Package: nftables
Version: 0.9.1-2
Severity: wishlist
In iptables-restore, if a hostname has 3 addresses, you will end up with 3
rules, e.g.
-A INPUT -d www -j ACCEPT
--expands to-->
-A INPUT -d 127.0.0.1 -j ACCEPT
-A INPUT -d 10.0.0.1 -j ACCEPT
-A INPUT -d 172.16.0.1
Package: nfs-kernel-server
Version: 1:1.3.4-2.5
Severity: minor
File: /usr/share/man/man8/rpc.nfsd.8.gz
The manpage says:
> nproc
>
> specify the number of NFS server threads.
> By default, just one thread is started.
> However, for optimum performance several threads should be used.
Package: iptables
Version: 1.8.2-4
Severity: minor
This appears to be wrong -- the DNAT is "eaten":
root@not-omega:~# iptables-translate -t filter -A INPUT -m conntrack
--ctstate DNAT -j ACCEPT
nft add rule ip filter INPUT ct state counter accept
root@not-omega:~#
Package: nftables
Version: 0.9.1-2
Severity: important
I was aligning literal numbers with leading zeroes (instead of spaces).
I found that nft treats "010" as an octal number, i.e. 010 = 8. Fine.
But nft also thinks that 099 = 0!
nft should error out when it encounters such an invalid octal.
Package: nftables
Version: 0.9.1-2
Severity: normal
While studying RFC 4890 I ran into parsing problems.
I have narrowed it down to the ruleset below.
Note the typo ("174" should be "147") results in overlapping intervals
with conflicting verdicts.
I think this should result in an error rather
Package: nftables
Version: 0.9.1-2
Severity: minor
The nftables file parser allows newlines in literal sets and maps.
It allows comments in them -- but it doesn't allow comments on their own line.
I think this is a mistake, and the parser should be changed to allow them.
A simple example ruleset
Michael Biebl wrote:
> Am 10.07.19 um 07:12 schrieb Trent W. Buck:
>
> > "systemd-analyze security systemd-resolved" claims for that
> > PrivateTmp= "does not apply", though it clearly does.
>
> I guess this is the essence of the bug report then and t
Trent W. Buck wrote:
> But I also noticed that "systemd-analyze security" says that PrivateTmp=yes
> will be ignored:
>
> # SYSTEMD_PAGER='grep apply' systemd-analyze security procps.service
> PrivateTmp= Servic
Package: systemd
Version: 241-5
Severity: minor
After discovering "systemd-analyze security", I went around adding
systemd-level confinement to units,
e.g. remove modprobe privileges from all units that don't modprobe.
I noticed that adding PrivateTmp=yes to keyboard-setup.service and
FTR,
Vincent Lefevre wrote:
> On 2008-06-02 05:30:11 +, Matthew Hall wrote:
> > Package: dropbear
> > Version: 0.51-1
> > Severity: normal
> > Tags: security
> >
> > The dropbear server should include support for disallowing the usage of
> > blacklisted SSH keys generated on systems which
Package: e2fsprogs
Version: 1.45.2-1
Severity: minor
File: /sbin/e2scrub_all
e2scrub_all calls e2scrub with the wrong argument:
root@not-omega:~# e2scrub_all -A -r -n
Would execute: /sbin/e2scrub -r /dev/VG0/e2scrub-test-lv.e2scrub
root@not-omega:~# /sbin/e2scrub -r
Package: udisks2
Version: 2.8.1-4
Severity: minor
File: /lib/systemd/system/zram-setup@.service
Tags: patch
The core package (i.e. udisk2, not udisks2-zram) ships a udev rule and a
systemd unit to configure zram.
These fire on "modprobe zram", even when udisks2-zram isn't installed, and
Package: alsa-utils
Version: 1.1.8-2
Severity: wishlist
File: /lib/systemd/system/alsa-state.service
Tags: patch
alsa-state.service tells alsactl to lower its own priority.
