[Bug 566412] Review Request: wapiti - A web application vulnerability scanner
https://bugzilla.redhat.com/show_bug.cgi?id=566412 Fabian Affolter changed: What|Removed |Added URL|https://sourceforge.net/tra |https://sourceforge.net/tra |cker/?func=detail=29712 |cker/?func=detail=29712 |59_id=168625=847 |59_id=168625=847 |490 |490 Resolution|NOTABUG |DUPLICATE Alias|wapiti | --- Comment #17 from Fabian Affolter --- *** This bug has been marked as a duplicate of bug 1787225 *** -- You are receiving this mail because: You are always notified about changes to this product and component ___ package-review mailing list -- package-review@lists.fedoraproject.org To unsubscribe send an email to package-review-le...@lists.fedoraproject.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/package-review@lists.fedoraproject.org
[Bug 566412] Review Request: wapiti - A web application vulnerability scanner
Please do not reply directly to this email. All additional comments should be made in the comments box of this bug. https://bugzilla.redhat.com/show_bug.cgi?id=566412 Jason Tibbitts ti...@math.uh.edu changed: What|Removed |Added Status|NEW |CLOSED Blocks|563471(FE-SECLAB) |201449(FE-DEADREVIEW) Resolution||NOTABUG Status Whiteboard|StalledSubmitter| Last Closed||2010-12-17 12:51:54 -- Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email --- You are receiving this mail because: --- You are on the CC list for the bug. ___ package-review mailing list package-review@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/package-review
[Bug 566412] Review Request: wapiti - A web application vulnerability scanner
Please do not reply directly to this email. All additional comments should be made in the comments box of this bug. https://bugzilla.redhat.com/show_bug.cgi?id=566412 Jason Tibbitts ti...@math.uh.edu changed: What|Removed |Added Status Whiteboard||StalledSubmitter --- Comment #16 from Jason Tibbitts ti...@math.uh.edu 2010-11-17 18:13:31 EST --- Was the license issue ever fixed? -- Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email --- You are receiving this mail because: --- You are on the CC list for the bug. ___ package-review mailing list package-review@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/package-review
[Bug 566412] Review Request: wapiti - A web application vulnerability scanner
Please do not reply directly to this email. All additional comments should be made in the comments box of this bug. https://bugzilla.redhat.com/show_bug.cgi?id=566412 Fabian Affolter fab...@bernewireless.net changed: What|Removed |Added Alias||wapiti -- Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email --- You are receiving this mail because: --- You are on the CC list for the bug. ___ package-review mailing list package-review@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/package-review
[Bug 566412] Review Request: wapiti - A web application vulnerability scanner
Please do not reply directly to this email. All additional comments should be made in the comments box of this bug. https://bugzilla.redhat.com/show_bug.cgi?id=566412 Mamoru Tasaka mtas...@ioa.s.u-tokyo.ac.jp changed: What|Removed |Added URL||https://sourceforge.net/tra ||cker/?func=detailaid=29712 ||59group_id=168625atid=847 ||490 --- Comment #15 from Mamoru Tasaka mtas...@ioa.s.u-tokyo.ac.jp 2010-03-17 02:43:34 EDT --- Okay, thank you for followups. -- Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email --- You are receiving this mail because: --- You are on the CC list for the bug. ___ package-review mailing list package-review@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/package-review
[Bug 566412] Review Request: wapiti - A web application vulnerability scanner
Please do not reply directly to this email. All additional comments should be made in the comments box of this bug. https://bugzilla.redhat.com/show_bug.cgi?id=566412 --- Comment #7 from Mamoru Tasaka mtas...@ioa.s.u-tokyo.ac.jp 2010-03-14 11:47:17 EDT --- Well, while I don't know well about maven-plugin-cobertura, again the problem is that - man page claims that wapiti is under GPLv2 (not GPLv2+ or GPL+) - and wapiti uses some file which is under ASL 2.0 - and GPLv2 and ASL 2.0 is legally incompatible so we cannot distribute wapiti, not the issue of correcting license tag or so. Note that GPLv3 and ASL 2.0 is compatible, so GPL+ (i.e. GPL with any version) and ASL 2.0, or GPLv2+ and ASL 2.0 is okay, however GPLv2 and ASL 2.0 are incompatible. -- Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email --- You are receiving this mail because: --- You are on the CC list for the bug. ___ package-review mailing list package-review@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/package-review
