Bug#734798: libapache2-mod-rpaf: failure to work with authz allow/deny

Sergey B Kirpichev 2014-01-20 00:43: tags 734798 +moreinfo thanks I can't reproduce the problem for apache2-mpm-worker nor for apache2-mpm-prefork. See below. On Thu, Jan 09, 2014 at 10:48:20PM +0100, Vincent CARON wrote: this is a follow up of bug #697644. I could reproduce the problem toda

Bug#734798: libapache2-mod-rpaf: failure to work with authz allow/deny

Sergey B Kirpichev 2014-01-20 18:11: On Sun, Jan 19, 2014 at 07:27:32PM -0600, Brian Kroth wrote: Perhaps try the wget command I gave earlier to force it over IPv6 instead. Then vary the X-Forwarded-For with either IPv4 or IPv6 addresses. Ok, I see. It seems this is a duplicate of #726529

Bug#734798: libapache2-mod-rpaf: failure to work with authz allow/deny

Sergey B Kirpichev 2014-01-22 16:21: On Tue, Jan 21, 2014 at 12:00:45PM -0600, Brian Kroth wrote: Please try an update package (attached). Updated patch attached as well. That does appear to work Ok. Vincent, could you test this as well? If so, I will merge two bugreports and prepare an

Bug#726529: libapache2-mod-rpaf: fails on ipv6 address - bug details and fix

+++ libapache2-mod-rpaf_0.6-7.3-debian/debian/changelog 2014-01-15 14:26:12.0 -0600 @@ -1,3 +1,10 @@ +libapache2-mod-rpaf (0.6-7.3) UNRELEASED; urgency=low + + * Non-maintainer upload. + * Fixes for use with mod_authz_host per #734798, #726529. + + -- Brian Kroth Wed, 15 Jan 2014 12:20:

Bug#734798: possible patch

FYI, I think the patch described in [1], fixes this issue as well. Cheers, Brian [1] signature.asc Description: Digital signature

Bug#729965: libcurl3 7.21.0-2.1+squeeze5 --insecure regression

Package: libcurl3 Version: 7.21.0-2.1+squeeze5 Severity: important Hi, I believe I've found a regression in the recent libcurl3 DSA update. Basically, it doesn't seem to be respecting the --insecure option in all cases. This now fails: # aptitude -PV install libcurl3=7.21.0-2.1+squeeze5 # cu

Bug#729965: better example

Apparently I didn't look hard enough the first time. This appears to have the same issue: # curl -s -S --insecure https://www.example.com > /dev/null curl: (51) SSL peer certificate or SSH remote key was not OK Let me know if you need anything else. Thanks, Brian smime.p7s Description: S/MI

Bug#724872: libmemcached sasl support broken in wheezy as well

ssword files easily. Let me know if you need any other details from me. Thanks, Brian Description: Fix SASL build support See Also: http://serverfault.com/questions/431552/configuring-sasl-support-in-libmemcached Author: Brian Kroth Last-Update: 2014-03-27 Forwarded: no --- a/m4/ax_sasl.m4

Bug#743436: liblog4cpp5: long lines can lead to a segfault

Package: liblog4cpp5 Version: 1.0-4 Severity: important Dear Maintainer, * What led up to the situation? Long URLs fed to a 64-bit Apache using libapache2-mod-shib2 that talks to a shibd that has DEBUG logging enabled would result in segfaults. This amounts to a possible DoS. A backtrac

Bug#743436: forgot to attach the patch

--- a/src/StringUtil.cpp +++ b/src/StringUtil.cpp @@ -35,27 +35,37 @@ namespace log4cpp { std::string StringUtil::vform(const char* format, va_list args) { - size_t size = 1024; - char* buffer = new char[size]; +size_t size = 1024; +char* buffer = new char[size];

Bug#658739: please try to downgrade libgcrypt11 to 1.4.6

Trek 2013-01-21 07:13: Hi, can you try to downgrade libgcrypt11 to the version 1.4.6-9? You can download it from: http://snapshot.debian.org/archive/debian/20110807T212024Z/pool/main/libg/libgcrypt11/ this resolved a bug using claws-mail and midori with libgcrypt 1.5, that seems to have prob

Bug#658739: status?

On 2012-11-30 Martijn van Brummelen wrote: Hello, The patch from Ubuntu breaks other stuff. See and duplicates. Note that although this (LP 1013798) was fixed in 1.5.0-3ubuntu2 the patch had to be pulled again in 1.5.0-3ubuntu2

Bug#658739: status?

