Bug#1056190: /sbin/upsmon: CAL flag in UPSMON never cleared, shutdown procedure will not be triggered
Dear Maintainer, I have hit this bug too. Our server (hypervisor with several virtual machines) did not shut down properly during power outage due to this bug. Looking at other related reports, it does not matter what type of UPS is used. This bug makes the upsmon quite useless. Please backport this fix to Debian stable. Thank you in advance. This is what I got in syslog during power outage: May 17 07:43:16 xxx nut-monitor[2380]: UPS xxx@localhost on battery May 17 08:51:26 xxx nut-monitor[2380]: UPS xxx@localhost battery is low May 17 08:51:31 xxx nut-monitor[2380]: is_ups_critical: seems that UPS [xxx] is OB+LB now, but it is also calibrating - not declaring a critical state ... repeated many times for the following 5-6 minutes, until the server died. -- Best Regards Vladislav Kurz
Bug#1069178: cyrus-imapd: Squatter fixes available in 3.6.4
Package: cyrus-imapd Version: 3.6.1-4+deb12u1 Severity: normal Dear Maintainer, Cyrus 3.6.4 and 3.8.2 have fixes for IMHO serius bugs in the search engine squat. https://github.com/cyrusimap/cyrus-imapd/issues/4660 (squatter fails while indexing mails missing some headers - typically messages in Drafts and Trash) https://github.com/cyrusimap/cyrus-imapd/issues/4692 (Not yet squattered emails are always returned on any search) Is it possible to get 3.6.4 in Debian stable (instead of 3.6.1)? Looking at the changelogs it looks that 3.6.x releases are only bugfixes, and could fit in debian's policy of only fixing bugs in stable. https://www.cyrusimap.org/dev/imap/download/release-notes/3.6/x/3.6.4.html If upgrading to 3.6.4 is not workable, how about cherrypicking of these two patches? I have a patch file just for them, tested in production, and it works well. Best regards, Vladislav Kurz -- System Information: Debian Release: 12.5 APT prefers stable-updates APT policy: (500, 'stable-updates'), (500, 'stable-security'), (500, 'stable') Architecture: amd64 (x86_64) Kernel: Linux 6.1.0-18-amd64 (SMP w/8 CPU threads; PREEMPT) Locale: LANG=C, LC_CTYPE=C (charmap=UTF-8) (ignored: LC_ALL set to C.UTF-8), LANGUAGE not set Shell: /bin/sh linked to /usr/bin/dash Init: systemd (via /run/systemd/system) LSM: AppArmor: enabled Versions of packages cyrus-imapd depends on: ii cyrus-common 3.6.1-4+deb12u1 ii libc6 2.36-9+deb12u4 ii libcom-err2 1.47.0-2 ii libsasl2-22.1.28+dfsg-10 ii libssl3 3.0.11-1~deb12u2 ii libwrap0 7.6.q-32 ii zlib1g1:1.2.13.dfsg-1 Versions of packages cyrus-imapd recommends: ii rsync 3.2.7-1 cyrus-imapd suggests no packages. -- no debconf information
Bug#1067835: rkhunter: Email is sent even if MAIL-ON-WARNING is empty
Package: rkhunter Version: 1.4.6-11 Severity: normal Dear Maintainer, *** Reporter, please consider answering these questions, where appropriate *** * What led up to the situation? Upgrade to debian 12, or fresh install of debian 12 * What exactly did you do (or not do) that was effective (or ineffective)? Run "rkhunter --cron --report-warnings-only" (as used in cron.daily) * What was the outcome of this action? I got an email saying Please inspect this machine, because it may be infected. * What outcome did you expect instead? No email was expected, because MAIL-ON-WARNING was commented out in rkhunter.conf. I tried also setting explicitly "MAIL-ON-WARNING=" but I still get this email. *** End of the template - remove these template lines *** First the message itself is just scary, and looking for details in log is time consuming. Cron.daily sends another email with warnings, which is much more useful. Debian 11 was sending only the warnings from cron.daily. So - the email sent by cron.daily is OK, but the email sent by rkhunter itself is not useful and just scares people. Rkhunter is ignoring the MAIL-ON-WARNING setting and sends to root by default, contrary to documentation (comments in rkhunter.conf and man page) which says, that default is not to send these mails. Please check the code (or report upstream), why email is sent to root even if MAIL-ON-WARNING is not set. Thanks Vladislav Kurz -- System Information: Debian Release: 12.5 APT prefers stable-updates APT policy: (500, 'stable-updates'), (500, 'stable-security'), (500, 'stable') Architecture: amd64 (x86_64) Kernel: Linux 6.1.0-18-amd64 (SMP w/4 CPU threads; PREEMPT) Locale: LANG=C.UTF-8, LC_CTYPE=C.UTF-8 (charmap=UTF-8) (ignored: LC_ALL set to C.UTF-8), LANGUAGE not set Shell: /bin/sh linked to /usr/bin/dash Init: systemd (via /run/systemd/system) LSM: AppArmor: enabled Versions of packages rkhunter depends on: ii binutils 2.40-2 ii debconf [debconf-2.0] 1.5.82 ii file 1:5.44-3 ii lsof 4.95.0-1 ii net-tools 2.10-0.1 ii perl 5.36.0-7+deb12u1 ii ucf3.0043+nmu1 Versions of packages rkhunter recommends: ii bsd-mailx [mailx] 8.1.2-0.20220412cvs-1 ii curl7.88.1-10+deb12u5 ii e2fsprogs 1.47.0-2 ii iproute26.1.0-3 ii postfix [mail-transport-agent] 3.7.10-0+deb12u1 ii unhide 20220611-1 pn unhide.rb ii wget1.21.3-1+b2 Versions of packages rkhunter suggests: ii liburi-perl 5.17-1 ii libwww-perl 6.68-1 ii powermgmt-base 1.37 -- Configuration Files: /etc/rkhunter.conf changed: UPDATE_MIRRORS=0 MIRRORS_MODE=1 TMPDIR=/var/lib/rkhunter/tmp DBDIR=/var/lib/rkhunter/db SCRIPTDIR=/usr/share/rkhunter/scripts UPDATE_LANG="en" LOGFILE=/var/log/rkhunter.log USE_SYSLOG=authpriv.warning AUTO_X_DETECT=1 ALLOW_SSH_ROOT_USER=prohibit-password ALLOW_SSH_PROT_V1=2 ENABLE_TESTS=ALL DISABLE_TESTS=suspscan hidden_ports hidden_procs deleted_files packet_cap_apps apps SCRIPTWHITELIST=/usr/bin/egrep SCRIPTWHITELIST=/usr/bin/fgrep SCRIPTWHITELIST=/usr/bin/which SCRIPTWHITELIST=/usr/bin/ldd SCRIPTWHITELIST=/usr/bin/lwp-request SCRIPTWHITELIST=/usr/bin/which.debianutils SCRIPTWHITELIST=/usr/sbin/adduser ALLOWHIDDENDIR=/etc/.java ALLOWDEVFILE=/dev/shm/PostgreSQL.* ALLOWDEVFILE=/dev/shm/ShM.c5fa4b64H8dd08c52 IPC_SEG_SIZE=1310720 INETD_ALLOWED_SVC=ftp WEB_CMD="/bin/false" INSTALLDIR=/usr -- debconf information: * rkhunter/cron_daily_run: true * rkhunter/apt_autogen: true * rkhunter/cron_db_update: true
Bug#969729: linux-image-4.19.0-10-amd64: Realtek r8169 does not work after upgrade to buster (kernel 4.19)
Package: src:linux Version: 4.19.132-1 Severity: important Tags: upstream Dear Maintainer, I have upgraded from stretch to buster (kernel 4.9 to 4.19), and one of my network interfaces (r8169) stopped working. Reboot with kernel from stretch (4.9) makes it work again. But it does not work with kernel from buster (4.19) or buster-backports (5.7). Now I'm writing from system booted from old kernel so the automatically collected information may not be 100% relevant. LSPCI: 0b:00.0 Ethernet controller: Realtek Semiconductor Co., Ltd. RTL8111/8168/8411 PCI Express Gigabit Ethernet Controller (rev 01) Subsystem: Realtek Semiconductor Co., Ltd. RTL8111/8168 PCI Express Gigabit Ethernet controller There are two intel gigabit controllers on-board and those work fine. The symptoms are very similar to bug reported here: https://bugzilla.redhat.com/show_bug.cgi?id=1650984 The bug report suggets that the problem was already fixed, but it is not in my case. I would expect the fix to be at leas in buster-backports. Also the suggested workaround: modprobe -r r8169; modprobe realtek; modprobe r8169 did not help. I have firmware-realtek installed (tried also backports version). I also tried drivers r8168-dkms, but that did not work at all (not even on 4.9 kernel) What is suspicious is that the IRQ number is changing with different kernel versions: IRQ 19 - then it does not work, probable conflict with USB controlelr IRQ 39 - it works fine. And to make things more funny after the last reboot the IRQ is 70 Problematic boot: /var/log/kern.log.1:Aug 31 16:26:03 bunkr kernel: [0.00] Linux version 4.19.0-10-amd64 (debian-ker...@lists.debian.org) (gcc version 8.3.0 (Debian 8.3.0-6)) #1 SMP Debian 4.19.132-1 (2020-07-24) /var/log/kern.log.1:Aug 31 16:26:03 bunkr kernel: [1.558206] r8169 :0b:00.0: can't disable ASPM; OS doesn't have ASPM control /var/log/kern.log.1:Aug 31 16:26:03 bunkr kernel: [1.567436] libphy: r8169: probed /var/log/kern.log.1:Aug 31 16:26:03 bunkr kernel: [1.567974] r8169 :0b:00.0 eth0: RTL8168b/8111b, 54:e6:fc:80:53:26, XID 3800, IRQ 19 /var/log/kern.log.1:Aug 31 16:26:03 bunkr kernel: [1.567975] r8169 :0b:00.0 eth0: jumbo features [frames: 4080 bytes, tx checksumming: ko] /var/log/kern.log.1:Aug 31 16:26:03 bunkr kernel: [1.576735] r8169 :0b:00.0 eth2: renamed from eth0 /var/log/kern.log.1:Aug 31 16:26:21 bunkr kernel: [ 33.601124] RTL8211B Gigabit Ethernet r8169-b00:00: attached PHY driver [RTL8211B Gigabit Ethernet] (mii_bus:phy_addr=r8169-b00:00, irq=IGNORE) /var/log/kern.log.1:Sep 3 09:44:06 bunkr kernel: [0.00] Linux version 5.7.0-0.bpo.2-amd64 (debian-ker...@lists.debian.org) (gcc version 8.3.0 (Debian 8.3.0-6), GNU ld (GNU Binutils for Debian) 2.31.1) #1 SMP Debian 5.7.10-1~bpo10+1 (2020-07-30) /var/log/kern.log.1:Sep 3 09:44:06 bunkr kernel: [1.182134] r8169 :0b:00.0: can't disable ASPM; OS doesn't have ASPM control /var/log/kern.log.1:Sep 3 09:44:06 bunkr kernel: [1.184923] libphy: r8169: probed /var/log/kern.log.1:Sep 3 09:44:06 bunkr kernel: [1.185481] r8169 :0b:00.0 eth0: RTL8168b/8111b, 54:e6:fc:80:53:26, XID 380, IRQ 19 /var/log/kern.log.1:Sep 3 09:44:06 bunkr kernel: [1.185483] r8169 :0b:00.0 eth0: jumbo features [frames: 4080 bytes, tx checksumming: ko] /var/log/kern.log.1:Sep 3 09:44:06 bunkr kernel: [1.196796] r8169 :0b:00.0 eth2: renamed from eth0 /var/log/kern.log.1:Sep 3 09:44:21 bunkr kernel: [ 33.711759] RTL8211B Gigabit Ethernet r8169-b00:00: attached PHY driver [RTL8211B Gigabit Ethernet] (mii_bus:phy_addr=r8169-b00:00, irq=IGNORE) Correct boot: /var/log/kern.log.1:Aug 31 17:19:04 bunkr kernel: [0.00] Linux version 4.9.0-13-amd64 (debian-ker...@lists.debian.org) (gcc version 6.3.0 20170516 (Debian 6.3.0-18+deb9u1) ) #1 SMP Debian 4.9.228-1 (2020-07-05) /var/log/kern.log.1:Aug 31 17:19:04 bunkr kernel: [1.193291] r8169 Gigabit Ethernet driver 2.3LK-NAPI loaded /var/log/kern.log.1:Aug 31 17:19:04 bunkr kernel: [1.193302] r8169 :0b:00.0: can't disable ASPM; OS doesn't have ASPM control /var/log/kern.log.1:Aug 31 17:19:04 bunkr kernel: [1.193999] r8169 :0b:00.0 eth0: RTL8168b/8111b at 0xabae40039000, 54:e6:fc:80:53:26, XID 1800 IRQ 39 /var/log/kern.log.1:Aug 31 17:19:04 bunkr kernel: [1.194002] r8169 :0b:00.0 eth0: jumbo features [frames: 4080 bytes, tx checksumming: ko] /var/log/kern.log.1:Aug 31 17:19:04 bunkr kernel: [1.223029] r8169 :0b:00.0 eth2: renamed from eth0 The only difference between kernel 4.19 and 5.7 is that 4.19 does not detect if the link is up or down, while 5.7 does, but does not communicate either. I have another server with onboard realtek gigabit, and that is running kernel 4.19 just fine. 05:00.0 Ethernet controller: Realtek Semiconductor Co., Ltd. RTL8111/8168/8411 PCI Express Gigabit Ethernet Controller (rev 02) Subsystem: ASUSTeK
Bug#863520: Will bug #863520 be fixed in stable
Hello, I'm in the process of upgrading more servers to Debian 9, and repatedly hitting this bug. I think it is serious enough to be fixed in stable, as well. Please backport at least the small fix mentioned above, and release as stable update. -- Best Regards Vladislav Kurz
Bug#908730: kmail: Query string stripped from hyperlinks in kmail
Dne pátek 14. září 2018 9:25:41 CEST jste napsal(a): > Vladislav Kurz wrote: > > Since upgrading to debian 9, I have a problem with emails form our > > helpdesk system. Links have query string with ticket id, or even action to > > do (take, resolve,...), but the query string is ignored. It seems that > > kmail is stripping it, perhaps as some sort of security feature. It would > > be nice to have them back, at least for whitelisted websites. I was not > > able to find any setting that would allow that. > > I don't think it's kmail that is stripping this (it works just fine for me > in stretch), but rather a setting for how to determine in what application > the URL should be opened. > > What do you have in > > K → System settings → Applications → Default Applications → Web Browser > > I suspect that you have that set to "in an application based on the contents > of the URL". That setting has kmail (or rather underlying libraries) fetch > the resource (or at least the HEAD) and then picks your browser for HTML, > okular for a PDF, gwenview for a JPG etc. Yes it was set as above. > The sequence is (roughly): > > * kmail asks www server for resource or metadata about the resource (I > assume it's a HEAD request, I've not checked) > > * in doing this look-up, various http redirects are followed > > * when kmail's libraries look at your helpdesk URL you are not authenticated > (even though you might be in your browser) > > * the helpdesk server helpfully redirects you to a login form > > * the login form is HTML > > * HTML is for a www browser so your browser is opened pointing to the > current URL which is a login form > > (I can replicate what you see with password protected resources where no > query string is involved, just a redirect to a login form) After I submitted the bug report I have noticed that the query string was not stripped for bugs.debian.org (which does not need any login) > Changing the aforementioned setting to "in the following browser" may be > sufficient. Yes, it has fixed the problem. Thank you very much for this hint. However I think that, even if it is not a bug in kmail, it should be made clear to users, that the default setting will cause problems on sites that need authentication. Or that when the browser is opened, it shall go to the link I have clicked and not on any redirects that kmail has found out by himself. I'm not sure how other apps behave in such case, if the behavior is specific to kmail, or provided by some common KDE library routine. In that case this bug should be reassigned appropriately. Cheers Vladki
Bug#908730: kmail: Query string stripped from hyperlinks in kmail
Package: kmail Version: 4:16.04.3-4~deb9u1 Severity: normal Dear Maintainer, Since upgrading to debian 9, I have a problem with emails form our helpdesk system. Links have query string with ticket id, or even action to do (take, resolve,...), but the query string is ignored. It seems that kmail is stripping it, perhaps as some sort of security feature. It would be nice to have them back, at least for whitelisted websites. I was not able to find any setting that would allow that. * What led up to the situation? upgrade from debian 8 to 9 * What exactly did you do (or not do) that was effective (or ineffective)? click on hyperlink (in email message) with query string e.g.: https://helpdesk.example.net/rt/Ticket/Display.html?id=12345 * What was the outcome of this action? Browser (firefox) opens with main page of request tracker: https://helpdesk.example.net/rt/ * What outcome did you expect instead? Browser should open the requested ticket #12345 Best Regards Vladislav Kurz -- System Information: Debian Release: 9.5 APT prefers stable APT policy: (500, 'stable') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 4.9.0-8-amd64 (SMP w/4 CPU cores) Locale: LANG=cs_CZ.UTF-8, LC_CTYPE=cs_CZ.UTF-8 (charmap=UTF-8), LANGUAGE= (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) Versions of packages kmail depends on: ii akonadi-server 4:16.04.3-4 ii kdepim-runtime 4:16.04.2-2+b2 ii kdepimlibs-data 4:16.04.2-2 ii kf5-kdepimlibs-kio-plugins 4:16.04.2-2 ii kio 5.28.0-2 ii libc62.24-11+deb9u3 ii libgcc1 1:6.3.0-18+deb9u1 ii libkf5akonadiagentbase5 4:16.04.3-4 ii libkf5akonadicalendar5 16.04.2-2 ii libkf5akonadicontact54:16.04.2-2 ii libkf5akonadicore5 4:16.04.3-4 ii libkf5akonadimime5 4:16.04.2-2 ii libkf5akonadisearch-plugins 16.04.3-1+b2 ii libkf5akonadisearchdebug516.04.3-1+b2 ii libkf5akonadiwidgets54:16.04.3-4 ii libkf5alarmcalendar5 16.04.2-2 ii libkf5archive5 5.28.0-2 ii libkf5bookmarks5 5.28.0-1 ii libkf5calendarcore5 4:16.04.2-1 ii libkf5calendarsupport5 4:16.04.2-2 ii libkf5calendarutils5 16.04.3-1 ii libkf5codecs55.28.0-1+b2 ii libkf5completion55.28.0-1 ii libkf5configcore55.28.0-2 ii libkf5configgui5 5.28.0-2 ii libkf5configwidgets5 5.28.0-2 ii libkf5contacts5 16.04.2-1 ii libkf5coreaddons55.28.0-2 ii libkf5crash5 5.28.0-1 ii libkf5dbusaddons55.28.0-1 ii libkf5followupreminder5 4:16.04.2-2 ii libkf5gpgmepp-pthread5 16.04.3-2+b2 ii libkf5gravatar5 4:16.04.2-2 ii libkf5guiaddons5 5.28.0-1 ii libkf5i18n5 5.28.0-2 ii libkf5iconthemes55.28.0-2 ii libkf5identitymanagement516.04.2-1 ii libkf5incidenceeditor-bin16.04.2-2+b2 ii libkf5incidenceeditor5 16.04.2-2+b2 ii libkf5itemmodels55.28.0-2 ii libkf5itemviews5 5.28.0-1 ii libkf5jobwidgets55.28.0-2 ii libkf5kcmutils5 5.28.0-2 ii libkf5kdelibs4support5 5.28.0-1 ii libkf5kiocore5 5.28.0-2 ii libkf5kiofilewidgets55.28.0-2 ii libkf5kiowidgets55.28.0-2 ii libkf5kmanagesieve5 4:16.04.3-2+b2 ii libkf5kontactinterface5 16.04.2-1 ii libkf5ksieveui5 4:16.04.3-2+b2 ii libkf5libkdepim-plugins 4:16.04.2-3 ii libkf5libkdepim5 4:16.04.2-3 ii libkf5libkleo5 4:16.04.2-1 ii libkf5mailcommon-plugins 4:16.04.2-2 ii libkf5mailcommon54:16.04.2-2 ii libkf5mailimporter5 4:16.04.2-2 ii libkf5mailtransport5 16.04.2-3 ii libkf5messagecomposer5 4:16.04.3-3~deb9u1 ii libkf5messagecore5 4:16.04.3-3~deb9u1 ii libkf5messagelist5 4:16.04.3-3~deb9u1 ii libkf5messageviewer5 4:16.04.3-3~deb9u1 ii libkf5mime5 16.04.2-1 ii libkf5notifications5 5.28.0-1 ii libkf5notifyconfig5 5.28.0-1 ii libkf5parts5 5.28.0-1 ii libkf5pimcommon-plugins 4:16.04.2-2 ii libkf5pimcommon5 4:16.04.2-2 ii libkf5pimtextedit5 16.04.2-1 ii libkf5sendlater5 4:16.04.2-2 ii libkf5service-bin5.28.0-1 ii libkf5service5 5.28.0-1 ii libkf5sonnetui5 5.28.0-2 ii libkf5templateparser54:16.04.3-3~deb9u1 ii libkf5textwidgets5 5.28.0-1 ii libkf5wallet-bin 5.28.0-3 ii libkf5wallet55.28.0-3 ii libkf5widgetsaddons5 5.28.0-3 ii libkf5windowsystem5 5.28.0-2 ii libkf5xmlgui55.28.0-1 ii libqt5core5a 5.7.1+dfsg-3+b1 ii libqt5dbus5
Bug#862271: closed by Aron Xu <a...@debian.org> (Fixed in 0.6.5.10-1)
On 03/05/18 09:57, Debian Bug Tracking System wrote:
> This has been addressed in 0.6.5.10-1 package, closing for now.
Hello,
I cannot see 0.6.5.10-1 in any archive. Is there any chance it will get
into jessie-backports and stretch?
--
Best Regards
Vladislav Kurz
Bug#889285: closing 889285
Hello Salvatore, I'm sorry. I missed the announcement, as it was filtered into another folder of my mailbox... I was confused by the brevity of the previous email, which said just that the bug was closed, without further details. I should not answer emails on Friday night... Sorry once more -- Sent from my Android device with K-9 Mail. Please excuse my brevity.
Bug#889285: bind9: CVE-2017-3139 affects debian too: assertion failure in validator.c:1858
Package: bind9
Version: 1:9.8.4.dfsg.P1-6+nmu2+deb7u19
Severity: grave
Tags: security
Justification: renders package unusable
Dear Maintainer,
This is a followup to archived bug #860225.
Although
https://security-tracker.debian.org/tracker/CVE-2017-3139 states that
debian is not affected by CVE-2017-3139, I observed this behavior on
debian wheezy:
Feb 3 08:38:07 server named[16906]: validator.c:1858: INSIST(rdataset->type ==
((dns_rdatatype_t)dns_rdatatype_dnskey)) failed, back trace
Feb 3 08:38:07 server named[16906]: #0 0x7f9b66798e19 in ??
Feb 3 08:38:07 server named[16906]: #1 0x7f9b650d5f3a in ??
Feb 3 08:38:07 server named[16906]: #2 0x7f9b66094e57 in ??
Feb 3 08:38:07 server named[16906]: #3 0x7f9b6609b599 in ??
Feb 3 08:38:07 server named[16906]: #4 0x7f9b650f4dfd in ??
Feb 3 08:38:07 server named[16906]: #5 0x7f9b64aa8b50 in ??
Feb 3 08:38:07 server named[16906]: #6 0x7f9b64492fbd in ??
Feb 3 08:38:07 server named[16906]: exiting (due to assertion failure)
Ondrej Zary reported this on Sat, 02 Sep 2017 in bug #860225 but it
was closed and archived without answer. May I ask why?
I had a look in the relevant bug report at redhat, but they do not
provide much details https://bugzilla.redhat.com/show_bug.cgi?id=1447743
So I'm not 100% sure it is the same bug.
*** Please consider answering these questions, where appropriate ***
* What led up to the situation?
* What exactly did you do (or not do) that was effective (or
ineffective)?
* What was the outcome of this action?
* What outcome did you expect instead?
*** End of the template - remove these lines ***
-- System Information:
Debian Release: 7.11
APT prefers oldoldstable
APT policy: (500, 'oldoldstable')
Architecture: i386 (i686)
Kernel: Linux 3.2.0-5-686-pae (SMP w/1 CPU core)
Locale: LANG=sk_SK, LC_CTYPE=sk_SK (charmap=ISO-8859-2)
Shell: /bin/sh linked to /bin/bash
Versions of packages bind9 depends on:
ii adduser3.113+nmu3
ii bind9utils 1:9.8.4.dfsg.P1-6+nmu2+deb7u19
ii debconf [debconf-2.0] 1.5.49
ii libbind9-801:9.8.4.dfsg.P1-6+nmu2+deb7u19
ii libc6 2.13-38+deb7u12
ii libcap21:2.22-1.2
ii libdns88 1:9.8.4.dfsg.P1-6+nmu2+deb7u19
ii libgssapi-krb5-2 1.10.1+dfsg-5+deb7u9
ii libisc84 1:9.8.4.dfsg.P1-6+nmu2+deb7u19
ii libisccc80 1:9.8.4.dfsg.P1-6+nmu2+deb7u19
ii libisccfg821:9.8.4.dfsg.P1-6+nmu2+deb7u19
ii liblwres80 1:9.8.4.dfsg.P1-6+nmu2+deb7u19
ii libssl1.0.01.0.1t-1+deb7u3
ii libxml22.8.0+dfsg1-7+wheezy12
ii lsb-base 4.1+Debian8+deb7u1
ii net-tools 1.60-24.2
ii netbase5.0
bind9 recommends no packages.
Versions of packages bind9 suggests:
pn bind9-doc
ii dnsutils1:9.8.4.dfsg.P1-6+nmu2+deb7u19
pn resolvconf
pn ufw
-- Configuration Files:
/etc/bind/named.conf.local changed:
//
// Do any local configuration here
//
// Consider adding the 1918 zones here, if they are not used in your
// organization
include "/etc/bind/zones.rfc1918";
/etc/bind/named.conf.options changed:
options {
directory "/var/cache/bind";
// If there is a firewall between you and nameservers you want
// to talk to, you may need to fix the firewall to allow multiple
// ports to talk. See http://www.kb.cert.org/vuls/id/800113
// If your ISP provided one or more IP addresses for stable
// nameservers, you probably want to use them as forwarders.
// Uncomment the following block, and insert the addresses replacing
// the all-0's placeholder.
// forwarders {
// 0.0.0.0;
// };
auth-nxdomain no;# conform to RFC1035
listen-on-v6 { none; };
listen-on { 127.0.0.1; };
dnssec-enable yes;
dnssec-validation auto;
dnssec-lookaside auto;
};
-- debconf information:
bind9/different-configuration-file:
bind9/run-resolvconf: true
bind9/start-as-user: bind
Bug#855918: samba: connection refused after reboot, fixable by systemctl restart smbd
After=winbind.service [Service] Type=notify NotifyAccess=all PIDFile=/var/run/samba/smbd.pid LimitNOFILE=16384 EnvironmentFile=-/etc/default/samba ExecStart=/usr/sbin/smbd $SMBDOPTIONS ExecReload=/bin/kill -HUP $MAINPID LimitCORE=infinity [Install] WantedBy=multi-user.target ~# cat /lib/systemd/system/nmbd.service [Unit] Description=Samba NMB Daemon Documentation=man:nmbd(8) man:samba(7) man:smb.conf(5) After=network-online.target Wants=network-online.target [Service] Type=notify NotifyAccess=all PIDFile=/var/run/samba/nmbd.pid EnvironmentFile=-/etc/default/samba ExecStart=/usr/sbin/nmbd $NMBDOPTIONS ExecReload=/bin/kill -HUP $MAINPID LimitCORE=infinity [Install] WantedBy=multi-user.target Best Regards Vladislav Kurz -- System Information: Debian Release: 9.3 APT prefers stable-updates APT policy: (500, 'stable-updates'), (500, 'stable') Architecture: amd64 (x86_64) Kernel: Linux 4.9.0-5-amd64 (SMP w/4 CPU cores) Locale: LANG=C.UTF-8, LC_CTYPE=C.UTF-8 (charmap=UTF-8), LANGUAGE=C.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) Versions of packages samba depends on: ii adduser 3.115 ii dpkg 1.18.24 ii init-system-helpers 1.48 ii libbsd0 0.8.3-1 ii libc62.24-11+deb9u1 ii libldb1 2:1.1.27-1+b1 ii libpam-modules 1.1.8-3.6 ii libpam-runtime 1.1.8-3.6 ii libpopt0 1.16-10+b2 ii libpython2.7 2.7.13-2+deb9u2 ii libtalloc2 2.1.8-1 ii libtdb1 1.3.11-2 ii libtevent0 0.9.31-1 ii libwbclient0 2:4.5.12+dfsg-2+deb9u1 ii lsb-base 9.20161125 ii procps 2:3.3.12-3 ii python 2.7.13-2 ii python-dnspython 1.15.0-1 ii python-samba 2:4.5.12+dfsg-2+deb9u1 ii python2.72.7.13-2+deb9u2 ii samba-common 2:4.5.12+dfsg-2+deb9u1 ii samba-common-bin 2:4.5.12+dfsg-2+deb9u1 ii samba-libs 2:4.5.12+dfsg-2+deb9u1 ii tdb-tools1.3.11-2 ii update-inetd 4.44 Versions of packages samba recommends: ii attr1:2.4.47-2+b2 ii logrotate 3.11.0-0.1 ii samba-dsdb-modules 2:4.5.12+dfsg-2+deb9u1 ii samba-vfs-modules 2:4.5.12+dfsg-2+deb9u1 Versions of packages samba
Bug#887556: non deterministic behavior of network-online.target
On 01/17/18 23:00, Michael Biebl wrote: > Am 17.01.2018 um 22:11 schrieb Michael Biebl: > >> It's not systemd that pulls in network-online.target. You should contact >> the ifupdown maintainers why apparently network-online.target does not >> work for you. > > btw, in your syslog.fail, it seems like network-online.target is not > started at all. Either your log is incomplete or something else prevents > this target from being pulled in. > > You should check, if you have any dependency loops (you mentioned custom > services) which could result in services/targets not being started. > > For that add systemd.log_level=debug to the kernel command line and follow > > https://unix.stackexchange.com/questions/193714/generic-methodology-to-debug-ordering-cycles-in-systemd > Hello Michael, Thanks for the link. You were right, there was a loop introduced by our script. I had to use "journalctl -b" to find it. Now I consider a bug the fact that this information was not shown in syslog. Please keep in mind that there are many many admins who grew up on the fact that EVERYTHING important is in syslog. Now with systemd we have to use some special tool - journalctl, which to my great surprise contains more information, that is not stored anywhere else. I just wonder why? Why there is something that duplicates the function of syslog? Why is this information (ordering cycle) not written to sysylog. This is something that shoud definitely have at least warning level of importance, not debug. Aside from that, it would be nice, if "systemctl enable something" would check the dependencies and ordering, and tell me immediately that I have created a cycle or that some dependency cannot be satisfied. That would save us several hours of despair and anger. Also it would probably reduce the number (at least by 2) of sysadmins, who think that systemd is ... (erm. fit your favourite curse). -- Best Regards Vladislav Kurz
Bug#883938: linux-image-3.16.0-4-amd64: Kernel panic on boot after upgrading to debian 8.10 kernel 3.16.51
Package: src:linux Followup-For: Bug #883938 Dear Maintainer, I have run into this same problem on HP ProLiant DL380 G6 (fortunately this is only a backup server) I confirm that numa=off workaround works for me. That allowed me to install linux-image-3.16.0-4-amd64_3.16.51-3~a.test_amd64.deb which now boots OK even without numa=off. Thanks for preparing the fixed version. As a prevention I have installed the fixed kernel also on HP ProLiant DL380 Gen9, but did not dare yet to reboot that one as it is the production box. Best Regards Vladislav Kurz
Bug#863520: cyrus-imapd version 2.5.10-3 Fatal error with SSL
Package: cyrus-imapd Version: 2.5.10-3 Followup-For: Bug #863520 Dear Maintainer, is there anything we could do to help this bug being fixed? It seems to be fixed upstream. I think this deserves to be fixed in stable. I have applied the patch mentioned above to debian sources, recompiled, repacked and reinstalled, and now I run without these problems. Best Regards Vladislav Kurz https://github.com/cyrusimap/cyrus-imapd/issues/1872 https://github.com/cyrusimap/cyrus-imapd/commit/a1c917df8de04e108228f38f0010498bec3d81e8 -- System Information: Debian Release: 9.1 APT prefers stable-updates APT policy: (500, 'stable-updates'), (500, 'stable') Architecture: amd64 (x86_64) Kernel: Linux 4.9.0-3-amd64 (SMP w/4 CPU cores) Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968), LANGUAGE=C (charmap=ANSI_X3.4-1968) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) Versions of packages cyrus-imapd depends on: ii cyrus-common 2.5.10-3 ii dpkg 1.18.24 ii libc6 2.24-11+deb9u1 ii libicu57 57.1-6 ii libsasl2-22.1.27~101-g0780600+dfsg-3 ii libssl1.1 1.1.0f-3 ii libwrap0 7.6.q-26 ii zlib1g1:1.2.8.dfsg-5 cyrus-imapd recommends no packages. cyrus-imapd suggests no packages. -- no debconf information
Bug#675013: backuppc: Bad e-mail headers in czech and polish
Package: backuppc Version: 3.2.1-4 Followup-For: Bug #675013 Dear Maintainer, this bug is still present in debian stable (stretch), backuppc version 3.3.1-4 I have provided a patch 5 years ago (!). Is there any reason why it has not been patched yet? Best Regards Vladislav Kurz
Bug#869871: closed by Andreas Metzler <ametz...@bebt.de> (Re: Bug#869871: exim4-config: /etc/mailname is ignored)
On 08/02/17 11:21, Debian Bug Tracking System wrote:
> No (at least not by default), it uses
> /usr/sbin/sendmail -oi -f lo...@hostname.fqdn -t
> and the recipient address in To: is qualified with the local hostname.
> So nothing for exim left to do. Let's close.
Sure nothing for exim, but I think that the bug is still with mailutils.
Either they should let sendmail (exim, postfix, whatever) do the
qualification, or use /etc/mailname (if possible) instead of hostname.
--
Best Regards
Vladislav Kurz
Bug#869871: exim4-config: /etc/mailname is ignored
On 07/28/17 09:42, Marc Haber wrote: > On Thu, Jul 27, 2017 at 11:20:32AM +0200, root wrote: >> after a fresh install of exim4 on debian stretch, and moving our old >> configuration, I found out that mail to unqualified adresses is sent >> to user@`hostname -f` instead of user@`cat /etc/mailname`. Just as if >> MAIN_PRIMARY_HOSTNAME_AS_QUALIFY_DOMAIN was set. > > How are you sending this mail? qualify_domain and qualify_recipient only > apply to locally generated messages and NOT to messages received from a > mail client via SMTP. > > You might want to run exim with a debug option and look for the > qualification code in the debug output. > > Greetings > Marc > Hello, I did some more testing. I tried to send using "sendmail -b user", and it properly qualified the email addresses with the domain name in /etc/mailname. Originally I was sending the mail using mail command from mailutils. I don't know why I had installed mailutils. On all other servers I have bsd-mailx. So apt-get remove/install, and voila, mails sent using bsd-mailx have email addresses properly qualified. So this bug shoudl be rassigned to mailutils -- Best Regards Vladislav Kurz
Bug#870361: systemd: after/before is ignored
On 08/01/17 15:38, Michael Biebl wrote:
> Am 27.07.2017 um 17:23 schrieb Vladki:
>
> I'm pretty sure After/Before works correctly.
> Can you please be more specific which units should be ordered against
> each other in what way.
>
>
For example smbd/nmbd:
smbd has:
After=network.target nmbd.service winbind.service
nmbd has:
After=network-online.target
Wants=network-online.target
But in syslog I've seen smbd occasionally starting before nmbd,
and nmbd often starting before network was fully up - i.e. before dhcp
handshake was complete.
I had really problem getting my own script to run
After=network-online.target and Before=smbd.service (samba-ad-dc)
Now I managed to get it run ok, but I'm not 100% sure if it is reliable
or just a good luck and coincidence.
My script has:
After=network-online.target
Wants=network-online.target
Before=zfs.target
WantedBy=zfs.target
and samba-ad-dc has:
After=network.target
After=zfs.target
I thought I could get inspiration from distro provided units like smbd
and nmbd, but even they did not behave as expected.
I suspect there might be a problem parsing multiple arguments on single
After/Before line, or that it works only with *.target, but not *.service.
