Accepted debian-edu-config 0.413 (source all)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Thu, 12 Jul 2007 21:53:16 +0200
Source: debian-edu-config
Binary: debian-edu-config
Architecture: source all
Version: 0.413
Distribution: unstable
Urgency: low
Maintainer: Debian Edu Developers <debian-edu@lists.debian.org>
Changed-By: Steffen Joeris <white@debian.org>
Description:
debian-edu-config - Configuration files for Skolelinux systems
Changes:
debian-edu-config (0.413) unstable; urgency=low
.
[ Ronny Aasen and Petter Reinholdtsen ]
* Fixed a bug in cfengine's ltsp_arch variable, that broke the
installer. Based on patch from Klaus Ade Johnstad. Fixes
skolelinux bug #1196.
.
[ Klaus Ade Johnstad ]
* Fixed typo introduced in fix for skolelinux bug #1196
* Fixed tail according to new syntax, 's/tail +/tail -n +/g'
in /usr/sbin/ltsp-make-client
* Fixed bug #1220, typo in lts.conf
.
[ Petter Reinholdtsen ]
* Update ltsp testsuite to use i386 on amd64 systems to fix
skolelinux bug #1200.
* Fixed debian-edu-etc-svk initialization using expect, and
improved the script to a point where it is working properly.
* Make it possible to enable debian-edu-etc-svk by preseeding
debian-edu-config/etc-in-svk, and include cronjob for updating
the svk state of /etc/. Depend on svk and expect to make
sure the needed packages are installed.
* Make sure init.d/start-wlan is not executed during package
installation, as it can kill the network connection on laptops.
* Change init.d/fetch-ldap-cert to extract the server certificate
using the SSL protocol, instead of downloading it over HTTP.
* Correct ldap-tools/mkslapdcert to extract the server certificate
(and no the public key) and make it available for download, as this
is the file needed by clients interested in verifying the SSL
connection to the LDAP server.
* Rewrite ldap.conf to use the downloaded LDAP server certificate to
verify the connection, trying to make it possible to disable the
'TLS_REQCERT never' setting to enforce this. It is not yet
working, so the 'TLS_REQCERT never' is still needed. This is
related to skolelinux bug 1211.
* Move stray client side LDAP configuration from cf.ldapserver
to the more correct cf.ldapclient.
* Remove kdm theme cfengine rules. They are no longer needed.
* Renamed the 'update' command in debian-edu-etc-svk to commit.
The old command still work, but will be removed in the future.
* Add proposed APT sources in the LTSP chroot as well. Related to
skolelinux bug #1168.
* Remove code in mkslapdcert to make the LDAP SSL certificate
available from the web server. It is no longer needed when
fetch-ssl-cert can fetch it directly from the LDAP server.
Make sure to only try to download the certificate if it
is mentioned in the LDAP config.
* Modify cfengine rule for editing /etc/libnss-ldap.conf and
/etc/pam_ldap.conf to avoid editing if the host setting already is
present.
* Improve usage information printed by debian-edu-fsautoresize.
* Extend testsuite/taskpkgs to detect if a package in a task is
missing.
* Update cfengine rule for /etc/hosts.allow to also allow access
from 10.0.2.0/23 to tftp and portmap, making sure diskless
workstation boots get access.
* Allow 127.0.0.1 NFS mount privileges to the LTSP chroot, to
get qemu testing to work out of the box.
* Updates in ltsp-make-client:
- General cleanup and convert it to use aptitude
instead of apt-get to track manually installed packages.
- Make sure it installs debian-edu-archive-keyring, and
- fetches the LDAP SSL certificate.
- Add code verify that enoug disk space is available in
/opt/ltsp/$arch before starting. Using 4096 MiB as the limit.
- Add code to make sure /var/lib/dbus and /media is writable
by dbus. Solves skolelinux bug #1180.
- Stop installing usbmount. It does not work at the moment,
and is not needed when udev/hal is working.
* Specify SCREEN_07=ldm in lts.conf to make sure ldm is still
enabled on thin clients after ltsp-make-clients installed
kdm. Solves skolelinux bug #1210.
.
[ Steffen Joeris ]
* Include debian-edu-etc-svk under the SBIN programs in the Makefile
to make sure it is included in the binary package
* Make sure that the start page translations are in sync with the
English page (Closes skolelinux bug #1156)
- Include updated Spanish start page
Thanks to José L. Redrejo
- Include initial Russian start page
Thanks to Yuri Kozlov
- Include updated German start page
Thanks to Ludger Sicking
- Include updated French start page
Thanks to Xavier Oswald
- Include updated Norwegian start page
Thanks to Frode Jemtland
- Include updated Dutch start page
Thanks to Thijs Kinkhorst
* Delete old obsolete directories from the old kde-profile
* Add kgeography, gcompris, gimp and stopmotion to the students
desktop (See skolelinux bug #1199)
* Make sure that the standard kde start menu is recognized and avoid
having an empty menu (Closes skolelinux bug #1199)
* Remove obsolete desktop-directories dir from students kiosk mode
* Change slapd-etch_debian-edu.conf to allow the members of the admin
group to perform their administrative privileges
(Closes skolelinux bug #1146)
* Uncomment code in debian-edu-etc-svk to call aptitude, because the
dependencies are already solved via Depends field and it would
cause the installer to fail (Closes skolelinux bug #1205)
Thanks to Daniel HeÃ?
* Remove dependency against debianutils as this package is essential
* Make sure that Makefile clean call will honour failures
* Remove some kde restrictions from the kiosk mode, only keep the
rule that students are not allowed to start a new session and can't
become root via kde. Thanks to Klaus Ade Johnstad for some advice
* Include configuration file for adept_notifer to tell the application
not to start during login (Closes skolelinux bug: #1151)
.
[ Daniel HeÃ? ]
* Let cupsd listen on /var/run/cups/cups.sock for connections from
local clients like the KDE printer ui (Closes skolelinux bug #1207)
* Change slapd (ldap) config to restrict jradmins from changing the
passwords of users with higher privileges (members of the admins group,
smbadmin and the rootdn). This could had been used to set new passwords
and gain access to accounts with higher privileges.
Many thanks to Steffen Joeris for helping to implement this.
Files:
eac0b038370a990f7e0b0b8c38c33efd 862 misc optional debian-edu-config_0.413.dsc
00004c10f6e0334b5ec20f079607ec7e 275132 misc optional debian-edu-config_0.413.tar.gz
9a141bdcf566c0b2cd0b85f7b6f862f9 247092 misc optional debian-edu-config_0.413_all.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
iD8DBQFGlohx62zWxYk/rQcRApYSAJ4to62m38mDRU/F5THcE1VN8iR7ogCfWKPG
CCB2/3EDElg49b2CtG8STGA=
=1CLo
-----END PGP SIGNATURE-----
Accepted:
debian-edu-config_0.413.dsc
to pool/main/d/debian-edu-config/debian-edu-config_0.413.dsc
debian-edu-config_0.413.tar.gz
to pool/main/d/debian-edu-config/debian-edu-config_0.413.tar.gz
debian-edu-config_0.413_all.deb
to pool/main/d/debian-edu-config/debian-edu-config_0.413_all.deb
Reply to: