Package: firehol
Version: 1.214-1
Severity: wishlist
When using SNAT or DNAT it's useful and sometimes necessary to know the
address of the PPP interface. If that address is allocated dynamically,
it can't be predicted and put in the configuration. Instead, a line like
this in /etc/firehol/firehol
Package: firehol
Version: 1.214-1
Severity: critical
Tags: security sarge
Both firehol and firehol-wizard use known temporary file names in a
predictably named temporary directory (PID-based).
Neither program ensures that those directories are safe before blasting
the contents of files within. An
Matthias Urlichs wrote (a long time ago):
> The default configuration already limits which peers ntpd trusts.
The paranoid amongst us don't even want potentially malicious packets
getting that far. If ntpd has to inspect a packet to determine whether
or not it should trust that packet, it's potent
Package: shorewall
Version: 2.0.15-1
Severity: wishlist
Please add attached actions for Bacula backup system.
--
Sam "Eddie" Couter | mailto:[EMAIL PROTECTED]
Debian Developer| mailto:[EMAIL PROTECTED]
| jabber:[EMAIL PROTECTED]
OpenPGP fingerprint: A46B 9BB5 3148 7BE
Package: firehol
Version: 1.214-2
Severity: wishlist
Please support configuration of IPv6 firewalls.
--
Sam "Eddie" Couter | mailto:[EMAIL PROTECTED]
Debian Developer| mailto:[EMAIL PROTECTED]
| jabber:[EMAIL PROTECTED]
OpenPGP fingerprint: A46B 9BB5 3148 7BEA 1F05 5
Package: firehol
Version: 1.231-1
Severity: important
/sbin/firehol contains lines like:
if [ -f /var/lock/firehol ] ; then
echo "Stopping: FireHOL is already running."
exit 0
fi
... but nothing ever creates a file named /var/lock/firehol. Running
f
The option to start-stop-daemon that you're after is --oknodo.
--
Sam "Eddie" Couter | mailto:[EMAIL PROTECTED]
Debian Developer| mailto:[EMAIL PROTECTED]
| jabber:[EMAIL PROTECTED]
OpenPGP fingerprint: A46B 9BB5 3148 7BEA 1F05 5BD5 8530 03AE DE89 C75C
signature.asc
Package: libapache2-svn
Version: 1.1.4-2
Severity: serious
Justification: Breaks apache
The libapache2-svn package needs a few extra Depends: on SASL and SSL
libraries.
[EMAIL PROTECTED]:/var/log/apache2# /etc/init.d/apache2 start
Starting web server: Apache2/usr/sbin/apache2: error while loading
reopen 291680
stop
/sbin/firehol has:
--- copy 'n paste ---
#set out umask so that nobody could exploit the tempdir
umask 077
test -d "${FIREHOL_DIR}" && echo "Tempdir already exists. Please remove
it before proceeding" && exit 1
${MKDIR_CMD} -p "${FIREHOL_DIR}"
test $? -gt 0 && exit 1
--- end co
Package: wnpp
Severity: normal
I no longer use CDRW-Taper and would prefer it be maintained by a
regular user.
Doesn't appear to be actively maintained upstream.
--
Sam "Eddie" Couter | mailto:[EMAIL PROTECTED]
Debian Developer| mailto:[EMAIL PROTECTED]
| jabber:[EMAI
Package: beepcore-c0
Version: 0.2+cvs20030603-1
Tags: patch
If a message carries piggyback data that's expressed as a CDATA
element, beepcore parses it incorrectly and chops the final ">" off.
Patch attached.
--
Sam "Eddie" Couter | mailto:[EMAIL PROTECTED]
Debian Developer| mailto:[EMAI
Please ignore the patch I sent in the bug report; it causes more problems
than it fixes.
The bug report is accurate, the patch is shoddy. I'll be working on a
new one.
--
Sam "Eddie" Couter | mailto:[EMAIL PROTECTED]
Debian Developer| mailto:[EMAIL PROTECTED]
| jabber:
Package: beepcore-c0
Version: 0.2+cvs20030603-1
Tags: patch
xml_normalize_length() and xml_normalize_worker() disagree about the
handling of CDATA sections. This leads to underruns when sending
CDATA piggyback data in channel confirmations.
