[Bug 1742752] Re: system error(4) since latest update on xenial
Thanks for switching it out of "incomplete". I'm sorry I couldn't get back to it yet, but it's in my list. ** Changed in: sssd (Ubuntu) Status: New => Triaged ** Changed in: sssd (Ubuntu) Importance: Undecided => Medium -- You received this bug notification because you are a member of Ubuntu Server, which is subscribed to sssd in Ubuntu. https://bugs.launchpad.net/bugs/1742752 Title: system error(4) since latest update on xenial To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/sssd/+bug/1742752/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1754746] Re: Please update to 1.16.1 for bionic
I saw some memleak fixes in 1.16.1, but also new features and new behavior. This bug was filed past the ubuntu feature freeze, so it would need a feature freeze exception (https://wiki.ubuntu.com/FreezeExceptionProcess). Here is the list of changes from upstream. I'm not sure we would be able to get a FFe for this: New Features * A new option ``auto_private_groups`` was added. If this option is enabled, SSSD will automatically create user private groups based on user's UID number. The GID number is ignored in this case. Please see https://docs.pagure.org/SSSD.sssd/design_pages/auto_private_groups.html for more details on the feature. * The SSSD smart card integration now supports a special type of PAM conversation implemented by GDM which allows the user to select the appropriate smrt card certificate in GDM. Please refer to https://docs.pagure.org/SSSD.sssd/design_pages/smartcard_multiple_certificates.html for more details about this feature. * A new API for accessing user and group information was added. This API is similar to the tradiional Name Service Switch API, but allows the consumer to talk to SSSD directly as well as to fine-tune the query with e.g. how cache should be evaluated. Please see https://docs.pagure.org/SSSD.sssd/design_pages/enhanced_nss_api.html for more information on the new API. * The ``sssctl`` command line tool gained a new command ``access-report``, which can generate who can access the client machine. Currently only generating the report on an IPA client based on HBAC rules is supported. Please see https://docs.pagure.org/SSSD.sssd/design_pages/attestation_report.html for more information about this new feature. * The ``hostid`` provider was moved from the IPA specific code to the generic LDAP code. This allows SSH host keys to be access by the generic LDAP provider as well. See the ``ldap_host_*`` options in the ``sssd-ldap`` manual page for more details. * Setting the ``memcache_timeout`` option to 0 disabled creating the memory cache files altogether. This can be useful in cases there is a bug in the memory cache that needs working around. Performance enhancements * Several internal changes to how objects are stored in the cache improve SSSD performance in environments with large number of objects of the same type (e.g. many users, many groups). In particular, several useless indexes were removed and the most common object types no longer use the indexed ``objectClass`` attribute, but use unindexed ``objectCategory`` instead (#3503) * In setups with ``id_provider=ad`` that use POSIX attributes which are replicated to the Global Catalog, SSSD uses the Global Catalog to determine which domain should be contacted for a by-ID lookup instead of iterating over all domains. More details about this feature can be found at https://docs.pagure.org/SSSD.sssd/design_pages/uid_negative_global_catalog.html Notable bug fixes ^ * A crash in ``sssd_nss`` that might have happened if a list of domains was refreshed while a NSS lookup using this request was fixed (#3551) * A potential crash in ``sssd_nss`` during netgroup lookup in case the netgroup object kept in memory was already freed (#3523) * Fixed a potential crash of ``sssd_be`` with two concurrent sudo refreshes in case one of them failed (#3562) * A memory growth issue in ``sssd_nss`` that occured when an entry was removed from the memory cache was fixed (#3588) * Two potential memory growth issues in the ``sssd_be`` process that could have hit configurations with ``id_provider=ad`` were fixed (#3639) * The ``selinux_child`` process no longer crashes on a system where SSSD is compiled with SELinux support, but at the same time, the SELinux policy is not even installed on the machine (#3618) * The memory cache consistency detection logic was fixed. This would prevent printing false positive memory cache corruption messages (#3571) * SSSD now remembers the last successfuly discovered AD site and use this for DNS search to lookup a site and forest during the next lookup. This prevents time outs in case SSSD was discovering the site using the global list of DCs where some of the global DCs might be unreachable. (#3265) * SSSD no longer starts the implicit file domain when configured with ``id_provider=proxy`` and ``proxy_lib_name=files``. This bug prevented SSSD from being used in setups that combine identities from UNIX files together with authentication against a remote source unless a files domain was explicitly configured (#3590) * The IPA provider can handle switching between different ID views better (#3579) * Previously, the IPA provider kept SSH public keys and certificates from an ID view in its cache and returned them even if the public key or
[Bug 1754871] Re: qemu-bridge-helper incorrectly installed
Correct, it's not suid root because of security concerns, according to this changelog entry from verison 2.1+dfsg-3: * include /usr/lib/qemu-bridge-helper binary, but not make it setuid due to security concerns outlined in #691138 (Closes: #691138) https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=691138: "qemu-bridge-helper is not packaged" I'll subscribe @paelzer for further commenting. ** Bug watch added: Debian Bug tracker #691138 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=691138 ** Changed in: qemu (Ubuntu) Status: New => Triaged -- You received this bug notification because you are a member of Ubuntu Server, which is subscribed to qemu in Ubuntu. https://bugs.launchpad.net/bugs/1754871 Title: qemu-bridge-helper incorrectly installed To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/qemu/+bug/1754871/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 225229] Re: agentXPerms configuration directive is ignored