This can be done "natively" in systemd.
This allows us to use seccomp-bpf to completely block access to those syscalls
Michael Biebl wrote:
> Hi
>
> Am 20.06.19 um 09:57 schrieb Trent W. Buck:
> > Package: systemd
> > Version: 241-5
> > Severity: minor
> > File: /usr/bin/systemd-analyze
> >
> > Below are two units which both block @debug syscalls (confirmed by strace
&
Package: systemd
Version: 241-5
Severity: minor
File: /usr/bin/systemd-analyze
Below are two units which both block @debug syscalls (confirmed by strace
crashing).
systemd-analyze incorrectly claims @debug is allowed in one of them.
It seems a "blacklist-only" SystemCallFilter= results in a
Mattia Rizzolo wrote:
> On Tue, Jun 04, 2019 at 07:13:37AM +0200, Rene Engelhard wrote:
> > > c. make some crappy symlinks th_en_XX_v2.dic -> th_en_US_v2.dic.
> > > This works for me.
> > >
> > > The downside is that debian/*.links and
> > > dictionaries/*/dictionaries.xcu can get
I just noticed I broke gzip(1) by blocking fchown(2).
Attached is what I'm using now (see especially SystemCallFilter=).
# FIXME: convince upstream to use logrotate instead of an equivalent sh script!
[Service]
PrivateNetwork=yes
User=ntpsec
PrivateUsers=yes
PrivateNetwork=yes
Rene Engelhard wrote:
> On Mon, Jun 03, 2019 at 10:04:02PM +0200, Rene Engelhard wrote:
> > $ apt-cache show mythes-en-us
> > Package: mythes-en-us
> > Source: libreoffice-dictionaries
>
> Sorry, edited and sent too fast. This is the key point here. This mythes
> dict is *exactly* what gets
tag 929923 + patch
thanks
Rene Engelhard wrote:
> On Mon, Jun 03, 2019 at 07:21:47PM +1000, Trent W. Buck wrote:
>> Upstream, LibreOffice uses a dictionaries.xcu file to say "use the en_US
>> thesaurus for ALL en locales".
>> AFAICT Debian doesn't ship
Package: mythes-en-us
Version: 1:5.2.5-1
Severity: normal
Hi Rene et al.
My users are in en_AU.UTF-8 locale.
They reported that Tools > Thesaurus doesn't work with mythes-en-us installed.
Debian has a mythes-en-au, but it's a REALLY old one (2011) that predates
LibreOffice.
Upstream,
Package: systemd-cron
Version: 1.5.14-2
Severity: normal
This log strongly indicates systemd-cron is trying to "do things" with backup
files:
2019-05-31T01:29:30+1000 not-omega systemd[1]: cron.target: Wants
dependency dropin
Package: ntpsec
Version: 1.1.3+dfsg1-2
Severity: wishlist
Tags: patch
When using systemd and systemd-cron (instead of ISC vixie cron),
your cron jobs are marked as "failing" by systemd, because
they have non-zero exit status.
This is because you do
test1 && test2 && do something
So if
e(s) in volume
group "VG0" now active
That last one wasn't an error; it succeeded.
Description: Backup to /var/backup/lvm/ (not /etc/lvm/) by default.
See also discussion on https://bugs.debian.org/525579
(This patch does NOT fix that bug, though!)
Author: Trent W. Buck
---
The infor
> Why not use "fstrim --all --verbose" instead?
I knew there would be a reason, I just didn't know what it was.
The reason is to avoid trimming on ad-hoc mounted devices:
Package: util-linux
Version: 2.33.1-0.1
Severity: wishlist
File: /lib/systemd/system/fstrim.service
Currently fstrim.service runs "fstrim --fstab --verbose", so it silently ignores
* Stuff mounted via hand-written systemd.mount units (e.g.
