On Wed, September 10, 2014 22:27, Yves-Alexis Perez wrote:
>> > I'm adding debian-www (contact point for all web pages) to CC: so they
>> > can get a look.
>>
>> This section is handled by the security team (people in the team have
>> commit access), but if they feel the need to let someone else fi
Hoi Tjipke,
On Sun, May 12, 2013 15:49, Andrei POPESCU wrote:
> [Sorry for the CC, I assumed you are not subscribed]
>
> On Du, 12 mai 13, 13:01:31, Tjipke van der Heide wrote:
>> "De volgende image bestanden hebben een grootte to 180MB", where 'to'
>> has to be 'tot'.
>
> I've copied the Dutch te
Hi,
> We sent the first batch to the Alioth users, and are quite happy that,
> among the 213 members of the Alioth webwml group we contacted, 104
> members already sent us back the agreement, and 44 other persons (who
> already provided content but who currently don't have commit access)
> sent it
Package: www.debian.org
Hi,
When going to the download page of a package on package.debian.org which
is in squeeze-backports, one is presented with a list of mirrors. Of
those, the following are dysfunctional:
Discontinued:
debian.acantho.net/backports.org
backports.essentkabel.com/backports.org
On Mon, February 27, 2012 14:03, Arne Wichmann wrote:
>> France-speaking area: Carl Chenet, Sylvestre Ledru
>> UK: ...
>> US: ...
>> Hispano America: Fernando Estrada, Gunnar Wolf
>> Brazil: Ana Caroll Comandulli, Marcelo Santana
>> India: Praveen Arimbrathodiyil
>> Taiwan: Andrew Lee
>
> -nl had a
seems like the web page you mention has not updated (yet). I'm CC'ing
debian-www, who maintain that infrastructure, so they can investigate.
Kind regards,
Thijs Kinkhorst
Debian Security Team
--
To UNSUBSCRIBE, email to debian-www-requ...@lists.debian.org
with a subject of &q
Hi,
On Sunday 13 March 2011 03:14:13 Ztatik Light wrote:
> all the latest changelogs aren't being posted..
>
> for example i have a security update from iceweasel 3.5.16-4 to 3.5.16-5...
>
> The latest version on packages.debian.org is listed properly as 3.5.16-5
> with the page at http://packag
On woansdei 30 Juny 2010, Raphael Geissert wrote:
> Please update the Security Team's section as follows:
>
> /Raphael Geissert/s/assistant/member/
> and add:
> assistant Luciano Bello
> assistant Sebastien Delafond
>
> Also, please remove the link to the Debian Handheld mailing list as it was
>
st under "How do I report
bad posts or bad behavior on the forums?" for more information:
http://ubuntuforums.org/announcement.php?f=48
Regards,
Thijs Kinkhorst
Debian Security Team
--
To UNSUBSCRIBE, email to debian-www-requ...@lists.debian.org
with a subject of "unsubscribe&quo
Hi Simon,
On Mon, July 7, 2008 19:55, Simon Paillard wrote:
> Indeed, the current solution doesn't handle DSA--x with x > 1.
> That is due to the workflow (we try to parse a mail without any strong
> structure, while the data are structured in dak / security-tracker, as far
> as I understood f
Hi Simon,
On Fri, June 13, 2008 12:32, Thijs Kinkhorst wrote:
> Hi Simon,
>
>
>> Applied as well :)
>>
>>
>>
>> (I assume that all DSA fit on a unique web page per year, assumption
>> true past years)
>>
>> So now, the only remaining manu
On Thu, July 3, 2008 15:48, Frank Lichtenheld wrote:
> On Thu, Jul 03, 2008 at 12:57:18PM +0200, Thijs Kinkhorst wrote:
>
>> On Tue, July 1, 2008 00:00, Frank Lichtenheld wrote:
>>
>>> Hmm, I can understand that some people don't want to see the
>>> experi
On Tue, July 1, 2008 00:00, Frank Lichtenheld wrote:
> Hmm, I can understand that some people don't want to see the experimental
> changelog, and to fix that at some point might be nice, I really don't
> see why you wouldn't want to have the newest version from
> stable/testing/unstable?
The PTS
Package: www.debian.org
Severity: normal
Hi,
When I want to view the 'current' changelog of phpmyadmin, as linked
from the PTS:
http://packages.debian.org/changelogs/pool/main/p/phpmyadmin/current/changelog
I get the stable changelog while I expected the unstable one. The
problem seems to be that
Hi Simon,
> Applied as well :)
>
>
> (I assume that all DSA fit on a unique web page per year, assumption
> true past years)
>
> So now, the only remaining manual work to do is the check step.
This script seems to be working fine now for a while and only in a few
cases do I need to change the out
Package: www.debian.org
Hi,
This page: http://packages.debian.org/sid/gnupg
has the following text:
xloadimage [not hppa, hurd-i386, ia64, sparc]
Graphics file viewer under X11
or imagemagick
image manipulation programs
also a virtual package provided by graphicsmagick-imagemagick-
Hey people,
There's an wml escaping problem in the cryptsetup instructions, as detailed
below by David Härdeman. I don't know how to escape that string, perhaps you
do?
thanks,
Thijs
On Saturday 17 May 2008 10:29, David Härdeman wrote:
> The info at http://www.debian.org/security/key-rollover/
Hi guys,
It would be great if the following could be incorporated into the key-rollover
page:
"The Iceweasel ("firefox") web browser functionality for generating X509
public/private keypairs (certificates) is not affected by this vulnerability.
