Re: outdated Tor version in Fedora (missing security fixes)

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 06/10/2011 11:38 PM, Fennix wrote: > On Sat, Jun 11, 2011 at 8:30 AM, Christoph A. > wrote: > > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA512 > > On 06/10/2011 06:28 PM, Fennix wrote: > > As to the SEL

Re: outdated Tor version in Fedora (missing security fixes)

On Sat, Jun 11, 2011 at 8:30 AM, Christoph A. wrote: > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA512 > > On 06/10/2011 06:28 PM, Fennix wrote: > > As to the SELinux policy questions...I am not sure. I have always > compiled > > and the TOR package has always worked without any SELinux complai

Re: outdated Tor version in Fedora (missing security fixes)

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 On 06/10/2011 06:28 PM, Fennix wrote: > As to the SELinux policy questions...I am not sure. I have always compiled > and the TOR package has always worked without any SELinux complaints so for > this question I have never looked into this. the outpu

Re: outdated Tor version in Fedora (missing security fixes)

On Fri, Jun 10, 2011 at 2:19 AM, Christoph A. wrote: > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA512 > > On 06/07/2011 04:06 PM, Fennix wrote: > > Umm, you could just download the source file and compile yourself... > > Yes, *I* could, but if Fedora ships a vulnerable package this affects a >

Re: outdated Tor version in Fedora (missing security fixes)

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 On 06/07/2011 04:06 PM, Fennix wrote: > Umm, you could just download the source file and compile yourself... Yes, *I* could, but if Fedora ships a vulnerable package this affects a lot more people then just me. Compiling is always a possibility but

Re: outdated Tor version in Fedora (missing security fixes)

"Christoph A." writes: >> for the other versions: there are simply no users who test the >> updates. E.g. 0.2.1.29 was pushed to testing at 2011-01-22 and >> nobody tested it for f13. > > According to bodhi you can push it to stable even if it didn't get > enough karma points. What would be the

Re: outdated Tor version in Fedora (missing security fixes)

On Tue, Jun 7, 2011 at 9:47 PM, Christoph A. wrote: > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA512 > > On 06/07/2011 02:43 PM, Christoph A. wrote: > > On 06/07/2011 06:53 AM, Rahul Sundaram wrote: > >> I don't. Till the point it is EOL'ed, security updates are the only > >> sort of the up

Re: outdated Tor version in Fedora (missing security fixes)

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 On 06/07/2011 02:43 PM, Christoph A. wrote: > On 06/07/2011 06:53 AM, Rahul Sundaram wrote: >> I don't. Till the point it is EOL'ed, security updates are the only >> sort of the updates I would still want to definitely see pushed. > > You are rig

Re: outdated Tor version in Fedora (missing security fixes)

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 On 06/07/2011 06:53 AM, Rahul Sundaram wrote: > I don't. Till the point it is EOL'ed, security updates are the only > sort of the updates I would still want to definitely see pushed. You are right. http://koji.fedoraproject.org/koji/buildinfo?bu

Re: outdated Tor version in Fedora (missing security fixes)

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 On 06/04/2011 11:20 AM, Enrico Scholz wrote: > for the other versions: there are simply no users who test the updates. > E.g. 0.2.1.29 was pushed to testing at 2011-01-22 and nobody tested it > for f13. According to bodhi you can push it to stable e

Re: outdated Tor version in Fedora (missing security fixes)

On 06/07/2011 03:06 AM, Christoph A. wrote: > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA512 > > On 06/05/2011 01:05 AM, Rahul Sundaram wrote: >> Link to f13 update? > I think it is ok if the package for f13 is not updated anymore because > f13 will reach EOL soon. I don't. Till the point it

Re: outdated Tor version in Fedora (missing security fixes)

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 On 06/05/2011 01:05 AM, Rahul Sundaram wrote: > Link to f13 update? I think it is ok if the package for f13 is not updated anymore because f13 will reach EOL soon. >> > Footnotes: >> > [1] https://admin.fedoraproject.org/updates/tor-0.2.1.30-1400

Re: outdated Tor version in Fedora (missing security fixes)

On 06/04/2011 02:50 PM, Enrico Scholz wrote: > for the other versions: there are simply no users who test the updates. > E.g. 0.2.1.29 was pushed to testing at 2011-01-22 and nobody tested it > for f13. Link to f13 update? > Footnotes: > [1] https://admin.fedoraproject.org/updates/tor-0.2.1.30-

Re: outdated Tor version in Fedora (missing security fixes)

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 On 06/04/2011 11:20 AM, Enrico Scholz wrote: > "Christoph A." writes: > >> I suppose you are the maintainer of the tor package in Fedora. >> I'm wondering why Fedora (13,14,15) currently doesn't contain the latest >> stable Tor version 0.2.1.30 >

Re: outdated Tor version in Fedora (missing security fixes)

"Christoph A." writes: > I suppose you are the maintainer of the tor package in Fedora. > I'm wondering why Fedora (13,14,15) currently doesn't contain the latest > stable Tor version 0.2.1.30 f15 contains 0.2.1.30 for the other versions: there are simply no users who test the updates. E.g. 0.2

outdated Tor version in Fedora (missing security fixes)

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Hi Enrico, I suppose you are the maintainer of the tor package in Fedora. I'm wondering why Fedora (13,14,15) currently doesn't contain the latest stable Tor version 0.2.1.30 which was released on 2011-02-23 and contains various security fixes (sinc