For myself I'm unconvinced that it makes sense to have static libraries
used for aid.
I was really hoping the security team would comment on this one way or
another.
I can certainly create libkrb5-static.
But I'd rather have a broader consensus of the project than just the aid
maintainer agreeing
Sam Hartman hartm...@debian.org writes:
For myself I'm unconvinced that it makes sense to have static libraries
used for aid. I was really hoping the security team would comment on
this one way or another.
That's kind of where I'm at too. There are enough other tricks that you
can pull to
Hello,
As there is no progress with this issue since nearly two months, I would
now suggest to go along with the third option cited below. I think a
'libkrb5-static package' is a good compromise to solve both bugs and
enable me to use curl with aide.
What do you think?
Best regards
Hannes
On
Dear security team,
as suggested by Sam I ask you to comment on the following issue.
I want to statically link my package aide to libcurl, which is
statically linked for security reasons. Since krb5 does not support
static libraries any longer (#439039), the static library of libcurl is
now
On sab, mag 18, 2013 at 11:38:15 +0200, Hannes von Haugwitz wrote:
Dear security team,
as suggested by Sam I ask you to comment on the following issue.
I want to statically link my package aide to libcurl, which is
statically linked for security reasons. Since krb5 does not support
static
Alessandro == Alessandro Ghedini gh...@debian.org writes:
3) A static aide with libcurl and somewhat crippled Kerberos
meaning that aide needs to get libcurl and krb5 updates. In
addition libcurl might potentially need to get rebuilt on
Kerberos security updates.
My recommendation is that we talk to the security team.
The biggest disadvantage of all these static libs running around is the
number of packages they need to do security updates for.
We could ask them about whether it's better to have:
1) no static aide
2) a static libcurl with less
[ CCed the krb5 maintainers, see below ]
On ven, mag 10, 2013 at 10:41:29 +0200, Hannes von Haugwitz wrote:
On Thu, Apr 12, 2012 at 12:36:21AM +1000, Trent W. Buck wrote:
Alessandro Ghedini wrote:
Not much. I'm still quite uncomfortable on replacing MIT kerberos, the
reference
There are reasons that the krb5 upstream build does not include static
libs.
The main problem is that more and more krb5 depends on plugins for
various things.
As an example, preauthentication, KDC location,' GSS-API mechanisms all
support plugins.
In the krb5 in wheezy, you cannot request FAST
On ven, mag 10, 2013 at 07:33:16 -0400, Sam Hartman wrote:
So, I'm open to including static support in a special package (not
libkrb5-dev), but I'd need to understand the use case and be convinced
it's actually a good idea.
If I understood this, Hannes wants to enable support for libcurl in
Alessandro Ghedini gh...@debian.org writes:
On ven, mag 10, 2013 at 07:33:16 -0400, Sam Hartman wrote:
So, I'm open to including static support in a special package (not
libkrb5-dev), but I'd need to understand the use case and be convinced
it's actually a good idea.
If I understood this,
11 matches
Mail list logo