--
Best regards
Vladislav Kurz
Bug#862271: zfs-linux: loop mounted files on zfs are read-only
Package: zfs-linux Severity: normal Dear Maintainer, loop mounted files on ZFS are read only: $ truncate -s 64G filesystem.img $ mkfs.ext4 filesystem.img $ mount -o loop filesystem.img /mnt $ touch /mnt/test touch: cannot touch ‘/mnt/test’: Read-only file system $ mount -o remount,rw /mnt/ mount: cannot remount /dev/loop0 read-write, is write-protected checking with mount, losetup shows that the loop filesystem is read only It seems to be fixed upstream, please update to 0.6.5.10 https://github.com/zfsonlinux/zfs/issues/5776 Best Regards Vladislav Kurz
Bug#820982: samba: Users cannot open their Windows session anymore
Package: samba Version: 2:3.6.6-6+deb7u10 Followup-For: Bug #820982 Hello Andrew, I have tried packages from https://www.samba.org/~abartlet/3.6.6-security/ I had to recompile for i386, but it did not help. Domain logins stil do not work. BTW 821811 seems to be a duplicate of this bug. Best Regards Vladislav Kurz
Bug#820982: Trust relationship between Win7 workstation and Samba3 domain lost
One more info that may be important. To get win7 workstation to join the domain before upgrade, I had to tweak registry according to this article: https://wiki.samba.org/index.php/Required_settings_for_NT4-style_domains Maybe it enabled/disabled something that was removed by the security fix. -- Best Regards Vladislav Kurz
Bug#820982: samba: Trust relationship between Win7 workstation and Samba3 domain lost
Package: samba Version: 2:3.6.6-6+deb7u9 Followup-For: Bug #820982 Dear Maintainer, * What led up to the situation? * What exactly did you do (or not do) that was effective (or ineffective)? apt-get upgrade (samba) * What was the outcome of this action? Windows 7 and Windows XP stations cannot authenticate users any more. (Error messages are not exact - I have czech windows so I try to translate back to english) Win7: trust relationship between this station and primary domain failed WinXP: windows cannot log you to doamin, because domain controller is not available, or workstation account was not found. log.smbd shows this when trying to log from Win7 [2016/04/15 13:31:31.985456, 0] rpc_server/netlogon/srv_netlog_nt.c:976(_netr_ServerAuthenticate3) _netr_ServerAuthenticate3: netlogon_creds_server_check failed. Rejecting auth request from client LOPATA machine account LOPATA$ nothing logged when attepting login from win XP * What outcome did you expect instead? Just log in as before the upgrade I tried installing winbind, but it did not help. Should it be configured somehow? temporary solution - downgrade I have a testing environment, so I can provide some debug logs. Please tell me exactly what would be helpful. Samba is usually logging either too much or too little. Thanks in advance for help Vladislav Kurz -- System Information: Debian Release: 7.10 APT prefers oldstable-updates APT policy: (500, 'oldstable-updates'), (500, 'oldoldstable'), (500, 'oldstable') Architecture: i386 (i686) Kernel: Linux 3.2.0-4-686-pae (SMP w/8 CPU cores) Locale: LANG=C.UTF-8, LC_CTYPE=C.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages samba depends on: ii adduser3.113+nmu3 ii debconf [debconf-2.0] 1.5.49 ii dpkg 1.16.17 ii libacl12.2.51-8 ii libattr1 1:2.4.46-8 ii libc6 2.13-38+deb7u10 ii libcap21:2.22-1.2 ii libcomerr2 1.42.5-1.1+deb7u1 ii libcups2 1.5.3-5+deb7u6 ii libgssapi-krb5-2 1.10.1+dfsg-5+deb7u7 ii libk5crypto3 1.10.1+dfsg-5+deb7u7 ii libkrb5-3 1.10.1+dfsg-5+deb7u7 ii libldap-2.4-2 2.4.31-2+deb7u1 ii libpam-modules 1.1.3-7.1 ii libpam-runtime 1.1.3-7.1 ii libpam0g 1.1.3-7.1 ii libpopt0 1.16-7 ii libtalloc2 2.1.1-1~bpo70+1 ii libtdb11.2.10-2 ii libwbclient0 2:3.6.6-6+deb7u9 ii lsb-base 4.1+Debian8+deb7u1 ii procps 1:3.3.3-3 ii samba-common 2:3.6.6-6+deb7u9 ii update-inetd 4.43 ii zlib1g 1:1.2.7.dfsg-13 Versions of packages samba recommends: ii logrotate 3.8.1-4 ii tdb-tools 1.2.10-2 Versions of packages samba suggests: pn ctdb pn ldb-tools ii openbsd-inetd [inet-superserver] 0.20091229-2 pn smbldap-tools -- debconf information: * samba/log_files_moved: samba-common/title: samba/nmbd_from_inetd: * samba/tdbsam: true * samba/generate_smbpasswd: true * samba/run_mode: daemons
Bug#762694: partman-partitioning: Partitions are not aligned
On Sat, 27 Sep 2014, Colin Watson wrote: On Wed, Sep 24, 2014 at 04:04:01PM +0200, Vladislav Kurz wrote: partitions created by debian installer are not aligned to cylinders (MBR), or 1MiB (GPT). Could you please provide a partman log from a d-i run that fails to do this? (It should be in /var/log/installer/partman after installation.) As far as I knew I'd fixed all this a long time ago ... I have a badly aligned GPT example made by squeeze installer, so this may be already fixed. I have checked some wheezy GPT installs and they seem to be 1MiB aligned. However I would prefer if the installer used MiB/GiB (1024*1024) instead of MB/GB (1000*1000) for specifying the partition size (e.g. 4G should mean 4GiB). Please note that partitions should be aligned to 1MiB or more on MBR too. Regardless of the partition table format, cylinder alignment hasn't been necessary for a decade or two now, and it produces suboptimal performance on modern disks. There may of course still be fdisk-style tools that are behind the times on this, but that's their problem. OK, I checked two MBR wheezy installs and it seems that this bug should be reassigned to cfdisk. Partitions made by installer a aligned to 1MiB, fdisk says they are OK, but cfdisk show they are not aligned to cylinders. And vice versa - the other disk I partitioned using cfdisk is not aligned to 1MiB Vladislav Kurz -- Smash forehead on keyboard to continue... partman.bz2 Description: Binary data
Bug#762694: partman-partitioning: Partitions are not aligned
Package: partman-partitioning Version: 91 Severity: normal Dear Maintainer, partitions created by debian installer are not aligned to cylinders (MBR), or 1MiB (GPT). You can check by partitioning a disk using debian installer and then look at the partitions with cfdisk - you'll see an unusable space at the beginning and end of the disk, and asterisks at all partitins meaning it is not aligned. This is very inconvenient, if you need to partition a new drive with the same partitions, as cfdisk will not let you create unaligned partitions. One has to copy the partition table with dd or some other *fdisk tool. Similar problems are with GPT and gdisk. Even more problems arise if you want to repartition - extend the partition into unused space and keep the beginning at the same place. Please fix partman in debian installer, so that it makes partitions aligned in the same way as cfdisk/gdisk does. Best regards Vladislav Kurz -- System Information: Debian Release: 7.6 APT prefers stable-updates APT policy: (500, 'stable-updates'), (500, 'squeeze-lts'), (500, 'oldstable-updates'), (500, 'stable'), (500, 'oldstable') Architecture: i386 (i686) Kernel: Linux 3.2.0-4-686-pae (SMP w/8 CPU cores) Locale: LANG=, LC_CTYPE= (charmap=ANSI_X3.4-1968) Shell: /bin/sh linked to /bin/dash -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#761159: squid3: pam_auth does not work - needs setuid/setgid
Source: squid3 Version: 3.1.20-2.2+deb7u2 Severity: normal Dear Maintainer, I have noticed that after recent security update of squid3, pam_auth stopped working. Users are authenticated with basic auth, but even if they supply the right credentials, they sill get: Cache Access Denied. I have tracked the problem to /usr/lib/squid3/pam_auth, which used to have setuid bit, but does not have it any more. Setting the file to proxy:shadow 2750, or root:proxy 4750 solved the problem. I'm not sure which of the two is preferred. Simple test is to run /usr/lib/squid3/pam_auth from command line and enter name password. If run as root, OK is returned, if run as normal user you get ERR, unless you have the proper setgid or setuid bits. This applies to wheezy as well as squeeze-lts. Should I file a separate bug for squeeze-lts? -- System Information: Debian Release: 7.6 APT prefers stable-updates APT policy: (500, 'stable-updates'), (500, 'squeeze-lts'), (500, 'oldstable-updates'), (500, 'stable'), (500, 'oldstable') Architecture: i386 (i686) Kernel: Linux 3.2.0-4-686-pae (SMP w/8 CPU cores) Locale: LANG=, LC_CTYPE= (charmap=ANSI_X3.4-1968) Shell: /bin/sh linked to /bin/dash -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#752882: cyrus-common-2.2: ipurge should have --dry-run option
Package: cyrus-common-2.2 Version: 2.2.13-19+squeeze3 Severity: wishlist Hi all, I have found utility ipurge, and want to use it for regular cleanup of trash and junk mailboxes. However, I'm not quite comfortable with the mailbox-pattern syntax. So I'd like to have some way to check what will be deleted before running the command. I think that this utility should have some --dry-run option, or equivalent, to see how much damage it is going to do. Best regards Vladislav Kurz P.S. I have checked also version 2.4, it does not have such option either. -- System Information: Debian Release: 6.0.9 APT prefers squeeze-lts APT policy: (500, 'squeeze-lts'), (500, 'oldstable-updates'), (500, 'oldstable') Architecture: amd64 (x86_64) Kernel: Linux 2.6.32-5-amd64 (SMP w/4 CPU cores) Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) Shell: /bin/sh linked to /bin/dash Versions of packages cyrus-common-2.2 depends on: ii addu 3.112+nmu2 add and remove users and groups ii debc 1.5.36.1Debian configuration management sy ii dpkg 1.15.11 Debian package management system ii exim 4.72-6+squeeze3 Exim MTA (v4) daemon with extended ii gawk 1:3.1.7.dfsg-5 GNU awk, a pattern scanning and pr ii liba 1.4.0~git20100726.dfsg.1-2+squeeze1 Heimdal Kerberos - ASN.1 library ii libc 2.11.3-4Embedded GNU C Library: Shared lib ii libc 1.41.12-4stable1common error description library ii libd 4.7.25-9Berkeley v4.7 Database Libraries [ ii libg 1.4.0~git20100726.dfsg.1-2+squeeze1 Heimdal Kerberos - GSSAPI support ii libk 1.4.0~git20100726.dfsg.1-2+squeeze1 Heimdal Kerberos - libraries ii libr 1.4.0~git20100726.dfsg.1-2+squeeze1 Heimdal Kerberos - roken support l ii libs 2.1.23.dfsg1-7 Cyrus SASL - authentication abstra ii libs 5.4.3~dfsg-2+squeeze1 SNMP (Simple Network Management Pr ii libs 0.9.8o-4squeeze16 SSL shared libraries ii libw 7.6.q-19Wietse Venema's TCP wrappers libra ii libz 3.0-1 Project Athena's notification serv ii netb 4.45Basic TCP/IP networking system ii perl 5.10.1-17squeeze6 Larry Wall's Practical Extraction Versions of packages cyrus-common-2.2 recommends: ii cyrus-admin-2.2 2.2.13-19+squeeze3 Cyrus mail system - administration ii cyrus-imapd-2.2 2.2.13-19+squeeze3 Cyrus mail system - IMAP support ii cyrus-pop3d-2.2 2.2.13-19+squeeze3 Cyrus mail system - POP3 support Versions of packages cyrus-common-2.2 suggests: ii apt-listchanges 2.85.7+squeeze1package change history notificatio ii cyrus-admin-2.2 2.2.13-19+squeeze3 Cyrus mail system - administration pn cyrus-clients-2.2 none (no description available) pn cyrus-doc-2.2 none (no description available) ii cyrus-imapd-2.2 2.2.13-19+squeeze3 Cyrus mail system - IMAP support pn cyrus-murder-2.2 none (no description available) pn cyrus-nntpd-2.2 none (no description available) ii cyrus-pop3d-2.2 2.2.13-19+squeeze3 Cyrus mail system - POP3 support ii sasl2-bin 2.1.23.dfsg1-7 Cyrus SASL - administration progra -- Configuration Files: /etc/cyrus.conf changed [not included] /etc/imapd.conf changed [not included] /etc/pam.d/lmtp changed [not included] /etc/pam.d/sieve changed [not included] -- debconf information excluded -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#743851: libc-icap-mod-virus-scan: useless without mod_clamav or mod_clamd
Package: libc-icap-mod-virus-scan Version: 1:0.3.2-1 Severity: important Dear Maintainer, I wanted to try out new version of c-icap, to see if bug #644522 (logrotate) got fixed by upstream version. However I found out that the new virus-scan package lacks the core stuff - clamav_mod or clamd_mod. And I could not find those i any other package. Why are they missing? It is useless without at least one of them, or a module for some other antivirus engine. Regards Vladislav Kurz -- System Information: Debian Release: 7.4 APT prefers stable-updates APT policy: (500, 'stable-updates'), (500, 'oldstable-updates'), (500, 'stable'), (500, 'oldstable') Architecture: i386 (i686) Kernel: Linux 3.2.0-4-686-pae (SMP w/8 CPU cores) Locale: LANG=, LC_CTYPE= (charmap=ANSI_X3.4-1968) Shell: /bin/sh linked to /bin/dash -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#742542: libc-icap-mod-urlcheck: Fatal error while parsing config file: url_check.LoadSquidGuardDB
Package: libc-icap-mod-urlcheck Version: 1:0.1.6-1 Severity: normal Dear Maintainer, I tried to use squidguard databases with url_check module. I have added this line to srv_url_check.conf url_check.LoadSquidGuardDB porn /var/lib/squidguard/db/blacklists/porn/ However c-icap does not start any more. Debug output says: # c-icap -D Warning, alias is the same as service_name, not adding Fatal error while parsing config file: /etc/c-icap/srv_url_check.conf line: 78 The line is: url_check.LoadSquidGuardDB porn /var/lib/squidguard/db/blacklists/porn/ srv_url_check: WARNING the lookup db porn does not exists! Fatal error while parsing config file: /etc/c-icap/c-icap.conf line: 643 The line is: Include srv_url_check.conf Error opening/parsing config file === After some googling I found that url_check should be compiled against berkleydb. I tried enabling bdb_module in c-icap.conf, but that did not help. I'll try recompiling ... regards Vladislav Kurz -- System Information: Debian Release: 7.4 APT prefers stable-updates APT policy: (500, 'stable-updates'), (500, 'oldstable-updates'), (500, 'stable'), (500, 'oldstable') Architecture: i386 (i686) Kernel: Linux 3.2.0-4-686-pae (SMP w/8 CPU cores) Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) Shell: /bin/sh linked to /bin/dash Versions of packages libc-icap-mod-urlcheck depends on: pn c-icap none ii libc6 2.13-38+deb7u1 libc-icap-mod-urlcheck recommends no packages. libc-icap-mod-urlcheck suggests no packages. -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#735264: wget does not check alternative names in SSL certificates
Package: wget Version: 1.13.4-3 Severity: normal Dear Maintainer, I have noticed that wget dos not honor alternative DNS names in SSL certificates. I found bug #409938 that deals with this problem and was closed stating that wget 1.13-1 has been patched. But it seems that the patch got lost in newer versions. You can test on https://uran.webstep.net/ wget says the certificate is not trusted, while curl downloads without any problem. Best regards Vladislav Kurz -- System Information: Debian Release: 7.3 APT prefers stable-updates APT policy: (500, 'stable-updates'), (500, 'oldstable-updates'), (500, 'stable'), (500, 'oldstable') Architecture: i386 (i686) Kernel: Linux 3.2.0-4-686-pae (SMP w/8 CPU cores) Locale: LANG=, LC_CTYPE= (charmap=ANSI_X3.4-1968) Shell: /bin/sh linked to /bin/dash Versions of packages wget depends on: ii dpkg 1.16.12 ii install-info 4.13a.dfsg.1-10 ii libc6 2.13-38 ii libgcrypt111.5.0-5+deb7u1 ii libgnutls262.12.20-7 ii libgpg-error0 1.10-3.1 ii libidn11 1.25-2 ii zlib1g 1:1.2.7.dfsg-13 wget recommends no packages. wget suggests no packages. -- no debconf information -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#735264: wget certificates checking
Hello, I have found out that the problem was not in alternative names, but in certificate chain. I had some extra certificates (not needed to verify my server certificate) in the chain file and that was breaking it. -- S pozdravem Vladislav Kurz === WebStep, s.r.o. (Ltd.) = a step to the Web === address: Mezirka 1, 602 00 Brno, CZ, tel: +420 548 214 711 === www.webstep.net === vladislav.k...@webstep.net ===
Bug#718262: wget: NTLM not supported
Hello, thaks for the info about NTLM support and patches. Now I am satisfied with my solution - recompile against OpenSSL. I just wanted to make sure that NTLM support will be reintroduced to the packaged version of wget, so that other users will not need to patch and compile by themselves. -- S pozdravem Vladislav Kurz === WebStep, s.r.o. (Ltd.) = a step to the Web === address: Mezirka 1, 602 00 Brno, CZ, tel: +420 548 214 711 === www.webstep.net === vladislav.k...@webstep.net === -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#718262: wget: NTLM not supported
Package: wget Version: 1.13.4-3 Severity: normal Hello, after upgrading from squeeze to wheezy, wget cannot connect to NTLM authenticated web sites any more. It says unknown authentication scheme. After some googling I decided to recompile with options: --enable-ntlm However it did not help, and I got error message that I need openssl instead of gnutls. So I have installed libssl-dev and added another option: --with-ssl=openssl And now NTLM auth is working. Is ther any particular reason why gnuTLS is used by default, and why gnuTLS does not support NTLM? Regards Vladislav Kurz -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#679125: doesn't honor ACLs
Package: clamfs Version: 1.0.1-1 Severity: normal Hello, did anyone read this bug report? I have hit this bug as well - ACL permissions are not honored, only classic unix user/group/others permissions. Is there any way how I can help do to get this bug fixed? Regards Vladislav Kurz -- System Information: Debian Release: 6.0.7 APT prefers stable-updates APT policy: (500, 'stable-updates'), (500, 'stable') Architecture: i386 (i686) Kernel: Linux 2.6.32-5-686-bigmem (SMP w/8 CPU cores) Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) Shell: /bin/sh linked to /bin/dash Versions of packages clamfs depends on: ii libc6 2.11.3-4 Embedded GNU C Library: Shared lib pn libcommoncpp2-1.6-0 none (no description available) ii libfuse22.8.4-1.1Filesystem in USErspace library ii libgcc1 1:4.4.5-8GCC support library pn libpocofoundation5 none (no description available) pn libpoconet5 none (no description available) pn librlog1c2a none (no description available) ii libstdc++6 4.4.5-8 The GNU Standard C++ Library v3 ii zlib1g 1:1.2.3.4.dfsg-3 compression library - runtime Versions of packages clamfs recommends: pn clamav-daemon none (no description available) clamfs suggests no packages. -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#644522: c-icap: reconfigure fails
Package: c-icap Version: 1:0.1.6-1 Severity: normal I have to extend mu own bug report. My logrotate script seems to fail. Log is rotated once, but the reconfigure request is with this error in server.log: Wed Jan 23 10:18:43 2013, general, A reconfigure pending. Ignoring reconfigure request. And c-icap continues to log in the rotated log file which then grows indefinitely. Restarting c-icap is not a good solution either. It happened to me, that the restart failed, I had to kill -9 c-icap and start it again, and in the meantime squid stopped working as well because of lost communication with c-icap. So it seems that there is something wrong with handling reconfigure requests and restarts. -- System Information: Debian Release: 6.0.6 APT prefers stable-updates APT policy: (500, 'stable-updates'), (500, 'stable') Architecture: i386 (i686) Kernel: Linux 2.6.32-5-686-bigmem (SMP w/8 CPU cores) Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) Shell: /bin/sh linked to /bin/dash -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#399930: logrotation race condition with exim writing to logs
Package: exim4 Version: 4.72-6+squeeze3 Severity: normal Hello, we've got hit by this race condition today. I find it ridiculous that this bug is not fixed for 6 years, while the fix is trivial. So far only lame excuses about hypothetical monitoring software that could break if it cannot find a log file. WTF? Is there such a lame monitoring that prefers to check the log instead of TCP socket? Or did you mean something like logcheck? Whatever, running SMTP server is the top priority. Without that even the monitoring itself is worthless, as it cannot send any warnings. So please fix this, upload it to unstable, and we'll see if something else will break. Regards Vladislav Kurz -- Package-specific info: Exim version 4.72 #1 built 25-Oct-2012 18:35:08 Copyright (c) University of Cambridge, 1995 - 2007 Berkeley DB: Berkeley DB 4.8.30: (April 9, 2010) Support for: crypteq iconv() IPv6 GnuTLS move_frozen_messages DKIM Lookups: lsearch wildlsearch nwildlsearch iplsearch cdb dbm dbmnz dnsdb dsearch nis nis0 passwd Authenticators: cram_md5 plaintext Routers: accept dnslookup ipliteral manualroute queryprogram redirect Transports: appendfile/maildir/mailstore autoreply lmtp pipe smtp Fixed never_users: 0 Size of off_t: 8 GnuTLS compile-time version: 2.8.6 GnuTLS runtime version: 2.8.6 Configuration file is /var/lib/exim4/config.autogenerated -- System Information: Debian Release: 6.0.6 APT prefers stable-updates APT policy: (500, 'stable-updates'), (500, 'stable') Architecture: i386 (i686) Kernel: Linux 2.6.32-5-686-bigmem (SMP w/8 CPU cores) Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) Shell: /bin/sh linked to /bin/dash Versions of packages exim4 depends on: ii debconf [debconf-2.0]1.5.36.1Debian configuration management sy ii exim4-base 4.72-6+squeeze3 support files for all Exim MTA (v4 ii exim4-daemon-light 4.72-6+squeeze3 lightweight Exim MTA (v4) daemon exim4 recommends no packages. exim4 suggests no packages. -- debconf information excluded -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#682961: ocsinventory-agent: Fail on PowerPC
Package: ocsinventory-agent
Version: 2:2.0.5-1
Severity: normal
OCS-agent does not parse cpu speed correctly on PowerPC (MacMini).
As a result, such computer cannot be inventarized.