Andreas Metzler 2013-01-09 19:17: On 2013-01-09 Brian Kroth wrote: [...] May I ask what the proposed/potential solutions for this is then? This is a major problem holding us up from serious wheezy consideration where I work. Please let me know if you'd like help testing something.

Bug#658739: status?

Brian Paul Kroth 2013-01-09 12:32: Andreas Metzler 2013-01-09 19:17: On 2013-01-09 Brian Kroth wrote: [...] May I ask what the proposed/potential solutions for this is then? This is a major problem holding us up from serious wheezy consideration where I work. Please let me know if you&#

Bug#685069: Fwd: End of Life date for Shibboleth SP V2.4.3

FYI If no one else has started on this I might take a stab since I'm hoping it will solve some pretty awful memory leaks I've run into when using this with unixodbc and libmyodbc. Brian - Forwarded message from "Cantor, Scott" - Date: Fri, 5 Oct 2012 18:33:14 + From: "Cantor, S

Bug#685069: Fwd: End of Life date for Shibboleth SP V2.4.3

Russ Allbery 2012-10-05 13:48: Brian Kroth writes: If no one else has started on this I might take a stab since I'm hoping it will solve some pretty awful memory leaks I've run into when using this with unixodbc and libmyodbc. I have, sadly, not had time to start on it. No

Bug#685407: ext4 dir_index + nfs duplicate cookies problem with large dovecot maildirs

Jonathan Nieder 2012-10-08 21:09: Hi again, Jonathan Nieder wrote: Hi kernel team, [...] Please consider the attached patch for the sid branch of the packaging repo. It applies the five aforementioned patches from upstream: 6a8a13e03861 fs: add new FMODE flags: FMODE_32bithash and FMODE

Bug#682007: NULL pointer dereference in __fscache_read_or_alloc_pages

Jonathan Nieder 2012-10-01 01:25: Brian Kroth wrote: Sorry, the labs went into their dormant period and all of my test cases ran away for the rest of the summer (the find cmd didn't seem to trigger the __fscache problem), so I hadn't moved any further on this. Now that they&#x

Bug#682007: NULL pointer dereference in __fscache_read_or_alloc_pages

Brian Paul Kroth 2012-10-11 14:06: Jonathan Nieder 2012-10-01 01:25: Once again very sorry for the delay :( I forgot to disable the DEBUG_INFO and kept filling up my build VMs disk during compile. Then realized I had grabbed the 3.7 rc code, which these patches don't apply against. "git

Bug#356187: 2 ldap servers - possibly better solution

Johannes Knauf 2012-10-16 08:10: If you are administrating at least 1 of the 2 LDAP servers, you can use pass-through authentication as an alternative. It is described in http://www.openldap.org/doc/admin24/security.html Then, pam_ldap authenticates to LDAP server 1 only, which holds informatio

Bug#682007: NULL pointer dereference in __fscache_read_or_alloc_pages

Jonathan Nieder 2012-09-29 15:22: Hi again, In July, 2012, Brian Kroth wrote: Jonathan Nieder 2012-07-21 12:04: Please test the attached patches, for example following the instructions below: [...] Anyways, I'll wait on the results of my previous test first to see if we have a rel

Bug#685407: [wheezy] ext4 dir_index + nfs duplicate cookies problem with large dovecot maildirs

Jonathan Nieder 2012-08-20 09:39: Hi, Brian Paul Kroth wrote: - multiple ext4 filesystems with dir_index enabled for maildir account storage - serves these over nfs (v3 or v4, doesn't matter) to server clients running dovecot to serve imap to real clients - "ls -l | wc -l" or readdir() in dir

Bug#685407: [wheezy] ext4 dir_index + nfs duplicate cookies problem with large dovecot maildirs

Jonathan Nieder 2012-08-20 17:33: reassign 685407 src:linux 3.2.20-1 fixed 685407 linux/3.5-1~experimental.1 tags 685407 + upstream patch moreinfo quit Hi again, Brian Kroth wrote: linux-image-3.5-trunk-amd64 (3.5-1~experimental.1) on the server does indeed appear to fix this

Bug#658896: ldapd not a good workaround

FYI, this is affecting our systems as well. So far as I can tell, we can't use the nslcd stuff as a workaround because that prevents using separate ldap confs for auth in pam (eg: pam_ldap.so config=/etc/pam_ldap.conf.special) which allows us to construct different ldap filters, base searches,

Bug#682007: linux-image-3.2.0-0.bpo.2-amd64: NULL pointer dereference in __fscache_read_or_alloc_pages

