Le mercredi 04 décembre 2019 à 16:59 -0700, John M. Harris Jr a écrit :
> On Wednesday, December 4, 2019 12:38:20 PM MST Przemek Klosowski via
> devel
> wrote:
> > - stolen/lost laptop: I think this is the most important one for
> > most
> > people; it is mitigaged by a trusted-network-based de
Le mercredi 04 décembre 2019 à 20:50 -0700, Orion Poplawski a écrit :
>
> Interesting. Thrift appears to have pretty broken perl packaging as
> well (classes inside of files with a different name).
Thrift is broken for all languages (maybe not Java). It's upstream devs
Apache-side are trying
No missing expected images.
Passed openQA tests: 1/1 (x86_64)
--
Mail generated by check-compose:
https://pagure.io/fedora-qa/check-compose
___
devel mailing list -- devel@lists.fedoraproject.org
To unsubscribe send an email to devel-le...@lists.fedorap
Following is the list of topics that will be discussed in the FPC
meeting Thursday at 2019-12-05 17:00 UTC in #fedora-meeting-1 on
irc.freenode.net.
Local time information (via. uitime):
= Day: Thursday ==
2019-12-05 09:00 PST US/Pacific
2019-12-05
On 12/4/19 3:44 PM, Fabio Valentini wrote:
Hi everybody,
The "thrift" package was updated in rawhide and changed the name of
its library (which is oddly versioned anyway, and the "main" package
ships *.so files ???)
My apologies. This was my fist time updating thrift and I was unaware
that i
John M. Harris Jr wrote:
> Oh, of course after fingerprint verification. Luckily, that can be
> accomplished by forcing a fake shell which would run a check to see if the
> home directory is already mounted. If it's not, it'd use the ssh agent, or
> equivalent, then execute the real shell. If it's
On Wednesday, December 4, 2019 6:02:07 PM MST Kevin Kofler wrote:
> John M. Harris Jr wrote:
>
> > Well, you could theoretically use ssh-agent (or equivalent), without
> > changing the protocol in any way.
>
>
> You need protocol support to do this securely. Otherwise, your ssh-agent is
> a dec
On Wednesday, December 4, 2019 6:08:31 PM MST Chris Murphy wrote:
> On Wed, Dec 4, 2019 at 5:44 PM John M. Harris Jr
> wrote:
> >
> >
> > On Wednesday, December 4, 2019 5:41:13 PM MST Chris Murphy wrote:
> >
> > > On Wed, Dec 4, 2019 at 5:14 PM John M. Harris Jr
> > > wrote:
> > >
> > > >
> > >
On Wednesday, December 4, 2019 5:56:39 PM MST Chris Murphy wrote:
> On Wed, Dec 4, 2019 at 5:38 PM John M. Harris Jr
> wrote:
> >
> >
> > On Wednesday, December 4, 2019 5:28:17 PM MST Chris Murphy wrote:
> >
> > > You know what is a work around and not a solution and is default? ~/
> > > isn't en
On Wed, Dec 4, 2019 at 5:44 PM John M. Harris Jr wrote:
>
> On Wednesday, December 4, 2019 5:41:13 PM MST Chris Murphy wrote:
> > On Wed, Dec 4, 2019 at 5:14 PM John M. Harris Jr
> > wrote:
> > >
> > >
> > > On Wednesday, December 4, 2019 5:09:55 PM MST Chris Murphy wrote:
> > >
> > > > On Wed, D
John M. Harris Jr wrote:
> Well, you could theoretically use ssh-agent (or equivalent), without
> changing the protocol in any way.
You need protocol support to do this securely. Otherwise, your ssh-agent is
a decryption oracle which can be used by an attacker to decrypt your LUKS
keyfile on dem
Chris Murphy wrote:
> Fedora installations today don't support bootloader lock down,
That can be configured in grub.cfg after installation and it should not
break anything.