[Bug 566412] Review Request: wapiti - A web application vulnerability scanner
Please do not reply directly to this email. All additional comments should be made in the comments box of this bug. https://bugzilla.redhat.com/show_bug.cgi?id=566412 --- Comment #9 from Nikolay Ulyanitsky lys...@lystor.org.ua 2010-03-14 12:07:01 EDT --- Well, while I don't know well about maven-plugin-cobertura, again the problem is that - man page claims that wapiti is under GPLv2 (not GPLv2+ or GPL+) - and wapiti uses some file which is under ASL 2.0 - and GPLv2 and ASL 2.0 is legally incompatible so we cannot distribute wapiti, not the issue of correcting license tag or so. Other examples from F-12 CVS: * 389-admin: GPLv2 and ASL 2.0 * xsd: GPLv2 with exceptions and ASL 2.0 -- Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email --- You are receiving this mail because: --- You are on the CC list for the bug. ___ package-review mailing list package-review@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/package-review
[Bug 566412] Review Request: wapiti - A web application vulnerability scanner
Please do not reply directly to this email. All additional comments should be made in the comments box of this bug. https://bugzilla.redhat.com/show_bug.cgi?id=566412 --- Comment #11 from Mamoru Tasaka mtas...@ioa.s.u-tokyo.ac.jp 2010-03-14 12:17:44 EDT --- Note that - for xsd: this says GPLv2 with exceptions and ASL 2.0, and for this package actually the submitter (also the upstream), I and spot had some discussion - 389-admin: I don't know well. -- Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email --- You are receiving this mail because: --- You are on the CC list for the bug. ___ package-review mailing list package-review@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/package-review
[Bug 566412] Review Request: wapiti - A web application vulnerability scanner
Please do not reply directly to this email. All additional comments should be made in the comments box of this bug. https://bugzilla.redhat.com/show_bug.cgi?id=566412 --- Comment #10 from Mamoru Tasaka mtas...@ioa.s.u-tokyo.ac.jp 2010-03-14 12:14:39 EDT --- ... note that if you point out some potential legal issue on other packages, it does _NOT_ affect this review. -- Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email --- You are receiving this mail because: --- You are on the CC list for the bug. ___ package-review mailing list package-review@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/package-review
[Bug 566412] Review Request: wapiti - A web application vulnerability scanner
Please do not reply directly to this email. All additional comments should be made in the comments box of this bug. https://bugzilla.redhat.com/show_bug.cgi?id=566412 --- Comment #13 from Mamoru Tasaka mtas...@ioa.s.u-tokyo.ac.jp 2010-03-14 12:31:56 EDT --- Anyway license issue must need fixing. -- Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email --- You are receiving this mail because: --- You are on the CC list for the bug. ___ package-review mailing list package-review@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/package-review
[Bug 566412] Review Request: wapiti - A web application vulnerability scanner
Please do not reply directly to this email. All additional comments should be made in the comments box of this bug. https://bugzilla.redhat.com/show_bug.cgi?id=566412 --- Comment #6 from Nikolay Ulyanitsky lys...@lystor.org.ua 2010-03-13 16:02:26 EST --- For now license issue only We can change the license to GPLv2 and MIT and ASL 2.0. Examples: * maven-plugin-cobertura: ASL 2.0 and GPLv2 and GPLv2+ * jrefactory: BSD and ASL 1.1 and GPL+ * zikula-module-menutree: GPL+ and ASL 2.0 Spec.diff: @@ -4,11 +4,11 @@ Name: wapiti Version:2.2.1 -Release:2%{?dist} -Summary:A web application vulnerability scanner +Release:3%{?dist} +Summary:Web application vulnerability scanner Group: Applications/Internet -License:GPLv2 +License:GPLv2 and MIT and ASL 2.0 URL:http://wapiti.sourceforge.net/ Source0: http://downloads.sourceforge.net/project/wapiti/wapiti/wapiti-%{version}/wapiti-%{version}.tar.bz2 # https://sourceforge.net/tracker/?func=detailaid=2954112group_id=168625atid=847490 @@ -58,17 +58,17 @@ %patch1 -p1 # Copy setup.py -%{__cp} %{SOURCE1} setup.py +cp %{SOURCE1} setup.py -# Change files encoding to utf8 +# Change an encoding of files to UTF-8 for f in ChangeLog_lswww; do iconv -f iso-8859-1 -t utf-8 $f $f.tmp touch -r $f $f.tmp -%{__mv} $f.tmp $f +mv $f.tmp $f done # Use system libraries BeautifulSoup, httplib2, SocksiPy -%{__rm} -rf src/net/BeautifulSoup.py src/net/httplib2/ +rm -rf src/net/BeautifulSoup.py src/net/httplib2/ %build @@ -76,42 +76,47 @@ %install -%{__rm} -rf %{buildroot} +rm -rf %{buildroot} %{__python} setup.py install -O1 --skip-build --root %{buildroot} # Remove the interpreter from site-packages find %{buildroot}%{python_sitelib} -type f -iname *py -exec \ -%{__sed} -i 's/#!