Here is a patch attached:
--- /usr/share/perl5/Ocsinventory/Agent/Backend/OS/Linux/Archs/PowerPC/CPU.pm
2011-07-24 15:35:58.0 +0200
+++ CPU.pm 2012-07-27 12:37:51.0 +0200
@@ -33,7 +33,7 @@
$isIBM = 1 if /^machine\s*:.*IBM/;
$current-{TYPE} = $1 if /cpu\s+:\s+(\S.*)/;
$current-{SPEED} = $1 if /clock\s+:\s+(\S.*)/;
-$current-{SPEED} =~ s/\.0+MHz/MHz/;
+$current-{SPEED} =~ s/\.[0-9]+MHz//;
if (/^\s*$/) {
if ($current-{TYPE}) {
--
System info deleted as I report from a different computer than where the error
was found.
Regards
Vladislav Kurz
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#570852: bind9: Should be fixed in stable
Package: bind9 Version: 1:9.7.3.dfsg-1~squeeze5 Severity: normal Please fix this bug in stable as well. I hits me randomly when rebooting servers. Thak you Vladislav Kurz -- System Information: Debian Release: 6.0.5 APT prefers stable-updates APT policy: (500, 'stable-updates'), (500, 'stable') Architecture: i386 (i686) Kernel: Linux 2.6.26-2-686-bigmem (SMP w/4 CPU cores) Locale: LANG=C, LC_CTYPE=cs_CZ.ISO-8859-2 (charmap=ANSI_X3.4-1968) (ignored: LC_ALL set to C) Shell: /bin/sh linked to /bin/bash Versions of packages bind9 depends on: ii adduser 3.112+nmu2 add and remove users and groups ii bind9utils 1:9.7.3.dfsg-1~squeeze5 Utilities for BIND ii debconf [debconf 1.5.36.1Debian configuration management sy ii libbind9-60 1:9.7.3.dfsg-1~squeeze5 BIND9 Shared Library used by BIND ii libc62.11.3-3Embedded GNU C Library: Shared lib ii libcap2 1:2.19-3support for getting/setting POSIX. ii libdb4.8 4.8.30-2Berkeley v4.8 Database Libraries [ ii libdns69 1:9.7.3.dfsg-1~squeeze5 DNS Shared Library used by BIND ii libgssapi-krb5-2 1.8.3+dfsg-4squeeze5MIT Kerberos runtime libraries - k ii libisc62 1:9.7.3.dfsg-1~squeeze5 ISC Shared Library used by BIND ii libisccc60 1:9.7.3.dfsg-1~squeeze5 Command Channel Library used by BI ii libisccfg62 1:9.7.3.dfsg-1~squeeze5 Config File Handling Library used ii libldap-2.4-22.4.23-7.2 OpenLDAP libraries ii liblwres60 1:9.7.3.dfsg-1~squeeze5 Lightweight Resolver Library used ii libssl0.9.8 0.9.8o-4squeeze13 SSL shared libraries ii libxml2 2.7.8.dfsg-2+squeeze4 GNOME XML library ii lsb-base 3.2-23.2squeeze1Linux Standard Base 3.2 init scrip ii net-tools1.60-23 The NET-3 networking toolkit ii netbase 4.45Basic TCP/IP networking system bind9 recommends no packages. Versions of packages bind9 suggests: pn bind9-docnone (no description available) ii dnsutils 1:9.7.3.dfsg-1~squeeze5 Clients provided with BIND pn resolvconf none (no description available) pn ufw none (no description available) -- Configuration Files: /etc/bind/named.conf.local changed [not included] /etc/bind/named.conf.options changed [not included] -- debconf information: * bind9/different-configuration-file: * bind9/run-resolvconf: false * bind9/start-as-user: bind -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#675013: backuppc: Bad e-mail headers in czech and polish
Package: backuppc
Version: 3.1.0-9.1
Severity: minor
Hello,
translation files for czech and polish (cz.pm, pl.pm) have the following
problems:
- automatic translation translated also email headers like Subject:
and To: thus the emails are not deliverable.
- text in headers should be either plain ascii or properly encoded (rfc2047)
- both files are written in cp1250 (windows encoding !!!) but the cgi
does conversion from iso-8859-1 to utf-8 so it breaks diacritics - files
have to be converted from cp1250 to utf-8 and uncommented line use utf8.
- czech transalation needs proofreading (maybe polish as well)
- emails sent have content-type text/plain; encoding iso-8859-1 by
default, it should change to utf-8 for languages that use utf8.
Diff fo cz.pm attached:
--- - 2012-05-29 11:42:32.563151585 +0200
+++ /usr/share/backuppc/lib/BackupPC/Lang/cz.pm 2012-05-29
09:40:10.0 +0200
@@ -2,7 +2,7 @@
#my %lang;
#use strict;
-#use utf8;
+use utf8;
#
@@ -862,7 +862,7 @@
# These two strings are used to build the links for directories and
# file versions. Files are appended with a version number.
#
-$Lang{DirHistory_dirLink} = adres;
+$Lang{DirHistory_dirLink} = adresáø;
$Lang{DirHistory_fileLink} = v;
$Lang{DirHistory_for__host} = EOF;
@@ -1248,11 +1248,11 @@
# Email messages
# No backup ever
-$Lang{EMailNoBackupEverSubj} = BackupPC: ¾adné zálohy hosta \$host
se nezdaøili;
+$Lang{EMailNoBackupEverSubj} = BackupPC: zadne zalohy hosta \$host
se nezdarily;
$Lang{EMailNoBackupEverMesg} = 'EOF';
To: $user$domain
cc:
-Pøedmìt: $subj
+Subject: $subj
$headers
Dear $userName,
@@ -1275,11 +1275,11 @@
EOF
# No recent backup
-$Lang{EMailNoBackupRecentSubj} = BackupPC: ¾ádné nové zálohy pro
\$host;
+$Lang{EMailNoBackupRecentSubj} = BackupPC: zadne nove zalohy pro
\$host;
$Lang{EMailNoBackupRecentMesg} = 'EOF';
To: $user$domain
cc:
-Pøedmìt: $subj
+Subject: $subj
$headers
Drahý $userName,
@@ -1303,11 +1303,11 @@
EOF
# Old Outlook files
-$Lang{EMailOutlookBackupSubj} = BackupPC: Soubory programu Outlook
na \$host je nutné zálohovat;
+$Lang{EMailOutlookBackupSubj} = BackupPC: Soubory programu Outlook
na \$host je nutne zalohovat;
$Lang{EMailOutlookBackupMesg} = 'EOF';
To: $user$domain
cc:
-Pøedmìt: $subj
+Subject: $subj
$headers
Drahý $userName,
-- System Information:
Debian Release: 6.0.5
APT prefers stable-updates
APT policy: (500, 'stable-updates'), (500, 'stable')
Architecture: i386 (i686)
Kernel: Linux 2.6.32-5-686-bigmem (SMP w/8 CPU cores)
Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968)
Shell: /bin/sh linked to /bin/dash
Versions of packages backuppc depends on:
ii adduser 3.112+nmu2 add and remove users and groups
ii apache2 2.2.16-6+squeeze7 Apache HTTP Server metapackage
ii apache2-mpm-prefo 2.2.16-6+squeeze7 Apache HTTP Server - traditional n
ii bzip2 1.0.5-6+squeeze1 high-quality block-sorting file co
ii debconf [debconf- 1.5.36.1 Debian configuration management sy
ii dpkg 1.15.8.12 Debian package management system
ii exim4 4.72-6+squeeze2metapackage to ease Exim MTA (v4)
ii exim4-daemon-ligh 4.72-6+squeeze2lightweight Exim MTA (v4) daemon
ii iputils-ping 3:20100418-3 Tools to test the reachability of
ii libarchive-zip-pe 1.30-3 Perl module for manipulation of ZI
ii libcompress-zlib- 2.024-1Transitional dummy package for Com
ii perl [libdigest-m 5.10.1-17squeeze3 Larry Wall's Practical Extraction
ii perl-suid 5.10.1-17squeeze3 runs setuid Perl scripts
ii samba-common-bin 2:3.5.6~dfsg-3squeeze8 common files used by both the Samb
ii smbclient 2:3.5.6~dfsg-3squeeze8 command-line SMB/CIFS clients for
ii tar 1.23-3 GNU version of the tar archiving u
ii thttpd [httpd]2.25b-11 tiny/turbo/throttling HTTP server
ii ucf 3.0025+nmu1Update Configuration File: preserv
Versions of packages backuppc recommends:
ii libfile-rsyncp-perl 0.68-1.1+b1A perl based implementation of an
pn libio-dirent-perl none (no description available)
ii openssh-client [ssh-c 1:5.5p1-6+squeeze2 secure shell (SSH) client, for sec
ii rrdtool 1.4.3-1time-series data storage and displ
ii rsync 3.0.7-2fast remote file copy program (lik
Versions of packages backuppc suggests:
ii iceape-browser [www-browser 2.0.11-12Iceape Navigator (Internet browser
ii iceweasel [www-browser] 3.5.16-15Web browser based on Firefox
ii konqueror [www-browser] 4:4.4.5-2advanced file manager, web browser
ii links [www-browser] 2.3~pre1-1 Web browser running in text mode
ii links2 [www-browser]2.3~pre1-1 Web browser running in both graphi
ii
Bug#644522: c-icap: Missing logrotate script
Package: c-icap
Version: 1:0.1.6-1
Severity: minor
Hello,
I noticed that logs in /var/log/c-icap do not get rotated. So i prepared
logrotate script.
Well it is based on logrotate script from squid. here it is:
#
# Logrotate fragment for c-icap.
#
/var/log/c-icap/*.log {
daily
compress
delaycompress
rotate 2
missingok
nocreate
sharedscripts
postrotate
test ! -e /var/run/c-icap/c-icap.pid || echo -n reconfigure
/var/run/c-icap/c-icap.ctl
endscript
}
Please include it in the package.
Regards
Vladislav Kurz
-- System Information:
Debian Release: 6.0.2
APT prefers stable-updates
APT policy: (500, 'stable-updates'), (500, 'stable')
Architecture: amd64 (x86_64)
Kernel: Linux 2.6.32-5-amd64 (SMP w/12 CPU cores)
Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968)
Shell: /bin/sh linked to /bin/dash
Versions of packages c-icap depends on:
ii adduser 3.112+nmu2 add and remove users and groups
ii libc6 2.11.2-10Embedded GNU C Library: Shared lib
ii libdb5.15.1.25-11Berkeley v5.1 Database Libraries [
ii libicapapi0 1:0.1.6-1ICAP API library
ii lsb-base3.2-23.2squeeze1 Linux Standard Base 3.2 init scrip
c-icap recommends no packages.
Versions of packages c-icap suggests:
ii libc-icap-mod-clamav 1:0.1.6-1 C-ICAP Antivirus Service for c-ica
pn libc-icap-mod-urlchec none (no description available)
ii squid33.1.6-1.2+squeeze1 A full featured Web Proxy cache (H
-- Configuration Files:
/etc/c-icap/c-icap.conf changed:
PidFile /var/run/c-icap/c-icap.pid
CommandsSocket /var/run/c-icap/c-icap.ctl
Timeout 300
MaxKeepAliveRequests 100
KeepAliveTimeout 600
StartServers 3
MaxServers 10
MinSpareThreads 10
MaxSpareThreads 20
ThreadsPerChild 10
MaxRequestsPerChild 0
Port 1344
User c-icap
Group nogroup
ServerAdmin you@your.address
ServerName YourServerName
TmpDir /tmp
MaxMemObject 131072
DebugLevel 1
ModulesDir /usr/lib/c_icap
ServicesDir /usr/lib/c_icap
TemplateDir /usr/share/c_icap/templates/
TemplateDefaultLanguage en
LoadMagicFile /etc/c-icap/c-icap.magic
RemoteProxyUsers off
RemoteProxyUserHeader X-Authenticated-User
RemoteProxyUserHeaderEncoded on
ServerLog /var/log/c-icap/server.log
AccessLog /var/log/c-icap/access.log
Service echo srv_echo.so
Include srv_clamav.conf
/etc/default/c-icap changed:
START=yes
DAEMON_OPTS=
-- no debconf information
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#570852: bind9: Bind does not stop completely
Package: bind9 Version: 1:9.7.3.dfsg-1~squeeze1 Severity: normal Hello, the above mentioned infinite loop happened to me on two machines running Debian Squeeze. One of them is upgraded from lenny, the other is fresh install. When stopping bind, it gets the signal via rndc, stops listening on all ports but keeps running. This is the related syslog: May 12 12:07:21 mail named[3670]: received control channel command 'stop -p' May 12 12:07:21 mail named[3670]: shutting down: flushing changes May 12 12:07:21 mail named[3670]: stopping command channel on 127.0.0.1#953 May 12 12:07:21 mail named[3670]: stopping command channel on ::1#953 May 12 12:07:21 mail named[3670]: no longer listening on 127.0.0.1#53 May 12 12:07:21 mail named[3670]: no longer listening on 192.168.7.12#53 Funny thing is that this never happened when rebooting the server, but when switching to single-user or shutting down (ups too long on battery). I had to log-in (ssh was fortunately still up) and kill -9 named. Further attempts to reproduce this bug failed, but it happened to me at least three times. Perhaps fix for init script would be best solution - kill -9 if bind does not exit within few seconds. Regards Vladislav Kurz -- System Information: Debian Release: 6.0.1 APT prefers stable-updates APT policy: (500, 'stable-updates'), (500, 'stable') Architecture: i386 (i686) Kernel: Linux 2.6.32-5-686-bigmem (SMP w/8 CPU cores) Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) Shell: /bin/sh linked to /bin/dash Versions of packages bind9 depends on: ii adduser 3.112+nmu2 add and remove users and groups ii bind9utils 1:9.7.3.dfsg-1~squeeze1 Utilities for BIND ii debconf [debconf 1.5.36.1Debian configuration management sy ii libbind9-60 1:9.7.3.dfsg-1~squeeze1 BIND9 Shared Library used by BIND ii libc62.11.2-10 Embedded GNU C Library: Shared lib ii libcap2 1:2.19-3support for getting/setting POSIX. ii libdb4.8 4.8.30-2Berkeley v4.8 Database Libraries [ ii libdns69 1:9.7.3.dfsg-1~squeeze1 DNS Shared Library used by BIND ii libgssapi-krb5-2 1.8.3+dfsg-4MIT Kerberos runtime libraries - k ii libisc62 1:9.7.3.dfsg-1~squeeze1 ISC Shared Library used by BIND ii libisccc60 1:9.7.3.dfsg-1~squeeze1 Command Channel Library used by BI ii libisccfg62 1:9.7.3.dfsg-1~squeeze1 Config File Handling Library used ii libldap-2.4-22.4.23-7OpenLDAP libraries ii liblwres60 1:9.7.3.dfsg-1~squeeze1 Lightweight Resolver Library used ii libssl0.9.8 0.9.8o-4squeeze1SSL shared libraries ii libxml2 2.7.8.dfsg-2GNOME XML library ii lsb-base 3.2-23.2squeeze1Linux Standard Base 3.2 init scrip ii net-tools1.60-23 The NET-3 networking toolkit ii netbase 4.45Basic TCP/IP networking system bind9 recommends no packages. Versions of packages bind9 suggests: ii bind9-doc1:9.7.3.dfsg-1~squeeze1 Documentation for BIND ii dnsutils 1:9.7.3.dfsg-1~squeeze1 Clients provided with BIND ii resolvconf 1.46name server information handler pn ufw none (no description available) -- Configuration Files: /etc/bind/named.conf changed [not included] /etc/bind/named.conf.local changed [not included] /etc/bind/named.conf.options changed [not included] /etc/bind/zones.rfc1918 changed [not included] -- debconf information: * bind9/different-configuration-file: * bind9/run-resolvconf: true * bind9/start-as-user: bind -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#613943: amavisd-new: mime_decode-1 FAILED on attachments with latin-2 names
Package: amavisd-new
Version: 1:2.6.1.dfsg-1
Severity: normal
Hello,
I have noticed that amavis has problem processing emails with attachments
whose name contains latin-2 character with diacritics, e.g. ecaron.
The same attachment renamed to ascii-only is processed fine.
This is what amavis logs:
Feb 18 07:42:06 bupu amavis[16497]: (16497-07) (!!)TROUBLE in check_mail:
mime_decode-1 FAILED: MIME::Words: unexpected case:\n(Ry\x{0161}av\375_
Vra\x{010d}_anotace.doc) pos 0\n\tPlease alert developer.
Feb 18 07:42:06 bupu amavis[16497]: (16497-07) (!)PRESERVING EVIDENCE in
/var/lib/amavis/tmp/amavis-20110218T073020-16497
\x{0161} stands for scaron (unicode hexa 0x0161)
\375 stands for yacute (iso-latin-2 octal 375, same character and code in
iso-latin-1)
\x{010d} stands for ccaron (unicode hexa 0x010d)
I suspect, that the problem lies in characters encoded as \x{}
And this is what postfix log:
Feb 18 08:52:06 bupu postfix/smtp[28253]: 4BA6B18F42E: to=akviz...@mzk.cz,
relay=127.0.0.1[127.0.0.1]:10024, delay=323863, delays=323863/0.02/0/0.08,
dsn=4.5.0, status=deferred (host 127.0.0.1[127.0.0.1] said: 451-4.5.0 Error in
processing, id=25505-14, mime_decode-1 FAILED: MIME::Words: unexpected case:
451-4.5.0 (Ry\x{0161}av\375_ Vra\x{010d}_anotace.doc) pos 0 451 4.5.0 \tPlease
alert developer. (in reply to end of DATA command))
Further problem is, that amavis or postfix reports this error as temporary
(451), even though
it is a permanent problem. Sender gets notified usually after few days, which
is wrong.
Please help or tell me if there is some workarounrd or config option to get
such e-mails through.
If more info is needed, just tell me and I'll send you what you need.
Regards
Vladislav Kurz
-- System Information:
Debian Release: 5.0.8
APT prefers oldstable
APT policy: (500, 'oldstable')
Architecture: i386 (i686)
Kernel: Linux 2.6.26-2-686-bigmem (SMP w/4 CPU cores)
Locale: LANG=C, LC_CTYPE=cs_CZ.ISO-8859-2 (charmap=ANSI_X3.4-1968) (ignored:
LC_ALL set to C)
Shell: /bin/sh linked to /bin/bash
Versions of packages amavisd-new depends on:
ii adduser 3.110 add and remove users and groups
ii debconf [debconf-2.0]1.5.24 Debian configuration management sy
ii file 4.26-1 Determines file type using magic
ii libarchive-zip-perl 1.18-1 Module for manipulation of ZIP arc
ii libberkeleydb-perl 0.34-1+b1 use Berkeley DB 4 databases from P
ii libcompress-zlib-perl2.012-1 Perl module for creation and manip
ii libconvert-tnef-perl 0.17-8 Perl module to read TNEF files
ii libconvert-uulib-perl1.11-1 Perl interface to the uulib librar
pn libdigest-md5-perl none (no description available)
ii libio-stringy-perl 2.110-4 Perl modules for IO from scalars a
ii libmailtools-perl2.03-1 Manipulate email in perl programs
pn libmime-base64-perl none (no description available)
ii libmime-tools-perl 5.427-1 Perl5 modules for MIME-compliant m
ii libnet-server-perl 0.97-1 An extensible, general perl server
ii libunix-syslog-perl 1.1-2 Perl interface to the UNIX syslog(
ii perl [libtime-hires-perl 5.10.0-19lenny3 Larry Wall's Practical Extraction
ii perl-modules [libarchive 5.10.0-19lenny3 Core Perl modules
amavisd-new recommends no packages.
