Re: Will Packaging BoringSSL Bring Any Trouble to the Security Team?

2016-05-18 Thread Hans-Christoph Steiner
The Android SDK is really probably more like Eclipse. About 5 years of support, they are still maintaining Android 2.3.3 to some degree and that's at least 5 years old. https://android.stackexchange.com/a/84816 Also, the security profile is relatively low risk for the Android SDK in general: *

Re: Will Packaging BoringSSL Bring Any Trouble to the Security Team?

2016-05-18 Thread Hans-Christoph Steiner
BoringSSL is just a part of the Android SDK. It has an unstable API because it is only the C backing to a single Java library called conscrypt. That library is in turn only used as part of the Android SDK. Using the upstream build system, all of the source code is checked out at once from many

Re: Will Packaging BoringSSL Bring Any Trouble to the Security Team?

2016-05-17 Thread Ralph Sanchez
My opinion might not mean much, but as a user, I agree with this. If i'm installing from the stable depository, we expect certain things from packages there and everything must be held to those guidelines. And mostly if we are using it from unstable, we are hoping to see it evolve into being put

Re: Will Packaging BoringSSL Bring Any Trouble to the Security Team?

2016-05-17 Thread Michael Stone
On Tue, May 17, 2016 at 04:02:37PM +0800, seamli...@gmail.com wrote: BoringSSL is also free software, as long as there are maintainers who are willing to spend time on it, I think it has rights to exist in Debian. Well I have been contributing to Debian for not long, so please point me out my

Re: Will Packaging BoringSSL Bring Any Trouble to the Security Team?

2016-05-17 Thread 殷啟聰
Hi all, Sorry for posting to a general channel. I didn't know that :( BoringSSL is also free software, as long as there are maintainers who are willing to spend time on it, I think it has rights to exist in Debian. Well I have been contributing to Debian for not long, so please point me out my

Re: Will Packaging BoringSSL Bring Any Trouble to the Security Team?

2016-05-13 Thread Elmar Stellnberger
Just wanted to tell that I am quite happy not to have boringSSL in Debian - main. I think it is depeerable there apart from the security risk of adopting the SSL package from a company which was largely funded by intelligence services and the Pentagon. I would rather like to see OpenBSD`s

Re: Will Packaging BoringSSL Bring Any Trouble to the Security Team?

2016-05-13 Thread Moritz Mühlenhoff
Moritz Mühlenhoff wrote: >> are introducing BoringSSL, a fork of OpenSSL by Google. The latest >> Android OS and its SDK no longer use OpenSSL and they use some APIs >> only provided by BoringSSL, hence we are bringing BoringSSL to Debian. >> You can see the ITP at

Re: Will Packaging BoringSSL Bring Any Trouble to the Security Team?

2016-05-13 Thread Moritz Mühlenhoff
殷啟聰 schrieb: > Dear Debian Security Team, Our contact address is t...@security.debian.org, not debian-security... > The "android-tools" packaging team > > are introducing BoringSSL, a

Will Packaging BoringSSL Bring Any Trouble to the Security Team?

2016-05-12 Thread 殷啟聰
ringSSL's package won't conflict with OpenSSL's packages. Any libraries wishing to use BoringSSL must set their RPATH accordingly. Seems that OpenSSL is taken heavy care of by Debian's security team, so I wonder if BoringSSL will bring you any trouble? If no one has objections, we will upload this pack

Re: Current-stable trouble getting through http proxy

2005-11-12 Thread J.H.M. Dassen (Ray)
-HOWTO.html and note that NTLMAPS is packaged. HTH, Ray -- dit heerst jennifer lopez op tv geluid uit en marilyn uit m'n speakers :) Typh op #cistron -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]

Current-stable trouble getting through http proxy

2005-11-08 Thread Gregory Arntson
I am running the current-stable release. I am able to download packages via ftp through our ISA 2004 server. I would prefer to use http and unless I am mistake that is the only way through apt-get to download the security update packages. Apt returns Error 407:Authetication issue with proxy. I set

Re: Trouble with CFS

2004-03-15 Thread Gerrit Pape
On Thu, Mar 04, 2004 at 07:32:47PM +, Toby Batch wrote: I'm new to this list (and to debian) so please forgive me if this is not the correct place for this question. You should have filed a bug against the cfs package instead, or in this case rather against the nfs-kernel-server or

Trouble with CFS

2004-03-04 Thread Toby Batch
to this server i am reticent to rebuild the kernel. Can anyone suggest how i can this working? -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]

Trouble with CFS

2004-03-04 Thread Toby Batch
I'm new to this list (and to debian) so please forgive me if this is not the correct place for this question. I'm trying to apt-get install cfs on a server i rent from uk2net. the apt get fails when i'm installing it with the following error: # apt-get install cfs Reading Package Lists...

trouble

2003-10-13 Thread conrad
Socket Error: 10060

RE: trouble

2003-10-13 Thread Christian Storch
ETIMEDOUT: TCPT_KEEP has expired ;) -Original Message- From: conrad [mailto:[EMAIL PROTECTED] Sent: Monday, October 13, 2003 6:45 PM To: [EMAIL PROTECTED] Subject: trouble Socket Error: 10060 -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble

Re: trouble

2003-10-13 Thread Nils Juergens
7090774 Having problems sending big files over the net? Try out Efisto (http://efisto.rnbhq.org). -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]

Re: trouble

2003-10-13 Thread Robert L. Harris
, Nils -- Nils Juergens | [EMAIL PROTECTED] | icq 7090774 Having problems sending big files over the net? Try out Efisto (http://efisto.rnbhq.org). -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED] NO DO NOT OPEN

trouble

2003-10-13 Thread conrad
Socket Error: 10060

RE: trouble

2003-10-13 Thread Christian Storch
ETIMEDOUT: TCPT_KEEP has expired ;) -Original Message- From: conrad [mailto:[EMAIL PROTECTED] Sent: Monday, October 13, 2003 6:45 PM To: debian-security@lists.debian.org Subject: trouble Socket Error: 10060

Re: trouble

2003-10-13 Thread Nils Juergens
On Mon, 13.10.03, conrad [EMAIL PROTECTED] wrote: Socket Error: 10060 Thats easy: Ionization from the air-conditioning. Just turn off you A-C and you should be fine. If that does not work open all windows, then close them again. greetings, Nils -- Nils Juergens | [EMAIL PROTECTED] | icq

Re: trouble

2003-10-13 Thread Robert L. Harris
, Nils -- Nils Juergens | [EMAIL PROTECTED] | icq 7090774 Having problems sending big files over the net? Try out Efisto (http://efisto.rnbhq.org). -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED] NO DO NOT OPEN

Tiger: Trouble understanding/reacting to errors

2002-08-26 Thread Johannes Graumann
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hello, It's me again ;0) and I ask again for advice on how to deal with certain errors reported by my daily Tiger-run. The first pair of erors I'm facing is: * The port for services afs3-fileserver is assigned to service ircd-dalnet. * The port