Bug#1024594: RFP: nginx-unit -- polyglot app server, a reverse proxy, and a static file server
Package: wnpp Owner: Georg Faerber Severity: wishlist X-Debbugs-Cc: debian-de...@lists.debian.org Package name: nginx-unit Version : 1.28.0 Upstream Author : Nginx team members and contributors URL : https://github.com/nginx/unit License : Apache Software License (ASL) 2.0 Programming Lang: C Description : polyglot app server, reverse proxy, and static file server nginx-unit is a lightweight and versatile open-source server that has three core capabilities: * it is an HTTP reverse proxy, * a web server for static media assets, * and an application server that runs code in seven languages. Key Features Flexibility * The entire configuration is managed dynamically over HTTP via a RESTful JSON API * Updates to the configuration are performed granularly at runtime with zero interruption * Requests are routed between static content, upstream servers, and local apps * Request filtering and dispatching uses elaborate matching rules that allow regular expressions * Apps in multiple languages and language versions run side by side * Common language-specific APIs for all supported languages run seamlessly * Upstream server groups provide dynamic load balancing using a weighted round-robin method * Originating IP identification supports X-Forwarded-For and similar header fields Performance * Requests are asynchronously processed in threads with efficient event loops (epoll, kqueue) * Syscalls and data copy operations are kept to a necessary minimum * 10,000 inactive HTTP keep-alive connections take up only a few MBs of memory * Router and app processes rely on low-latency IPC built with lock-free queues over shared memory * Built-in statistics provide insights into Unit’s performance * The number of per-app processes is defined statically or scales preemptively within given limits * App and instance usage statistics are collected and exposed via the API * Multithreaded request processing is supported for Java, Perl, Python, and Ruby apps Security & Robustness * Client connections are handled by a separate non-privileged router process * Low-resource conditions (out of memory or descriptors) and app crashes are handled gracefully * SSL/TLS with SNI, session cache and tickets is integrated (OpenSSL 1.0.1 and later) * Different apps are isolated in separate processes * Apps can be additionally containerized with namespace and file system isolation * Static file serving benefits from chrooting, symlink and mount point traversal restrictions Supported App Languages * Binary-compiled languages in general: using the embedded libunit library * Go: by overriding the http module * JavaScript (Node.js): by automatically overloading the http and websocket modules * Java: using the Servlet Specification 3.1 and WebSocket APIs * Perl: using PSGI * PHP: using a custom SAPI module * Python: using WSGI or ASGI with WebSocket support * Ruby: using the Rack API Upstream docs available via https://unit.nginx.org/.
Bug#1014814: [Pkg-privacy-maintainers] Bug#1014814: ITP: onionprobe -- test/monitor tool for Tor Onion Services sites
Control: tags -1 + pending Packaging lives at [1], initial upload done, now in NEW. Cheers, Georg [1] https://salsa.debian.org/pkg-privacy-team/onionprobe
Bug#1014814: ITP: onionprobe -- test/monitor tool for Tor Onion Services sites
Package: wnpp Owner: Georg Faerber Severity: wishlist X-Debbugs-CC: debian-de...@lists.debian.org, pkg-privacy-maintain...@lists.alioth.debian.org Package name: onionprobe Version : 1.0.0 Upstream Author : Silvio Rhatto URL : https://gitlab.torproject.org/tpo/onion-services/onionprobe License : GNU General Public License v3 Programming Lang: Python Description : test/monitor tool for Tor Onion Services sites Onionprobe is a tool for testing and monitoring the status of Tor Onion Services sites. It can run a single time or continuously to probe a set of onion services endpoints and paths, optionally exporting to Prometheus. This package will be maintained within the Debian Privacy Tools Maintainers team.
Bug#1014812: RFP: tusd -- implementation of the tus resumable upload protocol
Package: wnpp Owner: Georg Faerber Severity: wishlist Package name: tusd Version : 1.9.0 Upstream Author : Transloadit Ltd and Contributors URL : https://github.com/tus/tusd License : MIT Programming Lang: Go Description : implementation of the tus resumable upload protocol tusd is the official reference implementation of the tus resumable upload protocol. The protocol specifies a flexible method to upload files to remote servers using HTTP. The special feature is the ability to pause and resume uploads at any moment allowing to continue seamlessly after e.g. network interruptions. It is capable of accepting uploads with arbitrary sizes and storing them locally on disk, on Google Cloud Storage or on AWS S3 (or any other S3-compatible storage system). Due to its modularization and extensibility, support for nearly any other cloud provider could easily be added to tusd.
