On Sat, 2013-05-04 at 23:42 -0400, Nico Kadel-Garcia wrote:
> On Fri, May 3, 2013 at 5:26 PM, Dan Mashal wrote:
> > On Fri, May 3, 2013 at 2:17 PM, Chris Murphy
> > wrote:
> >>
> >> On May 3, 2013, at 2:04 PM, Dan Mashal wrote:
> >>>
> >>> I believe that this is a major security risk and that t
On Sat, May 4, 2013 at 11:06 AM, T.C. Hollingsworth
wrote:
> More to the point, the vast majority of the other software *in Fedora*
> that accepts passwords for any reason hides the passwords as they are
> typed. If this is really broken (and who knows; neither side has
> really produced much in
On Fri, May 3, 2013 at 12:50 PM, Nicolas Mailhot
wrote:
> I think spot will agree there is no way we'll ever ship a font consisting
> of company logos, it's trademark hell
We ship *lots* of trademarked logos. In Firefox alone there are
trademarked logos from Mozilla, Google, Amazon, Yahoo!, Micr
On 05/03/2013 09:50 PM, Nicolas Mailhot wrote:
[cut]
I'm truly a font newbie. That said, is there really a meaningful
fallback for a font such as sozial
(https://github.com/adamstac/zocial)? I. e., is there a reasonable
fallback for a Facebook button?
I think spot will agree there is no way we
On 05/03/2013 04:15 PM, Nicolas Mailhot wrote:
Le Mar 23 avril 2013 19:10, Toshio Kuratomi a écrit :
There will probably be more of this, fedora-review is updated with a
new test looking for bundled font files.My gut feeling is also that
there are some other bundled fonts in existing packages.
On Fri, May 3, 2013 at 5:26 PM, Dan Mashal wrote:
> On Fri, May 3, 2013 at 2:17 PM, Chris Murphy wrote:
>>
>> On May 3, 2013, at 2:04 PM, Dan Mashal wrote:
>>>
>>> I believe that this is a major security risk and that this is a new UI
>>> change going forward and this is not a bug.
>>>
>>> Do yo
On Sat, May 04, 2013 at 04:42:58PM -0600, Kevin Fenzi wrote:
>
> If they do decide to keep the change, you could escalate it to FESCo.
> However, (speaking only for myself here) I would be VERY reluctant to
> override maintainers on their packages on something that is a design
> decision/judgemen
Le samedi 04 mai 2013 à 17:06 -0600, Chris Murphy a écrit :
>
> On May 4, 2013, at 3:37 AM, Michael Scherer wrote:
> >
> > Or I could also speak of the small non standard keyboard such as macbook
> > one where ~ or | are not printed and where using the wrong keyboard
> > could result in wrong ch
Le samedi 04 mai 2013 à 15:22 -0700, Dan Mashal a écrit :
> On Sat, May 4, 2013 at 2:37 AM, Michael Scherer wrote:
> > and I think that even Bruce Schneier have gave his opinion in favor of
> > the proposal :
> > http://www.schneier.com/blog/archives/2009/06/the_problem_wit_2.html
> > http://www.s
On 4 May 2013 19:23, Richard W.M. Jones wrote:
> Another opinion.
>
> It is possible to study such things, and even give caveats and error
> bounds to show uncertainty.
>
>
Yes and no. It's possible it a tightly defined setting with specified
outcomes. Since a crucial factors here include how li
On Sat, 2013-05-04 at 15:58 -0700, Dan Mashal wrote:
> > If they do decide to keep the change, you could escalate it to FESCo.
> > However, (speaking only for myself here) I would be VERY reluctant to
> > override maintainers on their packages on something that is a design
> > decision/judgement c
On 4 May 2013 23:42, Kevin Fenzi wrote:
> On Sat, 4 May 2013 15:22:01 -0700
> Dan Mashal wrote:
> >
> > On Sat, May 4, 2013 at 9:35 AM, Adam Williamson
> > wrote:
> > >
> http://it.slashdot.org/story/13/05/04/1248242/fedora-19-to-stop-masking-passwords
> > >
> > > Well, that escalated quickl
On Sat, May 04, 2013 at 15:58:03 -0700,
Dan Mashal wrote:
I would rather have QA have move oversight on these things. As I only
discovered this while doing QA.
QA isn't really the right place to make up policy. This particular case
doesn't seem to be something that would merit any action by
On May 4, 2013, at 3:37 AM, Michael Scherer wrote:
>
> Or I could also speak of the small non standard keyboard such as macbook
> one where ~ or | are not printed and where using the wrong keyboard
> could result in wrong characters if you are unaware of the problem.