/usr/share/systemd/tmp.mount);
* ZFS datasets
PS: one thing "systemd-analyze security" doesn't cover AT ALL is service denial
attacks.
For example, one day I mounted a backup drive (full of snapshots) on
/mnt instead of /media, and the overnight mlocate updatedb cron job
tried to scan it, flushing all the real disk's blocks from the page
Richard Laager wrote:
> As a side note that has nothing to do with you, it's too bad that
> systemd-analyze security does not work on a unit _file_, but only
> installed units. Otherwise, this would be a great thing for someone to
> hook into Lintian.
I 100% agree, and I mentioned that in
Package: ntpsec
Version: 1.1.3+dfsg1-2
Severity: wishlist
Tags: patch
Hello!
systemd includes a huge amount of security features, which are off by default.
"systemd-analyze security" tells you about many of them.
I thought "let's try to fix this!" and used
Package: apt
Version: 1.8.0~alpha3.1
Severity: minor
When using the new DEB822 .sources format,
if you have a paragraph with only comments in it,
apt interprets this as a stanza with no values in it.
An example "broken.sources" is attached.
-- Package-specific info:
-- apt-config dump --
APT
Package: dodgy
Version: 0.1.9-3
Severity: important
File: /usr/lib/python3/dist-packages/dodgy/run.py
dodgy basically does this:
• recursively find all regular files under ./
• for each file,
• if its MIME type appears to be text/*,
• assume it is UTF-8
• assume it
Package: ntfs-3g
Version: 1:2017.3.23-2
Severity: minor
File: /sbin/mkfs.ntfs
This behaviour is clearly silly:
twb@odin:~$ sudo mkfs.ntfs --label=MBB-2007 --fast --enable-compression
/dev/sdd1
Cluster size has been automatically set to 4096 bytes.
Creating NTFS volume structures.
Just in case it's not obvious,
• emacs/testing & emacs-goodies/testing are installed
• purge emacs-goodies-el/testing
• install emacs-goodies-el/unstable
…has the same behaviour as
• emacs/testing & emacs-goodies/testing are installed
• upgrade emacs-goodies-el from /testing to
Debian Bug Tracking System wrote:
> + LC_ALL=C sort
> [and similar LC_ALL=C elsewhere]
I think you can dial that back from LC_ALL=C to just LC_COLLATE=C.
Informal proof:
bash4$ printf %s\\n README ReadMe readme | LC_COLLATE=en_AU.UTF-8 sort
readme
ReadMe
README
Peter van Dijk wrote:
> I can reproduce this ‘hang’ (actually it’s a very busy read() loop). A
> simpler ‘echo 1,2,3 > test2.csv’ does work, so this is just exposing a bug
> in the CSV implementation.
You're right --- it looks like ext/misc/csv.c is broken for one-column CSV
tables.
I can
László Böszörményi (GCS) wrote:
> On Mon, May 28, 2018 at 1:33 PM Trent W. Buck wrote:
>> Per /usr/share/doc/sqlite3-doc/csv.html & https://sqlite.org/csv.html
>>
>> sqlite> CREATE VIRTUAL TABLE temp.t1 USING csv(filename='thefile.csv');
>> Error: no such
Package: sqlite3
Version: 3.23.1-1
Severity: wishlist
Per /usr/share/doc/sqlite3-doc/csv.html, upstream sqlite3 includes a CSV
loadable extension.
AFAICT it's not available in Debian, where e.g. the json1 module already works
with no .load required:
(BUILDROOT:BUSTER)root@zygon:/# sqlite3
Package: postfix
Version: 3.3.0-1
Severity: normal
I just noticed that I bounced 400 legitimate emails since February,
due to a combination of
root@tweak:~# postconf -d import_environment export_environment
import_environment = MAIL_CONFIG MAIL_DEBUG MAIL_LOGTAG TZ XAUTHORITY
DISPLAY
Package: gnucash-docs
Version: 2.6.15-1
Severity: normal
gnucash-docs breaks when localpurge is used (to save disk space).
Here you can see localepurge configured for English only (to save disk space):
# grep help /etc/dpkg/dpkg.cfg.d/*
Mattia Rizzolo wrote:
> On Tue, Apr 03, 2018 at 02:30:02PM +1000, Trent W. Buck wrote:
> > When backporting libpam-mount from experimental to stable, the only change
> > I needed was
> >
> > -Build-Depends: debhelper (>= 11), …
> > +Build-Depends: debh
2.16-4 fixes the problem, thanks.
Trent W. Buck wrote:
> Jochen Sprickerhof wrote:
> > a long time ago you opened a bug in the Debian package libpam-mount.
> > Recently
> > I took over maintenance of this package and added a patch to address this.
> > You
> > c
Package: debhelper
Version: 11.1.6
Severity: wishlist
When backporting libpam-mount from experimental to stable, the only change I
needed was
-Build-Depends: debhelper (>= 11), …
+Build-Depends: debhelper (>= 11~), …
The tilde allows ~bpo versions of debhelper to satisfy the
Jochen Sprickerhof wrote:
> a long time ago you opened a bug in the Debian package libpam-mount. Recently
> I took over maintenance of this package and added a patch to address this. You
> can find the new version in Debian experimental, would be great if you could
> try it and report back if it
Brian Potkin wrote:
> The number of users affected by this issue over the years is not
> insignificant. Not a single one has written in support of the
> situation.
This issue has bitten me at least twice so far.
This issue's history seems to be bogged down on whether interfaces(5) can be
mode
David Kalnischkies wrote:
> On Wed, Jan 24, 2018 at 02:10:43PM +1100, Trent W. Buck wrote:
> > As part of my Best Current Practice I set Default-Release "stretch",
> > to prevent accidental dist-upgrades when sources.list is in an unusual
> > state.
> > (For T
Hi, I have a user story relevant to #638024.
TL;DR version:
When Default-Release is set and /var/lib/apt/lists is empty,
apt-get check errors, and unattended-upgrades silently fail.
Boring backstory follows.
I'm making headless servers to be deployed in the homes of non-technical users.
To
Package: wnpp
Severity: wishlist
* Package name: fonts-mplus-ttf
Version : TESTFLIGHT-0.6.3 (2017-10-25)
Upstream Author : Copyright (C) 2002-2016 M+ FONTS PROJECT
* URL : https://osdn.net/projects/mplus-fonts/
* License : These fonts are free software.
Re: In rc0.d, sendsigs stops before rpcbind stops
> Message-ID: <5eaf5b96-9f76-ca62-9951-a1bafa406...@debian.org>
> User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101
> Thunderbird/52.4.0
>
> On Fri, 3 May 2013 22:07:19 +1000 "Trent W. Buck" <tr
For the record,
In 2017, Kunal wrote:
> Currently this is blocked by #868641: Upgrade libzim to 2.0.0. Once that
> is resolved, Vasudev has offered to sponsor the initial upload.
zimlib 2.x landed in sid last month (August 2017):
https://tracker.debian.org/pkg/zimlib
In 2015, Elena wrote:
Package: udhcpc
Version: 1:1.22.0-19
Severity: minor
Tags: patch
There is a one-letter typo in the syslog tag in
debian/tree/udhcpc/etc/udhcpc/default.script:
log() {
- logger -t "uchcpc[$PPID]" -p daemon.$1 "$interface: $2"
+ logger -t "udhcpc[$PPID]" -p daemon.$1 "$interface:
I spent an hour trying to roll a barebones deb from pgadmin4.git.