Bug#1009775: ITP: ruby-net-smtp -- library to send Internet mail via SMTP, the Simple Mail Transfer Protocol
Package: wnpp Owner: Georg Faerber Severity: wishlist X-Debbugs-CC: debian-r...@lists.debian.org Control: affects -1 schleuder Control: block -1 by 1009774 Package name: ruby-net-smtp Version : 0.3.1 Upstream Author : Yukihiro Matsumoto, Minero Aoki URL : https://github.com/ruby/net-smtp License : BSD-2-clause Programming Lang: Ruby Description : library to send Internet mail via SMTP, the Simple Mail Transfer Protocol This package will provide functionality to send Internet mail via SMTP, the Simple Mail Transfer Protocol. It used to be part of the Ruby standard library before Ruby 3.1, and was extracted to a standalone package. It depends on ruby-net-protocol. This package will be maintained within the Debian Ruby team.
Bug#1009774: ITP: ruby-net-protocol -- Internal class for the other net-* libraries
Package: wnpp Owner: Georg Faerber Severity: wishlist X-Debbugs-CC: debian-r...@lists.debian.org Control: affects -1 schleuder Package name: ruby-net-protocol Version : 0.1.3 Upstream Author : Yukihiro Matsumoto, Minero Aoki URL : https://github.com/ruby/net-protocol License : BSD-2-clause Programming Lang: Ruby Description : internal class for the other net-* libraries This package will provide an internal class for the other net-* libraries, for example ruby-net-smtp. It used to be part of the Ruby standard library before Ruby 3.1, and was extracted to a standalone package. It will become a dependency of ruby-net-smtp. This package will be maintained within the Debian Ruby team.
Bug#960229: [DRE-maint] Bug#960229: RFP: pdfbeads -- utility to take scanned page images and convert them to a single PDF file
Hi Rogério, On 20-05-11 15:22:04, Rogério Brito wrote: > Thanks for the kind message. I gave it a shot with gem2deb and I > produced a (very) preliminary package. It is at: > > https://github.com/rbrito/pkg-pdfbeads Did you import the latest upstream release? The gemspec tells "2014-01-30", which was quite some time ago. Did you try to build the package? Did it work? Cheers, Georg
Bug#960229: [DRE-maint] Bug#960229: RFP: pdfbeads -- utility to take scanned page images and convert them to a single PDF file
(Adding the Ruby team to the loop.) Hi team, Rogério, On 20-05-11 15:22:04, Rogério Brito wrote: > On May 10 2020, Georg Faerber wrote: > > On 20-05-10 17:24:12, Rogério Brito wrote: > > > Since I don't know much ruby, I guess that it would be best to > > > have people from the Ruby team maintain and/or package it. I am > > > even willing to co-maintain it, if necessary, but, again, my > > > knowledge of Ruby is minimal. > > > > If you're interested in learning (on your own) and improving your > > Ruby packaging skills, I'm happy to give you any help necessary. > > Thanks for the kind message. I gave it a shot with gem2deb and I > produced a (very) preliminary package. It is at: > > https://github.com/rbrito/pkg-pdfbeads > > The changelog, in particular, is very cluttered and should be cleaned, > among other things. Regarding ruby-specific packaging stuff, I would > love to get comments and/or corrections. > > The package providing jbig2 should, really, be a Recommends instead of > a Suggests, but since it is not in Debian yet, I left it as is for the > time being. > > > Let me know in case you're interested. > > While I'm not sure if I am able to maintain this package (let's say > that some use asks for a new feature), I won't know how to proceed. > > Assistance and opinions is highly appreciated. I would like to mentor Rogério and help them "learning by doing". To make this easier, an account on salsa.d.o with (limited) access to the team and/or the repo makes sense, IMHO. Thoughts? Cheers, Georg
Bug#960229: [DRE-maint] Bug#960229: RFP: pdfbeads -- utility to take scanned page images and convert them to a single PDF file
Hi Rogério, Thanks for your mail. On 20-05-10 17:24:12, Rogério Brito wrote: > Since I don't know much ruby, I guess that it would be best to have > people from the Ruby team maintain and/or package it. I am even > willing to co-maintain it, if necessary, but, again, my knowledge of > Ruby is minimal. If you're interested in learning (on your own) and improving your Ruby packaging skills, I'm happy to give you any help necessary. Let me know in case you're interested. Cheers, Georg
Bug#950876: ITP: ruby-colored2 -- library to add colors or attributes to text
Package: wnpp Owner: Georg Faerber Severity: wishlist Package name: ruby-colored2 Version : 3.1.2 Upstream Author : Konstantin Gredeskoul URL : https://github.com/kigster/colored2/ License : Expat Programming Lang: Ruby Description : library to add colors or attributes to text This library extends the String class with methods to add ANSI colors and bold, underline or reverse attributes to strings. It can be used to emphasize messages on the console output or in logs. This package will be maintained within the Debian Ruby team.
