Bug#1040183: Info received (Bug#1040183: Acknowledgement (zfs-initramfs: snapshots for rootfs mounted in /root/.zfs/snapshot))
I can confirm this issue is resolve with zfs-dkms 2.1.12-2~bpo12+1 from bookworm-backports. Kind regards, Richard
Bug#1040183: Acknowledgement (zfs-initramfs: snapshots for rootfs mounted in /root/.zfs/snapshot)
Tags: bookworm, fixed It looks like this has been fixed in 2.1.12: https://github.com/openzfs/zfs/pull/14920 2.1.12-1 is already in unstable. Please consider including this fix in Debian stable (bookworm) as well.
Bug#1040183: Acknowledgement (zfs-initramfs: snapshots for rootfs mounted in /root/.zfs/snapshot)
Upstream issue report: https://github.com/openzfs/zfs/issues/14383
Bug#1040183: zfs-initramfs: snapshots for rootfs mounted in /root/.zfs/snapshot
Package: zfs-initramfs Version: 2.1.11-1 Severity: normal I have ZFS setup with rootfs which is mounted at boot in /root by initramfs. This causes the ZFS snapshots to be mounted in /root/.zfs/snapshot instead of /.zfs/snapshot Accessing any snapshot in /.zfs/snapshot gives this error: Too many levels of symbolic links The root cause is explained at https://github.com/openzfs/zfs/issues/9461#issuecomment-1376162949 -- System Information: Debian Release: 12.0 APT prefers stable-security APT policy: (500, 'stable-security'), (500, 'stable') Architecture: amd64 (x86_64) Kernel: Linux 6.1.0-9-amd64 (SMP w/8 CPU threads; PREEMPT) Kernel taint flags: TAINT_PROPRIETARY_MODULE, TAINT_OOT_MODULE, TAINT_UNSIGNED_MODULE Locale: LANG=C.UTF-8, LC_CTYPE=UTF-8 (charmap=UTF-8) (ignored: LC_ALL set to C.UTF-8), LANGUAGE not set Shell: /bin/sh linked to /usr/bin/dash Init: systemd (via /run/systemd/system) LSM: AppArmor: enabled Versions of packages zfs-initramfs depends on: ii busybox 1:1.35.0-4+b3 ii initramfs-tools 0.142 ii zfs-dkms [zfs-modules] 2.1.11-1 ii zfsutils-linux 2.1.11-1 zfs-initramfs recommends no packages. zfs-initramfs suggests no packages. -- no debconf information
Bug#1040065: [Pkg-netatalk-devel] Bug#1040065: afpd: systemd-logind ReleaseSession rejected by dbus-daemon
Hi Daniel, Thanks for reporting and tracking down the fix. Do I understand correctly that the fix is confirmed to resolve the issue for you? Yes, it fixes the issue for me. No more dbus erorrs since I changed the file. Now, /etc/pam.d/netatalk is obviously a generated file, so for a persistent fix the file that needs to change is macros/pam-check.m4 I think this should ideally be fixed upstream, so if you have a moment to spare it'd be helpful if you filed an issue ticket at https://github.com/Netatalk/netatalk/issues I have created an issue and pull-request there: https://github.com/Netatalk/netatalk/issues/361 https://github.com/Netatalk/netatalk/pull/362 Kind regards, Richard
Bug#1040065: afpd: systemd-logind ReleaseSession rejected by dbus-daemon
Package: netatalk Version: 3.1.12~ds-8 Severity: normal Tags: patch I am using netatalk for time machine backups. After every session I see this line in /var/log/auth.log 2023-07-01T22:31:47.223949+02:00 my-server dbus-daemon[1538889]: [system] Rejected send message, 2 matched rules; type="method_call", sender=":1.153636" (uid=145 pid=2690475 comm="/usr/sbin/afpd -d -F /etc/netatalk/afp.conf") interface="org.freedesktop.login1.Manager" member="ReleaseSession" error name="(unset)" requested_reply="0" destination="org.freedesktop.login1" (uid=0 pid=1538900 comm="/lib/systemd/systemd-logind") Today I finally found the solution at https://bugs.launchpad.net/ubuntu/+source/netatalk/+bug/1538004 It is simple really, in /etc/pam.d/netatalk replace this line: @include common-session with this line: @include common-session-noninteractive -- System Information: Debian Release: 12.0 APT prefers stable-security APT policy: (500, 'stable-security'), (500, 'stable') Architecture: amd64 (x86_64) Kernel: Linux 6.1.0-9-amd64 (SMP w/8 CPU threads; PREEMPT) Kernel taint flags: TAINT_PROPRIETARY_MODULE, TAINT_OOT_MODULE, TAINT_UNSIGNED_MODULE Locale: LANG=C.UTF-8, LC_CTYPE=UTF-8 (charmap=UTF-8) (ignored: LC_ALL set to C.UTF-8), LANGUAGE not set Shell: /bin/sh linked to /usr/bin/dash Init: systemd (via /run/systemd/system) LSM: AppArmor: enabled Versions of packages netatalk depends on: ii init-system-helpers1.65.2 ii libacl12.3.1-3 ii libavahi-client3 0.8-10 ii libavahi-common3 0.8-10 ii libc6 2.36-9 ii libcrack2 2.9.6-5+b1 ii libcrypt1 1:4.4.33-2 ii libdb5.3 5.3.28+dfsg2-1 ii libdbus-glib-1-2 0.112-3 ii libevent-2.1-7 2.1.12-stable-8 ii libgcrypt201.10.1-3 ii libglib2.0-0 2.74.6-2 ii libgssapi-krb5-2 1.20.1-2 ii libkrb5-3 1.20.1-2 ii libldap-2.4-2 2.4.57+dfsg-3+deb11u1 ii libmariadb31:10.11.3-1 ii libpam-modules 1.5.2-6 ii libpam0g 1.5.2-6 ii libssl1.1 1.1.1n-0+deb11u5 ii libtalloc2 2.4.0-f2 ii libtdb11.4.8-2 ii libtracker-sparql-2.0-02.3.6-2 ii libwrap0 7.6.q-32 ii lsb-base 11.6 ii netbase6.4 ii perl 5.36.0-7 ii sysvinit-utils [lsb-base] 3.06-4 Versions of packages netatalk recommends: ii avahi-daemon 0.8-10 ii cracklib-runtime 2.9.6-5+b1 ii dbus 1.14.6-1 ii lsof 4.95.0-1 ii procps2:4.0.2-3 ii python3 3.11.2-1+b1 ii python3-dbus 1.3.2-4+b1 pn tracker Versions of packages netatalk suggests: pn quota -- Configuration Files: /etc/logcheck/ignore.d.server/netatalk [Errno 13] Permission denied: '/etc/logcheck/ignore.d.server/netatalk' /etc/logcheck/violations.ignore.d/netatalk [Errno 13] Permission denied: '/etc/logcheck/violations.ignore.d/netatalk' /etc/logrotate.d/netatalk changed [not included] /etc/netatalk/afp.conf changed [not included] /etc/pam.d/netatalk changed [not included] -- no debconf information
Bug#1018106: re: sshd: pam_env(sshd:session): deprecated reading of user environment enabled
On Wed, 1 Feb 2023 04:43:07 -0500 nick black wrote: > the cause of this output is the following line in /etc/pam.d/sshd: > > # In Debian 4.0 (etch), locale-related environment variables were moved to > # /etc/default/locale, so read that as well. > session required pam_env.so user_readenv=1 envfile=/etc/default/locale > > i'm guessing from the comment that user_readenv=1 is in place > primarily to allow overrides of the default locale? Indeed. Removing "user_readenv=1" from that line fixes the warning. > etch was > quite some time ago, possibly preceding support for SendEnv? > that seems sufficient workaround if user_readenv is deprecated, > but this is all speculative. The comment for etch is about "envfile=/etc/default/locale" which is read regardless of the user_readenv setting. See the man page for pam_env. Kind regards, Richard van den Berg
Bug#994872: python3-spf-engine: Replace link to www.openspf.net
Package: python3-spf-engine
Version: 2.9.2-2
Severity: normal
python3-spf-engine 2.9.2-2 still builds an url to www.openspf.net in
/usr/lib/python3/dist-packages/spf_engine/__init__.py on line 370:
def _rejectmessage(result, type, info, ip, recipient, configData):
if result[3] == 'reject':
rejectdefer = "rejected"
elif result[3] == 'defer':
rejectdefer = "deferred"
url = ("http://www.openspf.net/Why?s={0};id={1};ip={2};r={3};
.format(type, info, ip, recipient))
msg = configData.get('Reason_Message')
return msg.format(
rejectdefer=rejectdefer,
spf=result[1],
url=url,
)
The openspf.net website has been offline now for two years. It is time to
use a different default url. Personally I use https://mxtoolbox.com/spf.aspx
but there might be a better website to link to by default.
I know the Reason_Message can be set in
/etc/postfix-policyd-spf-python/policyd-spf.conf
but it cannot be parameterized in detail like the default url is. At the
very least please make the variables type, info, ip and recipient available to
Reason_Message as well.
-- System Information:
Debian Release: 10.10
APT prefers oldstable-updates
APT policy: (500, 'oldstable-updates'), (500, 'testing'), (500, 'oldstable')
Architecture: amd64 (x86_64)
Kernel: Linux 4.19.0-9-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) (ignored: LC_ALL
set to C.UTF-8), LANGUAGE=en_US:en (charmap=UTF-8) (ignored: LC_ALL set to
C.UTF-8)
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled
Versions of packages python3-spf-engine depends on:
ii python3 3.7.3-1
ii python3-authres 1.1.1-1
ii python3-spf 2.0.12t-3
python3-spf-engine recommends no packages.
python3-spf-engine suggests no packages.
-- no debconf information
Bug#976652: [debian-mysql] Bug#976652: mariadb-server-10.3: Could not increase number of max_open_files to more than 16384 (request: 32191)
On 07/12/2020 19:34, Faustin Lammler wrote: Or maybe a configuration error? Check for open_files_limit in your configuration files or directly in mariadb with: | SHOW GLOBAL VARIABLES LIKE 'open_files_limit'; It seems fine now: MariaDB [mysql]> SHOW GLOBAL VARIABLES LIKE 'open_files_limit'; +--+---+ | Variable_name | Value | +--+---+ | open_files_limit | 32191 | +--+---+ 1 row in set (0.016 sec) Can I kindly ask you to close the bug report then? Thanks! Yes, there is clearly no bug in the debian package. Thanks for pointing that out. Kind regards, Richard
Bug#976652: [debian-mysql] Bug#976652: mariadb-server-10.3: Could not increase number of max_open_files to more than 16384 (request: 32191)
Hi Faustin, On 07/12/2020 18:56, Faustin Lammler wrote: This can not be considered as a bug and you are asking to make default an increase of the max_open_files option because your setup needs it. This is a very small home server with only 2 databases and 2 users. I assumed this was a general warning, not a parameter that needs tuning for my particular setup. Why not consider instead overriding the systemd unit default option with what you think is the best value for your setup? I did and set it to 32191 as recommended by the warning. If you really think that this value should be increased and become the default value for every MariaDB default installation, then I suggest you open an issue directly upstream (https://jira.mariadb.org): Ok, so the 16384 limit in /lib/systemd/system/mariadb.service is actually the default from upstream? That seems odd to me as it warns it needs more in a simple small setup like mine. I suppose that mariadb asking for more open files is the bug here then. I'll open it upstream if it persists. Kind regards, Richard
Bug#976652: mariadb-server-10.3: Could not increase number of max_open_files to more than 16384 (request: 32191)
Package: mariadb-server-10.3 Version: 1:10.3.27-0+deb10u1 Severity: normal When starting the mariadb service it warns: Dec 6 07:01:05 myhost mysqld[24031]: 2020-12-06 7:01:05 0 [Warning] Could not increase number of max_open_files to more than 16384 (request: 32191) This warning is because /lib/systemd/system/mariadb.service contains: LimitNOFILE=16384 Please increase this limit to 32191 as suggested by mariadb. -- System Information: Debian Release: 10.7 APT prefers stable APT policy: (990, 'stable'), (500, 'stable-updates'), (500, 'testing') Architecture: amd64 (x86_64) Kernel: Linux 4.19.0-9-amd64 (SMP w/2 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) (ignored: LC_ALL set to C.UTF-8), LANGUAGE=en_US:en (charmap=UTF-8) (ignored: LC_ALL set to C.UTF-8) Shell: /bin/sh linked to /usr/bin/dash Init: systemd (via /run/systemd/system) LSM: AppArmor: enabled Versions of packages mariadb-server-10.3 depends on: ii adduser 3.118 ii debconf [debconf-2.0] 1.5.71 ii galera-3 25.3.25-2 ii gawk 1:4.2.1+dfsg-1 ii iproute2 4.20.0-2 ii libc6 2.28-10 ii libdbi-perl 1.642-1+deb10u1 ii libgnutls30 3.6.7-4+deb10u5 ii libpam0g 1.3.1-5 ii libstdc++68.3.0-6 ii lsb-base 10.2019051400 ii lsof 4.91+dfsg-1 ii mariadb-client-10.3 1:10.3.27-0+deb10u1 ii mariadb-common1:10.3.27-0+deb10u1 ii mariadb-server-core-10.3 1:10.3.27-0+deb10u1 ii passwd1:4.5-1.1 ii perl 5.28.1-6+deb10u1 ii psmisc23.2-1 ii rsync 3.1.3-6 ii socat 1.7.3.2-2 ii zlib1g1:1.2.11.dfsg-1 Versions of packages mariadb-server-10.3 recommends: ii libhtml-template-perl 2.97-1 Versions of packages mariadb-server-10.3 suggests: ii bsd-mailx [mailx] 8.1.2-0.20180807cvs-1 pn mariadb-test pn netcat-openbsd pn tinyca -- Configuration Files: /etc/logcheck/ignore.d.paranoid/mariadb-server-10_3 [Errno 13] Permission denied: '/etc/logcheck/ignore.d.paranoid/mariadb-server-10_3' /etc/logcheck/ignore.d.server/mariadb-server-10_3 [Errno 13] Permission denied: '/etc/logcheck/ignore.d.server/mariadb-server-10_3' /etc/logcheck/ignore.d.workstation/mariadb-server-10_3 [Errno 13] Permission denied: '/etc/logcheck/ignore.d.workstation/mariadb-server-10_3' /etc/logrotate.d/mysql-server changed [not included] -- debconf information excluded
Bug#975289: Acknowledgement (systemd: always reporting unit file has "changed on disk" when override.conf is present)
On 25-11-2020 02:11, Michael Biebl wrote: Can you break this down to a more minimal test case which would make this easily reproducible with systemd from unstable? This reproduces the issue with 246.6-2~bpo10+1: 1) Create a normal unit file /etc/systemd/system/test-start.service with contents [Unit] Description=Test start [Service] Type=oneshot ExecStart=/usr/bin/mailx -s "message from test-start.service" root < /dev/null 2) Create an instantiated unit file /etc/systemd/system/test-warning@.service with contents [Unit] Description=test warning [Service] Type=oneshot ExecStart=/usr/bin/mailx -s "service %i at %H has failed" root < /dev/null 3) Create a system wide drop-in /etc/systemd/system/service.d/test-warning.conf with contents [Unit] OnFailure=test-warning@%p.service 4) Create drop-in /etc/systemd/system/test-start.service.d/override.conf (by executing "systemctl edit test-start") with contents [Service] ExecStartPost=/usr/bin/mailx -s "message from override.conf" root < /dev/null 5) systemctl daemon-reload 6) systemctl status test-start 7) goto 5 The "Run 'systemctl daemon-reload' to reload units." warning persists as long as /etc/systemd/system/test-start.service.d/override.conf is newer than /etc/systemd/system/service.d/test-warning.conf and can be cleared by: touch /etc/systemd/system/service.d/test-warning.conf systemctl daemon-reload
Bug#975289: Acknowledgement (systemd: always reporting unit file has "changed on disk" when override.conf is present)
This looks a lot like https://github.com/systemd/systemd/issues/17312 which apparently was fixed by https://github.com/systemd/systemd/pull/16885 Can this PR be applied to the debian systemd package in unstable? Or do I need to wait until 247 is officially released?
