On Saturday, April 13, 2013 08:36:53 PM Kevin Kofler wrote:
> > (1) -fstack-protector{,-all} doesn't implement full bounds checking
> > for every C object.
>
> But it prevents (with probability (256^n-1)/256^n, where n is the size of
> the canary in bytes, which for n=4 is approximately .
Am 14.04.2013 00:03, schrieb Kevin Kofler:
> Richard Hughes wrote:
>> Using PackageKit and yum on the command line is often painful as we
>> have to always download metadata unless it's less than a few hours
>> old. Being able to update the metadata once a week would be awesome
>> (with the possi
On Saturday, April 13, 2013 12:28:04 PM Jerry James wrote:
> > I have not run the script that checks a distribution on F19 yet, so maybe
> > there are more?
> >
> > http://people.redhat.com/sgrubb/files/rpm-chksec
>
> That script reports all .o files (yes, those are sometimes packaged)
> as "exec
On Saturday, April 13, 2013 08:44:44 PM Richard W.M. Jones wrote:
> On Sat, Apr 13, 2013 at 08:36:53PM +0200, Kevin Kofler wrote:
> > Richard W.M. Jones wrote:
> > > (1) -fstack-protector{,-all} doesn't implement full bounds checking
> > > for every C object.
> >
> > But it prevents (with probabil
On 04/13/2013 01:52 AM, Andre Robatino wrote:
> *IMPORTANT*: Same images as with 19 Alpha TC3 through RC2 are over their
> size targets (all DVDs and Lives with the exception of Live KDE and Live
> SoaS). Also, note that this is the first time a TC follows an RC (namely
> RC2). This is due to seve
Richard W.M. Jones wrote:
> I said it "doesn't implement full bounds checking for every C object",
> and I stand by that. I doesn't cover stack objects smaller than some
> cut-off size, nor any objects in static data or on the heap at all.
I never claimed it did. I said it prevents overwriting th
Nicolas Mailhot wrote:
> I don't contest this, but it is still less complex than expecting all the
> unix software that has been written in the last decades to stop using /tmp
> for big files because it is suddenly limited by memory limits.
>
> I don't mind systemd exploring new concepts (and in f
Nico Kadel-Garcia wrote:
> For seriously lightweight window managers, I've been using "vtwm" for
> years, still published by the Penguin Liberation Front and listed at
> http://rpm.pbone.net/index.php3/stat/4/idpl/13029794/dir/mandriva_2010/com/vtwm-5.4.7-1plf.i586.rpm.html.
Be warned that PLF pac
Pavel Raiskup wrote:
> Well - I probably missed something before. What confused me: after
> changes in *your* package, the 'perl(Carp)' dependency appeared in *my*
> package?
The problem was that the perl RPM had an automatic Provides: perl(Carp)
without actually providing the module at perl lev
Matthew Miller wrote:
> Overall, it's a more predictable workload, which *is* a good idea, for
> both volunteer and otherwise.
No, sorry, but as volunteers, we have other commitments which mean we cannot
always do our Fedora work when some central Fedora schedule dictates it. The
mad rushes at r
Reindl Harald wrote:
> there where i need this test-machines and internal repos exists
> but i do NOT need anybody to hold back updates for me
Agreed 100%, this is really silly. If you don't want updates, just don't
update!
> but Fedora IS NOT RHEL
> if you want the RHEL way use it
+1
That hor
Richard Hughes wrote:
> You can't QA a trickle.
Sure you can! It's a basic rule of QA that small isolated changes can be
debugged much better than a huge hodgepodge of many totally unrelated
changes.
> If packages are small and self-contained then sure, it might work, but
> applications dependi
Richard Hughes wrote:
> Using PackageKit and yum on the command line is often painful as we
> have to always download metadata unless it's less than a few hours
> old. Being able to update the metadata once a week would be awesome
> (with the possible exception of security updates) so that we could
John5342 wrote:
> I think searching applications by default is a stupid idea when that
> web app is mostly used by packagers
I think it's a stupid idea, period. The default should be to search all
packages.
Kevin Kofler
--
devel mailing list
devel@lists.fedoraproject.org
https://admin.
Jóhann B. Guðmundsson wrote:
> Users should not be switched automatically to Mariadb on upgrades
Of course they should! That's the point of switching!
Kevin Kofler
--
devel mailing list
devel@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/devel
On Sat, Apr 13, 2013 at 08:36:53PM +0200, Kevin Kofler wrote:
> Richard W.M. Jones wrote:
> > (1) -fstack-protector{,-all} doesn't implement full bounds checking
> > for every C object.
>
> But it prevents (with probability (256^n-1)/256^n, where n is the size of
> the canary in bytes, which for
On Sun, Apr 14, 2013 at 12:26 AM, Dhiru Kholia wrote:
> On Sat, Apr 13, 2013 at 11:16 PM, Steve Grubb wrote:
>> On Saturday, April 13, 2013 12:19:42 PM Rahul Sundaram wrote:
>>> Is there a tracker bug? Proven packagers can help
>>
>> I have a tracker bug for issues identified on the core set of
On Sat, Apr 13, 2013 at 11:16 PM, Steve Grubb wrote:
> On Saturday, April 13, 2013 12:19:42 PM Rahul Sundaram wrote:
>> Is there a tracker bug? Proven packagers can help
>
> I have a tracker bug for issues identified on the core set of packages that
> would be part of a common criteria certificat
Richard W.M. Jones wrote:
> (1) -fstack-protector{,-all} doesn't implement full bounds checking
> for every C object.
But it prevents (with probability (256^n-1)/256^n, where n is the size of
the canary in bytes, which for n=4 is approximately .976717)
exploiting the overflows to change
On Sat, Apr 13, 2013 at 11:46 AM, Steve Grubb wrote:
> I have not run the script that checks a distribution on F19 yet, so maybe
> there are more?
>
> http://people.redhat.com/sgrubb/files/rpm-chksec
That script reports all .o files (yes, those are sometimes packaged)
as "exec no no", with a red
Am 13.04.2013 19:46, schrieb Steve Grubb:
> http://people.redhat.com/sgrubb/files/rpm-chksec
>
> To check a typical install and only get the packages that do not meet policy,
> ./rpm-chksec --all | sed -r "s/\x1B\[([0-9]{1,2}(;[0-9]{1,2})?)?[m|K]//g" |
> egrep -w 'no|PACKAGE'
>
> A small sampl
Broken upgrade path report for tags f19 -> f20:
BitchX:
f19 > f20 (BitchX-1.2.1-1.fc19 BitchX-1.2-21.fc19)
bind10:
f19 > f20 (bind10-1.0.0-2.fc19 bind10-1.0.0-1.fc19)
cgnslib:
f19 > f20 (cgnslib-3.2-1.fc19 cgnslib-3.1-5.r4.fc19)
emacs-identica-mode:
f19 > f20 (emacs-identica-mode
On Saturday, April 13, 2013 12:19:42 PM Rahul Sundaram wrote:
> On Sat, Apr 13, 2013 at 11:33 AM, Steve Grubb wrote:
> > I don't think there is any need to extend the set of packages that
> > _should_
> > get hardening. The current guidelines are sufficient. What is not
> > happening is
> > the pac
On Sat, Apr 13, 2013 at 16:53:14 +0200,
Michael Scherer wrote:
Le samedi 13 avril 2013 à 11:10 +, Fedora Rawhide Report a écrit :
Compose started at Sat Apr 13 08:15:26 UTC 2013
[system-config-kickstart]
system-config-kickstart-2.9.1-1.fc20.noarch requires Requires:
Quite eas
Hi
On Sat, Apr 13, 2013 at 12:09 PM, Rakesh Pandit wrote:
>
>
> Share the ticket once you have opened it.