Bug#676409: ITP: ruby-ammeter -- Write specs for your Rails 3+ generators
control: retitle -1 ITP: ruby-ammeter -- Write specs for your Rails 3+ generators control: owner -1 guptautkarsh2...@gmail.com control: tags -1 + pending This package got uploaded to NEW, updating the bug metadata accordingly. Cheers, Georg
Bug#901133: ITP: gopass -- gopass is a simple but powerful password manager for your terminal
Hi Balasankar C, On 19-03-26 22:09:09, Debian Bug Tracking System wrote: > Processing commands for cont...@bugs.debian.org: > > > owner 901133 Balasankar C > Bug #901133 [wnpp] ITP: gopasspw -- team password manager based on pass > Owner recorded as Balasankar C . > > > End of message, stopping processing here. > > Please contact me if you need assistance. Do you work on packaging gopasspw? The blocking bug is gone, the missing dependency goxkcdpwgen is now available. Feel free to ping me if you would like to have manual tests done before uploading. Thanks for your work, cheers, Georg signature.asc Description: PGP signature
Bug#893048: ITP: dovecot-trees -- Dovecot individually encrypted email storage plugin
Control: retitle -1 RFP: dovecot-trees -- Dovecot individually encrypted email storage plugin Control: noowner -1 Hi all, On 18-03-15 22:34:08, Georg Faerber wrote: > This package will be maintained within the Debian Dovecot team. A friend of mine was interested in packaging this, and I would have helped them. In the meantime, a similar implementation was integrated upstream into Dovecot. My friend is now using this native feature, instead of dovecot-trees. I won't package this personally, accordingly changing the bug information to reflect the current state. Cheers, Georg signature.asc Description: Digital signature
Bug#922808: ITP: schleuder-gitlab-ticketing -- filter plugin to hook Schleuder into a GitLab issue tracker
Package: wnpp Owner: Georg Faerber Severity: wishlist Package name: schleuder-gitlab-ticketing Version : None yet Upstream Author : schleuder dev team URL : https://0xacab.org/schleuder/schleuder-gitlab-ticketing/ License : GNU Lesser General Public License v3.0 Programming Lang: Ruby Description : filter plugin to hook Schleuder into a GitLab issue tracker Schleuder is not only a helpful tool for communication within groups, it can also be used for newsletters, or by using its famous remailer capabilities to be used as a contact address for a project or as a help desk. In the latter two cases keeping an overview of the different interactions can become somewhat cumbersome, especially in a bigger collective where not everybody is able to dedicate the same amount of time / attention to the contact address / help desk. Hence it is easy that a certain thread (and so task) on the list is getting lost. Having some kind of ticketing system in place can help to easily keep track of what is done, what is in progress and what should be looked at. This package will be maintained within the Debian ruby team. signature.asc Description: Digital signature
Bug#885152: ITP: intel-me-cleaner -- Tool for partial deblobbing of Intel ME/TXE firmware images
Hi Bálint, all, On 18-10-09 13:43:51, Bálint Réczey wrote: > Thank you, please feel free to take over this ITP, your help is very > welcome! I had a package prepared but I migrated to new systems and > it looks like I lost the temporary repo at some point. Alright, will do. > I'm sorry for not following up on this earlier. All good! Cheers, Georg signature.asc Description: Digital signature
Bug#885152: ITP: intel-me-cleaner -- Tool for partial deblobbing of Intel ME/TXE firmware images
Hi all, On 18-03-13 14:53:17, Georg Faerber wrote: > - I'm interested in helping with this as well. > - I've asked upstream to introduce some changes regarding packaging > [1]. Any progress on packaging this? I would like to see the package shipped with buster, so offering hereby help, again. Would it be okay for you if I would just start? Thanks, cheers, Georg signature.asc Description: Digital signature
Bug#901133: RFP: gopass -- gopass is a simple but powerful password manager for your terminal
Hi, > Date: Mon, 11 Jun 2018 23:29:38 +0200 > From: Tobias Frost > > Gopass is already in Debian: > https://tracker.debian.org/pkg/gopass While this is true, this request is about [1], which shares the same name, but is still different from the software already packaged in Debian. Cheers, Georg [1] https://github.com/gopasspw/gopass signature.asc Description: Digital signature
Bug#898622: ITP: mat2 -- Metadata Anonymisation Toolkit 2
