Bug#591791: [PATCH] Document generic and upstart-specific init-system requirements

Oh right, should've answered this mail together with the previous, sorry. On Fri, Mar 16, 2012 at 10:46:38PM +0100, Michael Biebl wrote: > > If invoke-rc.d intercepts and redirects the request to upstart (or > > systemd), should update-rc.d do the same? > > Say you run "update-rc.d disable", sho

Bug#591791: [PATCH] Document generic and upstart-specific init-system requirements

On Fri, Mar 16, 2012 at 10:05:32PM +0100, Michael Biebl wrote: > >> What happens in maintainers scripts that call invoke-rc.d service start? > >> Will they now suddenly all fail? How will invoke-rc.d behave when the > >> package both installs a upstart job and sysv init script? > > Doesn't this la

Bug#591791: [PATCH] Document generic and upstart-specific init-system requirements

On Fri, Mar 16, 2012 at 11:33:26PM +0100, Michael Biebl wrote: > >> Fwiw, this is a non-issue for systemd, as it treats sysv services and > >> native services alike. So during the upgrade, the old sysv based service > >> is stopped, systemd reloads the service definitions and sees that there > >> i

Re: Debian Policy about administrator X.509 certificate stores [was: Re: dovecot-common: please do not use /etc/ssl/certs for end-entity X.509 certificates (/etc/ssl/certs/dovecot.pem)]

On Mon, Apr 09, 2012 at 12:01:18PM -0400, Daniel Kahn Gillmor wrote: > >> Can you propose a mechanism such that this info would not get lost? > > > > X509 has a way to embed the trust in the certificate itself, see > > "TRUST SETTINGS" in openssl's x509 manpage. > > This looks like it only works

Re: Debian Policy about administrator X.509 certificate stores [was: Re: dovecot-common: please do not use /etc/ssl/certs for end-entity X.509 certificates (/etc/ssl/certs/dovecot.pem)]

On 04/09/2012 10:35 AM, Kurt Roeckx wrote: > On Mon, Apr 09, 2012 at 09:52:44AM -0400, Daniel Kahn Gillmor wrote: >> On 04/07/2012 12:46 PM, Kurt Roeckx wrote: >> >>> At least the certdata.txt file contains the information, you can >>> edit in iceweasel/firefox. >> >> edit at runtime or at compile

Re: Debian Policy about administrator X.509 certificate stores [was: Re: dovecot-common: please do not use /etc/ssl/certs for end-entity X.509 certificates (/etc/ssl/certs/dovecot.pem)]

On Mon, Apr 09, 2012 at 09:52:44AM -0400, Daniel Kahn Gillmor wrote: > On 04/07/2012 12:46 PM, Kurt Roeckx wrote: > > > At least the certdata.txt file contains the information, you can > > edit in iceweasel/firefox. > > edit at runtime or at compile time? system administrators ideally > shouldn'

Re: Debian Policy about administrator X.509 certificate stores [was: Re: dovecot-common: please do not use /etc/ssl/certs for end-entity X.509 certificates (/etc/ssl/certs/dovecot.pem)]

On 04/07/2012 12:46 PM, Kurt Roeckx wrote: > At least the certdata.txt file contains the information, you can > edit in iceweasel/firefox. edit at runtime or at compile time? system administrators ideally shouldn't have to recompile packages in order to add or drop system-wide default reliance o