Subject: linux-image-3.2.0-0.bpo.2-amd64: NULL pointer dereference in __fscache_read_or_alloc_pages Package: src:linux Version: 3.2.20-1~bpo60+1 Severity: important ** Please type your report below this line *** I have a number of machines running linux-image-3.2.0-0.bpo.2-amd64 from squeeze-b

Bug#682007: linux-image-3.2.0-0.bpo.2-amd64: NULL pointer dereference in __fscache_read_or_alloc_pages

Ben Hutchings 2012-07-19 13:32: On Thu, 2012-07-19 at 13:37 +0200, Bastian Blank wrote: On Wed, Jul 18, 2012 at 11:16:33AM -0500, Brian Kroth wrote: > ** Tainted: PO (4097) > * Proprietary module has been loaded. > * Out-of-tree module has been loaded. > 21:04:00 kefka [187206

Bug#356187: libpam-ldap: pam_ldap.so is not stackable

I know this is years and years later, but we recently ran into this as well. In our case, I'm not connecting to different servers, but we do want to stack different pam_filters. The relevant bits from pam.d/common-account look like this: account [success=1 default=ignore] pam_unix.so account

Bug#356187: related upstream bug

This looks to also be related: http://bugzilla.padl.com/show_bug.cgi?id=191 signature.asc Description: Digital signature

Bug#685069: shib-sp 2.5 fixes some bugs and adds ipv6 support

FYI, the 2.5 version also fixes some bugs and adds better IPv6 support. For example: https://issues.shibboleth.net/jira/browse/SSPCPP-392 https://issues.shibboleth.net/jira/browse/SSPCPP-326 I will definitely be willing to help test this out once it's available. Thanks, Brian signature.asc D

Bug#682007: linux-image-3.2.0-0.bpo.2-amd64: NULL pointer dereference in __fscache_read_or_alloc_pages

Ben Hutchings 2012-07-19 16:21: On Thu, Jul 19, 2012 at 09:03:26AM -0500, Brian Kroth wrote: Ben Hutchings 2012-07-19 13:32: > On Thu, 2012-07-19 at 13:37 +0200, Bastian Blank wrote: >> On Wed, Jul 18, 2012 at 11:16:33AM -0500, Brian Kroth wrote: >>> ** Tainted: PO (4097)

Bug#682007: [squeeze-backports] NULL pointer dereference in __fscache_read_or_alloc_pages

Jonathan Nieder 2012-07-20 11:25: merge 682116 682007 quit Hi, Ben Hutchings 2012-07-19 13:32: On Thu, 2012-07-19 at 13:37 +0200, Bastian Blank wrote: We don't support proprietary stuff. Please remove and try again. To be clear, Bastian is referring to the proprietary kernel module (nvi

Bug#682007: [squeeze-backports] NULL pointer dereference in __fscache_read_or_alloc_pages

Jonathan Nieder 2012-07-20 11:25: merge 682116 682007 quit Hi, Ben Hutchings 2012-07-19 13:32: On Thu, 2012-07-19 at 13:37 +0200, Bastian Blank wrote: We don't support proprietary stuff. Please remove and try again. To be clear, Bastian is referring to the proprietary kernel module (nvi

Bug#682007: [squeeze-backports] NULL pointer dereference in __fscache_read_or_alloc_pages

Jonathan Nieder 2012-07-21 12:04: tags 682007 + upstream patch moreinfo quit Hi, Brian Kroth wrote: kernel BUG at /build/buildd-linux_3.2.20-1~bpo60+1-amd64-tQMw4f/linux-3.2.20/fs/buffer.c:3088! This is BUG_ON(!PagePrivate(page)); \ in

Bug#693701: setup-storage fails to partition the discs if LVM volume is present

Package: fai-setup-storage Version: 4.0.4 Followup-For: Bug #693701 So, the good news is that live-boot seems to work nicely now. However, something like this bug is still occurring with fai-setup-storage 4.0.4. If I install a machine with an LVM disk_config and then go to reinstall it (with p

Bug#658896: not fixed - please don't ignore this bug for wheezy

Sorry for the late reply, I've been out on leave and for some reason wasn't getting the responses to these bugs even though I've subscribed. I hate to dredge this up again given the release announcement, but there's been a lot of confusion about this and related bugs and I think our particular

Bug#682007: [squeeze-backports] NULL pointer dereference in __fscache_read_or_alloc_pages

