Processed: tagging 196590
Processing commands for [EMAIL PROTECTED]: # Automatically generated email from bts, devscripts version 2.8.14 tags 196590 wontfix help Bug#196590: stable is missing several security updates Tags were: woody security Tags added: wontfix, help End of message, stopping processing here. Please contact me if you need assistance. Debian bug tracking system administrator (administrator, Debian Bugs database) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#305971: f2c also broken on Woody i386 after security upgrade
Package: f2c Version: 20010821-3.2 Followup-For: Bug #305971 The version of f2c now in Woody ie. 3.0r6, segmentation faults on startup on i386 as well with the same strace as quoted for m68k. The latest security patch seems to have broken the executable completely. I'm guessing this would have to be fixed via security.debian.org since woody is now closed for updates. Regards Jonathan Quick -- System Information Debian Release: 3.0 Architecture: i386 Kernel: Linux phlye 2.4.18-1-386 #1 Wed Apr 14 17:34:59 UTC 2004 i686 Locale: LANG=C, LC_CTYPE=C Versions of packages f2c depends on: ii libc6 2.2.5-11.8 GNU C Library: Shared libraries an -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Processed: adding etch to the list of affect distributions
Processing commands for [EMAIL PROTECTED]: package imagemagick Ignoring bugs not assigned to: imagemagick tags 214623 etch Bug#214623: Non-free logo included in main Tags were: sarge-ignore sid sarge woody Tags added: etch quit Stopping processing here. Please contact me if you need assistance. Debian bug tracking system administrator (administrator, Debian Bugs database) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#214623: marked as done (Non-free logo included in main)
This is a followup for : http://bugs.debian.org/214623 The last step of the fix have been unaswered for a year : On Fri, Apr 30, 2004 at 07:03:06AM -0700, Debian Bug Tracking System wrote: Debian's imagemagick package includes the ImageMagick logo, which is apparently not DFSG free. There are a number of files in the package which contain the logo or some part of it. In /usr/share/doc/imagemagick/Copyright.txt.gz, the following appears: 8) The ImageMagick logo is copyright Pineapple USA Inc. It is freely distributable, however, modifications to the logo are not permitted. [...] imagemagick (5:6.0.0.7-2) unstable; urgency=low . * Remove ImageMagick logo image from magick.c. * Remove ImageMagick logo files. closes: #214623 While you've removed the offending files from the binary packages, you're still distributing non-free material in the source package. The only way to fully address this bug is by removing the images from the .orig.tar.gz, eg. by creating an imagemagick_6.0.0.7.dfsg.1.orig.tar.gz (cf. the recent xfree upload). Do you disagree (then tag wontfix) or was it lost ? Regards Alban -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#314534: my solution
I have test this solution : - add a user lists-archives with home directory in /var/lib/lists-archives and password disabled - add user lists-archives in the group list - in /etc/alias delete this line : lists-archives: |/usr/bin/procmail /etc/lists-archives/procmailrc - in /var/lib/lists-archives add a symlink to the procmailrc file : ln -s /etc/lists-archives/procmailrc .procmailrc - change owner of unfilteredmbox to lists-archives for me, it's work fine. -- Thomas Clavier http://www.tcweb.org Lille Sans Fil http://www.lillesansfil.org +33 (0)6 20 81 81 30 -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#312024: marked as done (proguard: ftbfs [sparc] cannot stat `./lib/proguard.jar': No such file or directory)
Your message dated Fri, 17 Jun 2005 09:47:19 -0400 with message-id [EMAIL PROTECTED] and subject line Bug#312024: fixed in proguard 3.2-3 has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what I am talking about this indicates a serious mail system misconfiguration somewhere. Please contact me immediately.) Debian bug tracking system administrator (administrator, Debian Bugs database) -- Received: (at submit) by bugs.debian.org; 4 Jun 2005 22:52:24 + From [EMAIL PROTECTED] Sat Jun 04 15:52:24 2005 Return-path: [EMAIL PROTECTED] Received: from blars.org (renig.nat.blars.org) [64.81.35.59] by spohr.debian.org with esmtp (Exim 3.35 1 (Debian)) id 1DehVA-0003ks-00; Sat, 04 Jun 2005 15:52:24 -0700 Received: from renig.nat.blars.org (plergb.nat.blars.org [172.16.1.1]) by renig.nat.blars.org (8.12.3/8.12.3/Debian-7.1) with ESMTP id j54MqMvQ010254 (version=TLSv1/SSLv3 cipher=EDH-RSA-DES-CBC3-SHA bits=168 verify=NO); Sat, 4 Jun 2005 15:52:22 -0700 Received: (from [EMAIL PROTECTED]) by renig.nat.blars.org (8.12.3/8.12.3/Debian-7.1) id j54MqMTA010252; Sat, 4 Jun 2005 15:52:22 -0700 Message-Id: [EMAIL PROTECTED] From: Blars Blarson [EMAIL PROTECTED] To: Debian Bug Tracking System [EMAIL PROTECTED] Subject: proguard: ftbfs [sparc] cannot stat `./lib/proguard.jar': No such file or directory X-Mailer: reportbug 1.50 Date: Sat, 04 Jun 2005 15:52:22 -0700 Delivered-To: [EMAIL PROTECTED] X-Spam-Checker-Version: SpamAssassin 2.60-bugs.debian.org_2005_01_02 (1.212-2003-09-23-exp) on spohr.debian.org X-Spam-Status: No, hits=-8.0 required=4.0 tests=BAYES_00,HAS_PACKAGE autolearn=no version=2.60-bugs.debian.org_2005_01_02 X-Spam-Level: Package: proguard Version: 3.2-1 Severity: serious Tags: sid Justification: fails to build from source proguard fails to build from source on sparc and all other buildds, duplicated on sparc pbuilder. dh_install -pproguard cp: cannot stat `./lib/proguard.jar': No such file or directory dh_install: command returned error code 256 make: *** [binary-install/proguard] Error 1 --- Received: (at 312024-close) by bugs.debian.org; 17 Jun 2005 13:52:46 + From [EMAIL PROTECTED] Fri Jun 17 06:52:46 2005 Return-path: [EMAIL PROTECTED] Received: from newraff.debian.org [208.185.25.31] (mail) by spohr.debian.org with esmtp (Exim 3.35 1 (Debian)) id 1DjHH4-0002Jf-00; Fri, 17 Jun 2005 06:52:46 -0700 Received: from katie by newraff.debian.org with local (Exim 3.35 1 (Debian)) id 1DjHBn-0001cZ-00; Fri, 17 Jun 2005 09:47:19 -0400 From: Sam Clegg [EMAIL PROTECTED] To: [EMAIL PROTECTED] X-Katie: $Revision: 1.56 $ Subject: Bug#312024: fixed in proguard 3.2-3 Message-Id: [EMAIL PROTECTED] Sender: Archive Administrator [EMAIL PROTECTED] Date: Fri, 17 Jun 2005 09:47:19 -0400 Delivered-To: [EMAIL PROTECTED] X-Spam-Checker-Version: SpamAssassin 2.60-bugs.debian.org_2005_01_02 (1.212-2003-09-23-exp) on spohr.debian.org X-Spam-Status: No, hits=-6.0 required=4.0 tests=BAYES_00,HAS_BUG_NUMBER autolearn=no version=2.60-bugs.debian.org_2005_01_02 X-Spam-Level: Source: proguard Source-Version: 3.2-3 We believe that the bug you reported is fixed in the latest version of proguard, which is due to be installed in the Debian FTP archive: proguard_3.2-3.diff.gz to pool/main/p/proguard/proguard_3.2-3.diff.gz proguard_3.2-3.dsc to pool/main/p/proguard/proguard_3.2-3.dsc proguard_3.2-3_i386.deb to pool/main/p/proguard/proguard_3.2-3_i386.deb A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to [EMAIL PROTECTED], and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Sam Clegg [EMAIL PROTECTED] (supplier of updated proguard package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing [EMAIL PROTECTED]) -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.7 Date: Fri, 17 Jun 2005 14:25:24 +0100 Source: proguard Binary: proguard Architecture: source i386 Version: 3.2-3 Distribution: unstable Urgency: low Maintainer: Sam Clegg [EMAIL PROTECTED] Changed-By: Sam Clegg [EMAIL PROTECTED] Description: proguard - java class file shrinker, optimizer, and obfuscator Closes: 312024 Changes: proguard (3.2-3) unstable; urgency=low . * debian/rules: fix FTBFS (Closes: #312024) * debian/control: fix FTBFS by added Build-Depend on fastjar - Thanks to Regis Boudin
Bug#207932: Bug #207932 - emacs21: Includes non-free documents
Followup for : http://bugs.debian.org/207932 Thanks you for helping debian tracks licencing issues. Though this bug looks like an extension of the GFDL issue to some non documentation texts. This have not been agreed upon by debian-legal (in fact as far as i know licences and such documents have been explicitely exclude from the need to be DSFG free ). Again thank you for taking part in this time consuming task. Please ask on debian-legal when you encounter new types of documents not being explicitely stated in previous consensus (even if closely related). By the way it is not a bad thing to track those not agreed upon documents licence issues. Though please keep the talks about them on debian-legal. Maintainers do another jobs which is fixing bugs and making debian easier to use. Most of them don't want to hours looking after advanced legal issues. That s why debian-legal exists :) By the way even if a consensus is reached on debian-legal it would be helpfull to make a separate listing of those documents and discuss it with the release team and debian-devel. But please not the other way around. I would call it hijacking debian-legal. I guess this bug can be closed as out of topic for the bts. Regards Alban -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#314628: libmagick6: Missing dependency (libltdl3) on amd64 platform
Package: libmagick6 Version: 6:6.2.3.0-2 Severity: grave Justification: renders package unusable the package missing a dependency on libltdl3 on the amd64 platform. i installed the lib manually to get around this bug. -- System Information: Debian Release: testing/unstable APT prefers unstable APT policy: (500, 'unstable') Architecture: amd64 (x86_64) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.11-9-amd64-k8 Locale: LANG=de_DE, LC_CTYPE=de_DE (charmap=ISO-8859-1) (ignored: LC_ALL set to de_DE) Versions of packages libmagick6 depends on: ii dpkg 1.13.9 Package maintenance system for Deb ii libbz2-1.0 1.0.2-7 high-quality block-sorting file co ii libc62.3.2.ds1-22GNU C Library: Shared libraries an ii libdps1 4.3.0.dfsg.1-14 Display PostScript (DPS) client li ii libfreetype6 2.1.10-1FreeType 2 font engine, shared lib ii libice6 4.3.0.dfsg.1-14 Inter-Client Exchange library ii libjasper-1.701-11.701.0-2 The JasPer JPEG-2000 runtime libra ii libjpeg626b-10 The Independent JPEG Group's JPEG ii liblcms1 1.13-1 Color management library ii libpng12-0 1.2.8rel-1 PNG library - runtime ii libsm6 4.3.0.dfsg.1-14 X Window System Session Management ii libtiff4 3.7.2-3 Tag Image File Format (TIFF) libra ii libx11-6 4.3.0.dfsg.1-14 X Window System protocol client li ii libxext6 4.3.0.dfsg.1-14 X Window System miscellaneous exte ii libxml2 2.6.16-7GNOME XML library ii libxt6 4.3.0.dfsg.1-14 X Toolkit Intrinsics ii xlibs4.3.0.dfsg.1-14 X Keyboard Extension (XKB) configu ii zlib1g 1:1.2.2-4 compression library - runtime libmagick6 recommends no packages. Versions of packages libmagick6 is related to: ii reportbug 3.13 reports bugs in the Debian distrib pn totem-gstreamer none (no description available) -- no debconf information -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#312106: preconfiguration bug break woody to sarge upgrade
Salut Bill, When trying to upgrade from woody, nut-cgi .config file fails with: Preconfiguring packages ... nut-cgi failed to preconfigure, with exit status 10 (Reading database ... 65666 files and directories currently installed.) Preparing to replace nut-cgi 0.45.5-rel-1 (using .../nut-cgi_2.0.1-3_i386.deb) ... dpkg: error processing /var/cache/apt/archives/nut-cgi_2.0.1-3_i386.deb (--unpack): subprocess pre-installation script returned error exit status 10 Errors were encountered while processing: /var/cache/apt/archives/nut-cgi_2.0.1-3_i386.deb E: Sub-process /usr/bin/dpkg returned an error code (1) See bug #312065. First, thanks for your report and sorry not to have been able to answer before... I think I've found the problem (typo error on db_get and db_fset, calling nut instead of nut-cgi) or at least one problem! But as I'm not a debconf guru, I still have some doubt! The problem seems to occur only when the user reply No, which abort the install/upgrade process with an exit 1... Note that I've based this upon nut ones that exists for a long time (more than 3 years) which produce the same error under the same condition. Any advices welcomed. Arnaud -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#314639: proguard: FTBFS: jar: Command not found
Package: proguard Version: 3.2-2 Severity: serious Tags: patch When building 'proguard' in a clean chroot on amd64/unstable, I get the following error: debian/rules binary mkdir -p build mkdir -p lib jikes-classpath +E +Z0 -d build/proguard -sourcepath src src/proguard/ProGuard.java jikes-classpath +E +Z0 -d build/retrace -sourcepath src src/proguard/retrace/ReTrace.java jikes-classpath +E +Z0 -d build/proguardgui -cp build/proguard -sourcepath src src/proguard/gui/ProGuardGUI.java jikes-classpath +E +Z0 -cp /usr/lib/java/ant-1.6.jar -d build -sourcepath src src/proguard/gui/ProGuardGUI.java jar cfm lib/proguard.jar proguard.manifest -C build proguard make: jar: Command not found make: *** [binary-indep] Error 127 Regards Andreas Jochens diff -urN ../tmp-orig/proguard-3.2/debian/control ./debian/control --- ../tmp-orig/proguard-3.2/debian/control 2005-06-17 17:24:44.0 +0200 +++ ./debian/control2005-06-17 17:24:30.0 +0200 @@ -2,7 +2,7 @@ Section: devel Priority: optional Maintainer: Sam Clegg [EMAIL PROTECTED] -Build-Depends: debhelper (= 4.1.0), cdbs, jikes-classpath, libant1.6-java +Build-Depends: debhelper (= 4.1.0), cdbs, kaffe, jikes-classpath, libant1.6-java Standards-Version: 3.6.1 Package: proguard -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#314639: proguard: FTBFS: jar: Command not found
Andreas Jochens wrote: Package: proguard Version: 3.2-2 Severity: serious Tags: patch When building 'proguard' in a clean chroot on amd64/unstable, I get the following error: debian/rules binary mkdir -p build mkdir -p lib jikes-classpath +E +Z0 -d build/proguard -sourcepath src src/proguard/ProGuard.java jikes-classpath +E +Z0 -d build/retrace -sourcepath src src/proguard/retrace/ReTrace.java jikes-classpath +E +Z0 -d build/proguardgui -cp build/proguard -sourcepath src src/proguard/gui/ProGuardGUI.java jikes-classpath +E +Z0 -cp /usr/lib/java/ant-1.6.jar -d build -sourcepath src src/proguard/gui/ProGuardGUI.java jar cfm lib/proguard.jar proguard.manifest -C build proguard make: jar: Command not found make: *** [binary-indep] Error 127 Thanks for the patch. I just uploaded a new version that build-depends on fastjar. However I was assuming that fastjar provided the 'jar' command. Looks like i'll still need anther upload that uses the fastjar command explicitly. cheers, sam -- sam clegg :: [EMAIL PROTECTED] :: http://superduper.net/ :: PGP : D91EE369 $superduper: .signature,v 1.14 2005/01/19 13:21:14 sam Exp $ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#314645: /usr/sbin/sshd: time delay of password check proves account existence to attackers
Package: ssh Version: 1:3.8.1p1-8.sarge.4 Severity: critical File: /usr/sbin/sshd Tags: security Justification: root security hole Due to the delay that is caused by password checking, once ssh determines that the login attempt is for a valid account, attackers can statistically prove the existence of accounts on a ssh-accessible server remotely. This cuts down greatly on the difficulty of a brute-force password-guessing attack. Since user accounts often use worse patterns than (hopefully) root does, it doesn't take much to pick user accounts that are other than standard accounts and attempt to break in. I'd strongly suggest either a randomized delay on responses for login attempts on non-existent accounts, or a consistent delay between existing and non-existent accounts, or some other method of hiding this information. This attack is already in the wild, as shown in logs: Jun 16 08:30:14 localhost sshd[30986]: Illegal user jacob from 211.196.3.60 Jun 16 08:30:16 localhost sshd[30988]: Illegal user michael from 211.196.3.60 Jun 16 08:30:18 localhost sshd[30990]: Illegal user joshua from 211.196.3.60 Jun 16 08:30:20 localhost sshd[30992]: Illegal user matthew from 211.196.3.60 Jun 16 08:30:22 localhost sshd[30994]: Illegal user andrew from 211.196.3.60 Jun 16 08:30:22 localhost sshd[30996]: Illegal user jacob from 211.196.3.60 Jun 16 08:30:24 localhost sshd[30998]: Illegal user joseph from 211.196.3.60 Jun 16 08:30:24 localhost sshd[31000]: Illegal user michael from 211.196.3.60 Jun 16 08:30:26 localhost sshd[31002]: Illegal user ethan from 211.196.3.60 Jun 16 08:30:26 localhost sshd[31004]: Illegal user joshua from 211.196.3.60 Jun 16 08:30:28 localhost sshd[31006]: Illegal user daniel from 211.196.3.60 Jun 16 08:30:28 localhost sshd[31008]: Illegal user matthew from 211.196.3.60 Jun 16 08:30:30 localhost sshd[31010]: Illegal user christopher from 211.196.3.60 -- System Information: Debian Release: 3.1 APT prefers testing APT policy: (650, 'testing'), (600, 'unstable') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.4.27-20041103 Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) Versions of packages ssh depends on: ii adduser 3.63 Add and remove users and groups ii debconf 1.4.51 Debian configuration management sy ii dpkg1.10.28 Package maintenance system for Deb ii libc6 2.3.2.ds1-22 GNU C Library: Shared libraries an ii libpam-modules 0.76-22 Pluggable Authentication Modules f ii libpam-runtime 0.76-22 Runtime support for the PAM librar ii libpam0g0.76-22 Pluggable Authentication Modules l ii libssl0.9.7 0.9.7g-1 SSL shared libraries ii libwrap07.6.dbs-8Wietse Venema's TCP wrappers libra ii zlib1g 1:1.2.2-4compression library - runtime -- debconf information: ssh/insecure_rshd: ssh/privsep_ask: true ssh/user_environment_tell: * ssh/forward_warning: * ssh/insecure_telnetd: ssh/new_config: true * ssh/use_old_init_script: true ssh/SUID_client: true ssh/disable_cr_auth: false * ssh/privsep_tell: ssh/ssh2_keys_merged: ssh/protocol2_only: true ssh/encrypted_host_key_but_no_keygen: ssh/run_sshd: true -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#312670: marked as done (mtr: debian/copyright doesn't list where the upstream sources were obtained)
Your message dated Fri, 17 Jun 2005 09:27:15 -0700 with message-id [EMAIL PROTECTED] and subject line fixed in 0.69-2 has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what I am talking about this indicates a serious mail system misconfiguration somewhere. Please contact me immediately.) Debian bug tracking system administrator (administrator, Debian Bugs database) -- Received: (at submit) by bugs.debian.org; 9 Jun 2005 13:21:02 + From [EMAIL PROTECTED] Thu Jun 09 06:21:02 2005 Return-path: [EMAIL PROTECTED] Received: from relay2.uni-heidelberg.de [129.206.210.211] by spohr.debian.org with esmtp (Exim 3.35 1 (Debian)) id 1DgMxx-0002TU-00; Thu, 09 Jun 2005 06:21:02 -0700 Received: from ix.urz.uni-heidelberg.de (popix.urz.uni-heidelberg.de [129.206.119.235]) by relay2.uni-heidelberg.de (8.12.10/8.12.10) with ESMTP id j59DO2tL015380 for [EMAIL PROTECTED]; Thu, 9 Jun 2005 15:24:02 +0200 (MET DST) Received: from extmail.urz.uni-heidelberg.de (extmail.urz.uni-heidelberg.de [129.206.100.140]) by ix.urz.uni-heidelberg.de (8.8.8/8.8.8) with ESMTP id PAA4563054 for [EMAIL PROTECTED]; Thu, 9 Jun 2005 15:20:58 +0200 Received: from live (p54A706B9.dip0.t-ipconnect.de [84.167.6.185]) (authenticated bits=0) by extmail.urz.uni-heidelberg.de (8.13.4/8.13.1) with ESMTP id j59DL6RV029429 (version=TLSv1/SSLv3 cipher=AES256-SHA bits=256 verify=NO) for [EMAIL PROTECTED]; Thu, 9 Jun 2005 15:21:07 +0200 Received: from fernst by live with local (Exim 4.50) id 1DgMxt-00040f-2Z for [EMAIL PROTECTED]; Thu, 09 Jun 2005 15:20:57 +0200 Date: Thu, 9 Jun 2005 15:20:54 +0200 From: Florian Ernst [EMAIL PROTECTED] To: Debian Bug Tracking System [EMAIL PROTECTED] Subject: mtr: debian/copyright doesn't list where the upstream sources were obtained Message-ID: [EMAIL PROTECTED] Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol=application/pgp-signature; boundary=n8g4imXOkfNTN/H1 Content-Disposition: inline X-Reportbug-Version: 3.8 User-Agent: Mutt/1.5.9i Delivered-To: [EMAIL PROTECTED] X-Spam-Checker-Version: SpamAssassin 2.60-bugs.debian.org_2005_01_02 (1.212-2003-09-23-exp) on spohr.debian.org X-Spam-Status: No, hits=-8.0 required=4.0 tests=BAYES_00,HAS_PACKAGE autolearn=no version=2.60-bugs.debian.org_2005_01_02 X-Spam-Level: --n8g4imXOkfNTN/H1 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Package: mtr Version: 0.69-1 Severity: serious Justification: Policy 12.5 Copyright information Hello Robert, your newly created debian/copright violates a must directive of the Debian Policy, please see http://www.debian.org/doc/debian-policy/ch-docs#s-copyrightfile: | In addition, the copyright file must say where the upstream sources | (if any) were obtained. Cheers, Flo --n8g4imXOkfNTN/H1 Content-Type: application/pgp-signature; name=signature.asc Content-Description: Digital signature Content-Disposition: inline -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.1 (GNU/Linux) iD8DBQFCqEI2s3U+TVFLPnwRAo7OAKCLTO0SQEmjz6M+h5bKmylrFFB5QwCeOewm 4yA0bKdqxqeVAXgn2gAt5/8= =Jgm9 -END PGP SIGNATURE- --n8g4imXOkfNTN/H1-- --- Received: (at 312670-done) by bugs.debian.org; 17 Jun 2005 16:27:20 + From [EMAIL PROTECTED] Fri Jun 17 09:27:20 2005 Return-path: [EMAIL PROTECTED] Received: from 206-124-146-40.blarg.net (frantica.lly.org) [206.124.146.40] by spohr.debian.org with esmtp (Exim 3.35 1 (Debian)) id 1DjJge-0008Bl-00; Fri, 17 Jun 2005 09:27:20 -0700 Received: by frantica.lly.org (Postfix, from userid 1000) id 9CA7451B2A6; Fri, 17 Jun 2005 09:27:15 -0700 (PDT) Date: Fri, 17 Jun 2005 09:27:15 -0700 From: Robert Woodcock [EMAIL PROTECTED] To: [EMAIL PROTECTED] Subject: fixed in 0.69-2 Message-ID: [EMAIL PROTECTED] Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.5.6+20040907i Delivered-To: [EMAIL PROTECTED] X-Spam-Checker-Version: SpamAssassin 2.60-bugs.debian.org_2005_01_02 (1.212-2003-09-23-exp) on spohr.debian.org X-Spam-Status: No, hits=-3.0 required=4.0 tests=BAYES_00 autolearn=no version=2.60-bugs.debian.org_2005_01_02 X-Spam-Level: The new copyright file in 0.69-2 in unstable addresses this. -- Robert Woodcock - [EMAIL PROTECTED] perl -e '$a-=($_%4-2)*4/$_++while++$_2e6;print$a\n' -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Processed: severity fix
Processing commands for [EMAIL PROTECTED]: severity 314447 critical Bug#314447: spamassassin: CAN-2005-1266 Denial of Service Vulnerability in SpamAssassin 3.0.1-3.0.3, fixed in 3.0.4 Severity set to `critical'. thanks Stopping processing here. Please contact me if you need assistance. Debian bug tracking system administrator (administrator, Debian Bugs database) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#225539: python-pcgi: removal is an option
Package: python-pcgi Followup-For: Bug #225539 I've investigated this package when looking at RC bugs before Sarge release. The upstream of this software has changed drastically and unless this is heavily used by someone it might be better to start packaging new upstream from scratch. -- System Information: Debian Release: testing/unstable APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.12-rc3-20050506-mrb319 Locale: LANG=uk_UA.KOI8-U, LC_CTYPE=en_US.ISO8859-15 (charmap=ISO-8859-15) Versions of packages python-pcgi is related to: ii reportbug 3.13 reports bugs in the Debian distrib pn totem-gstreamer none (no description available)
Processed: Re: libstdc++6-4.0-dev will not install MD5Sum mismatch
Processing commands for [EMAIL PROTECTED]: reassign 314568 ftp.debian.org Bug#314568: libstdc++6-4.0-dev will not install MD5Sum mismatch Bug reassigned from package `libstdc++6-4.0-dev' to `ftp.debian.org'. severity 314568 important Bug#314568: libstdc++6-4.0-dev will not install MD5Sum mismatch Severity set to `important'. thanks Stopping processing here. Please contact me if you need assistance. Debian bug tracking system administrator (administrator, Debian Bugs database) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#314568: libstdc++6-4.0-dev will not install MD5Sum mismatch
reassign 314568 ftp.debian.org severity 314568 important thanks not a package problem. Please try to get the package from another mirror. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#314645: /usr/sbin/sshd: time delay of password check proves account existence to attackers
