Bug#928415: disabling javascript
There is no such banner - at least not in current Debian Stable. On Sun, May 5, 2019 at 2:06 AM Brad Barnett wrote: > While I agree an unknown disabling of plugins, not just noscript (there > are others like noscript) is a security concern... > > There is a big, yellow banner that appears and stays at the top of your > browser, informing you if any plugins/add-ons are disabled. > > So for me, the 'big deal' is being informed. Then the user can, at that > point, disable javascript manually if required. > > After all, is noscript "special" in some way? More special than another > add-on for blocking javascript?
Bug#866772: Still present - definitely dual display issue
I've used Xfce for several months with single display and never got this issue, and when I recently changed back to dual display setup it didn't take long for this issue to reappear. So this is still an issue, and is definitely related to using two displays. -- Markus Laire https://www.MarkusLaire.com
Bug#869431: php7.0-fpm: Decreasing opcache.memory_consumption in pool-file causes negative "used memory"
Package: php7.0-fpm Version: 7.0.19-1 Severity: normal I added following setting to pool-file in /etc/php/7.0/fpm/pool.d/ to decrease the memory consumption from default 64M: php_admin_value[opcache.memory_concumption] = 32 After this change, phpinfo() reports following under section "Zend OPcache": ... Used memory: -23632720 Free memory: 57187152 ... opcache.memory_consumption: 32 ... It seems that both the value defined in php.ini (64) and this new value (32) are being used to cause impossible situation (negative used memory). -- Package-specific info: Additional PHP 7.0 information PHP 7.0 SAPI (php7.0query -S): PHP 7.0 Extensions (php7.0query -M -v): Configuration files: [PHP] engine = On short_open_tag = Off precision = 14 output_buffering = 4096 zlib.output_compression = Off implicit_flush = Off unserialize_callback_func = serialize_precision = 17 disable_functions = pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wifcontinued,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority, disable_classes = zend.enable_gc = On expose_php = Off max_execution_time = 30 max_input_time = 60 memory_limit = 128M error_reporting = E_ALL & ~E_DEPRECATED & ~E_STRICT display_errors = Off display_startup_errors = Off log_errors = On log_errors_max_len = 1024 ignore_repeated_errors = Off ignore_repeated_source = Off report_memleaks = On track_errors = Off html_errors = On variables_order = "GPCS" request_order = "GP" register_argc_argv = Off auto_globals_jit = On post_max_size = 8M auto_prepend_file = auto_append_file = default_mimetype = "text/html" default_charset = "UTF-8" doc_root = user_dir = enable_dl = Off file_uploads = On upload_max_filesize = 2M max_file_uploads = 20 allow_url_fopen = On allow_url_include = Off default_socket_timeout = 60 [CLI Server] cli_server.color = On [Date] [filter] [iconv] [intl] [sqlite3] [Pcre] [Pdo] [Pdo_mysql] pdo_mysql.cache_size = 2000 pdo_mysql.default_socket= [Phar] [mail function] SMTP = localhost smtp_port = 25 mail.add_x_header = On [SQL] sql.safe_mode = Off [ODBC] odbc.allow_persistent = On odbc.check_persistent = On odbc.max_persistent = -1 odbc.max_links = -1 odbc.defaultlrl = 4096 odbc.defaultbinmode = 1 [Interbase] ibase.allow_persistent = 1 ibase.max_persistent = -1 ibase.max_links = -1 ibase.timestampformat = "%Y-%m-%d %H:%M:%S" ibase.dateformat = "%Y-%m-%d" ibase.timeformat = "%H:%M:%S" [MySQLi] mysqli.max_persistent = -1 mysqli.allow_persistent = On mysqli.max_links = -1 mysqli.cache_size = 2000 mysqli.default_port = 3306 mysqli.default_socket = mysqli.default_host = mysqli.default_user = mysqli.default_pw = mysqli.reconnect = Off [mysqlnd] mysqlnd.collect_statistics = On mysqlnd.collect_memory_statistics = Off [OCI8] [PostgreSQL] pgsql.allow_persistent = On pgsql.auto_reset_persistent = Off pgsql.max_persistent = -1 pgsql.max_links = -1 pgsql.ignore_notice = 0 pgsql.log_notice = 0 [bcmath] bcmath.scale = 0 [browscap] [Session] session.save_handler = files session.use_strict_mode = 0 session.use_cookies = 1 session.use_only_cookies = 1 session.name = PHPSESSID session.auto_start = 0 session.cookie_lifetime = 0 session.cookie_path = / session.cookie_domain = session.cookie_httponly = session.serialize_handler = php session.gc_probability = 0 session.gc_divisor = 1000 session.gc_maxlifetime = 1440 session.referer_check = session.cache_limiter = nocache session.cache_expire = 180 