I got stuck here:
Exception occurred:
File "/tmp/pgadmin4-X/web/pgadmin/__init__.py", line 19, in
from flask_htmlmin import HTMLMIN
ImportError: No module named flask_htmlmin
According to apt-file,
Package: gitit
Version: 0.12.1.1+dfsg-6+b3
Severity: normal
If I just do "apt install gitit", and
run "gitit" in an empty directory,
it crashes:
root@slime:~/my_gitit# gitit
gitit: /usr/share/filestore/extra/post-update: openBinaryFile: does not
exist (No such file or directory)
If I
it experimentally because my pam-mounts aren't authenticated. ☹
>From f4b3f64158e8a65a44c76a97ca5951cba86023b0 Mon Sep 17 00:00:00 2001
From: "Trent W. Buck" <trentb...@gmail.com>
Date: Wed, 10 May 2017 10:01:03 +1000
Subject: [PATCH] (EXPERIMENTAL) after expired-password reset, mount
Package: cm-super
Version: 0.3.4-9
Severity: minor
Hi,
cm-super can't be installed when dpkg.cfg contains
path-exclude=/usr/share/doc/*
because the postinst crashes while trying to remove /usr/share/doc/cm-super.
Debian Policy says that packages should work without /usr/share/doc/.
Package: rsync
Version: 3.1.2-2
Severity: wishlist
Rsync maintains a default list of file extensions that don't benefit from
rsync's own compression:
v3.1.2:loadparm.c:#define DEFAULT_DONT_COMPRESS "*.gz *.zip *.z *.rpm *.deb
*.iso *.bz2" \
v3.1.2:loadparm.c- " *.t[gb]z *.7z
Package: wnpp
Severity: wishlist
* Package name: k2pdf
Version : 2.41
Upstream Author : willus.com (no "normal" human name I can find)
* URL : http://www.willus.com/k2pdfopt/
* License : Affero GPL 3+
Programming Lang: C
Description : PDF Reflow tool
Antoine Beaupre wrote:
> tags -1 -unreproducible
>
> I can reproduce issues with certification verification in Emacs 24.5+1-8
> in Debian Stretch. As documented here:
>
> [...]
>
> I am not sure what changed between Emacs 24 and 25, but it seems to me
> Emacs 24 should absolutely be fixed before
Package: initramfs-tools
Version: 0.120+deb8u2
Severity: wishlist
File: /usr/sbin/mkinitramfs
Several times a month I build Debian Live images and rsync them to
remote sites that use them on diskless kiosk farms.
I was annoyed because if there have been few security updates,
rsync will take a
Package: inkscape
Version: 0.92.0-2
Severity: wishlist
The Inkscape "Help" menu needs internet access to work.
This is annoying for airgapped users.
IIRC most of the menu items link to non-DFSG content,
but one menu item is easy to fix: inkscape_help_keys.inx.
The inkscape source package
Package: gargoyle-free
Version: 2011.1a-2
Severity: wishlist
It's been a LONG time since upstream garglk had a stable release.
The current git master includes major interpreter upgrades (below),
as well as bugfixes for some specific games.
Is it worth Debian releasing a version like
Package: qonk
Version: 0.3.1-3.1+b1
Severity: wishlist
Tags: patch
Hi,
I ship qonk to prison inmates, who (by policy) aren't allowed access to
manpages.
To help them get started with qonk, and to provide a basic backstory,
I wrote a tiny wrapper script with a paragraph of prose (attached).
It
debhelper
export NAME='Trent W. Buck' EMAIL=t...@cyber.com.au # used by dch
dch --create --package foo -v0~1 -Dstable 'Initial release.'
>debian/compat echo 9
>debian/source/format echo '3.0 (native)'
>debian/install echo '*.html usr/foo/'
>foo.html
Alf,
Alf Gaida wrote:
> The packaging is in good shape - the sources are not.
> So trojita isn't fit for sid, maybe for experimental.
> But trojita becomes better with every commit.
It sounds like you have a working Debian source package (.dsc and
.debian.tar.xz) for trojita.