Bug#964233: ifupdown: interfaces man page wrong example for /etc/network/interfaces
Package: ifupdown Version: 0.8.35 Severity: normal In /usr/share/man/man5/interfaces.5.gz the following example is giving for auto eth0 allow-hotplug eth1 iface eth0 inet dhcp iface eth0 inet6 auto iface eth1 inet static address 192.168.1.2/24 gateway 192.168.1.1 iface eth1 inet6 static address fec0:0:0:1::2/64 gateway fec0:0:0:1::1 However using this example causes /lib/systemd/system/networking.service to fail with: Jul 4 00:15:00 debian ifup[359]: RTNETLINK answers: File exists because there are two "gateway" statements in /etc/network/interfaces A possible solution is to put the ipv6 part in /etc/network/interfaces.d/eth0 -- System Information: Debian Release: 10.4 APT prefers stable-updates APT policy: (500, 'stable-updates'), (500, 'stable') Architecture: amd64 (x86_64) Kernel: Linux 4.19.0-9-amd64 (SMP w/2 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) (ignored: LC_ALL set to C.UTF-8), LANGUAGE=en_US:en (charmap=UTF-8) (ignored: LC_ALL set to C.UTF-8) Shell: /bin/sh linked to /usr/bin/dash Init: systemd (via /run/systemd/system) LSM: AppArmor: enabled Versions of packages ifupdown depends on: ii adduser 3.118 ii iproute2 4.20.0-2 ii libc6 2.28-10 ii lsb-base 10.2019051400 Versions of packages ifupdown recommends: ii isc-dhcp-client [dhcp-client] 4.4.1-2 Versions of packages ifupdown suggests: pn ppp pn rdnssd -- no debconf information
Bug#946827: dovecot-core: PIDFile should use /run instead of /var/run
Package: dovecot-core Version: 1:2.3.4.1-5+deb10u1 Severity: normal The file /lib/systemd/system/dovecot.service contains the line PIDFile=/var/run/dovecot/master.pid The directory /var/run is considered legacy since Debian buster. Please change this to /run -- Package-specific info: -- System Information: Debian Release: 10.2 APT prefers stable APT policy: (990, 'stable'), (500, 'stable-debug'), (500, 'proposed-updates-debug'), (500, 'oldstable') Architecture: amd64 (x86_64) Kernel: Linux 4.19.0-6-amd64 (SMP w/2 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) (ignored: LC_ALL set to C.UTF-8), LANGUAGE=en_US.UTF-8 (charmap=UTF-8) (ignored: LC_ALL set to C.UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) LSM: AppArmor: enabled Versions of packages dovecot-core depends on: ii adduser 3.118 ii libapparmor1 2.13.2-10 ii libbz2-1.0 1.0.6-9.2~deb10u1 ii libc62.28-10 ii libexttextcat-2.0-0 3.4.5-1 ii libicu63 63.1-6 ii liblua5.3-0 5.3.3-1.1 ii liblz4-1 1.8.3-1 ii liblzma5 5.2.4-1 ii libpam-runtime 1.3.1-5 ii libpam0g 1.3.1-5 ii libsodium23 1.0.17-1 ii libssl1.11.1.1d-0+deb10u2 ii libstemmer0d 0+svn585-1+b2 ii libwrap0 7.6.q-28 ii lsb-base 10.2019051400 ii openssl 1.1.1d-0+deb10u2 ii ssl-cert 1.0.39 ii ucf 3.0038+nmu1 ii zlib1g 1:1.2.11.dfsg-1 dovecot-core recommends no packages. Versions of packages dovecot-core suggests: ii dovecot-gssapi1:2.3.4.1-5+deb10u1 ii dovecot-imapd 1:2.3.4.1-5+deb10u1 ii dovecot-ldap 1:2.3.4.1-5+deb10u1 pn dovecot-lmtpd pn dovecot-lucene pn dovecot-managesieved ii dovecot-mysql 1:2.3.4.1-5+deb10u1 ii dovecot-pgsql 1:2.3.4.1-5+deb10u1 ii dovecot-pop3d 1:2.3.4.1-5+deb10u1 ii dovecot-sieve 1:2.3.4.1-5+deb10u1 pn dovecot-solr ii dovecot-sqlite1:2.3.4.1-5+deb10u1 pn dovecot-submissiond ii ntp 1:4.2.8p12+dfsg-4 Versions of packages dovecot-core is related to: ii dovecot-common 1:2.1.7-7+deb7u1 ii dovecot-core [dovecot-common] 1:2.3.4.1-5+deb10u1 pn dovecot-dev ii dovecot-gssapi 1:2.3.4.1-5+deb10u1 ii dovecot-imapd 1:2.3.4.1-5+deb10u1 ii dovecot-ldap 1:2.3.4.1-5+deb10u1 pn dovecot-lmtpd pn dovecot-managesieved ii dovecot-mysql 1:2.3.4.1-5+deb10u1 ii dovecot-pgsql 1:2.3.4.1-5+deb10u1 ii dovecot-pop3d 1:2.3.4.1-5+deb10u1 ii dovecot-sieve 1:2.3.4.1-5+deb10u1 ii dovecot-sqlite 1:2.3.4.1-5+deb10u1 -- no debconf information
Bug#946826: fail2ban: Use /run instead of /var/run in fail2ban.service
Package: fail2ban Version: 0.10.2-2.1 Severity: normal The file /lib/systemd/system/fail2ban.service contains 2 lines that use the legacy /var/run directory: ExecStartPre=/bin/mkdir -p /var/run/fail2ban PIDFile=/var/run/fail2ban/fail2ban.pid Please change them to use /run instead. -- System Information: Debian Release: 10.2 APT prefers stable APT policy: (990, 'stable'), (500, 'stable-debug'), (500, 'proposed-updates-debug'), (500, 'oldstable') Architecture: amd64 (x86_64) Kernel: Linux 4.19.0-6-amd64 (SMP w/2 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) (ignored: LC_ALL set to C.UTF-8), LANGUAGE=en_US.UTF-8 (charmap=UTF-8) (ignored: LC_ALL set to C.UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) LSM: AppArmor: enabled Versions of packages fail2ban depends on: ii lsb-base 10.2019051400 ii python3 3.7.3-1 Versions of packages fail2ban recommends: ii iptables 1.8.2-4 ii nftables 0.9.0-2 ii python 2.7.16-1 ii python3-pyinotify 0.9.6-1 ii python3-systemd234-2+b1 ii whois 5.4.3 Versions of packages fail2ban suggests: ii bsd-mailx [mailx]8.1.2-0.20180807cvs-1 ii mailx1:20071201-3 pn monit ii rsyslog [system-log-daemon] 8.1901.0-1 pn sqlite3 -- no debconf information
Bug#946825: mariadb-server-10.3: ExecStartPre should use /run/mysqld instead of /var/run/mysqld
Package: mariadb-server-10.3 Version: 1:10.3.18-0+deb10u1 Severity: normal In /lib/systemd/system/mariadb.service and /lib/systemd/system/mariadb@.service the line ExecStartPre=/usr/bin/install -m 755 -o mysql -g root -d /var/run/mysqld should use /run/mysqld since /var/run is considered legacy since Debian buster. -- System Information: Debian Release: 10.2 APT prefers stable APT policy: (990, 'stable'), (500, 'stable-debug'), (500, 'proposed-updates-debug'), (500, 'oldstable') Architecture: amd64 (x86_64) Kernel: Linux 4.19.0-6-amd64 (SMP w/2 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) (ignored: LC_ALL set to C.UTF-8), LANGUAGE=en_US.UTF-8 (charmap=UTF-8) (ignored: LC_ALL set to C.UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) LSM: AppArmor: enabled Versions of packages mariadb-server-10.3 depends on: ii adduser 3.118 ii debconf [debconf-2.0] 1.5.71 ii galera-3 25.3.25-2 ii gawk 1:4.2.1+dfsg-1 ii iproute2 4.20.0-2 ii libc6 2.28-10 ii libdbi-perl 1.642-1+b1 ii libgnutls30 3.6.7-4 ii libpam0g 1.3.1-5 ii libstdc++68.3.0-6 ii lsb-base 10.2019051400 ii lsof 4.91+dfsg-1 ii mariadb-client-10.3 1:10.3.18-0+deb10u1 ii mariadb-common1:10.3.18-0+deb10u1 ii mariadb-server-core-10.3 1:10.3.18-0+deb10u1 ii passwd1:4.5-1.1 ii perl 5.28.1-6 ii psmisc23.2-1 ii rsync 3.1.3-6 ii socat 1.7.3.2-2 ii zlib1g1:1.2.11.dfsg-1 Versions of packages mariadb-server-10.3 recommends: ii libhtml-template-perl 2.97-1 Versions of packages mariadb-server-10.3 suggests: ii bsd-mailx [mailx] 8.1.2-0.20180807cvs-1 ii mailx 1:20071201-3 pn mariadb-test pn netcat-openbsd pn tinyca -- debconf information excluded
Bug#946823: unattended-upgrades: RequiresMountsFor should use /run instead of /var/run
Package: unattended-upgrades
Version: 1.11.2
Severity: normal
/lib/systemd/system/unattended-upgrades.service contains this line:
RequiresMountsFor=/var/log /var/run /var/lib /boot
However on buster there is no mount point for /var/run, but for /run
-- System Information:
Debian Release: 10.2
APT prefers stable
APT policy: (990, 'stable'), (500, 'stable-debug'), (500,
'proposed-updates-debug'), (500, 'oldstable')
Architecture: amd64 (x86_64)
Kernel: Linux 4.19.0-6-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) (ignored: LC_ALL
set to C.UTF-8), LANGUAGE=en_US.UTF-8 (charmap=UTF-8) (ignored: LC_ALL set to
C.UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled
Versions of packages unattended-upgrades depends on:
ii debconf [debconf-2.0] 1.5.71
ii lsb-base 10.2019051400
ii lsb-release10.2019051400
ii python33.7.3-1
ii python3-apt1.8.4
ii python3-dbus 1.2.8-3
ii python3-distro-info0.21
ii ucf3.0038+nmu1
ii xz-utils 5.2.4-1
Versions of packages unattended-upgrades recommends:
ii cron [cron-daemon] 3.0pl1-134+deb10u1
ii systemd-sysv241-7~deb10u2
Versions of packages unattended-upgrades suggests:
ii bsd-mailx 8.1.2-0.20180807cvs-1
ii needrestart 3.4-5
ii postfix [mail-transport-agent] 3.4.7-0+deb10u1
ii powermgmt-base 1.34
ii python3-gi 3.30.4-1
-- debconf information:
unattended-upgrades/enable_auto_updates: true
unattended-upgrades/origins_pattern:
"origin=Debian,codename=${distro_codename},label=Debian-Security";
Bug#675008: bash: should handle /etc/bashrc.d (or similar) for non-login interactive shell
I just had to resort to modifying /etc/bash.bashrc which is really ugly IMHO. Is there anything I can do to make this functionality sane in Debian? Kind regards, Richard van den Berg
Bug#943962: Upstream report
I was able to get a stack trace and reported this upsteam at https://jira.mariadb.org/browse/MDEV-21010
Bug#943962: mariadb-server-10.3: mysqld crashes and hangs, no longer processing requests)
I found the debug packages in http://debug.mirrors.debian.org/debian-debug/pool/main/m/mariadb-10.3/ It seems I broke my apt preferences so it could not find them automatically. Running mysqld now with a gdb on standby...
Bug#943962: [debian-mysql] Bug#943962: mariadb-server-10.3: mysqld crashes and hangs, no longer processing requests
Any pointers to where I can find mariadb-server-core-10.3 for buster with debug symbols would be appreciated.
Bug#943962: [debian-mysql] Bug#943962: mariadb-server-10.3: mysqld crashes and hangs, no longer processing requests
I had looked at https://wiki.debian.org/HowToGetABacktrace but I might be missing something obvious. https://packages.debian.org/search?keywords=mariadb-server-core-10.3 shows mariadb-server-core-10.3-dbgsym to be only available for sid, but I am on buster. # apt update Hit:4 http://deb.debian.org/debian-debug buster-debug InRelease Get:9 http://deb.debian.org/debian-debug buster-proposed-updates-debug InRelease [40.2 kB] Get:12 http://deb.debian.org/debian-debug buster-proposed-updates-debug/main amd64 Packages [59.9 kB] # apt install mariadb-server-core-10.3-dbgsym Reading package lists... Done Building dependency tree Reading state information... Done Package mariadb-server-core-10.3-dbgsym is not available, but is referred to by another package. This may mean that the package is missing, has been obsoleted, or is only available from another source E: Package 'mariadb-server-core-10.3-dbgsym' has no installation candidate # apt-cache search mariadb-server-core dbg # find-dbgsym-packages /usr/sbin/mysqld W: No dbg package for source 'libgpg-error' W: Cannot find debug package for /lib/x86_64-linux-gnu/libgpg-error.so.0 (0b8984cf2f0dd4f4901e9100cdb9410d7ebe7930) W: No dbg package for source 'systemd' W: Cannot find debug package for /lib/x86_64-linux-gnu/libsystemd.so.0 (6793bb7adf4f0ec3b4e32e8fa455f8f404670c9a) W: No dbg package for source 'libgcrypt20' W: Cannot find debug package for /lib/x86_64-linux-gnu/libgcrypt.so.20 (c698702313bfded270bf0c7c106b38c66aa46982) W: No dbg package for source 'snappy' W: Cannot find debug package for /usr/lib/x86_64-linux-gnu/libsnappy.so.1 (5cace6e4a1b7e4056635f7c863aca22a16c8269e) W: No dbg package for source 'mariadb-10.3' W: Cannot find debug package for /usr/sbin/mysqld (9236e06e9ef547c2834e1485de16215016ee3a78) W: No dbg package for source 'libaio' W: Cannot find debug package for /usr/lib/x86_64-linux-gnu/libaio.so.1 (9a169b1c42a22a3575cdda12b7bed7d99e72221c) W: No dbg package for source 'xz-utils' W: Cannot find debug package for /lib/x86_64-linux-gnu/liblzma.so.5 (a465b446328312ea341abff3436660ef4103479a) libgcc1-dbg liblz4-1-dbg libpcre3-dbg libstdc++6-8-dbg zlib1g-dbg
Bug#943962: [debian-mysql] Bug#943962: mariadb-server-10.3: mysqld crashes and hangs, no longer processing requests
On 01/11/2019 22:18, Otto Kekäläinen wrote: > Did you report this bug upstream (as the output said "To report this > bug, see https://mariadb.com/kb/en/reporting-bugs;). This is unlikely > related to the packaging done in Debian. I did not report this upstream yet. The proper thing to do with these type of crashes is to provide a gdb trace. Unfortunately I am not able to find dbg versions of the mariadb-server-10.3 and mariadb-server-core-10.3 debian packages. Are they available somewhere? Kind regards, Richard
Bug#943962: mariadb-server-10.3: mysqld crashes and hangs, no longer processing requests
Package: mariadb-server-10.3 Version: 1:10.3.17-0+deb10u1 Severity: important I run mysqldump (through automysqlbackup) daily. Several times per week during this backup mysqld hangs. The process however stays running and still accepts TCP and socket connections, however no SQL queries are ever answered anymore. This is very serious because systemd does not catch this and leaves the process running. Only a "pkill -9 mysqld" can resolve the situation. In the 15+ years I have been using mysql/mariadb I have never encoutered this situation where my system is left hanging without a working database. If mysqld crashed (this is bad enough) the process should end itself so systemd can restart it. The messages in error.log are: corrupted size vs. prev_size 191101 7:23:41 [ERROR] mysqld got signal 6 ; This could be because you hit a bug. It is also possible that this binary or one of the libraries it was linked against is corrupt, improperly built, or misconfigured. This error can also be caused by malfunctioning hardware. To report this bug, see https://mariadb.com/kb/en/reporting-bugs We will try our best to scrape up some info that will hopefully help diagnose the problem, but since we have already crashed, something is definitely wrong and this may fail. Server version: 10.3.17-MariaDB-0+deb10u1 key_buffer_size=134217728 read_buffer_size=131072 max_used_connections=5 max_threads=153 thread_count=8 It is possible that mysqld could use up to key_buffer_size + (read_buffer_size + sort_buffer_size)*max_threads = 467422 K bytes of memory Hope that's ok; if not, decrease some variables in the equation. Thread pointer: 0x7f2b600014b8 Attempting backtrace. You can use the following information to find out where mysqld died. If you see no messages after this, something went terribly wrong... stack_bottom = 0x7f2bc4814dd8 thread_stack 0x49000 -- System Information: Debian Release: 10.1 APT prefers stable APT policy: (990, 'stable'), (900, 'oldstable') Architecture: amd64 (x86_64) Kernel: Linux 4.19.0-6-amd64 (SMP w/2 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) (ignored: LC_ALL set to C.UTF-8), LANGUAGE=en_US.UTF-8 (charmap=UTF-8) (ignored: LC_ALL set to C.UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) LSM: AppArmor: enabled Versions of packages mariadb-server-10.3 depends on: ii adduser 3.118 ii debconf [debconf-2.0] 1.5.71 ii galera-3 25.3.25-2 ii gawk 1:4.2.1+dfsg-1 ii iproute2 4.20.0-2 ii libc6 2.28-10 ii libdbi-perl 1.642-1+b1 ii libgnutls30 3.6.7-4 ii libpam0g 1.3.1-5 ii libstdc++68.3.0-6 ii lsb-base 10.2019051400 ii lsof 4.91+dfsg-1 ii mariadb-client-10.3 1:10.3.17-0+deb10u1 ii mariadb-common1:10.3.17-0+deb10u1 ii mariadb-server-core-10.3 1:10.3.17-0+deb10u1 ii passwd1:4.5-1.1 ii perl 5.28.1-6 ii psmisc23.2-1 ii rsync 3.1.3-6 ii socat 1.7.3.2-2 ii zlib1g1:1.2.11.dfsg-1 Versions of packages mariadb-server-10.3 recommends: ii libhtml-template-perl 2.97-1 Versions of packages mariadb-server-10.3 suggests: ii bsd-mailx [mailx] 8.1.2-0.20180807cvs-1 ii mailx 1:20071201-3 pn mariadb-test pn netcat-openbsd pn tinyca -- debconf information excluded
Bug#685878: Netatalk 3
Dear package maintainer, Can you please summarize what is needed for netatalk 3 to become available in Debian? It seems bug#751121 is now fixed. Kind regards, Richard van den Berg
Bug#827343: siproxd: Plugins cannot be loaded
Package: siproxd
Version: 1:0.8.1-4+b1
Severity: important
siproxd can't load it's plugins:
Jun 12 22:15:18 majoron siproxd[30035]: plugins.c:88 ERROR:plugin
plugin_logcall.so not found - skipped
This plugin is installed in /usr/lib/x86_64-linux-gnu/siproxd but siproxd
looks for it in /usr/lib/siproxd :
14822 open("/usr/lib/siproxd/plugin_logcall.so", O_RDONLY|O_CLOEXEC) = -1
ENOENT (No such file or directory)
I fixed this with:
ln -s /usr/lib/x86_64-linux-gnu/siproxd /usr/lib/
Now all is good:
Jun 15 09:00:09 majoron siproxd[14870]: plugins.c:112 INFO:Plugin
'plugin_logcall' [Logs calls to syslog] loaded with success, exemask=0x40
-- System Information:
Debian Release: 8.4
APT prefers stable
APT policy: (990, 'stable'), (400, 'testing'), (300, 'unstable')
Architecture: amd64 (x86_64)
Kernel: Linux 3.16.0-4-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
Versions of packages siproxd depends on:
ii adduser 3.113+nmu3
ii libc62.19-18+deb8u4
ii libltdl7 2.4.2-1.11
ii libosip2-11 4.1.0-2
siproxd recommends no packages.
siproxd suggests no packages.