Not-strictly-correct but probably good-enough-in-nearly-
Package: ipkungfu
Version: 0.5.2-3
Severity: critical
Justification: renders entire system inaccessible
Don't do this:
# apt-get install ipkungfu
Because then you have to do this:
- Grab spare monitor and keyboard
- Lug spare monitor and keyboard across the room/city/state/country
- Crawl into
I'm seeing the same behaviour on an AMD Athlon XP which is i386
architecture, so it's not restricted to amd64 only.
--
Sam "Eddie" Couter | mailto:[EMAIL PROTECTED]
Debian Developer| mailto:[EMAIL PROTECTED]
| jabber:[EMAIL PROTECTED]
OpenPGP fingerprint: A46B 9BB5 314
Matthijs Mohlmann <[EMAIL PROTECTED]> wrote:
> Are you still experiencing this problem ?
No, because I haven't been using PowerDNS for a while now. I don't know
if this problem was eventually fixed or not.
--
Sam "Eddie" Couter | mailto:[EMAIL PROTECTED]
Debian Developer| mailto:[EMAIL PRO
Package: beepcore-c
Version: 0.2+cvs20030603-1
"debuild; debuild clean" leaves cruft lying around that dpkg-source
can't handle for the next build:
dpkg-source: building beepcore-c in beepcore-c_0.2+cvs20030603-1.diff.gz
dpkg-source: cannot represent change to unix/.libs/libbeepcore-c.so.0.1.0:
tags 302652 +patch
stop
Trivial patch for build attached.
--
Sam "Eddie" Couter | mailto:[EMAIL PROTECTED]
Debian Developer| mailto:[EMAIL PROTECTED]
| jabber:[EMAIL PROTECTED]
OpenPGP fingerprint: A46B 9BB5 3148 7BEA 1F05 5BD5 8530 03AE DE89 C75C
--- ../beepcore-c.o
found 321666 0.91-7
found 321666 0.91-8
stop
Without details on the bug, I can't be 100% sure, but I'm seeing this
same error message with both 0.91-8 and 0.91-7. Device permissions look
fine, ptal-printd is running as the hpojlp user, and hpojlp is in the lp
group.
--
Sam "Eddie" Couter | mail
The problem is that ptal-mlcd is running as a non-root user and is
trying to use iopl() to grant itself permission to directly mess with
the parallel IO port. iopl() only works for root.
Looks like this bug only affects parallel printers.
The iopl() man page says "Permissions are inherited by for
Package: firehol
Version: 1.231-3
Please provide a way to safely run firehol from PPP scripts even if it
hasn't yet finished running from the boot process. I used to use
'condrestart' to do this, but the meaning of that command seems to have
changed.
It needs to run from the ip-up scripts so IP a
Fix: add --oknodo to the start-stop-daemon invocations in the stop,
restart and reload actions in the init script.
--
Sam Couter | mailto:[EMAIL PROTECTED]
| jabber:[EMAIL PROTECTED]
OpenPGP fingerprint: A46B 9BB5 3148 7BEA 1F05 5BD5 8530 03AE DE89 C75C
signature.asc
Description: Digital signature
Ross Boylan <[EMAIL PROTECTED]> wrote:
> README.Debian says
> "$DUMP_DIR should be on a large partition; one with enough free space to
> hold all of your dumped backups."
>
> Install.html says
> "Since the PORT-WRITE command is now supported you no longer need to
> configure a holding disk."
>
>
Package: libglibmm-2.4-1
Version: 2.4.6-1
Multiple inheritance of the form of "The Diamond of Death" causes an
assertion failure in Glib::Object::Object().
Test code attached.
Compile with:
g++ test.cc -o test `pkg-config glibmm-2.4 --cflags --libs`
Run with:
./test
And see:
glibmm-ERROR **:
Package: firehol
Version: 1.214-1
Severity: important
firehol bitches and moans if neither wget or curl are installed, even if
the given argument isn't valid:
-
[EMAIL PROTECTED]:/lib/firehol# firehol helpme
ERROR: Command 'curl' not found in the system path.
