On 06/18/13 at 01:50pm, Josh Bressers wrote:
> > Is java environment the only security flawed software distributed in
> > Fedora by default? I don't think so. Please, correct me if I'm
> > wrong. Does it mean Fedora should drop about 1/3 of packages
> > because they have security bugs? What about
# F19 Final Blocker Review meeting #7
# Date: 2013-06-19
# Time: 16:00 UTC (12:00 EDT, 09:00 PDT)
# Location: #fedora-blocker-review on irc.freenode.net
F19 final freeze has set in and it's once again time to review blocker
and freeze exception bugs!
We'll be running through the final blockers an
It feels like time for a status summary mail again!
Fedora 19 Final TC5 is the current compose: it contains most of the
final churn for F19, change should be fairly restricted from here on
out. So this is a good time to take stock of where we are and get all
testing done.
tl;dr summary
--
Compose started at Tue Jun 18 17:12:36 UTC 2013
Broken deps for x86_64
--
[avgtime]
avgtime-0-0.5.git20120724.fc19.x86_64 requires
libphobos-ldc.so.60()(64bit)
[derelict]
derelict-ogg-3-13.20130516gitd8aa11d.fc19.i686 require
On 06/18/2013 02:59 PM, Ismael Olea wrote:
When I needed a java plugin (particularly for some government
websites) I always should got to install the Sun/Oracle one. In those
cases icedtea-web has been 100% useless to me :-/
The plugin used to be problematic before but have you tried it
re
Following is the list of topics that will be discussed in the FESCo
meeting Wednesday at 18:00UTC in #fedora-meeting on irc.freenode.net.
To convert UTC to your local time, take a look at
http://fedoraproject.org/wiki/UTCHowto
or run:
date -d '2013-06-19 18:00 UTC'
Links to all tickets below
On Tue, 18 Jun 2013 21:41:37 +0200
Reindl Harald wrote:
>
>
> Am 18.06.2013 19:18, schrieb Panu Matilainen:
> > On 06/18/2013 04:21 PM, Reindl Harald wrote:
> >> can someone lokk at this?
> >> https://bugzilla.redhat.com/show_bug.cgi?id=975273
> >>
> >> why are the hardening-macros not respecte
Am 18.06.2013 19:18, schrieb Panu Matilainen:
> On 06/18/2013 04:21 PM, Reindl Harald wrote:
>> can someone lokk at this?
>> https://bugzilla.redhat.com/show_bug.cgi?id=975273
>>
>> why are the hardening-macros not respected with "rpmbuild"?
>
> Because of this (from https://bugzilla.redhat.com/
On Mon, Jun 17, 2013 at 4:32 PM, Bill Nottingham wrote:
> > We cannot really remove installed packages after the release, so I'm
> > wondering if we still can fix this prior to release.
>
> We could, I suppose. What do people think? (It's just one line in comps.)
>
When I needed a java plugin
>
> Is java environment the only security flawed software distributed in
> Fedora by default? I don't think so. Please, correct me if I'm wrong.
> Does it mean Fedora should drop about 1/3 of packages because they have
> security bugs? What about Linux Kernel? It's also buggy. Should it be not
> i
On Jun 17, 2013 9:03 AM, "Bill Nottingham" wrote:
...
> > >
> >
> > I think given all the trouble this plugin has caused recently, it
wouldn't
> > be wise to install it for everyone. If you need it, great, install it,
but
> > if a users doesn't need it, it's really just creating a level of risk we
On 06/18/2013 04:21 PM, Reindl Harald wrote:
can someone lokk at this?
https://bugzilla.redhat.com/show_bug.cgi?id=975273
why are the hardening-macros not respected with "rpmbuild"?
Because of this (from
https://bugzilla.redhat.com/show_bug.cgi?id=975273#c3):
[builduser@buildserver64:~]$ c
On Tue, 18 Jun 2013 13:01:06 +
Fedora Branched Report wrote:
> Compose started at Tue Jun 18 09:15:03 UTC 2013
>
> Compose finished at Tue Jun 18 12:49:06 UTC 2013
No broken deps! Hurray!
But seriously, the reason for this was that the langtable update that
anaconda requires missed the las
> "MT" == Miloslav Trmač writes:
MT> For example, right now the easiest way to become a Fedora packager
MT> is still to learn RPM packaging (only) and add a new package (which
MT> will, by now, fairly often be something obscure with a few hundred
MT> of users),
That is actually quite untrue
On Mon, Jun 17, 2013 at 9:57 PM, Jeffrey Ollie wrote:
> The tl;dr summary is that there shouldn't be a single
> standard for what we expect of packagers, especially in the context of
> what to expect when bugs are filed against their packages on Red Hat's
> bugzilla.
That's certainly true, with a
On Tue, 18 Jun 2013 08:58:04 +0800
Christopher Meng wrote:
> Is it possible to add a virtual team for each package(or some
> packages with a lot of bugs)?
yes, we have done so for a number of places. Currently the 'teams' are
just an alias however. Hopefully in pkgdb2.0 we will finally have some
can someone lokk at this?
https://bugzilla.redhat.com/show_bug.cgi?id=975273
why are the hardening-macros not respected with "rpmbuild"?
signature.asc
Description: OpenPGP digital signature
--
devel mailing list
devel@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/d
Hello lennart,
Lets forget about question#1 (conditionnal dependancy) for now
About question#2 (systemctl within ExecStartPre script).
You really shouldn't do stuff like that as part of the normal boot
process. Starting and then restarting things in the same boot process is
really the wrong th
Compose started at Tue Jun 18 09:15:03 UTC 2013
Compose finished at Tue Jun 18 12:49:06 UTC 2013
--
devel mailing list
devel@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/devel
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 06/17/2013 06:31 PM, Matthew Garrett wrote:
> On Mon, Jun 17, 2013 at 11:03:26AM -0400, Bill Nottingham wrote:
>> The one issue I can see with removing it is that the plugin
>> finder you then get in Firefox if you hit a Java site doesn't
>> work to
On Mon, 17.06.13 19:50, Jean-Marc Pigeon (j...@safe.ca) wrote:
> I just understood I need "Requires=" instead of "After=" as the application
> "require" the data-base daemon to be up and running in order to be
> operational.
Requirement dependencies and ordering dependencies in systemd are
orthog
Compose started at Tue Jun 18 08:15:03 UTC 2013
Broken deps for x86_64
--
[PyQwt]
PyQwt-5.2.0-20.fc19.2.i686 requires sip-api(9) >= 0:9.1
PyQwt-5.2.0-20.fc19.2.x86_64 requires sip-api(9) >= 0:9.1
[aries-blueprint]
arie
On Tue, Jun 18, 2013 at 09:13:23AM +, "Jóhann B. Guðmundsson" wrote:
> On 06/18/2013 06:24 AM, David Tardon wrote:
> >
> >>Agreed but at least they should know how to debug their own
> >>components which when I started the how to debug initiative a while
> >>back in QA revealed many of them did
On Mon, Jun 17, 2013 at 10:32 PM, Adam Williamson wrote:
> Hey, fun times!
>
> I'm not the roundcubemail maintainer, but as a user and provenpackager I
> more or less co-maintain it with Jon. I was just doing a 'routine' bump
> to 0.9.2 and noticed the license situation was rather more complex tha
On 06/18/2013 06:24 AM, David Tardon wrote:
On Mon, Jun 17, 2013 at 09:49:37PM +, "Jóhann B. Guðmundsson" wrote:
From my point of view If you are not involved with upstream ( at
least subscribed to their mailing list and have a account in their
upstream tracker ) you should not be maintain
On Tue, 2013-06-18 at 08:26 +0200, Hans de Goede wrote:
> Hi,
>
> On 06/17/2013 10:37 PM, Adam Williamson wrote:
> > On Sun, 2013-06-16 at 22:33 +0100, Matthew Garrett wrote:
> >> On Sun, Jun 16, 2013 at 10:11:42PM +0100, David Woodhouse wrote:
> >>> On Sun, 2013-06-16 at 05:38 +0100, Matthew Garr
On 17.06.2013 21:26, Dan Mashal wrote:
> On Mon, Jun 17, 2013 at 8:25 AM, Mateusz Marzantowicz
> wrote:
>> On 17.06.2013 17:18, Heiko Adams wrote:
>>
>> From my point of view the java-plugin is a big security hole and should be
>> kicked from default installations ASAP.
>>
>>
>>
>> Then, why not f
27 matches
Mail list logo