On Fri, 2005-06-17 at 12:51 -0400, Justin Pryzby wrote: On Fri, Jun 17, 2005 at 09:14:04AM -0700, Greg Webster wrote: Package: ssh Version: 1:3.8.1p1-8.sarge.4 Severity: critical File: /usr/sbin/sshd Tags: security Justification: root security hole Due to the delay that is caused by password checking, once ssh determines that the login attempt is for a valid account, attackers can statistically prove the existence of accounts on a ssh-accessible server remotely. This cuts down greatly on the difficulty of a brute-force password-guessing attack. Since user accounts often use worse patterns than (hopefully) root does, it doesn't take much to pick user accounts that are other than standard accounts and attempt to break in. You're talking about microsecond delays, right? Nope...human-discernable delays. Give it a shot on your system. I can easily determine just by mentally counting, if an account is valid. I'd strongly suggest either a randomized delay on responses for login attempts on non-existent accounts, or a consistent delay between existing and non-existent accounts, or some other method of hiding this information. Didn't this get implemented? I recall hearing about this some time ago (~18 months?), probably on one of the Debian lists. Don't think so. I've noted this behaviour on 8 internet-facing servers now, with fully updated ssh packages (the system I sent this from was my own workstation, which does have the problem, but is behind a few levels of firewall...I should probably have sent it from one of the affected machines). This attack is already in the wild, as shown in logs: This doesn't seem to indicate any particular attack. I don't know if there's any evidence that its doing anything other than sshing to $user:[EMAIL PROTECTED] (Though there is no evidence to support my claim, either. It would be interesting to force the use of password authentication, rather than challenge-response, to see what password is being used. Takers?). Definitely would be a good test...I'd like to see someone validate what I've been seeing. Thanks, Greg -- Greg Webster - System Administrator - intouch.ca gastips.com epredictor.net -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#314645: /usr/sbin/sshd: time delay of password check proves account existence to attackers
On Fri, Jun 17, 2005 at 09:14:04AM -0700, Greg Webster wrote: Package: ssh Version: 1:3.8.1p1-8.sarge.4 Severity: critical File: /usr/sbin/sshd Tags: security Justification: root security hole Due to the delay that is caused by password checking, once ssh determines that the login attempt is for a valid account, attackers can statistically prove the existence of accounts on a ssh-accessible server remotely. This cuts down greatly on the difficulty of a brute-force password-guessing attack. Since user accounts often use worse patterns than (hopefully) root does, it doesn't take much to pick user accounts that are other than standard accounts and attempt to break in. You're talking about microsecond delays, right? I'd strongly suggest either a randomized delay on responses for login attempts on non-existent accounts, or a consistent delay between existing and non-existent accounts, or some other method of hiding this information. Didn't this get implemented? I recall hearing about this some time ago (~18 months?), probably on one of the Debian lists. This attack is already in the wild, as shown in logs: This doesn't seem to indicate any particular attack. I don't know if there's any evidence that its doing anything other than sshing to $user:[EMAIL PROTECTED] (Though there is no evidence to support my claim, either. It would be interesting to force the use of password authentication, rather than challenge-response, to see what password is being used. Takers?). Jun 16 08:30:14 localhost sshd[30986]: Illegal user jacob from 211.196.3.60 Jun 16 08:30:16 localhost sshd[30988]: Illegal user michael from 211.196.3.60 ... Justin -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#314645: /usr/sbin/sshd: time delay of password check proves account existence to attackers
On Fri, Jun 17, 2005 at 09:59:45AM -0700, Greg Webster wrote: On Fri, 2005-06-17 at 12:51 -0400, Justin Pryzby wrote: On Fri, Jun 17, 2005 at 09:14:04AM -0700, Greg Webster wrote: Package: ssh Version: 1:3.8.1p1-8.sarge.4 Severity: critical File: /usr/sbin/sshd Tags: security Justification: root security hole Due to the delay that is caused by password checking, once ssh determines that the login attempt is for a valid account, attackers can statistically prove the existence of accounts on a ssh-accessible server remotely. This cuts down greatly on the difficulty of a brute-force password-guessing attack. Since user accounts often use worse patterns than (hopefully) root does, it doesn't take much to pick user accounts that are other than standard accounts and attempt to break in. You're talking about microsecond delays, right? Nope...human-discernable delays. Give it a shot on your system. I can easily determine just by mentally counting, if an account is valid. I tested it before I sent the email. ssh [EMAIL PROTECTED] (a normal account, but one without RSA access from my usual account); there is about a .1 second delay before I see the Password: prompt, and about a 2 second delay between password prompts when I feed the incorrect password. ssh [EMAIL PROTECTED] (an invalid account); also about a .1 second delay before I see the Password: prompt, and another 2 second delay between prompts when I feed a password (to the invalid account). I'd strongly suggest either a randomized delay on responses for login attempts on non-existent accounts, or a consistent delay between existing and non-existent accounts, or some other method of hiding this information. Didn't this get implemented? I recall hearing about this some time ago (~18 months?), probably on one of the Debian lists. Don't think so. I've noted this behaviour on 8 internet-facing servers now, with fully updated ssh packages (the system I sent this from was my own workstation, which does have the problem, but is behind a few levels of firewall...I should probably have sent it from one of the affected machines). This attack is already in the wild, as shown in logs: This doesn't seem to indicate any particular attack. I don't know if there's any evidence that its doing anything other than sshing to $user:[EMAIL PROTECTED] (Though there is no evidence to support my claim, either. It would be interesting to force the use of password authentication, rather than challenge-response, to see what password is being used. Takers?). Definitely would be a good test...I'd like to see someone validate what I've been seeing. I see lots of the same logfile entries; but I have doubts that it is looking for a valid account, and not just looking for an *opened* account. Justin -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#314653: mh-e: FTBFS: Missing Build-Depends on 'emacs21'
Package: mh-e Version: 7.84-1 Severity: serious Tags: patch When building 'mh-e' in a clean 'unstable' chroot, I get the following error: echo ;; (require 'mh-e-autoloads) mh-e-autoloads.el echo ;; mh-e-autoloads.el echo ;;; Code: mh-e-autoloads.el emacs -batch --no-site-file --multibyte --eval (setq load-path (cons \.\ load-path)) -l autoload \ --eval '(setq generated-autoload-file (expand-file-name mh-e-autoloads.el))' \ --eval '(setq make-backup-files nil)' \ -f batch-update-autoloads . /bin/sh: emacs: command not found make[1]: *** [mh-e-autoloads.el] Error 127 make[1]: Leaving directory `/mh-e-7.84/src' make: *** [build-stamp] Error 2 Please add the missing Build-Depends on 'emacs21' to debian/control. Regards Andreas Jochens diff -urN ../tmp-orig/mh-e-7.84/debian/control ./debian/control --- ../tmp-orig/mh-e-7.84/debian/control2003-11-19 05:46:11.0 +0100 +++ ./debian/control2005-06-17 19:22:28.0 +0200 @@ -2,7 +2,7 @@ Section: mail Priority: extra Maintainer: Peter S Galbraith [EMAIL PROTECTED] -Build-Depends-Indep: debhelper ( 3.0.0), texinfo +Build-Depends-Indep: debhelper, texinfo, emacs21 Standards-Version: 3.6.1 Package: mh-e -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#314654: qtorrent: FTBFS: Missing Build-Depends on 'python-dev'
Package: qtorrent Version: 2.9.1-1 Severity: serious Tags: patch When building 'qtorrent' in a clean 'unstable' chroot, I get the following error: dh_strip dh_compress dh_fixperms dh_python dh_python: Python is not installed, aborting. (Probably forgot to Build-Depend on python.) make: *** [binary-indep] Error 1 Please add the missing Build-Depends on 'python-dev' to debian/control. Regards Andreas Jochens diff -urN ../tmp-orig/qtorrent-2.9.1/debian/control ./debian/control --- ../tmp-orig/qtorrent-2.9.1/debian/control 2005-06-17 19:19:27.0 +0200 +++ ./debian/control2005-06-17 19:19:23.0 +0200 @@ -3,7 +3,7 @@ Priority: optional Maintainer: Lawrence Williams [EMAIL PROTECTED] Uploaders: Wesley J. Landaker [EMAIL PROTECTED] -Build-Depends-Indep: debhelper (= 4.2), python2.4, python2.4-dev, python2.4-qt3, pyqt-tools +Build-Depends-Indep: debhelper (= 4.2), python-dev, python2.4, python2.4-dev, python2.4-qt3, pyqt-tools Standards-Version: 3.6.1 Package: qtorrent -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#314645: /usr/sbin/sshd: time delay of password check proves account existence to attackers
On Fri, 2005-06-17 at 13:13 -0400, Justin Pryzby wrote:
Definitely would be a good test...I'd like to see someone validate what
I've been seeing.
I see lots of the same logfile entries; but I have doubts that it is
looking for a valid account, and not just looking for an *opened*
account.
The problem is, I've seen that valid accounts (like my own 'greg') get
tested a lot more often than the others.
May 31 09:14:52 herring sshd[14612]: Failed password for www-data from
65.254.38.138 port 59932 ssh2
May 31 09:14:57 herring sshd[14630]: Failed password for nobody from
65.254.38.138 port 60209 ssh2
May 31 09:15:00 herring sshd[14638]: Failed password for root from
65.254.38.138 port 60357 ssh2
May 31 09:15:02 herring sshd[14648]: Failed password for backup from
65.254.38.138 port 60542 ssh2
May 31 09:15:10 herring sshd[14713]: Failed password for adam from
65.254.38.138 port 60993 ssh2
May 31 09:15:13 herring sshd[14724]: Failed password for richard from
65.254.38.138 port 32972 ssh2
May 31 09:15:17 herring sshd[14734]: Failed password for michael from
65.254.38.138 port 33226 ssh2
May 31 09:15:19 herring sshd[14741]: Failed password for john from
65.254.38.138 port 33392 ssh2
May 31 09:15:24 herring sshd[14772]: Failed password for news from
65.254.38.138 port 33652 ssh2
May 31 09:15:27 herring sshd[14796]: Failed password for games from
65.254.38.138 port 33895 ssh2
May 31 09:15:32 herring sshd[14811]: Failed password for mail from
65.254.38.138 port 34172 ssh2
May 31 09:15:43 herring sshd[14846]: Failed password for root from
65.254.38.138 port 34879 ssh2
May 31 09:15:46 herring sshd[14864]: Failed password for steven from
65.254.38.138 port 35133 ssh2
May 31 09:15:51 herring sshd[14890]: Failed password for robert from
65.254.38.138 port 35470 ssh2
May 31 09:15:55 herring sshd[14901]: Failed password for richard from
65.254.38.138 port 35653 ssh2
May 31 09:15:59 herring sshd[14910]: Failed password for michael from
65.254.38.138 port 36019 ssh2
May 31 09:16:03 herring sshd[14920]: Failed password for mysql from
65.254.38.138 port 36276 ssh2
May 31 09:16:07 herring sshd[14942]: Failed password for operator from
65.254.38.138 port 36531 ssh2
May 31 09:16:14 herring sshd[14978]: Failed password for sshd from
65.254.38.138 port 37063 ssh2
May 31 09:16:20 herring sshd[14999]: Failed password for root from
65.254.38.138 port 37419 ssh2
May 31 09:16:25 herring sshd[15011]: Failed password for michael from
65.254.38.138 port 37737 ssh2
May 31 09:16:30 herring sshd[15043]: Failed password for irc from
65.254.38.138 port 38102 ssh2
May 31 09:17:15 herring sshd[15251]: Failed password for news from
65.254.38.138 port 41293 ssh2
May 31 09:17:17 herring sshd[15263]: Failed password for lp from
65.254.38.138 port 41500 ssh2
May 31 09:17:20 herring sshd[15267]: Failed password for mail from
65.254.38.138 port 41714 ssh2
May 31 09:17:23 herring sshd[15289]: Failed password for bin from
65.254.38.138 port 41961 ssh2
May 31 09:18:02 herring sshd[15470]: Failed password for root from
65.254.38.138 port 44776 ssh2
May 31 09:48:21 herring sshd[19583]: Failed password for root from
72.29.78.199 port 35131 ssh2
May 31 09:48:24 herring sshd[19586]: Failed password for root from
72.29.78.199 port 35306 ssh2
May 31 09:48:27 herring sshd[19597]: Failed password for root from
72.29.78.199 port 35512 ssh2
Here's a sample:
1 alfred
1 bob
1 greg
1 jim
1 juliab
1 michelle
1 sarah
1 tim
2 alexander
2 ian
2 joseph
2 mark
2 stephanie
2 sys
3 bin
3 bruce
3 dave
3 james
3 lp
3 miniato
3 postfix
3 postgres
6 games
6 robert
6 sshd
8 steven
9 backup
9 www-data
10 adam
10 irc
11 john
11 news
11 operator
12 mail
12 nobody
12 richard
16 michael
23 mysql
352 root
Created with: zgrep 'Failed password' auth.log*gz |awk '{print $9}' |
sort| uniq -c |sort -k1 -n|less
Now, none of the people with 1 attempt are valid, but all of those above
10 are. None of the users have a valid shell to access the server via
ssh, yet certain accounts get many more attempts (ignoring 'root'
entirely, since it'd be a known target).
Cheers,
Greg
--
Greg Webster - System Administrator
-
intouch.ca gastips.com epredictor.net
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#306280: marked as done (FTBFS: libtool: compile: cannot determine name of library object from `')
Your message dated Fri, 17 Jun 2005 19:32:53 +0200 with message-id [EMAIL PROTECTED] and subject line FTBFS: libtool: compile: cannot determine name of library object from `' has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what I am talking about this indicates a serious mail system misconfiguration somewhere. Please contact me immediately.) Debian bug tracking system administrator (administrator, Debian Bugs database) -- Received: (at submit) by bugs.debian.org; 25 Apr 2005 13:58:12 + From [EMAIL PROTECTED] Mon Apr 25 06:58:12 2005 Return-path: [EMAIL PROTECTED] Received: from public.id2-vpn.continvity.gns.novell.com (emea3-mh.id2.novell.com) [195.33.99.129] by spohr.debian.org with esmtp (Exim 3.35 1 (Debian)) id 1DQ46F-0002Ei-00; Mon, 25 Apr 2005 06:58:12 -0700 Received: from localhost (l4-client.id2.novell.com [149.44.117.251]) by emea3-mh.id2.novell.com; Mon, 25 Apr 2005 14:57:31 +0100 Received: by localhost (Postfix, from userid 1000) id 265A4356DD; Mon, 25 Apr 2005 15:52:11 +0200 (CEST) Date: Mon, 25 Apr 2005 15:52:11 +0200 From: Rene Engelhard [EMAIL PROTECTED] To: Debian Bug Tracking System [EMAIL PROTECTED] Subject: FTBFS: libtool: compile: cannot determine name of library object from `' Message-ID: [EMAIL PROTECTED] Mime-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Disposition: inline Content-Transfer-Encoding: 8bit X-Reportbug-Version: 3.8 X-PGP-Key: 248AEB73 X-PGP-Fingerprint: 41FA F208 28D4 7CA5 19BB 7AD9 F859 90B0 248A EB73 User-Agent: Mutt/1.5.6+20040907i Delivered-To: [EMAIL PROTECTED] X-Spam-Checker-Version: SpamAssassin 2.60-bugs.debian.org_2005_01_02 (1.212-2003-09-23-exp) on spohr.debian.org X-Spam-Status: No, hits=-8.0 required=4.0 tests=BAYES_00,HAS_PACKAGE autolearn=no version=2.60-bugs.debian.org_2005_01_02 X-Spam-Level: Package: gcc-4.0 Severity: serious Tags: experimental [...] /bin/sh ./libtool --mode=compile /home/rene/gcc-4.0-4.0.0/build/gcc/xgcc -B/home/rene/gcc-4.0-4.0.0/build/gcc/ -B/usr/powerpc-linux/bin/ -B/usr/powerpc-linux/lib/ -isystem /usr/powerpc-linux/include -isystem /usr/powerpc-linux/sys-include -c -I. -I/home/rene/gcc-4.0-4.0.0/src/libobjc -O2 -g -O2 -W -Wall -Wwrite-strings -Wstrict-prototypes -DHAVE_GTHR_DEFAULT -DIN_GCC -DIN_TARGET_LIBS -fno-strict-aliasing -I/home/rene/gcc-4.0-4.0.0/src/libobjc/objc -I/home/rene/gcc-4.0-4.0.0/src/libobjc/../gcc -I/home/rene/gcc-4.0-4.0.0/src/libobjc/../gcc/config -I../../gcc -I/home/rene/gcc-4.0-4.0.0/src/libobjc/../include /home/rene/gcc-4.0-4.0.0/src/libobjc/thr-objc.c libtool: compile: cannot determine name of library object from `' make[4]: *** [thr-objc.lo] Fehler 1 make[4]: Verlasse Verzeichnis /home/rene/gcc-4.0-4.0.0/build/powerpc-linux/libobjc make[3]: *** [all-target-libobjc] Fehler 2 make[3]: Verlasse Verzeichnis /home/rene/gcc-4.0-4.0.0/build make[2]: *** [bootstrap] Fehler 2 make[2]: Verlasse Verzeichnis /home/rene/gcc-4.0-4.0.0/build s=`cat status`; rm -f status; test $s -eq 0 make[1]: *** [stamps/05-build-stamp] Fehler 1 make[1]: Verlasse Verzeichnis /home/rene/gcc-4.0-4.0.0 make: *** [stamps/05-build-stamp] Fehler 2 Gre/Regards, Ren -- System Information: Debian Release: 3.1 APT prefers testing APT policy: (990, 'testing'), (500, 'unstable'), (1, 'experimental') Architecture: powerpc (ppc) Kernel: Linux 2.6.11.7 Locale: [EMAIL PROTECTED], [EMAIL PROTECTED] (charmap=ISO-8859-15) --- Received: (at 306280-done) by bugs.debian.org; 17 Jun 2005 17:32:57 + From [EMAIL PROTECTED] Fri Jun 17 10:32:57 2005 Return-path: [EMAIL PROTECTED] Received: from mail.cs.tu-berlin.de [130.149.17.13] (root) by spohr.debian.org with esmtp (Exim 3.35 1 (Debian)) id 1DjKi8-000704-00; Fri, 17 Jun 2005 10:32:56 -0700 Received: from mailhost.cs.tu-berlin.de ([EMAIL PROTECTED] [130.149.17.13]) by mail.cs.tu-berlin.de (8.9.3p2/8.9.3) with ESMTP id TAA01797 for [EMAIL PROTECTED]; Fri, 17 Jun 2005 19:32:54 +0200 (MEST) Received: from localhost (localhost [127.0.0.1]) by mailhost.cs.tu-berlin.de (Postfix) with ESMTP id 2770BF2B9 for [EMAIL PROTECTED]; Fri, 17 Jun 2005 19:32:54 +0200 (MEST) Received: from mailhost.cs.tu-berlin.de ([127.0.0.1]) by localhost (bueno [127.0.0.1]) (amavisd-new, port 10224) with ESMTP id 28294-34 for [EMAIL PROTECTED]; Fri, 17 Jun 2005 19:32:54 +0200 (MEST) 14101 Received: from bolero.cs.tu-berlin.de (bolero.cs.tu-berlin.de [130.149.19.1]) by mailhost.cs.tu-berlin.de (Postfix) with ESMTP for [EMAIL PROTECTED]; Fri, 17 Jun 2005 19:32:53 +0200 (MEST) Received: (from [EMAIL PROTECTED]) by bolero.cs.tu-berlin.de
Bug#314656: nano depends on a library in /usr/lib
Package: nano Version: 1.3.7-2 Severity: serious Package: ncurses Version: 5.4-6 Severity: serious starting with version 1.3.6-0, nano depends on libncursesw5, making nano unusable without having /usr mounted. either nano should be fixed or libncursesw5 be moved to /lib. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#314657: belocs-locales-data: FTBFS: Patch update_CVS.diff does not apply
Package: belocs-locales-data Version: 2.3.4-15 Severity: serious When building 'belocs-locales-data' on amd64/unstable, I get the following error: |--- belocs-locales-data.orig/po/CVS/Entries |+++ belocs-locales-data/po/CVS/Entries -- No file to patch. Skipping patch. 2 out of 2 hunks ignored patching file localedata/locales/pa_IN patching file localedata/locales/sr_CS patching file locale/iso-4217.def patching file localedata/ChangeLog patching file localedata/locales/fa_IR patching file localedata/charmaps/WINDOWS-31J patching file localedata/SUPPORTED patching file po/es.po patching file po/ru.po patching file po/tr.po patching file po/rw.po patching file po/libc.pot patching file localedata/locales/mn_MN Patch update_CVS.diff does not apply (enforce with -f) make: *** [debian/stamp-patched] Error 1 With the attached patch 'belocs-locales-data' can be compiled on amd64 using gcc-4.0. Regards Andreas Jochens -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Processed: (no subject)
Processing commands for [EMAIL PROTECTED]: submitter 279010 Lior Kaplan [EMAIL PROTECTED] Bug#279010: gnome-core: should depends on x-windows-system-core Changed Bug submitter from Lior Kaplan [EMAIL PROTECTED] to Lior Kaplan [EMAIL PROTECTED]. tag 313537 patch Bug#313537: qpopper-drac: Failed to create /var/spool/pop/* with uid **, gid ** Change permissions. There were no tags set. Tags added: patch retitle 245826 t-gnus: please fix lintian errors warnings Bug#245826: t-gnus: please maintain and update the package Changed Bug title. tag 245826 patch Bug#245826: t-gnus: please fix lintian errors warnings There were no tags set. Tags added: patch stop Stopping processing here. Please contact me if you need assistance. Debian bug tracking system administrator (administrator, Debian Bugs database) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#314671: zynaddsubfx: freezes the system if run as root
Package: zynaddsubfx Version: 2.2.1-2 Severity: critical Tags: sarge Hi Eduardo, I can run zynaddsubfx as non-root, but running as root it freezes the system in a way that even running under strace userland tool it isn't generating any output (stdout or files). Note that there's a while(1) inside main() but the machine freezes right after the zynaddsubfx launch, and it doesn't show me the UI, messages in the stdout, nothing. Useful information: - zynaddsubfx is the latest and the depends are updated - kernel is 2.6.11-1-686-smp (acpi=off, it's a acpi buggy ibm netvista) - udev is 0.056-3 Best regards, Gustavo Franco -- [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#314645: /usr/sbin/sshd: time delay of password check proves account existence to attackers
On Fri, 2005-06-17 at 13:46 -0400, Justin Pryzby wrote:
On Fri, Jun 17, 2005 at 10:33:49AM -0700, Greg Webster wrote:
On Fri, 2005-06-17 at 13:13 -0400, Justin Pryzby wrote:
Definitely would be a good test...I'd like to see someone validate what
I've been seeing.
I see lots of the same logfile entries; but I have doubts that it is
looking for a valid account, and not just looking for an *opened*
account.
The problem is, I've seen that valid accounts (like my own 'greg') get
tested a lot more often than the others.
Here's a sample:
1 alfred
1 bob
1 greg
1 jim
1 juliab
1 michelle
1 sarah
1 tim
2 alexander
2 ian
2 joseph
2 mark
2 stephanie
2 sys
3 bin
3 bruce
3 dave
3 james
3 lp
3 miniato
3 postfix
3 postgres
6 games
6 robert
6 sshd
8 steven
9 backup
9 www-data
10 adam
10 irc
11 john
11 news
11 operator
12 mail
12 nobody
12 richard
16 michael
23 mysql
352 root
Created with: zgrep 'Failed password' auth.log*gz |awk '{print $9}' |
sort| uniq -c |sort -k1 -n|less
Makes sense.
Now, none of the people with 1 attempt are valid, but all of those above
10 are. None of the users have a valid shell to access the server via
ssh, yet certain accounts get many more attempts (ignoring 'root'
entirely, since it'd be a known target).
This is admittedly good evidence. I don't think I have access to any
machines with sane-looking usernames, so I can't check for myself.
What about greg, above, which has 1 attempt?
On that server, my username isn't 'greg', it's 'gwebster' :) None of the
first-initial, lant-name accounts appear to be targeted like this.
Cheers,
Greg
--
Greg Webster - System Administrator
-
intouch.ca gastips.com epredictor.net
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#314653: mh-e: FTBFS: Missing Build-Depends on 'emacs21'
Andreas Jochens [EMAIL PROTECTED] wrote: When building 'mh-e' in a clean 'unstable' chroot, I get the following error: echo ;; (require 'mh-e-autoloads) mh-e-autoloads.el echo ;; mh-e-autoloads.el echo ;;; Code: mh-e-autoloads.el emacs -batch --no-site-file --multibyte --eval (setq load-path (cons \.\ load-path)) -l autoload \ --eval '(setq generated-autoload-file (expand-file-name mh-e-autoloads.el))' \ --eval '(setq make-backup-files nil)' \ -f batch-update-autoloads . /bin/sh: emacs: command not found make[1]: *** [mh-e-autoloads.el] Error 127 make[1]: Leaving directory `/mh-e-7.84/src' make: *** [build-stamp] Error 2 Please add the missing Build-Depends on 'emacs21' to debian/control. Thanks. Will do. -Build-Depends-Indep: debhelper ( 3.0.0), texinfo +Build-Depends-Indep: debhelper, texinfo, emacs21 Why remove the version number there? Peter -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#314657: belocs-locales-data: FTBFS: Patch update_CVS.diff does not apply
On Fri, Jun 17, 2005 at 07:42:00PM +0200, Andreas Jochens wrote: Package: belocs-locales-data Version: 2.3.4-15 Severity: serious With the attached patch 'belocs-locales-data' can be compiled on amd64 using gcc-4.0. Patch not attached. Justin -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#314480: dbus-1 does not start because of segmentation fault
On Thu, Jun 16, 2005 at 04:46:26PM +0200, christian dare wrote: Package: dbus-1 Version: 0.23.4-1 Severity: grave Justification: renders package unusable I ve just installed the system from the sarge s cd .( clean disk , no upgrade ) Are you using NIS ? Sjoerd -- Mathematicians are like Frenchmen: whatever you say to them they translate into their own language and forthwith it is something entirely different. -- Johann Wolfgang von Goethe -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Processed: ok
Processing commands for [EMAIL PROTECTED]: reassign 312578 ftp.debian.org Bug#312578: Dummy package should be removed? Bug reassigned from package `raidtools2' to `ftp.debian.org'. retitle 312578 RM: raidtools2 -- obsolete dummy package Bug#312578: Dummy package should be removed? Changed Bug title. severity 312578 normal Bug#312578: RM: raidtools2 -- obsolete dummy package Severity set to `normal'. -- Stopping processing here. Please contact me if you need assistance. Debian bug tracking system administrator (administrator, Debian Bugs database) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#300573: config.sub and config.guess
Hi, I don't have any of the architectures on which it fails, but I think I found one of the reasons of the FTBFS. The config.sub and config.guess files in the libical-0.23 directory are oudated (1999). The attached patch should at least fix the problem seen on the s390 and parisc buildds. Regards, Regis diff -urN sylpheed-claws-vcalendar-plugin-0.9.or/debian/rules sylpheed-claws-vcalendar-plugin-0.9/debian/rules --- sylpheed-claws-vcalendar-plugin-0.9.or/debian/rules 2005-06-17 18:11:23.245955440 +0100 +++ sylpheed-claws-vcalendar-plugin-0.9/debian/rules2005-06-17 18:22:26.390142200 +0100 @@ -54,9 +54,11 @@ -$(MAKE) distclean ifneq $(wildcard /usr/share/misc/config.sub) cp -f /usr/share/misc/config.sub config.sub + cp -f /usr/share/misc/config.sub $(ICAL)/config.sub endif ifneq $(wildcard /usr/share/misc/config.guess) cp -f /usr/share/misc/config.guess config.guess + cp -f /usr/share/misc/config.guess $(ICAL)/config.guess endif dh_clean
Bug#314657: belocs-locales-data: FTBFS: Patch update_CVS.diff does not apply
On Fri, Jun 17, 2005 at 02:34:51PM -0400, Justin Pryzby wrote: On Fri, Jun 17, 2005 at 07:42:00PM +0200, Andreas Jochens wrote: Package: belocs-locales-data Version: 2.3.4-15 Severity: serious With the attached patch 'belocs-locales-data' can be compiled on amd64 using gcc-4.0. Patch not attached. Right, but I can guess what it does look like. Thanks Andreas for your report, a new upload is coming very soon. Denis Justin -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#207932: Statement that all of Debian needs to be Free?
On Fri, Jun 17, 2005 at 06:04:20PM +0200, Dylan Thurston wrote:
I'm surprised that someone thinks that there's any controversy on this
point. As I understand it, the current situation is that, with the
release of sarge, everything in Debian should be DFSG free, including
programs, documentation, and miscellaneous files (as in this case), as
well as everything else, with the sole exception of license files. Is
my summary correct? The maintainer apparently wants a concensus from
debian-legal on this (in a separate message to the bug).
You're correct.
FYI, determining which materials are covered by the DFSG isn't a matter
decided by debian-legal (though I don't object to discussing it here),
but by the Social Contract.
Subject: Bug#207932: Bug #207932 - emacs21: Includes non-free documents
Reply-To: [EMAIL PROTECTED], [EMAIL PROTECTED]
From: [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Cc: debian-legal@lists.debian.org
Followup for :
http://bugs.debian.org/207932
Thanks you for helping debian tracks licencing issues. Though this
bug looks like an extension of the GFDL issue to some non
documentation texts. This have not been agreed upon by
debian-legal (in fact as far as i know licences and such
documents have been explicitely exclude from the need to be DSFG
free ).
As Dylan mentioned above, the only files which are excluded from the
requirement to be Free are (by necessity) license texts. Of the
documents listed in the original bug:
etc/{CENSORSHIP,copying.paper,INTERVIEW,LINUX-GNU,THE-GNU-PROJECT,WHY-FREE}
only copying.paper sounds like a license; the rest are simply documents,
which must be DFSG-free to be in Debian. This is not a matter of
controversy, or even significant disagreement; SC2004-003 made this
explicitly clear. Please remove these non-free documents; the grace
period allowed by SC2004-004 expired with the release of sarge.
--
Glenn Maynard
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#302554: xnap: FTBFS
Package: xnap Followup-For: Bug #302554 Hi, The package does not build because 'unzip' is missing from the Build-Depends. I'm not sure how did you deside on the unzip build dependency. I got unzip installed in my system and I still get the same error as you do. About you patch: There is now such package j2sdk1.4, so you can't build depend on it. Sorry. -- System Information: Debian Release: testing/unstable APT prefers unstable APT policy: (500, 'unstable') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.8-2-686-smp Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Versions of packages xnap is related to: ii reportbug 3.13 reports bugs in the Debian distrib pn totem-gstreamer none (no description available) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#314657: marked as done (belocs-locales-data: FTBFS: Patch update_CVS.diff does not apply)
Your message dated Fri, 17 Jun 2005 16:47:09 -0400 with message-id [EMAIL PROTECTED] and subject line Bug#314657: fixed in belocs-locales-data 2.3.4-16 has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what I am talking about this indicates a serious mail system misconfiguration somewhere. Please contact me immediately.) Debian bug tracking system administrator (administrator, Debian Bugs database) -- Received: (at submit) by bugs.debian.org; 17 Jun 2005 17:42:02 + From [EMAIL PROTECTED] Fri Jun 17 10:42:01 2005 Return-path: [EMAIL PROTECTED] Received: from d027074.adsl.hansenet.de (localhost.localdomain) [80.171.27.74] by spohr.debian.org with esmtp (Exim 3.35 1 (Debian)) id 1DjKqv-0006nB-00; Fri, 17 Jun 2005 10:42:01 -0700 Received: from aj by localhost.localdomain with local (Exim 4.50) id 1DjKqu-0003wf-JC; Fri, 17 Jun 2005 19:42:00 +0200 To: Debian Bug Tracking System [EMAIL PROTECTED] From: Andreas Jochens [EMAIL PROTECTED] Subject: belocs-locales-data: FTBFS: Patch update_CVS.diff does not apply Message-Id: [EMAIL PROTECTED] Date: Fri, 17 Jun 2005 19:42:00 +0200 Delivered-To: [EMAIL PROTECTED] X-Spam-Checker-Version: SpamAssassin 2.60-bugs.debian.org_2005_01_02 (1.212-2003-09-23-exp) on spohr.debian.org X-Spam-Status: No, hits=-8.0 required=4.0 tests=BAYES_00,HAS_PACKAGE autolearn=no version=2.60-bugs.debian.org_2005_01_02 X-Spam-Level: Package: belocs-locales-data Version: 2.3.4-15 Severity: serious When building 'belocs-locales-data' on amd64/unstable, I get the following error: |--- belocs-locales-data.orig/po/CVS/Entries |+++ belocs-locales-data/po/CVS/Entries -- No file to patch. Skipping patch. 2 out of 2 hunks ignored patching file localedata/locales/pa_IN patching file localedata/locales/sr_CS patching file locale/iso-4217.def patching file localedata/ChangeLog patching file localedata/locales/fa_IR patching file localedata/charmaps/WINDOWS-31J patching file localedata/SUPPORTED patching file po/es.po patching file po/ru.po patching file po/tr.po patching file po/rw.po patching file po/libc.pot patching file localedata/locales/mn_MN Patch update_CVS.diff does not apply (enforce with -f) make: *** [debian/stamp-patched] Error 1 With the attached patch 'belocs-locales-data' can be compiled on amd64 using gcc-4.0. Regards Andreas Jochens --- Received: (at 314657-close) by bugs.debian.org; 17 Jun 2005 20:51:42 + From [EMAIL PROTECTED] Fri Jun 17 13:51:42 2005 Return-path: [EMAIL PROTECTED] Received: from newraff.debian.org [208.185.25.31] (mail) by spohr.debian.org with esmtp (Exim 3.35 1 (Debian)) id 1DjNoU-0002l3-00; Fri, 17 Jun 2005 13:51:42 -0700 Received: from katie by newraff.debian.org with local (Exim 3.35 1 (Debian)) id 1DjNk5-0002hT-00; Fri, 17 Jun 2005 16:47:09 -0400 From: Denis Barbier [EMAIL PROTECTED] To: [EMAIL PROTECTED] X-Katie: $Revision: 1.56 $ Subject: Bug#314657: fixed in belocs-locales-data 2.3.4-16 Message-Id: [EMAIL PROTECTED] Sender: Archive Administrator [EMAIL PROTECTED] Date: Fri, 17 Jun 2005 16:47:09 -0400 Delivered-To: [EMAIL PROTECTED] X-Spam-Checker-Version: SpamAssassin 2.60-bugs.debian.org_2005_01_02 (1.212-2003-09-23-exp) on spohr.debian.org X-Spam-Status: No, hits=-6.0 required=4.0 tests=BAYES_00,HAS_BUG_NUMBER autolearn=no version=2.60-bugs.debian.org_2005_01_02 X-Spam-Level: Source: belocs-locales-data Source-Version: 2.3.4-16 We believe that the bug you reported is fixed in the latest version of belocs-locales-data, which is due to be installed in the Debian FTP archive: belocs-locales-data_2.3.4-16.diff.gz to pool/main/b/belocs-locales-data/belocs-locales-data_2.3.4-16.diff.gz belocs-locales-data_2.3.4-16.dsc to pool/main/b/belocs-locales-data/belocs-locales-data_2.3.4-16.dsc belocs-locales-data_2.3.4-16_all.deb to pool/main/b/belocs-locales-data/belocs-locales-data_2.3.4-16_all.deb A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to [EMAIL PROTECTED], and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Denis Barbier [EMAIL PROTECTED] (supplier of updated belocs-locales-data package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing [EMAIL PROTECTED]) -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.7 Date: Fri, 17 Jun 2005 21:28:08 +0200 Source: belocs-locales-data Binary:
Bug#314628: marked as done (libmagick6: Missing dependency (libltdl3) on amd64 platform)
Your message dated Fri, 17 Jun 2005 23:01:35 +0200 with message-id [EMAIL PROTECTED] and subject line Bug #314628 - libmagick6: Missing dependency (libltdl3) on amd64 platform has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what I am talking about this indicates a serious mail system misconfiguration somewhere. Please contact me immediately.) Debian bug tracking system administrator (administrator, Debian Bugs database) -- Received: (at submit) by bugs.debian.org; 17 Jun 2005 14:22:46 + From [EMAIL PROTECTED] Fri Jun 17 07:22:46 2005 Return-path: [EMAIL PROTECTED] Received: from master.debian.org [146.82.138.7] by spohr.debian.org with esmtp (Exim 3.35 1 (Debian)) id 1DjHk6-00060g-00; Fri, 17 Jun 2005 07:22:46 -0700 Received: from p5495bd4b.dip.t-dialin.net (athlon64.bh.local) [84.149.189.75] by master.debian.org with esmtp (Exim 3.35 1 (Debian)) id 1DjHk5-00064z-00; Fri, 17 Jun 2005 09:22:45 -0500 Content-Type: text/plain; charset=us-ascii MIME-Version: 1.0 Content-Transfer-Encoding: 7bit From: Bernd Hanisch [EMAIL PROTECTED] To: Debian Bug Tracking System [EMAIL PROTECTED] Subject: libmagick6: Missing dependency (libltdl3) on amd64 platform X-Mailer: reportbug 3.13 Date: Fri, 17 Jun 2005 16:22:43 +0200 X-Debbugs-Cc: [EMAIL PROTECTED] Message-Id: [EMAIL PROTECTED] Delivered-To: [EMAIL PROTECTED] X-Spam-Checker-Version: SpamAssassin 2.60-bugs.debian.org_2005_01_02 (1.212-2003-09-23-exp) on spohr.debian.org X-Spam-Status: No, hits=-9.0 required=4.0 tests=BAYES_00,HAS_PACKAGE, OUR_MTA_MSGID,X_DEBBUGS_CC autolearn=ham version=2.60-bugs.debian.org_2005_01_02 X-Spam-Level: Package: libmagick6 Version: 6:6.2.3.0-2 Severity: grave Justification: renders package unusable the package missing a dependency on libltdl3 on the amd64 platform. i installed the lib manually to get around this bug. -- System Information: Debian Release: testing/unstable APT prefers unstable APT policy: (500, 'unstable') Architecture: amd64 (x86_64) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.11-9-amd64-k8 Locale: LANG=de_DE, LC_CTYPE=de_DE (charmap=ISO-8859-1) (ignored: LC_ALL set to de_DE) Versions of packages libmagick6 depends on: ii dpkg 1.13.9 Package maintenance system for Deb ii libbz2-1.0 1.0.2-7 high-quality block-sorting file co ii libc62.3.2.ds1-22GNU C Library: Shared libraries an ii libdps1 4.3.0.dfsg.1-14 Display PostScript (DPS) client li ii libfreetype6 2.1.10-1FreeType 2 font engine, shared lib ii libice6 4.3.0.dfsg.1-14 Inter-Client Exchange library ii libjasper-1.701-11.701.0-2 The JasPer JPEG-2000 runtime libra ii libjpeg626b-10 The Independent JPEG Group's JPEG ii liblcms1 1.13-1 Color management library ii libpng12-0 1.2.8rel-1 PNG library - runtime ii libsm6 4.3.0.dfsg.1-14 X Window System Session Management ii libtiff4 3.7.2-3 Tag Image File Format (TIFF) libra ii libx11-6 4.3.0.dfsg.1-14 X Window System protocol client li ii libxext6 4.3.0.dfsg.1-14 X Window System miscellaneous exte ii libxml2 2.6.16-7GNOME XML library ii libxt6 4.3.0.dfsg.1-14 X Toolkit Intrinsics ii xlibs4.3.0.dfsg.1-14 X Keyboard Extension (XKB) configu ii zlib1g 1:1.2.2-4 compression library - runtime libmagick6 recommends no packages. Versions of packages libmagick6 is related to: ii reportbug 3.13 reports bugs in the Debian distrib pn totem-gstreamer none (no description available) -- no debconf information --- Received: (at 314628-done) by bugs.debian.org; 17 Jun 2005 21:01:39 + From [EMAIL PROTECTED] Fri Jun 17 14:01:39 2005 Return-path: [EMAIL PROTECTED] Received: from smtp4.wanadoo.fr [193.252.22.27] by spohr.debian.org with esmtp (Exim 3.35 1 (Debian)) id 1DjNy7-0005WO-00; Fri, 17 Jun 2005 14:01:39 -0700 Received: from me-wanadoo.net (localhost [127.0.0.1]) by mwinf0408.wanadoo.fr (SMTP Server) with ESMTP id AEB071C00179 for [EMAIL PROTECTED]; Fri, 17 Jun 2005 23:01:07 +0200 (CEST) Received: from argos.server.maison (AToulouse-152-1-71-108.w83-200.abo.wanadoo.fr [83.200.171.108]) by mwinf0408.wanadoo.fr (SMTP Server) with ESMTP id 5865B1C0018A for [EMAIL PROTECTED]; Fri, 17 Jun 2005 23:01:07 +0200 (CEST) X-ME-UUID: [EMAIL PROTECTED]
Bug#289856: about wrong license
Hi, This bug will soon be half a year old. Is there a reason why this package hasn't been moved to non-free/contrib yet? Cheers, piem -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Processed: merge to nmu
Processing commands for [EMAIL PROTECTED]: package serpento Ignoring bugs not assigned to: serpento severity 275476 serious Bug#275476: serpento: 0.4.1 NMU diff Severity set to `serious'. merge 275476 257131 Bug#257131: serpento: installation fails if dictd package is present Bug#275476: serpento: 0.4.1 NMU diff Merged 257131 275476. quit Stopping processing here. Please contact me if you need assistance. Debian bug tracking system administrator (administrator, Debian Bugs database) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Processed: tagging 314654
Processing commands for [EMAIL PROTECTED]: # Automatically generated email from bts, devscripts version 2.8.14 tags 314654 sid Bug#314654: qtorrent: FTBFS: Missing Build-Depends on 'python-dev' Tags were: patch Tags added: sid End of message, stopping processing here. Please contact me if you need assistance. Debian bug tracking system administrator (administrator, Debian Bugs database) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Processed: severity of 314447 is important
Processing commands for [EMAIL PROTECTED]: # Automatically generated email from bts, devscripts version 2.8.14 #this does not meet the definition of a critical security hole severity 314447 important Bug#314447: spamassassin: CAN-2005-1266 Denial of Service Vulnerability in SpamAssassin 3.0.1-3.0.3, fixed in 3.0.4 Severity set to `important'. End of message, stopping processing here. Please contact me if you need assistance. Debian bug tracking system administrator (administrator, Debian Bugs database) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#312525: 312525 explaination
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Regis Boudin wrote: Hi, Hello, To fixes are possible. Either making the dlopen against the library soname, 'libxmms.so.1', which is a quick fix (patch attached) but will be broken if the soname changes, but I doubt it will for XMMS. This fix should be sufficient. I imagine that when XMMS does change its soname, the changes will be large enough that we'll have a planned transition. I'll upload the fix this weekend. Thanks for the patch, - -Mike -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.1 (GNU/Linux) iD8DBQFCs0g37ZPKKRJLJvMRAl3jAJ9btw2La7MPIUNqtxbBUrxw4mYjnwCfTAH7 2vYuBUKCflQDy4RWooYn0xs= =34Y2 -END PGP SIGNATURE- -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#314484: marked as done (Error on login: 'The Application gnome-panel has quit unexpectedly')
Your message dated Fri, 17 Jun 2005 18:17:17 -0400 with message-id [EMAIL PROTECTED] and subject line Bug#314484: fixed in gnome-vfs2 2.10.1-5 has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what I am talking about this indicates a serious mail system misconfiguration somewhere. Please contact me immediately.) Debian bug tracking system administrator (administrator, Debian Bugs database) -- Received: (at submit) by bugs.debian.org; 16 Jun 2005 15:05:38 + From [EMAIL PROTECTED] Thu Jun 16 08:05:38 2005 Return-path: [EMAIL PROTECTED] Received: from athene.jamux.com [65.222.215.34] by spohr.debian.org with esmtp (Exim 3.35 1 (Debian)) id 1Divw1-0003Jf-00; Thu, 16 Jun 2005 08:05:38 -0700 Received: from localhost (localhost [127.0.0.1]) by athene.jamux.com (Postfix) with ESMTP id 3D77C3B8F7 for [EMAIL PROTECTED]; Thu, 16 Jun 2005 11:05:36 -0400 (EDT) Received: from athene.jamux.com ([127.0.0.1]) by localhost (athene [127.0.0.1]) (amavisd-new, port 10024) with LMTP id 04533-01 for [EMAIL PROTECTED]; Thu, 16 Jun 2005 11:05:35 -0400 (EDT) Received: by athene.jamux.com (Postfix, from userid 1000) id A3F6D3B8FE; Thu, 16 Jun 2005 11:05:35 -0400 (EDT) From: John A. Martin [EMAIL PROTECTED] To: Debian Bug Tracking System [EMAIL PROTECTED] Subject: Error on login: 'The Application gnome-panel has quit unexpectedly' X-Debbugs-CC: John A. Martin [EMAIL PROTECTED] X-Attribution: jam X-Request-PGP: http://www.tux.org/~jam/jam-gpg-keys.html X-PGP-Fingerprint: 5F05 15CF 05D2 E8D3 E7FA 8C6A 504B EFD5 BFE2 5F2F Date: Thu, 16 Jun 2005 11:05:26 -0400 Message-ID: [EMAIL PROTECTED] MIME-Version: 1.0 Content-Type: multipart/signed; boundary==-=-=; micalg=pgp-sha1; protocol=application/pgp-signature Delivered-To: [EMAIL PROTECTED] X-Spam-Checker-Version: SpamAssassin 2.60-bugs.debian.org_2005_01_02 (1.212-2003-09-23-exp) on spohr.debian.org X-Spam-Status: No, hits=-11.0 required=4.0 tests=BAYES_00,HAS_PACKAGE, X_DEBBUGS_CC autolearn=ham version=2.60-bugs.debian.org_2005_01_02 X-Spam-Level: --=-=-= Content-Transfer-Encoding: quoted-printable Package: gnome-panel Version: 2.10.1-3 Severity: grave Login gets: Error: The Application gnome-panel has quit unexpectedly. Hitting Close on the error window just does the same thing again. Hitting Restart Application gets Error: I've detected a panel already running, and will now exit and another 'Error: The Application gnome-panel has quit unexpectedly.' 'killall gnome-panel' and similar get the same thing. Hitting Inform Developers gets bug-buddy has quit unexpectedly. A panel appears without decorations and is unresponsive. Several applets open windows but are useless. Iconified windows disappear without a trace. There is no menu in response to a right-click on the root window. Sawfish seems to work OK. The Gnome-terminal starts on login and is OK. Nautilus does the same repetition of has quit unexpectedly. Is there a clean way to logout under these conditions? Is there a workaround if a fix is not available soon? =2D- System Information: Debian Release: testing/unstable APT prefers unstable APT policy: (990, 'unstable'), (1, 'experimental') Architecture: i386 (i586) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.4.27-2-k6 Locale: LANG=3DC, LC_CTYPE=3DC (charmap=3DANSI_X3.4-1968) Versions of packages gnome-panel depends on: ii gnome-about 2.10.1-2The GNOME about box ii gnome-control-center 1:2.10.1-3 The GNOME Control Center for G= NOME ii gnome-desktop-data 2.10.1-2Common files for GNOME 2 deskt= op a ii gnome-menus 2.10.1-3an implementation of the freed= eskt ii gnome-panel-data 2.10.1-3common files for GNOME 2 panel ii gnome-session2.10.0-4The GNOME 2 Session Manager ii libart-2.0-2 2.3.17-1Library of functions for 2D gr= aphi ii libatk1.0-0 1.10.1-2The ATK accessibility toolkit ii libbonobo2-0 2.8.1-2 Bonobo CORBA interfaces library ii libbonoboui2-0 2.8.1-2 The Bonobo UI library ii libc62.3.2.ds1-22GNU C Library: Shared librarie= s an ii libecal1.2-2 1.2.2-5.1 Client library for evolution c= alen ii libedataserver1.2-4 1.2.2-5.1 Utily library for evolution da= ta s ii libgconf2-4 2.10.0-2GNOME configuration database s= yste ii libglade2-0 1:2.5.1-2 library to load .glade files a= t ru ii libglib2.0-0 2.6.5-1 The GLib library of C routines ii libgnome-desktop-2
Bug#310300: marked as done (ikvm: FTBFS in experimental: Only has Build-Depends-Indep, and changed to arch any package.)
Your message dated Fri, 17 Jun 2005 18:17:38 -0400 with message-id [EMAIL PROTECTED] and subject line Bug#310300: fixed in ikvm 0.14.0.1-4 has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what I am talking about this indicates a serious mail system misconfiguration somewhere. Please contact me immediately.) Debian bug tracking system administrator (administrator, Debian Bugs database) -- Received: (at submit) by bugs.debian.org; 22 May 2005 22:31:40 + From [EMAIL PROTECTED] Sun May 22 15:31:40 2005 Return-path: [EMAIL PROTECTED] Received: from adicia.telenet-ops.be [195.130.132.56] by spohr.debian.org with esmtp (Exim 3.35 1 (Debian)) id 1DZyyy-0005Wn-00; Sun, 22 May 2005 15:31:40 -0700 Received: from localhost (localhost.localdomain [127.0.0.1]) by adicia.telenet-ops.be (Postfix) with SMTP id 975C94400E for [EMAIL PROTECTED]; Mon, 23 May 2005 00:31:39 +0200 (MEST) Received: from Q.roeckx.be (dD5775FD9.access.telenet.be [213.119.95.217]) by adicia.telenet-ops.be (Postfix) with ESMTP id 7BB464402E for [EMAIL PROTECTED]; Mon, 23 May 2005 00:31:36 +0200 (MEST) Received: by Q.roeckx.be (Postfix, from userid 501) id 57D5226136; Mon, 23 May 2005 00:31:36 +0200 (CEST) Date: Mon, 23 May 2005 00:31:36 +0200 From: Kurt Roeckx [EMAIL PROTECTED] To: [EMAIL PROTECTED] Subject: ikvm: FTBFS in experimental: Only has Build-Depends-Indep, and changed to arch any package. Message-ID: [EMAIL PROTECTED] Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.4.2.1i Delivered-To: [EMAIL PROTECTED] X-Spam-Checker-Version: SpamAssassin 2.60-bugs.debian.org_2005_01_02 (1.212-2003-09-23-exp) on spohr.debian.org X-Spam-Status: No, hits=-8.0 required=4.0 tests=BAYES_00,HAS_PACKAGE autolearn=no version=2.60-bugs.debian.org_2005_01_02 X-Spam-Level: Package: ikvm Version: 0.14.0.1-1 Severity: serious Tags: experimental Hi, Your package is now failing to build in experimental because you do not have any Build-Depends, but do have Build-Depends-Indep. You need to set Build-Depends to everything needed to build the arch dependent part, since that it the only thing the buildd's will install. Kurt --- Received: (at 310300-close) by bugs.debian.org; 17 Jun 2005 22:21:37 + From [EMAIL PROTECTED] Fri Jun 17 15:21:37 2005 Return-path: [EMAIL PROTECTED] Received: from newraff.debian.org [208.185.25.31] (mail) by spohr.debian.org with esmtp (Exim 3.35 1 (Debian)) id 1DjPDV-0004wk-00; Fri, 17 Jun 2005 15:21:37 -0700 Received: from katie by newraff.debian.org with local (Exim 3.35 1 (Debian)) id 1DjP9e-00033T-00; Fri, 17 Jun 2005 18:17:38 -0400 From: Dave Beckett [EMAIL PROTECTED] To: [EMAIL PROTECTED] X-Katie: $Revision: 1.56 $ Subject: Bug#310300: fixed in ikvm 0.14.0.1-4 Message-Id: [EMAIL PROTECTED] Sender: Archive Administrator [EMAIL PROTECTED] Date: Fri, 17 Jun 2005 18:17:38 -0400 Delivered-To: [EMAIL PROTECTED] X-Spam-Checker-Version: SpamAssassin 2.60-bugs.debian.org_2005_01_02 (1.212-2003-09-23-exp) on spohr.debian.org X-Spam-Status: No, hits=-6.0 required=4.0 tests=BAYES_00,HAS_BUG_NUMBER autolearn=no version=2.60-bugs.debian.org_2005_01_02 X-Spam-Level: X-CrossAssassin-Score: 3 Source: ikvm Source-Version: 0.14.0.1-4 We believe that the bug you reported is fixed in the latest version of ikvm, which is due to be installed in the Debian FTP archive: ikvm_0.14.0.1-4.diff.gz to pool/main/i/ikvm/ikvm_0.14.0.1-4.diff.gz ikvm_0.14.0.1-4.dsc to pool/main/i/ikvm/ikvm_0.14.0.1-4.dsc ikvm_0.14.0.1-4_all.deb to pool/main/i/ikvm/ikvm_0.14.0.1-4_all.deb libikvm-native_0.14.0.1-4_i386.deb to pool/main/i/ikvm/libikvm-native_0.14.0.1-4_i386.deb A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to [EMAIL PROTECTED], and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Dave Beckett [EMAIL PROTECTED] (supplier of updated ikvm package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing [EMAIL PROTECTED]) -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.7 Date: Thu, 16 Jun 2005 12:36:42 +0100 Source: ikvm Binary: ikvm libikvm-native Architecture: source all i386 Version: 0.14.0.1-4 Distribution: unstable Urgency: low Maintainer: Dave Beckett [EMAIL PROTECTED] Changed-By: Dave Beckett [EMAIL PROTECTED] Description: ikvm
Bug#307100: marked as done (ikvm: FTBFS: mono not configured correctly)
Your message dated Fri, 17 Jun 2005 18:17:38 -0400 with message-id [EMAIL PROTECTED] and subject line Bug#307100: fixed in ikvm 0.14.0.1-4 has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what I am talking about this indicates a serious mail system misconfiguration somewhere. Please contact me immediately.) Debian bug tracking system administrator (administrator, Debian Bugs database) -- Received: (at submit) by bugs.debian.org; 30 Apr 2005 18:12:21 + From [EMAIL PROTECTED] Sat Apr 30 11:12:21 2005 Return-path: [EMAIL PROTECTED] Received: from mail-out.m-online.net [212.18.0.9] by spohr.debian.org with esmtp (Exim 3.35 1 (Debian)) id 1DRwRw-0003zc-00; Sat, 30 Apr 2005 11:12:20 -0700 Received: from mail.m-online.net (svr20.m-online.net [192.168.3.148]) by mail-out.m-online.net (Postfix) with ESMTP id 2B7B48F47; Sat, 30 Apr 2005 20:12:19 +0200 (CEST) Received: from atari.stigge.org (ppp-82-135-11-242.mnet-online.de [82.135.11.242]) by mail.m-online.net (Postfix) with ESMTP id 0C45A7DC53; Sat, 30 Apr 2005 20:12:14 +0200 (CEST) Received: from [192.168.5.99] (localhost [127.0.0.1]) by atari.stigge.org (Postfix) with ESMTP id 05049100442A3; Sat, 30 Apr 2005 20:12:14 +0200 (CEST) From: Roland Stigge [EMAIL PROTECTED] To: [EMAIL PROTECTED] Subject: ikvm: FTBFS: mono not configured correctly Message-Id: [EMAIL PROTECTED] Date: Sat, 30 Apr 2005 20:12:14 +0200 (CEST) Delivered-To: [EMAIL PROTECTED] X-Spam-Checker-Version: SpamAssassin 2.60-bugs.debian.org_2005_01_02 (1.212-2003-09-23-exp) on spohr.debian.org X-Spam-Status: No, hits=-8.0 required=4.0 tests=BAYES_00,HAS_PACKAGE autolearn=no version=2.60-bugs.debian.org_2005_01_02 X-Spam-Level: Package: ikvm Version: 0.8.0.0-3 Severity: serious Hi, building the package ikvm in a clean sid build environment (with pbuilder) on i386 results in: = [...] make: [clean] Error 1 (ignored) dh_clean dpkg-source -b ikvm-0.8.0.0 dpkg-source: warning: no utmp entry available and LOGNAME not defined; using uid of process (1001) dpkg-parsechangelog: warning: no utmp entry available and LOGNAME not defined; using uid of process (1001) debian: warning: no utmp entry available and LOGNAME not defined; using uid of process (1001) dpkg-source: building ikvm using existing ikvm_0.8.0.0.orig.tar.gz dpkg-source: building ikvm in ikvm_0.8.0.0-3.diff.gz dpkg-source: building ikvm in ikvm_0.8.0.0-3.dsc debian/rules build dh_testdir mkdir /tmp/buildd/ikvm-0.8.0.0/debian/.wapi MONO_SHARED_DIR=/tmp/buildd/ikvm-0.8.0.0/debian/.wapi nant -v clean Compat mode: the request from /usr/share/dotnet/bin/nant/log4net.dll to load System was remapped (http://www.go-mono.com/remap.html) Compat mode: the request from /usr/share/dotnet/bin/nant/log4net.dll to load System.Data was remapped (http://www.go-mono.com/remap.html) Compat mode: the request from /usr/share/dotnet/bin/nant/log4net.dll to load System.Web was remapped (http://www.go-mono.com/remap.html) NAnt 0.85 (Build 0.85.1793.0; rc1; 11/28/2004) Copyright (C) 2001-2004 Gerry Shaw http://nant.sourceforge.net BUILD FAILED The current runtime framework 'mono-1.0' is not correctly configured in the NAnt configuration file. Unable to locate 'mono' module using pkg-config. Download the Mono development packages from http://www.mono-project.com/downloads/. For more information regarding the cause of the build failure, run the build again in debug mode. Try 'nant -help' for more information make: *** [configure-stamp] Error 1 = Thanks for considering. -- DARTS - Debian Archive Regression Test Suite http://darts.alioth.debian.org/ Please note that this report has not been generated fully automatically. DARTS just helped finding the problem. --- Received: (at 307100-close) by bugs.debian.org; 17 Jun 2005 22:21:57 + From [EMAIL PROTECTED] Fri Jun 17 15:21:57 2005 Return-path: [EMAIL PROTECTED] Received: from newraff.debian.org [208.185.25.31] (mail) by spohr.debian.org with esmtp (Exim 3.35 1 (Debian)) id 1DjPDp-0004zV-00; Fri, 17 Jun 2005 15:21:57 -0700 Received: from katie by newraff.debian.org with local (Exim 3.35 1 (Debian)) id 1DjP9e-00033R-00; Fri, 17 Jun 2005 18:17:38 -0400 From: Dave Beckett [EMAIL PROTECTED] To: [EMAIL PROTECTED] X-Katie: $Revision: 1.56 $ Subject: Bug#307100: fixed in ikvm 0.14.0.1-4 Message-Id: [EMAIL PROTECTED] Sender: Archive Administrator [EMAIL PROTECTED] Date: Fri, 17 Jun 2005 18:17:38 -0400 Delivered-To: [EMAIL
Bug#311182: marked as done (ikvm: FTBFS: Does not make the libikvm-native packages when running binary-arch.)
Your message dated Fri, 17 Jun 2005 18:17:38 -0400 with message-id [EMAIL PROTECTED] and subject line Bug#311182: fixed in ikvm 0.14.0.1-4 has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what I am talking about this indicates a serious mail system misconfiguration somewhere. Please contact me immediately.) Debian bug tracking system administrator (administrator, Debian Bugs database) -- Received: (at submit) by bugs.debian.org; 29 May 2005 16:01:36 + From [EMAIL PROTECTED] Sun May 29 09:01:36 2005 Return-path: [EMAIL PROTECTED] Received: from apate.telenet-ops.be [195.130.132.57] by spohr.debian.org with esmtp (Exim 3.35 1 (Debian)) id 1DcQEJ-0007pe-00; Sun, 29 May 2005 09:01:36 -0700 Received: from localhost (localhost.localdomain [127.0.0.1]) by apate.telenet-ops.be (Postfix) with SMTP id E69023802F for [EMAIL PROTECTED]; Sun, 29 May 2005 18:01:34 +0200 (CEST) Received: from Q.roeckx.be (dD5775FD9.access.telenet.be [213.119.95.217]) by apate.telenet-ops.be (Postfix) with ESMTP id 6039838054 for [EMAIL PROTECTED]; Sun, 29 May 2005 18:01:33 +0200 (CEST) Received: by Q.roeckx.be (Postfix, from userid 501) id E169526136; Sun, 29 May 2005 18:01:25 +0200 (CEST) Date: Sun, 29 May 2005 18:01:25 +0200 From: Kurt Roeckx [EMAIL PROTECTED] To: [EMAIL PROTECTED] Subject: ikvm: FTBFS: Does not make the libikvm-native packages when running binary-arch. Message-ID: [EMAIL PROTECTED] Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.4.2.1i Delivered-To: [EMAIL PROTECTED] X-Spam-Checker-Version: SpamAssassin 2.60-bugs.debian.org_2005_01_02 (1.212-2003-09-23-exp) on spohr.debian.org X-Spam-Status: No, hits=-8.0 required=4.0 tests=BAYES_00,HAS_PACKAGE autolearn=no version=2.60-bugs.debian.org_2005_01_02 X-Spam-Level: Package: ikvm Version: 0.14.0.1-2 Severity: serious Tags: experimental Hi, When only building the architecture specific .debs, it fails to build because binary-arch does nothing. Just running dpkg-buildpackage -B has this effect. Kurt --- Received: (at 311182-close) by bugs.debian.org; 17 Jun 2005 22:21:37 + From [EMAIL PROTECTED] Fri Jun 17 15:21:36 2005 Return-path: [EMAIL PROTECTED] Received: from newraff.debian.org [208.185.25.31] (mail) by spohr.debian.org with esmtp (Exim 3.35 1 (Debian)) id 1DjPDU-0004wY-00; Fri, 17 Jun 2005 15:21:36 -0700 Received: from katie by newraff.debian.org with local (Exim 3.35 1 (Debian)) id 1DjP9e-00033V-00; Fri, 17 Jun 2005 18:17:38 -0400 From: Dave Beckett [EMAIL PROTECTED] To: [EMAIL PROTECTED] X-Katie: $Revision: 1.56 $ Subject: Bug#311182: fixed in ikvm 0.14.0.1-4 Message-Id: [EMAIL PROTECTED] Sender: Archive Administrator [EMAIL PROTECTED] Date: Fri, 17 Jun 2005 18:17:38 -0400 Delivered-To: [EMAIL PROTECTED] X-Spam-Checker-Version: SpamAssassin 2.60-bugs.debian.org_2005_01_02 (1.212-2003-09-23-exp) on spohr.debian.org X-Spam-Status: No, hits=-6.0 required=4.0 tests=BAYES_00,HAS_BUG_NUMBER autolearn=no version=2.60-bugs.debian.org_2005_01_02 X-Spam-Level: X-CrossAssassin-Score: 4 Source: ikvm Source-Version: 0.14.0.1-4 We believe that the bug you reported is fixed in the latest version of ikvm, which is due to be installed in the Debian FTP archive: ikvm_0.14.0.1-4.diff.gz to pool/main/i/ikvm/ikvm_0.14.0.1-4.diff.gz ikvm_0.14.0.1-4.dsc to pool/main/i/ikvm/ikvm_0.14.0.1-4.dsc ikvm_0.14.0.1-4_all.deb to pool/main/i/ikvm/ikvm_0.14.0.1-4_all.deb libikvm-native_0.14.0.1-4_i386.deb to pool/main/i/ikvm/libikvm-native_0.14.0.1-4_i386.deb A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to [EMAIL PROTECTED], and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Dave Beckett [EMAIL PROTECTED] (supplier of updated ikvm package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing [EMAIL PROTECTED]) -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.7 Date: Thu, 16 Jun 2005 12:36:42 +0100 Source: ikvm Binary: ikvm libikvm-native Architecture: source all i386 Version: 0.14.0.1-4 Distribution: unstable Urgency: low Maintainer: Dave Beckett [EMAIL PROTECTED] Changed-By: Dave Beckett [EMAIL PROTECTED] Description: ikvm - Java virtual machine/compiler implemented in .NET (Mono) libikvm-native - Native library for IKVM Java virtual machine for
Bug#313444: marked as done (galeon: uninstallable because of gnome 2.10 in sid)
Your message dated Sat, 18 Jun 2005 00:36:19 +0200 with message-id [EMAIL PROTECTED] and subject line Bug#313444: galeon: uninstallable because of gnome 2.10 in sid has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what I am talking about this indicates a serious mail system misconfiguration somewhere. Please contact me immediately.) Debian bug tracking system administrator (administrator, Debian Bugs database) -- Received: (at submit) by bugs.debian.org; 13 Jun 2005 18:25:26 + From [EMAIL PROTECTED] Mon Jun 13 11:25:26 2005 Return-path: [EMAIL PROTECTED] Received: from dsl-082-083-251-090.arcor-ip.net (localhost.localdomain) [82.83.251.90] by spohr.debian.org with esmtp (Exim 3.35 1 (Debian)) id 1Dhtcj-0002u5-00; Mon, 13 Jun 2005 11:25:25 -0700 Received: by localhost.localdomain (Postfix, from userid 1000) id 709A72B400F; Mon, 13 Jun 2005 20:25:25 +0200 (CEST) Content-Type: text/plain; charset=us-ascii MIME-Version: 1.0 Content-Transfer-Encoding: 7bit From: =?utf-8?b?Tm/DqGwgS8O2dGhl?= [EMAIL PROTECTED] To: Debian Bug Tracking System [EMAIL PROTECTED] Subject: galeon: uninstallable because of gnome 2.10 in sid X-Mailer: reportbug 3.12 Date: Mon, 13 Jun 2005 20:25:24 +0200 Message-Id: [EMAIL PROTECTED] Delivered-To: [EMAIL PROTECTED] X-Spam-Checker-Version: SpamAssassin 2.60-bugs.debian.org_2005_01_02 (1.212-2003-09-23-exp) on spohr.debian.org X-Spam-Status: No, hits=-8.0 required=4.0 tests=BAYES_00,HAS_PACKAGE autolearn=no version=2.60-bugs.debian.org_2005_01_02 X-Spam-Level: Package: galeon Version: 1.3.21-1+gnome28+1 Severity: serious Justification: uninstallable Hello, gnome 2.10 is now mostly in sid. galeon in sid depends against libnautilus2-2 which conflicts with most/basic gnome 2.10 packages. Please rebuild galeon with gnome 2.10 so it depends on libnautilus-extension1 Thank you. -- System Information: Debian Release: testing/unstable APT prefers unstable APT policy: (500, 'unstable') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.11-1-686 Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8) Versions of packages galeon depends on: ii debconf 1.4.51 Debian configuration management sy pn galeon-commonNot found. ii libart-2.0-2 2.3.17-1Library of functions for 2D graphi ii libatk1.0-0 1.10.1-2The ATK accessibility toolkit ii libaudiofile00.2.6-6 Open-source version of SGI's audio ii libbonobo2-0 2.8.1-2 Bonobo CORBA interfaces library ii libbonoboui2-0 2.8.1-2 The Bonobo UI library ii libc62.3.2.ds1-22GNU C Library: Shared libraries an ii libeel2-22.10.1-2Eazel Extensions Library (for GNOM ii libesd0 0.2.35-2.1 Enlightened Sound Daemon - Shared ii libgail-common 1.8.4-1 GNOME Accessibility Implementation ii libgail171.8.4-1 GNOME Accessibility Implementation ii libgcc1 1:4.0.0-9 GCC support library ii libgconf2-4 2.10.0-2GNOME configuration database syste ii libgcrypt11 1.2.0-11.1 LGPL Crypto library - runtime libr ii libglade2-0 1:2.5.1-2 library to load .glade files at ru ii libglib2.0-0 2.6.5-1 The GLib library of C routines ii libgnome-keyring00.4.2-1 GNOME keyring services library ii libgnome2-0 2.10.0-3The GNOME 2 library - runtime file ii libgnomecanvas2-02.10.2-2A powerful object-oriented display ii libgnomeui-0 2.10.0-2The GNOME 2 libraries (User Interf ii libgnomevfs2-0 2.10.1-4The GNOME virtual file-system libr ii libgnutls11 1.0.16-13.1 GNU TLS library - runtime library ii libgpg-error01.0-1 library for common error values an ii libgtk2.0-0 2.6.7-2 The GTK+ graphical user interface ii libice6 4.3.0.dfsg.1-14 Inter-Client Exchange library ii libjpeg626b-10 The Independent JPEG Group's JPEG pn libnautilus2-2 Not found. ii liborbit21:2.12.2-1 libraries for ORBit2 - a CORBA ORB ii libpango1.0-01.8.1-1 Layout and rendering of internatio ii libpopt0 1.7-5 lib for parsing cmdline parameters ii libsm6 4.3.0.dfsg.1-14 X Window System Session Management ii libstdc++5 1:3.3.6-6 The GNU Standard
Bug#314716: fails to install
Package: xmule Version: 1.9.4b-1 Severity: serious xmule fails to install due to a filename conflixt with amule: Unpacking xmule (from .../xmule_1.10.0b-1_i386.deb) ... dpkg: error processing /var/cache/apt/archives/xmule_1.10.0b-1_i386.deb (--unpack): trying to overwrite `/usr/share/man/man1/ed2k.1.gz', which is also in package amule Errors were encountered while processing: /var/cache/apt/archives/xmule_1.10.0b-1_i386.deb E: Sub-process /usr/bin/dpkg returned an error code (1) -- System Information: Debian Release: testing/unstable APT prefers unstable APT policy: (500, 'unstable'), (500, 'testing'), (1, 'experimental') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.9-ac6 Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8) Versions of packages xmule depends on: ii libc62.3.2.ds1-22GNU C Library: Shared libraries an ii libgcc1 1:4.0.0-9 GCC support library ii libglib1.2 1.2.10-10 The GLib library of C routines ii libgtk1.21.2.10-17 The GIMP Toolkit set of widgets fo ii libstdc++5 1:3.3.6-6 The GNU Standard C++ Library v3 ii libwxgtk2.4 2.4.3.1 wxWindows Cross-platform C++ GUI t ii libx11-6 4.3.0.dfsg.1-14 X Window System protocol client li ii libxext6 4.3.0.dfsg.1-14 X Window System miscellaneous exte ii libxi6 4.3.0.dfsg.1-14 X Window System Input extension li ii wget 1.10-1 retrieves files from the web ii xlibs4.3.0.dfsg.1-14 X Keyboard Extension (XKB) configu xmule recommends no packages. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#207932: Statement that all of Debian needs to be Free?
On 6/17/05, Jrme Marant [EMAIL PROTECTED] wrote:
Glenn Maynard [EMAIL PROTECTED] writes:
etc/{CENSORSHIP,copying.paper,INTERVIEW,LINUX-GNU,THE-GNU-PROJECT,WHY-FREE}
only copying.paper sounds like a license; the rest are simply documents,
which must be DFSG-free to be in Debian. This is not a matter of
controversy, or even significant disagreement; SC2004-003 made this
explicitly clear. Please remove these non-free documents; the grace
period allowed by SC2004-004 expired with the release of sarge.
They are out of the scope of the DFSG. They are neither programs nor
documentation: they are speeches and articles which are logically
non modifiable without the consent of their author.
Whether they are around or not is irrelevant to the freeness of Emacs.
IMHO, Jrme is right but for the wrong reasons. In many
jurisdictions (especially France, but other parts of US law besides
copyright have similar consequences), copyright license does not and
cannot grant authority to misattribute or violate the integrity of an
artistic or polemical work. These documents are not part of the work
of authorship that is the Emacs program and documentation. They may
be retained or removed; but they may not be arbitrarily modified.
Personally, I would retain them as a courtesy to upstream; users are
no more and no less free to modify or remove them than Debian is. The
alternative -- to demand that all content other than license texts and
other legal indicia must be arbitrarily modifiable in order to be
DFSG-free -- is logically consistent but would require the removal of
all remotely artistic or polemical works in the Debian archive.
The GFDL is another story, because under some circumstances it
purports to condition the permission to modify and redistribute the
substance of the document on the retention of unrelated material.
Personally, my reasons for objecting to the GFDL are different; but I
just want to make the point that a putative debian-legal (or even
Debian-wide) consensus on the DFSG-freeness of the GFDL has no bearing
on whether it is OK to retain LINUX-GNU et al.
Cheers,
- Michael
(IANAL, IANADD)
Bug#314654: Bug #314654 - qtorrent: FTBFS: Missing Build-Depends on 'python-dev'
What s wrong with qtorrent build depending on python-2.4-dev only ? Would using dh_python -V 2.4 fix the issue too ? Please tell me if you cannot test, i ll try to find time to learn how to make a clean build environemnt (i am not DD ) Regards Alban -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#310111: marked as done (haskell-http_0.4.20041219-2(hppa/unstable): FTBFS: outdated build-deps)
Your message dated Fri, 17 Jun 2005 20:26:37 -0400 with message-id [EMAIL PROTECTED] and subject line Bug#310111: fixed in haskell-http 0.4.20050430-1 has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what I am talking about this indicates a serious mail system misconfiguration somewhere. Please contact me immediately.) Debian bug tracking system administrator (administrator, Debian Bugs database) -- Received: (at submit) by bugs.debian.org; 21 May 2005 17:37:11 + From [EMAIL PROTECTED] Sat May 21 10:37:11 2005 Return-path: [EMAIL PROTECTED] Received: from mmjgroup.com [192.34.35.33] by spohr.debian.org with esmtp (Exim 3.35 1 (Debian)) id 1DZXuR-0003vl-00; Sat, 21 May 2005 10:37:11 -0700 Received: from mix.mmjgroup.com (mix.mmjgroup.com [192.34.35.16]) by mmjgroup.com (Postfix) with ESMTP id 1DB3D16E82 for [EMAIL PROTECTED]; Sat, 21 May 2005 11:37:11 -0600 (MDT) Received: by mix.mmjgroup.com (Postfix, from userid 1000) id 06819906CB; Sat, 21 May 2005 11:37:11 -0600 (MDT) Date: Sat, 21 May 2005 11:37:10 -0600 From: [EMAIL PROTECTED] To: [EMAIL PROTECTED] Subject: haskell-http_0.4.20041219-2(hppa/unstable): FTBFS: outdated build-deps Message-ID: [EMAIL PROTECTED] Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.5.6+20040907i Delivered-To: [EMAIL PROTECTED] X-Spam-Checker-Version: SpamAssassin 2.60-bugs.debian.org_2005_01_02 (1.212-2003-09-23-exp) on spohr.debian.org X-Spam-Status: No, hits=-6.4 required=4.0 tests=BAYES_00,HAS_PACKAGE, NO_REAL_NAME autolearn=no version=2.60-bugs.debian.org_2005_01_02 X-Spam-Level: Package: haskell-http Version: 0.4.20041219-2 Severity: serious There was an error while trying to autobuild your package: Automatic build of haskell-http_0.4.20041219-2 on sarti by sbuild/hppa 33 Build started at 20050521-1830 [...] ** Using build dependencies supplied by package: Build-Depends: debhelper (= 4.0.0), haskell-devscripts (=0.5.6), ghc6 (=6.2.2), ghc6 (6.2.3) [...] A full build log can be found at: http://buildd.debian.org/build.php?arch=hppapkg=haskell-httpver=0.4.20041219-2 ghc6 version is now 6.4 lamont --- Received: (at 310111-close) by bugs.debian.org; 18 Jun 2005 00:38:24 + From [EMAIL PROTECTED] Fri Jun 17 17:38:24 2005 Return-path: [EMAIL PROTECTED] Received: from newraff.debian.org [208.185.25.31] (mail) by spohr.debian.org with esmtp (Exim 3.35 1 (Debian)) id 1DjRLs-9S-00; Fri, 17 Jun 2005 17:38:24 -0700 Received: from joerg by newraff.debian.org with local (Exim 3.35 1 (Debian)) id 1DjRAT-0006dn-00; Fri, 17 Jun 2005 20:26:37 -0400 From: Ganesh Sittampalam [EMAIL PROTECTED] To: [EMAIL PROTECTED] X-Katie: lisa $Revision: 1.30 $ Subject: Bug#310111: fixed in haskell-http 0.4.20050430-1 Message-Id: [EMAIL PROTECTED] Sender: Joerg Jaspert [EMAIL PROTECTED] Date: Fri, 17 Jun 2005 20:26:37 -0400 Delivered-To: [EMAIL PROTECTED] X-Spam-Checker-Version: SpamAssassin 2.60-bugs.debian.org_2005_01_02 (1.212-2003-09-23-exp) on spohr.debian.org X-Spam-Status: No, hits=-6.0 required=4.0 tests=BAYES_00,HAS_BUG_NUMBER autolearn=no version=2.60-bugs.debian.org_2005_01_02 X-Spam-Level: X-CrossAssassin-Score: 2 Source: haskell-http Source-Version: 0.4.20050430-1 We believe that the bug you reported is fixed in the latest version of haskell-http, which is due to be installed in the Debian FTP archive: haskell-http-doc_0.4.20050430-1_all.deb to pool/main/h/haskell-http/haskell-http-doc_0.4.20050430-1_all.deb haskell-http_0.4.20050430-1.diff.gz to pool/main/h/haskell-http/haskell-http_0.4.20050430-1.diff.gz haskell-http_0.4.20050430-1.dsc to pool/main/h/haskell-http/haskell-http_0.4.20050430-1.dsc haskell-http_0.4.20050430.orig.tar.gz to pool/main/h/haskell-http/haskell-http_0.4.20050430.orig.tar.gz libghc6-http-dev_0.4.20050430-1_i386.deb to pool/main/h/haskell-http/libghc6-http-dev_0.4.20050430-1_i386.deb libhugs-http_0.4.20050430-1_all.deb to pool/main/h/haskell-http/libhugs-http_0.4.20050430-1_all.deb A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to [EMAIL PROTECTED], and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Ganesh Sittampalam [EMAIL PROTECTED] (supplier of updated haskell-http package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing [EMAIL
Bug#314289: Bug #314289 - ssh: unable to login after upgrade to 4.1p1-3
Could you do /etc/init.d/rmnologin then retry ? I had a user which found it it was not run and broke its ssh login for non root users. Also could you confirm there where no other upgrade at the same time that could break the user session : the user shell and the like I cannot reproduce the bug :( Regards Alban -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#313454: marked as done (package is empty)
Your message dated Fri, 17 Jun 2005 20:54:58 -0400 with message-id [EMAIL PROTECTED] and subject line Bug#313454: fixed in postgresql-8.0 8.0.3-6 has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what I am talking about this indicates a serious mail system misconfiguration somewhere. Please contact me immediately.) Debian bug tracking system administrator (administrator, Debian Bugs database) -- Received: (at submit) by bugs.debian.org; 13 Jun 2005 19:10:05 + From [EMAIL PROTECTED] Mon Jun 13 12:10:04 2005 Return-path: [EMAIL PROTECTED] Received: from master.debian.org [146.82.138.7] by spohr.debian.org with esmtp (Exim 3.35 1 (Debian)) id 1DhuJw-0006jx-00; Mon, 13 Jun 2005 12:10:04 -0700 Received: from dsl-082-083-251-216.arcor-ip.net (colt.pezone.net) [82.83.251.216] by master.debian.org with esmtp (Exim 3.35 1 (Debian)) id 1DhuJw-0002xv-00; Mon, 13 Jun 2005 14:10:04 -0500 Content-Type: text/plain; charset=us-ascii MIME-Version: 1.0 Content-Transfer-Encoding: 7bit From: Peter Eisentraut [EMAIL PROTECTED] To: Debian Bug Tracking System [EMAIL PROTECTED] Subject: package is empty X-Mailer: reportbug 3.12 Date: Mon, 13 Jun 2005 21:10:02 +0200 Message-Id: [EMAIL PROTECTED] Delivered-To: [EMAIL PROTECTED] X-Spam-Checker-Version: SpamAssassin 2.60-bugs.debian.org_2005_01_02 (1.212-2003-09-23-exp) on spohr.debian.org X-Spam-Status: No, hits=-6.0 required=4.0 tests=BAYES_00,HAS_PACKAGE, OUR_MTA_MSGID autolearn=no version=2.60-bugs.debian.org_2005_01_02 X-Spam-Level: Package: libecpg4 Severity: grave The package does not contain any files except some documentation. --- Received: (at 313454-close) by bugs.debian.org; 18 Jun 2005 01:10:21 + From [EMAIL PROTECTED] Fri Jun 17 18:10:21 2005 Return-path: [EMAIL PROTECTED] Received: from newraff.debian.org [208.185.25.31] (mail) by spohr.debian.org with esmtp (Exim 3.35 1 (Debian)) id 1DjRqn-7m-00; Fri, 17 Jun 2005 18:10:21 -0700 Received: from joerg by newraff.debian.org with local (Exim 3.35 1 (Debian)) id 1DjRbu-0001CB-00; Fri, 17 Jun 2005 20:54:58 -0400 From: Martin Pitt [EMAIL PROTECTED] To: [EMAIL PROTECTED] X-Katie: lisa $Revision: 1.30 $ Subject: Bug#313454: fixed in postgresql-8.0 8.0.3-6 Message-Id: [EMAIL PROTECTED] Sender: Joerg Jaspert [EMAIL PROTECTED] Date: Fri, 17 Jun 2005 20:54:58 -0400 Delivered-To: [EMAIL PROTECTED] X-Spam-Checker-Version: SpamAssassin 2.60-bugs.debian.org_2005_01_02 (1.212-2003-09-23-exp) on spohr.debian.org X-Spam-Status: No, hits=-6.0 required=4.0 tests=BAYES_00,HAS_BUG_NUMBER autolearn=no version=2.60-bugs.debian.org_2005_01_02 X-Spam-Level: X-CrossAssassin-Score: 5 Source: postgresql-8.0 Source-Version: 8.0.3-6 We believe that the bug you reported is fixed in the latest version of postgresql-8.0, which is due to be installed in the Debian FTP archive: libecpg-compat2_8.0.3-6_i386.deb to pool/main/p/postgresql-8.0/libecpg-compat2_8.0.3-6_i386.deb libecpg-dev_8.0.3-6_i386.deb to pool/main/p/postgresql-8.0/libecpg-dev_8.0.3-6_i386.deb libecpg5_8.0.3-6_i386.deb to pool/main/p/postgresql-8.0/libecpg5_8.0.3-6_i386.deb libpgtypes2_8.0.3-6_i386.deb to pool/main/p/postgresql-8.0/libpgtypes2_8.0.3-6_i386.deb libpq-dev_8.0.3-6_i386.deb to pool/main/p/postgresql-8.0/libpq-dev_8.0.3-6_i386.deb libpq4_8.0.3-6_i386.deb to pool/main/p/postgresql-8.0/libpq4_8.0.3-6_i386.deb postgresql-8.0_8.0.3-6.diff.gz to pool/main/p/postgresql-8.0/postgresql-8.0_8.0.3-6.diff.gz postgresql-8.0_8.0.3-6.dsc to pool/main/p/postgresql-8.0/postgresql-8.0_8.0.3-6.dsc postgresql-8.0_8.0.3-6_i386.deb to pool/main/p/postgresql-8.0/postgresql-8.0_8.0.3-6_i386.deb postgresql-client-8.0_8.0.3-6_i386.deb to pool/main/p/postgresql-8.0/postgresql-client-8.0_8.0.3-6_i386.deb postgresql-contrib-8.0_8.0.3-6_i386.deb to pool/main/p/postgresql-8.0/postgresql-contrib-8.0_8.0.3-6_i386.deb postgresql-doc-8.0_8.0.3-6_all.deb to pool/main/p/postgresql-8.0/postgresql-doc-8.0_8.0.3-6_all.deb postgresql-plperl-8.0_8.0.3-6_i386.deb to pool/main/p/postgresql-8.0/postgresql-plperl-8.0_8.0.3-6_i386.deb postgresql-plpython-8.0_8.0.3-6_i386.deb to pool/main/p/postgresql-8.0/postgresql-plpython-8.0_8.0.3-6_i386.deb postgresql-pltcl-8.0_8.0.3-6_i386.deb to pool/main/p/postgresql-8.0/postgresql-pltcl-8.0_8.0.3-6_i386.deb postgresql-server-dev-8.0_8.0.3-6_i386.deb to pool/main/p/postgresql-8.0/postgresql-server-dev-8.0_8.0.3-6_i386.deb A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to
Bug#314716: [pkg-xmule] Bug#314716: fails to install
Am Samstag, den 18.06.2005, 00:54 +0200 schrieb Bas Zoetekouw: Package: xmule Version: 1.9.4b-1 Severity: serious xmule fails to install due to a filename conflixt with amule: Unpacking xmule (from .../xmule_1.10.0b-1_i386.deb) ... dpkg: error processing /var/cache/apt/archives/xmule_1.10.0b-1_i386.deb (--unpack): trying to overwrite `/usr/share/man/man1/ed2k.1.gz', which is also in package amule Errors were encountered while processing: /var/cache/apt/archives/xmule_1.10.0b-1_i386.deb E: Sub-process /usr/bin/dpkg returned an error code (1) Hmm. This should not happen. The file conflict should be handled by amule's preinst script (since amule 1.2.6+rc8-3), which adds a diversion for /usr/share/man/man1/ed2k.1.gz. Which amule version do you have installed? What's the ouput of: dpkg-divert --list /usr/share/man/man1/ed2k.1.gz dpkg -S /usr/share/man/man1/ed2k.1.gz Regards, Daniel -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#314645: /usr/sbin/sshd: time delay of password check proves account existence to attackers
This one time, at band camp, Justin Pryzby said:
Package: ssh
Version: 1:3.8.1p1-8.sarge.4
Severity: critical
File: /usr/sbin/sshd
Tags: security
Justification: root security hole
This part seems like panic - it's a user level security hole, if it
exists.
This one time, at band camp, Greg Webster said:
On Fri, 2005-06-17 at 12:51 -0400, Justin Pryzby wrote:
You're talking about microsecond delays, right?
Nope...human-discernable delays. Give it a shot on your system. I can
easily determine just by mentally counting, if an account is valid.
I think I remember seeing a report that in PAM using setups, there was a
noticeable delay introduced by PAM. I was under the impression it was
addresses, however. Let me try ... OK, I see no difference on a sarge
machine that isn't probably induced by me (half a second difference
between valid user/invalid password and invalid user/random password,
averaged over 5 tries of each). The difference is too small for me to
notice it with the eye, at any rate.
This attack is already in the wild, as shown in logs:
This is a random username attack. It has been going on for months now,
and does not seem to be slowing down. It does not coincide with any
vulnerability I am aware of, and has not gotten anyone access to any
machines I run, as far as I can tell. It appears to just try common
usernames with weak passwords.
This one time, at band camp, Greg Webster said:
The problem is, I've seen that valid accounts (like my own 'greg') get
tested a lot more often than the others.
9 www-data
10 adam
10 irc
11 john
11 news
11 operator
12 mail
12 nobody
12 richard
16 michael
23 mysql
352 root
Created with: zgrep 'Failed password' auth.log*gz |awk '{print $9}' |
sort| uniq -c |sort -k1 -n|less
Now, none of the people with 1 attempt are valid, but all of those above
10 are. None of the users have a valid shell to access the server via
ssh, yet certain accounts get many more attempts (ignoring 'root'
entirely, since it'd be a known target).
The usernames adam, john, richard, and michael are very common names.
the others are all common system accounts.
Here's my top ten on one system:
25 uucp
28 mysql
28 news
28 webmaster
29 daemon
31 oracle
32 bin
38 test
52 admin
412 root
but look,
4 richard
7 adam
9 greg
9 john
9 johnny
3 michael
are all getting hit as well. This machine has _no_ valid usernames to
speak of (3 or 4 accounts, and none are normal names). None of them
appear in the output of your zgrep. I see similar patterns in the logs
of the half dozen servers I have that unfortunately still have ssh open
to the world.
I think you are conflating an attack on a common username with a guessed
username. OTOH, the delay that you can see with the naked eye is odd,
and if you can provide some way to reproduce it, that would certainly be
a bug (maybe config file settings?).
Thanks,
--
-
| ,''`.Stephen Gran |
| : :' :[EMAIL PROTECTED] |
| `. `'Debian user, admin, and developer |
|`- http://www.debian.org |
-
signature.asc
Description: Digital signature