I don't know what this mean
On Sat, May 4, 2013 at 3:42 PM, Kevin Fenzi wrote:
> You posted this on friday afternoon, Rauhl re-opened the bug
> friday night. I suspect many anaconda folks have not even seen this
> discussion or the bug reopening yet. Is there some massive hurry here?
No.
> Lets see what anaconda developers
On Sat, 4 May 2013 15:22:01 -0700
Dan Mashal wrote:
...snip...
>
> On Sat, May 4, 2013 at 9:35 AM, Adam Williamson
> wrote:
> > http://it.slashdot.org/story/13/05/04/1248242/fedora-19-to-stop-masking-passwords
> >
> > Well, that escalated quickly.
>
> As it should have.
>
> So where do we go
On Sat, May 4, 2013 at 2:37 AM, Michael Scherer wrote:
> and I think that even Bruce Schneier have gave his opinion in favor of
> the proposal :
> http://www.schneier.com/blog/archives/2009/06/the_problem_wit_2.html
> http://www.schneier.com/blog/archives/2009/07/the_pros_and_co.html
Which he lat
On Sat, May 4, 2013 at 5:01 PM, Adam Williamson wrote:
> On Sat, 2013-05-04 at 22:48 +0100, David Woodhouse wrote:
>> On Sat, 2013-05-04 at 05:01 +0100, Matthew Garrett wrote:
>> > The appropriate place to discuss deliberate design decisions is a
>> > forum where said decisions are made, ie not Bu
On Sat, 2013-05-04 at 22:48 +0100, David Woodhouse wrote:
> On Sat, 2013-05-04 at 05:01 +0100, Matthew Garrett wrote:
> > The appropriate place to discuss deliberate design decisions is a
> > forum where said decisions are made, ie not Bugzilla.
>
> Or a forum where said decisions can be overridde
On Sat, 2013-05-04 at 05:01 +0100, Matthew Garrett wrote:
> The appropriate place to discuss deliberate design decisions is a
> forum where said decisions are made, ie not Bugzilla.
Or a forum where said decisions can be overridden with a little more
sanity, such as FESCo.
--
dwmw2
smime.p7s
Le samedi 04 mai 2013 à 05:51 -0400, Rahul Sundaram a écrit :
> Hi
>
>
> On Sat, May 4, 2013 at 5:37 AM, Michael Scherer wrote:
>
> and I think that even Bruce Schneier have gave his opinion in
> favor of
> the proposal :
> http://www.schneier.com/blog/
On Sat, 2013-05-04 at 13:20 -0700, Adam Williamson wrote:
> That's it. So far as I can see, that's the sole reference to any actual
> identifiable study. And again, so far as I can see, the entire 2009
> debate spiraled out from that single post, with lots of 'experts' adding
> their subjective $0
On Sat, 2013-05-04 at 21:06 +0100, Richard W.M. Jones wrote:
> On Sat, May 04, 2013 at 12:52:00PM -0700, Adam Williamson wrote:
> > I haven't found anything much beyond the initial pretty small study
> > (62 participants) cited (and conducted) by Nielsen,
>
> Do you have a link to this one? This
On Sat, 2013-05-04 at 21:06 +0100, Richard W.M. Jones wrote:
> On Sat, May 04, 2013 at 12:52:00PM -0700, Adam Williamson wrote:
> > I haven't found anything much beyond the initial pretty small study
> > (62 participants) cited (and conducted) by Nielsen,
>
> Do you have a link to this one? This
On Sat, May 04, 2013 at 12:52:00PM -0700, Adam Williamson wrote:
> I haven't found anything much beyond the initial pretty small study
> (62 participants) cited (and conducted) by Nielsen,
Do you have a link to this one? This is the one I was originally
looking for, but I still can't find the act
On Sat, 2013-05-04 at 19:23 +0100, Richard W.M. Jones wrote:
> Another opinion.
>
> It is possible to study such things, and even give caveats and error
> bounds to show uncertainty.
I went looking, but as T.C. Hollingsworth said, it doesn't appear that
either side has produced anything much in t
On Sat, 4 May 2013 16:12:11 -0300
Itamar Reis Peixoto wrote:
> -- Forwarded message --
> From:
> Date: Sat, May 4, 2013 at 4:00 PM
> Subject: E-Mai! Ganhe dinheiro na internet sem sair da sua cadeira!
> Não perca tempo. Confira. ID: 005
> To: relnotes-cont...@lists.fedoraproject.