Raoul Bhatia [IPAX] 2013-01-29 11:01: On 2012-10-12 20:52, Brian Kroth wrote: Brian Paul Kroth 2012-10-11 14:06: Jonathan Nieder 2012-10-01 01:25: Once again very sorry for the delay :( I forgot to disable the DEBUG_INFO and kept filling up my build VMs disk during compile. Then

Bug#643708: closed by Carsten Schoenert (Re: Bug#643708: icedove does not respect spellchecker.dictionary language settings)

Sorry for the lack of response. I was on leave and none of my colleagues responded like I'd asked. I tested this just now and the problem seems to have gone away. We're currently running with icedove from the mozilla squeeze-backports (version 17.0.4-1~bpo60+1). Thanks, Brian signature.a

Bug#575614: timer-entropyd -- feed the /dev/random device with entropy data read from timer statistics

Package: timer-entropyd Severity: wishlist Please consider adding a package for timer-entropyd. This program provides a mechanism for gathering entropy on devices that have no hardware to do so (eg: virtual machines). Details about the package can be found here: http://www.vanheusden.com/te/ Se

Bug#575615: entropy-broker -- distribute entropy data to remote hosts

Package: entropy-broker Severity: wishlist Please consider providing a package for entropy-broker. This program provides a mechanism for distributing entropy gathered from various hardware and software sources to clients such as virtual machines which may not have good sources to gather their own

Bug#575628: pxe not working with libvirt 0.7.7 + qemu-kvm 0.12

Package: libvirt-bin, qemu-kvm Severity: important Attempts to PXE boot with these two versions give the following error message: # virsh start faitest32 error: Failed to start domain faitest32 error: internal error Process exited while reading console log output: char device redirected to /dev/

Bug#575628: Acknowledgement (pxe not working with libvirt 0.7.7 + qemu-kvm 0.12)

Here's another probably related bug: https://bugzilla.redhat.com/show_bug.cgi?id=572495 I was able to revert libvirt-bin and company back to 0.7.5-6 and now pxe boot is working again. Here's the new command that was used by libvirt to start the vm: LC_ALL=C PATH=/usr/local/sbin:/usr/local/bin:/sb

Bug#575628: [Pkg-libvirt-maintainers] Bug#575628: pxe not working with libvirt 0.7.7 + qemu-kvm 0.12

Guido Günther 2010-03-28 14:53: > On Sat, Mar 27, 2010 at 02:15:45PM -0500, Brian Kroth wrote: > > Package: libvirt-bin, qemu-kvm > > Severity: important > > > > Attempts to PXE boot with these two versions give the following error > > message: > > > &

Bug#628032: gdm3: Disabling restart buttons via /apps/gdm/simple-greeter/disable_restart_buttons value does not take effect

I can also confirm this behavior, the fact that it's undesirable in a lab environment, and that the patch provided fixes it. Brian signature.asc Description: Digital signature

Bug#641867: screen version bump (4.1.0 20101110git066b098)

Axel Beckert 2011-10-05 14:02: Hi again, Axel Beckert wrote: There is a package available here: http://noone.org/debian/ It's not yet 100% finished, but should be already close to what I would upload. I did some more testing myself and found quite a showstopper: Reattaching to a running 4.

Bug#644444: pkpgcounter does not properly handle all postscript documents with copies or n-up options

a...@librelogiciel.com 2011-10-06 01:20: Hi, On Wed, Oct 05, 2011 at 06:05:48PM -0500, Brian Paul Kroth wrote: I attempted to pass this info to the original dev, but haven't gotten any response. I'm sorry for this. I'm slowly recovering from an accident and I'll try to be back at work on t

Bug#641867: screen version bump (4.1.0 20101110git066b098)

Package: screen Version: 4.1.0-20101110git066b098 Severity: wishlist The screen developers have been working on new features for screen for a while, though an official release keeps getting put off. I noticed the other day that Fedora 15 is shipping with a git snapshotted version of screen, wh

Bug#641867: screen version bump (4.1.0 20101110git066b098)

Axel Beckert 2011-09-17 12:02: Hi Brian, Brian Kroth wrote: Package: screen Version: 4.1.0-20101110git066b098 Severity: wishlist The screen developers have been working on new features for screen for a while, though an official release keeps getting put off. Yeah. When I saw your mail, I

Bug#641867: screen version bump (4.1.0 20101110git066b098)

Excellent. Let me know when it's there and I'll do some testing. Thanks, Brian Axel Beckert 2011-10-04 23:14: Hi Brian, just a short thumbs up that I'm working on an updated screen package which I'll upload to either Unstable or Experimental (not yet sure, not much tested yet). signature.a

Bug#685407: updates for squeeze-backports?

