Re: Security bugfix #595248: please unblock libnusoap-php
Hi. Le mercredi 08 décembre 2010 à 19:57 +0800, Thomas Goirand (GPLHost) a écrit : On 09/08/2010 12:02 PM, Thomas Goirand wrote: Hi, That leads me to say that I would suggest any DD to *not* sponsor any package from Olivier Berger in the future, as he really had a bad attitude on this case. I now believe I shouldn't have write the above, even with strong disagreement on the technical issue (which I btw don't withdraw, but that's not the point). I hadn't noticed the original email you had sent to debian-rele...@d.o... I think it's not time to argue now that a minimal politeness would have been to CC: me when I was mentioned on such a public list, and in such a bad tone, given that you now apologize (and reading now that the responders did respond publicly in an appropriate way, IMHO). I'll try forget about this episode. I should fix the issue and do an NMU, that's it, then I'm sure it would have been ok. If someone sees this later, please do not take it into account. I sent my apologies (privately) to Olivier for this (and the rest), but I wanted to as well do it publicly. Thomas Thanks for your apologies. I hope you'll be able to contribute to Debian in a more relaxed way in the future. End of the episode, and back to work ;-) -- Olivier BERGER olivier.ber...@it-sudparis.eu http://www-public.it-sudparis.eu/~berger_o/ - OpenPGP-Id: 2048R/5819D7E8 Ingénieur Recherche - Dept INF Institut TELECOM, SudParis (http://www.it-sudparis.eu/), Evry (France) -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/1291812653.15455.21.ca...@inf-8657.int-evry.fr
Re: Security bugfix #595248: please unblock libnusoap-php
Oh, and btw, please use a proper 'from' or reply-to address if you post and eventually expect a response... Here's the message I've sent to you earlier, but which bounced on Thomas Goirand (GPLHost) tho...@goirand.nospam.fr :-/ Le mercredi 08 décembre 2010 à 13:50 +0100, Olivier Berger a écrit : Hi. Le mercredi 08 décembre 2010 à 19:57 +0800, Thomas Goirand (GPLHost) a écrit : On 09/08/2010 12:02 PM, Thomas Goirand wrote: Hi, That leads me to say that I would suggest any DD to *not* sponsor any package from Olivier Berger in the future, as he really had a bad attitude on this case. I now believe I shouldn't have write the above, even with strong disagreement on the technical issue (which I btw don't withdraw, but that's not the point). I hadn't noticed the original email you had sent to debian-rele...@d.o... I think it's not time to argue now that a minimal politeness would have been to CC: me when I was mentioned on such a public list, and in such a bad tone, given that you now apologize (and reading now that the responders did respond publicly in an appropriate way, IMHO). I'll try forget about this episode. I should fix the issue and do an NMU, that's it, then I'm sure it would have been ok. If someone sees this later, please do not take it into account. I sent my apologies (privately) to Olivier for this (and the rest), but I wanted to as well do it publicly. Thomas Thanks for your apologies. I hope you'll be able to contribute to Debian in a more relaxed way in the future. End of the episode, and back to work ;-) -- Olivier BERGER olivier.ber...@it-sudparis.eu http://www-public.it-sudparis.eu/~berger_o/ - OpenPGP-Id: 2048R/5819D7E8 Ingénieur Recherche - Dept INF Institut TELECOM, SudParis (http://www.it-sudparis.eu/), Evry (France) -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/1291816541.15455.94.ca...@inf-8657.int-evry.fr
Re: Security bugfix #595248: please unblock libnusoap-php
On 09/08/2010 06:02 AM, Thomas Goirand wrote: Hi, […] Please, get your propaganda out of here. I understand why he was pissed off. As this upload includes a security fix, I would be great if it was given a higher priority by the release team (btw, I've set urgency=high). You want higher than high? Having it in unstable for 2 days won't harm. Unblocked :( Regards, -- Mehdi Dogguy مهدي الدڤي http://dogguy.org/ -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/4c876112.6010...@dogguy.org
Re: Security bugfix #595248: please unblock libnusoap-php
On Wed, Sep 08, 2010 at 12:02:02PM +0800, Thomas Goirand wrote: I took over maintainership of libnusoap-php after the current maintainer loosely sent an RFA in the middle of the freeze only few months after he had his packages in the archive, because he was pissed by the discussion in #595346 (so I had no choice but to adopt, but if anyone wants to maintain, I'd happily give-up maintainership as I maintain quite a lot of packages already). That leads me to say that I would suggest any DD to *not* sponsor any package from Olivier Berger in the future, as he really had a bad attitude on this case. I would suggest any person to be very cautious when dealing with bug reports from you, then. Kind regards, Philipp Kern signature.asc Description: Digital signature
Re: Security bugfix #595248: please unblock libnusoap-php