\/usr\/bin\/env python//' {} \; +sed -i 's/#!\/usr\/bin\/env python//' {} \; %find_lang %{name} %clean -%{__rm} -rf %{buildroot} +rm -rf %{buildroot} %files -f %{name}.lang %defattr(-,root,root,-) %doc AUTHORS ChangeLog_Wapiti ChangeLog_lswww README TODO example.txt -%dir %{_sysconfdir}/%{name} -%dir %{_sysconfdir}/%{name}/attacks -%config(noreplace) %{_sysconfdir}/%{name}/attacks/* -%{_bindir}/%{name} -%{_mandir}/man1/%{name}* -%dir %{python_sitelib}/%{name}/ -%{python_sitelib}/%{name}/attack/ -%dir %{python_sitelib}/%{name}/config/ -%{python_sitelib}/%{name}/config/vulnerabilities/ -%{python_sitelib}/%{name}/file/ -%{python_sitelib}/%{name}/language/ -%{python_sitelib}/%{name}/net/ -%{python_sitelib}/%{name}/report/ -%{python_sitelib}/%{name}/report_template/ -%{python_sitelib}/%{name}/vulnerability.py* -%{python_sitelib}/%{name}-*.egg-info +%dir %{_sysconfdir}/wapiti +%dir %{_sysconfdir}/wapiti/attacks +%config(noreplace) %{_sysconfdir}/wapiti/attacks/* +%{_bindir}/wapiti +%{_mandir}/man1/wapiti* +%dir %{python_sitelib}/wapiti/ +%{python_sitelib}/wapiti/attack/ +%dir %{python_sitelib}/wapiti/config/ +%{python_sitelib}/wapiti/config/vulnerabilities/ +%{python_sitelib}/wapiti/file/ +%{python_sitelib}/wapiti/language/ +%{python_sitelib}/wapiti/net/ +%{python_sitelib}/wapiti/report/ +%{python_sitelib}/wapiti/report_template/ +%{python_sitelib}/wapiti/vulnerability.py* +%{python_sitelib}/wapiti-*.egg-info %changelog +* Sat Mar 13 2010 Nikolay Ulyanitsky lystor AT lystor.org.ua - 2.2.1-3 +- Fix the license +- Fix the summary +- Replace generally useful macros by regular commands + * Thu Mar 11 2010 Nikolay Ulyanitsky lystor AT lystor.org.ua - 2.2.1-2 - Move gettext MO files to /usr/share/locale - Preserve timestamps on documentation files Spec URL: http://repo.lystor.org.ua/fedora/12/SPECS/wapiti.spec SRPM URL: http://repo.lystor.org.ua/fedora/12/SRPMS/wapiti-2.2.1-3.fc12.src.rpm The srpm builds successfully by the mock on Fedora 11, 12, 13 with i386/x86_64 architectures. -- Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email --- You are receiving this mail because: --- You are on the CC list for the bug. ___ package-review mailing list package-review@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/package-review
[Bug 566412] Review Request: wapiti - A web application vulnerability scanner
Please do not reply directly to this email. All additional comments should be made in the comments box of this bug. https://bugzilla.redhat.com/show_bug.cgi?id=566412 --- Comment #5 from Mamoru Tasaka mtas...@ioa.s.u-tokyo.ac.jp 2010-03-11 06:05:20 EST --- For now license issue only - MIT is no problem because MIT is compatible with GPLv2. I rechecked the whole code again and it seems that only ./src/report_template/includes/js/excanvas.js (ASL 2.0) is problematic. -- Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email --- You are receiving this mail because: --- You are on the CC list for the bug. ___ package-review mailing list package-review@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/package-review
[Bug 566412] Review Request: wapiti - A web application vulnerability scanner
Please do not reply directly to this email. All additional comments should be made in the comments box of this bug. https://bugzilla.redhat.com/show_bug.cgi?id=566412 Bug 566412 depends on bug 566409, which changed state. Bug 566409 Summary: Review Request: python-SocksiPy - A Python SOCKS module https://bugzilla.redhat.com/show_bug.cgi?id=566409 What|Old Value |New Value Status|ASSIGNED|CLOSED Resolution||NEXTRELEASE -- Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email --- You are receiving this mail because: --- You are on the CC list for the bug. ___ package-review mailing list package-review@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/package-review
[Bug 566412] Review Request: wapiti - A web application vulnerability scanner