Where can I find
20:52 twb:
https://gist.github.com/josteink/18c7249e6e0d15053f6435b673ba5b08
20:52 twb: feel free to send that to the debian guys
Also attached, title is/was "Getting your own process without using procfs on
Linux".
// Shamelessly copied from Stack Overflow
//
Package: cli-common
Version: 0.9+nmu1
Severity: wishlist
[I'm not sure which package to report this against, so I'm guessing.
Please reassign as appropriate.]
I build Debian Live environments using debootstrap and then chroot + apt.
I deliberate don't mount /proc inside the chroot,
because
Package: postfix
Version: 3.1.3-1
Severity: normal
I provide my own main.cf in a separate .deb via config-package-dev.
So I preseed postfix to disable postinst's main.cf:
debconf-set-selections <<< 'postfix postfix/main_mailer_type select No
configuration'
This worked (with some
This is the same bug at Ubuntu; it has more analysis:
https://bugs.launchpad.net/ubuntu/+source/pepperflashplugin-nonfree/+bug/1632870
In short:
* Google Chrome 54+ does not bundle libpepflashplayer.so.
* pepperflashplugin-nonfree will have to get it from somewhere else;
either
Package: pepperflashplugin-nonfree
Version: 1.8.1+deb8u1
Severity: critical
Install is currently failing.
Maybe the paths within the upstream deb have changed?
Here's what the postinst said:
Setting up pepperflashplugin-nonfree (1.8.1+deb8u1) ...
converted
Package: klavaro
Version: 3.01-1
Severity: minor
By default my XFCE4 desktop uses a font "Sans-12".
I opened klavaro and clicked "Introduction".
The on-screen keyboard and related text were quite small - about
two-thirds of my screen was unused.
I wanted bigger keys & letters, so I would not
Package: scummvm
Version: 1.7.0+dfsg-2
Severity: wishlist
I use WM_CLASS to collect statistics about which apps my users run most/least.
(use the xprop(1) command to view WM_CLASS).
Right now, scummvm sets both "name" and "class" attributes of WM_CLASS to
"scummvm".
Please arrange for WM_CLASS
Package: libreoffice
Version: 1:5.2.0-2
Severity: wishlist
Tags: patch upstream
There is a simple typo in:
officecfg/registry/data/org/openoffice/VCL.xcu:111
in the property:
VCL/DefaultFonts/SERIF
It says "Tino" but it should say "Tinos".
This line is otherwise identical to the
Package: libsasl2-modules
Version: 2.1.26.dfsg1-15
Severity: minor
Almost all logcheck rules start like this:
^\w{3} [ :0-9]{11}
^\w{3} [ :[:digit:]]{11}
But this one is missing the leading caret:
\w{3} [ :0-9]{11} [._[:alnum:]-]+ [._[:alnum:]-]+: DIGEST-MD5 common mech
free
Source: cherrypy3
Version: 3.5.0-2
Severity: wishlist
The current version described by upstream cherrypy.org as "stable" is v6.0.2,
commit ca684b38.
Is there a good reason for Debian to only ship 3.5.0 ?
There are a lot of changes:
$ git clone --bare https://github.com/cherrypy/cherrypy
Elena ``of Valhalla'' wrote:
> On 2016-06-10 at 11:36:59 +1000, Trent W. Buck wrote:
> > What steps are needed to make rst2pdf & python3-sphinx work together?
>
> ok, I've investigated a bit
Thanks!
> , and apparently upstream has started working
> on python3 support
Package: rst2pdf
Version: 0.93-4
Severity: wishlist
I'd like to use python3-sphinx instead of python-sphinx,
but doing this in sphinx's conf.py:
extensions = ['rst2pdf.pdfbuilder','sphinxcontrib.blockdiag']
...doesn't Just Work.
What steps are needed to make rst2pdf & python3-sphinx work
I recently upgraded my NFSv3 clients from wheezy to jessie, and they just DID
NOT WORK.