-- Configuration Files:
/etc/default/siproxd changed [not included]
/etc/siproxd.conf changed [not included]
-- no debconf information
Bug#810590: packages.debian.org: contents search: outdated index for sid
This is really annoying. https://packages.debian.org/stretch/collectd-core shows 5.5.1-1 https://packages.qa.debian.org/c/collectd.html shows 5.5.1-2 was accepted on 2016-04-02 Please update packages.debian.org for sid Richard
Bug#806954: bind9: H-Root changes addresses on 1th December 2015
I'm running 1:9.9.5.dfsg-9+deb8u6 and I just found the below warnings repeated every minute in my log. Please update db.root for bind9 in jessie. Mar 28 21:03:55 majoron named[2716]: checkhints: h.root-servers.net/A (198.97.190.53) missing from hints Mar 28 21:03:55 majoron named[2716]: checkhints: h.root-servers.net/A (128.63.2.53) extra record in hints Mar 28 21:03:55 majoron named[2716]: checkhints: h.root-servers.net/ (2001:500:1::53) missing from hints Mar 28 21:03:55 majoron named[2716]: checkhints: h.root-servers.net/ (2001:500:1::803f:235) extra record in hints Mar 28 21:03:55 majoron named[2716]: checkhints: l.root-servers.net/ (2001:500:9f::42) missing from hints Mar 28 21:03:55 majoron named[2716]: checkhints: l.root-servers.net/ (2001:500:3::42) extra record in hints
Bug#506764: siproxd: Problem with DNS resolution when in chroot jail
I can confirm this problem stil exists in siproxd 1:0.8.1-4+b1 : Feb 3 09:51:51 majoron siproxd[7025]: siproxd.c:526 received SIP type REQ:REGISTER Feb 3 09:51:51 majoron siproxd[7025]: utils.c:197 gethostbyname(sip.freevoipdeal.com) failed: h_errno=1 [Unknown host] Editing /etc/hosts and removing all entries for "localhost" (and restarting siproxd) fixes the problem: Feb 3 09:57:00 majoron siproxd[7113]: siproxd.c:526 received SIP type REQ:REGISTER Feb 3 09:57:00 majoron siproxd[7113]: utils.c:215 DNS lookup - resolved: sip.freevoipdeal.com -> 77.72.174.128 Kind regards, Richard
Bug#813534: siproxd: WARNING:couldn't create new PID file: No such file or directory
Package: siproxd Version: 1:0.8.1-4+b1 Severity: normal Tags: patch When running siproxd out of the box I got this in /var/log/messages: Feb 2 21:54:48 majoron siproxd[20351]: utils.c:635 WARNING:couldn't create new PID file: No such file or directory Creating /var/lib/siproxd/var/run/siproxd owned by siproxd:siproxd fixed the warning. -- System Information: Debian Release: 8.3 APT prefers stable APT policy: (990, 'stable'), (400, 'testing'), (300, 'unstable') Architecture: amd64 (x86_64) Kernel: Linux 3.16.0-4-amd64 (SMP w/2 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) Versions of packages siproxd depends on: ii adduser 3.113+nmu3 ii libc62.19-18+deb8u2 ii libltdl7 2.4.2-1.11 ii libosip2-11 4.1.0-2 siproxd recommends no packages. siproxd suggests no packages. -- Configuration Files: /etc/default/siproxd changed [not included] /etc/siproxd.conf changed [not included] -- no debconf information
Bug#813534: siproxd: WARNING:couldn't create new PID file: No such file or directory
On 02-02-16 23:21, Geert Stappers wrote: > 'patch' as "unified patch, output of `diff -u`"? (I didn't see it attached) Patch as in "trivial to fix, here is how". Sorry for my poor .deb skills. >> Creating /var/lib/siproxd/var/run/siproxd owned by siproxd:siproxd fixed the >> warning. > And that is a directory what is created? Yes. > Please send the outpot of > grep run /etc/default/siproxd /etc/siproxd.conf # grep run /etc/default/siproxd /etc/siproxd.conf /etc/siproxd.conf:#If siproxd is not running on the host doing the masquerading /etc/siproxd.conf:# Note: If running in chroot jail, this path starts relative /etc/siproxd.conf:# Note: If running in chroot jail, this path starts relative /etc/siproxd.conf:#pid_file = /var/run/siproxd/siproxd.pid
Bug#598826: strongswan: default config files import non-existing stuff
This bug kind of startled me. After a fresh strongswan install on Jessie I am seeing these messages in /var/log/debug: Feb 2 08:55:22 vpnhost charon: 00[CFG] expanding file expression '/var/lib/strongswan/ipsec.secrets.inc' failed Why include a file that does not exist? Kind regards, Richard van den Berg
Bug#774380: spamassassin: sa-update cronjob complains when spamd is disabled
The patch by Bernhard seems to work fine. This was bothering me since upgrading to jessie. Thanks! Richard
Bug#783687: rsyslog: Update logcheck ignore file for 'action 18'
Package: rsyslog
Version: 8.4.2-1
Severity: wishlist
Tags: patch
After upgrading debian to jessie, logcheck reports the following:
Apr 29 06:35:42 rsyslogd0: action 'action 18' resumed (module
'builtin:ompipe') [try http://www.rsyslog.com/e/0 ]
Apr 29 06:35:42 rsyslogd-2359: action 'action 18' resumed (module
'builtin:ompipe') [try http://www.rsyslog.com/e/2359 ]
Apr 29 07:09:01 rsyslogd-2007: action 'action 18' suspended, next retry
is Wed Apr 29 07:09:31 2015 [try http://www.rsyslog.com/e/2007 ]
Adding the following lines to /etc/logcheck/ignore.d.server/rsyslog will make
logcheck ignore them:
^\w{3} [ :0-9]{11} [._[:alnum:]-]+ rsyslogd[-[:digit:]]+: action 'action 18'
resumed \(module 'builtin:ompipe'\) \[try http://www.rsyslog.com/e/[[:digit:]]+
\]$
^\w{3} [ :0-9]{11} [._[:alnum:]-]+ rsyslogd[-[:digit:]]+: action 'action 18'
suspended, next retry is \w{3} \w{3} [ :0-9]{16} \[try
http://www.rsyslog.com/e/[[:digit:]]+ \]$
-- System Information:
Debian Release: 8.0
APT prefers stable
APT policy: (990, 'stable'), (400, 'testing'), (300, 'unstable')
Architecture: amd64 (x86_64)
Kernel: Linux 3.16.0-4-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
Versions of packages rsyslog depends on:
ii init-system-helpers 1.22
ii initscripts 2.88dsf-59
ii libc62.19-18
ii libestr0 0.1.9-1.1
ii libjson-c2 0.11-4
ii liblogging-stdlog0 1.0.4-1
ii liblognorm1 1.0.1-3
ii libuuid1 2.25.2-6
ii lsb-base 4.1+Debian13+nmu1
ii zlib1g 1:1.2.8.dfsg-2+b1
Versions of packages rsyslog recommends:
ii logrotate 3.8.7-1+b1
Versions of packages rsyslog suggests:
pn rsyslog-docnone
pn rsyslog-gnutls none
pn rsyslog-gssapi none
pn rsyslog-mongodbnone
pn rsyslog-mysql | rsyslog-pgsql none
pn rsyslog-relp none
-- Configuration Files:
/etc/logcheck/ignore.d.server/rsyslog
/etc/logrotate.d/rsyslog
-- no debconf information
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#783633: logcheck-database: Please add rules for systemd
Package: logcheck-database Version: 1.3.17 Severity: wishlist Tags: patch I was quite surprised that after a dist-upgrade I was flooded with systemd messages from logcheck. The appropriate rules are already available at https://wiki.debian.org/systemd/logcheck See also https://lists.debian.org/debian-devel/2014/08/msg00923.html -- System Information: Debian Release: 8.0 APT prefers stable APT policy: (990, 'stable'), (400, 'testing'), (300, 'unstable') Architecture: amd64 (x86_64) Kernel: Linux 3.16.0-4-amd64 (SMP w/2 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) -- Configuration Files: /etc/logcheck/cracking.d/kernel [Errno 13] Permission denied: u'/etc/logcheck/cracking.d/kernel' /etc/logcheck/cracking.d/rlogind [Errno 13] Permission denied: u'/etc/logcheck/cracking.d/rlogind' /etc/logcheck/cracking.d/rsh [Errno 13] Permission denied: u'/etc/logcheck/cracking.d/rsh' /etc/logcheck/cracking.d/smartd [Errno 13] Permission denied: u'/etc/logcheck/cracking.d/smartd' /etc/logcheck/cracking.d/tftpd [Errno 13] Permission denied: u'/etc/logcheck/cracking.d/tftpd' /etc/logcheck/cracking.d/uucico [Errno 13] Permission denied: u'/etc/logcheck/cracking.d/uucico' /etc/logcheck/ignore.d.paranoid/bind [Errno 13] Permission denied: u'/etc/logcheck/ignore.d.paranoid/bind' /etc/logcheck/ignore.d.paranoid/cron [Errno 13] Permission denied: u'/etc/logcheck/ignore.d.paranoid/cron' /etc/logcheck/ignore.d.paranoid/incron [Errno 13] Permission denied: u'/etc/logcheck/ignore.d.paranoid/incron' /etc/logcheck/ignore.d.paranoid/logcheck [Errno 13] Permission denied: u'/etc/logcheck/ignore.d.paranoid/logcheck' /etc/logcheck/ignore.d.paranoid/postfix [Errno 13] Permission denied: u'/etc/logcheck/ignore.d.paranoid/postfix' /etc/logcheck/ignore.d.paranoid/ppp [Errno 13] Permission denied: u'/etc/logcheck/ignore.d.paranoid/ppp' /etc/logcheck/ignore.d.paranoid/pureftp [Errno 13] Permission denied: u'/etc/logcheck/ignore.d.paranoid/pureftp' /etc/logcheck/ignore.d.paranoid/qpopper [Errno 13] Permission denied: u'/etc/logcheck/ignore.d.paranoid/qpopper' /etc/logcheck/ignore.d.paranoid/squid [Errno 13] Permission denied: u'/etc/logcheck/ignore.d.paranoid/squid' /etc/logcheck/ignore.d.paranoid/ssh [Errno 13] Permission denied: u'/etc/logcheck/ignore.d.paranoid/ssh' /etc/logcheck/ignore.d.paranoid/stunnel [Errno 13] Permission denied: u'/etc/logcheck/ignore.d.paranoid/stunnel' /etc/logcheck/ignore.d.paranoid/sysklogd [Errno 13] Permission denied: u'/etc/logcheck/ignore.d.paranoid/sysklogd' /etc/logcheck/ignore.d.paranoid/telnetd [Errno 13] Permission denied: u'/etc/logcheck/ignore.d.paranoid/telnetd' /etc/logcheck/ignore.d.paranoid/tripwire [Errno 13] Permission denied: u'/etc/logcheck/ignore.d.paranoid/tripwire' /etc/logcheck/ignore.d.paranoid/usb [Errno 13] Permission denied: u'/etc/logcheck/ignore.d.paranoid/usb' /etc/logcheck/ignore.d.server/acpid [Errno 13] Permission denied: u'/etc/logcheck/ignore.d.server/acpid' /etc/logcheck/ignore.d.server/amandad [Errno 13] Permission denied: u'/etc/logcheck/ignore.d.server/amandad' /etc/logcheck/ignore.d.server/amavisd-new [Errno 13] Permission denied: u'/etc/logcheck/ignore.d.server/amavisd-new' /etc/logcheck/ignore.d.server/anacron [Errno 13] Permission denied: u'/etc/logcheck/ignore.d.server/anacron' /etc/logcheck/ignore.d.server/anon-proxy [Errno 13] Permission denied: u'/etc/logcheck/ignore.d.server/anon-proxy' /etc/logcheck/ignore.d.server/apache [Errno 13] Permission denied: u'/etc/logcheck/ignore.d.server/apache' /etc/logcheck/ignore.d.server/apcupsd [Errno 13] Permission denied: u'/etc/logcheck/ignore.d.server/apcupsd' /etc/logcheck/ignore.d.server/arpwatch [Errno 13] Permission denied: u'/etc/logcheck/ignore.d.server/arpwatch' /etc/logcheck/ignore.d.server/asterisk [Errno 13] Permission denied: u'/etc/logcheck/ignore.d.server/asterisk' /etc/logcheck/ignore.d.server/automount [Errno 13] Permission denied: u'/etc/logcheck/ignore.d.server/automount' /etc/logcheck/ignore.d.server/bind [Errno 13] Permission denied: u'/etc/logcheck/ignore.d.server/bind' /etc/logcheck/ignore.d.server/bluez-utils [Errno 13] Permission denied: u'/etc/logcheck/ignore.d.server/bluez-utils' /etc/logcheck/ignore.d.server/courier [Errno 13] Permission denied: u'/etc/logcheck/ignore.d.server/courier' /etc/logcheck/ignore.d.server/cpqarrayd [Errno 13] Permission denied: u'/etc/logcheck/ignore.d.server/cpqarrayd' /etc/logcheck/ignore.d.server/cpufreqd [Errno 13] Permission denied: u'/etc/logcheck/ignore.d.server/cpufreqd' /etc/logcheck/ignore.d.server/cron [Errno 13] Permission denied: u'/etc/logcheck/ignore.d.server/cron' /etc/logcheck/ignore.d.server/cron-apt [Errno 13] Permission denied: u'/etc/logcheck/ignore.d.server/cron-apt' /etc/logcheck/ignore.d.server/cups-lpd [Errno 13] Permission denied: u'/etc/logcheck/ignore.d.server/cups-lpd'
Bug#782300: geoip-database-contrib: Quiet mode for cron update
On 14-4-15 08:32 , Patrick Matthäi wrote: Ups, I wanted to say cronfile not screenshot :D $ sudo cat /etc/cron.d/geoip-database-contrib # # Regular cron job for the geoip-database-contrib package, # used to update the GeoLite database. # 0 4 10 * * root[ -x /usr/sbin/geoip-database-contrib_update ] /usr/sbin/geoip-database-contrib_update /dev/null -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#782300: geoip-database-contrib: Quiet mode for cron update
Patrick Matthäi wrote on 13-04-15 18:15: What is the content of those e-mails? Something like this: From: r...@example.com (Cron Daemon) To: r...@example.com Subject: Cron root@example[ -x /usr/sbin/geoip-database-contrib_update ] /usr/sbin/geoip-database-contrib_update /dev/null Content-Type: text/plain; charset=ANSI_X3.4-1968 X-Cron-Env: SHELL=/bin/sh X-Cron-Env: HOME=/root X-Cron-Env: PATH=/usr/bin:/bin X-Cron-Env: LOGNAME=root Message-Id: 20150410020007.e739742...@example.com Date: Fri, 10 Apr 2015 04:00:07 +0200 (CEST) --2015-04-10 04:00:01-- http://geolite.maxmind.com/download/geoip/database/GeoLiteCountry/GeoIP.dat.gz Resolving geolite.maxmind.com (geolite.maxmind.com)... 2400:cb00:2048:1::8d65:73be, 2400:cb00:2048:1::8d65:72be, 141.101.114.190, ... Connecting to geolite.maxmind.com (geolite.maxmind.com)|2400:cb00:2048:1::8d65:73be|:80... connected. HTTP request sent, awaiting response... 200 OK Length: 444521 (434K) [application/octet-stream] Saving to: `/usr/share/GeoIP/GeoIP.dat.gz' 0K .. .. .. .. .. 11% 11.3M 0s 50K .. .. .. .. .. 23% 6.86M 0s 100K .. .. .. .. .. 34% 25.6M 0s 150K .. .. .. .. .. 46% 8.92M 0s 200K .. .. .. .. .. 57% 9.85M 0s 250K .. .. .. .. .. 69% 12.5M 0s 300K .. .. .. .. .. 80% 6.72M 0s 350K .. .. .. .. .. 92% 13.4M 0s 400K .. .. .. 100% 20.2M=0.04s 2015-04-10 04:00:02 (10.5 MB/s) - `/usr/share/GeoIP/GeoIP.dat.gz' saved [444521/444521] [snip] I just double checked, and stderr is indeed the problem. When I run this: /usr/sbin/geoip-database-contrib_update stdout.txt 2 stderr.txt I get: -rw-r--r-- 1 root staff 25478 13 apr 21:05 stderr.txt -rw-r--r-- 1 root staff338 13 apr 21:05 stdout.txt See attachments as well. Adding 21 to /etc/cron.d/geoip-database-contrib will fix this. And could you please also show me your current screenshot? Sure. A screenshot of what though? Kind regards, Richard --2015-04-13 21:05:20-- http://geolite.maxmind.com/download/geoip/database/GeoLiteCountry/GeoIP.dat.gz Resolving geolite.maxmind.com (geolite.maxmind.com)... 2400:cb00:2048:1::8d65:72be, 2400:cb00:2048:1::8d65:73be, 141.101.115.190, ... Connecting to geolite.maxmind.com (geolite.maxmind.com)|2400:cb00:2048:1::8d65:72be|:80... connected. HTTP request sent, awaiting response... 200 OK Length: 444521 (434K) [application/octet-stream] Saving to: `/usr/share/GeoIP/GeoIP.dat.gz' 0K .. .. .. .. .. 11% 8.41M 0s 50K .. .. .. .. .. 23% 9.20M 0s 100K .. .. .. .. .. 34% 9.49M 0s 150K .. .. .. .. .. 46% 10.2M 0s 200K .. .. .. .. .. 57% 10.2M 0s 250K .. .. .. .. .. 69% 11.2M 0s 300K .. .. .. .. .. 80% 11.0M 0s 350K .. .. .. .. .. 92% 11.0M 0s 400K .. .. .. 100% 11.3M=0.04s 2015-04-13 21:05:20 (10.1 MB/s) - `/usr/share/GeoIP/GeoIP.dat.gz' saved [444521/444521] --2015-04-13 21:05:20-- http://geolite.maxmind.com/download/geoip/database/GeoIPv6.dat.gz Resolving geolite.maxmind.com (geolite.maxmind.com)... 2400:cb00:2048:1::8d65:73be, 2400:cb00:2048:1::8d65:72be, 141.101.114.190, ... Connecting to geolite.maxmind.com (geolite.maxmind.com)|2400:cb00:2048:1::8d65:73be|:80... connected. HTTP request sent, awaiting response... 200 OK Length: 705702 (689K) [application/octet-stream] Saving to: `/usr/share/GeoIP/GeoIPv6.dat.gz' 0K .. .. .. .. .. 7% 7.24M 0s 50K .. .. .. .. .. 14% 8.79M 0s 100K .. .. .. .. .. 21% 9.34M 0s 150K .. .. .. .. .. 29% 10.0M 0s 200K .. .. .. .. .. 36% 10.7M 0s 250K .. .. .. .. .. 43% 11.0M 0s 300K .. .. .. .. .. 50% 11.0M 0s 350K .. .. .. .. .. 58% 11.0M 0s 400K .. .. .. .. .. 65% 11.0M 0s 450K .. .. .. .. .. 72% 11.0M 0s 500K .. .. .. .. .. 79% 11.1M 0s 550K .. .. .. .. .. 87% 11.0M 0s 600K .. .. .. ..