session.use_trans_sid = 0 session.hash_function = 0 session.hash_bits_per_character = 5 url_rewriter.tags = "a=href,area=href,frame=src,input=src,form=fakeentry" [Assertion] zend.assertions = -1 [COM] [mbstring] [gd] [exif] [Tidy] tidy.clean_output = Off [soap] soap.wsdl_cache_enabled=1 soap.wsdl_cache_dir="/tmp" soap.wsdl_cache_ttl=86400 soap.wsdl_cache_limit = 5 [sysvshm] [ldap] ldap.max_links = -1 [mcrypt] [dba] [opcache] [curl] [openssl] /etc/php/7.0/fpm/conf.d/10-opcache.ini zend_extension=opcache.so /etc/php/7.0/fpm/conf.d/20-readline.ini extension=readline.so /etc/php/7.0/fpm/conf.d/20-ftp.ini extension=ftp.so /etc/php/7.0/fpm/conf.d/20-phar.ini extension=phar.so /etc/php/7.0/fpm/conf.d/20-json.ini extension=json.so /etc/php/7.0/fpm/conf.d/20-iconv.ini extension=iconv.so /etc/php/7.0/fpm/conf.d/20-sysvsem.ini extension=sysvsem.so /etc/php/7.0/fpm/conf.d/20-pdo_mysql.ini extension=pdo_mysql.so /etc/php/7.0/fpm/conf.d/20-posix.ini extension=posix.so /etc/php/7.0/fpm/conf.d/20-sockets.ini extension=sockets.so /etc/php/7.0/fpm/conf.d/20-ctype.ini extension=ctype.so /etc/php/7.0/fpm/conf.d/10-mysqlnd.ini extension=mysqlnd.so /etc/php/7.0/fpm/conf.d/20-exif.ini extension=exif.so
Bug#866772: Some errors in seat0-greeter.log
I got this bug again and this time I checked right location for logs, i.e. /var/log/... I didn't see anything interesting, except that /var/log/lightdm/seat0-greeter.log has following error repeatedly: (lightdm-gtk-greeter:3794): Gtk-WARNING **: Drawing a gadget with negative dimensions. Did you forget to allocate a size? (node menubar owner GreeterMenuBar) About my dual display: I forgot to mention that while I have set displays to mirror each other in Xfce settings, this setting does not affect login screen for some reason. -- Markus Laire https://www.MarkusLaire.com
Bug#866772: xfce4: can't unlock session, just blank screen with cursor flickering
Package: xfce4 Version: 4.12.3 Severity: important When locking screen with Ctrl-Alt-Del and then after a while returning to computer to log back in, I sometimes get completely black screen with cursor flickering at the center of the screen. There is no login dialog and moving mouse doesn't move cursor. Ctrl-Alt-F1 etc. do work to change to text terminal, but I can't get back into X at all. During this there is no output to ~/.xfce-session.verbose-log or ~/.xsession-errors I have two identical displays connected to computer mirroring each other. Both displays have exactly same output. -- System Information: Debian Release: 9.0 APT prefers stable APT policy: (500, 'stable') Architecture: amd64 (x86_64) Kernel: Linux 4.9.0-3-amd64 (SMP w/4 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE=en_US:en (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) Versions of packages xfce4 depends on: ii gtk2-engines-xfce3.2.0-2 ii libxfce4ui-utils 4.12.1-2 ii orage4.12.1-3 ii thunar 1.6.11-1 ii xfce4-appfinder 4.12.0-2 ii xfce4-panel 4.12.1-2 ii xfce4-pulseaudio-plugin 0.2.4-1 ii xfce4-session4.12.1-5 ii xfce4-settings 4.12.1-1 ii xfconf 4.12.1-1 ii xfdesktop4 4.12.3-3 ii xfwm44.12.4-1 Versions of packages xfce4 recommends: ii desktop-base 9.0.2 ii tango-icon-theme 0.8.90-6 ii thunar-volman 0.8.1-2 ii xfce4-notifyd 0.3.4-1 ii xorg 1:7.7+19 Versions of packages xfce4 suggests: pn gtk3-engines-xfce ii xfce4-goodies4.12.3 ii xfce4-power-manager 1.4.4-4 -- no debconf information
Bug#593175: Unrecognized entry also for encrypted devices
I have same bug with an encrypted partition + LVM after using Debian Installer 7.0 Beta4 install DVD[1]. 63 GB Unrecognized is shown on desktop and in Places. [1] http://cdimage.debian.org/cdimage/wheezy_di_beta4/amd64/iso-dvd/debian-wheezy-DI-b4-amd64-DVD-1.iso -- Markus Laire -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#383403: Doesn't seem to be fixed
maximilian attems wrote: On Thu, May 15, 2008 at 06:57:32PM +0300, Markus Laire wrote: It doesn't seem like this has been fully fixed. Source package linux-2.6_2.6.25-3 still contains e.g. drivers/char/drm/mga_ucode.h drivers/char/drm/r128_cce.c drivers/char/drm/radeon_cp.c ohh great a new stupid voice appearing. as told in the message that you seeminlgy read, file a new bug with supporting evidence. oh and on inspect you are even wrong so just wasting time. mga_ucode.h is BSD licensed thus distributable. Yes, sorry about that. I forgot to check the license. I just went through the files mentioned in first message for source package linux-2.6_2.6.25-3, and the following GPL-licensed files are still