FireHOL requires this c
key
used to encrypt a different volume.
Fix: Just add "--showkeys" to the dmsetup invocation in
/lib/cryptsetup/scripts/decrypt_derived
--
Sam Couter | mailto:[EMAIL PROTECTED]
| jabber:[EMAIL PROTECTED]
OpenPGP fingerprint: A46B 9BB5 3148 7BEA
ed. $MAPPER/$dst
contains data." >&2
echo " - removing the crypto device $dst" >&2
do_close
fi
--
Sam Couter | mailto:[EMAIL PROTECTED]
| jabber:[EMAIL PROTECTED]
OpenPGP fingerprint: A46B 9BB5 3148 7BEA 1F05 5BD5 8530 03AE DE89 C75C
signature.asc
Description: Digital signature
rc2-1, fixing this bug as well as many
> others is currently pending due to build issues.
I've installed that version and this bug isn't fixed yet.
--
Sam Couter | mailto:[EMAIL PROTECTED]
| jabber:[EMAIL PROTECTED]
OpenPGP fingerprint: A46B
ge go away, running
update-passwd brings it back.
--
Sam Couter | mailto:s...@couter.id.au
signature.asc
Description: Digital signature
t will leave it alone and remember that response for all
> subsequent upgrades.
This works. Thanks. I had already tried dpkg-reconfigure with low
priority, but not while the shell was changed.
--
Sam Couter | mailto:s...@couter.id.au
signature.asc
Description: Digital signature
ed to be just a temporary problem. I am reporting this against the
plugin, not the package that broke it, as I expect the plugin will be
upgraded as part of the plan. If that's not the case, feel free to
reassign the bug.
--
Sam Couter | mailto:s...@couter.id.au
OpenPGP fingerprint: A46B
pt-listbugs:227:in `require'
from /usr/sbin/apt-listbugs:227
--
Sam Couter | mailto:[EMAIL PROTECTED]
OpenPGP fingerprint: A46B 9BB5 3148 7BEA 1F05 5BD5 8530 03AE DE89 C75C
signature.asc
Description: Digital signature
restart_freevo_encodingserver.
--
Sam Couter | mailto:[EMAIL PROTECTED]
OpenPGP fingerprint: A46B 9BB5 3148 7BEA 1F05 5BD5 8530 03AE DE89 C75C
signature.asc
Description: Digital signature
exchanged in both directions. The server
prints the TLS: Initial packet log message but never the VERIFY message.
Upgrading the client to 2.1~rc9-3 and keeping the server on 2.1~rc7-1,
the VPN continues to work.
--
Sam Couter | mailto:[EMAIL PROTECTED]
OpenPGP fingerprint: A46B 9BB5 3148 7BEA
llowing mailing list posting for some more information:
http://www.mail-archive.com/[EMAIL PROTECTED]/msg18203.html
--
Sam Couter | mailto:[EMAIL PROTECTED]
OpenPGP fingerprint: A46B 9BB5 3148 7BEA 1F05 5BD5 8530 03AE DE89 C75C
signature.asc
Description: PGP signature
Package: viking
Severity: wishlist
New upstream version (0.9.7) is available.
--
Sam Couter | mailto:s...@couter.id.au
OpenPGP fingerprint: A46B 9BB5 3148 7BEA 1F05 5BD5 8530 03AE DE89 C75C
signature.asc
Description: Digital signature
that this is
true. I haven't tested to see if it breaks anything else.
--
Sam Couter | mailto:[EMAIL PROTECTED]
| jabber:[EMAIL PROTECTED]
OpenPGP fingerprint: A46B 9BB5 3148 7BEA 1F05 5BD5 8530 03AE DE89 C75C
signature.asc
Description: Digital signature
environment
variables too.