Bug#781234: liblz4-tool: Provide virtual package lz4
Package: liblz4-tool Version: 0.0~r122-2 Severity: normal I am not sure why this package has been named liblz4-tool instead of lz4. This made it way too hard too find. Please provide a virtual package named lz4 that depends on liblz4-tool. -- System Information: Debian Release: 7.8 APT prefers stable APT policy: (990, 'stable'), (400, 'testing'), (300, 'unstable') Architecture: amd64 (x86_64) Kernel: Linux 3.13.7 (SMP w/2 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages liblz4-tool depends on: ii libc6 2.19-15 ii liblz4-1 0.0~r122-2 liblz4-tool recommends no packages. liblz4-tool suggests no packages. -- no debconf information -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#762153: [Reproducible-builds] concrete steps for improving apt downloading security and privacy
On 21 sep. 2014, at 20:29, W. Martin Borgert deba...@debian.org wrote: If a package would change by adding another signature, then this would invalidate previous signatures. Package formats like apk and jar avoid this chicken and egg problem by hashing the files inside a package, and storing those hashes in a manifest file. Signatures only sign the manifest file. The manifest itself and the signature files are not part of the manifest, but are part of the package. So a package including it's signature(s) is still a single file. Richard -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#705762: nmap: New upstream version available
Package: nmap Version: 6.00-0.3 Severity: normal Nmap 6.00 is quite buggy. Version 6.25 was released on November 29th 2012: http://seclists.org/nmap-announce/2012/4 Please consider packaging it. -- System Information: Debian Release: 7.0 APT prefers stable APT policy: (990, 'stable'), (400, 'testing'), (300, 'unstable') Architecture: amd64 (x86_64) Kernel: Linux 3.4.0-Soleus (SMP w/2 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages nmap depends on: ii libc62.13-38 ii libgcc1 1:4.7.2-5 ii liblinear1 1.8+dfsg-1 ii liblua5.1-0 5.1.5-4 ii libpcap0.8 1.3.0-1 ii libpcre3 1:8.30-5 ii libssl1.0.0 1.0.1e-2 ii libstdc++6 4.7.2-5 ii python 2.7.3-4 nmap recommends no packages. nmap suggests no packages. -- no debconf information -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#705430: sslh: Incorrect logcheck pattern
Package: sslh
Version: 1.13b-3.2
Severity: normal
The file /etc/logcheck/ignore.d.server/sslh uses [:digit:] to match
port numbers, but port numbers for well known ports are translated to service
names. The correct pattern to use is:
^\w{3} [ :[:digit:]]{11} [._[:alnum:]-]+ (sslh|sslh-select)\[[[:digit:]]+\]:
connection from [^[:space:]]+:[^[:space:]]+ to [^[:space:]]+:[^[:space:]]+
forwarded from [^[:space:]]+:[^[:space:]]+ to
[^[:space:]]+:(https|ssh|openvpn)$
-- System Information:
Debian Release: 7.0
APT prefers stable
APT policy: (990, 'stable'), (400, 'testing'), (300, 'unstable')
Architecture: amd64 (x86_64)
Kernel: Linux 3.4.0-Soleus (SMP w/2 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Versions of packages sslh depends on:
ii adduser 3.113+nmu3
ii debconf 1.5.49
ii libc6 2.13-38
ii libconfig91.4.8-5
ii lsb-base 4.1+Debian8
ii update-inetd 4.43
Versions of packages sslh recommends:
ii apache2 2.2.22-13
ii apache2-mpm-worker [httpd] 2.2.22-13
ii openssh-server [ssh-server] 1:6.0p1-4
Versions of packages sslh suggests:
pn openbsd-inetd | inet-superserver none
-- Configuration Files:
/etc/default/sslh changed [not included]
/etc/logcheck/ignore.d.server/sslh [Errno 13] Permission denied:
u'/etc/logcheck/ignore.d.server/sslh'
-- debconf information excluded
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#705248: modsecurity-crs: wrong location for GeoLiteCity.dat
Package: modsecurity-crs Version: 2.2.5-2 Severity: normal /usr/share/modsecurity-crs/experimental_rules/modsecurity_crs_11_proxy_abuse.conf includes the line: SecGeoLookupDb /usr/local/apache/conf/modsec/GeoLiteCity.dat On debian this file is provided by geoip-database-contrib as /usr/share/GeoIP/GeoLiteCity.dat -- System Information: Debian Release: 7.0 APT prefers stable APT policy: (990, 'stable'), (400, 'testing'), (300, 'unstable') Architecture: amd64 (x86_64) Kernel: Linux 3.4.0-Soleus (SMP w/2 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages modsecurity-crs depends on: ii libapache2-modsecurity 2.6.6-6 modsecurity-crs recommends no packages. Versions of packages modsecurity-crs suggests: pn lua none -- no debconf information -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#705249: modsecurity-crs: Wrong path for arachni_integration.lua
Package: modsecurity-crs Version: 2.2.5-2 Severity: normal In /usr/share/modsecurity-crs/experimental_rules/modsecurity_crs_16_scanner_integration.conf the path /etc/apache2/modsecurity-crs/lua/arachni_integration.lua should be /usr/share/modsecurity-crs/lua/arachni_integration.lua -- System Information: Debian Release: 7.0 APT prefers stable APT policy: (990, 'stable'), (400, 'testing'), (300, 'unstable') Architecture: amd64 (x86_64) Kernel: Linux 3.4.0-Soleus (SMP w/2 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages modsecurity-crs depends on: ii libapache2-modsecurity 2.6.6-6 modsecurity-crs recommends no packages. Versions of packages modsecurity-crs suggests: pn lua none -- no debconf information -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#705250: modsecurity-crs: wrong path for appsensor_request_exception_enforce.lua
Package: modsecurity-crs Version: 2.2.5-2 Severity: normal In /usr/share/modsecurity-crs/experimental_rules/modsecurity_crs_40_appsensor_detection_point_2.1_request_exception.conf the path /usr/local/apache/conf/crs/lua/appsensor_request_exception_enforce.lua should be /usr/share/modsecurity-crs/lua/appsensor_request_exception_enforce.lua -- System Information: Debian Release: 7.0 APT prefers stable APT policy: (990, 'stable'), (400, 'testing'), (300, 'unstable') Architecture: amd64 (x86_64) Kernel: Linux 3.4.0-Soleus (SMP w/2 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages modsecurity-crs depends on: ii libapache2-modsecurity 2.6.6-6 modsecurity-crs recommends no packages. Versions of packages modsecurity-crs suggests: pn lua none -- no debconf information -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#705250: Acknowledgement (modsecurity-crs: wrong path for appsensor_request_exception_enforce.lua)
The same goes for appsensor_request_exception_profile.lua in the same file. -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#705248: Acknowledgement (modsecurity-crs: wrong location for GeoLiteCity.dat)
This pathname is also wrong in experimental/modsecurity_crs_61_ip_forensics.conf -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#705250: Info received (Bug#705250: Acknowledgement (modsecurity-crs: wrong path for appsensor_request_exception_enforce.lua))
I guess I should not have opened separate reports for this issue. Many paths for lua scripts are wrong in the experimental scripts. This is the list of scripts with issues: modsecurity_crs_11_proxy_abuse.conf modsecurity_crs_16_scanner_integration.conf modsecurity_crs_40_appsensor_detection_point_2.1_request_exception.conf modsecurity_crs_55_response_profiling.conf modsecurity_crs_56_pvi_checks.conf modsecurity_crs_61_ip_forensics.conf -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#705252: modsecurity-crs: Execution error - PCRE limits exceeded (-8): (null)
Package: modsecurity-crs Version: 2.2.5-2 Severity: normal All requests are blocked with: --e89aa861-H-- Message: Rule 7f2a17e96280 [id 950901][file /usr/share/modsecurity-crs/activated_rules/modsecurity_crs_41_sql_injection_attacks.conf][line 77] - Execution error - PCRE limits exceeded (-8): (null). Message: Rule 7f2a17e96280 [id 950901][file /usr/share/modsecurity-crs/activated_rules/modsecurity_crs_41_sql_injection_attacks.conf][line 77] - Execution error - PCRE limits exceeded (-8): (null). Message: Rule 7f2a17e96280 [id 950901][file /usr/share/modsecurity-crs/activated_rules/modsecurity_crs_41_sql_injection_attacks.conf][line 77] - Execution error - PCRE limits exceeded (-8): (null). Message: Rule 7f2a17e96280 [id 950901][file /usr/share/modsecurity-crs/activated_rules/modsecurity_crs_41_sql_injection_attacks.conf][line 77] - Execution error - PCRE limits exceeded (-8): (null). Message: Access denied with code 403 (phase 2). Match of streq 0 against TX:MSC_PCRE_LIMITS_EXCEEDED required. [file /etc/modsecurity/modsecurity.conf] [line 95] [msg ModSecurity internal error flagged: TX:MSC_PCRE_LIMITS_EXCEEDED] Action: Intercepted (phase 2) Stopwatch: 1365724321610331 46739 (- - -) Stopwatch2: 1365724321610331 46739; combined=43414, p1=532, p2=41873, p3=0, p4=0, p5=1004, sr=191, sw=5, l=0, gc=0 Response-Body-Transformed: Dechunked Producer: ModSecurity for Apache/2.6.6 (http://www.modsecurity.org/); OWASP_CRS/2.2.5. Server: Apache --e89aa861-Z-- Increasing SecPcreMatchLimit, SecPcreMatchLimitRecursion, pcre.backtrack_limit and pcre.recursion_limit does not help. --e89aa861-Z-- -- System Information: Debian Release: 7.0 APT prefers stable APT policy: (990, 'stable'), (400, 'testing'), (300, 'unstable') Architecture: amd64 (x86_64) Kernel: Linux 3.4.0-Soleus (SMP w/2 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages modsecurity-crs depends on: ii libapache2-modsecurity 2.6.6-6 modsecurity-crs recommends no packages. Versions of packages modsecurity-crs suggests: pn lua none -- no debconf information -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#675451: abcde 2.5.4 uses eyeD3
abcde 2.5.4 and later now use eye3D for MP3 tagging. See https://github.com/johnlane/abcde/blob/master/changelog Kind regards, Richard -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#704174: CVE-2013-2266 fix for bind9 in stable?
Thanks a lot for the quick fix. Will bind9 9.7.3.dfsg-1 in stable also be fixed? I don't see any reports on http://www.debian.org/security/#DSAS and http://lists.debian.org/debian-security-announce/2013/threads.html Kind regards, Richard van den Berg
Bug#639980: wordpress: shipped wp-config.php should not rely on FTP access for themes and plugins (fix included)
I second this request. Adding define(‘FS_METHOD’,'direct’); to the wp-config.php and doing a temporary chown -R www-data /usr/share/wordpress/wp-content/plugins worked like a charm. Richard -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#613283: wordpress: Constants redefined
Package: wordpress Version: 3.0.4+dfsg-1 Severity: normal It seems that the several PHP constant are defined in both /etc/wordpress/wp-config.php and /etc/wordpress/config-*.php leading to the following warnings: [Sun Feb 13 22:00:02 2011] [warn] [client 10.142.246.140] mod_fcgid: stderr: PHP Notice: Constant WP_CORE_UPDATE already defined in /etc/wordpress/wp-config.php on line 36 [Sun Feb 13 22:00:02 2011] [warn] [client 10.142.246.140] mod_fcgid: stderr: PHP Notice: Constant DB_NAME already defined in /etc/wordpress/wp-config.php on line 38 [Sun Feb 13 22:00:02 2011] [warn] [client 10.142.246.140] mod_fcgid: stderr: PHP Notice: Constant DB_USER already defined in /etc/wordpress/wp-config.php on line 39 [Sun Feb 13 22:00:02 2011] [warn] [client 10.142.246.140] mod_fcgid: stderr: PHP Notice: Constant DB_HOST already defined in /etc/wordpress/wp-config.php on line 40 -- System Information: Debian Release: 6.0 APT prefers stable APT policy: (990, 'stable'), (400, 'testing'), (300, 'unstable') Architecture: amd64 (x86_64) Kernel: Linux 2.6.36.3-Soleus (SMP w/1 CPU core) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages wordpress depends on: ii apache22.2.16-6 Apache HTTP Server metapackage ii apache2-mpm-worker [ht 2.2.16-6 Apache HTTP Server - high speed th ii libjs-cropper 1.2.1-2 JavaScript image cropper UI ii libjs-jquery 1.4.2-2 JavaScript library for dynamic web ii libjs-prototype1.6.1-1 JavaScript Framework for dynamic w ii libjs-scriptaculous1.8.3-1 JavaScript library for dynamic web ii libphp-phpmailer 5.1-1 full featured email transfer class ii libphp-snoopy 1.2.4-2 Snoopy is a PHP class that simulat ii mysql-client-5.0 [mysq 5.0.51a-24+lenny4 MySQL database client binaries ii php-gettext1.0.10-1 read gettext MO files directly, wi ii php5 5.3.3-7 server-side, HTML-embedded scripti ii php5-gd5.3.3-7 GD module for php5 ii php5-mysql 5.3.3-7 MySQL module for php5 ii tinymce3.3.8+dfsg0-0.1 platform independent web based Jav Versions of packages wordpress recommends: ii wordpress-l10n 3.0.4+dfsg-1 weblog manager - language files Versions of packages wordpress suggests: ii mysql-server-5.0 [mysq 5.0.51a-24+lenny4 MySQL database server binaries -- no debconf information -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#576568: adding setting -Djava.net.preferIPv4Stack=true makes plugin in browsers work again
Package: sun-java6-bin Version: 6.21-1 Severity: normal I did add deployment.javaws.jre.0.args=-Djava.net.preferIPv4Stack\=true to /etc/java-6-sun/management/management.properties in trying to make this setting system wide, but no succes. I copied the line from ~/.java/deployment/deployment.properties Adding -Djava.net.preferIPv4Stack=true made the Java plugin work in Iceweasel. Regards, Richard van den Berg -- System Information: Debian Release: squeeze/sid APT prefers testing APT policy: (500, 'testing') Architecture: i386 (i686) Kernel: Linux 2.6.26 (SMP w/2 CPU cores) Locale: LANG=nl_NL, LC_CTYPE=nl_NL (charmap=ISO-8859-1) Shell: /bin/sh linked to /bin/bash Versions of packages sun-java6-bin depends on: ii debconf [debconf-2.0] 1.5.32 Debian configuration management sy ii libc6 2.11.2-2 Embedded GNU C Library: Shared lib ii sun-java6-jre 6.21-1 Sun Java(TM) Runtime Environment ( ii unixodbc 2.2.11-21 ODBC tools libraries Versions of packages sun-java6-bin recommends: ii libasound21.0.23-1 shared library for ALSA applicatio ii libnss-mdns 0.10-3.1 NSS module for Multicast DNS name ii libx11-6 2:1.3.3-3 X11 client-side library ii libxext6 2:1.1.1-3 X11 miscellaneous extension librar ii libxi62:1.3-4X11 Input extension library ii libxtst6 2:1.1.0-3 X11 Testing -- Record extension li Versions of packages sun-java6-bin suggests: pn binfmt-supportnone (no description available) -- Configuration Files: /etc/java-6-sun/management/management.properties changed [not included] -- debconf information: * shared/accepted-sun-dlj-v1-1: true shared/error-sun-dlj-v1-1: * shared/present-sun-dlj-v1-1: -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#592716: drupal6: SA-CORE-2010-002 - Drupal core - Multiple vulnerabilities
On 12-8-10 11:37 , Ivan Vilata i Balaguer wrote: DRUPAL-SA-CORE-2010-002 from 2010-08-12 includes several vulnerabilities, some of them allowing malicious site identifying as existing users and gaining administrative access. This seems to be a bug in the OpenID implementation of Drupal. If a site does not have the code module OpenID enabled, I suspect it is not vulnerable? AFAIK the OpenID modules is not enabled by default. I just want to get a reality check on the number of Debian Drupal installations that might be vulnerable. A Debian package of Drupal 6.19 is of course very welcome. Richard -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#592378: wordpress: Multisite should be disabled by default
Package: wordpress
Version: 3.0.1-1
Severity: normal
Since version 3.0.1-1 in /etc/wordpress/wp-config.php the following define
is set:
define('WP_ALLOW_MULTISITE', true);
This causes some plugins like Google XML Sitemaps to stop working. Since the
debian package does not seem to use the multisite features, this define
should be set to false by default.