The NFS sysvinit init scripts had dependency cycles & race conditions when used
under systemd.
I ended up writing my own systemd units for the parts I needed (foo.mount,
statd, & rpcbind),
and disabling the
Andreas Ferber wrote:
> Package: pepperflashplugin-nonfree
> Version: 1.8.1
> Severity: grave
> Justification: renders package unusable
>
> Google apparently started using a new PGP key, which leads to: [...]
> Appending the new key to /usr/lib/pepperflashplugin-nonfree/pubkey-google.txt
> solves
Package: xdm
Version: 1:1.1.11-1
Severity: minor
I run a farm of diskless kiosks,
so I want logs to go to a central syslog server,
not the volatile local /var/log/xdm.log.
>From reading the source I learnt to trick xdm into logging to stdout,
which systemd then forwards on to journald (and then
Package: libglade2-dev
Version: 1:2.6.4-2
Severity: minor
According to http://www.debian.org/doc/debian-policy/ch-docs.html#fr115
I can do this:
# cat /etc/dpkg/dpkg.cfg.d/75no-docs
path-exclude=/usr/share/doc/*
[...]
...and packages have to deal with it.
With that config in
Package: logcheck
Version: 1.3.17
Severity: wishlist
Tags: patch
Currently logcheck thinks
"sudo -u nobodypwd" is OK,
"sudo -g nogroup pwd" is scary; and
"sudo -u nobody -g nogroup pwd" is scary.
IMO either these are all OK, or all scary --- probably the former.
Sean Whitton wrote:
> Dear Trent,
>
> Thank you for such a prompt reply.
>
> On Tue, Feb 16, 2016 at 11:55:28AM +1100, Trent W. Buck wrote:
> > Please consider my paredit-el packaging licensed under the Expat license,
> > as documented at http://dep.debian.net/dep
Sean Whitton wrote:
> Source: paredit-el
> Version: 20-2
> Severity: normal
> Blocks: 736380
>
> Dear Trent,
>
> I am in the process of fulfilling your request for someone to adopt
> paredit-el (#736380). As part of this I need to know the licensing
> status of the files in debian/*. What free
Package: systemd
Version: 215-17+deb8u3
Severity: normal
My computers have physical power buttons on their cases.
When the button is pressed, I want it to initiate a clean shutdown.
On a desktop install, this happens because systemd-logind handles it:
root@het:~# journalctl -fu
As at Jessie, (audacity=2.0.6-2), the default directory is
/var/tmp/audacity-.
This can't be changed in the environment (e.g. export
AUDACITY_TMPDIR=$XDG_RUNTIME_DIR).
This can't be changed (for all users) in /etc or /usr (e.g.
/usr/share/audacity/audacity.cfg).
This can only be fixed in each
Package: grep
Version: 2.20-4
Severity: wishlist
Tags: upstream
Sometimes I want to match globs instead of regexps.
glob(7) explicitly says:
"they match filenames, rather than text"
I don't see why globs shouldn't be used for text.
In bash this is ugly and *SLOW*, e.g.
# Print log lines
Package: dkms
Version: 2.2.0.3-2
Severity: wishlist
I wanted to install zfsonlinux in a debootstrap chroot.
It didn't work:
Setting up spl-dkms (0.6.5-1-wheezy) ...
Removing old spl-0.6.5 DKMS files...
[ /usr/sbin/dkms status -m spl -v 0.6.5 -k 3.16.0-4-amd64 ]
/usr/sbin/dkms:
Holger Levsen wrote:
> On Freitag, 18. Dezember 2015, Trent W. Buck wrote:
> > pxz accepts the equivalent option, but ignores it:
> [...]
> > Please make pxz honor -Ccrc32,
> > or at least stop accepting it (exit non-zero instead).
>
> I agree and am sure upstream wo
Package: pxz
Version: 4.999.99~beta3+git659fc9b-3
Severity: minor
I build Debian Live images. A lot.