present: drivers/char/dsp56k.c drivers/media/dvb/ttpci/av7110_hw.c drivers/media/video/usbvideo/vicam.c drivers/net/cassini.h drivers/net/e100.c drivers/net/pcmcia/ositech.h drivers/net/starfire_firmware.h drivers/scsi/advansys.c drivers/scsi/ql1040_fw.h drivers/scsi/ql12160_fw.h drivers/usb/serial/io_fw_boot2.h drivers/usb/serial/io_fw_boot.h drivers/usb/serial/io_fw_down2.h drivers/usb/serial/io_fw_down.h drivers/usb/serial/ti_fw_3410.h drivers/usb/serial/ti_fw_5052.h drivers/usb/serial/whiteheat_fw.h sound/isa/sb/sb16_csp_codecs.h # different location Also following 2 files are present without any explicit license: drivers/net/usb/kawethfw.h # different location drivers/usb/serial/io_fw_down3.h So it seems clear that this bug hasn't been fixed yet. ps. I don't know whether this bug should be reopened (which you oppose), or whether this should be reported in new bug (which you seem to want). -- Markus Laire -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#242866: info that it has *not* been dealt with
found 242866 2.6.24-6 found 242866 2.6.25-3 thanks maximilian attems wrote: Version: 2.6.24-1 the offended firmware is stripped in linux-2.6 since aboves metioned version. stop reopening that bug if you are not a MAINTAINER nor have any valid piece of info that it has *not* been dealt with. File drivers/net/pcmcia/ositech.h (which is mentioned in first message and marked as nondistributable at http://wiki.debian.org/KernelFirmwareLicensing ) has *not* been dealt with yet. It is present in both 2.6.24-6 [*] and 2.6.25-3, under GPL-license and containing binary firmware. [*] This is earliest version = 2.6.24-1 which I could find for downloading ps. I recently sent additional information to bug #383403 (merged with this bug) which shows that is has *not* been dealt with either. if you find additional DFSG violations report a new bug. This clearly isn't additional DFSG violation. I hope you don't continue closing bugs which has *not* been dealt with yet (unless you can show that such behaviour is acceptable by Debian, which I doubt.) -- Markus Laire -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#412950: Processed: info that it has *not* been dealt with
maximilian attems wrote: On Fri, May 16, 2008 at 04:39:58PM +, Debian Bug Tracking System wrote: Processing commands for [EMAIL PROTECTED]: found 242866 2.6.24-6 Bug#242866: drivers containing firmware blobs Bug#243022: ymfpci_image.h: Sourceless microcode without permission to redistribute Bug#383403: linux-2.6: includes nondistributable and non-free binary firmware Bug#412950: linux-2.6: [legal] the current kernel tarball doesn't respect the GR 2006-007 Bug marked as found in version 2.6.24-6 and reopened. found 242866 2.6.25-3 Bug#242866: drivers containing firmware blobs Bug#243022: ymfpci_image.h: Sourceless microcode without permission to redistribute Bug#383403: linux-2.6: includes nondistributable and non-free binary firmware Bug#412950: linux-2.6: [legal] the current kernel tarball doesn't respect the GR 2006-007 Bug marked as found in version 2.6.25-3. thanks Stopping processing here. stop this game or i get you blacklisted on debian bug tracking system. I do not like such threats when I havn't done anything wrong (according to my knowledge). I was acting exactly as you requested. IMHO you said that reopening should be done only by maintainer or by someone with info that bug had not been dealt with. I'm not a maintainer, but I did have info that bug had not been dealt with, so I reopened the bug with that info. I fail to see any reason to threaten me with blacklisting. IMHO it is you who should've been threatened with blacklisting if anyone, since you have insisted on closing bugs which clearly havn't been fixed. If I did something wrong, IMHO the right response would've been to point out my mistake to me, and not to threaten with blacklisting without giving any reason for it. it is up to the maintainer to decide if that is closed or not. If maintainer decides that bug must not be reopened anymore, that should be mentioned in the bug-report. -- Markus Laire -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#383403: Doesn't seem to be fixed
It doesn't seem like this has been fully fixed. Source package linux-2.6_2.6.25-3 still contains e.g. drivers/char/drm/mga_ucode.h drivers/char/drm/r128_cce.c drivers/char/drm/radeon_cp.c -- Markus Laire -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#387783: Why was bug #387783 downgraded from serious to important?