> encrypted /boot,
You can actually get that by using Calamares (which is packaged in Fedora)
to install Fedora instead o
On Wed, Dec 4, 2019 at 5:38 PM John M. Harris Jr wrote:
>
> On Wednesday, December 4, 2019 5:28:17 PM MST Chris Murphy wrote:
> > You know what is a work around and not a solution and is default? ~/
> > isn't encrypted. And the two install time options insist on restricted
> > character sets for t
On Wednesday, December 4, 2019 5:41:13 PM MST Chris Murphy wrote:
> On Wed, Dec 4, 2019 at 5:14 PM John M. Harris Jr
> wrote:
> >
> >
> > On Wednesday, December 4, 2019 5:09:55 PM MST Chris Murphy wrote:
> >
> > > On Wed, Dec 4, 2019 at 4:41 PM Marius Schwarz
> > > wrote:
> > >
> > > >
> > > >
On Wed, Dec 4, 2019 at 5:14 PM John M. Harris Jr wrote:
>
> On Wednesday, December 4, 2019 5:09:55 PM MST Chris Murphy wrote:
> > On Wed, Dec 4, 2019 at 4:41 PM Marius Schwarz
> > wrote:
> > >
> > >
> > > Am 04.12.19 um 02:02 schrieb Chris Murphy:
> > >
> > > > Anaconda custom partitioning has a
On Wednesday, December 4, 2019 5:28:17 PM MST Chris Murphy wrote:
> You know what is a work around and not a solution and is default? ~/
> isn't encrypted. And the two install time options insist on restricted
> character sets for the passphrase, the user must not change their
> keyboard layout, or
On Wed, Dec 4, 2019 at 4:59 PM John M. Harris Jr wrote:
>
> On Wednesday, December 4, 2019 12:00:06 PM MST Chris Murphy wrote:
> > Other alternatives:
> > a. At least on ext4, you can today selectively encrypt directories and
> > files, so you could have an non-encrypted ~/ by default, and choose
On Wednesday, December 4, 2019 5:09:55 PM MST Chris Murphy wrote:
> On Wed, Dec 4, 2019 at 4:41 PM Marius Schwarz
> wrote:
> >
> >
> > Am 04.12.19 um 02:02 schrieb Chris Murphy:
> >
> > > Anaconda custom partitioning has a per mount point encryption option.
> > > I can LUKS encrypt only the volum
On Wed, Dec 4, 2019 at 4:41 PM Marius Schwarz wrote:
>
> Am 04.12.19 um 02:02 schrieb Chris Murphy:
> > Anaconda custom partitioning has a per mount point encryption option.
> > I can LUKS encrypt only the volume mounted at /home. And if I do this,
> If you do this, someone can manipulate your sys
On Wednesday, December 4, 2019 12:38:20 PM MST Przemek Klosowski via devel
wrote:
> - stolen/lost laptop: I think this is the most important one for most
> people; it is mitigaged by a trusted-network-based decryption, unless
> the device is in unencrypted sleep mode and the new 'beneficial ow
On Wednesday, December 4, 2019 4:40:14 PM MST Marius Schwarz wrote:
> Am 04.12.19 um 02:02 schrieb Chris Murphy:
>
> > Anaconda custom partitioning has a per mount point encryption option.
> > I can LUKS encrypt only the volume mounted at /home. And if I do this,
>
> If you do this, someone can m
On Wed, Dec 4, 2019 at 4:22 PM Marius Schwarz wrote:
>
> Am 03.12.19 um 09:07 schrieb Lennart Poettering:
> > Also note that on Fedora Workstation we default to suspend-on-idle
> > these days. i.e. when you don't actually work on the laptop the laptop
> > is suspended and not reachable via SSH at
On Wednesday, December 4, 2019 12:00:06 PM MST Chris Murphy wrote:
> Other alternatives:
> a. At least on ext4, you can today selectively encrypt directories and
> files, so you could have an non-encrypted ~/ by default, and choose
> what directories to encrypt. There's no GUI assistance for this y
Am 04.12.19 um 02:02 schrieb Chris Murphy:
> Anaconda custom partitioning has a per mount point encryption option.
> I can LUKS encrypt only the volume mounted at /home. And if I do this,
If you do this, someone can manipulate your system to trojan horse your
passwords,
when he has physical access
Am 03.12.19 um 09:07 schrieb Lennart Poettering:
> Also note that on Fedora Workstation we default to suspend-on-idle
> these days. i.e. when you don't actually work on the laptop the laptop
> is suspended and not reachable via SSH at all, hence adding
> systemd-homed doesn't make anything worse in
Hi everybody,
The "thrift" package was updated in rawhide and changed the name of
its library (which is oddly versioned anyway, and the "main" package
ships *.so files ???)
At least gnuradio needs to be rebuilt for the new version (if it
supports the new library version? it's not a simple SONAME
Am 04.12.19 um 16:46 schrieb Fabio Valentini:
The process for joining the group of package maintainers in the first
place is outlined on this aptly named wiki page:
https://fedoraproject.org/wiki/Join_the_package_collection_maintainers
It should pretty much cover everything you need to know.
Hi all,
The modularity team will be holding a discussion about the recent mailing
list thread with a subject line of "RFC: Modularity Simplified" which can
be found on hyperkitty here[1]. Discussion will take place tomorrow (Dec.
5) at 10am (eastern, 15h UTC) in irc://irc.freenode.net/#fedora-meet
Em qua., 4 de dez. de 2019 às 10:16, Tom Hughes escreveu:
>
> On 04/12/2019 12:58, Paulo César Pereira de Andrade wrote:
>
> >Idea about @subject started with ongoing customer support case that
> > originated https://bugzilla.redhat.com/show_bug.cgi?id=1778236
> > [Problems linking to zlib cor
Em qua., 4 de dez. de 2019 às 10:11, Igor Gnatenko
escreveu:
>
> Do you have some benchmark results and/or some statistics related to
> the file size?
Mostly a guess it should load faster. With 'readelf -r', standard
libz.so.1 in rhel7 shows 46 relocations, and with -Bdynamic-functions
it shows
On 12/4/19 5:25 AM, John M. Harris Jr wrote:
Network based decryption keys are possible, but I don't recommend it, because
there's no way to determine that the user booting up the system is actually
meant to have access to the data that's on it.
There are two distinct thread models :
- stolen/
On Wed, Dec 4, 2019 at 9:01 AM Roberto Ragusa wrote:
>
> On 12/4/19 12:28 AM, Chris Murphy wrote:
>
> > I actually prefer the idea that'd if I'm not logged in, my data is
> > considered at rest and crypto home is locked, in contrast to how FDE
> > does it which treats my data as not at rest even t
Minutes:
https://meetbot.fedoraproject.org/fedora-meeting-3/2019-12-03/modularity.2019-12-03-15.02.html
Minutes (text):
https://meetbot.fedoraproject.org/fedora-meeting-3/2019-12-03/modularity.2019-12-03-15.02.txt
Log:
https://meetbot.fedoraproject.org/fedora-meeting-3/2019-12-03/modularity.2019-12
On Wed, Dec 04, 2019 at 12:24:42PM +, Richard W.M. Jones wrote:
> On Tue, Dec 03, 2019 at 10:19:34PM +, Richard W.M. Jones wrote:
> > I understood the message the first time, so I didn't need to be
> > emailed 147 times (so far) about it.
> >
> > Is there something I can do to stop this sp
Ticket also filed
https://pagure.io/releng/issue/9081
___
devel mailing list -- devel@lists.fedoraproject.org
To unsubscribe send an email to devel-le...@lists.fedoraproject.org
Fedora Code of Conduct:
https://docs.fedoraproject.org/en-US/project/code-o
Can someone from releng please fix this issue please?
https://pagure.io/releng/fedora-scm-requests/issue/20219
koji isn't aware
BuildError: package rubygem-linked-list not in list for tag
f32-updates-candidate
https://koji.fedoraproject.org/koji/taskinfo?taskID=39430986
__
On 12/4/19 12:28 AM, Chris Murphy wrote:
I actually prefer the idea that'd if I'm not logged in, my data is
considered at rest and crypto home is locked, in contrast to how FDE
does it which treats my data as not at rest even though I'm not logged
in at all.
On the other hand I would expect my
On Wed, Dec 4, 2019 at 4:40 PM Theodore Papadopoulo
wrote:
>
> On 12/4/19 12:11 PM, Miro Hrončok wrote:
> > On 04. 12. 19 11:28, Fabio Valentini wrote:
> >> Doesn't the new "Take" button at
> >> https://src.fedoraproject.org/rpms/eclipse-avr work, so we don't have
> >> to bother releng anymore?