FYI, I'm still seeing this problem in the following kernel from squeeze-backports: Linux version 3.2.0-0.bpo.4-amd64 (debian-ker...@lists.debian.org) (gcc version 4.4.5 (Debian 4.4.5-8) ) #1 SMP Debian 3.2.41-2+deb7u2~bpo60+1 Is the fix going to be backported there too? We're currently waitin

Bug#685407: updates for squeeze-backports?

Ben Hutchings 2013-06-17 17:27: On Mon, Jun 17, 2013 at 09:19:20AM -0500, Brian Kroth wrote: FYI, I'm still seeing this problem in the following kernel from squeeze-backports: Linux version 3.2.0-0.bpo.4-amd64 (debian-ker...@lists.debian.org) (gcc version 4.4.5 (Debian 4.4.5-8) ) #

Bug#602933: even newer upstream release: 5.0.6

http://changelogs.ubuntu.com/changelogs/pool/main/a/autofs5/autofs5_5.0.6-0ubuntu2/changelog Contains some IPv6 support fixes, among others: http://fossies.org/linux/misc/autofs-5.0.6.tar.gz:a/autofs-5.0.6/CHANGELOG Brian -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org

Bug#620732: new version of cachefilesd available

I'll also note that there's a new version available that includes this fix as well as some others: http://people.redhat.com/~dhowells/fscache/ signature.asc Description: Digital signature

Bug#590998: ldap-utils: centralize LDAP parameters

reassign 590998 libpam-ldap thanks On Fri, Jul 30, 2010 at 04:10:36PM -0400, Patricio Rojo wrote: I apologize if this is the wrong package in which to file this wishlist. I'll appreciate forwarding in that case. I manage users in one machine with LDAP. I'm very suprised that I need to change

Bug#842202: [Pkg-xfce-devel] Bug#842202: lightdm combined with pam_ldap and mixed case usernames results in broken group enumeration, etc.

Hi, took me a while to get around to, but for the record I finally filed one upstream here: https://bugs.launchpad.net/lightdm/+bug/1642725 Thanks, Brian On Fri, Oct 28, 2016 at 3:11 AM, Yves-Alexis Perez wrote: > On Wed, 2016-10-26 at 15:51 -0500, Brian Kroth wrote: > > The attac

Bug#844665: libpam-ldap returns user provided case sensitive data instead of server provided data

jessie1) cae-jessie-backports; urgency=medium + + * Non-maintainer upload. + * Backport a few features from libpam-ldap-186: + * Noramlize username by returning server provided attribute instead of user +provided attribute. + * Also limit the attributes fetched from the LDAP server. + + -- Brian Krot

Bug#844666: libpam-ldap-186: regression: reads from the wrong conf file

ackports; urgency=medium + + * Non-maintainer upload. + * Backporting for jessie. + * Also update debian/rules to use the old /etc/pam_ldap.conf file by default + instead of /etc/ldap.conf + + -- Brian Kroth Fri, 28 Oct 2016 17:13:57 -0500 + libpam-ldap (186-1) unstable; urgency=medium

Bug#858373: apache2: segfaults upon recieving bad request when using worker/event mpm and cgid errordoc

Package: apache2.2-common Version: 2.2.22-13+deb7u8 Severity: normal Tags: security Dear Maintainer, We have some websites running on Debian Wheezy, so still using Apache 2.2.22, that are configured either in Worker or Event MPM (so are using mod_cgid in what follows), and have a custom "Error

Bug#828006: systemd: "quiet" kernel boot parameter overrides LogLevel= in /etc/systemd/system.conf

Package: systemd Version: 215-17+deb8u4 Severity: normal Dear Maintainer, Per [1], the current version of systemd in Debian Jessie (v215) has an issue that makes the "quiet" kernel boot parameter override values of LogLevel= in the /etc/systemd/system.conf file (mine has LogLevel=info explici

Bug#828006: systemd: "quiet" kernel boot parameter overrides LogLevel= in /etc/systemd/system.conf

Michael Biebl 2016-06-23 23:41: Control: tags -1 + moreinfo Hi Brian Am 23.06.2016 um 19:09 schrieb Brian Kroth: > Per [1], the current version of systemd in Debian Jessie (v215) has an issue that makes the "quiet" kernel boot parameter override values of LogLevel= in the

Bug#828006: systemd: "quiet" kernel boot parameter overrides LogLevel= in /etc/systemd/system.conf