Package: wnpp Owner: Georg Faerber <ge...@riseup.net> Severity: wishlist Package name: mat2 Version : None yet Upstream Author : Julien Voisin <julien.voi...@dustri.org> URL : https://0xacab.org/jvoisin/mat2 License : GNU Lesser General Public License v3.0 Programming Lang: Python Description : toolkit to remove metadata of files mat2, the successor of mat, is a toolkit to remove metadata of files. Metadata consists of information that characterizes data (e.g. Word documents, pictures, music files, etc). In essence, metadata answers who, what, when, where, why, and how about every facet of the data that is being characterized. This package will be maintained within the Debian privacy team. signature.asc Description: Digital signature
Bug#894821: RFP: snuffleupagus -- Security module for php7 - Killing bugclasses and virtual-patching the rest
Package: wnpp Owner: Georg Faerber <ge...@riseup.net> Severity: wishlist Package name: snuffleupagus Version : 0.2.2 Upstream Author : 2017 NBS System URL : https://github.com/nbs-system/snuffleupagus License : GNU Lesser General Public License v3.0 Programming Lang: C / PHP Description : security module for php7 snuffleupagus is a PHP 7+ module designed to drastically raise the cost of attacks against websites, by killing entire bug classes. It also provides a powerful virtual-patching system, allowing administrators to fix specific vulnerabilities and audit suspicious behaviours without having to touch the PHP code. Key Features - Close to zero performance impact - Powerful yet simple to write virtual-patching rules - Killing several classes for vulnerabilities - Unserialize-based code execution - mail-based code execution - Cookie-stealing XSS - File-upload based code execution - Weak PRNG - XXE Hardening features - Automatic secure and samesite flag for cookies - Bundled set of rule to detect post-compromissions behaviours - Global strict mode - Preventing writeable files execution - Whitelist/blacklist for eval - Request dumping capability signature.asc Description: Digital signature
Bug#893993: ITP: anorack -- spell-checker that finds incorrect indefinite articles
Package: wnpp Owner: Georg Faerber <ge...@riseup.net> Severity: wishlist Package name: anorack Version : 0.2.3 Upstream Author : Jakub Wilk <jw...@jwilk.net> URL : https://jwilk.net/software/anorack License : Expat Programming Lang: Python Description : spell-checker that finds incorrect indefinite articles anorack is a specialized spell-checker that finds incorrect indefinite articles ("a" instead of "an", or other way round). This package will be maintained within the Debian Python team. signature.asc Description: Digital signature
Bug#764342: ITP: gandi-cli -- command-line interface for Gandi service
Just for the record: I've asked upstream about signing their releases [1]. Cheers, Georg [1] https://github.com/Gandi/gandi.cli/issues/242 signature.asc Description: Digital signature
Bug#796295: RFH: torbrowser-launcher -- helps download, update and run the Tor Browser Bundle
Hi team, I'm interested to help. Could someone outline a bit what needs to be done currently? Thanks for your work, cheers, Georg signature.asc Description: Digital signature
Bug#893048: ITP: dovecot-trees -- Dovecot individually encrypted email storage plugin
Package: wnpp Owner: Georg Faerber <ge...@riseup.net> Severity: wishlist Package name: dovecot-trees Version : 2.1.0 Upstream Author : David Goulet <dgou...@riseup.net> URL : https://0xacab.org/riseuplabs/trees License : GNU Affero General Public License Version 3 Programming Lang: C Description : A NaCL-based Dovecot individually encrypted email storage plugin. TREES, technology for resting email encrypted storage, adds NaCL-based individually encrypted email storage to the Dovecot IMAP server. This plugin is inspired by Posteo's scrambler which uses OpenSSL and RSA keypairs. TREES works in a similar way, but uses the Sodium crypto library (based on NaCL). This package will be maintained within the Debian Dovecot team. signature.asc Description: Digital signature
Bug#893045: ITP: mwic -- spell-checker that groups possible misspellings and shows them in their contexts
Package: wnpp Owner: Georg Faerber <ge...@riseup.net> Severity: wishlist Package name: mwic Version : 0.7.4 Upstream Author : Jakub Wilk <jw...@jwilk.net> URL : https://jwilk.net/software/mwic License : Expat Programming Lang: Python Description : spell-checker that groups possible misspellings and shows them in their contexts mwic, misspelled words in context, is a spell-checker that groups possible misspellings and shows them in their contexts. This is useful for checking technical documents that often contain words that are not included in standard dictionaries. This package will be maintained within the Debian Python team. signature.asc Description: Digital signature
Bug#893004: ITP: ruby-factory-bot -- framework and DSL for defining and using model instance factories