>
On 12/4/19 12:11 PM, Miro Hrončok wrote:
> On 04. 12. 19 11:28, Fabio Valentini wrote:
>> Doesn't the new "Take" button at
>> https://src.fedoraproject.org/rpms/eclipse-avr work, so we don't have
>> to bother releng anymore?
>> It's at the bottom of the left navigation area.
>
> I have updated the
> For linked-list,
> And you see the temp_dir rubygem dep is used for only
> spec/archive_spec.rb context "::load" and "#write!".
>
> ```
> $ grep -r temp_dir spec/
> ```
>
> spec/archive_spec.rb
>
> ```
Thanks that fixes the %check
> context "::load" do
> ...
> end
>
> context "#write!"
On 04/12/2019 12:58, Paulo César Pereira de Andrade wrote:
Idea about @subject started with ongoing customer support case that
originated https://bugzilla.redhat.com/show_bug.cgi?id=1778236
[Problems linking to zlib corrected if zlib is linked with -Bsymbolic-functions]
when doing some resear
Do you have some benchmark results and/or some statistics related to
the file size?
On Wed, Dec 4, 2019 at 2:09 PM Paulo César Pereira de Andrade
wrote:
>
> Hi,
>
> Idea about @subject started with ongoing customer support case that
> originated https://bugzilla.redhat.com/show_bug.cgi?id=177
Hi,
Idea about @subject started with ongoing customer support case that
originated https://bugzilla.redhat.com/show_bug.cgi?id=1778236
[Problems linking to zlib corrected if zlib is linked with -Bsymbolic-functions]
when doing some research, it appears Ubuntu has it by default for
some time.
For linked-list,
> + ruby -Ilib:. -e 'Dir.glob "test/**/test_*.rb", &method(:require)'
...
> 0 runs, 0 assertions, 0 failures, 0 errors, 0 skips
> + popd
"test/**/test_*.rb" you are using is incorrect in this case, and
different from the guideline. The test files were not captured..
"./test/**/*_
On Wed, Dec 04, 2019 at 05:46:09PM +0530, Billa Surendra wrote:
> Dear all,
> I am not working with them, I am working with different organization.
> Please share the procedure how to compile all packages of fedora for not
> supporting compressed instruction.
You need to keep David Abdurachmanov
On Wed, Dec 04, 2019 at 12:11:51PM +0100, Miro Hrončok wrote:
> On 04. 12. 19 11:28, Fabio Valentini wrote:
> > Doesn't the new "Take" button at
> > https://src.fedoraproject.org/rpms/eclipse-avr work, so we don't have
> > to bother releng anymore?
> > It's at the bottom of the left navigation area
On Tue, Dec 03, 2019 at 10:19:34PM +, Richard W.M. Jones wrote:
> I understood the message the first time, so I didn't need to be
> emailed 147 times (so far) about it.
>
> Is there something I can do to stop this spam?
Another few hundred emails this morning too.
Apparently if I could make
OLD: Fedora-Rawhide-20191203.n.1
NEW: Fedora-Rawhide-20191204.n.0
= SUMMARY =
Added images:4
Dropped images: 7
Added packages: 0
Dropped packages:8
Upgraded packages: 0
Downgraded packages: 0
Size of added packages: 0 B
Size of dropped packages:75.14 MiB
Dear all,
I am not working with them, I am working with different organization.
Please share the procedure how to compile all packages of fedora for not
supporting compressed instruction.
Thanks
Billa
___
devel mailing list -- devel@lists.fedoraproject.
On Wednesday, December 4, 2019 3:53:08 AM MST Lennart Poettering wrote:
> To my knowledge the SSH protocol doesn't have provisions for allowing
> that. i.e. there's no API and no protocol for allowing apps on the
> server to ask for decryption of arbitrary blobs from the client.
>
> I mean, I am h
On Tue, 2019-12-03 at 15:15 -0500, Ben Rosser wrote:
> On Tue, Dec 3, 2019 at 3:18 AM Tom Hughes wrote:
> > Ben Rosser was working on sorting out grunt. In fact I believe he
> > took the first of those at least.