Brian Kroth 2016-06-24 13:21: Michael Biebl 2016-06-23 23:41: Control: tags -1 + moreinfo Hi Brian Am 23.06.2016 um 19:09 schrieb Brian Kroth: Per [1], the current version of systemd in Debian Jessie (v215) has an issue that makes the "quiet" kernel boot parameter override

Bug#828006: systemd: "quiet" kernel boot parameter overrides LogLevel= in /etc/systemd/system.conf

Awesome, thanks! On Tue, Jun 28, 2016, 15:15 Michael Biebl wrote: > Control: tags -1 = patch > > Hi Brian, > > Am 28.06.2016 um 03:09 schrieb Brian Kroth: > > Hi, I've done a little bit of testing with the patch and it does indeed > > appear to fix the issue. H

Bug#756062: arpwatch fails with "bad interface vlan14: vlan14: no IPv4 address assigned"

Package: arpwatch Version: 2.1a15-1.2 Severity: important Dear Maintainer, This is very similar to an old bug reported here: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=240399 * What led up to the situation? I upgraded my arpwatch machine from squeeze to wheezy. * What exactly did

Bug#858373: help needed to complete regression fix for apache2 Bug#858373

o offer at the moment. Cheers, Brian On Fri, Jul 21, 2017, 08:44 Antoine Beaupré wrote: > TL;DR: New proposed package (deb7u11) doesn't ctually show a new > regression, please test: > > > https://people.debian.org/~anarcat/debian/wheezy-lts/apache2_2.2.22-13+deb7u11_amd64.cha

Bug#842202: lightdm combined with pam_ldap and mixed case usernames results in broken group enumeration, etc.

an/changelog 2014-11-04 14:58:17.0 -0600 +++ patched/lightdm-1.10.3/debian/changelog 2016-10-26 14:53:31.191071134 -0500 @@ -1,3 +1,10 @@ +lightdm (1.10.3-3.1) UNRELEASED; urgency=medium + + * Non-maintainer upload. + * With a patch to normalize the username returned by PAM via an NSS look

Bug#844666: libpam-ldap-186: regression: reads from the wrong conf file

n't let it copy the /etc/ldap.conf file in - let debconf handle that as +before. + + -- Brian Kroth Fri, 28 Oct 2016 17:13:57 -0500 + libpam-ldap (186-1) unstable; urgency=medium * New upstream release diff -u -ruN pam-ldap.bak/libpam-ldap-186/debian/rules pam-ldap/libpam-ldap-

Bug#845681: wishlist: libpam-ldap-standalone: a libpam-ldap package copy that can be used with libpam-ldapd

default +instead of /etc/ldap.conf + * Fixup build rules for pure dh instead of cdbs. + * Don't let it copy the /etc/ldap.conf file in - let debconf handle that as +before. + * Add a libpam-ldap-standalone package. + + -- Brian Kroth Fri, 28 Oct 2016 17:13:57 -0500 + libpam-ld

Bug#844666: libpam-ldap-186: regression: reads from the wrong conf file

Brian Kroth 2016-11-23 15:44: FYI, the patch I had attached last time is wrong. I'd just copied and pasted from the old one, but that used cdbs, whereas this doesn't. I think this one should be better, though I'm no packaging expert. Let me know if you have any commen

Bug#837183: systemd: unprivileged call to systemd-resolve starts systemd-resolved even when masked

Package: systemd Version: 230-7~bpo8+2 Severity: normal Tags: security Dear Maintainer, systemd appears to start systemd-resolved, even when it's been masked, in the background even when an unprivileged user calls systemd-resolve. However, calls to start the service manually via systemctl are

Bug#837183: systemd: unprivileged call to systemd-resolve starts systemd-resolved even when masked

Michael Biebl 2016-09-09 23:33: Am 09.09.2016 um 22:47 schrieb Brian Kroth: Package: systemd Version: 230-7~bpo8+2 Severity: normal Tags: security Dear Maintainer, systemd appears to start systemd-resolved, even when it's been masked, in the background even when an unprivileged user

Bug#837183: systemd: unprivileged call to systemd-resolve starts systemd-resolved even when masked

Oh, I guess I have an idea what's happening. systemd-resolve triggers the start via D-Bus activation. Yeah, that was my guess as well. Just seemed wrong to me given that the unit providing that service is masked. /usr/share/dbus-1/system-services/org.freedesktop.resolve1.service For the

Bug#837183: systemd: unprivileged call to systemd-resolve starts systemd-resolved even when masked

Felipe Sateler 2016-09-10 12:45: Control: forwarded -1 https://github.com/systemd/systemd/issues/4122 On 9 September 2016 at 19:36, Michael Biebl wrote: Am 10.09.2016 um 00:26 schrieb Michael Biebl: So, you'll also need to mask that name, i.e dbus-org.freedesktop.resolve1.service https://g

Bug#831894: systemd: "Out of memory" timing error when calling systemctl in pipeline

Package: systemd Version: 215-17+deb8u4 Severity: normal Dear Maintainer, Hi, I was trying to do some simple systemctl scripting for some service change rollouts and discovered what looks to be a timing bug related to calling systemctl in a pipeline. When called like this we get an "Out of me

Bug#832117: cfengine2: lock name collision with slow preceeding actions results in some rules not being performed

Package: cfengine2 Version: 2.2.10-5 Severity: normal Hi, So, first let me preface this with the understanding that cfengine2 is very old code and not being maintained anymore, so I'll understand if you don't accept the patches I'm proposing. However, since it isn't changing much, cfengine2

Bug#535475: open-vm-tools: new version (2009.06.18-172495) available

vmtoolsd also exits immediately. Seems to be missing something. Attached is an strace. Brian execve("/usr/bin/vmtoolsd", ["vmtoolsd"], [/* 21 vars */]) = 0 brk(0) = 0x9d93000 access("/etc/ld.so.nohwcap", F_OK) = -1 ENOENT (No such file or directory) mmap2(NUL

Bug#532321: fai-client 3.2.20: setup-storage with preserve_reinstall and lvm fails

Package: fai-client Version: 3.2.17~lenny1, 3.2.20 So the basic problem is that the setup-storage script doesn't properly find the logical volumes it's supposed to preserve when they exist. Here's a full example: - First, a disk_config # TEST # 2009-06-01 # bpkroth # # This file is a disk_confi

Bug#535471: ocfs2-tools: new version (1.4.2) available

Package: ocfs2-tools Version: 1.4.2-1 Severity: wishlist A new version of ocfs2-tools is available and includes a number of nice features including: inline-data (data-in-inode), relatime, xattr, acls, jbd2, etc. Some of these were supported by previous kernels, but the tools support necessary to

Bug#535475: open-vm-tools: new version (2009.06.18-172495) available

Package: open-vm-tools Version: 2009.06.18-172495 Severity: wishlist A new version of open-vm-tools is available [1] which may help with the following bugs as well as building modules for 2.6.30 kernels: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=525816 http://bugs.debian.org/cgi-bin/bugrep

Bug#535475: open-vm-tools: new version (2009.06.18-172495) available

Excellent :) Thank you very much, Brian Daniel Baumann 2009-07-02 16:14: > Brian Kroth wrote: > > A new version of open-vm-tools is available [1] which may help with the > > following bugs as well as building modules for 2.6.30 kernels: > > i know.. i've already

Bug#568203: fai-client 3.3.2: device2grub does not match qemu/kvm virtio devices (eg: /dev/vda)

Package: fai-client Version: 3.3.2, 3.3.3 As the subject says, device2grub fails to match devices of the form /dev/vda which appear from the use of virtio disks in qemu/kvm guests. Basically a 'v' needs to be added in line 20. eg: $device=~ m#^(/dev/(?:[sh]d\D becomes $device=~ m#^(/dev/(?:[s

Bug#568794: fai-client 3.3.3: setup-storage fails to match some squeeze programs output

Package: fai-client Version: 3.3.3 There are actually two problems in this bug report. Both are essentially problems with regex matching of program output that has changed slightly with squeeze. I have supplied a patch for both. 1) squeeze's mdadm reports arrays using the path /dev/md/0 instead

Bug#585756: mysql-server: debian-sys-maint user missing SHOW VIEW privilege

Package: mysql-server-5.0 Version: 5.0.51a-24+lenny4 The debian-sys-maint mysql user created in the postinst scripts of the mysql-server package is missing the SHOW VIEW privilege. This prevents the user from performing certain dump operations which are useful for scripting cronned mysql backups

Bug#590491: virt-manager 0.8.4-4~bpo50+2 error on new virtual machine dialog for usermode sessions

Package: virt-manager Version: 0.8.4-4~bpo50+2 When attempting to create a new VM using the virt-manager dialogs attached to a a usermode session (eg: virt-manager -c qemu:///session) the following error is returned: 2010-07-26 14:00:36,800 (create:314): Error setting create wizard conn state. Tr

Bug#583319: slapd: built-in schema for uidNumber/gidNumber does not have ordering directive

