Re: [URGENT] FeatureDefinitionFreeze Tomorrow!
- Original Message - 13.12.2011 17:24, Michael Jeanson kirjoitti: Hi Timo, Here is a starting point for SSSD : https://bugs.launchpad.net/ubuntu/+source/sssd/+bug/903749 I'll try to get started on the other packages tonight after work, if anyone else wants to help, feel free. I already started my own :) https://bugs.launchpad.net/ubuntu/+source/sssd/+bug/903752 I've marked mine as invalid, yours was more complete. From my understanding, we have to open a bug for each of the dependencies too. -- ubuntu-server mailing list ubuntu-server@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-server More info: https://wiki.ubuntu.com/ServerTeam
[Bug 877740] Re: CVE-2011-3368 Apache2 mod_proxy reverse proxy exposure
My bad, sorry if anyone tried this package, I had only tested on hardy. I uploaded a fixed package to my ppa. -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to apache2 in Ubuntu. https://bugs.launchpad.net/bugs/877740 Title: CVE-2011-3368 Apache2 mod_proxy reverse proxy exposure To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/apache2/+bug/877740/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 877740] Re: CVE-2011-3368 Apache2 mod_proxy reverse proxy exposure
I built a fixed package for hardy in my ppa (2.2.8-1ubuntu0.22~ppa1) and tested it in our environment, I confirm it fixes the exploit. -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to apache2 in Ubuntu. https://bugs.launchpad.net/bugs/877740 Title: CVE-2011-3368 Apache2 mod_proxy reverse proxy exposure To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/apache2/+bug/877740/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 877740] Re: CVE-2011-3368 Apache2 mod_proxy reverse proxy exposure
Debdiff for lucid, also available in my ppa. ** Patch added: apache2_2.2.14-5ubuntu8.7.debdiff https://bugs.launchpad.net/ubuntu/hardy/+source/apache2/+bug/877740/+attachment/2560947/+files/apache2_2.2.14-5ubuntu8.7.debdiff -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to apache2 in Ubuntu. https://bugs.launchpad.net/bugs/877740 Title: CVE-2011-3368 Apache2 mod_proxy reverse proxy exposure To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/apache2/+bug/877740/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 877740] [NEW] CVE-2011-3368 Apache2 mod_proxy reverse proxy exposure
*** This bug is a security vulnerability *** Public security bug reported: The mod_proxy module in the Apache HTTP Server 1.3.x through 1.3.42, 2.0.x through 2.0.64, and 2.2.x through 2.2.21 does not properly interact with use of (1) RewriteRule and (2) ProxyPassMatch pattern matches for configuration of a reverse proxy, which allows remote attackers to send requests to intranet servers via a malformed URI containing an initial @ (at sign) character. ** Affects: apache2 (Ubuntu) Importance: Undecided Status: New ** Visibility changed to: Public ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2011-3368 -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to apache2 in Ubuntu. https://bugs.launchpad.net/bugs/877740 Title: CVE-2011-3368 Apache2 mod_proxy reverse proxy exposure To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/apache2/+bug/877740/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 877740] Re: CVE-2011-3368 Apache2 mod_proxy reverse proxy exposure
Debdiff for hardy, including patch from http://www.apache.org/dist/httpd/patches/apply_to_2.2.21/CVE-2011-3368.patch ** Patch added: apache2_2.2.8-1ubuntu0.22.debdiff https://bugs.launchpad.net/ubuntu/+source/apache2/+bug/877740/+attachment/2558586/+files/apache2_2.2.8-1ubuntu0.22.debdiff -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to apache2 in Ubuntu. https://bugs.launchpad.net/bugs/877740 Title: CVE-2011-3368 Apache2 mod_proxy reverse proxy exposure To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/apache2/+bug/877740/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
Re: [Oneiric-Topic] Tomcat 7
- Original Message - Hi All Apache Tomcat 7 was released in January making the newer versions of the Servlet (3.0) and JSP (2.2) specifications available; Ubuntu currently supports Tomcat 6 in main. It would be great to understand how widely this package is being used and what the appetite to move to Tomcat 7 looks like. Targeting a tomcat7 package at universe for Oneiric might make sense. Cheers James -- James Page Software Engineer, Ubuntu Server Team +1, I'm running a couple tomcat6 servers on ubuntu (hardy with a custom baked 6.0.29 package based on maverick) and we are not planning to make the move to tomcat7 yet but having a package in universe would definitely be of great help to start the testing phase. --- Michael Jeanson - Revolution Linux http://www.revolutionlinux.com - (819) 780 8955 #1119 -- ubuntu-server mailing list ubuntu-server@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-server More info: https://wiki.ubuntu.com/ServerTeam
Re: [Oneiric-Topic] Nagios