>
https://fedorahosted.org/fedora-infrastructure/ticket/3748
Rahul
--
devel mailing list
devel@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/devel
On Sat, Apr 13, 2013 at 11:33 AM, Steve Grubb wrote:
>
> I don't think there is any need to extend the set of packages that _should_
> get hardening. The current guidelines are sufficient. What is not
> happening is
> the packages that have apps that fit the need to be hardened are not
> getting
>
On 13 April 2013 09:14, Ankur Sinha wrote:
> On Fri, 2013-04-12 at 17:20 -0400, Rahul Sundaram wrote:
>> Yeah. Part of the reason I suggested this to you long back was that
>> it keeps the idea of reviews as part of the conversation for this list
>> but also because it was a nod of recognition for
On 13 April 2013 12:37, Christopher Meng wrote:
> Just followed the script link and got cgit error.
>
Hi,
The link would be:
https://git.fedorahosted.org/cgit/triage.git/tree/scripts/bzReviewReport.py
Regards,
--
Rakesh Pandit
https://fedoraproject.org/wiki/User:Rakesh
freedom, friends, feature
On Friday, April 12, 2013 06:44:33 AM Josh Bressers wrote:
> On Thu, Apr 11, 2013 at 12:54 PM, Reindl Harald
wrote:
> > which is exactly the goal ASLR is desigend for
>
> It's designed to make certain types of attacks more difficult. It
> doesn't make them impossible, just much harder.
>
> Here
On Wednesday, April 10, 2013 03:55:46 PM Miloslav Trmač wrote:
> Hello all,
> the discussion has somewhat died down... If you have a specific proposal
> for a change in policy, please add it to
> https://fedorahosted.org/fesco/ticket/1104 ; hard data that demonstrate the
> impact, if any, in a sit
Le samedi 13 avril 2013 à 11:10 +, Fedora Rawhide Report a écrit :
> Compose started at Sat Apr 13 08:15:26 UTC 2013
> [system-config-kickstart]
> system-config-kickstart-2.9.1-1.fc20.noarch requires Requires:
Quite easy to fix :
https://bugzilla.redhat.com/show_bug.cgi?id=951830
--
Hi,
On 04/13/2013 01:09 PM, James walsh wrote:
Hello everyone, I've been one of those long time power users (around 2001 I
think) that has finally decided to participate a little.
Welcome!
Mostly just made things out of necessity for myself/clients sometimes sending
patches upstream. But t
Compose started at Sat Apr 13 09:15:15 UTC 2013
Broken deps for x86_64
--
[aeolus-conductor]
aeolus-conductor-0.10.6-2.fc19.noarch requires ruby(abi) = 0:1.9.1
[alexandria]
alexandria-0.6.9-4.fc19.noarch requires ruby(abi) >=
Compose started at Sat Apr 13 08:15:26 UTC 2013
Broken deps for x86_64
--
[aeolus-conductor]
aeolus-conductor-0.10.6-2.fc19.noarch requires ruby(abi) = 0:1.9.1
[amide]
amide-1.0.0-4.fc19.x86_64 requires libvolpack.so.1()(64bit
Hello everyone, I've been one of those long time power users (around 2001 I
think) that has finally decided to participate a little.
Mostly just made things out of necessity for myself/clients sometimes
sending patches upstream. But think it could be rewarding to get a little
more involved.
As su
Just followed the script link and got cgit error.
--
devel mailing list
devel@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/devel
13.04.2013 01:46, Bill Nottingham:
Eugene Pivnev (ti.eug...@gmail.com) said:
I propose to create "QtDesktop" group - for qt-only applications.
https://fedoraproject.org/wiki/How_to_use_and_edit_comps.xml_for_package_groups?rd=PackageMaintainers/CompsXml#New_groups
What is the use case for 'too
37 matches
Mail list logo
