Processing of di-netboot-assistant_0.54_amd64.changes
di-netboot-assistant_0.54_amd64.changes uploaded successfully to localhost along with the files: di-netboot-assistant_0.54.dsc di-netboot-assistant_0.54.tar.xz di-netboot-assistant_0.54_all.deb di-netboot-assistant_0.54_amd64.buildinfo Greetings, Your Debian queue daemon (running on host usper.debian.org)
di-netboot-assistant_0.54_amd64.changes ACCEPTED into unstable
Accepted: -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Sat, 09 Jun 2018 09:24:37 +0300 Source: di-netboot-assistant Binary: di-netboot-assistant Architecture: source all Version: 0.54 Distribution: unstable Urgency: medium Maintainer: Debian Install System Team Changed-By: Andreas B. Mundt Description: di-netboot-assistant - Debian-Installer netboot assistant Changes: di-netboot-assistant (0.54) unstable; urgency=medium . * Fix menu entries for EFI boot in generated 'grub.cfg'. * Make mirror selection in preseeding example more robust. Checksums-Sha1: 5a2982fd067982efe9085004261210e7778ca75a 1893 di-netboot-assistant_0.54.dsc 4f0eefbcd1b3e81bd44952f538c34a1e29140f31 38820 di-netboot-assistant_0.54.tar.xz 1e519e074f076c034314b4f1e9667687b5cd3918 40420 di-netboot-assistant_0.54_all.deb c4be5b45913b872b42e02c8951d31d420777e6e4 5514 di-netboot-assistant_0.54_amd64.buildinfo Checksums-Sha256: ba2763cddc439c45e3156563ca73146f1a8d30e097c73c5aef81ad2c66d489cb 1893 di-netboot-assistant_0.54.dsc e4e7a8d01efde26095d32a439608a93a72d60ef3368ba81e3e6ab345dbbae0f0 38820 di-netboot-assistant_0.54.tar.xz a6fa12e5e6f66f0c4ca754887ef5610056b75ec390a075b531690453151f2ad6 40420 di-netboot-assistant_0.54_all.deb 85d03d0ac0a3fa649f80dcc6046206718f8606417a708a18ed0d78e70f1c4cec 5514 di-netboot-assistant_0.54_amd64.buildinfo Files: 8afa41c91cefa0bb470232e0ecbfbcda 1893 utils optional di-netboot-assistant_0.54.dsc aae1585ab2c14d66813db5b40f3a5ca4 38820 utils optional di-netboot-assistant_0.54.tar.xz a215d996a5a3693ec5728eeabad20c9b 40420 utils optional di-netboot-assistant_0.54_all.deb 45ddd794d9dd4a4d866256db52404a2a 5514 utils optional di-netboot-assistant_0.54_amd64.buildinfo -BEGIN PGP SIGNATURE- iQIzBAEBCgAdFiEEk4pc7h4pDeJV2ayYsB/qhGF7WG0FAlsbd2AACgkQsB/qhGF7 WG2ZrA//SXBLSpHx00WOC+oxz9BelnXNWypkhKElAJ6c1StCscmiVAXOqMIFpI+n fxdYpE3xwbfdHYavRMU3EN2Y54ONucPEEKF1wtKX32lNLi5SO/0NVDnZ75CY8HOu 1cxF6ga7XAApVmS7N452FwflsCUeaqvhVvC66ANbaC2ZzXisiLI5LdVim6SfDxpZ Au9y3DfdWl6zvv4YkooSbmT2TOkVu4jh5rsTm78MFqkLh5edTWVH+Ofwy+/m0tny 14iJZDjQaGnltDtUDPp+9D0xJJtTNzhrzjrqqF8KuR5pt5zoXVaQ9AKmShmuTqNW t3d5Ggp9RqUo6bgZJkWgV6N7ETyxQdLInBVjbJJKItyckWs6WkX+No2cYAWjT5Oj arlVE/8cNID4aYwJ2VeO6oImDFYENQVM0smKn9dRgAMTCTin/8XDg2HJxcnMzQZH Go8XbvXjiDRdZMMY3+DrlYMZi0bU15pRGrN7dy0zuGVv6ua15eMBCFi0XNWH3F9S ee390SuIA/YIRMAk0tcQCm92JhoCILNGjCETpMXJobObkfUQtgmoRQxX51e0ixNB bzcocUX17MxpAFmx4L+SlLicHG14cN5iFNITt1h6AM+TaTunVwLM4lUmaG5eR4+l FAZbS2rEo2/bw5KgxAGZOKgICpuY/oWoWSDjZqnc6+d0G+4CPeg= =JYss -END PGP SIGNATURE- Thank you for your contribution to Debian.