-- System Information:
Debian Release: 5.0.4
APT prefers stable
APT policy: (990, 'stable'), (400, 'testing'), (300, 'experimental'), (300,
'unstable')
Architecture: amd64 (x86_64)
Kernel: Linux 2.6.33-Soleus64 (SMP w/1 CPU core)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash
Versions of packages wordpress depends on:
ii apache22.2.9-10+lenny6 Apache HTTP Server metapackage
ii apache2-mpm-worker [ht 2.2.15-5 Apache HTTP Server - high speed th
ii libjs-cropper 1.2.1-1 JavaScript image cropper UI
ii libjs-jquery 1.4.1-1 JavaScript library for dynamic web
ii libjs-prototype1.6.1-1 JavaScript Framework for dynamic w
ii libjs-scriptaculous1.8.3-1 JavaScript library for dynamic web
ii libphp-phpmailer 5.1-1 full featured email transfer class
ii libphp-snoopy 1.2.4-1 Snoopy is a PHP class that simulat
ii mysql-client-5.0 [mysq 5.0.51a-24+lenny3 MySQL database client binaries
ii php-gettext1.0.9-1 read gettext MO files directly, wi
ii php5 5.3.1-5 server-side, HTML-embedded scripti
ii php5-gd5.3.1-5 GD module for php5
ii php5-mysql 5.3.1-5 MySQL module for php5
ii tinymce3.2.7-1 platform independent web based Jav
Versions of packages wordpress recommends:
ii wordpress-l10n2.9.2-1weblog manager - language files
Versions of packages wordpress suggests:
ii mysql-server-5.0 [mysq 5.0.51a-24+lenny3 MySQL database server binaries
-- no debconf information
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#581911: Possible fix found for segfaults
I believe a fix for this bug is described at http://bugs.gentoo.org/show_bug.cgi?id=316525 I use mysql as well on my sites. Could this be the same as Debian #577784 ? If so, can you please release a new version that includes the fix? Regards, Richard -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#581911: php5-cgi: General protection and segfaults since 5.3.2
Package: php5-cgi Version: 5.3.2-1 Severity: normal I used php5-cgi 5.3.1 without any problems for months. Since I upgraded to 5.3.1 I get the following messages, a few every hour. Site behaviour seems normal as the errors occur not too often. May 16 23:24:59 majoron kernel: php-cgi[26226] general protection ip:697ce6 sp:7fff3b8d9de0 error:0 in php5-cgi[40+6c9000] May 16 23:29:14 majoron kernel: php-cgi[26352]: segfault at 18a6f3beb9 ip 00698949 sp 7fff2e424d50 error 4 in php5-cgi[40+6c9000] I am using php5-cgi in combination with: apache2-mpm-worker 2.2.15-5 libapache2-mod-fcgid1:2.3.5-1 Looking at the error and access logs, the following php software triggers the errors: drupal6 6.16-1 gallery22.3.1.dfsg-1 However, I think that is just because these hold the most of my pages, so they have a higher chance of being hit. -- System Information: Debian Release: 5.0.4 APT prefers stable APT policy: (990, 'stable'), (400, 'testing'), (300, 'experimental'), (300, 'unstable') Architecture: amd64 (x86_64) Kernel: Linux 2.6.33-Soleus64 (SMP w/1 CPU core) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/bash Versions of packages php5-cgi depends on: ii libbz2-1.0 1.0.5-1 high-quality block-sorting file co ii libc6 2.10.2-6 Embedded GNU C Library: Shared lib ii libcomerr2 1.41.10-1common error description library ii libdb4.84.8.26-1 Berkeley v4.8 Database Libraries [ ii libgssapi-krb5-21.7+dfsg-4 MIT Kerberos runtime libraries - k ii libk5crypto31.7+dfsg-4 MIT Kerberos runtime libraries - C ii libkrb5-3 1.7+dfsg-4 MIT Kerberos runtime libraries ii libmagic1 4.26-1 File type determination library us ii libonig25.9.1-1 Oniguruma regular expressions libr ii libpcre37.8-3Perl 5 Compatible Regular Expressi ii libqdbm14 1.8.74-1.4 QDBM Database Libraries [runtime] ii libssl0.9.8 0.9.8k-8 SSL shared libraries ii libxml2 2.7.6.dfsg-2+b1 GNOME XML library ii mime-support3.44-1 MIME files 'mime.types' 'mailcap ii php5-common 5.3.2-1 Common files for packages built fr ii tzdata 2010a-0lenny1time zone and daylight-saving time ii ucf 3.0016 Update Configuration File: preserv ii zlib1g 1:1.2.3.4.dfsg-3 compression library - runtime php5-cgi recommends no packages. Versions of packages php5-cgi suggests: ii php-pear 5.2.11.dfsg.1-1 PEAR - PHP Extension and Applicati -- no debconf information -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#577782: drupal6 doesn't conflict with php 5.3
I am running drupal6 6.16-1 with php5 5.3.1-5 without any issues. Please
report the issues you are having in http://drupal.org/node/360605
The only patch to 6.16 that is still being used is the one from
http://drupal.org/node/360605#comment-2621856
+// Hide E_DEPRECATED messages.
+if (defined('E_DEPRECATED')) {
+ error_reporting(error_reporting() ^ E_DEPRECATED);
+}
+
Personally, I do not see any E_DEPRECATED messages on my site, so I do
not use this patch.
Richard
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#573889: [Pkg-openssl-devel] Bug#573889: libssl0.9.8: unknown message digest algorithm error in dovecot
On 21-3-10 16:06 , Kurt Roeckx wrote: I've been able to reproduce this with an s_server that uses -ssl3 connecting with an s_client. Thanks! Good to hear we're not crazy. :-) Any insights in the why/where in the code? Or are you sending this upstream? Richard -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#573889: [Pkg-openssl-devel] Bug#573889: libssl0.9.8: unknown message digest algorithm error in dovecot
On 18-3-10 00:19 , Kurt Roeckx wrote:
icedove is not using libssl nor gnutls but uses it's own ssl
library. So it might not be compatible with the current version.
The issue is that the postfix (in my case) and dovecot (Marcus' case)
server components report an error when using 0.9.8m. This is triggered
both by using Thunderbird (I don't run Debian on my desktop) and s_client.
Can you setting up an s_server and connecting with icedove to
that?
I can, but it is using SSL, not STARTTLS. I do not know how to set up an
s_server that accepts STARTTLS.
I have attached a test key and signed certificate that fails for me in
postfix. It should be easy enough to set up a postfix that triggers the
issue with libssl 0.9.8m. (Btw, I created the req and crt using
libssl0.9.8_0.9.8m-2_amd64.deb.)
smtpd_tls_cert_file = /etc/ssl/certs/test.pem
smtpd_tls_CAfile = /etc/ssl/certs/vdberg.org.ca.pem
smtpd_tls_security_level = may
smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache
smtpd_tls_received_header = yes
smtpd_tls_loglevel = 3
To trigger the issue:
openssl s_client -connect localhost:25 -CAfile
/etc/ssl/certs/vdberg.org.ca.pem -starttls smtp
The error will be in /var/log/mail.log
Richard
-BEGIN RSA PRIVATE KEY-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-END RSA PRIVATE KEY-
Certificate:
Data:
Version: 1 (0x0)
Serial Number: 7 (0x7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: O=vdberg.org/emailaddress=hostmas...@vdberg.org, L=Voorburg,
ST=Zuid-Holland, C=NL, CN=vdberg.org private CA
Validity
Not Before: Mar 18 23:44:13 2010 GMT
Not After : Jun 26 23:44:13 2010 GMT
Subject: C=NL, ST=Zuid-Holland, O=vdberg.org, CN=test.vdberg.org
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public Key: (1024 bit)
Modulus (1024 bit):
00:dd:67:ef:76:19:ca:79:81:72:96:db:26:63:82:
f3:a7:ef:f3:82:c9:51:ab:44:0f:74:b1:e7:b4:79:
dc:63:6f:0c:6d:59:fe:8a:5f:f2:34:f7:b7:93:5b:
49:8b:ed:48:90:cb:ec:2e:a1:fe:6c:fc:23:3f:a2:
b6:cd:ad:2c:4a:82:0d:71:80:1b:49:d2:29:0d:54:
34:9e:9c:ef:a9:fa:07:2f:b9:7f:5e:26:58:9c:9a:
cd:54:e3:5e:40:61:61:86:6a:fa:7a:ae:81:a2:71:
12:a2:6d:6d:6d:ad:56:a0:6b:8e:bb:ac:64:6f:95:
2b:a8:f0:33:da:86:3e:c0:8b
Exponent: 65537 (0x10001)
Signature Algorithm: sha256WithRSAEncryption
47:87:51:7f:d8:4c:4b:01:6d:7c:9c:fa:61:b8:90:9e:41:d8:
12:6b:56:68:b9:57:39:a9:76:5a:16:06:94:84:76:c8:11:95:
3b:0c:ac:a1:9a:9a:e9:d9:10:50:0c:4c:fc:db:8f:29:a0:1e:
60:13:4c:d6:3e:c3:5c:52:18:bc:48:07:2b:fe:4b:c1:cd:b8:
16:d0:b1:da:b5:12:48:df:95:f3:6d:a0:0f:2f:76:d6:be:51:
f2:01:83:bd:7c:b3:57:a7:64:ae:9e:68:15:b1:98:82:94:e7:
dc:f0:fa:d8:7c:29:98:5e:3a:3f:f1:ed:d7:5b:0e:10:e3:c8:
1c:a5
-BEGIN CERTIFICATE-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-END CERTIFICATE-
Bug#573889: [Pkg-openssl-devel] Bug#573889: libssl0.9.8: unknown message digest algorithm error in dovecot
On Wed, Mar 17, 2010 at 10:53:07PM +0100, Kurt Roeckx wrote: I ran into similar problems with my dovecot (1.2.10-1) installation. After upgrading to libssl0.9.8m-2 I'm unable to connect to my dovecot server (which uses a self-signed certificate) using tls/ssl connections. I am using dovecot as well, by default using SSL over port 993. My typical imap client is Thunderbird 3.0.3. I just switched the config to starttls over port 143. This worked just fine. The certificate for imap is another one than the one I use for postfix. The are signed by the same CA however. I need some way to reproduce this. I'll see if I can create a key/crt pair that fails for you to test with. Richard -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#573748: [Pkg-openssl-devel] Bug#573748: libssl0.9.8: unknown message digest algorithm error in postfix
On 13-3-10 20:19 , Kurt Roeckx wrote: This works for me: openssl s_client -CAfile ./vdberg.org.ca.pem -connect vdberg.org:26 -starttls smtp Interesting. Does this mean the issue is with postfix only? I checked the postfix code and there is no use of X509_V_FLAG_CHECK_SS_SIGNATURE that grep can find. I am running 2.6.5-3 (2.5.5-1.1 had the same issue). Setting smtpd_tls_loglevel = 3 gives: Mar 14 08:47:04 majoron postfix/smtpd[31776]: SSL_accept:error in SSLv3 read client certificate A Mar 14 08:47:04 majoron postfix/smtpd[31776]: SSL_accept error from 82-171-xxx-yyy.ip.telfort.nl[82.171.xxx.yyy]: -1 Mar 14 08:47:04 majoron postfix/smtpd[31776]: warning: TLS library problem: 31776:error:0D0C50A1:asn1 encoding routines:ASN1_item_verify:unknown message digest algorithm:a_verify.c:146: Does this mean the issue is with the client certificate instead of the server certificate? I am testing with Thunderbird 3.0.3 without any client certificates, and s_client. Even without the -CAfile the issue is triggered server side: openssl s_client -connect vdberg.org:25 -starttls smtp I'm attaching postfix.pem in case it helps. I can also sign a test certificate with my CA if needed. Richard PS: my server is back to libssl0.9.8_0.9.8k-8 now, so the s_client test will succeed now -BEGIN CERTIFICATE- MIICUzCCAbwCAQEwDQYJKoZIhvcNAQELBQAwgZIxEzARBgNVBAoTCnZkYmVyZy5v cmcxJDAiBgkqhkiG9w0BCQEWFWhvc3RtYXN0ZXJAdmRiZXJnLm9yZzERMA8GA1UE BxMIVm9vcmJ1cmcxFTATBgNVBAgTDFp1aWQtSG9sbGFuZDELMAkGA1UEBhMCTkwx HjAcBgNVBAMTFXZkYmVyZy5vcmcgcHJpdmF0ZSBDQTAeFw0wNzAyMTMxMzA4NTJa Fw0xNzAyMTAxMzA4NTJaMFExCzAJBgNVBAYTAk5MMRUwEwYDVQQIEwxadWlkLUhv bGxhbmQxEzARBgNVBAoTCnZkYmVyZy5vcmcxFjAUBgNVBAMTDW14LnZkYmVyZy5v cmcwgZ8wDQYJKoZIhvcNAQEBBQADgY0AMIGJAoGBAJIfXJNNnWIFG8dhrU0qn2cQ tBsQTHHdmSTn1991Z4TPkiYotp1jJYlYkSh4ags4niyVz4aClCqIsB619CDSKZKc SbLMI77+5a+/nvfQ7C91G0Lmcy02AFe4CRILKFpWXv5U59fPgOnPuQuNGoM3Q1DF c2zOscUZtcuUVe87ZSm5AgMBAAEwDQYJKoZIhvcNAQELBQADgYEAmG4SJ57m0Icq 7XxJZWJGcKj/xm/GnZyYM0SkLeR6uMW9aJIQcXs1AAtF1RKCqEw2abnxn642OEqt 8OZUt6ZfUCrhUCQ3KUM/OJQGX7s0z1V9Y7yo0DxRCHTx7TUJBlCMO2MQN/dHbIMP MrUYu7d7lIc1TJ08W4yEjZ+42RyfI2E= -END CERTIFICATE-