Package: wnpp Owner: Georg Faerber <ge...@riseup.net> Severity: wishlist Package name: ruby-factory-bot Version : 4.8.2 Upstream Author : Josh Clayton <jclay...@thoughtbot.com>, Joe Ferris <jfer...@thoughtbot.com> URL : https://github.com/thoughtbot/factory_bot License : Expat Programming Lang: Ruby Description : Framework and DSL for defining and using model instance factories. factory_bot provides a fixtures replacement with a straightforward definition syntax, support for multiple build strategies (saved instances, unsaved instances, attribute hashes, and stubbed objects), and support for multiple factories for the same class (user, admin_user, and so on), including factory inheritance. This packages supersedes ruby-factory-girl. The name "Factory Girl" was confusing to some developers who encountered this library, and offensive or problematic to others. In October 2017 the library was renamed to "Factory Bot". The new code isn't backwards compatible, therefore this package doesn't introduce a transitional package for ruby-factory-girl. Currently, there are only three reverse dependencies; I'll report bugs against these (and their upstreams), once this package is available in the archive, to switch accordingly. This is a build dependency of schleuder. This package will be maintained within the Debian Ruby team. signature.asc Description: Digital signature
Bug#885152: ITP: intel-me-cleaner -- Tool for partial deblobbing of Intel ME/TXE firmware images
(Sorry for missing References: and In-Reply-To:.) Hi all, - I'm interested in helping with this as well. - I've asked upstream to introduce some changes regarding packaging [1]. Thanks for your work, cheers, Georg [1] https://github.com/corna/me_cleaner/issues/180 signature.asc Description: Digital signature
Bug#826551: [Pkg-puppet-devel] RFP: puppetdb-termini -- Enable a Puppet master to connect to PuppetDB
Hi Apollon, all, On 17-02-01 20:27:54, Apollon Oikonomopoulos wrote: > Glad to see this work! > > As it seems, we have two issues here: > > 1. The Puppet 3.7 master in Jessie does not support `puppet > storeconfigs export' > 1. The Puppet 4.8 master in Stretch does not have the PuppetDB terminus > readily available > > I'm cloning this as a new bug for the export support missing in puppet > 3.7. I think the best course of action is to update puppet in Jessie via > a stable update to include the following files from the PuppetDB 2.3.8 > source: > > ext/master/lib/face/storeconfigs.rb (patched) > ext/master/lib/application/storeconfigs.rb > ext/master/lib/util/puppetdb/* > > I have already prepared an update (3.7.2-4+deb8u1, available on [0]) and > will file for a jessie-pu to get the SRM's opinion on this. We've just spoken for a while in IRC how to proceed with this and had "invented" a plan of action, which was a bit different, but anyway, your proposal is much better. Thanks for this! > I think we should deal with Puppet 4 supporting PuppetDB the same way > (i.e. ship the termini directly in puppet) via an unblock request after > 4.8.2-1 has migrated to testing. So, in this case, there is no need for an extra puppet-termini package, right? > Opinions/ideas? All in all, I really like your proposal. Two (minor) notes: - I'm wondering if d/NEWS should be extended giving an example how to do the export and import. - This should be documented in the stretch release / upgrade notes. Thanks again, cheers, Georg signature.asc Description: Digital signature
Bug#826551: RFP: puppetdb-termini -- Enable a Puppet master to connect to PuppetDB
Hi, I think the following might be of interest: I've tested the proposed way of intrigeri, which is described at [1]: > puppetdb-termini has no dependencies except puppet-agent. It just > ships 16 .rb files, that live in the upstream Puppet Git repository, > and are distributed in PuppetDB upstream tarballs. This is described at [2] as well. I've set up a puppetmaster out of j-bp, copied the .rb files into '/usr/lib/ruby/vendor_ruby/puppet', set up upstream puppetdb in another machine, and configured the puppetmaster to talk to the puppetdb. This works as expected, and creating a puppet-termini package doesn't seem to be hard. As the puppet packages are team maintained, I could join the team and create such an initial package, if that's the way to go. However, reading Apollons recent mail [3], I'm wondering if this is still needed. I'm Cc:ing the puppet maintainers - any opinions about this? Thanks for your work and all the best, Georg [1] https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=673515#33 [2] https://docs.puppet.com/puppetdb/4.3/connect_puppet_master.html#on-platforms-without-packages [3] https://lists.alioth.debian.org/pipermail/pkg-puppet-devel/2017-January/010545.html signature.asc Description: Digital signature