Versions of packages amavisd-new suggests:
ii apt-listchanges 2.83package change history notificatio
ii arj 3.10.22-6 archiver for .arj files
pn cabextract none (no description available)
ii clamav 0.96.5+dfsg-1~volatile1 anti-virus utility for Unix - comm
ii clamav-daemon0.96.5+dfsg-1~volatile1 anti-virus utility for Unix - scan
ii cpio 2.9-13lenny1GNU cpio -- a program to manage ar
pn dspamnone (no description available)
pn lha none (no description available)
pn libauthen-sasl-p none (no description available)
ii libdbi-perl 1.605-1 Perl5 database interface by Tim Bu
pn libmail-dkim-per none (no description available)
ii libnet-ldap-perl 1:0.36-1A Client interface to LDAP servers
pn lzop none (no description available)
pn nomarch none (no description available)
ii spamassassin 3.2.5-2+lenny3 Perl-based spam filter using text
ii unrar1:3.8.2-1 Unarchiver for .rar files (non-fre
pn zoo none (no description available)
-- debconf information excluded
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#613943: (amavisd-new: mime_decode-1 FAILED on attachments with latin-2 names)
Hello, I found out that there were installed newer modules from CPAN in /usr/local/perl, and MIME::Words was also there. CPAN says: cpan[7] m MIME::Tools Module id = MIME::Tools CPAN_USERID DSKOLL (David F. Skoll dfs+pa...@roaringpenguin.com) CPAN_VERSION 5.501 CPAN_FILE D/DS/DSKOLL/MIME-tools-5.501.tar.gz MANPAGE MIME-tools - modules for parsing (and creating!) MIME entities INST_FILE /usr/local/share/perl/5.10.0/MIME/Tools.pm INST_VERSION 5.500 So it might be a bug in newer version of libmime-tools-perl, or an incompatibility issue between mime-tools 5.501 and amavis 2.6.1. Perhaps this bug could be reassigned to package libmime-tools-perl, and tested with latest amavis on debian/sid. Regards Vladislav Kurz -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#584914: samba does not see NIS groups
Hello, i have the same problem on squeeze/stable - fresh install, samba and nis combined. Users can write directly to shared group write directory (chmod 2775) but they can't write to the same directory through samba. Workaround: /etc/nsswitch.conf group: compat nis Apparently compat works as files, ignoring +/- in /etc/group -- Regards Vladislav Kurz -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#611067: kmail: crash on attachment with preview
Package: kmail Version: 4:4.4.7-3 Severity: normal Hello, Kmail crashes in the following scenario: Compose new mail and attach a file. In file dialog for attachments, enable Aside preview. Then browse through files. In my case it's enough to point on a file (without click). If they are plain text, or pictures, preview shows normally. If they are pdf, odt, zip, whole kmail crashes (Segfault). Sometimes I see the KDE crash handler sometimes not. It seems like it crashes on files which it cannot preview by itself and needs some external application. This behavior is the same if i run kmail alone or within kontact. Regards Vladislav Kurz -- System Information: Debian Release: 6.0 APT prefers testing APT policy: (500, 'testing') Architecture: i386 (i686) Kernel: Linux 2.6.32-5-686-bigmem (SMP w/8 CPU cores) Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) Shell: /bin/sh linked to /bin/dash Versions of packages kmail depends on: ii kdebase-runtime 4:4.4.5-1runtime components from the offici ii kdepim-runtime 4:4.4.7-1Runtime components for akonadi-kde ii kdepimlibs-kio-plug 4:4.4.5-2kio slaves used by KDE PIM applica ii libakonadi-contact4 4:4.4.5-2library for using the Akonadi PIM ii libakonadi-kde4 4:4.4.5-2library for using the Akonadi PIM ii libc6 2.11.2-9 Embedded GNU C Library: Shared lib ii libgcc1 1:4.4.5-8GCC support library ii libgpgme++2 4:4.4.5-2c++ wrapper library for gpgme ii libkabc44:4.4.5-2library for handling address book ii libkcal44:4.4.5-2library for handling calendar data ii libkde3support4 4:4.4.5-2the KDE 3 Support Library for the ii libkdecore5 4:4.4.5-2the KDE Platform Core Library ii libkdepim4 4:4.4.7-3KDE PIM library ii libkdeui5 4:4.4.5-2the KDE Platform User Interface Li ii libkhtml5 4:4.4.5-2the KHTML Web Content Rendering En ii libkimap4 4:4.4.5-2library for handling IMAP data ii libkio5 4:4.4.5-2the Network-enabled File Managemen ii libkldap4 4:4.4.5-2library for accessing LDAP ii libkleo44:4.4.7-3certificate based crypto library ii libkmime4 4:4.4.5-2library for handling MIME data ii libknotifyconfig4 4:4.4.5-2library for configuring KDE Notifi ii libkontactinterface 4:4.4.5-2Kontact interface library ii libkparts4 4:4.4.5-2the Framework for the KDE Platform ii libkpgp44:4.4.7-3gpg based crypto library ii libkpimidentities4 4:4.4.5-2library for managing user identiti ii libkpimtextedit44:4.4.5-2library that provides a textedit w ii libkpimutils4 4:4.4.5-2library for dealing with email add ii libkresources4 4:4.4.5-2the KDE Resource framework library ii libksieve4 4:4.4.7-3mail/news message filtering librar ii libktnef4 4:4.4.5-2library for handling TNEF data ii libkutils4 4:4.4.5-2various utility classes for the KD ii libmailtransport4 4:4.4.5-2mail transport service library ii libmessagecore4 4:4.4.7-3message core library ii libmessagelist4 4:4.4.7-3message list library ii libmimelib4 4:4.4.7-3MIME library ii libnepomuk4 4:4.4.5-2the Nepomuk Meta Data Library ii libphonon4 4:4.6.0really4.4.2-1 the core library of the Phonon mul ii libqt4-dbus 4:4.6.3-4Qt 4 D-Bus module ii libqt4-network 4:4.6.3-4Qt 4 network module ii libqt4-qt3support 4:4.6.3-4Qt 3 compatibility library for Qt ii libqt4-xml 4:4.6.3-4Qt 4 XML module ii libqtcore4 4:4.6.3-4Qt 4 core module ii libqtgui4 4:4.6.3-4Qt 4 GUI module ii libstdc++6 4.4.5-8 The GNU Standard C++ Library v3 ii libthreadweaver44:4.4.5-2the ThreadWeaver Library for the K ii perl5.10.1-17Larry Wall's Practical Extraction ii phonon 4:4.6.0really4.4.2-1 metapackage for the Phonon multime Versions of packages kmail recommends: ii gnupg-agent 2.0.14-2 GNU privacy guard - password agent ii gnupg22.0.14-2 GNU privacy guard - a free PGP rep ii pinentry-qt [pinentry-x11]0.8.0-1Qt-3-based PIN or pass-phrase entr Versions of packages kmail suggests: pn clamav | f-prot-installer none (no description available) ii kaddressbook 4:4.4.7-3 address book and contact data mana ii kleopatra 4:4.4.7-3
Bug#605784: nagios-statd-server: test with python2.5 sucessful
Package: nagios-statd-server Version: 3.12-1 Followup-For: Bug #605784 Hello, i have tested nagios-statd witch python2.4 and python2.5. With both of them it works fine, for couple of days without problem. When running with python2.6, problems arise cca 1 hour after start. Suggested fix: Change the first line of /usr/sbin/nagios-statd to: #!/usr/bin/python2.5 and change dependency to pyhton2.5 regards Vladislav Kurz -- System Information: Debian Release: squeeze/sid APT prefers testing APT policy: (500, 'testing') Architecture: i386 (i686) Kernel: Linux 2.6.32-5-686-bigmem (SMP w/8 CPU cores) Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) Shell: /bin/sh linked to /bin/dash Versions of packages nagios-statd-server depends on: ii python 2.6.6-3+squeeze1 interactive high-level object-orie nagios-statd-server recommends no packages. nagios-statd-server suggests no packages. -- no debconf information -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#605784: nagios-statd-server: stops responding and 100% cpu usage
Package: nagios-statd-server Version: 3.12-1 Severity: grave Justification: renders package unusable Hello, after upgrade to squeeze, nagios-statd stopped working. Usually works fine for one hour and after that nagios reports connection timeout and top indicates that nagios-statd is using 100% of CPU. (Fortunately uses only one core on muli-core CPU.) I found a recommendation on ubutu bugzilla to use python2.4. See here: https://bugs.launchpad.net/ubuntu/+source/nagios-statd/+bug/463795 I confirm, that it works fine with python2.4. After I have edited /usr/sbin/nagios-statd to use /usr/bin/python2.4, it works for two hours now. I'll see if it keeps running after weekend and then I might try python2.5, because 2.4 is not any more in squeeze. Regards Vladislav Kurz -- System Information: Debian Release: squeeze/sid APT prefers testing APT policy: (500, 'testing') Architecture: i386 (i686) Kernel: Linux 2.6.32-5-686-bigmem (SMP w/8 CPU cores) Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) Shell: /bin/sh linked to /bin/dash Versions of packages nagios-statd-server depends on: ii python 2.6.6-3+squeeze1 interactive high-level object-orie nagios-statd-server recommends no packages. nagios-statd-server suggests no packages. -- no debconf information -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#520517: smbldap-tools: switch -i is not required for add machine
Package: smbldap-tools Followup-For: Bug #520517 Hello, i think the problem is somewhere else. The add machine script is supposed to create only UNIX (POSIX) account. Either in /etc/passwd or in LDAP (using smbldap-useradd -w). Samba then calls smbpasswd -a -m to create the samba account (either in smbpasswd, tdbsam or LDAP), but before it checks, if the UNIX account exists. And that is the place where your setup fails. It took me a lot of time to hunt this bug in my system, because even -i switch didn't help me. The problem is that by default user accounts are created in LDAP tree ou=people,dc=example and computer accounts are in tree ou=computer,dc=example. When you search the samba accounts using pdbedit, they will look OK, but unix doesn't see them and so does smbpasswd -a. What UNIX considers to be account is determined in /etc/libnss-ldap.conf and we have this in it nss_base_passwd ou=people,dc=example?sub nss_base_shadow ou=people,dc=example?sub nss_base_group ou=group,dc=example?one So nothing in ou=computer,dc=example is considered to be a UNIX account and won't work as expected. You have to adjust either libnss-ldap.conf or smbldap.conf and restructure your LDAP data to get computer and user accounts into the same subtree of LDAP. Then it works. I think this should put into documentation. Regards Vladislav Kurz -- System Information: Debian Release: 5.0.4 APT prefers stable APT policy: (500, 'stable') Architecture: i386 (i686) Kernel: Linux 2.6.26-2-686-bigmem (SMP w/4 CPU cores) Locale: LANG=C, LC_CTYPE=cs_CZ.ISO-8859-2 (charmap=ANSI_X3.4-1968) (ignored: LC_ALL set to C) Shell: /bin/sh linked to /bin/bash Versions of packages smbldap-tools depends on: ii libcrypt-smbhash-perl0.12-2 generate LM/NT hash of a password ii libdigest-sha1-perl 2.11-2+b1 NIST SHA-1 message digest algorith ii libio-socket-ssl-perl1.16-1+lenny1 Perl module implementing object or ii libnet-ldap-perl 1:0.36-1A Client interface to LDAP servers ii libunicode-maputf8-perl 1.11-2 Perl module for conversing between ii perl 5.10.0-19lenny2 Larry Wall's Practical Extraction smbldap-tools recommends no packages. smbldap-tools suggests no packages. -- no debconf information -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#568259: smbldap-tools: Stopping nscd can result in DoS
Package: smbldap-tools Version: 0.9.4-1 Followup-For: Bug #568259 I think this bug is more serious than normal. Bad command line arguments can lead to DoS (stopping nscd. smbldap-useradd stops nscd, then checks if username is not a duplicate, and starts nscd only if username is syntactically ok and not a duplicate. If username it is a dupicate, it exits before starting nscd. This leads (at least in our case) to DoS, nobody could log in using pam_ldap, until I started nscd manually. I'm not sure if it should be classified as security problem, but it is serious. IMHO this should be fixed at least in next point release of stable Debian (5.0.5) Best regards Vladislav Kurz -- System Information: Debian Release: 5.0.4 APT prefers stable APT policy: (500, 'stable') Architecture: i386 (i686) Kernel: Linux 2.6.26-2-686-bigmem (SMP w/4 CPU cores) Locale: LANG=C, LC_CTYPE=cs_CZ.ISO-8859-2 (charmap=ANSI_X3.4-1968) (ignored: LC_ALL set to C) Shell: /bin/sh linked to /bin/bash Versions of packages smbldap-tools depends on: ii libcrypt-smbhash-perl0.12-2 generate LM/NT hash of a password ii libdigest-sha1-perl 2.11-2+b1 NIST SHA-1 message digest algorith ii libio-socket-ssl-perl1.16-1+lenny1 Perl module implementing object or ii libnet-ldap-perl 1:0.36-1A Client interface to LDAP servers ii libunicode-maputf8-perl 1.11-2 Perl module for conversing between ii perl 5.10.0-19lenny2 Larry Wall's Practical Extraction smbldap-tools recommends no packages. smbldap-tools suggests no packages. -- no debconf information -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#500785: iceweasel: SSL exceptions are forgotten
On Tuesday 22 of December 2009, Mike Hommey wrote: Hi, Sorry for the late answer. On Wed, Oct 01, 2008 at 02:33:01PM +0200, Vladislav Kurz wrote: Package: iceweasel Version: 3.0.1-1 Severity: normal Hello, it seems that the storage for SSL certificate exceptions is limited, and used as circular buffer. I visit a lot of sites with self-signed certificates, and from time to time I have to confirm all exceptions again as if I visit the site for the first time. This is not only annoying but dangerous. What if the site certificate changes and Iceweasel just forgets the old certificate. No warning etc. In firefox2 - exceptions were really stored permanently and I got warnings when the certificate expired or changed. But adding the same certificate over and over again will just train the user to add the exception as quickly as possible without really checking the content of the certificate. It seems that firefox bugzilla report 436122 might be related to this. Do you have an idea on how many exceptions need to be added before it starts dropping some of them ? Would you mind following the contents of $HOME/.mozilla/firefox/*/cert_override.txt file, which contains these overrides ? Hi, now I have 28 overrides. However I almost forgot about this bug. In the meantime I upgraded to icewaeasel 3.0.6-3 and this bug did not occur for quite a long time. I'm not sure, but it might have been fixed by upgrade. -- Regards Vladislav Kurz -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#512020: xserver-xorg-video-geode: Segfault on rotate
On Sunday 20 of September 2009, Martin-Éric Racine wrote: On Tue, Jan 20, 2009 at 1:48 PM, Vladislav Kurz vladislav.k...@webstep.net wrote: On Monday 19 of January 2009, Martin-Éric Racine wrote: On Mon, Jan 19, 2009 at 6:32 PM, Vladislav Kurz vladislav.k...@webstep.net wrote: On Friday 16 of January 2009, Martin-Éric Racine wrote: I use ALIX boards with Geode CPU as thin clients for LTSP. When I rotate screen using xrandr -o left or xrandr -o right X server crashes. I can try geode driver from unstable or experimental, if there were any changes related to screen rotation. Yes, the experimental package has some fixes for rotate. However, you would need to rebuild the Debian source package against the Build-Depends from Lenny, because experimental has the next X server core instead. I have compiled the geode driver from experimental, and it works. But only when I do xrandr -o left. If I add Option Rotate Left in my xorg.conf, nothing happens - screen is not rotated at all. Any idea? Did you put the Rotate option in the Monitor section or the Device section? I'd suggest trying each section to see which one works. IIRC there were some changes WRT that, since RandR 1.2 was released. I had the option in Device section. Now I tried it in Monitor section. It seems to partially work. Cursors is rotated, and moves, but nothing else appears. First time I had there an old copy of my rotated desktop, and after rebooted the screen was black. It seems like there is nothing written into videoRAM. Has the situation improved with recent packages in Squeeze? I have recompiled the package for lenny and tried. It does the same as before. xrandr -o left is ok, but Option Rotate Left in Monitor section of xorg.conf is broken. Rotated cursor appears, but nothing else. I have one further idea. When I first tried rotating the screen, I got error about unsufficient videoRAM. Well I thought 8 MB should be enough for 1280x1024 screen at 24 bpp (or even 32 bpp). I had to set 16 MB, to get it working at least with xrandr. So it seems that rotated screen is written to some other part of videoRAM than non-rotated screen. And I think that when Rotate is set in Monitor section, image is written into non-rotated part of videoRAM but the image displayed is from rotated part. To confirm this theory try displaying something rotated with xrandr, kill X, do not reboot and try Option Rotate, then you can see a screenshot of previous X session. Just cursor moves around. -- Regards Vladislav Kurz -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#544853: backuppc: thttpd wont display the graph at all
Package: backuppc Version: 3.1.0-4lenny1 Followup-For: Bug #544853 It is interesting that if apache is used to display backuppc, it will display the graph and just log the above mentionend error. However if thttpd is used it does not display the image at all. It seems that the error message is prepended to PNG binary thus breaking the image. Another quick fix is to append 2/dev/null between and ` at the end of rrdtoll line. The error is still there but images are shown. Regards Vladislav Kurz -- System Information: Debian Release: 5.0.3 APT prefers stable APT policy: (500, 'stable') Architecture: i386 (i686) Kernel: Linux 2.6.26-2-686-bigmem (SMP w/8 CPU cores) Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) Shell: /bin/sh linked to /bin/bash Versions of packages backuppc depends on: ii adduser 3.110 add and remove users and groups ii apache2 2.2.9-10+lenny4 Apache HTTP Server metapackage ii apache2-mpm-prefork [htt 2.2.9-10+lenny4 Apache HTTP Server - traditional n ii bzip21.0.5-1 high-quality block-sorting file co ii debconf [debconf-2.0]1.5.24 Debian configuration management sy ii dpkg 1.14.25 Debian package management system ii libarchive-zip-perl 1.18-1 Module for manipulation of ZIP arc ii libcompress-zlib-perl2.012-1 Perl module for creation and manip ii perl [libdigest-md5-perl 5.10.0-19lenny2 Larry Wall's Practical Extraction ii perl-suid5.10.0-19lenny2 Runs setuid Perl scripts ii samba-common 2:3.2.5-4lenny6 Samba common files used by both th ii smbclient2:3.2.5-4lenny6 a LanManager-like simple client fo ii tar 1.20-1 GNU version of the tar archiving u ii thttpd [httpd] 2.25b-6 tiny/turbo/throttling HTTP server Versions of packages backuppc recommends: ii exim44.69-9 metapackage to ease Exim MTA (v4) ii exim4-daemon-light [mail-tra 4.69-9 lightweight Exim MTA (v4) daemon ii libfile-rsyncp-perl 0.68-1.1+b1 A perl based implementation of an ii openssh-client [ssh-client] 1:5.1p1-5 secure shell client, an rlogin/rsh ii rrdtool 1.3.1-4 Time-series data storage and displ ii rsync3.0.3-2 fast remote file copy program (lik Versions of packages backuppc suggests: ii epiphany-gecko 2.22.3-1 Intuitive GNOME web browser - Geck ii galeon [www-bro 2.0.6-2.1GNOME web browser for advanced use ii iceape-browser 1.0.13~pre080614i-0etch1 Iceape Navigator (Internet browser ii iceweasel [www- 3.0.6-1 lightweight web browser based on M ii konqueror [www- 4:3.5.9.dfsg.1-6 KDE's advanced file manager, web b ii links [www-brow 2.1pre37-1.1 Web browser running in text mode ii links2 [www-bro 2.1pre37-1.1 Web browser running in both graphi ii lynx-cur [www-b 2.8.7dev9-2.1Text-mode WWW Browser with NLS sup ii opera [www-brow 9.20-20070409.6 The Opera Web Browser pn par2none (no description available) -- debconf information excluded -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#520396: cups: cannot print on ipp printer