Bug#573842: gallery2: Remote module missing
Package: gallery2 Version: 2.3.1.dfsg-1 Severity: normal /usr/share/gallery2/modules/remote/ is missing from this version. IIRC this module was available in the previous Debian package. -- System Information: Debian Release: 5.0.4 APT prefers stable APT policy: (990, 'stable'), (400, 'testing'), (300, 'experimental'), (300, 'unstable') Architecture: amd64 (x86_64) Kernel: Linux 2.6.33-Soleus64 (SMP w/1 CPU core) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/bash Versions of packages gallery2 depends on: ii apache2 2.2.9-10+lenny6 Apache HTTP Server metapackage ii apache2-mpm-pre 2.2.14-7 Apache HTTP Server - traditional n ii debconf [debcon 1.5.24 Debian configuration management sy ii imagemagick 7:6.3.7.9.dfsg2-1~lenny3 image manipulation programs ii libapache2-mod- 5.2.13-0.dotdeb.0server-side, HTML-embedded scripti ii libphp-adodb5.09a-1 The ADOdb database abstraction lay ii mysql-client-5. 5.0.51a-24+lenny3MySQL database client binaries ii php55.2.11.dfsg.1-1 server-side, HTML-embedded scripti ii php5-mysql 5.2.13-0.dotdeb.0MySQL module for php5 ii smarty 2.6.26-0.1 Template engine for PHP ii wwwconfig-commo 0.2.1Debian web auto configuration Versions of packages gallery2 recommends: ii dcraw 8.86-1decode raw digital camera images ii ffmpeg 5:0.5+svn20091224-0.0 audio/video encoder, streaming ser ii jhead 1:2.90-2 manipulate the non-image part of E ii libjpeg-progs 7-1 Programs for manipulating JPEG fil ii php5-gd5.2.13-0.dotdeb.0 GD module for php5 ii unzip 5.52-12 De-archiver for .zip files ii zip2.32-1Archiver for .zip files Versions of packages gallery2 suggests: ii mysql-server-5.0 [mysq 5.0.51a-24+lenny3 MySQL database server binaries -- debconf information: * gallery2/webserver_type: apache2 * gallery2/mysql/dbname: gallery2 * gallery2/mysql/dbserver: localhost * gallery2/mysql/configure: true * gallery2/restart-webserver: false * gallery2/purge: false * gallery2/mysql/dbadmin: root -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#573748: [Pkg-openssl-devel] Bug#573748: libssl0.9.8: unknown message digest algorithm error in postfix
On 14-3-10 12:31 , Kurt Roeckx wrote: Can you reproduce it using an s_server and s_client? Nope, that all seems to work just fine. Maybe a starttls works a little different than a straight SSL connection? Port 465 of postfix works just fine as well. # openssl s_server -cert /etc/ssl/certs/postfix.pem -CAfile /etc/ssl/certs/vdberg.org.ca.pem Using default temp DH parameters Using default temp ECDH parameters ACCEPT -BEGIN SSL SESSION PARAMETERS- MHUCAQECAgMBBAIAOQQgHDCxbWFXYH/8JtyGH9/S2nnkTG4wpNZAh13Biab0mRsE MLFHd4rP2l5k+JTGo5isIDQw5zMV7M9m996pSTVf0uh8DJLIr1FPF6f7UQXuZyor p6EGAgRLnM8IogQCAgEspAYEBAE= -END SSL SESSION PARAMETERS- Shared ciphers:DHE-RSA-AES256-SHA:DHE-DSS-AES256-SHA:AES256-SHA:EDH-RSA-DES-CBC3-SHA:EDH-DSS-DES-CBC3-SHA:DES-CBC3-SHA:DHE-RSA-AES128-SHA:DHE-DSS-AES128-SHA:AES128-SHA:RC4-SHA:RC4-MD5:EDH-RSA-DES-CBC-SHA:EDH-DSS-DES-CBC-SHA:DES-CBC-SHA:EXP-EDH-RSA-DES-CBC-SHA:EXP-EDH-DSS-DES-CBC-SHA:EXP-DES-CBC-SHA:EXP-RC2-CBC-MD5:EXP-RC4-MD5 CIPHER is DHE-RSA-AES256-SHA $ openssl s_client -connect vdberg.org:4433 CONNECTED(0003) depth=1 /O=vdberg.org/emailaddress=hostmas...@vdberg.org/L=Voorburg/ST=Zuid-Holland/C=NL/CN=vdberg.org private CA verify error:num=19:self signed certificate in certificate chain verify return:0 --- Certificate chain 0 s:/C=NL/ST=Zuid-Holland/O=vdberg.org/CN=mx.vdberg.org i:/O=vdberg.org/emailaddress=hostmas...@vdberg.org/L=Voorburg/ST=Zuid-Holland/C=NL/CN=vdberg.org private CA 1 s:/O=vdberg.org/emailaddress=hostmas...@vdberg.org/L=Voorburg/ST=Zuid-Holland/C=NL/CN=vdberg.org private CA i:/O=vdberg.org/emailaddress=hostmas...@vdberg.org/L=Voorburg/ST=Zuid-Holland/C=NL/CN=vdberg.org private CA --- Server certificate -BEGIN CERTIFICATE- MIICUzCCAbwCAQEwDQYJKoZIhvcNAQELBQAwgZIxEzARBgNVBAoTCnZkYmVyZy5v cmcxJDAiBgkqhkiG9w0BCQEWFWhvc3RtYXN0ZXJAdmRiZXJnLm9yZzERMA8GA1UE BxMIVm9vcmJ1cmcxFTATBgNVBAgTDFp1aWQtSG9sbGFuZDELMAkGA1UEBhMCTkwx HjAcBgNVBAMTFXZkYmVyZy5vcmcgcHJpdmF0ZSBDQTAeFw0wNzAyMTMxMzA4NTJa Fw0xNzAyMTAxMzA4NTJaMFExCzAJBgNVBAYTAk5MMRUwEwYDVQQIEwxadWlkLUhv bGxhbmQxEzARBgNVBAoTCnZkYmVyZy5vcmcxFjAUBgNVBAMTDW14LnZkYmVyZy5v cmcwgZ8wDQYJKoZIhvcNAQEBBQADgY0AMIGJAoGBAJIfXJNNnWIFG8dhrU0qn2cQ tBsQTHHdmSTn1991Z4TPkiYotp1jJYlYkSh4ags4niyVz4aClCqIsB619CDSKZKc SbLMI77+5a+/nvfQ7C91G0Lmcy02AFe4CRILKFpWXv5U59fPgOnPuQuNGoM3Q1DF c2zOscUZtcuUVe87ZSm5AgMBAAEwDQYJKoZIhvcNAQELBQADgYEAmG4SJ57m0Icq 7XxJZWJGcKj/xm/GnZyYM0SkLeR6uMW9aJIQcXs1AAtF1RKCqEw2abnxn642OEqt 8OZUt6ZfUCrhUCQ3KUM/OJQGX7s0z1V9Y7yo0DxRCHTx7TUJBlCMO2MQN/dHbIMP MrUYu7d7lIc1TJ08W4yEjZ+42RyfI2E= -END CERTIFICATE- subject=/C=NL/ST=Zuid-Holland/O=vdberg.org/CN=mx.vdberg.org issuer=/O=vdberg.org/emailaddress=hostmas...@vdberg.org/L=Voorburg/ST=Zuid-Holland/C=NL/CN=vdberg.org private CA --- No client certificate CA names sent --- SSL handshake has read 1976 bytes and written 255 bytes --- New, TLSv1/SSLv3, Cipher is DHE-RSA-AES256-SHA Server public key is 1024 bit Compression: NONE Expansion: NONE SSL-Session: Protocol : TLSv1 Cipher: DHE-RSA-AES256-SHA Session-ID: 1C30B16D6157607FFC26DC861FDFD2DA79E44C6E30A4D640875DC189A6F4991B Session-ID-ctx: Master-Key: B147778ACFDA5E64F894C6A398AC203430E73315ECCF66F7DEA949355FD2E87C0C92C8AF514F17A7FB5105EE672A2BA7 Key-Arg : None Start Time: 1268567816 Timeout : 300 (sec) Verify return code: 19 (self signed certificate in certificate chain) --- -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#573748: [Pkg-openssl-devel] Bug#573748: libssl0.9.8: unknown message digest algorithm error in postfix
On 14-3-10 12:31 , Kurt Roeckx wrote: Can you reproduce it using an s_server and s_client? Is there a way for s_server to simulate a starttls server? Richard -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#573748: libssl0.9.8: unknown message digest algorithm error in postfix
Package: libssl0.9.8 Version: 0.9.8m-2 Severity: important With this version I am not longer able to use my self signed signatures in postfix. The error that is reported in mail.log is: Mar 13 15:42:59 majoron postfix/smtpd[14710]: SSL_accept error from xxx.cable.ziggo.nl[94.209.xxx.yyy]: -1 Mar 13 15:42:59 majoron postfix/smtpd[14710]: warning: TLS library problem: 14710:error:0D0C50A1:asn1 encoding routines:ASN1_item_verify:unknown message digest algorithm:a_verify.c:146: I can reporduce the error with $ openssl s_client -connect vdberg.org:26 -CAfile /etc/ssl/certs/vdberg.org.ca.pem -starttls smtp CONNECTED(0003) 5657:error:140790E5:SSL routines:SSL23_WRITE:ssl handshake failure:s23_lib.c:188: This looks a lot like #541735 which was fixed in 0.9.8k-5 Reverting back to libssl0.9.8_0.9.8k-7_amd64.deb solved this issue for me. -- System Information: Debian Release: 5.0.4 APT prefers stable APT policy: (990, 'stable'), (400, 'testing'), (300, 'experimental'), (300, 'unstable') Architecture: amd64 (x86_64) Kernel: Linux 2.6.33-Soleus64 (SMP w/1 CPU core) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/bash Versions of packages libssl0.9.8 depends on: ii debconf [debconf-2.0] 1.5.24 Debian configuration management sy ii libc6 2.10.2-6 Embedded GNU C Library: Shared lib ii zlib1g 1:1.2.3.4.dfsg-3 compression library - runtime libssl0.9.8 recommends no packages. libssl0.9.8 suggests no packages. -- debconf information excluded -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#573748: [Pkg-openssl-devel] Bug#573748: libssl0.9.8: unknown message digest algorithm error in postfix
On Sat, Mar 13, 2010 at 06:19:47PM +0100, Kurt Roeckx wrote: So I don't have a way to reproduce it. Can you send vdberg.org.ca.pem? Sure. Here it is. Do you need my postfix.pem as well? Richard -BEGIN CERTIFICATE- MIIDnzCCAwigAwIBAgIJAKv6nIzv+pQLMA0GCSqGSIb3DQEBCwUAMIGSMRMwEQYD VQQKEwp2ZGJlcmcub3JnMSQwIgYJKoZIhvcNAQkBFhVob3N0bWFzdGVyQHZkYmVy Zy5vcmcxETAPBgNVBAcTCFZvb3JidXJnMRUwEwYDVQQIEwxadWlkLUhvbGxhbmQx CzAJBgNVBAYTAk5MMR4wHAYDVQQDExV2ZGJlcmcub3JnIHByaXZhdGUgQ0EwHhcN MDcwMjEzMTMwNzQwWhcNMTcwMjEwMTMwNzQwWjCBkjETMBEGA1UEChMKdmRiZXJn Lm9yZzEkMCIGCSqGSIb3DQEJARYVaG9zdG1hc3RlckB2ZGJlcmcub3JnMREwDwYD VQQHEwhWb29yYnVyZzEVMBMGA1UECBMMWnVpZC1Ib2xsYW5kMQswCQYDVQQGEwJO TDEeMBwGA1UEAxMVdmRiZXJnLm9yZyBwcml2YXRlIENBMIGfMA0GCSqGSIb3DQEB AQUAA4GNADCBiQKBgQDj0AlHO/KeU/iKkrWsHRgemsYF4Xi+ZqtuTX/AN8jQMaKJ tM5+xSkQ6r4a7AX++Ue+7H4zg5XZJ7ZyR5Cg7+6SvZ86eEHh5qcF6jADCSiRzULY XAd2HXg+b5c1tMQn4fiSjak11rjuM0GJ4QjZ/bojYhor5uER4LWEtfNGZFAmIQID AQABo4H6MIH3MAwGA1UdEwQFMAMBAf8wHQYDVR0OBBYEFLA0jCpz/lCQNIw7qWTN m7tWSnNEMIHHBgNVHSMEgb8wgbyAFLA0jCpz/lCQNIw7qWTNm7tWSnNEoYGYpIGV MIGSMRMwEQYDVQQKEwp2ZGJlcmcub3JnMSQwIgYJKoZIhvcNAQkBFhVob3N0bWFz dGVyQHZkYmVyZy5vcmcxETAPBgNVBAcTCFZvb3JidXJnMRUwEwYDVQQIEwxadWlk LUhvbGxhbmQxCzAJBgNVBAYTAk5MMR4wHAYDVQQDExV2ZGJlcmcub3JnIHByaXZh dGUgQ0GCCQCr+pyM7/qUCzANBgkqhkiG9w0BAQsFAAOBgQAI4iNOp20ffz9Byss6 51lZ3aMdbldWzW8IWYqd62uDmy9ShW3Y8ItAij+gHJnfwrqo174/PwyMUYG6O6Go PCcnrCV+j6Jk4eCznOJqQ5SRI6mPXEKQmiXKBvBIJC1HqNgQTw1k3RgAnuZxqRKr VL9zoaLGXGjpm/PIc1FPatHHrg== -END CERTIFICATE-
Bug#114851: abcde - allow for extra command to be run after tagging
On Sat, 27 Feb 2010 18:15:34 +, Colin Tuckley col...@debian.org wrote: A long time ago you opened Debian bug 114851 Wow, that is a very old bug! Do you still think that this is a useful feature bearing in mind that id3lib has been fixed for a long time and no one else has commented on the request? No, I don't use this feature any more. Regards, Richard -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#561832: wordpress: Miscellaneous settings link missing
Thanks for the hint Franck. That indeed is a bug in
/usr/share/wordpress/wp-admin/menu.php :
$submenu['options-general.php'][45] = array(__('Miscellaneous'),
'manage_options', 'options-misc.php');
$submenu['options-general.php'][45] = array(__('Security'),
'manage_options', 'options-security.php');
The submenu for Miscellaneous gets overwritten by the Security submenu.
Can this be fixed in the next release of the wordpresss package?
Cheers,
Richard
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#524361: phpbb3 package unmaintained?
The last activity shown on http://packages.qa.debian.org/p/phpbb3.html is from almost a year ago. Should we consider the phpbb3 package to be unmaintained? Regards, Richard -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#524361: phpbb3 package unmaintained?