I will mark this as fixed then, following the comment from @pressureman. ** Changed in: net-snmp (Ubuntu) Status: Confirmed => Fix Released -- You received this bug notification because you are a member of Ubuntu Server, which is subscribed to net-snmp in Ubuntu. https://bugs.launchpad.net/bugs/225229 Title: agentXPerms configuration directive is ignored To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/net-snmp/+bug/225229/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1754753] Re: package php7.1-common 7.1.11-0ubuntu0.17.10.1 failed to install/upgrade: subprocess installed post-installation script returned error exit status 139
Thanks for filing this bug in Ubuntu. The error was a segfault in perl: [ 6271.748175] traps: frontend[10999] general protection ip:5597bba02070 sp:7ffd1840f470 error:0 in perl[5597bb97d000+1f7000] Creating config file /etc/php/7.1/mods-available/sysvsem.ini with new version Segmentation fault (core dumped) dpkg: error processing package php7.1-common (--configure): subprocess installed post-installation script returned error exit status 139 I suggest you try the following commands: sudo apt update sudo apt -f install ** Changed in: php7.1 (Ubuntu) Status: New => Incomplete -- You received this bug notification because you are a member of Ubuntu Server, which is subscribed to php7.1 in Ubuntu. https://bugs.launchpad.net/bugs/1754753 Title: package php7.1-common 7.1.11-0ubuntu0.17.10.1 failed to install/upgrade: subprocess installed post-installation script returned error exit status 139 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/php7.1/+bug/1754753/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1754620] Re: ERROR: This tool requires libclamav with functionality level 85 or higher (current f-level: 84)
Thanks for getting back to us about this. I'll mark the bug as invalid then, following your comment. ** Changed in: clamav (Ubuntu) Status: New => Invalid -- You received this bug notification because you are a member of Ubuntu Server, which is subscribed to clamav in Ubuntu. https://bugs.launchpad.net/bugs/1754620 Title: ERROR: This tool requires libclamav with functionality level 85 or higher (current f-level: 84) To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/clamav/+bug/1754620/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1754916] Re: package clamav-milter 0.99.4+addedllvm-0ubuntu0.14.04.1 failed to install/upgrade: подпроцесс установлен сценарий post-installation возвратил код ошибки 1
Thanks for filing this bug in Ubuntu. Unfortunately I was not able to reproduce the problem. I installed trusty 14.04, clamav that came with it, then enabled updates and upgraded just fine with no errors. I'll mark this bug as incomplete pending further information on how to reproduce it. If you get more details about what happened, please add a note here. Thanks ** Changed in: clamav (Ubuntu) Status: New => Incomplete -- You received this bug notification because you are a member of Ubuntu Server, which is subscribed to clamav in Ubuntu. https://bugs.launchpad.net/bugs/1754916 Title: package clamav-milter 0.99.4+addedllvm-0ubuntu0.14.04.1 failed to install/upgrade: подпроцесс установлен сценарий post-installation возвратил код ошибки 1 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/clamav/+bug/1754916/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1758840] Re: package winbind 2:4.7.6+dfsg~ubuntu-0ubuntu1 failed to install/upgrade: installed winbind package post-installation script subprocess returned error exit status 1
Thanks for filing this bug in Ubuntu. The logs show: Mar 26 03:44:58 easy-Main-Laptop-17-bs0xx systemd[1]: Starting Samba Winbind Daemon... Mar 26 03:45:00 easy-Main-Laptop-17-bs0xx winbindd[16572]: invalid permissions on directory '/var/log/samba/cores': has 0755 should be 0700 Mar 26 03:45:00 easy-Main-Laptop-17-bs0xx winbindd[16572]: Failed to create /var/log/samba/cores for user 0 with mode 0700 Mar 26 03:45:00 easy-Main-Laptop-17-bs0xx winbindd[16572]: Unable to setup corepath for winbindd: No such file or directory Mar 26 03:45:00 easy-Main-Laptop-17-bs0xx winbindd[16572]: invalid permissions on directory '/var/log/samba/cores': has 0755 should be 0700 Mar 26 03:45:00 easy-Main-Laptop-17-bs0xx winbindd[16572]: Failed to create /var/log/samba/cores for user 0 with mode 0700 Mar 26 03:45:00 easy-Main-Laptop-17-bs0xx winbindd[16572]: Unable to setup corepath for winbindd: No such file or directory You should fix the permissions of /var/log/samba/cores to be 0700. Since this is a local configuration issue, I'll mark this bug as invalid. If you believe that to be incorrect, please reopen it and comment on why you think it's a bug in the samba package, including steps to reproduce it. Thanks! ** Changed in: samba (Ubuntu) Status: New => Invalid -- You received this bug notification because you are a member of Ubuntu Server, which is subscribed to samba in Ubuntu. https://bugs.launchpad.net/bugs/1758840 Title: package winbind 2:4.7.6+dfsg~ubuntu-0ubuntu1 failed to install/upgrade: installed winbind package post-installation script subprocess returned error exit status 1 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/samba/+bug/1758840/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1758331] Re: IPv6 Route to OpenVPN Server is not created
Tested on my laptop using hostname based endpoint from IPv6 enable location (was failing previously); packages from PPA resolved my problem. -- You received this bug notification because you are a member of Ubuntu Server, which is subscribed to a duplicate bug report (1756032). https://bugs.launchpad.net/bugs/1758331 Title: IPv6 Route to OpenVPN Server is not created To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager/+bug/1758331/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