Hello, As a reporter of Bug #387783[1] I'd like to ask why it was downgraded[2] (by Andreas Barth) from serious to important, not making it RC anymore. According to etch_rc_policy[3] Everything in non-free must be distributable by Debian. I take this to implicitly mean that everything in main must also be distributable by Debian. This bug is about possibly *undistributable* files, and so should clearly be an RC-bug. (See the bugreport[1] for details) The Co-Maintainer Eduard Bloch of the affected source-package cdrkit[4] also agrees[5] that we are talking about possibly *undistributable* files. [1] http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=387783 [2] http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=387783;msg=44 [3] http://release.debian.org/etch_rc_policy.txt [4] http://packages.qa.debian.org/c/cdrkit.html [5] http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=387783;msg=54 ps. Since the decision to downgrade[2] this bug was done by Andreas Barth, I don't think I have the authority to restore the severity to serious, and so I wanted to contact the Release Team to know what they think about this matter. -- Markus Laire -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#387783: cdrkit seems to have undistributable license
Source: cdrkit Version: 5:1.0~pre4-1 Severity: serious The current license of cdrkit (which was recently forked from cdrecord) seems to be GPLv2 + additional restrictions. This kind of a license is self-contradictory because on the one hand the copyright holder says that no further restrictions (beyond the ones found in the GPL terms) can be imposed on recipients (see GPLv2, section 6). On the other hand he himself adds such restrictions. As a consequence, we probably end up not having a valid license. No license implies All Rights Reserved, that is to say, the package is not only non-free, it's undistributable! (This is allmost direct quote from a message[1] which discussed another case of GPL + additional restrictions.) As of 5:1.0~pre4-1 there seems to be 26 problematic files: === Files with an unmodifiable section === cdrecord/cdrecord.c scgcheck/scgcheck.c === Files with other restriction(s) on modification === librscg/scsi-remote.c libscg/scsi-aix.c libscg/scsi-amigaos.c libscg/scsi-apollo.c libscg/scsi-beos.c libscg/scsi-bsd-os.c libscg/scsi-bsd.c libscg/scsi-hpux.c libscg/scsi-linux-ata.c libscg/scsi-linux-pg.c libscg/scsi-linux-sg.c libscg/scsi-mac-iokit.c libscg/scsi-next.c libscg/scsi-openserver.c libscg/scsi-os2.c libscg/scsi-osf.c libscg/scsi-qnx.c libscg/scsi-sgi.c libscg/scsi-sun.c libscg/scsi-unixware.c libscg/scsi-vms.c libscg/scsi-wnt.c libscg/scsihack.c libscg/scsitransp.c Those 2 unmodifiable sections are preceded by this comment: /* * Warning: you are not allowed to modify or to remove this * version checking code! */ Other restrictions are similar to this example from libscg/scsi-linux-ata.c: /* * If you changed this source, you are not allowed to * return schily for the SCG_AUTHOR request. */ case SCG_AUTHOR: return (_scg_auth_cdrkit); case SCG_SCCS_ID: return (ata_sccsid); There might be (at least) two possible ways to resolve this: 1) The restrictions are GPL-incompatible. However, according to a message[2] on debian-legal, Joerg Schilling said that cdrecord (from which the cdrkit was forked) was GPL, and so, if his public statement controls, we can just remove the incompatible restrictions. 2) Otherwise we need to go back to code which doesn't contain such restrictions. It's also worth noting that: since this fork was done with the intent of solving cdrtools licensing issues, it is of capital importance that *all* licensing issues are fixed, or otherwise the fork itself will be pointless. (Quoted from a message[3] at debian-legal) This issue is being discussed[4] on debian-legal. There's also an earlier discussion[5] about GPL + additional restrictions. [1] http://lists.debian.org/debian-legal/2006/05/msg00309.html [2] http://lists.debian.org/debian-legal/2006/09/msg00089.html [3] http://lists.debian.org/debian-legal/2006/09/msg00090.html [4] http://lists.debian.org/debian-legal/2006/09/msg00078.html [5] http://lists.debian.org/debian-legal/2006/05/msg00298.html -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#385115: Hypocrisy of Debian (was: Sorry, no more RC bugs for non-free data in main ...)