--
Sam Couter | mailto:[EMAIL PROTECTED]
| jabber:[EMAIL PROTECTED]
OpenPGP fingerprint: A46B 9BB5 3148 7BEA 1F05 5BD5 8530 03AE DE89 C75C
signature.asc
Description: Digital signature
Package: amanda-server
Version: 1:2.5.2p1-5
Severity: important
Amanda doesn't know where the SSH executable is. Build with SSH
installed or by adding "SSH=/usr/bin/ssh" to the beginning of the
./configure line in debian/rules.
Ubuntu bug here:
https://bugs.launchpad.net/ubuntu/+source/amanda/+
ably not
suitable for release as it confused the partitioner and slowed it down
quite a bit. Someone more familiar with the various interactions with
list-devices should come up with a better idea.
--
Sam Couter | mailto:[EMAIL PROTECTED]
| jabber:[EMAIL PROTECTED]
OpenPG
documented as it's not immediately obvious
which package contains gnome-autogen.sh.
--
Sam Couter | mailto:[EMAIL PROTECTED]
OpenPGP fingerprint: A46B 9BB5 3148 7BEA 1F05 5BD5 8530 03AE DE89 C75C
signature.asc
Description: Digital signature
Package: freevo
The freevo package creates a new user (freevo) and group in the postinst
script. The prerm script doesn't delete the user or the group.
--
Sam Couter | mailto:[EMAIL PROTECTED]
OpenPGP fingerprint: A46B 9BB5 3148 7BEA 1F05 5BD5 8530 03AE DE89 C75C
signatur
Package: firehol
Version: 1.256-1
Severity: minor
FireHOL version 1.231-7 knew about OpenVPN, while version 1.256-1 does
not.
Just add the following lines back into /sbin/firehol:
server_openvpn_ports="tcp/1194 udp/1194"
client_openvpn_ports="default"
--
Sam Couter
the value "YES" must be all uppercase.
--
Sam Couter | mailto:[EMAIL PROTECTED]
| jabber:[EMAIL PROTECTED]
OpenPGP fingerprint: A46B 9BB5 3148 7BEA 1F05 5BD5 8530 03AE DE89 C75C
signature.asc
Description: Digital signature
tting has changed.
> But I will add such a pointer.
Thanks.
--
Sam Couter | mailto:[EMAIL PROTECTED]
| jabber:[EMAIL PROTECTED]
OpenPGP fingerprint: A46B 9BB5 3148 7BEA 1F05 5BD5 8530 03AE DE89 C75C
signature.asc
Description: Digital signature
achine that can boot
from USB. The bug still exists in the daily build of 05-Nov-2007.
My opinion is that list-devices is at fault, not iso-scan.
The hack I've tried this time didn't seem to slow the installer down so
much, so I've included a patch just in case it's useful.
Package: cdrw-taper
Version: 0.3-7
Severity: wishlist
A new version (0.4) of CDRW-Taper has been made available:
http://www.tivano.de/software/amanda/Installation.shtml
--
Sam Couter | mailto:[EMAIL PROTECTED]
| jabber:[EMAIL PROTECTED]
OpenPGP fingerprint: A46B
severity 512883 grave
stop
Nightmare scenario I'm currently in:
gphoto2 --get-all-files && gphoto2 --delete-all-files
Photos gone. Explain to wife where photos went. Hastily rustle up SD
card reader, install FAT undelete utilities, hope it all turns out in
the end.
-
Package: openvpn
Severity: wishlist
The attached patch to /etc/network/if-up.d/openvpn allows for starting
more than one tunnel when an interface is configured using ifup/ifdown.
--
Sam Couter | mailto:[EMAIL PROTECTED]
| jabber:[EMAIL PROTECTED]
OpenPGP fingerprint
ilding support for P
python-vobject recommends no packages.
python-vobject suggests no packages.
-- no debconf information
--
Sam Couter | mailto:s...@couter.id.au
OpenPGP fingerprint: A46B 9BB5 3148 7BEA 1F05 5BD5 8530 03AE DE89 C75C
--- python-vobject-0.8.1c.orig/test_files/more_
50 matches
Mail list logo