-- Forwarded message --
From:
Date: Sat, May 4, 2013 at 4:00 PM
Subject: E-Mai! Ganhe dinheiro na internet sem sair da sua cadeira!
Não perca tempo. Confira. ID: 005
To: relnotes-cont...@lists.fedoraproject.org
--
relnotes-content mailing list
relnotes-cont...@lists.fedoraprojec
Another opinion.
It is possible to study such things, and even give caveats and error
bounds to show uncertainty.
Rich.
--
Richard Jones, Virtualization Group, Red Hat http://people.redhat.com/~rjones
Fedora Windows cross-compiler. Compile Windows programs, test, and
build Windows installers. O
On 05/04/2013 02:29 AM, Stef Walter wrote:
There's already this exact phoneish password hint capability in GTK+
with the 'gtk-entry-password-hint-timeout' setting. Turn it on in
$XDG_CONFIG_HOME/gtk-3.0/settings.ini, or use
gtk_settings_set_string_property()
I forgot about that setting. It work
On Fri, May 3, 2013 at 10:45 PM, Chris Adams wrote:
> The vast majority of other software that accepts
> passwords for any reason hides the passwords as they are typed, so the
> general expectation is that passwords are not displayed on the screen.
More to the point, the vast majority of the othe
On Sat, May 04, 2013 at 09:42:22AM -0700, Adam Williamson wrote:
> On Sat, 2013-05-04 at 04:58 +0100, Matthew Garrett wrote:
> > No, this isn't the most appropriate mailing list for the discussion -
> > anaconda-devel-list is a better choice if you want to interact with the
> > people who actuall
On 4 May 2013, at 02:03, Chris Adams wrote:
Creating a complete chain of trust is hard.
Sure, creating a complete chain of trust is hard, but the closest
thing we have to it today is downloading an iso and verifying its
checksum -- and trusting that (a) the release team verified the keys
Am 03.05.2013 13:13, schrieb Josh Boyer:
> On Thu, May 2, 2013 at 6:58 PM, Sérgio Basto wrote:
>> OK, also is not normal the number of updates in upstream .
>> Anyway could someone give karma for a bunch of security updates ?
>> https://admin.fedoraproject.org/updates/FEDORA-2013-6999/kernel-3.8.1
On Sat, 2013-05-04 at 04:58 +0100, Matthew Garrett wrote:
> On Fri, May 03, 2013 at 08:52:25PM -0700, Dan Mashal wrote:
> > On Fri, May 3, 2013 at 8:51 PM, Matthew Garrett wrote:
> > > And if the maintainers feel more than justified in closing it again?
> > > Bugzilla isn't a discussion forum. If
Hi,
as part of my F19 feature
https://fedoraproject.org/wiki/Features/3D_Printing
I would like to create a group in comps.xml.
Patch for rawhide is attached, I want to add it primary to F19, but also
for older versions (18, 17). Is anyone against it?
Sorry for doing this after string freeze,
On Fri, 2013-05-03 at 13:04 -0700, Dan Mashal wrote:
> Hi,
>
> In the latest Fedora 19 Beta TC2 install after I got through the
> initial steps of the install I started to setup my root password.
>
> To my surprise my password was shown in plain text instead of bullets.
>
> I believe that this i
Richard W.M. Jones redhat.com> writes:
> To be honest it would be a lot more convincing if someone had done a
> study and published the results of it, rather than just linking to
> opinions. I was rather hopeful that Neilsen-Norman would have done a
> study, but they don't publish their results
On Sat, May 04, 2013 at 05:51:02AM -0400, Rahul Sundaram wrote:
> Hi
>
>
> On Sat, May 4, 2013 at 5:37 AM, Michael Scherer wrote:
>
> >
> > and I think that even Bruce Schneier have gave his opinion in favor of
> > the proposal :
> > http://www.schneier.com/blog/archives/2009/06/the_problem_wi
On Fri, May 03, 2013 at 09:41:39PM -0700, Dan Mashal wrote:
> On Fri, May 3, 2013 at 9:32 PM, Matthew Garrett wrote:
> > If you want to change a decision, it helps if you're discussing it in a
> > forum that's read by the people who made that decision.
>
> Anaconda developers don't read the devel
On Fri, May 03, 2013 at 10:53:35PM -0600, Pete Zaitcev wrote:
> On Sat, 4 May 2013 05:32:18 +0100
> Matthew Garrett wrote:
> > If you want to change a decision, it helps if you're discussing it in a
> > forum that's read by the people who made that decision.
