Re: [gentoo-dev] [PATCH v1] enable gccgo for all platform

2015-11-04 Thread William Hubbs
On Tue, Nov 03, 2015 at 03:09:52PM +, James Le Cuirot wrote: > On Tue, 3 Nov 2015 08:56:29 -0600 > William Hubbs wrote: > > > As has been pointed out in the thread so far, gcc-5 only supports > > go-1.4. dev-lang/go is at 1.5, so really the only thing that should be > >

[gentoo-dev] Globally masking the sssd USE-flag on sudo and enabling it on supported architectures only

2015-11-04 Thread lejonet
Hi gentoo-dev, I recently had a bout with sudo and sssd, and found that the problem was that sudo wasn't sssd aware and the reason we don't have a USE-flag for that is due to some lingering bugs. To partially solve this I propose that we mask the sssd USE-flag, globally and only unmask it on

Re: [gentoo-dev] ChangeLog

2015-11-04 Thread hasufell
On 11/04/2015 09:56 AM, Andrew Savchenko wrote: > On Sun, 1 Nov 2015 14:53:20 +0100 hasufell wrote: You shouldn't use rsync anymore, it is inherently insecure. The git tree is _properly_ gpg signed so you can verify it's correctness. With the following portage

Re: [gentoo-dev] ChangeLog

2015-11-04 Thread Chí-Thanh Christopher Nguyễn
hasufell schrieb: If you want to improve the situation, go talk to git upstream and send patches. Or do what Andrew suggested should happen. Best regards, Chí-Thanh Christopher Nguyễn

Re: [gentoo-dev] ChangeLog

2015-11-04 Thread Andrew Savchenko
On Sun, 1 Nov 2015 14:53:20 +0100 hasufell wrote: > >> You shouldn't use rsync anymore, it is inherently insecure. The git > >> tree is _properly_ gpg signed so you can verify it's correctness. > >> > >> With the following portage configuration/hooks, any user can run the > >> tree directly from

Re: [gentoo-dev] ChangeLog

2015-11-04 Thread Chí-Thanh Christopher Nguyễn
hasufell schrieb: On 11/04/2015 09:56 AM, Andrew Savchenko wrote: No, it is not. The whole git tree is insecure and no better than rsync or CVS in terms of data security because SHA1 is vulnerable. Another one who is confusing _any_ collision with _preimage attack_ ;) While Andrew's view is

Re: [gentoo-dev] ChangeLog

2015-11-04 Thread Kristian Fiskerstrand
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 On 11/04/2015 05:18 PM, hasufell wrote: > On 11/04/2015 09:56 AM, Andrew Savchenko wrote: >> No, it is not. The whole git tree is insecure and no better than >> rsync or CVS in terms of data security because SHA1 is >> vulnerable. >> > > Another

Re: [gentoo-dev] ChangeLog

2015-11-04 Thread hasufell
On 11/04/2015 05:33 PM, Chí-Thanh Christopher Nguyễn wrote: > hasufell schrieb: >> On 11/04/2015 09:56 AM, Andrew Savchenko wrote: >>> No, it is not. The whole git tree is insecure and no better than >>> rsync or CVS in terms of data security because SHA1 is vulnerable. >>> >> Another one who is

Re: [gentoo-dev] ChangeLog

2015-11-04 Thread hasufell
On 11/04/2015 05:44 PM, Chí-Thanh Christopher Nguyễn wrote: > hasufell schrieb: > >> If you want to improve the situation, go talk to git upstream >> and send patches. > > Or do what Andrew suggested should happen. > > If you want to break the whole git workflow yes. Good suggestion.

Re: [gentoo-dev] Globally masking the sssd USE-flag on sudo and enabling it on supported architectures only

2015-11-04 Thread Markos Chandras
On 11/04/2015 11:34 AM, lejonet wrote: > Hi gentoo-dev, > > I recently had a bout with sudo and sssd, and found that the problem was that > sudo wasn't sssd aware and the reason we don't have a USE-flag for that is due > to some lingering bugs. > > To partially solve this I propose that we mask