Hi Thomas, On Wed, Sep 08, 2010 at 12:02:02PM +0800, Thomas Goirand wrote: […] That leads me to say that I would suggest any DD to *not* sponsor any package from Olivier Berger in the future, as he really had a bad attitude on this case. I would like to kindly ask you to take it down a notch and take a deep breath. Imho, your behavior has not been very friendly -- at the very least -- and not only in this case. This might be due to English not being your first language (it isn't in my case either) but some of what you said sounds rather dismissive and, thus, very unmotivating. Please respect that other people have their own opinions as well and try to calmly discuss such issues. Please take this the way it's meant -- as a friendly hint to let people get along well with each other. Thanks! Cheers, Sebastian -- Sebastian tokkee Harl +++ GnuPG-ID: 0x8501C7FC +++ http://tokkee.org/ Those who would give up Essential Liberty to purchase a little Temporary Safety, deserve neither Liberty nor Safety. -- Benjamin Franklin signature.asc Description: Digital signature
Re: Security bugfix #595248: please unblock libnusoap-php
Philipp Kern wrote: On Wed, Sep 08, 2010 at 12:02:02PM +0800, Thomas Goirand wrote: I took over maintainership of libnusoap-php after the current maintainer loosely sent an RFA in the middle of the freeze only few months after he had his packages in the archive, because he was pissed by the discussion in #595346 (so I had no choice but to adopt, but if anyone wants to maintain, I'd happily give-up maintainership as I maintain quite a lot of packages already). That leads me to say that I would suggest any DD to *not* sponsor any package from Olivier Berger in the future, as he really had a bad attitude on this case. I would suggest any person to be very cautious when dealing with bug reports from you, then. Kind regards, Philipp Kern You didn't have all the private email exchanges I had with him. I tried to tell him nicely, really. Thomas -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/4c87931f.5040...@goirand.fr
Re: Security bugfix #595248: please unblock libnusoap-php
Mehdi Dogguy wrote: Please, get your propaganda out of here. I understand why he was pissed off. I quite feel sorry about the issue too, and maybe even a bit guilty. I'll try my best to ask things in a better way next time, trying to avoid sensitivity of maintainers. I tried everything, and he didn't want to listen to any of my points. He wouldn't even trust what PHP displayed to him on the screen. What could I do in such case? Just give-up and do an NMU? I think that's what I should have do, but then what's the point in having a maintainer if he refuses to fix issues he is supposed to handle? Feel free to advise me so I wont do the same mistake again (but please, don't add worth to the bad that happened already). Thomas -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/4c8794be.4080...@debian.org
Re: Security bugfix #595248: please unblock libnusoap-php
On 08/09/2010 15:50, Thomas Goirand wrote: I tried everything, and he didn't want to listen to any of my points. He wouldn't even trust what PHP displayed to him on the screen. How this sentence is supposed to enhance the situation? Can't you just stop? Just give-up and do an NMU? I think that's what I should have do, but then what's the point in having a maintainer if he refuses to fix issues he is supposed to handle? The bug you submitted wasn't RC and thus, you shouldn't NMU in this case. All you can do is to convince the maintainer to fix it, not forcing it. FTR, I unblocked the package only because there was an RC bug to fix. Regards, -- Mehdi Dogguy مهدي الدڤي http://dogguy.org/ -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/4c879fd0.9090...@dogguy.org
Security bugfix #595248: please unblock libnusoap-php
Hi, I took over maintainership of libnusoap-php after the current maintainer loosely sent an RFA in the middle of the freeze only few months after he had his packages in the archive, because he was pissed by the discussion in #595346 (so I had no choice but to adopt, but if anyone wants to maintain, I'd happily give-up maintainership as I maintain quite a lot of packages already). That leads me to say that I would suggest any DD to *not* sponsor any package from Olivier Berger in the future, as he really had a bad attitude on this case. Anyway, my last upload to SID includes the following fixes: * Adopting package (Closes: #595561). * Fixes an XSS vulnerability using PHP_SELF (Closes: #595248). * Fixes a return new by reference PHP 5.3 deprecation (Closes: #595346). * Rewrote the debian/copyright that I found in a messy state. * Added Vcs-Git and Vcs-Browser fields. As this upload includes a security fix, I would be great if it was given a higher priority by the release team (btw, I've set urgency=high). Cheers, Thomas Goirand (zigo) -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/4c870aba.7070...@debian.org