On Wed, 13 Jan 2010 15:46:59 +0100, Thijs Kinkhorst th...@debian.org wrote: Are you interested to join? I know nothing about maintaining debian packages, and only very little about phpbb3. I just use it on my site (and I don't even use the debian package because the phpbb3 I use is heavily modified). Besides the technical aspect, I don't have much time either. I just wanted to get it clear. Thanks for your explanation and the time and effort you put into maintaining this package. Cheers, Richard -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#564561: Security issue: MySQL root password stored in /etc/gallery2/config.php
Package: gallery2 Version: 2.3-1 Severity: normal When configuring the gallery2 package, it asks for a Database admin user account capable of creating new databases. In other debian packages that use MySQL, the install scripts creates a new database and a new MySQL user with write access to that database. The gallery package however stores the admin user and password typed in during configuration in /etc/gallery2/config.php. This is not expected and not wanted. Since this file is owned by www-data, a minor bug in any php script can cause the MySQL root password to be revealed. This might be related to bug #328778 -- System Information: Debian Release: 5.0.3 APT prefers stable APT policy: (990, 'stable'), (400, 'testing'), (300, 'experimental'), (300, 'unstable') Architecture: amd64 (x86_64) Kernel: Linux 2.6.31.6-Soleus64 (SMP w/1 CPU core) Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) Shell: /bin/sh linked to /bin/bash Versions of packages gallery2 depends on: ii apache2 2.2.9-10+lenny6 Apache HTTP Server metapackage ii apache2-mpm-pre 2.2.14-3 Apache HTTP Server - traditional n ii debconf [debcon 1.5.24 Debian configuration management sy ii imagemagick 7:6.3.7.9.dfsg2-1~lenny3 image manipulation programs ii libapache2-mod- 5.2.11.dfsg.1-1 server-side, HTML-embedded scripti ii libphp-adodb5.09a-1 The ADOdb database abstraction lay ii mysql-client-5. 5.0.51a-24+lenny2MySQL database client binaries ii php55.2.11.dfsg.1-1 server-side, HTML-embedded scripti ii php5-mysql 5.2.11.dfsg.1-1 MySQL module for php5 ii smarty 2.6.26-0.1 Template engine for PHP ii wwwconfig-commo 0.2.1Debian web auto configuration Versions of packages gallery2 recommends: ii dcraw 8.86-1decode raw digital camera images ii ffmpeg 5:0.5+svn20091224-0.0 audio/video encoder, streaming ser ii jhead 1:2.88-1 manipulate the non-image part of E ii libjpeg-progs 7-1 Programs for manipulating JPEG fil ii php5-gd5.2.11.dfsg.1-1 GD module for php5 ii unzip 5.52-12 De-archiver for .zip files ii zip2.32-1Archiver for .zip files Versions of packages gallery2 suggests: ii mysql-server-5.0 [mysq 5.0.51a-24+lenny2 MySQL database server binaries -- debconf information: gallery2/webserver_type: apache, apache-ssl, apache-perl, apache2 gallery2/mysql/dbname: gallery2 * gallery2/mysql/dbserver: localhost gallery2/mysql/configure: true * gallery2/restart-webserver: false gallery2/purge: true * gallery2/mysql/dbadmin: root -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#561832: wordpress: Miscellaneous settings link missing
Package: wordpress Version: 2.8.6-1 Severity: normal I just moved my wordpress blogs from one debian host to another. When recreating the databases and configs, I noticed the $upload_path and $upload_url_path are now being set in the config file. I knew for sure I had overridden them using the Dashboard. I looked for the setting there, but could not find them. It seems they are on the Miscellaneous Settings page, and the link to this page is missing on all my blogs. Is this caused by the debian package? If so, please make it visible again. See also http://wordpress.org/support/topic/289342 -- System Information: Debian Release: 5.0.3 APT prefers stable APT policy: (990, 'stable'), (400, 'testing'), (300, 'experimental'), (300, 'unstable') Architecture: amd64 (x86_64) Kernel: Linux 2.6.31.6-Soleus64 (SMP w/1 CPU core) Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) Shell: /bin/sh linked to /bin/bash Versions of packages wordpress depends on: ii apache22.2.9-10+lenny6 Apache HTTP Server metapackage ii apache2-mpm-prefork [h 2.2.14-3 Apache HTTP Server - traditional n ii libapache2-mod-php55.2.11.dfsg.1-1 server-side, HTML-embedded scripti ii libjs-cropper 1.2.1-1 JavaScript image cropper UI ii libjs-jquery 1.3.3-2 JavaScript library for dynamic web ii libjs-prototype1.6.1-1 JavaScript Framework for dynamic w ii libjs-scriptaculous1.8.3-1 JavaScript library for dynamic web ii libphp-phpmailer 2.3-2 full featured email transfer class ii libphp-snoopy 1.2.4-1 Snoopy is a PHP class that simulat ii mysql-client-5.0 [mysq 5.0.51a-24+lenny2 MySQL database client binaries ii php-gettext1.0.7-8 read gettext MO files directly, wi ii php5 5.2.11.dfsg.1-1 server-side, HTML-embedded scripti ii php5-gd5.2.11.dfsg.1-1 GD module for php5 ii php5-mysql 5.2.11.dfsg.1-1 MySQL module for php5 ii tinymce3.2.7-1 platform independent web based Jav Versions of packages wordpress recommends: ii wordpress-l10n2.8.6-1weblog manager - language files Versions of packages wordpress suggests: ii mysql-server-5.0 [mysq 5.0.51a-24+lenny2 MySQL database server binaries -- no debconf information -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#544579: roundcube: Default language not set by debconf
Package: roundcube Version: 0.2.2-1 Severity: normal As you can see below I set the default language to nl_NL, however /etc/roundcube/main.inc.php showed: $rcmail_config['language'] = null; I set this to nl_NL manually to get the desired effect. -- System Information: Debian Release: 5.0.2 APT prefers stable APT policy: (990, 'stable'), (400, 'testing'), (300, 'experimental'), (300, 'unstable') Architecture: amd64 (x86_64) Kernel: Linux 2.6.24-rvdb Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/bash Versions of packages roundcube depends on: ii roundcube-core0.2.2-1skinnable AJAX based webmail solut roundcube recommends no packages. roundcube suggests no packages. Versions of packages roundcube-core depends on: ii apache22.2.9-10+lenny3 Apache HTTP Server metapackage ii apache2-mpm-prefor 2.2.9-10+lenny3 Apache HTTP Server - traditional n ii dbconfig-common1.8.39common framework for packaging dat ii debconf [debconf-2 1.5.24Debian configuration management sy ii libmagic1 4.26-1File type determination library us ii php-auth 1.6.1-1 PHP PEAR modules for creating an a ii php-mail-mime 1.5.2-0.1 PHP PEAR module for creating MIME ii php-mdb2 2.5.0b2-1 PHP PEAR module to provide a commo ii php-net-smtp 1.3.1-1 PHP PEAR module implementing SMTP ii php-net-socket 1.0.8-2 PHP PEAR Network Socket Interface ii php5 5.2.6.dfsg.1-1+lenny3 server-side, HTML-embedded scripti ii php5-gd5.2.10.dfsg.1-2 GD module for php5 ii php5-mcrypt5.2.10.dfsg.1-2 MCrypt module for php5 ii php5-pspell5.2.10.dfsg.1-2 pspell module for php5 ii roundcube-mysql0.2.2-1 metapackage providing MySQL depend ii tinymce3.2.6-1 platform independent web based Jav ii ucf3.0016Update Configuration File: preserv -- debconf information: * roundcube/dbconfig-install: true roundcube/db/dbname: roundcube roundcube/pgsql/authmethod-admin: ident roundcube/pgsql/admin-user: postgres roundcube/internal/skip-preseed: false roundcube/db/app-user: roundcube roundcube/dbconfig-reinstall: false * roundcube/restart-webserver: false roundcube/dbconfig-upgrade: true roundcube/remote/port: roundcube/pgsql/no-empty-passwords: roundcube/passwords-do-not-match: roundcube/internal/reconfiguring: false roundcube/upgrade-error: abort roundcube/pgsql/authmethod-user: password roundcube/purge: false * roundcube/language: nl_NL roundcube/remote/newhost: roundcube/pgsql/changeconf: false roundcube/upgrade-backup: true roundcube/install-error: abort roundcube/mysql/admin-user: root * roundcube/hosts: localhost roundcube/dbconfig-remove: roundcube/mysql/method: unix socket roundcube/remove-error: abort roundcube/pgsql/method: unix socket roundcube/pgsql/manualconf: roundcube/db/basepath: * roundcube/reconfigure-webserver: apache2 * roundcube/database-type: mysql roundcube/remote/host: roundcube/missing-db-package-error: abort -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#541102: Remote users may reset the admin password
I tried the URL from the advisory on my wordpress 2.7.1-2 blog, and it said the key was invalid. The admin password was not reset. Regards, Richard -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#531736: CVE-2008-6767, CVE-2008-6762
On Thu, June 4, 2009 09:08, Andrea De Iacovo wrote: The fix should be something really simple like checking user preferences before proceding to the upgrade. I hope to have a fix ready in the next days. I might be mistaken, but doesn't the upgrade.php assume that the wordpress php files are owned by the same Linux user id that runs the upgrade.php? This is not the case on debian systems. Or can the update.php also be used to upgrade plugins? The way I run my web servers (different user id for owning the files) the whole online upgrade process is quite useless. Regards, Richard -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#529309: drupal6: New upstream version available
Package: drupal6 Version: 6.11-1 Severity: normal A new verions of Drupal 6.x is available from http://drupal.org/project/drupal which fixes a cross site scripting bug. Please package it. -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#524525: libmp3-info-perl: get_mp3tag() ignores APE tag when RAW_V2 is 1
Package: libmp3-info-perl
Version: 1.23-1
Severity: normal
I have ReplayGain information in APE tags on my mp3s created by mp3gain.
Using this simple test program:
#!/usr/bin/perl
use MP3::Info;
$file=$ARGV[0];
$info=get_mp3tag($file,2,1,1);
while ( ($k,$v) = each %$info ) {
print $k = $v\n;
}
the APE tags are completely ignored:
TRCK = 1/11
TPOS = 1 / 1
TIT2 = Closer
TYER = 2008
TCON = Rock
TXXX = ARRAY(0x71db48)
GENRE =
TPE1 = Kings of Leon
TAGVERSION = ID3v2.3.0
TPE2 = Kings of Leon
TALB = Only By the Night
Using get_mp3tag($file,2,2,1) however, they are shown:
REPLAYGAIN_ALBUM_PEAK = 1.096118
TPOS = 1 / 1
TYER = 2008
REPLAYGAIN_ALBUM_GAIN = -9.31 dB
REPLAYGAIN_TRACK_PEAK = 1.051479
GENRE =
TPE1 = Kings of Leon
TAGVERSION = ID3v2.3.0
TPE2 = Kings of Leon
MP3GAIN_MINMAX = 071,210
TALB = Only By the Night
TRCK = 1/11
ACCURATERIPDISCID = 011-0010e284-009228a3-9809ff0b-1
MP3GAIN_ALBUM_MINMAX = 062,210
TIT2 = Closer
TCON = Rock
REPLAYGAIN_TRACK_GAIN = -10.17000 dB
ACCURATERIPRESULT = AccurateRip: Not in database [7AEDD37B]
-- System Information:
Debian Release: 5.0
APT prefers stable
APT policy: (990, 'stable'), (400, 'testing'), (300, 'experimental'), (300,
'unstable')
Architecture: amd64 (x86_64)
Kernel: Linux 2.6.24-rvdb
Locale: LANG=en_US.ISO-8859-15, LC_CTYPE=en_US.ISO-8859-15 (charmap=ISO-8859-15)
Shell: /bin/sh linked to /bin/bash
Versions of packages libmp3-info-perl depends on:
ii libunicode-string-perl2.09-3+b1 Perl modules for Unicode strings
ii perl 5.10.0-19 Larry Wall's Practical Extraction
libmp3-info-perl recommends no packages.
libmp3-info-perl suggests no packages.
-- no debconf information
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#523804: libmp3-tag-perl: get_frame_ids() documentation error
Package: libmp3-tag-perl Version: 0.9710-1 Severity: minor /usr/share/man/man3/MP3::Tag::ID3v2.3pm.gz says: If there are multiple occurences of a frame in one tag, the first frame is returned with its normal short name, following frames of this type get a '00', '01', '02', ... appended to this name. However, in my testing the '00' case never occurs. For example, when an MP3 has multiple COMM tags, get_frame_ids() and get_frame() will support: COMM COMM01 COMM02 etc -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#522250: amavisd-new: Negative SMTP resp. to DATA
Package: amavisd-new Version: 1:2.6.2-2 Severity: normal Tags: patch I receive the following logging: Apr 2 00:28:03 vps amavis[7146]: (07146-18) Negative SMTP resp. to DATA: 503 5.5.1 Error: need RCPT command Apr 2 00:28:03 vps amavis[7146]: (07146-18) (!)SEND via SMTP: postmas...@example.com - quarant...@example.com,envid=am..20090401t2228...@example.com 501 5.1.7 Failed, id=07146-18, from MTA([127.0.0.1]:10025): 501 5.1.7 Bad sender address syntax I believe the cause (and solution) is discussed here: http://www.mail-archive.com/amavis-u...@lists.sourceforge.net/msg13370.html -- System Information: Debian Release: 5.0 APT prefers stable APT policy: (900, 'stable'), (400, 'testing') Architecture: amd64 (x86_64) Kernel: Linux 2.6.16.29-xen (SMP w/4 CPU cores) Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) Shell: /bin/sh linked to /bin/bash Versions of packages amavisd-new depends on: ii adduser 3.110 add and remove users and groups ii debconf [debconf-2.0] 1.5.24 Debian configuration management sy ii file 4.26-1 Determines file type using magic ii libarchive-zip-perl 1.18-1 Module for manipulation of ZIP arc ii libberkeleydb-perl0.34-1+b1 use Berkeley DB 4 databases from P ii libcompress-zlib-perl 2.012-1Perl module for creation and manip ii libconvert-tnef-perl 0.17-8 Perl module to read TNEF files ii libconvert-uulib-perl 1.11-1 Perl interface to the uulib librar pn libdigest-md5-perlnone (no description available) ii libio-stringy-perl2.110-4Perl modules for IO from scalars a ii libmailtools-perl 2.03-1 Manipulate email in perl programs pn libmime-base64-perl none (no description available) ii libmime-tools-perl5.427-1Perl5 modules for MIME-compliant m ii libnet-server-perl0.97-1 An extensible, general perl server ii libunix-syslog-perl 1.1-2 Perl interface to the UNIX syslog( ii pax 1:1.5-16 Portable Archive Interchange ii perl [libtime-hires-perl] 5.10.0-19 Larry Wall's Practical Extraction ii perl-modules [libarchive-tar- 5.10.0-19 Core Perl modules amavisd-new recommends no packages. Versions of packages amavisd-new suggests: pn apt-listchangesnone(no description available) ii arj3.10.22-6 archiver for .arj files pn cabextract none(no description available) pn clamav none(no description available) ii clamav-daemon 0.94.dfsg.2-1 anti-virus utility for Unix - scan ii cpio 2.9-13GNU cpio -- a program to manage ar pn dspam none(no description available) ii lha1.14i-10.3lzh archiver ii libauthen-sasl-perl2.12-1Authen::SASL - SASL Authentication ii libdbi-perl1.605-1 Perl5 database interface by Tim Bu pn libmail-dkim-perl none(no description available) pn libnet-ldap-perl none(no description available) ii lzop 1.02~rc1-2fast compression program ii nomarch1.4-1 Unpacks .ARC and .ARK MS-DOS archi pn p7zip none(no description available) pn rpmnone(no description available) ii spamassassin 3.2.5-2 Perl-based spam filter using text ii unrar 1:3.8.2-1 Unarchiver for .rar files (non-fre pn unrar-free none(no description available) ii zoo2.10-21 manipulate zoo archives -- debconf information: amavisd-new/outdated_config_style_warning: -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#521669: abcde: Support TPE2 tag for multi/various artists CDs
Package: abcde Version: 2.3.99.6-1 Severity: wishlist I recently started using iTunes on my mp3 collection created by abcde. iTunes expects the TPE2 id3v2 tag to be set on multi/various artists albums. It would be great if abcde could set this tag to Various Artists when a multi artist CD is detected. -- System Information: Debian Release: 5.0 APT prefers stable APT policy: (990, 'stable'), (400, 'testing'), (300, 'experimental'), (300, 'unstable') Architecture: amd64 (x86_64) Kernel: Linux 2.6.24-rvdb Locale: LANG=en_US.ISO-8859-15, LC_CTYPE=en_US.ISO-8859-15 (charmap=ISO-8859-15) Shell: /bin/sh linked to /bin/bash Versions of packages abcde depends on: ii cd-discid0.9-1 CDDB DiscID utility ii cdparanoia 3.10.2+debian-5 audio extraction tool for sampling ii flac 1.2.1-1.2 Free Lossless Audio Codec - comman ii lame 3.98.2-0.3 LAME Ain't an MP3 Encoder ii vorbis-tools 1.2.0-5 several Ogg Vorbis tools ii wget 1.11.4-2retrieves files from the web abcde recommends no packages. Versions of packages abcde suggests: pn distmp3 none (no description available) ii eject 2.1.5+deb1-4 ejects CDs and operates CD-Changer pn eyed3 none (no description available) ii id3 0.15-1 An ID3 Tag Editor ii id3v2 0.1.11-3 A command line id3v2 tag editor pn mkcue none (no description available) ii mp3gain 1.4.6-7 Lossless mp3 normalizer with stati ii normalize-audio 0.7.7-2 adjusts the volume of WAV, MP3 and pn python-musicbrainz none (no description available) pn vorbisgain none (no description available) -- no debconf information -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#521669: Acknowledgement (abcde: Support TPE2 tag for multi/various artists CDs)
I've created a quick patch that works for me.
