Re: pre-screening new package: SQLCipher, based on SQLite3

2012-10-01 Thread Hans-Christoph Steiner
On 10/01/2012 06:32 PM, Stephen Lombardo wrote: > Hello Florian, > > On Mon, Oct 1, 2012 at 1:57 PM, Florian Weimer wrote: >> Okay. Can your fork open unencrypted databases? Are there any symbol >> collisions with vanilla SQLite? >> > Yes, SQLCipher can open standard, unencrypted SQLite database

Re: pre-screening new package: SQLCipher, based on SQLite3

2012-10-01 Thread Stephen Lombardo
Hello Florian, On Mon, Oct 1, 2012 at 1:57 PM, Florian Weimer wrote: > > Okay. Can your fork open unencrypted databases? Are there any symbol > collisions with vanilla SQLite? > Yes, SQLCipher can open standard, unencrypted SQLite databases without a problem and it has the same public API and

Re: pre-screening new package: SQLCipher, based on SQLite3

2012-10-01 Thread Stephen Lombardo
Hello Hans, On Mon, Oct 1, 2012 at 12:47 PM, Hans-Christoph Steiner wrote: > On 09/28/2012 04:23 PM, Florian Weimer wrote: > > Why isn't it implemented as a VFS plugin? > > I don't know of any other precedent for a VFS plugin for adding > encryption support, do you? Maybe Stephen can speak more

Re: pre-screening new package: SQLCipher, based on SQLite3

2012-10-01 Thread Florian Weimer
* Stephen Lombardo: > I agree that implementing SQLCipher using a VFS plugin would work, and > we've considered it in the past. However, we've decided to stick with the > codec approach for now, given that some functionality could prove more > complex to implement and a major shift / rewrite could

Re: CVE-2011-1521 and CVE-2011-3389 - fixed packet

2012-10-01 Thread Michael Gilbert
On Mon, Oct 1, 2012 at 12:34 PM, Arne Wichmann wrote: > Hi, > > First: Could somebody perhaps enlighten me why all these issues show up > as unimportant in [2] but up to medium in the separate pages (e.g. [3]) That seems to be a tracker bug (possibly involving [squeeze],etc release-specific tags).

Re: pre-screening new package: SQLCipher, based on SQLite3

2012-10-01 Thread Hans-Christoph Steiner
On 09/28/2012 04:23 PM, Florian Weimer wrote: > * Hans-Christoph Steiner: > >> The tricky part is that it is a modified version of SQLite3, and lintian >> properly gives an error about that. But because of the features that >> SQLCipher provides, it must modify the core of SQLite to work, therefore

Re: CVE-2011-1521 and CVE-2011-3389 - fixed packet

2012-10-01 Thread Arne Wichmann
Hi, First: Could somebody perhaps enlighten me why all these issues show up as unimportant in [2] but up to medium in the separate pages (e.g. [3]) begin quotation from Michael Gilbert (in ): > On Mon, Sep 24, 2012 at 4:27 AM, Arne Wichmann wrote: > > begin quotation from Michael Gilbert (in

CVE-2012-3435: zabbix/testing

2012-10-01 Thread Dmitry Smirnov
Hi Raphael, Thank you for fixing CVE-2012-3435 in Squeeze. I've made a fix for Wheezy: http://anonscm.debian.org/gitweb/?p=collab-maint/zabbix.git;a=commitdiff;h=480ef5baede0f478a4a90a16b9453bc32b9f756d and uploaded source package to http://mentors.debian.net/debian/pool/mai