On 8/30/06, Roberto Gordo Saez [EMAIL PROTECTED] wrote: If this is the common feeling here, I think I made a serious mistake choosing Debian, because it does not follow my definition of freedom. I would like to urge to change the Social Contract to be clarified this in this case. I'm serious about that, it is no joke, because I feel mislead. When reading it I was thinking I was doing the correct. I was not sending those bugs because I am bad person, I was actually thinking that was the common feeling and the correct think to do. Currently, under my point of view, the Social Contract and guidelines do not reflect reality, they are just hypocrisy. This is a subjective view, I know, but I think I'm not the only person in the world who may understand it this way, so please, clarify. You are not the only one. I have somewhat similar feelings after I found out that the cdrtools-package[1] included in Debian isn't DFSG-free, but is still included in main. (Even worse, its license might even be illegal because it's GPLv2 + incombatible restrictions) This problem was mentioned in this list on _2004_ but cdrtools still hasn't been removed from Debian (see [2]). IMHO hypocrisy is perfect word to describe such behaviour. I used to believe that Debian only included legal, DFSG-free software in main, but cdrtools fiasco seems to prove that I was wrong. A recent message[3] from DPL only made this worse as it's titled Bits from the DPL: Freedom and etch and starts with As a project, Debian is heavily committed to the ideals of free software. That's not news to anyone reading this, ... In the light of the cdrtools-fiasco that is clearly not true. And in case your way of think is not the common feeling, please make a poll or something. Until this is completely clear, I won't be morally happy using nor giving my time to the Debian project, so you won't be bothered with those bugs again. [1] http://packages.debian.org/testing/source/cdrtools [2] http://lists.debian.org/debian-legal/2006/03/msg00415.html [3] http://lists.debian.org/debian-devel-announce/2006/08/msg00015.html DISCLAIMER: IANAL, IANADD -- Markus Laire -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#203211: Software patents and Debian
On 8/16/06, Bas Wijnen [EMAIL PROTECTED] wrote: Hello, When looking for some video-editing software, I found avidemux. According to the wnpp bug, there is a problem with license issues regarding the MPEG2/MPEG4 codec. There is a software patent on this codec, and a paid license is needed in order to use it, appearantly. My question is how Debian handles software patents. I thought we didn't care about them except if they were actively enforced, because it's completely impossible to avoid all patented software, considering the junk that gets patented. If that is the case, would any of you know if the MPEG[24] codec patents are actively enforced? In other words, can this be in Debian? Some days ago I saw a Legal Mini-FAQ[1] for FFmpeg which says, among other things: quote Q: Since FFmpeg is licensed under the LGPL, is it perfectly all right to incorporate the whole FFmpeg core into my own commercial product? A: You might have a problem here. Sure the LGPL allows you to incorporate the code. However, there have been cases where companies have used FFmpeg in their projects, usually for such capabilities as superior MPEG-4 decoding. These companies found out that once you start trying to make money from certain technologies, the alleged owners of the technologies will come after their dues. Most notably, MPEG-LA (licensing authority) is vigilant and diligent about collecting for MPEG-related technologies. /quote Anyway, ffmpeg[2] is included in Debian [1] http://ffmpeg.mplayerhq.hu/legal.html [2] http://packages.debian.org/stable/graphics/ffmpeg DISCLAIMER: IANAL, IANADD, and I'm not active with Debian, except by reading few mailing lists. -- Markus Laire -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]