> > Package: slapd > > Version: 2.4.11-1+lenny1 > > Severity: normal > > > > Hello, > > > > It is frequently useful to be able to do searches like > > (uidNumber>=1). This used to be possible by munging the NIS > > schema to include: > > ORDERING integerOrderingMatch > > > > on the uidNumber a

Bug#583319: slapd: built-in schema for uidNumber/gidNumber does not have ordering directive

Brian Kroth 2010-07-27 16:52: > > > Package: slapd > > > Version: 2.4.11-1+lenny1 > > > Severity: normal > > > > > > Hello, > > > > > > It is frequently useful to be able to do searches like > > > (uidNumber>=1

Bug#616172: clamav-daemon doesn't listen on ipv6 [::]

Török Edwin 2011-03-03 12:45: > BTW you can set clamd to listen to 127.0.0.1, and tunnel a connection to > it using ssh, which supports IPv6. stunnel would probably be even better, but in either case ... yuck. Brian signature.asc Description: Digital signature

Bug#616172: clamav-daemon doesn't listen on ipv6 [::]

Török Edwin 2011-03-03 12:35: > On 2011-03-03 00:15, Brian P Kroth wrote: > > Package: clamav-daemon > > Version: 0.96.5+dfsg-1.1 > > Severity: normal > > Tags: ipv6 > > > > > > I'm trying to get clamd to listen over ipv6 (eg ::) but no options I've > > fed TCPAddr seem to allow for this - they

Bug#619408: apache2.2-common: mod_authnz_ldap require directives unrecognized if loaded after mod_authnz_default

Stefan Fritsch 2011-03-23 23:01: > On Wed, 23 Mar 2011, Brian P Kroth wrote: > >In the default configuration mod_authnz_ldap.load is symlinked from > >mods-available to mods-enabled but that orders it (lexicographically) > >after the symlink to load mod_authnz_default. This causes a number of > >

Bug#583319: [Pkg-openldap-devel] Bug#583319: slapd: built-in schema for uidNumber/gidNumber does not have ordering directive

Arthur de Jong 2010-07-29 22:53: > On Tue, 2010-07-27 at 18:17 -0700, Quanah Gibson-Mount wrote: > > In any case, adding an ORDERING rule for them breaks the RFC's, and > > OpenLDAP does its best to remain RFC compliant in core features. I would > > suggest filing a new RFC that updates the ru

Bug#566727: linux-image-2.6.32 missing memory cgroup controllers

Package: linux-image-2.6.32-trunk-amd64 Version: 2.6.32-5 Severity: wishlist Support for memory cgroups controllers are not included in the new 2.6.32 kernel. This would be nice say for putting limits on a how much memory a group of VMs can use. I believe the following two options need to be ena

Bug#566727: linux-image-2.6.32 missing memory cgroup controllers

maximilian attems 2010-01-25 11:51: > see ongoing discussions about lxc flavour, you might want to jump in. Sure, where can I find it? > current conclusion is that we might enable aboves, > but disable it on boot with modprobe.conf to not get overheads > for the generic linux images. That wo

Bug#579249: package request: rt-extension-commandbymail

Package: rt-extension-commandbymail Severity: wishlist To someone more experienced in package maintenance than myself, please consider adding a package for the RT (Request Tracker) extension CommandByMail. http://search.cpan.org/~falcone/RT-Extension-CommandByMail/lib/RT/Extension/CommandByMail.

Bug#607685: configs

Attached are the configs I'd mentioned. pxelinux.cfg.tar.bz2 Description: Binary data signature.asc Description: Digital signature

Bug#607685: syslinux-common: can't pxeboot with several *.c32 files in version 2:4.02+dfsg-7

Daniel Baumann 2010-12-21 07:14: > Hi, > > can you please try with 4.03+dfsg-3 from experimental? the problem > in pxelinux is supposedly fixed there. > > Regards, > Daniel That seems to have solved it. Thanks very much, Brian signature.asc Description: Digital signature

Bug#586888: patch results

FYI, I've tested your patch against the 2.8.1 package from backports and it seems to work. It wouldn't apply against the 2.7.4 package in lenny. Thanks for catching this and supplying the patch. It's been an oddity we couldn't nail down for a while. Brian signature.asc Description: Digital si

Bug#632350: fai-client: exporting boot cmdline arguments with dashes (eg: live-netdev=eth0) results in an error

Package: fai-client Version: 3.4.8 Severity: normal I recently discovered that booting machines with multiple NICs would periodically result in a hang during the boot process. Some digging through the live-boot-initramfs-tools (2.0.15-1) scripts (specifically /usr/share/initramfs-tools/scrip