> >
> > Tom
> >
> > On 03/12/2019 07:45, Vít Ondruch wrote:
> > > According to [1],
Dne 04. 12. 19 v 12:28 Vít Ondruch napsal(a):
> Dne 03. 12. 19 v 23:43 Leigh Scott napsal(a):
>> Thanks, I didn't know about gem2rpm.
>>
>> Reviews submitted (needed for sassc tests).
>
> Out of curiosity, where I can find the tests?
Answering to myself:
https://github.com/sass/sass-spec
Vít
Dne 03. 12. 19 v 23:43 Leigh Scott napsal(a):
> Thanks, I didn't know about gem2rpm.
>
> Reviews submitted (needed for sassc tests).
Out of curiosity, where I can find the tests?
Vít
>
> https://bugzilla.redhat.com/show_bug.cgi?id=1779403
> https://bugzilla.redhat.com/show_bug.cgi?id=1779404
Yes, you are right: it worked.
So, I closed the releng ticket.
Thanks for the shortcut!
Am 04.12.19 um 11:28 schrieb Fabio Valentini:
On Wed, Dec 4, 2019 at 11:25 AM Tilmann Bubeck wrote:
Hi
I am willing to adopt eclipse-avr as a new maintainer. It was orphaned,
because it did not build pr
On 04. 12. 19 11:28, Fabio Valentini wrote:
Doesn't the new "Take" button at
https://src.fedoraproject.org/rpms/eclipse-avr work, so we don't have
to bother releng anymore?
It's at the bottom of the left navigation area.
I have updated the instructions:
https://fedoraproject.org/wiki/Orphaned_
On Di, 03.12.19 16:28, Chris Murphy (li...@colorremedies.com) wrote:
> Trying to get back on track with this thread though, if systemd-homed
> is available by the time startup reaches rescue.target, does this
> somewhat confuse the distinction of whatever multi-user.target is,
> which would then r
On Mi, 04.12.19 03:12, John M. Harris Jr (joh...@splentity.com) wrote:
> I don't see how redefining "at rest" is useful here. Especially because, I
> can't imagine a time where my user isn't logged in in one way or another, or a
> user that has permissions to enter my home directory is logged in.
On Mi, 04.12.19 03:09, Kevin Kofler (kevin.kof...@chello.at) wrote:
> Lennart Poettering wrote:
> > The problem is that sshd's PAM implementation doesn't allow PAM
> > modules to ask questions in login sessions which are authenticated via
> > authorized_keys instead of PAM. Because if we could ask
No missing expected images.
Compose FAILS proposed Rawhide gating check!
6 of 43 required tests failed, 1 result missing
openQA tests matching unsatisfied gating requirements shown with **GATING**
below
Failed openQA tests: 12/161 (x86_64), 1/2 (arm)
New failures (same test not failed in Fedora
On Wed, Dec 4, 2019 at 11:25 AM Tilmann Bubeck wrote:
>
> Hi
>
> I am willing to adopt eclipse-avr as a new maintainer. It was orphaned,
> because it did not build properly, because the dependent packages
> ("eclipse", ...) have been moved to a module.
>
> I already contacted Mat Booth who maintai
On Tuesday, December 3, 2019 12:35:01 PM MST Przemek Klosowski via devel
wrote:
> I think Chris is referring to the fact that you have to be there when
> the encrypted system is restarted, to type the decryption key/password.
> The dilemma is this: if the decryption is automatic, it doesn't real
Hi
I am willing to adopt eclipse-avr as a new maintainer. It was orphaned,
because it did not build properly, because the dependent packages
("eclipse", ...) have been moved to a module.
I already contacted Mat Booth who maintains the eclipse module to
clarify the solutions for the above pro
On Tuesday, December 3, 2019 6:57:37 PM MST Kevin Kofler wrote:
> This depends (even in the absence of disk encryption) on where you have told
> plasma-nm to store your WPA (or 802.11x etc.) credentials (unless you are
> using an entirely open network). (The credential storage strategy is
> config
On Tuesday, December 3, 2019 6:02:57 PM MST Chris Murphy wrote:
> sshd doesn't startup until after this. You can't ssh into your system
> before user home is unlocked. There is at least a chance of this with
> systemd-homed even if it's not yet implemented.
For the record, it is not unheard of for
64 matches
Mail list logo