginx package. All versions in Lucid, Precise, Trusty, and Utopic are affected. -- This is the email that went out in the nginx security advisories list regarding this

[Bug 1370478] Re: [CVE-2014-3616] possible to reuse cached SSL sessions in unrelated contexts

2014-09-17 Thread Thomas Ward
** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2014-3616 ** Changed in: nginx (Ubuntu) Status: New = Confirmed -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to nginx in Ubuntu.

[Bug 1383379] Re: nginx default config has SSLv3 enabled, makes sites using default config options vulnerable to POODLE

2014-10-20 Thread Thomas Ward
. ** Also affects: nginx (Ubuntu) Importance: Undecided Status: New ** Changed in: nginx Assignee: (unassigned) = Thomas Ward (teward) -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to nginx in Ubuntu. https://bugs.launchpad.net

[Bug 1383379] Re: nginx default config has SSLv3 enabled, makes sites using default config options vulnerable to POODLE

2014-10-22 Thread Thomas Ward
In discussion with mdeslaur on IRC, I'm attaching DebDiffs for Ubuntu in the off chance the release team wishes to push these changes. A few extra details as to why this is extremely relevant to being pushed and updated: A lot of newbie users that we see in the NGINX IRC channel for support end

[Bug 1383379] Re: nginx default config has SSLv3 enabled, makes sites using default config options vulnerable to POODLE

2014-10-22 Thread Thomas Ward
** Patch added: Precise Debdiff for Ubuntu https://bugs.launchpad.net/nginx/+bug/1383379/+attachment/4241830/+files/nginx_sslv3_remove_debdiff_precise.debdiff -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to nginx in Ubuntu.

[Bug 1383379] Re: nginx default config has SSLv3 enabled, makes sites using default config options vulnerable to POODLE

2014-10-22 Thread Thomas Ward
NOTE: I didn't know where to target this for Utopic, so I just targeted it to 'utopic'. Please change that if it is not valid. ** Patch added: Utopic Debdiff for Ubuntu https://bugs.launchpad.net/nginx/+bug/1383379/+attachment/4241835/+files/nginx_sslv3_remove_debdiff_utopic.debdiff **

[Bug 1383379] Re: nginx default config has SSLv3 enabled, makes sites using default config options vulnerable to POODLE

2014-10-22 Thread Thomas Ward
** Patch added: Trusty Debdiff for Ubuntu https://bugs.launchpad.net/nginx/+bug/1383379/+attachment/4241832/+files/nginx_sslv3_remove_debdiff_trusty.debdiff -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to nginx in Ubuntu.

[Bug 1383379] Re: nginx default config has SSLv3 enabled, makes sites using default config options vulnerable to POODLE

2014-10-22 Thread Thomas Ward
(nginx project) Updated packages uploaded to the staging PPA, pending building. ** Changed in: nginx Status: In Progress = Fix Committed -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to nginx in Ubuntu.

[Bug 1216817] Re: Using `fastcgi_cache` or `proxy_cache` with nginx-extras causes the push module to throw errors.

2014-10-23 Thread Thomas Ward
** Changed in: nginx Status: Triaged = Fix Committed -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to nginx in Ubuntu. https://bugs.launchpad.net/bugs/1216817 Title: Using `fastcgi_cache` or `proxy_cache` with nginx-extras

[Bug 1383379] Re: nginx default config has SSLv3 enabled, makes sites using default config options vulnerable to POODLE

2014-10-24 Thread Thomas Ward
Fixed in latest NGINX upload to the PPAs. ** Changed in: nginx Status: Fix Committed = Fix Released -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to nginx in Ubuntu. https://bugs.launchpad.net/bugs/1383379 Title: nginx

[Bug 1216817] Re: Using `fastcgi_cache` or `proxy_cache` with nginx-extras causes the push module to throw errors.

2014-10-24 Thread Thomas Ward
This should be fixed now that the packages have been resynced with Debian which I believe had an updated version of the module included in it. The package in Ubuntu is still affected. ** Changed in: nginx Status: Fix Committed = Fix Released -- You received this bug notification because

[Bug 1216817] Re: Using `fastcgi_cache` or `proxy_cache` with nginx-extras causes the push module to throw errors.

2014-10-27 Thread Thomas Ward
** Changed in: nginx (Ubuntu Precise) Status: New = In Progress ** Changed in: nginx (Ubuntu Precise) Assignee: (unassigned) = Thomas Ward (teward) ** Changed in: nginx (Ubuntu Trusty) Importance: Undecided = Low ** Changed in: nginx (Ubuntu Trusty) Status: New

  1   2   3   4   5   6   7   8   9   10   >