*** /usr/bin/abcde Sat Mar 14 22:56:31 2009
--- /tmp/abcde.new Sun Mar 29 13:06:18 2009
***
*** 802,812
$ABCDETEMPDIR/track$1.$OUTPUT
;;
*)
# FIXME # track numbers in mp3 come
with 1/10, so we cannot
# happily substitute them with $TRACKNUM
run_command tagtrack-$OUTPUT-$1 nice
$ENCNICE $TAGGER $TAGGEROPTS -c $COMMENTOUTPUT \
-A $DALBUM -a $TRACKARTIST
-t $TRACKNAME -y $CDYEAR \
! -g $GENREID -T
${TRACKNUM:-$1/$TRACKS} \
$ABCDETEMPDIR/track$1.$OUTPUT
;;
esac
--- 802,819
$ABCDETEMPDIR/track$1.$OUTPUT
;;
*)
+ # Set TPE2 if needed
+ TPE2=
+ VATAG=
+ if [ $VARIOUSARTISTS = y ]; then
+ TPE2=--TPE2
+ VATAG=Various Artists
+ fi
# FIXME # track numbers in mp3 come
with 1/10, so we cannot
# happily substitute them with $TRACKNUM
run_command tagtrack-$OUTPUT-$1 nice
$ENCNICE $TAGGER $TAGGEROPTS -c $COMMENTOUTPUT \
-A $DALBUM -a $TRACKARTIST
-t $TRACKNAME -y $CDYEAR \
! -g $GENREID -T
${TRACKNUM:-$1/$TRACKS} $TPE2 $VATAG \
$ABCDETEMPDIR/track$1.$OUTPUT
;;
esac
Bug#514044: By default atmailopen act as an open imap/pop3 proxy
Package: atmailopen Version: 1.03+dfsg+svn91-1 Severity: grave Tags: security Justification: user security hole When atmailopen is enabled on a site by editing /etc/atmailopen/apache.conf or /etc/atmailopen/lighttpd.conf the software allows anyone with access to the web server to make a connection from that server to any imap or pop3 host. This can be prevented by setting allowed_mailservers and/or mailserver in /usr/share/atmailopen/libs/Atmail/Config.php to localhost. This should be the default. -- System Information: Debian Release: 5.0 APT prefers stable APT policy: (990, 'stable'), (400, 'testing'), (300, 'experimental'), (300, 'unstable') Architecture: amd64 (x86_64) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.24-rvdb Locale: LANG=en_US.ISO-8859-15, LC_CTYPE=en_US.ISO-8859-15 (charmap=ISO-8859-15) Versions of packages atmailopen depends on: ii apache22.2.9-10+lenny2 Apache HTTP Server metapackage ii apache2-mpm-prefor 2.2.9-10+lenny2 Apache HTTP Server - traditional n ii dbconfig-common1.8.29+etch1 common framework for packaging dat ii debconf [debconf-2 1.5.11etch2 Debian configuration management sy ii fckeditor 1:2.6.2-1 rich text format javascript web ed ii libjs-prototype1.6.0.2-4 JavaScript Framework for dynamic w ii mysql-client 5.0.32-7etch8 mysql database client (meta packag ii mysql-client-5.0 [ 5.0.32-7etch8 mysql database client binaries ii php-date 1.4.7-1 PHP PEAR module for date and time ii php-db 1.7.13-2 PHP PEAR Database Abstraction Laye ii php-mail 1.1.14-1 PHP PEAR module for sending email ii php-mail-mime 1.5.2-0.1 PHP PEAR module for creating MIME ii php-net-ldap 1:1.1.1-1 a OO interface for searching and m ii php-net-smtp 1.3.1-1 PHP PEAR module implementing SMTP ii php-net-socket 1.0.8-2 PHP PEAR Network Socket Interface ii php5 5.2.6.dfsg.1-1+lenny2 server-side, HTML-embedded scripti ii php5-mysql 5.2.6.dfsg.1-1+lenny2 MySQL module for php5 atmailopen recommends no packages. -- debconf information excluded -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#514045: atmailopen: No documentation
Package: atmailopen Version: 1.03+dfsg+svn91-1 Severity: normal This package is not properly documented. There is no installation guide, and no explanation of the settings in /usr/share/atmailopen/libs/Atmail/Config.php -- System Information: Debian Release: 5.0 APT prefers stable APT policy: (990, 'stable'), (400, 'testing'), (300, 'experimental'), (300, 'unstable') Architecture: amd64 (x86_64) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.24-rvdb Locale: LANG=en_US.ISO-8859-15, LC_CTYPE=en_US.ISO-8859-15 (charmap=ISO-8859-15) Versions of packages atmailopen depends on: ii apache22.2.9-10+lenny2 Apache HTTP Server metapackage ii apache2-mpm-prefor 2.2.9-10+lenny2 Apache HTTP Server - traditional n ii dbconfig-common1.8.29+etch1 common framework for packaging dat ii debconf [debconf-2 1.5.11etch2 Debian configuration management sy ii fckeditor 1:2.6.2-1 rich text format javascript web ed ii libjs-prototype1.6.0.2-4 JavaScript Framework for dynamic w ii mysql-client 5.0.32-7etch8 mysql database client (meta packag ii mysql-client-5.0 [ 5.0.32-7etch8 mysql database client binaries ii php-date 1.4.7-1 PHP PEAR module for date and time ii php-db 1.7.13-2 PHP PEAR Database Abstraction Laye ii php-mail 1.1.14-1 PHP PEAR module for sending email ii php-mail-mime 1.5.2-0.1 PHP PEAR module for creating MIME ii php-net-ldap 1:1.1.1-1 a OO interface for searching and m ii php-net-smtp 1.3.1-1 PHP PEAR module implementing SMTP ii php-net-socket 1.0.8-2 PHP PEAR Network Socket Interface ii php5 5.2.6.dfsg.1-1+lenny2 server-side, HTML-embedded scripti ii php5-mysql 5.2.6.dfsg.1-1+lenny2 MySQL module for php5 atmailopen recommends no packages. -- debconf information excluded -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#513977: atmailopen: Default LDAP server should be removed
Package: atmailopen Version: 1.03+dfsg+svn91-1 Severity: normal The default /usr/share/atmailopen/libs/Atmail/Config.php uses the University of Washington LDAP server: 'ldap_server' = 'directory.washington.edu', 'base_dn' = 'o=University of Washington,c=US', This is very confusing and should be removed. Versions of packages atmailopen depends on: ii apache22.2.9-10+lenny2 Apache HTTP Server metapackage ii apache2-mpm-prefor 2.2.9-10+lenny2 Apache HTTP Server - traditional n ii dbconfig-common1.8.29+etch1 common framework for packaging dat ii debconf [debconf-2 1.5.11etch2 Debian configuration management sy ii fckeditor 1:2.6.2-1 rich text format javascript web ed ii libjs-prototype1.6.0.2-4 JavaScript Framework for dynamic w ii mysql-client 5.0.32-7etch8 mysql database client (meta packag ii mysql-client-5.0 [ 5.0.32-7etch8 mysql database client binaries ii php-date 1.4.7-1 PHP PEAR module for date and time ii php-db 1.7.13-2 PHP PEAR Database Abstraction Laye ii php-mail 1.1.14-1 PHP PEAR module for sending email ii php-mail-mime 1.5.2-0.1 PHP PEAR module for creating MIME ii php-net-ldap 1:1.1.1-1 a OO interface for searching and m ii php-net-smtp 1.3.1-1 PHP PEAR module implementing SMTP ii php-net-socket 1.0.8-2 PHP PEAR Network Socket Interface ii php5 5.2.6.dfsg.1-1+lenny2 server-side, HTML-embedded scripti ii php5-mysql 5.2.6.dfsg.1-1+lenny2 MySQL module for php5 atmailopen recommends no packages. -- debconf information excluded -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#513978: atmailopen: mailserver_auth should be 0
Package: atmailopen Version: 1.03+dfsg+svn91-1 Severity: normal In /usr/share/atmailopen/libs/Atmail/Config.php mailserver_auth is set to 1. This makes atmail log in to the imap server using usern...@domain. This is incompatible with dovecot. I believe the sane default for mailserver_auth is 0. -- System Information: Debian Release: 5.0 APT prefers stable APT policy: (990, 'stable'), (400, 'testing'), (300, 'experimental'), (300, 'unstable') Architecture: amd64 (x86_64) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.24-rvdb Locale: LANG=en_US.ISO-8859-15, LC_CTYPE=en_US.ISO-8859-15 (charmap=ISO-8859-15) Versions of packages atmailopen depends on: ii apache22.2.9-10+lenny2 Apache HTTP Server metapackage ii apache2-mpm-prefor 2.2.9-10+lenny2 Apache HTTP Server - traditional n ii dbconfig-common1.8.29+etch1 common framework for packaging dat ii debconf [debconf-2 1.5.11etch2 Debian configuration management sy ii fckeditor 1:2.6.2-1 rich text format javascript web ed ii libjs-prototype1.6.0.2-4 JavaScript Framework for dynamic w ii mysql-client 5.0.32-7etch8 mysql database client (meta packag ii mysql-client-5.0 [ 5.0.32-7etch8 mysql database client binaries ii php-date 1.4.7-1 PHP PEAR module for date and time ii php-db 1.7.13-2 PHP PEAR Database Abstraction Laye ii php-mail 1.1.14-1 PHP PEAR module for sending email ii php-mail-mime 1.5.2-0.1 PHP PEAR module for creating MIME ii php-net-ldap 1:1.1.1-1 a OO interface for searching and m ii php-net-smtp 1.3.1-1 PHP PEAR module implementing SMTP ii php-net-socket 1.0.8-2 PHP PEAR Network Socket Interface ii php5 5.2.6.dfsg.1-1+lenny2 server-side, HTML-embedded scripti ii php5-mysql 5.2.6.dfsg.1-1+lenny2 MySQL module for php5 atmailopen recommends no packages. -- debconf information excluded -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#508872: Packaging phpbb 3.0.4
Are there any plans to fix this important bug? For example by packaging phpbb 3.0.4? Regards, Richard -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#508872: Packaging phpbb 3.0.4
On 5-1-2009 23:58, Thijs Kinkhorst wrote: For example by packaging phpbb 3.0.4? This is unfortunately not possible, because Lenny is already frozen. Understood, but what about sid (or experimental)? Regards, Richard
Bug#510098: wordpress: Wordpress upload fails with Flash 10
Laurens Blankers wrote: The Wordpress media upload functionality does not work with the newest Acrobat Flash plugin (10) although it works fine with the previous version (9). I can confirm that this bug is also present in the 2.6.2-1 version of the Debian wordpress package. Regards, Richard -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#508502: wordpress: Wordpress 2.7 is out
Package: wordpress Version: 2.6.2-1 Severity: wishlist Wordpress 2.7 has been released. It would be great if it could replace version 2.6.2 that is currently in experimental. -- System Information: Debian Release: lenny/sid APT prefers stable APT policy: (990, 'stable'), (400, 'testing'), (300, 'experimental'), (300, 'unstable') Architecture: amd64 (x86_64) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.24-rvdb Locale: LANG=en_US.ISO-8859-15, LC_CTYPE=en_US.ISO-8859-15 (charmap=ISO-8859-15) Versions of packages wordpress depends on: ii apache22.2.9-10 Apache HTTP Server metapackage ii apache2-mpm-prefork [httpd 2.2.9-10 Apache HTTP Server - traditional n ii libapache2-mod-php55.2.6-5 server-side, HTML-embedded scripti ii libjs-prototype1.6.0.2-4 JavaScript Framework for dynamic w ii libjs-scriptaculous1.8.1-5 JavaScript library for dynamic web ii libphp-phpmailer 1.73-6full featured email transfer class ii mysql-client-5.0 [virtual- 5.0.32-7etch8 mysql database client binaries ii php5-gd5.2.6-5 GD module for php5 ii php5-mysql 5.2.6-5 MySQL module for php5 ii tinymce3.2.0.2-0.1 platform independent web based Jav wordpress recommends no packages. -- no debconf information -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#507981: wordpress: Correction for README.Debian
Package: wordpress Version: 2.6.2-1 Severity: minor In /usr/share/doc/wordpress/README.Debian there is a reference to the non-existing URL http://codex.wordpress.org/Backing_up_your_database please change this to http://codex.wordpress.org/Backing_Up_Your_Database -- System Information: Debian Release: 4.0 APT prefers stable APT policy: (990, 'stable'), (400, 'testing'), (300, 'experimental'), (300, 'unstable') Architecture: amd64 (x86_64) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.24-rvdb Locale: LANG=en_US.ISO-8859-15, LC_CTYPE=en_US.ISO-8859-15 (charmap=ISO-8859-15) Versions of packages wordpress depends on: ii apache22.2.9-10 Apache HTTP Server metapackage ii apache2-mpm-prefork [httpd 2.2.9-10 Apache HTTP Server - traditional n ii libapache2-mod-php55.2.6-5 server-side, HTML-embedded scripti ii libjs-prototype1.6.0.2-4 JavaScript Framework for dynamic w ii libjs-scriptaculous1.8.1-5 JavaScript library for dynamic web ii libphp-phpmailer 1.73-6full featured email transfer class ii mysql-client-5.0 [virtual- 5.0.32-7etch8 mysql database client binaries ii php5-gd5.2.6-5 GD module for php5 ii php5-mysql 5.2.6-5 MySQL module for php5 ii tinymce3.2.0.2-0.1 platform independent web based Jav wordpress recommends no packages. -- no debconf information -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#507356: wordpress: Please update experimental package
Package: wordpress Version: 2.6.2-1 Severity: wishlist With the recent serious vulnerabilitites found, I'd appreciate it if the experimental package of wordpress could be updated. I'd rather not be forced to downgrade to 2.5.x. -- System Information: Debian Release: 4.0 APT prefers stable APT policy: (990, 'stable'), (400, 'testing'), (300, 'experimental'), (300, 'unstable') Architecture: amd64 (x86_64) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.24-rvdb Locale: LANG=en_US.ISO-8859-15, LC_CTYPE=en_US.ISO-8859-15 (charmap=ISO-8859-15) Versions of packages wordpress depends on: ii apache2-mpm-prefork [httpd 2.2.9-10 Apache HTTP Server - traditional n ii libapache2-mod-php55.2.6-5 server-side, HTML-embedded scripti ii libjs-prototype1.6.0.2-4 JavaScript Framework for dynamic w ii libjs-scriptaculous1.8.1-5 JavaScript library for dynamic web ii libphp-phpmailer 1.73-6full featured email transfer class ii mysql-client-5.0 [virtual- 5.0.32-7etch6 mysql database client binaries ii php5-gd5.2.6-5 GD module for php5 ii php5-mysql 5.2.6-5 MySQL module for php5 ii tinymce3.2.0.2-0.1 platform independent web based Jav wordpress recommends no packages. -- no debconf information -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#504771: not a critical issue
On 8-11-2008 0:09, Andrea De Iacovo wrote:
6. we can try to prepare a workaround while we wait an officile fix from
upstream: maybe I could implement a function to check out if dangerous
cookies are present and stop any other operation until those cookies are
not removed.
There is an easy fix suggestion at
http://brian.moonspot.net/2008/01/17/responsible-use-of-the-_request-variable/
$user_input = array_merge($_GET, $_POST);
or even better:
if(!empty($_POST)){
$user_input = $_POST;
} elseif {
$user_input = $_GET;
}
Now replace all usage of $_REQUEST with $user_input. Sounds safe, but
needs testing.. in case wordpress actually reads cookie values from
$_REQUEST (yuck).
Regards,
Richard
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#459884: nmap: Error in man page
Fyodor wrote: I'm afraid it isn't that easy. nmap.1 is generated from DocBook source (docs/nmap.xml in the Nmap tarball) using xsltproc. The best solution would be to fix whatever part of the toolchain is producing the invalid nroff. If you have suggestions or ideas, I'd be happy to hear them. We use DocBook as the official man page source because we also generate HTML and PDF versions. I understand there is a flaw in the generation process that is beyond your control, but the fact remains that the debian package ships with a faulty man page. The fix (at least for debian) might be easy by patching nmap.1 after it has been generated. I filed this bug from a usability perspective (viewing the man page generates errors and misses 2 lines), not to point out anyone made a mistake somewhere. Richard -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#459884: nmap: Error in man page
Package: nmap Version: 4.50-4 Severity: normal When running man nmap, I get: /tmp/zmanLs6Vo2:999: a special character is not allowed in a name /tmp/zmanLs6Vo2:999: warning: `nse' not defined (probable missing space after `ns') /tmp/zmanLs6Vo2:1025: warning: `nse)' not defined (probable missing space after `ns') This is because in /usr/share/man/man1/nmap.1.gz twice a line starts with \.nse which is confused for the .ns nroff no-space mode command. A fix suggested at http://seclists.org/nmap-dev/2007/q4/0305.html is to put the \.nse on the previous line. -- System Information: Debian Release: 4.0 APT prefers stable APT policy: (990, 'stable'), (400, 'testing'), (300, 'experimental'), (300, 'unstable') Architecture: amd64 (x86_64) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.22-rvdb Locale: LANG=en_US.ISO-8859-15, LC_CTYPE=en_US.ISO-8859-15 (charmap=ISO-8859-15) Versions of packages nmap depends on: ii libc6 2.7-5 GNU C Library: Shared libraries ii libgcc1 1:4.2.2-4 GCC support library ii libpcap0.80.9.5-1System interface for user-level pa ii libpcre3 6.7+7.4-2 Perl 5 Compatible Regular Expressi ii libssl0.9.8 0.9.8g-3 SSL shared libraries ii libstdc++64.2.2-4The GNU Standard C++ Library v3 nmap recommends no packages. -- no debconf information -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#410495: Nikto 2.0 has been released
Can someone please update the debian package? Nikto 2.0 has been released: http://www.cirt.net/code/nikto.shtml -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#447264: apache2.2-common: icons do not work on virtualhost with mod_rewrite on
Stefan Fritsch wrote:
From the source it appears that this error message can only appear
when you have RewriteRules in either .htaccess, Directory context,
or Location context. So look for those.
Thanks for that pointer. Now I found the offending rules, inside a
site-enabled file for my webmail virtual host:
IfModule rewrite_module
IfModule ssl_module
Location /
RewriteEngine on
RewriteCond %{HTTPS} !^on$ [NC]
RewriteCond %{HTTP_HOST} ^webmail [NC]
RewriteRule . https://%{HTTP_HOST}%{REQUEST_URI} [L]
/Location
/IfModule
/IfModule
When I move those rules inside the Virtualhost tags, everything works.
I still don't understand how these rules could have caused this problem.
What do these rules have to do with symlinks for the /icons directory?
Thanks for the help!
Richard
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#447264: apache2.2-common: icons do not work on virtualhost with mod_rewrite on
All I have for rewrite rules are like the following, stripping www from
the site name. They are in /etc/apache2/sites-available/default
RewriteCond %{HTTP_HOST} www.rob.roukens.org [NC]
RewriteRule ^.*$ http://rob.roukens.org/ [R,L]
Here is one example of a virtual host that showed this problem. None of
the paths mentioned are symlinks:
VirtualHost *:80
DocumentRoot /home/erik/rob_html
Directory /home/erik/rob_html
Options Indexes MultiViews FollowSymLinks
AllowOverride Limit
/Directory
ServerName rob.roukens.org
ErrorLog /var/log/apache2/rob-error.log
LogLevel warn
CustomLog /var/log/apache2/rob-access.log combined
ServerSignature On
/VirtualHost
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#447264: apache2.2-common: icons do not work on virtualhost with mod_rewrite on
Stefan Fritsch wrote: Maybe you got confused by the browser cache and the problem was actually something else? Can you reproduce it again if you remove the SymLinksIfOwnerMatch from /usr/share/apache2/icons? I removed it, and get the error when I visit http://rob.roukens.org/images1/ (the root directory now has an index.html). See for yourself: no icons when you visit that link. [Sat Nov 10 08:32:46 2007] [error] [client w.x.y.z] Options FollowSymLinks or SymLinksIfOwnerMatch is off which implies that RewriteRule directive is forbidden: /usr/share/apache2/icons/unknown.gif, referer: http://rob.roukens.org/images1/ Do you have any .htaccess files, either in /usr/share/apache2/icons or in /home/erik/rob_html? Nope, no .htaccess files in those directories, or images1 directory. Richard -- Met vriendelijke groeten, Richard van den Berg -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