Package: cups Version: 1.3.8-1lenny5 Followup-For: Bug #520396 Hello, We have upgraded both cups servers to lenny and we sill cannot print from one to the other. I will again summarize the setup: serverA: printer connected on /dev/lp0, shared as printerA serverB: printer connected as ipp://serverA/printers/printerA, shared as printerA client printing to ipp://serverB/printers/printerA, fails: Print file was not accepted (client-error-not-authorized)! I'm trying to publish printerA on serverB: /usr/sbin/lpadmin -p printerA -o printer-is-shared=true but nothing happens. All other printers on serverB (connected as lpd:// or socket:9100) print perfectly. Could somebody please look at this issue and tell us what to do? -- System Information: Debian Release: 5.0.1 APT prefers stable APT policy: (500, 'stable') Architecture: i386 (i686) Kernel: Linux 2.6.26-2-686-bigmem (SMP w/4 CPU cores) Locale: LANG=C, LC_CTYPE=cs_CZ.ISO-8859-2 (charmap=ISO-8859-2) Shell: /bin/sh linked to /bin/bash Versions of packages cups depends on: ii adduser 3.110add and remove users and groups ii cups-common 1.3.8-1lenny5Common UNIX Printing System(tm) - ii debconf [debcon 1.5.24 Debian configuration management sy ii ghostscript 8.62.dfsg.1-3.2lenny1The GPL Ghostscript PostScript/PDF ii libavahi-compat 0.6.23-3lenny1 Avahi Apple Bonjour compatibility ii libc6 2.7-18 GNU C Library: Shared libraries ii libcups21.3.8-1lenny5Common UNIX Printing System(tm) - ii libcupsimage2 1.3.8-1lenny5Common UNIX Printing System(tm) - ii libdbus-1-3 1.2.1-5 simple interprocess messaging syst ii libgnutls26 2.4.2-6+lenny1 the GNU TLS library - runtime libr ii libkrb531.6.dfsg.4~beta1-5lenny1 MIT Kerberos runtime libraries ii libldap-2.4-2 2.4.11-1 OpenLDAP libraries ii libpam0g1.0.1-5+lenny1 Pluggable Authentication Modules l ii libpaper1 1.1.23+nmu1 library for handling paper charact ii libslp1 1.2.1-7.5OpenSLP libraries ii lsb-base3.2-20 Linux Standard Base 3.2 init scrip ii perl-modules5.10.0-19Core Perl modules ii procps 1:3.2.7-11 /proc file system utilities ii ssl-cert1.0.23 simple debconf wrapper for OpenSSL ii xpdf-utils [pop 3.02-1.4+lenny1 Portable Document Format (PDF) sui Versions of packages cups recommends: pn avahi-utils none (no description available) ii cups-client 1.3.8-1lenny5 Common UNIX Printing System(tm) - ii foomatic-filters 3.0.2-20080211-3.2 OpenPrinting printer support - fil ii smbclient 2:3.2.5-4lenny2a LanManager-like simple client fo Versions of packages cups suggests: ii cups-bsd1.3.8-1lenny5Common UNIX Printing System(tm) - ii cups-driver-gutenprint 5.0.2-4 printer drivers for CUPS pn cups-pdfnone (no description available) ii foomatic-db 20080211-2+nmu1 OpenPrinting printer support - dat ii foomatic-db-engine 3.0.2-20080211-1 OpenPrinting printer support - pro pn hplip none (no description available) pn xpdf-korean | xpdf-japa none (no description available) -- debconf information: * cupsys/raw-print: true * cupsys/backend: ipp, lpd, parallel, socket, usb -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#520396: cups: workaround
Package: cups Version: 1.3.8-1lenny5 Followup-For: Bug #520396 It seems that upstream considers this situation as a feature see: http://cups.org/str.php?L3181 However it should be explained to them that there are situations where this might be useful or necessary. In our config, cups worked as an ipp proxy allowing to print on printer hidden behind firewall, where direct access is not possible. I cannot wait until this bug is fixed, so I had to use cups-bsd to publish the printer using lpr protocol and now it works fine. Regards Vladislav Kurz -- System Information: Debian Release: 5.0.1 APT prefers stable APT policy: (500, 'stable') Architecture: i386 (i686) Kernel: Linux 2.6.26-2-686-bigmem (SMP w/4 CPU cores) Locale: LANG=C, LC_CTYPE=cs_CZ.ISO-8859-2 (charmap=ISO-8859-2) Shell: /bin/sh linked to /bin/bash Versions of packages cups depends on: ii adduser 3.110add and remove users and groups ii cups-common 1.3.8-1lenny5Common UNIX Printing System(tm) - ii debconf [debcon 1.5.24 Debian configuration management sy ii ghostscript 8.62.dfsg.1-3.2lenny1The GPL Ghostscript PostScript/PDF ii libavahi-compat 0.6.23-3lenny1 Avahi Apple Bonjour compatibility ii libc6 2.7-18 GNU C Library: Shared libraries ii libcups21.3.8-1lenny5Common UNIX Printing System(tm) - ii libcupsimage2 1.3.8-1lenny5Common UNIX Printing System(tm) - ii libdbus-1-3 1.2.1-5 simple interprocess messaging syst ii libgnutls26 2.4.2-6+lenny1 the GNU TLS library - runtime libr ii libkrb531.6.dfsg.4~beta1-5lenny1 MIT Kerberos runtime libraries ii libldap-2.4-2 2.4.11-1 OpenLDAP libraries ii libpam0g1.0.1-5+lenny1 Pluggable Authentication Modules l ii libpaper1 1.1.23+nmu1 library for handling paper charact ii libslp1 1.2.1-7.5OpenSLP libraries ii lsb-base3.2-20 Linux Standard Base 3.2 init scrip ii perl-modules5.10.0-19Core Perl modules ii procps 1:3.2.7-11 /proc file system utilities ii ssl-cert1.0.23 simple debconf wrapper for OpenSSL ii xpdf-utils [pop 3.02-1.4+lenny1 Portable Document Format (PDF) sui Versions of packages cups recommends: pn avahi-utils none (no description available) ii cups-client 1.3.8-1lenny5 Common UNIX Printing System(tm) - ii foomatic-filters 3.0.2-20080211-3.2 OpenPrinting printer support - fil ii smbclient 2:3.2.5-4lenny2a LanManager-like simple client fo Versions of packages cups suggests: ii cups-bsd1.3.8-1lenny5Common UNIX Printing System(tm) - ii cups-driver-gutenprint 5.0.2-4 printer drivers for CUPS pn cups-pdfnone (no description available) ii foomatic-db 20080211-2+nmu1 OpenPrinting printer support - dat ii foomatic-db-engine 3.0.2-20080211-1 OpenPrinting printer support - pro pn hplip none (no description available) pn xpdf-korean | xpdf-japa none (no description available) -- debconf information: * cupsys/raw-print: true * cupsys/backend: ipp, lpd, parallel, socket, usb -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#520396: cups: cannot print on ipp printer
Package: cups Version: 1.3.8-1lenny5 Followup-For: Bug #520396 Hello, I have probably the same problem. Our cups server was recently upgraded from etch to lenny. It provides access to many networked printers, most of them are JetDirect (socket 9000) or classic lpd/lpr printers. Only one of them is accessible via another cups server at remote location. The remote server is old box with sarge (cups version 1.1.23-10). Since the upgrade we cannot print on it. This is the relevant part of error_log. Printer in question is cdma1, A.B.C.4 is client trying to print, A.B.C.2 is the upgraded server. D [30/Apr/2009:15:15:43 +0200] cupsdAcceptClient: 8 from A.B.C.4:631 (IPv4) D [30/Apr/2009:15:15:43 +0200] cupsdReadClient: 8 POST /printers/cdma1 HTTP/1.1 D [30/Apr/2009:15:15:43 +0200] cupsdAuthorize: No authentication data provided. D [30/Apr/2009:15:15:43 +0200] Get-Printer-Attributes ipp://A.B.C.2:631/printers/cdma1 D [30/Apr/2009:15:15:43 +0200] cupsdProcessIPPRequest: 8 status_code=0 (successful-ok) D [30/Apr/2009:15:15:43 +0200] cupsdReadClient: 8 POST /printers/cdma1 HTTP/1.1 D [30/Apr/2009:15:15:43 +0200] cupsdAuthorize: No authentication data provided. D [30/Apr/2009:15:15:43 +0200] Print-Job ipp://A.B.C.2:631/printers/cdma1 D [30/Apr/2009:15:15:43 +0200] Print-Job client-error-not-authorized: The printer or class is not shared! D [30/Apr/2009:15:15:43 +0200] cupsdProcessIPPRequest: 8 status_code=403 (client-error-not-authorized) D [30/Apr/2009:15:15:43 +0200] cupsdReadClient: 8 POST /printers/cdma1 HTTP/1.1 D [30/Apr/2009:15:15:43 +0200] cupsdAuthorize: No authentication data provided. D [30/Apr/2009:15:15:43 +0200] Get-Printer-Attributes ipp://A.B.C.2:631/printers/cdma1 D [30/Apr/2009:15:15:43 +0200] cupsdProcessIPPRequest: 8 status_code=0 (successful-ok) D [30/Apr/2009:15:15:43 +0200] cupsdCloseClient: 8 I was trying to enable sharing of the printer but it didn't work. I tried it via web interface, or form command line using /usr/sbin/lpadmin -p cdma1 -o printer-is-shared=true Even it does not print any error it is stil marked as not published (not shared). Comparing the logs, it seems that there is no communication between the two cups servers, at the moment of printing, so access is denied by the upgraded cups, not the old one with printer phyusically connected. There seems to be no such option in the configuration of old cups. Regards Vladislav Kurz -- System Information: Debian Release: 5.0.1 APT prefers stable APT policy: (500, 'stable') Architecture: i386 (i686) Kernel: Linux 2.6.26-2-686-bigmem (SMP w/4 CPU cores) Locale: LANG=C, LC_CTYPE=cs_CZ.ISO-8859-2 (charmap=ISO-8859-2) Shell: /bin/sh linked to /bin/bash Versions of packages cups depends on: ii adduser 3.110add and remove users and groups ii cups-common 1.3.8-1lenny5Common UNIX Printing System(tm) - ii debconf [debcon 1.5.24 Debian configuration management sy ii ghostscript 8.62.dfsg.1-3.2lenny1The GPL Ghostscript PostScript/PDF ii libavahi-compat 0.6.23-3lenny1 Avahi Apple Bonjour compatibility ii libc6 2.7-18 GNU C Library: Shared libraries ii libcups21.3.8-1lenny5Common UNIX Printing System(tm) - ii libcupsimage2 1.3.8-1lenny5Common UNIX Printing System(tm) - ii libdbus-1-3 1.2.1-5 simple interprocess messaging syst ii libgnutls26 2.4.2-6+lenny1 the GNU TLS library - runtime libr ii libkrb531.6.dfsg.4~beta1-5lenny1 MIT Kerberos runtime libraries ii libldap-2.4-2 2.4.11-1 OpenLDAP libraries ii libpam0g1.0.1-5+lenny1 Pluggable Authentication Modules l ii libpaper1 1.1.23+nmu1 library for handling paper charact ii libslp1 1.2.1-7.5OpenSLP libraries ii lsb-base3.2-20 Linux Standard Base 3.2 init scrip ii perl-modules5.10.0-19Core Perl modules ii procps 1:3.2.7-11 /proc file system utilities ii ssl-cert1.0.23 simple debconf wrapper for OpenSSL ii xpdf-utils [pop 3.02-1.4 Portable Document Format (PDF) sui Versions of packages cups recommends: pn avahi-utils none (no description available) ii cups-client 1.3.8-1lenny5 Common UNIX Printing System(tm) - ii foomatic-filters 3.0.2-20080211-3.2 OpenPrinting printer support - fil ii smbclient 2:3.2.5-4lenny2a LanManager-like simple client fo Versions of packages cups suggests: ii cups-bsd1.3.8-1lenny5Common UNIX Printing System(tm) - ii cups-driver-gutenprint 5.0.2-4 printer drivers for CUPS pn cups-pdfnone (no description available) ii foomatic-db 20080211-2+nmu1 OpenPrinting printer support - dat ii foomatic-db-engine 3.0.2-20080211-1
Bug#525307: check_smtp: invalid option -- n
Package: nagios-plugins-basic Version: 1.4.12-5 Severity: normal Hello, check_smtp plugin does not implement option -n -n, nocommand Suppress SMTP command I monitor a SMTP server that refuses the connection immediately, without waiting for HELO. Before upgrade to lenny I used this command: /usr/lib/nagios/plugins/check_smtp -H novell.vkol.cz -e 520 and it was OK. Now I get error: recv() failed and status is WARNING. I thought -n would help to get rid of this recv() errror, but it seems broken. Regards Vladislav Kurz -- System Information: Debian Release: 5.0.1 APT prefers stable APT policy: (500, 'stable') Architecture: i386 (i686) Kernel: Linux 2.6.18-6-686-bigmem (SMP w/4 CPU cores) Locale: LANG=C, LC_CTYPE=cs_CZ.ISO-8859-2 (charmap=ISO-8859-2) Shell: /bin/sh linked to /bin/bash Versions of packages nagios-plugins-basic depends on: ii iputils-ping3:20071127-1 Tools to test the reachability of ii libc6 2.7-18 GNU C Library: Shared libraries ii libssl0.9.8 0.9.8g-15+lenny1 SSL shared libraries ii procps 1:3.2.7-11 /proc file system utilities ii ucf 3.0016 Update Configuration File: preserv nagios-plugins-basic recommends no packages. Versions of packages nagios-plugins-basic suggests: pn nagios3 none (no description available) -- no debconf information -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#522680: konsole: bitmap font unusable
Package: konsole Version: 4:3.5.9.dfsg.1-6 Severity: normal Hello, I used konsole with the bitmap font once provided in xfons-konsole package. After upgrade from etch to lenny I'm unable to use it. Even if i click the Font/Install Bitmap... option and proceed. I can see the fonts in ~/.fonts, I can use them with xterm -fn -misc-console-medium-r-normal--16-160-72-72-c-80-iso10646-1 but konsole itself cannot find it, and neither can kde control center, or any kde app. Can someone tell me what should I do to make KDE use fonts in ~/.fonts ? Thanks Vladislav Kurz -- System Information: Debian Release: 5.0 APT prefers stable APT policy: (500, 'stable') Architecture: i386 (i686) Kernel: Linux 2.6.26-1-686 (SMP w/1 CPU core) Locale: LANG=sk_SK, LC_CTYPE=sk_SK (charmap=ISO-8859-2) Shell: /bin/sh linked to /bin/bash Versions of packages konsole depends on: ii kdelibs4c2a 4:3.5.10.dfsg.1-0lenny1 core libraries and binaries for al ii libc62.7-18 GNU C Library: Shared libraries ii libgcc1 1:4.3.2-1.1 GCC support library ii libqt3-mt3:3.3.8b-5+b1 Qt GUI Library (Threaded runtime v ii libstdc++6 4.3.2-1.1 The GNU Standard C++ Library v3 ii libx11-6 2:1.1.5-2 X11 client-side library ii libxrender1 1:0.9.4-2 X Rendering Extension client libra konsole recommends no packages. Versions of packages konsole suggests: ii khelpcente 4:4.0.0.really.3.5.9.dfsg.1-6 help center for KDE -- no debconf information -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#519945: xvkbd: Zero (0) on numeric keypad does not work
Package: xvkbd Version: 2.7a-3.1 Severity: normal Hello, I have noticed that 0 on keypad does not work as expected. It generates Shift-Insert as if truekeypad is always on for this key. Here is a patch. --- xvkbd-3.0.orig/xvkbd.c +++ xvkbd-3.0/xvkbd.c @@ -2291,6 +2291,7 @@ case XK_KP_Add: keysym = XK_plus; break; case XK_KP_Subtract: keysym = XK_minus; break; case XK_KP_Enter: keysym = XK_Return; break; + case XK_KP_0: keysym = XK_0; break; case XK_KP_1: keysym = XK_1; break; case XK_KP_2: keysym = XK_2; break; case XK_KP_3: keysym = XK_3; break; -- System Information: Debian Release: 4.0 APT prefers stable APT policy: (500, 'stable') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.24-etchnhalf.1-686 Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) Versions of packages xvkbd depends on: ii libc6 2.7-10 GNU C Library: Shared libraries ii libice6 1:1.0.1-2 X11 Inter-Client Exchange library ii libsm61:1.0.1-3 X11 Session Management library ii libx11-6 2:1.0.3-7 X11 client-side library ii libxext6 1:1.0.1-2 X11 miscellaneous extension librar ii libxmu6 1:1.0.2-2 X11 miscellaneous utility library ii libxpm4 1:3.5.7-1 X11 pixmap library ii libxt61:1.0.2-2 X11 toolkit intrinsics library ii libxtst6 1:1.0.1-5 X11 Testing -- Resource extension ii xaw3dg1.5+E-14 Xaw3d widget set Versions of packages xvkbd recommends: ii wamerican [wordlist] 6-2American English dictionary words -- no debconf information -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#518943: backuppc: Archive run from commandline does not compress
Package: backuppc
Version: 3.1.0-4
Severity: normal
Hello,
i have configured archive host on backuppc to make archives over NFS to other
machine.
I want them to run regularly so I put this into my crontab:
55 12 * * 6 backuppc /usr/share/backuppc/bin/BackupPC_archiveStart archive \
backuppc server1 server2 server3
It worked but archives are not compressed. I have configured archive
compression:
$Conf{ArchiveComp} = 'gzip';
and if i run archive from web interface it is set as the default and archives
are compressed. I looked into BackupPC_archiveStart script and it seems to
ignore compression settings and uses cat insteda of compression:
These are the lines 94-106
my %ArchiveReq = (
archiveloc = $bpc-{Conf}{ArchiveDest},
archtype= 0,
compression = $bpc-{Conf}{CatPath},
compext = '.raw',
parfile = $bpc-{Conf}{ArchivePar},
splitsize = '000',
host= $ArchiveHost,
HostList= \...@hostlist,
BackupList = \...@backuplist,
user= $UserName,
reqTime = time,
);
I think there should be something to get compression setting from config.pl
instead of CatPath and .raw.
Regards
Vladislav Kurz
-- System Information:
Debian Release: 5.0
APT prefers stable
APT policy: (500, 'stable')
Architecture: i386 (i686)
Kernel: Linux 2.6.26-1-686-bigmem (SMP w/4 CPU cores)
Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) (ignored: LC_ALL set to C)
Shell: /bin/sh linked to /bin/bash
Versions of packages backuppc depends on:
ii adduser 3.110 add and remove users and groups
ii apache2 2.2.9-10+lenny2 Apache HTTP Server metapackage
ii apache2-mpm-prefork [htt 2.2.9-10+lenny2 Apache HTTP Server - traditional n
ii bzip21.0.5-1 high-quality block-sorting file co
ii debconf [debconf-2.0]1.5.24 Debian configuration management sy
ii dpkg 1.14.25 Debian package management system
ii libarchive-zip-perl 1.18-1 Module for manipulation of ZIP arc
ii libcompress-zlib-perl2.012-1 Perl module for creation and manip
ii perl [libdigest-md5-perl 5.10.0-19 Larry Wall's Practical Extraction
ii perl-suid5.10.0-19 Runs setuid Perl scripts
ii samba-common 2:3.2.5-4 Samba common files used by both th
ii smbclient2:3.2.5-4 a LanManager-like simple client fo
ii tar 1.20-1 GNU version of the tar archiving u
Versions of packages backuppc recommends:
ii exim44.69-9 metapackage to ease Exim MTA (v4)
ii exim4-daemon-light [mail-tra 4.69-9 lightweight Exim MTA (v4) daemon
ii libfile-rsyncp-perl 0.68-1.1+b1 A perl based implementation of an
ii openssh-client [ssh-client] 1:5.1p1-5 secure shell client, an rlogin/rsh
pn rrdtool none (no description available)
ii rsync3.0.3-2 fast remote file copy program (lik
Versions of packages backuppc suggests:
ii links [www-browser]2.1pre37-1.1 Web browser running in text mode
ii lynx-cur [www-browser] 2.8.7dev9-2.1 Text-mode WWW Browser with NLS sup
pn par2 none(no description available)
ii w3m [www-browser] 0.5.2-2+b1WWW browsable pager with excellent
-- debconf information excluded
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#266229: OpenSSL exemption
Hello, I have also run into the need of recompiling freeradius to get EAP-TLS support. Did anyone speak to upstream about the possibility of adding the exemption to link with OpenSSL as suggested by Henrique a couple of months ago? Did they answer? I think that ammending the licence is the easiest way to get this bug fixed. -- Regards Vladislav Kurz -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#514599: encfs: Failure on nfs4
Package: encfs
Version: 1.2.5-1-1+b2
Severity: normal
Hello,
I want to use EncFS to encrypt data that are stored on NFSv4 server.