Please do not reply directly to this email. All additional comments should be made in the comments box of this bug. https://bugzilla.redhat.com/show_bug.cgi?id=566412 Mamoru Tasaka mtas...@ioa.s.u-tokyo.ac.jp changed: What|Removed |Added CC||mtas...@ioa.s.u-tokyo.ac.jp --- Comment #3 from Mamoru Tasaka mtas...@ioa.s.u-tokyo.ac.jp 2010-03-08 14:29:32 EST --- Before reviewing this: * Well, from ./doc/wapiti.1 this software seems to be licensed under GPLv2 (strict). However ./src/report_template/includes/js/excanvas.js is licensed under ASL 2.0, which is also included in rebuilt binary rpm and unfortunately GPLv2 and ASL 2.0 is incompatible: https://fedoraproject.org/wiki/Licensing Would you ask the upstream about this? * Would you move GNU message catalogs (.mo files) to the normal directory for these files (i.e. /usr/share/locale/lang/LC_MESSAGES)? (patch may be needed, I have not checked this, though) -- Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email --- You are receiving this mail because: --- You are on the CC list for the bug. ___ package-review mailing list package-review@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/package-review
[Bug 566412] Review Request: wapiti - A web application vulnerability scanner
Please do not reply directly to this email. All additional comments should be made in the comments box of this bug. https://bugzilla.redhat.com/show_bug.cgi?id=566412 Mamoru Tasaka mtas...@ioa.s.u-tokyo.ac.jp changed: What|Removed |Added Blocks|177841(FE-NEEDSPONSOR) | -- Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email --- You are receiving this mail because: --- You are on the CC list for the bug. ___ package-review mailing list package-review@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/package-review
[Bug 566412] Review Request: wapiti - A web application vulnerability scanner
Please do not reply directly to this email. All additional comments should be made in the comments box of this bug. https://bugzilla.redhat.com/show_bug.cgi?id=566412 Fabian Affolter fab...@bernewireless.net changed: What|Removed |Added CC||fab...@bernewireless.net Blocks||563471(FE-SECSPIN) -- Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email --- You are receiving this mail because: --- You are on the CC list for the bug. ___ package-review mailing list package-review@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/package-review
[Bug 566412] Review Request: wapiti - A web application vulnerability scanner
Please do not reply directly to this email. All additional comments should be made in the comments box of this bug. https://bugzilla.redhat.com/show_bug.cgi?id=566412 Nikolay Ulyanitsky lys...@lystor.org.ua changed: What|Removed |Added Depends on||566409 -- Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email --- You are receiving this mail because: --- You are on the CC list for the bug. ___ package-review mailing list package-review@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/package-review
[Bug 566412] Review Request: wapiti - A web application vulnerability scanner
Please do not reply directly to this email. All additional comments should be made in the comments box of this bug. https://bugzilla.redhat.com/show_bug.cgi?id=566412 --- Comment #1 from Nikolay Ulyanitsky lys...@lystor.org.ua 2010-02-19 04:42:05 EST --- Builds successfully in mock on Fedora 11 with i386/x86_64 architectures. -- Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email --- You are receiving this mail because: --- You are on the CC list for the bug. ___ package-review mailing list package-review@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/package-review
[Bug 566412] Review Request: wapiti - A web application vulnerability scanner
Please do not reply directly to this email. All additional comments should be made in the comments box of this bug. https://bugzilla.redhat.com/show_bug.cgi?id=566412 --- Comment #2 from Nikolay Ulyanitsky lys...@lystor.org.ua 2010-02-19 07:53:14 EST --- Builds successfully in mock on Fedora 13 with i386/x86_64 architectures. -- Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email --- You are receiving this mail because: --- You are on the CC list for the bug. ___ package-review mailing list package-review@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/package-review
[Bug 566412] Review Request: wapiti - A web application vulnerability scanner
Please do not reply directly to this email. All additional comments should be made in the comments box of this bug. https://bugzilla.redhat.com/show_bug.cgi?id=566412 Nikolay Ulyanitsky lys...@lystor.org.ua changed: What|Removed |Added Blocks||177841(FE-NEEDSPONSOR) -- Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email --- You are receiving this mail because: --- You are on the CC list for the bug. ___ package-review mailing list package-review@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/package-review