- Original Message - Félim Whiteley wrote: I'd have to put my +1 for getting Shinken (http://www.shinken-monitoring.org/) in it's place. It's config file compatible but is actively developed (ok not completely fair on Nagios but it's a monolithic engine and the web interface still looks like they are partying like it's 1997). Perhaps it's a little early in the dev cycle for Shinken but I've found the folks on the dev list really pushing it past Nagios. Also its got a comedy like Ubuntu release name for 0.5 ;) +1 for Shinken, which is designed in a cloud-compatible way (multiple types of parallel workers). Compatibility with Nagios config files is definitely a +. Written in Python. -- Thierry Carrez (ttx) Ubuntu core developer +1 for Shinken too, it is developed on Ubuntu and I already made some basic packages in a PPA (https://launchpad.net/~shinken-dev/+archive/ppa). It may not be very mature yet but it has a very interesting feature set while retaining compatibility with Nagios configuration files. -- Michael Jeanson Révolution Linux - www.rlnx.com -- ubuntu-server mailing list ubuntu-server@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-server More info: https://wiki.ubuntu.com/ServerTeam
Re: [Oneiric-Topic] vlan on cd
- Original Message - ivoks mentioned during a server team meeting that he'd like to see vlan on the cd, and installed by default. +1 That would be very useful in some networks. -- ubuntu-server mailing list ubuntu-server@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-server More info: https://wiki.ubuntu.com/ServerTeam
[Bug 513273] Re: kvm with -vga std is broken since karmic
Tested 0.12.3-0ubuntu5~ppa3 with libvirt using : video model type='vga' vram='9216' heads='1'/ /video -- kvm with -vga std is broken since karmic https://bugs.launchpad.net/bugs/513273 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to qemu-kvm in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 513273] Re: kvm with -vga std give error and do not works
Using -vga std with the default bios files, it won't boot and I get : unaligned pointer 0x8ecc0002 Aborted. Press any key to exit. I built the bios files from the qemu-kvm package source and using those with the -L switch it works. -- kvm with -vga std give error and do not works https://bugs.launchpad.net/bugs/513273 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to qemu-kvm in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 492093] Re: Sync munin 1.4.3-2 (main) from Debian unstable (main)
MIR done in bug #526480 -- Sync munin 1.4.3-2 (main) from Debian unstable (main) https://bugs.launchpad.net/bugs/492093 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to munin in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 492093] Re: Sync munin 1.4.0-1 (main) from Debian unstable (main)
I wrote the MIR at https://wiki.ubuntu.com/MIRliblog-log4perl-perl but by doing so, I discovered that the package build-depends on 2 packages in universe who in turn depends on 3 packages in universe. This means we have 5 other MIRs to write, right? -- Sync munin 1.4.0-1 (main) from Debian unstable (main) https://bugs.launchpad.net/bugs/492093 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to munin in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 492093] Re: Sync munin 1.4.0-1 (main) from Debian unstable (main)
On it. -- Sync munin 1.4.0-1 (main) from Debian unstable (main) https://bugs.launchpad.net/bugs/492093 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to munin in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 492093] [NEW] Sync munin 1.4.0-1 (main) from Debian unstable (main)
Public bug reported: Please sync munin 1.4.0-1 (main) from Debian unstable (main) Explanation of the Ubuntu delta and why it can be dropped: * Suugest libdate-manip-perl (LP: #306274) : - It's now a recommend in the Debian package * Recommend cron. (LP: #225061) - It's now a depend in the Debian package Changelog entries since current lucid version 1.2.6-17ubuntu1: munin (1.4.0-1) unstable; urgency=low * Initial upload of munin 1.4.0 to Debian unstable. (Closes: #535691) New features include: - Better scalability (multigraph support) - Better security through TLS (SSL) - Better looking HTML templates - includedir in munin.conf to allow drop-in configuration - More than 100 new plugins - bugfixes Please refer to the Announce-1.4.0, changelog for the full details. * Remove 62 patches that have been merged in trunk. * Move htmldir to /var/cache/munin/www. (Closes: #553555) If you are upgrading, read NEWS.Debian. Theres still work to be done implementing debconf presenting an option where to install the htmldir, and possibly support more webservers by default. * Add new binary package: munin-common, which contains code shared by munin and munin-node. Added depends on munin-common to munin, munin-node. * Add new binary package munin-java-plugins. * debian/rule - make target names have changed. * Add depends to liblog-log4perl-perl for munin. * Add suggests to libtext-csv-xs-perl for munin-node, required by the new zimbra plugin. * Add suggests to libxml-simple-perl for munin-node, required by the tomcat_* plugins. * Add suggests to libdbd-mysql-perl,libcache-cache-perl for munin-node required by the new mysql_ plugin. * Add suggests to ruby for munin-node. * Update new manpages names for munin-node.manpages. * Change the use of VeraMono.ttf in munin-graph to the equivalent font provided by a Debian package. (Closes: #548508) * Fix current value of graph_total always 0. (Closes: #406505) * plugin: apache_* improve