Iceweasel uses nss, a different cryptography engi
On Wednesday 14 May 2008 12:50, Rene Mayrhofer wrote:
> What's the current status concerning an automated "fixer" package that
> would do all the work of re-created the keys like the openssh-server
> package currently does? I don't think it's reasonable to just distribute
> the fixed openssl and sa
On Wednesday 14 May 2008 11:16, Gerfried Fuchs wrote:
> I've asked several times on #debian-security about what to add to
> there, a question to [EMAIL PROTECTED] got unanswered so far, too. I would
> be fine to add any informations, I just don't like linking to a wiki
> page[1] for security relat
Hi Simon,
On Friday 11 April 2008 12:40, Simon Paillard wrote:
> On Fri, Apr 11, 2008 at 12:33:04AM +0200, Simon Paillard wrote:
> > Next step, discover the right link to lists.debian.org/.../msgN.html
>
> Applied as well :)
>
> (I assume that all DSA fit on a unique web page per year, assumpt
On Tue, February 5, 2008 23:02, Moritz Muehlenhoff wrote:
> Thijs volunteered to automate the processing of the advisories to webwml.
Yeah, I will. But until that's fixed, DSA's need to be added to the
website still. I'll do that, but of course cannot be sure I'll be present
every day to fix the n
On Thu, January 24, 2008 23:56, Moritz Muehlenhoff wrote:
> The solution would be a script, which is subscribed to d-s-a, transforms
> the advisory mails and auto-commits them. If a transformation error is
> detected, a note can be sent to [EMAIL PROTECTED] and fixed manually.
We are going to chan
Hi Daniel,
> Looking at http://www.debian.org/ today (2008-01-25), i noticed that
> the security section of the home page is out of date. I only lists through
> DSA 1467, which is nearly a week old at this point. There are
> 10 more-recent DSAs missing from the list.
> http://www.debian.org/secu
On Fri, November 9, 2007 12:43, MJ Ray wrote:
> "Hans-J. Ullrich" <[EMAIL PROTECTED]> wrote:
>
>> Well, I think, if a debian server would have been compromised, this
>> should be appear at once on the webside. Also, when the main server is
>> down, everyone should be informed about the non-reachabl
Package: www.debian.org
Severity: minor
The wiki returns a "200 OK" response for every page, even ones that
do not exist yet. It would be better if it returned a 404 so these
pages do not get crawled or indexed.
If it's a problem to accomplish that, then the page should at least
use a so complyi
Hello,
> The current list of 4 websites is a bit on the short side in my opinion
> anyway, with also only 1 out of 4 websites actually being
> Debian-specific. A simple google query alone give a lot more useful
> resources for Debian users.
While you're there, another site that would suit well is
On Mon, July 4, 2005 00:18, Debian Bug Tracking System wrote:
> Some completly new code is now used on packages.debian.org for the
> conversion of changelogs to HTML and should fix most issues that
> did exist with the old code used before.
> (Mostly by not trying some things where the old code fai
Package: www.debian.org
File: http://www.debian.org/events/keysigning
Severity: wishlist
Hello,
The page http://www.debian.org/events/keysigning introduces Debianers to
the concepts and practice of key signing. It might be a good idea to
mention the `signing-party' package on this page, which pr
Package: www.debian.org
Hey people,
The "United States" mirror selectbox at the top-right of the website
points to www.debian.org, which is located in Amsterdam, NL. This should
be changed to www.us.debian.org.
Regards,
Thijs
signature.asc
Description: This is a digitally signed message part
On Fri, May 20, 2005 13:39, Frank Lichtenheld wrote:
> On Thu, May 19, 2005 at 11:27:07PM +0200, Thijs Kinkhorst wrote:
>
>> As a followup to my previous mail: the HTML parser also adds weird FTP
>> links. See for example:
>
> I'm working on a updated script. Thanks f
There's of course the question if this page has any use at all, but that
is a different point.
Regards,
Thijs Kinkhorst
signature.asc
Description: OpenPGP digital signature
reopen 309882
thanks
> Please, try again, as I cannot reproduce this. I'm closing this bug.
Thanks for your swift reply, but the closing is perhaps a bit too swift
since I can still easily reproduce the problem here. Some example URLs
that exhibit the behaviour:
http://packages.debian.org/unstab
eful package pages btw!
Regards,
Thijs Kinkhorst
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Package: www.debian.org
Followup-For: Bug #309768
As a followup to my previous mail: the HTML parser also adds weird FTP
links. See for example:
http://packages.debian.org/changelogs/pool/main/p/phpbb2/phpbb2_2.0.13+1-6/changelog
The entry "Add README.multiboard:documentation for setting up mult
;t find it logical at all to link a random IP-address to the
telnet protocol... there's as much sense in that as in linking it with
FTP, HTTP, irc or any other protocol. Therefore I propose to drop the
IP-address-to-telnet-links-parsing entirely.
Regards,
Thijs Kinkhorst
--
To UNSUBSCRIBE,
Hello webmasters,
Just a quick note. Perhaps it would be a good idea to add a reference to
the Debian package signing-party on the
http://www.debian.org/events/keysigning webpage. The package provides
useful tools for people attending such parties.
Regards,
Thijs Kinkhorst
--
To UNSUBSCRIBE
37 matches
Mail list logo