Waiting for update-initramfs is boring.
I want to speed it up using pxz or pixz (not xz).
The kernel's XZ decompressor does not support CRC64, xz's default.
When using COMPRESS=xz, mkinitramfs
Hi,
I wanted to say pass options to my compress program, e.g.
# cat /etc/initramfs-tools/conf.d/xz
compress="pxz -Ccrc32 -1" # dev builds should build fast
compress="pxz -Ccrc32 -9ev" # prod builds should boot fast
Unfortunately this code requires the compress (or
[Here are some background details on this feature.]
There is a dumber "good enough" command called "systemd-analyze plot".
I asked myself: is it worth rolling a custom kernel just for systemd-bootchart?
I looked for some examples to compare; I found these
Package: libpam-runtime
Version: 1.1.8-3.1
Severity: wishlist
File: /usr/sbin/pam-auth-update
I make Debian-based live images.
Because editing /etc/pam directly is pain and scary,
I edit /usr/share/pam-configs/libpam-mount and then run pam-auth-update.
You might want to say "that's abuse,
Package: pxe-kexec
Version: 0.2.4-3
Severity: wishlist
pxe-kexec is a TFTP client.
It's good for TFTP clients to:
1. default to 512b block size, for compatibility.
2. support greater block sizes, for speed.
AFAICT pxe-kexec does (1) but not (2).
In the example below, you can see that
Package: python-reportbug
Version: 6.6.5
Severity: wishlist
File: /usr/lib/python2.7/dist-packages/reportbug/debbugs.py
debbugs.gnu.org is GNU's debbugs instance
I often use "bts --bts-server debbugs.gnu.org",
but there is no equivalent for reportbug.
It appears to require appending to SYSTEMS
Package: alsa-utils
Version: 1.0.29-1
Severity: minor
I spotted this message when studying alsa-utils' udev rules:
# alsactl -E HOME=/run/alsa --file /dev/null restore 0
No state is present for card PCH
** alsactl: sysfs_init:48: sysfs path '/sys' is invalid
Found hardware:
Manuel A. Fernandez Montecelo wrote:
> Thanks for your report(s).
Thank you for chasing up old aptitude bug reports :-)
Package: lirc
Followup-For: Bug #777199
I deploy Debian 8-based TVs in prisons, using lircd for the remote control.
I want to lock down lircd using systemd.exec(5) options like
{RuntimeDir,User}=lirc.
It looks like this will be easier with 0.9.3 than 0.9.0~pre1.
I started looking into updating
Package: ghostscript
Version: 9.16~dfsg-2
Severity: minor
Tags: upstream patch
This fifteen-year-old bugfix appears to be incomplete:
$ dgit clone ghostscript
$ cd ghostscript
$ git grep -B2 Compatibility=
doc/History6.htm-2000/05/20 20:53:04 lpd)
doc/History6.htm- -
Package: libpam-mount
Version: 2.14-1.1
Severity: minor
1. libpam_mount considers something "already mounted" if it can find a
mount in libmount's iterator where both the source (device) and
target (mountpoint) match.
This is the code responsible:
If you want to WONTFIX or close this bug, I don't object. :-)
Boring discussion follows.
Manuel A. Fernandez Montecelo wrote:
>> When viewing upgradable packages, one can use the `C' key (that is,
>> Shift + C) to download and view the changelog. While the changelog is
>> downloading, both `q'
Package: kstars
Version: 4:4.14.2-1
Severity: wishlist
Hi, when running kstars under XFCE I see a popup every time I open kstars:
Supernove information update failed - KStars
Python process that updates the supernova information failed with error
code 1
[OK]
After clicking OK,
Package: kstars-data
Followup-For: Bug #596007
It looks like Noel created kstars-data-extra-tycho2 in non-free,
but forgot to update this bug.
Should this bug (#596007) status be changed to done?
201 - 300 of 1370 matches
Mail list logo