Bug#736126: Please install haveged on physical machines
On 6/9/18 12:41 AM, Nicolas Braud-Santoni wrote: > On Fri, Jun 08, 2018 at 07:37:09PM +, Holger Levsen wrote: >> On Fri, Jun 08, 2018 at 09:27:10PM +0200, Nicolas Braud-Santoni wrote: >>> On virtual machines, however, the data that the HAVEGE algorithm produces >>> is not necessarily unpredictable [1]; hence, we shouldn't install haveged >>> on those environments. >> interesting, thanks! sadly it doesnt say which virtualisation environments >> were/are affected. > IIRC, back then VMware ESXi was the only platform virtualizing the rdtsc > instruction, but 1) I do not have access to it to test (nor do I want to) > 2) other virtualization platforms, now or in the future, might do this too. https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Publikationen/Studien/ZufallinVMS/Randomness-in-VMs.pdf?__blob=publicationFile&v=3 has an interesting discussion of the various problems in VMs, but sadly is also quiet in a bunch of areas because they could not conclusively deduce *from documentation* what happens with certain hypervisors. On the other hand they list a bunch of sources we should probably all try to mix in, on both real and virtualized hardware. >From a threat model perspective we should not try to defend against an actively malicious hypervisor. And if people want to very accurately emulate the hardware so that virtualization is not detectable, they might not want randomness either / should arrange for it differently if they need it. So the question is if we can prevent people from shooting themselves into the foot and making their life actively worse with this change. Kind regards Philipp Kern
Re: Installation guide link possibly incorrect
Hello all El 08/06/18 a las 23:21, Holger Wansing escribió: > Hi, > > Holger Wansing wrote: >> Am Freitag, 8. Juni 2018 schrieb Marta Binaghi: >>> Dear *, >>> >>> I wanted to get the installation guide for stretch, but from the page >>> https://www.debian.org/releases/stable/installmanual >>> clicking on the 64-bit PC architecture I get to a guide which says: >>>"This document contains installation instructions for the Debian >>> GNU/Linux 10 system (codename “buster”)" >>> >>> Am I missing something or is the link not correct? >> >> You are right. >> We (installer team) already noticed this and are working >> on it. > > We had the same situation in 2016 with jessie/stretch manual. > I have already adapted the lessoften cron script in > https://salsa.debian.org/webmaster-team/cron/commit/f02a61c6d43c3b2f141ad64a837c33fbd0f56fb8 > > Today I found the relevant mailinglist entries, here: > https://lists.debian.org/debian-boot/2016/03/msg00200.html > where I read that some more action is needed. > > Laura: could you help us again with this? > In above mailinglist entry you have posted the commands needed back > in 2016... > I'm running the commands now in www-master.debian.org in order to retrieve the Stretch installation guide again. It's taking a while because of the number of architectures, languages and formats, but I hope it will be online in the next hours. For reference, this is what I've run: ls -t1 /srv/www.debian.org/cron/ftpfiles/pool/installation-guide_*.dsc | head -1 sudo -u debwww dpkg-source -sn -x /srv/www.debian.org/cron/ftpfiles/pool/installation-guide_20180603.dsc Now running: cd installation-guide-20180603/build && sudo -u debwww manual_release=stretch destination=/srv/www.debian.org/installmanual/stretch/ ./buildweb.sh > /srv/www.debian.org/installmanual/stretch.log 2>&1 and when it finishes I'll run: sudo -u debwww cp -a /srv/www.debian.org/installmanual/stretch/* /srv/www.debian.org/www/releases/stretch/ Cheers -- Laura Arjona Reina https://wiki.debian.org/LauraArjona
Re: Installation guide link possibly incorrect
Hello again El 09/06/18 a las 18:29, Laura Arjona Reina escribió: > > ls -t1 /srv/www.debian.org/cron/ftpfiles/pool/installation-guide_*.dsc | > head -1 > grr, this command tells me the last version of installation-guide, which is for buster, not stretch. Unfortunately I only noticed after finishing the build. I'm running the commands again with the last version available for stretch: sudo -u debwww dpkg-source -sn -x /srv/www.debian.org/cron/ftpfiles/pool/installation-guide_20170614.dsc cd installation-guide-20170614/build && sudo -u debwww manual_release=stretch destination=/srv/www.debian.org/installmanual/stretch/ ./buildweb.sh > /srv/www.debian.org/installmanual/stretch.log 2>&1 sudo -u debwww cp -a /srv/www.debian.org/installmanual/stretch/* /srv/www.debian.org/www/releases/stretch/ Kind regards, -- Laura Arjona Reina https://wiki.debian.org/LauraArjona
