Re: Security risks due to packages that are no longer part of Debian?

Florian Weimer wrote: > A tool which lists all packages which are no longer downloadable from > any APT source would be more helpful, I think. Does it already exist? Does apt-show-versions do what you want? apt-show-versions | grep 'No available version in archive' Bob signature.asc Descri

named: 'error sending response: unexpected error'

Yo! I run the DNS for a quite popular domain (I get something like 1-10 DNS requests per second, very spiky traffic) and frequently (0-5 times per hour) see this in my logs: | Jul 12 18:41:07 zbasel named[5317]: client 24.93.40.63#38829: error sending response: unexpected error I've never rec

Reports show IGTS is on it's way up riff

declarable First we would like to say Thank You to al| of our avid readers! We have had great success over the last few months and have become one of the most wide|y read investment newsletters in the wor|d. We have accomplished this by providing timely, accurate financial information with proven

Re: Addressing the recent zlib issue

On Tue, Jul 12, 2005 at 07:14:43PM +0200, Florian Weimer wrote: > * Mark Brown: > > Yes, although the main issue is likely to be people shipping a separate > > copy of the source. > Only by looking at the binary, you can tell if the copy which is > contained in the source tarball is actually used

Re: Addressing the recent zlib issue

On Tue, Jul 12, 2005 at 01:04:05PM -0400, Michael Stone wrote: > On Tue, Jul 12, 2005 at 07:55:08PM +0300, Mark Brown wrote: > >Yes, although the main issue is likely to be people shipping a separate > >copy of the source. > Not necessarily, because a tgz might include source that isn't actually

Re: New gzip packages fix several vulnerabilities

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Doing upgrade. (pfiou, lot of security issues lately) lundi 11 juillet, vers 18h, Martin Schulze écrivit : > > -- > Debian Security Advisory DSA 752-1 [EMAIL PROTECTED] > http:

Re: Addressing the recent zlib issue

* Mark Brown: > On Tue, Jul 12, 2005 at 06:40:55PM +0200, Florian Weimer wrote: > >> operations. Unfortunately, we have to check all architectures >> individually because spurious buildd configuration changes might >> trigger static linking of zlib. > > Yes, although the main issue is likely to b

Re: Addressing the recent zlib issue

On Tue, Jul 12, 2005 at 07:55:08PM +0300, Mark Brown wrote: Yes, although the main issue is likely to be people shipping a separate copy of the source. Not necessarily, because a tgz might include source that isn't actually used. Mike Stone -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] wit

Re: Addressing the recent zlib issue

On Tue, Jul 12, 2005 at 06:40:55PM +0200, Florian Weimer wrote: > operations. Unfortunately, we have to check all architectures > individually because spurious buildd configuration changes might > trigger static linking of zlib. Yes, although the main issue is likely to be people shipping a sepa

Re: New squid packages 2.4.6-2woody9 restarts very often.

Hi, Just had the same Problem today on a SuSE server, where a patch was released last week that adresses (among others) the same DNS spoofing issue. Looks like a common bug. Wiping the cache didn't help for me. I increased the debug level to 2 and found the following URL in my cache.log, immediat

Re: Addressing the recent zlib issue

* Mark Brown: >> If you've got a reasonable complete copy of the Debian package pool >> and you are willing to run Clamav across it, please respond to this >> message. > > Oh, I was actually just working on some other approaches to checking for > people doing this sort of stuff and right now I've

unsubscribe

-- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: Addressing the recent zlib issue

On Tue, Jul 12, 2005 at 05:59:01PM +0200, Florian Weimer wrote: > If you've got a reasonable complete copy of the Debian package pool > and you are willing to run Clamav across it, please respond to this > message. Oh, I was actually just working on some other approaches to checking for people do

Re: Addressing the recent zlib issue

* Javier Fernández-Sanguino Peña: > On Sun, Jul 10, 2005 at 03:59:43PM +0200, Florian Weimer wrote: >> Is anybody looking at this problem in a systematic manner, or should I >> just file bugs on the more likely candidates for a security update >> (dpkg and zysnc, based on the list above and assumi

Re: New squid packages 2.4.6-2woody9 restarts very often.

[EMAIL PROTECTED] <[EMAIL PROTECTED]> dixit: > I have tried to install Version 2.4.6-2woody9 of the squid package > on our Internet Gateway (Woody). There were no error messages > during upgrade, but our Client get no connection to the proxy > afterwards. I "fix" this temporary by reinstalling the

Re: Addressing the recent zlib issue

* Florian Weimer: > Is anybody looking at this problem in a systematic manner, or should I > just file bugs on the more likely candidates for a security update > (dpkg and zysnc, based on the list above and assuming that 1.1 is > indeed not affected). In the meantime, I've created Clamav signatur

New squid packages 2.4.6-2woody9 restarts very often.

Hello, I have tried to install Version 2.4.6-2woody9 of the squid package on our Internet Gateway (Woody). There were no error messages during upgrade, but our Client get no connection to the proxy afterwards. I "fix" this temporary by reinstalling the previous version 2.4.6-2woody8. Looking in

Re: Security risks due to packages that are no longer part of Debian?

On Tue, Jul 12, 2005 at 12:17:10PM +0200, Javier Fernández-Sanguino Peña wrote: > Well, you can list installed packages with either: > > $ dpkg --get-selections | egrep "[[:space:]]install" > [ will not show the version #s and might show half-installed packages ] > > $ dpkg -l "*" | grep ^ii > [

Ausencia / Abwesenheit

Muchas gracias por su mensaje. Del 11/07/05 al 05/08/05 no estaré localizable en la oficina. En casos urgentes pueden ponerse en contacto con Tomás Gutiérrez a través de [EMAIL PROTECTED] / Tel +34 945 29 71 13. Por favor, tenga en cuenta que su mensaje no se reenvía automáticamente. Besten Dank

Re: Security risks due to packages that are no longer part of Debian?

* Sam Morris: > You can use aptitude to discover obsolete packages on your system. See > > > for more info. Interesting feature. It doesn't work too well on unstable because of the C++ transition, but f

Re: Security risks due to packages that are no longer part of Debian?

On Tue, Jul 12, 2005 at 10:09:44AM +0200, Mike Gerber wrote: > > A tool which lists all packages which are no longer downloadable from > > any APT source would be more helpful, I think. Does it already exist? > > I have a slighty inefficient script for that. I believe there are better > ways to

Are you happy about your size and sexual performance?

Are you happy about your size and sexual performance? http://www.felmuh.com/ss/ A pessimist is never disappointed. My wife and I were happy for twenty years. Then we met. One does not learn how to die by killing others. Theories should be as simple as possible, but not simpler.

Re: Security risks due to packages that are no longer part of Debian?

> A tool which lists all packages which are no longer downloadable from > any APT source would be more helpful, I think. Does it already exist? I have a slighty inefficient script for that. I believe there are better ways to do what listallpackages does, unknown to the author of the script back

Re: Security risks due to packages that are no longer part of Debian?

On Monday 11 of July 2005 19:10, Christian Hammers wrote: > Hello > > If a User upgrades his woody system to sarge and one package that has > been part of woody is now no longer part of Debian nor being superseded by > another package, will apt-get warn the user that this package is a > potential s