; we could add enforcing=0 there.
I like this idea. Then the solution would have been "reboot into
rescue mode and update your system".
Let's do this.
--
Konstantin Ryabitsev
LinuxFoundation.org
Montréal, Québec
--
devel mailing list
devel@lists.fedoraproject.org
https://admin.fe
e overall
operation and pass that as the homedir.
Since we're talking about this in the rpm spec context, "--homedir
%{buildroot}" would do the trick, since it's destroyed before each rpm
build.
Regards,
--
Konstantin Ryabitsev
LinuxFoundation.org
Montréal, Québec
--
devel mailin
On Fri, Oct 11, 2013 at 9:55 AM, Konstantin Ryabitsev
wrote:
>> Or does the check fail only if the key had already expired when the
>> signature was made?
>
> Looks like gpg verify doesn't take that into consideration.
PS: And, FYI, for a very good reason -- it is very si
On Fri, Oct 11, 2013 at 7:02 AM, Björn Persson
wrote:
> Konstantin Ryabitsev wrote:
>>gpg --verify (and gpgv) will return 0 even if the key is revoked or
>>expired, so you can't really rely on exit code alone. The following is
>>the right approach:
>>
>>g
x27;
The pubkey (source2) format has to be an actual keyring (gpg --export
keyid > keyring.gpg), not an ascii pubkey block.
That one-liner is pretty much all that's required for valid gpg verification.
Hope this helps.
Best,
--
Konstantin Ryabitsev
LinuxFoundation.org
Montréal, Québ
st be something that's done by rpmbuild.
Best,
--
Konstantin Ryabitsev
LinuxFoundation.org
Montréal, Québec
-- Forwarded message --
From:
Date: Mon, Sep 23, 2013 at 8:30 AM
Subject: Broken dependencies: totpcgi
To: totpcgi-ow...@fedoraproject.org
totpcgi has broken dependenc
;s neither False nor True. It's None.
That would be a worthy tribute to the pythonista and the release-name hater.
Best,
--
Konstantin Ryabitsev
LinuxFoundation.org
Montréal, Québec
--
devel mailing list
devel@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/li
Is it just a bogus transient error?
Regards,
--
Konstantin Ryabitsev
LinuxFoundation.org
Montréal, Québec
--
devel mailing list
devel@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/devel
Fedora Code of Conduct: http://fedoraproject.org/code-of-conduct
on of Apache's SymlinksIfOwnerMatch. It
closes a number of vulnerabilities, such as taking advantages of
insecure tempfile handling (you think you're writing to
/tmp/myapp.debug, but a malicious symlink points that to
/etc/somethingoranother).
I agree that we should turn this
ally shouldn't),
that's mainly because there are so many SSO options to choose besides just
OpenID.
Best,
--
Konstantin Ryabitsev
LinuxFoundation.org
Montréal, Québec
--
devel mailing list
devel@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/devel
ements like "crash the box if the message does not go to disk".
I'm not sure anyone actually cares to join the two, honestly. Ausearch
and aureport are well understood and cherished by (admittedly few)
people that know what they do.
Best,
--
Konstantin Ryabitsev
LinuxFoundation.org
Montréal, Québec
--
devel mailing list
devel@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/devel
ons by using blunt
cryptanalysis tools.
So, it's not accurate to say that we don't currently have ways to detect that.
Regards,
--
Konstantin Ryabitsev
LinuxFoundation.org
Montréal, Québec
--
devel mailing list
devel@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/devel
around.
Regards,
--
Konstantin Ryabitsev
LinuxFoundation.org
Montréal, Québec
--
devel mailing list
devel@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/devel
7;s experience
changes:
Was: Install logwatch.
Becomes: Install logwatch. Make sure you install and enable rsyslog.
I just want to make sure people are aware of the change.
Best,
--
Konstantin Ryabitsev
LinuxFoundation.org
Montréal, Québec
--
devel mailing list
devel@lists.fedoraproject.org
ht
ble
> in the /var/log/messages format however...
So, in other words, all our existing log analysis tools have to be
modified if they are to be of any use in Fedora 18?
Best,
--
Konstantin Ryabitsev
LinuxFoundation.org
Montréal, Québec
--
devel mailing list
devel@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/devel
since you then
have to allow read_lnk_files in addition to plain filesystem access.
Allowing read_lnk_files is undesirable, as there is a number of
security vulnerabilities that make use of symbolic links, so this will
be a net negative to the security of the system.
Regards,
--
Konstantin Ryabitsev
LinuxFo
/git.kernel.org/?p=linux/kernel/git/stable/linux-stable.git;a=summary
PS: Ignore what it says on www.kernel.org -- those guys need to fix
their script. ;)
Best,
--
Konstantin Ryabitsev
Systems Administrator, Kernel.org
Montréal, Québec
signature.asc
Description: This is a digitally signed mess
I just orphaned mod_evasive. I believe Jan Ondrej is going to pick it
up.
https://bugzilla.redhat.com/show_bug.cgi?id=739171
Best regards,
--
Konstantin Ryabitsev
Systems Administrator
The Linux Foundation
Montréal, Québec
signature.asc
Description: This is a digitally signed message part
Hi, all:
I no longer have to deal with Exchange (yay), so I am no longer suited
to be the maintainer of pidgin-sipe.
Please, someone pick it up.
Best,
--
Konstantin Ryabitsev
Systems Administrator
Linux Foundation, kernel.org
Montréal, Québec
pgpkH0bB5S112.pgp
Description: PGP signature
On Wed, Oct 26, 2011 at 9:54 AM, Brett Lentz wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> Hello -
>
> I've been waiting for someone to review my package submission for
> about a week now.
>
> Request is here: https://bugzilla.redhat.com/show_bug.cgi?id=747050
>
> I'd be happy to d
On Thu, Jul 29, 2010 at 11:55 PM, Jesse Keating wrote:
> Once again I want to thank everybody who helped out and for all the
> (continued) patience! I'll be available via email and IRC as much as
> possible the next few days to help anybody with dist-git issues. Look
> for Oxf13 on freenode. Ha
On Fri, Jul 30, 2010 at 1:35 PM, Konstantin Ryabitsev
wrote:
> Hmm... Doesn't seem to be working at all for me.
>
> $ fedpkg co verbiste
> Traceback (most recent call last):
> File "/usr/bin/fedpkg", line 959, in
> args.command(args)
> File &
On Fri, May 28, 2010 at 9:40 AM, Matt McCutchen wrote:
> On Fri, 2010-05-28 at 09:24 -0400, Konstantin Ryabitsev wrote:
>> This is fairly obvious, but I couldn't find anything in bugzilla, so
>> I'll mention it here. I have a docking station and an LCD monitor
>>
Hi, all:
This is fairly obvious, but I couldn't find anything in bugzilla, so
I'll mention it here. I have a docking station and an LCD monitor
connected to it. When I dock, I have two screens -- one that's
attached to my laptop, another that is external. That part works fine.
However, I run into
On Mon, May 17, 2010 at 5:31 PM, Jesse Keating wrote:
> This was a failed experiment with fedora hosted, and I no longer need to
> manage this package. If anybody wants it, it's now an orphan in pkgdb.
I've taken over for now, since I submitted a few patches for it
upstream in the past few weeks
y closely tied to pylint
(to the point of frequently being released at the same time).
--
McGill University IT Security
Konstantin Ryabitsev
Montréal, Québec
--
devel mailing list
devel@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/devel
T Security
Konstantin Ryabitsev
Montréal, Québec
--
devel mailing list
devel@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/devel
n I'm
afraid I don't really have the skills nor have the time to spend on
such massive effort).
Regards,
--
McGill University IT Security
Konstantin Ryabitsev
Montréal, Québec
--
devel mailing list
devel@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/devel
what will be in RHEL/CentOS, which is what
they use for "serious work" on their servers.
I think it's a fairly large but mostly quiet group, actually. :)
--
McGill University IT Security
Konstantin Ryabitsev
Montréal, Québec
--
devel mailing list
devel@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/devel
away!
Diaperrash
Okay, okay, not everyone here has a 1-year-old. Umm... how is:
Bluesteak
;)
--
McGill University IT Security
Konstantin Ryabitsev
Montréal, Québec
--
devel mailing list
devel@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/devel
30 matches
Mail list logo
