--- Begin Message ---
- To: "Debian Bug Tracking System" <submit@bugs.debian.org>
- Subject: lintian: Please check more strictly for weird file permissions.
- From: "Piotr Engelking" <inkerman42@gmail.com>
- Date: Sun, 30 Apr 2006 09:27:52 +0200
- Message-id: <814371d60604300027q1d6909e0pd77c392a548aabef@mail.gmail.com>
Package: lintian
Version: 1.23.16
Severity: wishlist
$ ls -l /usr/sbin/post{drop,queue}
-r-xr-sr-x 1 root postdrop 8736 Apr 7 16:48 /usr/sbin/postdrop*
-r-xr-sr-x 1 root postdrop 9988 Apr 7 16:48 /usr/sbin/postqueue*
The above is a violation of section 10.9 of the Debian Policy, but lintian
doesn't complain.
$ dpkg -S /usr/sbin/post{drop,queue}
postfix: /usr/sbin/postdrop
postfix: /usr/sbin/postqueue
$ dpkg-query -W postfix
postfix 2.2.10-1
-- System Information:
Debian Release: testing/unstable
APT prefers testing
APT policy: (500, 'testing')
Architecture: i386 (x86_64)
Shell: /bin/sh linked to /bin/dash
Kernel: Linux 2.6.16
Locale: LANG=C, LC_CTYPE=pl_PL.UTF-8 (charmap=UTF-8)
Versions of packages lintian depends on:
ii binutils 2.16.1cvs20060413-1 The GNU assembler, linker and bina
ii diffstat 1.41-1 produces graph of changes introduc
ii dpkg-dev 1.13.18 package building tools for Debian
ii file 4.17-1 Determines file type using "magic"
ii gettext 0.14.5-2 GNU Internationalization utilities
ii intltool-debian 0.34.2+20060415 Help i18n of RFC822 compliant conf
ii libparse-debianchang 1.0-1 parse Debian changelogs and output
ii man-db 2.4.3-3 The on-line manual pager
ii perl [libdigest-md5- 5.8.8-4 Larry Wall's Practical Extraction
lintian recommends no packages.
-- no debconf information
--- End Message ---
--- Begin Message ---
Source: lintian
Source-Version: 1.23.20
We believe that the bug you reported is fixed in the latest version of
lintian, which is due to be installed in the Debian FTP archive:
lintian_1.23.20.dsc
to pool/main/l/lintian/lintian_1.23.20.dsc
lintian_1.23.20.tar.gz
to pool/main/l/lintian/lintian_1.23.20.tar.gz
lintian_1.23.20_all.deb
to pool/main/l/lintian/lintian_1.23.20_all.deb
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 365452@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Russ Allbery <rra@debian.org> (supplier of updated lintian package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@debian.org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Mon, 8 May 2006 13:22:03 -0700
Source: lintian
Binary: lintian
Architecture: source all
Version: 1.23.20
Distribution: unstable
Urgency: low
Maintainer: Debian Lintian Maintainers <lintian-maint@debian.org>
Changed-By: Russ Allbery <rra@debian.org>
Description:
lintian - Debian package checker
Closes: 196122 232442 321139 362145 365452 365466 365503 366104 366233
Changes:
lintian (1.23.20) unstable; urgency=low
.
The "Policy backlog clearing is a wonderful sight" release
.
* checks/debconf{.desc,}:
+ [RA] Add checks for the Developer's Reference guidelines for debconf
templates. Based on a patch by Thomas Huriaux. (Closes: #362145)
* checks/fields{.desc,}:
+ [RA] xfonts-encodings is also not an xfont package. Thanks, Drew
Parsons. (Closes: #365503)
+ [RA] Report errors for dependencies on python-minimal. Thanks to
Steve Langasek for the analysis.
+ [RA] Allow a build-dependency on patchutils when using CDBS with one
of the patch systems, as patchutils may be optionally used to check
for bad patches. Thanks, Marc Dequènes (Duck). (Closes: #365466)
+ [RA] Since some packages should be in Build-Depends and some should
be in Build-Depends-Indep, report all of the misplaced ones rather
than just the first one. That way, users know which to move.
+ [RA] Allow perl in Build-Depends if invoked in clean rules.
+ [RA] Allow patch in Build-Depends if yada unpatch is invoked in
clean rules.
* checks/files{.desc,}:
+ [RA] Add an explicit check for non-world-readable executables to
provide a more detailed explanation and tighten the accepted
permissions of setuid and setgid executables to just the permissions
mentioned in Policy 10.9. Add Policy 10.9 references to the
descriptions. Reported by Piotr Engelking. (Closes: #365452)
+ [RA] Add a request to the descriptions of setuid and setgid tags to
add a lintian override for documentation if the permissions are
intentional.
+ [RA] Report a more specific tag for binaries that are owned by group
games but are not setgid.
+ [RA] Remove the check for files in /usr/lib/cgi-bin. This policy
change was reverted.
+ [RA] Allow files installed in /usr/include/X11 and /usr/lib/X11 but
require Pre-Depends on x11-common (>= 1:7.0.0). Remove the
duplicate check for files in /usr/bin/X11 since it no longer adds
additional information.
* checks/menus{.desc,}:
+ [RA] Check that all files referenced in doc-base control files are
present in the package, based on a patch by Robert Luberda. Also
check that Index references only one file and that Format names a
known format. (Closes: #196122)
+ [RA] Fix incomplete diagnosis of missing calls to update-menus.
+ [RA] Change postrm to prerm in the check for a useless install-docs
call; calling install-docs in postrm is always a warning and useless
calls in prerm were not being diagnosed.
* checks/po-debconf{.desc,}:
+ [RA] Exempt packages that use yada from the POTFILES.in check and
from checking for up-to-date templates, since yada does this at
build time. Reported by Piotr Roszatycki. (Closes: #321139)
+ [RA] Check for stray debconf-mergetemplate files in packages
using po-debconf. Thanks, Martin Quinson. (Closes: #232442)
+ [RA] General cleanup of tag descriptions for grammar and markup.
Move man page references into Ref fields.
* checks/shared-libs.desc:
+ [RA] Document that exceptions to the -fPIC rule for shared libraries
are possible and ask that such exceptions be documented with lintian
overrides.
* checks/standards-version:
+ [RA] Update to 3.7.2. (Closes: #366233)
+ [RA] Report the current standards version when warning about too old
or too new versions. Thanks, Jari Aalto. (Closes: #366104)
.
* debian/control:
+ [RA] Update standards version to 3.7.2 (no changes required).
+ [RA] Update description to note calibration for Policy 3.7.2.
Files:
f7d0ef1a7b8bb1b85f4fb0696573d62f 803 devel optional lintian_1.23.20.dsc
96483a812e831dd8e28c518d9110d915 296485 devel optional lintian_1.23.20.tar.gz
bcbc9d7c5d4f0c09208f30498cc69af7 255036 devel optional lintian_1.23.20_all.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.3 (GNU/Linux)
iD8DBQFEX6jp+YXjQAr8dHYRApPtAJ49m3Xj6GDtgEpHBUJhiPL1dbDx7QCdFxtt
XOPA1e9MWUQOeO74bhRZeH4=
=+w9p
-----END PGP SIGNATURE-----
--- End Message ---