output in errors. (Closes: #542477) * plugin: exim_mailqueue show frozen count. (Closes: #299266) * plugin: memory. Fix negative values in memory usage. (Closes: #257827) * plugin: enhanced ping_ allows for multiple host statistics. (Closes: 312518) * Improve ignore_file in /etc/munin/munin-node.conf. (Closes: 518401) * munin-node logrotate now rotates munin-node.log with munin user ownership. * Add default postgres_* configuration to plugins.conf. * Add Announce-1.4.0, UPGRADING to the package documents. * Add build/resources/apache-cgi.conf to munin.docs. * 1.4.0 contains the fix for squid_traffic bytes from cache too low. (Closes: 557385) * munin-node: improve ignore_file in /etc/munin/munin-node.conf. (Closes: 546149) [ Holger Levsen ] * Update homepage field in debian/control. * Improve debian/changelog. -- Tom Feiner feiner@gmail.com Sun, 29 Nov 2009 22:41:11 +0200 ** Affects: munin (Ubuntu) Importance: Undecided Status: New -- Sync munin 1.4.0-1 (main) from Debian unstable (main) https://bugs.launchpad.net/bugs/492093 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to munin in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 492093] Re: Sync munin 1.4.0-1 (main) from Debian unstable (main)
Munin 1.4.0 is the new stable release, the 1.2.x tree won't get much love from now on. This would be nice to have in the LTS. -- Sync munin 1.4.0-1 (main) from Debian unstable (main) https://bugs.launchpad.net/bugs/492093 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to munin in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 458521] Re: kvm crash when using virtio for network, hardy guest
I installed the package from proposed and it solved the problem for me. I ran the test provided in this bug report and some file tranfers with scp that used to crash and it worked flawlessly. -- kvm crash when using virtio for network, hardy guest https://bugs.launchpad.net/bugs/458521 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to qemu-kvm in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 340120] Re: OpenVPN unexpected operator on startup
** Changed in: openvpn (Ubuntu) Assignee: (unassigned) = Michael Jeanson (mjeanson) Status: New = In Progress -- OpenVPN unexpected operator on startup https://bugs.launchpad.net/bugs/340120 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to openvpn in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 340120] Re: OpenVPN unexpected operator on startup
Here is the debdiff containing the patch. ** Attachment added: openvpn_2.1~rc11-1ubuntu3.debdiff http://launchpadlibrarian.net/23671320/openvpn_2.1%7Erc11-1ubuntu3.debdiff -- OpenVPN unexpected operator on startup https://bugs.launchpad.net/bugs/340120 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to openvpn in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 282456] Re: redhat-cluster-suite metapackage should include system-config-cluster
Same thing on hardy, but it should really be in suggested packages. I don't want the gui to be installed on all my nodes. -- redhat-cluster-suite metapackage should include system-config-cluster https://bugs.launchpad.net/bugs/282456 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to redhat-cluster-suite in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 220724] [NEW] Assertion error in schema_init.c:366: octetStringIndexer
Public bug reported: Using slapd 2.4.7-6ubuntu3 on hardy i386, I get random crashes in modify operations. Log : oc_check_allowed type modifyTimestamp slapd: /build/buildd/openldap2.3-2.4.7/servers/slapd/schema_init.c:366: octetStringIndexer: Assertion `i 0' failed. Abandon There is a debian bug filed for this issue : http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=474161 The solution is present but it's not clear if it was packaged or not in unstable. The fix is 2 one liners has described here : http://www.openldap.org/devel/cvsweb.cgi/servers/slapd/modify.c.diff?r1=1.301r2=1.302hideattic=1sortbydate=0f=h http://www.openldap.org/devel/cvsweb.cgi/servers/slapd/back-bdb/modify.c.diff?r1=1.173r2=1.174hideattic=1sortbydate=0f=h This bug makes slapd unusable in hardy at least for me. I'll package the fix for testing on my servers and report any side-effects. ** Affects: openldap2.3 (Ubuntu) Importance: Undecided Status: New ** Affects: openldap2.3 (Debian) Importance: Unknown Status: Unknown ** Bug watch added: Debian Bug tracker #474161 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=474161 ** Also affects: openldap2.3 (Debian) via http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=474161 Importance: Unknown Status: Unknown -- Assertion error in schema_init.c:366: octetStringIndexer https://bugs.launchpad.net/bugs/220724 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to openldap2.3 in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 220724] Re: Assertion error in schema_init.c:366: octetStringIndexer
Here is a patch containing the fix, it's working fine on my servers. ** Attachment added: fix-modify http://launchpadlibrarian.net/13829941/fix-modify -- Assertion error in schema_init.c:366: octetStringIndexer https://bugs.launchpad.net/bugs/220724 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to openldap2.3 in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs