Re: Release notes entry for web browser security support
On Mon, Jan 10, 2011 at 08:56:01PM +0100, Moritz Muehlenhoff wrote: [...] > -- > State of browser support > > Debian Squeeze includes several browser engines which are affected by a > frequent > stream of security vulnerabilities. The high rate of vulnerabilities [...] I'm not a native speaker, but "a frequent stream" sounds strange to me; "a steady stream" would be more appropriate IMO. Or even drop "the stream" and just use "frequently affected by security vulnerabilities". -- To UNSUBSCRIBE, email to debian-qt-kde-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20110110231817.go5...@localhost.localdomain
Release notes entry for web browser security support
Hi, as discussed before (http://lists.debian.org/debian-release/2010/08/msg01848.html) we need to document the de-facto status of Squeeze browser support in the release notes. Proposed text below. Any objections and/or spelling improvements by native speakers? [Webkit, Chromium and KDE maintainers CC.] Cheers, Moritz -- State of browser support Debian Squeeze includes several browser engines which are affected by a frequent stream of security vulnerabilities. The high rate of vulnerabilities and lack of upstream support in the form of long term branches make it close to impossible to support these browsers with backported security fixes. Additionally, library interdepencies make it impossible to update to newer upstream releases. As such, browsers built upon the webkit, qtwebkit and khtml engines are included in Squeeze, but not covered by full security support. We will make an effort to track down and backport security fixes, but in general these browsers should not be used against untrusted websites. For general web browser use we recommend browsers building on the Mozilla xulrunner engine (Iceweasel and Iceape) or Chromium. Xulrunner has had a history of good backportability for older releases over the previous release cycles. Chromium - while build upon the Webkit codebase - is a leaf package, i.e. if backporting becomes no longer feasible, there's still the possibility of upgrading to a later upstream release (which is not possible for the webkit library itself). Cheers, Moritz -- To UNSUBSCRIBE, email to debian-qt-kde-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20110110195601.ga9...@inutil.org
Bug#609577: Entering directory without permission: no error message
Hello, sorry for missing information above (they were never requested from "reportbug" or i oversaw them). Here they are resp. how to reproduce the problem: - Set view mode to "Columns": Menue View / View Mode / Columns - Enter a directory where you don't have any (or not enough?) permissions, e.g. /root (drwx--) - Now there doesn't occure any hint about the missing permissions. An error message would only occure at the bottom of the window if you are in Icon or Detail view - To the contrary the forbidden directory is opened as a new column - All this makes the user think the directory is not forbidden but only empty Jan -- To UNSUBSCRIBE, email to debian-qt-kde-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/alpine.deb.1.10.1101101928310.2...@ehory.cevingr.esp1918.qbznva
Bug#609577: dolphin: Entering directory without permission: no error message
Package: dolphin Version: 4:4.4.5-1 Severity: normal -- System Information: Debian Release: 6.0 APT prefers testing APT policy: (500, 'testing') Architecture: i386 (i686) Kernel: Linux 2.6.32-5-686 (SMP w/1 CPU core) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=locale: Cannot set LC_ALL to default locale: No such file or directory UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages dolphin depends on: ii kdebase-runtime 4:4.4.5-1runtime components from the offici ii libc6 2.11.2-7 Embedded GNU C Library: Shared lib ii libgcc1 1:4.4.5-8GCC support library ii libkdecore5 4:4.4.5-2the KDE Platform Core Library ii libkdeui5 4:4.4.5-2the KDE Platform User Interface Li ii libkfile4 4:4.4.5-2the File Selection Dialog Library ii libkio5 4:4.4.5-2the Network-enabled File Managemen ii libknewstuff3-4 4:4.4.5-2the "Get Hot New Stuff" v3 Library ii libkonq54:4.4.5-1core libraries for Konqueror ii libkparts4 4:4.4.5-2the Framework for the KDE Platform ii libkutils4 4:4.4.5-2various utility classes for the KD ii libnepomuk4 4:4.4.5-2the Nepomuk Meta Data Library ii libnepomukquery4a 4:4.4.5-2the Nepomuk Query Library for the ii libphonon4 4:4.6.0really4.4.2-1 the core library of the Phonon mul ii libqt4-dbus 4:4.6.3-4Qt 4 D-Bus module ii libqtcore4 4:4.6.3-4Qt 4 core module ii libqtgui4 4:4.6.3-4Qt 4 GUI module ii libsoprano4 2.5.0+dfsg.1-1 libraries for the Soprano RDF fram ii libstdc++6 4.4.5-8 The GNU Standard C++ Library v3 ii phonon 4:4.6.0really4.4.2-1 metapackage for the Phonon multime Versions of packages dolphin recommends: ii kfind 4:4.4.5-1 file search utility ii ruby 4.5An interpreter of object-oriented dolphin suggests no packages. -- To UNSUBSCRIBE, email to debian-qt-kde-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20110110182203.2535.64964.report...@squeeze.private.rfc1918.domain