>
> This is a perfectly appropriate f
On Sat, May 04, 2013 at 10:37:04AM +0300, Oron Peled wrote:
> What separate a Linux distro from a random batch of software is *policy*
> and what happened here is a radical policy change without any *prior*
> discussion.
What happened here was a change in the UI of a single (albeit important)
ap
Compose started at Sat May 4 09:15:02 UTC 2013
Broken deps for x86_64
--
[byzanz]
byzanz-0.3-0.5.fc17.x86_64 requires libpanel-applet-4.so.0()(64bit)
[deltacloud-core]
deltacloud-core-1.0.5-2.fc19.noarch requires ruby(abi) =
Compose started at Sat May 4 08:15:02 UTC 2013
Broken deps for x86_64
--
[byzanz]
byzanz-0.3-0.5.fc17.x86_64 requires libpanel-applet-4.so.0()(64bit)
[cinnamon]
cinnamon-menu-editor-1.6.7-7.fc19.noarch requires gnome-panel
[d
Michael Scherer wrote:
> So what about hiding on demand, and having it visible by default ? This
> way, people who prefer to have it hidden will be happy, and we are still
> friendly to non technical users.
That might be acceptable but only if there were a big, eye-catching
warning that users woul
Hi
On Sat, May 4, 2013 at 5:37 AM, Michael Scherer wrote:
>
> and I think that even Bruce Schneier have gave his opinion in favor of
> the proposal :
> http://www.schneier.com/blog/archives/2009/06/the_problem_wit_2.html
> http://www.schneier.com/blog/archives/2009/07/the_pros_and_co.html
>
N
Le vendredi 03 mai 2013 à 23:24 -0500, Eric Sandeen a écrit :
> What is the downside to defaulting to a hidden PW, with an opt-in mechanism to
> display the password as it's typed? The downsides of defaulting to cleartext
> have
> been noted, and to me are quite self-explanatory.
First, we need
Le 04/05/2013 09:58, Remi Collet a écrit :
> pulseaudio
For example, this one is already fixed upstream.
PKG_CHECK_MODULES(LIBJSON, [ json-c >= 0.11 ], [],
[PKG_CHECK_MODULES(LIBJSON, [ json >= 0.9 ])])
Remi.
--
devel mailing list
devel@lists.fedoraproject.org
https://a
Hi
On Sat, May 4, 2013 at 4:06 AM, Rahul Sundaram wrote:
>
> This sounds pretty neat but I am unable to get this to work. I have
> tried "gtk-entry-password-hint-timeout"=600 and without the quotes as well.
>
>
Never mind. For anyone else looking, just use the format in
/etc/gtk-3.0/settings
H
On Sat, May 4, 2013 at 3:29 AM, Stef Walter wrote:
>
>
> There's already this exact phoneish password hint capability in GTK+
> with the 'gtk-entry-password-hint-timeout' setting. Turn it on in
> $XDG_CONFIG_HOME/gtk-3.0/settings.ini, or use
> gtk_settings_set_string_property()
This sounds
Hi,
I just update json-c to version 0.11 in rawhide.
As there is an old name conflict for libjson.so (with other projects),
upstream have renamed the library to libjson-c.so
For now, the package provides both library (libjson.so and libjson-c.so)
This new version is ABI compatible with 0.10, so
Le vendredi 03 mai 2013 à 21:41 -0700, Dan Mashal a écrit :
> On Fri, May 3, 2013 at 9:32 PM, Matthew Garrett wrote:
> > If you want to change a decision, it helps if you're discussing it in a
> > forum that's read by the people who made that decision.
>
> Anaconda developers don't read the devel
On Saturday 04 May 2013 04:58:13 Matthew Garrett wrote:
> No, this isn't the most appropriate mailing list for the discussion -
> anaconda-devel-list is a better choice if you want to interact with the
> people who actually work on that code.
What separate a Linux distro from a random batch of sof
On 04.05.2013 07:26, Michael Cronenworth wrote:
> On 05/03/2013 03:08 PM, Reartes Guillermo wrote:
>> I think that the previous behaviour was better. (covering the password
>> with bullets).
>>
>> At least the phones only show one character at a time, not the whole
>> password.
>
> GTK shows every
On Friday 03 May 2013 22:22:47 Bruno Wolff III wrote:
> It's not like the people entering the password don't know it is visible.
I for one, will finish typing the password *way before* realizing it's visible:
* Touch typing is fast
* With passwords it's even faster:
- Because it's very commo
55 matches
Mail list logo