The server is not under my control and I want to keep data protected against
reading
by admin of the NFS server. So I mounted nfs4 filesystem, made two empty
directories:
backup.encfs and backup.plain and run:
encfs /nfs4/backup.encfs/ /nfs4/backup.plain/
Initial setup went OK, a file named .encfs appeared in backup.encfs, and I was
able
to mount, umount, and cd into backup.plain. However when I wanted to create a
file in
encfs mounted backup.plain, i got a kernel BUG at fs/nfs/nfs4xdr.c:870!
I searched the net and found some issues about nfs4 but they were not related.
I tried
to upgrade kernel to etchandahalf and the bug is the same, just on different
line number.
In both cases it is the function encode_share_access, and the line BUG().
static void encode_share_access(struct xdr_stream *xdr, int open_flags)
{
uint32_t *p;
RESERVE_SPACE(8);
switch (open_flags (FMODE_READ|FMODE_WRITE)) {
case FMODE_READ:
WRITE32(NFS4_SHARE_ACCESS_READ);
break;
case FMODE_WRITE:
WRITE32(NFS4_SHARE_ACCESS_WRITE);
break;
case FMODE_READ|FMODE_WRITE:
WRITE32(NFS4_SHARE_ACCESS_BOTH);
break;
default:
BUG(); HERE
}
WRITE32(0); /* for linux, share_deny = 0 always */
}
It seems to me as if encfs is trying to open a file which is neither for
reading nor for
writing, which is obviously nonsense and therefore rejected. Unfortunately both
the encfs
and nfs4 mounts hang and cannot be unmounted until reboot.
-- System Information:
Debian Release: 4.0
APT prefers stable
APT policy: (500, 'stable')
Architecture: i386 (i686)
Shell: /bin/sh linked to /bin/bash
Kernel: Linux 2.6.18-6-686-bigmem
Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) (ignored: LC_ALL set to C)
Versions of packages encfs depends on:
ii fuse-utils 2.5.3-4.4 Filesystem in USErspace (utilities
ii libc6 2.3.6.ds1-13etch8 GNU C Library: Shared libraries
ii libfuse2 2.5.3-4.4 Filesystem in USErspace library
ii libgcc11:4.1.1-21GCC support library
ii librlog1c2a1.3.7-1 flexible message logging library
ii libssl0.9.80.9.8c-4etch4 SSL shared libraries
ii libstdc++6 4.1.1-21 The GNU Standard C++ Library v3
encfs recommends no packages.
-- no debconf information
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#512020: xserver-xorg-video-geode: Segfault on rotate
On Monday 19 of January 2009, Martin-Éric Racine wrote: On Mon, Jan 19, 2009 at 6:32 PM, Vladislav Kurz vladislav.k...@webstep.net wrote: On Friday 16 of January 2009, Martin-Éric Racine wrote: I use ALIX boards with Geode CPU as thin clients for LTSP. When I rotate screen using xrandr -o left or xrandr -o right X server crashes. I can try geode driver from unstable or experimental, if there were any changes related to screen rotation. Yes, the experimental package has some fixes for rotate. However, you would need to rebuild the Debian source package against the Build-Depends from Lenny, because experimental has the next X server core instead. I have compiled the geode driver from experimental, and it works. But only when I do xrandr -o left. If I add Option Rotate Left in my xorg.conf, nothing happens - screen is not rotated at all. Any idea? Did you put the Rotate option in the Monitor section or the Device section? I'd suggest trying each section to see which one works. IIRC there were some changes WRT that, since RandR 1.2 was released. I had the option in Device section. Now I tried it in Monitor section. It seems to partially work. Cursors is rotated, and moves, but nothing else appears. First time I had there an old copy of my rotated desktop, and after rebooted the screen was black. It seems like there is nothing written into videoRAM. -- S pozdravem Vladislav Kurz === WebStep, s.r.o. (Ltd.) = a step to the Web === address: Mezirka 1, 602 00 Brno, CZ, tel: +420 548 214 711 === www.webstep.net === vladislav.k...@webstep.net === -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#512020: xserver-xorg-video-geode: Segfault on rotate
On Friday 16 of January 2009, Martin-Éric Racine wrote: I use ALIX boards with Geode CPU as thin clients for LTSP. When I rotate screen using xrandr -o left or xrandr -o right X server crashes. I can try geode driver from unstable or experimental, if there were any changes related to screen rotation. Yes, the experimental package has some fixes for rotate. However, you would need to rebuild the Debian source package against the Build-Depends from Lenny, because experimental has the next X server core instead. Martin-Éric I have compiled the geode driver from experimental, and it works. But only when I do xrandr -o left. If I add Option Rotate Left in my xorg.conf, nothing happens - screen is not rotated at all. Any idea? -- Regards Vladislav Kurz -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#512020: xserver-xorg-video-geode: Segfault on rotate
Package: xserver-xorg-video-geode Version: 2.10.1-2 Severity: normal I use ALIX boards with Geode CPU as thin clients for LTSP. When I rotate screen using xrandr -o left or xrandr -o right X server crashes. This is the end of Xorg.log: Backtrace: 0: X(xf86SigHandler+0x7e) [0x80c91ce] 1: [0xb7f76400] 2: /usr/lib/xorg/modules//libshadow.so [0xb715afde] 3: X(BlockHandler+0x94) [0x8091b34] 4: X(WaitForSomething+0x124) [0x81b82d4] 5: X(Dispatch+0x86) [0x808db96] 6: X(main+0x4b5) [0x8074795] 7: /lib/libc.so.6(__libc_start_main+0xe5) [0xb7d4b455] 8: X(FontFileCompleteXLFD+0x21d) [0x8073a81] Fatal server error: Caught signal 11. Server aborting Same thing happens when I write this into xorg.conf: Option Rotate left I installed xserver-xorg-video-geode-dbg but the output is the same. How do I enable debug symbols? LTSP chroot is debian testing: xserver-xorg 1:7.3+18 xserver-xorg-core 2:1.4.2-10 libc6 2.7-18 I can try geode driver from unstable or experimental, if there were any changes related to screen rotation. Thanks Vladislav Kurz -- System Information: Debian Release: 5.0 Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.26-1-486 Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#503943: nagios3: Waits for notification to finish
Package: nagios3 Version: 3.0.3-3 Severity: normal Hello, I have a custom notification command - instead of sending e-mail it displays a pop-up window using xmessage. I used it for a few years with nagios 1.x. Now we try to migrate our config to nagios 3.x and found this bug: Nagios is waiting indefinitely for notification command to finish. This is not a problem when sending e-mails, as mail command usually exits quickly. But my xmessage notification sometimes does not exit quickly. (i.e. when I'm away and there's nobody to close the popup). I noticed that while nagios3 is waiting for notification to exit, it does not do any service checks, and eats all cpu! It does not care about setting notification_timeout=30. I let the popup open for more that 30 minutes and nagios was still waiting for it. After I closed the notification window, this line appeared in nagios.log: Warning: A system time change of 0d 0h 37m 28s (forwards in time) has been detected. Compensating... This apparently does not happen with nagios 1.x as I often had multiple popups on my desktop with and nagios was happily checking services further, and displaying new notifications for new problems or recoveries. Regards Vladislav Kurz -- System Information: Debian Release: 4.0 APT prefers stable APT policy: (500, 'stable'), (60, 'testing'), (30, 'unstable'), (1, 'experimental') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.18-6-686-bigmem Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) Versions of packages nagios3 depends on: ii libc6 2.7-10GNU C Library: Shared libraries ii libgd2-xpm 2.0.36~rc1~dfsg-3 GD Graphics Library version 2 ii libjpeg62 6b-13 The Independent JPEG Group's JPEG ii libperl5.105.10.0-11 Shared Perl library ii libpng12-0 1.2.15~beta5-1PNG library - runtime ii nagios3-common 3.0.3-3 support files for nagios3 ii perl 5.10.0-11 Larry Wall's Practical Extraction ii zlib1g 1:1.2.3.3.dfsg-5 compression library - runtime nagios3 recommends no packages. -- no debconf information -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#503944: Why nagiosgrapher depends on nagios3 ?
Package: nagiosgrapher Version: 1.6.1rc5-6 Severity: minor Hello, I wanted to graph performance data from my nagios system. I use nagios for a long time so I still use nagios 1.x and feel satisfied. But when I installed nagiosgrapher from testing, it pulled nagios3 as dependency. After I changed all my configs to nagios 3.x and configuring nagiosgrapher I realized that nagiosgrapher should be able to process perfdata from nagios 1.x as well. Is there any special reason why nagiosgrapher depends on nagios3 and not on any version of nagios? Wold it be ok to have dependecies like this? Depends: nagios3 | nagios2 | nagios-text Or is there some deep issue that makes nagiosgrapher incompatible with nagios 1.x a 2.x ? Regards Vladislav Kurz -- System Information: Debian Release: 4.0 APT prefers stable APT policy: (500, 'stable'), (60, 'testing'), (30, 'unstable'), (1, 'experimental') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.18-6-686-bigmem Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) Versions of packages nagiosgrapher depends on: ii libc6 2.7-10 GNU C Library: Shared libraries ii libcalendar-simple- 1.20-1 Perl extension to create simple ca ii libgd-gd2-perl 1:2.39-2 Perl module wrapper for libgd - gd ii librrds-perl1.2.27-2+b1 Time-series data storage and displ ii liburi-perl 1.35-2 Manipulates and accesses URI strin ii nagios-images 0.3 Collection of images and icons for ii nagios3 3.0.3-3 A host/service/network monitoring ii perlmagick [libimag 7:6.3.7.9.dfsg1-2+b2 Perl interface to the libMagick gr ii rrdtool 1.2.15-0.3 Time-series data storage and displ ii ttf-dejavu 2.15-1 Vera font family derivate with add ii ucf 2.0020 Update Configuration File: preserv nagiosgrapher recommends no packages. -- no debconf information -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#500785: iceweasel: SSL exceptions are forgotten
Package: iceweasel Version: 3.0.1-1 Severity: normal Hello, it seems that the storage for SSL certificate exceptions is limited, and used as circular buffer. I visit a lot of sites with self-signed certificates, and from time to time I have to confirm all exceptions again as if I visit the site for the first time. This is not only annoying but dangerous. What if the site certificate changes and Iceweasel just forgets the old certificate. No warning etc. In firefox2 - exceptions were really stored permanently and I got warnings when the certificate expired or changed. But adding the same certificate over and over again will just train the user to add the exception as quickly as possible without really checking the content of the certificate. It seems that firefox bugzilla report 436122 might be related to this. Regards Vladislav Kurz -- System Information: Debian Release: 4.0 APT prefers stable APT policy: (500, 'stable'), (60, 'testing'), (30, 'unstable'), (1, 'experimental') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.18-6-686-bigmem Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) Versions of packages iceweasel depends on: ii debianutils 2.17 Miscellaneous utilities specific t ii fontconfig2.4.2-1.2 generic font configuration library ii libc6 2.7-10 GNU C Library: Shared libraries ii libgcc1 1:4.2.1-4 GCC support library ii libglib2.0-0 2.16.3-2 The GLib library of C routines ii libgtk2.0-0 2.12.10-2 The GTK+ graphical user interface ii libnspr4-0d 4.7.1-3NetScape Portable Runtime Library ii libstdc++64.2.1-4The GNU Standard C++ Library v3 ii procps1:3.2.7-3 /proc file system utilities ii psmisc22.3-1 Utilities that use the proc filesy ii xulrunner-1.9 1.9.0.1-1 XUL + XPCOM application runner iceweasel recommends no packages. -- no debconf information -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#500009: Workaround
I did some experiments and found a workaround.
Don't use rsync --exclude, but $Conf{BackupFilesExclude}
That works fine.
But anyway this bug should be investigated and fixed.
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#500009: Workaround
On Friday 26 of September 2008, you wrote:
Le vendredi 26 septembre 2008 12:21, Vladislav Kurz a écrit :
I did some experiments and found a workaround.
Don't use rsync --exclude, but $Conf{BackupFilesExclude}
Yes that's what I suspected. You have to use $Conf{BackupFilesExclude}
because in RsyncP.pm there's code to remove --exclude options passed from
other options.
I do not think that the developpers will fix that since it's done on
purpose. That's why I'll close the bug.
But it should be consistent. Either remove them always or never. And it should
be a documented behavior. However current documentation even recommends
using --exclude.
See http://backuppc.sourceforge.net/faq/BackupPC.html#item__conf_rsyncargs_
Please reopen the bug
--
Regards
Vladislav Kurz
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#500009: backuppc: rsync --exclude passed only to full dumps
--perms --owner --group -D --links --hard-links --times --block-size=2048 --recursive --checksum-seed=32761 --one-file-system . /var/ Xfer PIDs are now 23146 Got remote protocol 29 Negotiated protocol version 28 Checksum caching enabled (checksumSeed = 32761) Xfer PIDs are now 23146,23153 [ skipped 68084 lines ] Done: 63828 files, 886051809 bytes incr backup started back to 2008-09-19 18:55:07 (backup #186) for directory /home Running: /usr/bin/ssh -q -x -l backup host.example.com sudo /usr/bin/rsync --server --sender --numeric-ids --perms --owner --group -D --links --hard-links --times --block-size=2048 --recursive --checksum-seed=32761 --one-file-system . /home/ Xfer PIDs are now 1574 Got remote protocol 29 Negotiated protocol version 28 Checksum caching enabled (checksumSeed = 32761) Xfer PIDs are now 1574,1575 [ skipped 1189 lines ] Done: 511 files, 425024623 bytes - Please report this upstream. If you need more information I'll try to do my best to hlep you debugging this bug. Vladislav Kurz -- System Information: Debian Release: 4.0 APT prefers stable APT policy: (500, 'stable'), (60, 'testing'), (30, 'unstable'), (1, 'experimental') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.18-6-686-bigmem Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) Versions of packages backuppc depends on: ii adduser 3.102 Add and remove users and groups ii apache2 2.2.9-7 Apache HTTP Server metapackage ii apache2-mpm-prefork [httpd] 2.2.9-7 Apache HTTP Server - traditional n ii bzip21.0.3-6 high-quality block-sorting file co ii debconf [debconf-2.0]1.5.11etch2 Debian configuration management sy ii dpkg 1.14.20 Debian package management system ii libarchive-zip-perl 1.16-1 Module for manipulation of ZIP arc ii libcompress-zlib-perl2.011-1 Perl module for creation and manip ii perl [libdigest-md5-perl]5.10.0-11 Larry Wall's Practical Extraction ii perl-suid5.10.0-11 Runs setuid Perl scripts ii samba-common 2:3.0.31-1 Samba common files used by both th ii smbclient2:3.0.31-1 a LanManager-like simple client fo ii tar 1.16-2etch1 GNU tar ii thttpd [httpd] 2.23beta1-5 tiny/turbo/throttling HTTP server ii wwwconfig-common 0.0.48 Debian web auto configuration Versions of packages backuppc recommends: ii exim4 4.63-17metapackage to ease exim MTA (v4) ii exim4-daemon-light [mail- 4.63-17lightweight exim MTA (v4) daemon ii libfile-rsyncp-perl 0.68-1.1+b1A perl based implementation of an ii openssh-client [ssh-clien 1:4.3p2-9etch3 Secure shell client, an rlogin/rsh ii rsync 2.6.9-2etch2 fast remote file copy program (lik -- debconf information: * backuppc/restart-webserver: true * backuppc/configuration-note: * backuppc/reconfigure-webserver: apache2 * backuppc/add-lines: true -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#499115: fix the postinst script
Hello, I noticed the same problem, fortunately before reboot, so I ran lilo manually. My /etc/kernel-img.conf has do_bootloader = yes. I compared postints scripts for kernel 2.6.18 and 2.6.24 and the important thing is at line 38: my $loader = lilo; # lilo, silo, quik, palo, vmelilo, nettrom, etc. In 2.6.18 there is hardcoded default for lilo, while in 2.6.24 there is no default at all: my $loader = ; # lilo, silo, quik, palo, vmelilo, nettrom, etc. When I filled in lilo and run dpkg-reconfigure for 2.6.24 kernel it did run lilo as expected. Please fix the postinst script. -- Regards Vladislav Kurz -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#493573: apache2: Restart and reload does not work
Hi, I was on computerless holiday so I could not follow the bug reports and do any debugging but it seems that upgrading apache2, php5, mysql-common and their dependencies to current testing solved the problem. Thanks for all help. I think this bug report may be closed, with notice to do an upgrade. -- Regards Vladislav Kurz -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#493573: apache2: Restart and reload does not work
Hello, Which processes are still running? The one running as root or those running as www-data or both? Both of them. One as root and several itch children running as www-data. You can also try (as root) lsof -i -P|egrep TCP.*:80 Result: apache2 11032 root3u IPv6 3029567 TCP *:80 (LISTEN) So it is apache. -- Regards Vladislav Kurz -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#493573: apache2: Restart and reload does not work
Hi, we did some more testing and googling and foud thet this issue is discussed on apache-dev mailing list. They mention that the problem is related to proxy setting, and yes, we use mod_proxy too. There are some patches too. http://www.gossamer-threads.com/lists/apache/dev/355044?page=last We did strace, the last line is: futex(0x4447a700, FUTEX_WAIT, 2, NULL if you want I can send the whole strace -- Regards Vladislav Kurz -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#493573: apache2: Restart and reload does not work
Package: apache2.2-common Version: 2.2.9-6 Severity: important After upgrade to lenny apache started to fail after logrotate. I found that after reload or restart it was still running, listening on network socket but not answering reqests. The only way was to kill it with kill -9. Log for reload says just: [notice] Graceful restart requested, doing restart Log for restart says this: [error] child process 27290 still did not exit, sending a SIGKILL [error] child process 27291 still did not exit, sending a SIGKILL [error] child process 27292 still did not exit, sending a SIGKILL [error] child process 27293 still did not exit, sending a SIGKILL [error] child process 27294 still did not exit, sending a SIGKILL (the above lines were repeated 4 times) [notice] caught SIGTERM, shutting down After writing the notice about restart or shutdown, the old apache process was still running, but not processing requests. New apache process could not be started because ports were occupied: (98)Address already in use: make_sock: could not bind to address [::]:80 (98)Address already in use: make_sock: could not bind to address 0.0.0.0:80 no listening sockets available, shutting down Unable to open logs failed! I couldnt find any more info in logs. If you point me how to get more debug info I'l provide it. Regards Vladislav Kurz -- Package-specific info: List of enabled modules from 'apache2 -M': actions alias auth_basic authn_file authz_default authz_groupfile authz_host authz_user autoindex cgi deflate dir env expires ext_filter imagemap include mime_magic mime negotiation php5 proxy_connect proxy_ftp proxy_http proxy rewrite setenvif ssl status suexec userdir vhost_alias -- System Information: Debian Release: 4.0 APT prefers stable APT policy: (500, 'stable'), (60, 'testing'), (30, 'unstable'), (1, 'experimental') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.18-6-686-bigmem Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) Versions of packages apache2 depends on: ii apache2-mpm-prefork 2.2.9-6Apache HTTP Server - traditional n apache2 recommends no packages. Versions of packages apache2.2-common depends on: ii apache2-utils 2.2.9-5 utility programs for webservers ii libapr1 1.2.7-8.2The Apache Portable Runtime Librar ii libaprutil1 1.2.12+dfsg-7The Apache Portable Runtime Utilit ii libc6 2.7-10 GNU C Library: Shared libraries ii libmagic1 4.17-5etch3 File type determination library us ii libssl0.9.8 0.9.8g-10SSL shared libraries ii lsb-base3.1-23.2etch1Linux Standard Base 3.1 init scrip ii mime-support3.39-1 MIME files 'mime.types' 'mailcap ii net-tools 1.60-17 The NET-3 networking toolkit ii perl5.10.0-11Larry Wall's Practical Extraction ii procps 1:3.2.7-3/proc file system utilities ii zlib1g 1:1.2.3.3.dfsg-5 compression library - runtime -- no debconf information -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#488934: licq: Please fix stable
Package: licq Version: 1.3.4-2 Followup-For: Bug #488934 Hello, this bug should be reopened, because bug 47 fixes only testnig and not stable. I think the severity of this bug is high enough to be fixed in proposed-updates and in the next point release of Etch. -- System Information: Debian Release: 4.0 APT prefers stable APT policy: (500, 'stable') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.18-6-p4 Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) Versions of packages licq depends on: ii libc6 2.3.6.ds1-13etch5 GNU C Library: Shared libraries ii libgcc11:4.1.1-21GCC support library ii libgpg-error0 1.4-1 library for common error values an ii libgpgme11 1.1.2-5 GPGME - GnuPG Made Easy ii libssl0.9.80.9.8c-4etch3 SSL shared libraries ii libstdc++6 4.1.1-21 The GNU Standard C++ Library v3 ii licq-plugin-kde [licq- 1.3.4-2 graphical user interface plug-in f Versions of packages licq recommends: ii sox 12.17.9-1 A universal sound sample translato -- no debconf information -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#395355: Diff applies cleanly on etch
Hello again, I have applied the patch on spampd 2.30-16, and it runs for two weeks on production server (200 msg per day), without problems. There might be problem on systems which needed the 55-workaround-for-syslog-regression.dpatch, because my patch also does some logging, and does not use the workaround. Anyway I tried it for a short time with debugging on, and it worked fine. I think my patch is ready for sending upstream, and if you add the syslog workaround (if it is still needed at all) then it may be ready for release. -- Regards Vladislav Kurz -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#408536: ipmievd daemon does not work
Hello, all I have the same problem. When I run ipmievd open daemon it des not print anything, exits with 0 code, but this is in syslog: Feb 21 10:06:38 gate ipmievd: Reading sensors... Feb 21 10:06:38 gate ipmievd: Unable to send command: Invalid argument Feb 21 10:06:38 gate ipmievd: Get Device ID command failed Feb 21 10:06:38 gate ipmievd: Unable to open SDR for reading Feb 21 10:06:38 gate ipmievd: Unable to send command: Invalid argument Feb 21 10:06:38 gate ipmievd: Get BMC Global Enables command failed Feb 21 10:06:38 gate ipmievd: Could not enable event message buffer Feb 21 10:06:38 gate ipmievd: Error setting up Event Interface open If i run ipmievd sel daemon it again des not print anything, exits with 0 code, but forks a background process taht reports this in syslog: Feb 21 11:38:20 gate ipmievd: Reading sensors... Feb 21 11:38:20 gate ipmievd: Unable to send command: Invalid argument Feb 21 11:38:20 gate ipmievd: Get Device ID command failed Feb 21 11:38:20 gate ipmievd: Unable to open SDR for reading Feb 21 11:38:20 gate ipmievd: Unable to send command: Invalid argument Feb 21 11:38:20 gate ipmievd: Get SEL Info command failed Feb 21 11:38:20 gate ipmievd: Waiting for events... Feb 21 11:38:20 gate ipmievd: Unable to send command: Invalid argument Feb 21 11:38:20 gate ipmievd: Get SEL Info command failed Feb 21 11:38:30 gate ipmievd: Unable to send command: Invalid argument Feb 21 11:38:30 gate ipmievd: Get SEL Info command failed Feb 21 11:38:40 gate ipmievd: Unable to send command: Invalid argument Feb 21 11:38:40 gate ipmievd: Get SEL Info command failed ... and so on untill killed It works for me only in ipmievd sel nodaemon mode. ii ipmitool 1.8.8-2 -- Regards Vladislav Kurz -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#395355: [Fwd: Re: Bug#395355: Breaks LMTP DATA reply for multiple recipients]
Hello and good luck in 2007
I wanted to prepare a test box for you, that would not be a problem, but I
could not leave it inside our network, and I don't have a separate network
segment where I could allow you to play with root. Anyway I could prepare a
vmware-player image if it helps debugging.
In the meantime I have prepared a patch for the bug. Currently it is for
version 2.20-9 (debian stable). It count positive responses for each RCPT
command, and then after DATA it reads the same amount of responses. Moreover
I had to fix part of the server code which parses HELO/EHLO/LHLO command. It
was broken and based the decision on the argument instead of command.
I will try to port the bugfix to version 2.30-16. I'm not sure if it will not
break other patches added for debian package. Now I'm testing the patch on a
server where a breakage should not be disaster.
--
Regards
Vladislav Kurz
--- /usr/sbin/spampd.orig 2005-03-21 23:20:05.0 +0100
+++ /usr/sbin/spampd.new 2007-01-25 17:49:31.922377552 +0100
@@ -164,14 +164,18 @@
return 0 unless defined($_ = $self-_getline);
s/[\r\n]*$//;
$self-{state} = $_;
- if (s/^.?he?lo\s+//i) { # mp: find helo|ehlo|lhlo
- # mp: determine protocol (for future use)
- if ( /^L/i ) {
-$self-{proto} = lmtp;
- } elsif ( /^E/i ) {
- $self-{proto} = esmtp;
- } else {
- $self-{proto} = smtp; }
+ if (s/^helo\s+//i) {
+ $self-{proto} = smtp;
+ s/\s*$//;
+ s/\s+/ /g;
+ $self-{helo} = $_;
+ } elsif (s/^ehlo\s+//i) {
+ $self-{proto} = esmtp;
+ s/\s*$//;
+ s/\s+/ /g;
+ $self-{helo} = $_;
+ } elsif (s/^lhlo\s+//i) {
+ $self-{proto} = lmtp;
s/\s*$//;
s/\s+/ /g;
$self-{helo} = $_;
@@ -591,6 +595,7 @@
sub process_request {
my $self = shift;
my $msg;
+ my $rcpt_ok;
eval {
@@ -687,6 +692,24 @@
$self-log(2, Destination response indicates error after DATA command); }
}
+ # patch for LMTP - multiple responses after . after DATA, done by Vladislav Kurz
+ # we have to count sucessful RCPT commands and then read the same amount of responses
+ if ( $smtp_server-{proto} eq 'lmtp' ) {
+ if ( $smtp_server-{state} =~ /^rset/i ) { $rcpt_ok=0; }
+ if ( $smtp_server-{state} =~ /^mail/i ) { $rcpt_ok=0; }
+ if ( $smtp_server-{state} =~ /^rcpt/i and $destresp =~ /^25/ ) { $rcpt_ok++; }
+ if ( $smtp_server-{state} eq '.' ) {
+ while ( --$rcpt_ok ) {
+$destresp = $client-hear;
+$smtp_server-ok($destresp)
+or die Error in server-ok(client-hear): $!;
+if ( $self-{spampd}-{debug} ) {
+$self-log(2, Destination response: ' . $destresp . ');
+}
+ }
+ }
+ }
+
# restart the timeout alarm
alarm($timeout);
Bug#395355: [Fwd: Re: Bug#395355: Breaks LMTP DATA reply for multiple recipients]
On Friday 10 November 2006 22:55, Maxim Paperno wrote: Hi guys, I'd love to see a log of an LMTP transaction that does work for multiple recipients, including the original line endings (LF/CR or whatever). Not sure how hard that would be to procure. Then I'd like to see the mail log with LMTP failing and --debug turned on in spampd. I'm only partly versed in strace results, but any insight into what is going on will be helpful. (sorry cr/lf is lost but anyway) The transcript of telnet session directly to cyrus is here: $ telnet localhost lmtp Trying 127.0.0.1... Connected to localhost. Escape character is '^]'. 220 hub.xxx.net LMTP Cyrus v2.1.18-IPv6-Debian-2.1.18-1+sarge2 ready LHLO test 250-hub.xxx.net 250-8BITMIME 250-ENHANCEDSTATUSCODES 250-PIPELINING 250-SIZE 250-AUTH EXTERNAL 250 IGNOREQUOTA MAIL FROM:[EMAIL PROTECTED] 250 2.1.0 ok RCPT TO:[EMAIL PROTECTED] 250 2.1.5 ok RCPT TO:[EMAIL PROTECTED] 250 2.1.5 ok DATA 354 go ahead Subject: test test email . 250 2.1.5 Ok 250 2.1.5 Ok QUIT 221 2.0.0 bye Connection closed by foreign host. Transcript of telnet session to spampd which forwards to cyrus: $ telnet localhost spamd Trying 127.0.0.1... Connected to localhost. Escape character is '^]'. 220 hub..net LMTP Cyrus v2.1.18-IPv6-Debian-2.1.18-1+sarge2 ready LHLO test 250-hub.xxx.net 250-8BITMIME 250-ENHANCEDSTATUSCODES 250-PIPELINING 250-SIZE 250-AUTH EXTERNAL 250 IGNOREQUOTA MAIL FROM:[EMAIL PROTECTED] 250 2.1.0 ok RCPT TO:[EMAIL PROTECTED] 250 2.1.5 ok RCPT TO:[EMAIL PROTECTED] 250 2.1.5 ok DATA 354 go ahead Subject: test test email . 250 2.1.5 Ok QUIT 250 2.1.5 Ok QUIT 221 2.0.0 bye QUIT Connection closed by foreign host. -- Regards Vladislav Kurz -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#395355: Breaks LMTP DATA reply for multiple recipients
Hello, I tried spampd_2.30-14_all.deb and it is broken as well. It shows the same behavior. However I found a small bug in init.d script. Init script uses lsb function log_daemon_msg which is not in /lib/lsb/init-functions (at least in stable). I changed it to log_begin_msg and it started to work. I don't know if the funcion is available in testing or not, so you should either fix init.d script, or use verioned dependency on lsb. -- Regards Vladislav Kurz -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#395355: spampd: Breaks LMTP DATA reply for multiple recipients
Package: spampd Version: 2.20-9 Severity: important I have spampd in the following config: exim 4.50-8sarge2 as MTA, local delivery is done by LMTP to spampd, which in turn forwards local delivery to cyrus 2.1.18-1+sarge2. It seems to work fine, as long as there is only one recipient in each message. If there are multiple recipients, LMTP server is supposed to confirm delivery to every mailbox, so after the final . in DATA command there should be as many replies as there were successfull RCPTs (see RFC 2033, section 4.2). I debugged with tcpdump and cyrus correctly sent multiple 250 Ok lines, but spampd forwarded only one of them to exim. Thus exim was waiting for more replies, cyrus was waiting for QUIT, and spampd just timed out after 6 minutes producing this error: WARNING!! Error in process_request eval block: Child server process timed out! Consequences are, that even thou cyrus delivered the mail to all recipients, exim thought it was delivered only to one of them, so it kept retrying until all of them succeeded, producing lots of duplicates. Also other mail was delayed because exim waits for some time before retrying delivery for the same domain. Cyrus recognizes duplicates and discards them, but that may not be the case for other MDA. A workaround is to set max_rcpt = 1 in the SMTP/LMTP transport, so messages are delivered to only one RCPT at a time. However this causes spampd to analyze the same message multiple times, thus wasting CPU power. I hope this info would help you to find the bug and fix it. Thanks Vladki -- System Information: Debian Release: 3.1 Architecture: i386 (i686) Kernel: Linux 2.4.27-3-686 Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) Versions of packages spampd depends on: ii adduser3.63 Add and remove users and groups ii coreutils 5.2.1-2 The GNU core utilities ii dpkg 1.10.28 Package maintenance system for Deb ii libnet-server-perl 0.87-3sarge1 An extensible, general perl server ii perl 5.8.4-8sarge5 Larry Wall's Practical Extraction ii spamassassin 3.0.3-2sarge1 Perl-based spam filter using text -- no debconf information -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#338870: udev: Does not load modules for some USB devices
Package: udev Version: 0.074-2 Severity: important I have upgraded udev and purged the hotplug package as advised in the postinst script. Unfortunately I don't know the previous version of udev I had but I think it was 0.06x because it required kernel = 2.6.12. I use custom built kernel which differs from distribution 2.6.12-6-686 only in changed CPU type (P4) and enabled cx88 (tv tuner) as module. Everything works fine except that module for my USB cable modem (usbnet) does not load automatically (as was the case for hotplug). I have to load it manually (add it to /etc/modules). On the other hand module for my USB mouse (usbhid) is loaded on boot or when I plug it in. I wish I could try more USB devices but I don't have any at the moment. Here is what is added to /dev/hotplug.log when I plug in the cable modem: HOTPLUG_TIME='Sun Nov 13 13:52:19 CET 2005' SUBSYSTEM=usb OLDPWD=/ DEVPATH=/devices/pci:00/:00:03.0/usb1/1-1 ACTION=add UDEV_LOG=3 UDEVD_EVENT=1 PHYSDEVDRIVER=usb PHYSDEVBUS=usb SEQNUM=1044 HOTPLUG_TIME='Sun Nov 13 13:52:19 CET 2005' SUBSYSTEM=usb OLDPWD=/ DEVPATH=/devices/pci:00/:00:03.0/usb1/1-1/1-1:1.0 ACTION=add MODALIAS=usb:v07B2p5100d0101dc02dsc00dp00ic*isc*ip* UDEV_LOG=3 UDEVD_EVENT=1 DEVICE=/proc/bus/usb/001/002 PRODUCT=7b2/5100/101 TYPE=2/0/0 PHYSDEVBUS=usb SEQNUM=1045 HOTPLUG_TIME='Sun Nov 13 13:52:19 CET 2005' SUBSYSTEM=usb OLDPWD=/ DEVPATH=/devices/pci:00/:00:03.0/usb1/1-1/1-1:1.1 ACTION=add MODALIAS=usb:v07B2p5100d0101dc02dsc00dp00ic*isc*ip* UDEV_LOG=3 UDEVD_EVENT=1 DEVICE=/proc/bus/usb/001/002 PRODUCT=7b2/5100/101 TYPE=2/0/0 PHYSDEVBUS=usb SEQNUM=1046 The following appears in hotplug.log after modprobe usbnet: HOTPLUG_TIME='Sun Nov 13 13:53:12 CET 2005' SUBSYSTEM=module OLDPWD=/ DEVPATH=/module/usbnet ACTION=add UDEV_LOG=3 UDEVD_EVENT=1 SEQNUM=1047 HOTPLUG_TIME='Sun Nov 13 13:53:12 CET 2005' SUBSYSTEM=drivers OLDPWD=/ DEVPATH=/bus/usb/drivers/usbnet ACTION=add UDEV_LOG=3 UDEVD_EVENT=1 SEQNUM=1048 HOTPLUG_TIME='Sun Nov 13 13:53:12 CET 2005' PHYSDEVPATH=/devices/pci:00/:00:03.0/usb1/1-1/1-1:1.0 SUBSYSTEM=net OLDPWD=/ DEVPATH=/class/net/eth2 ACTION=add UDEV_LOG=3 UDEVD_EVENT=1 PHYSDEVDRIVER=usbnet INTERFACE=eth2 PHYSDEVBUS=usb SEQNUM=1049 This is the lsusb identification of my USB devices: Bus 002 Device 002: ID 046d:c016 Logitech, Inc. Optical Mouse Bus 001 Device 003: ID 07b2:5100 Motorola BCS, Inc. -- Package-specific info: -- /etc/udev/rules.d/: /etc/udev/rules.d/: celkem 0 lrwxrwxrwx 1 root root 19 2005-05-24 23:29 cd-aliases.rules - ../cd-aliases.rules lrwxrwxrwx 1 root root 13 2005-05-24 23:29 udev.rules - ../udev.rules lrwxrwxrwx 1 root root 19 2005-09-18 18:30 z20_persistent.rules - ../persistent.rules lrwxrwxrwx 1 root root 12 2005-09-18 18:30 z50_run.rules - ../run.rules lrwxrwxrwx 1 root root 16 2005-11-13 10:38 z55_hotplug.rules - ../hotplug.rules lrwxrwxrwx 1 root root 19 2005-09-18 18:30 z60_alsa-utils.rules - ../alsa-utils.rules lrwxrwxrwx 1 root root 17 2005-09-18 18:30 z60_usbmount.rules - ../usbmount.rules lrwxrwxrwx 1 root root 17 2005-09-18 18:30 z70_hotplugd.rules - ../hotplugd.rules lrwxrwxrwx 1 root root 20 2005-05-24 23:29 020_permissions.rules - ../permissions.rules lrwxrwxrwx 1 root root 19 2005-10-31 23:28 025_libgphoto2.rules - ../libgphoto2.rules lrwxrwxrwx 1 root root 16 2005-10-11 19:51 025_libsane.rules - ../libsane.rules lrwxrwxrwx 1 root root 12 2005-10-31 23:28 050_hal-plugdev.rules - ../hal.rules -- /sys/: /sys/block/hda/dev /sys/block/hda/hda1/dev /sys/block/hda/hda2/dev /sys/block/hda/hda3/dev /sys/block/hdb/dev /sys/block/ram0/dev /sys/block/ram1/dev /sys/block/ram10/dev /sys/block/ram11/dev /sys/block/ram12/dev /sys/block/ram13/dev /sys/block/ram14/dev /sys/block/ram15/dev /sys/block/ram2/dev /sys/block/ram3/dev /sys/block/ram4/dev /sys/block/ram5/dev /sys/block/ram6/dev /sys/block/ram7/dev /sys/block/ram8/dev /sys/block/ram9/dev /sys/class/input/event0/dev /sys/class/input/event1/dev /sys/class/input/event2/dev /sys/class/input/event3/dev /sys/class/input/event4/dev /sys/class/input/mice/dev /sys/class/input/mouse0/dev /sys/class/input/mouse1/dev /sys/class/misc/agpgart/dev /sys/class/misc/hpet/dev /sys/class/misc/psaux/dev /sys/class/misc/rtc/dev /sys/class/sound/adsp/dev /sys/class/sound/audio/dev /sys/class/sound/controlC0/dev /sys/class/sound/dsp/dev /sys/class/sound/mixer/dev /sys/class/sound/pcmC0D0c/dev /sys/class/sound/pcmC0D0p/dev /sys/class/sound/pcmC0D1c/dev /sys/class/sound/timer/dev /sys/class/video4linux/radio0/dev /sys/class/video4linux/vbi0/dev /sys/class/video4linux/video0/dev -- Kernel configuration: -- System Information: Debian Release: testing/unstable APT prefers testing APT policy: (500, 'testing') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.12 Locale: LANG=cs_CZ, LC_CTYPE=cs_CZ (charmap=ISO-8859-2) Versions of packages udev depends on: ii initscripts 2.86.ds1-4 Standard scripts needed for
Bug#298725: mount -t cifs exposes password in /etc/mtab
Package: mount Version: 2.12-10 Severity: important When mounting a cifs share using command like this: mount -t cifs -o username=user,password=pass //server/share /mnt/share mount writes all the options, including password into /etc/mtab! This file is readable to everyone and so are the passwords. Any user can write mount or cat /etc/mtab to get them. Passwords are not shown in /proc/mounts. Also I have found out that this happens only if /sbin/mount.cifs (from package smbfs) is not available. I wonder why it works this way. I would expect one of these behaviors: 1. mount -t cifs should fail if /sbin/mount.cifs doesn't exist 2. mount -t cifs should do the job correctly without /sbin/mount.cifs (thus rendering mount.cifs obsolete) However current sitution is that users without mount.cifs (smbfs) installed are exposing their passwords in /etc/mtab, while those who installed smbfs are safe. -- System Information: Debian Release: 3.1 APT prefers testing APT policy: (500, 'testing') Architecture: i386 (i686) Kernel: Linux 2.6.8-2-686-smp Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) Versions of packages mount depends on: ii libc6 2.3.2.ds1-20 GNU C Library: Shared libraries an -- no debconf information -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
