[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Debian Weekly News - August 12th, 2003

Debian Weekly News
Debian Weekly News - August 12th, 2003

Welcome to this year's 32nd issue of DWN, the weekly newsletter for
the Debian community. Following the [1]26th issue, Stephan Wehrheim
wrote a document about installing Debian 3.0 on a Dell [2]Inspiron
8200. Michael Singer [3]looked at Open Source as a social movement,
in a similar way to what Bruce Perens discussed at Linuxworld San

 1. http://www.debian.org/News/weekly/2003/26/
 2. http://www.StephanWehrheim.de/computer/dell8200+debian30/dell8200+debian30.html
 3. http://www.internetnews.com/ent-news/article.php/2246751

Crontab no longer setuid. Steve Greenland [4]reported that he has
changed crontab to be setgid 'cron' rather than setuid 'root'. This
introduces a new group 'cron' which will automatically be created
during installation.

 4. http://lists.debian.org/debian-devel-0308/msg00160.html

Removal of Libraries from the Archive. Chris Cheney [5]noticed that a
library was removed which he had just listed as a dependency for an
uploaded package. He proposed to make an addition to policy stating
that an old library can not be removed from the archive until no other
package depends on it. Richard Braakman [6]explained that the past
had shown that as long as the old library was still around, there was
apparently no incentive for anyone to remove the dependency.

 5. http://lists.debian.org/debian-devel-0308/msg00187.html
 6. http://lists.debian.org/debian-devel-0308/msg00246.html

No Mutt Dependency on an MTA? Artur Czechowski [7]wondered if Mutt
should only [8]recommend a mail-transfer-agent (MTA) instead of
depending on it. Rene Engelhard [9]explained that sending mail is one
of the key features of Mutt, but this requires an MTA, hence the
dependency should remain.

 7. http://lists.debian.org/debian-devel-0308/msg00349.html
 8. http://bugs.debian.org/202869
 9. http://lists.debian.org/debian-devel-0308/msg00379.html

Python 2.3 Transition. Matthias Klose [10]announced the next Python
transition after version 2.3 has been [11]released. With the next
upload of python2.3, it will become the default version of Python.
Some packages become uninstallable until they are converted to the new
version, though.

 10. http://lists.debian.org/debian-devel-0308/msg00361.html
 11. http://python.org/2.3/highlights.html

Explanations for Reassigning Bugs. Joey Hess [12]requested that people
include an explanation for the new package maintainer when they
reassign a bug to a different package. He said that it is very
annoying to get several bug reports that were reassigned to ones own
packages, with no explanation attached, forcing the maintainer to grab
the information on his own.

 12. http://lists.debian.org/debian-devel-0308/msg00697.html

Zeroconf for Debian? Andrew Pollock [13]wondered if somebody is
working on getting [14]Zeroconf implemented within the Debian system.
[15]Zero configuration IP networking means that two computers hooked
together build an ad-hoc IP network and can talk to each other without
human intervention. The package [16]zcip is supposed to implement

 13. http://lists.debian.org/debian-devel-0308/msg00727.html
 14. http://www.zeroconf.org/
 15. http://zeroconf.sourceforge.net/
 16. http://packages.debian.org/zcip

Debconf I18n improved. Collaboration between Joey Hess and Tomohiro
Kubota has lead to a major improvement in [17]debconf's
internationalisation (i18n) in version [18]1.3.0. This version solves
line-folding [19]problem for several languages and encodings. Debconf
template translators for Chinese and Japanese will no more need to
insert redundant whitespaces which were previously needed to avoid the

 17. http://packages.debian.org/debconf
 18. http://lists.debian.org/debian-devel-changes-0307/msg00714.html
 19. http://www.debian.or.jp/~kubota/mojibake/debconf

Advantages of using Debian. Markus Raab [20]listed (only in German)
many advantages of using Debian. He highlighted the package management
system and the strong implementation of the [21]Filesystem Hierarchy
Standard. He also emphasised the number of available packages, the
guaranteed freeness, leaving alternatives and choice for the user, the
documentation and more. Much of this is also included in the
[22]Advantages HOWTO.

 20. http://lists.debian.org/debian-user-german-0308/msg00753.html
 21. http://www.pathname.com/fhs/
 22. http://www.infodrom.org/Debian/doc/advantages.html

Hurd Kernel Change. Ciaran O'Riordan [23]reported that the Hurd will
move from Gnumach to [24]L4 in the long term. [25]Hazelnut is the name
of the L4 implementation that Hurd is being ported to. In the short
term, though, there's a moderate change from gnumach1.3 to gnumach2.0
which is called oskit-mach.

 23. http://lists.debian.org/debian-hurd-0308/msg00036.html
 24. http://os.inf.tu-dresden.de/L4/
 25. http://www.l4ka.org/projects/hazelnut/

Support for Ant. Arnaud Vandyck [26]reported that a lot of java
packages are built with ant. It would probably be a good idea to have
common practices with ant including a default interface into package
building. Stefan Gybas would [27]like to create an Ant class for the
[28]Common Debian Build System (CDBS) so that debian/rules will become
really simple.

 26. http://lists.debian.org/debian-java-0307/msg00138.html
 27. http://lists.debian.org/debian-java-0307/msg00139.html
 28. http://build-common.alioth.debian.org/

Policy for 32-bit UIDs and GIDs? Steve Langasek [29]reported that
[30]section 9.2 of policy currently describes uid and gid classes
covering the range of 0-65535. This appears to no longer be
comprehensive since on a current system running a 2.4.18 kernel and
libc6 2.3.1-17 one can assign 32-bit user ids to accounts and
reference these accounts in file ownerships, su to them, etc. He
wondered if the Debian Policy should be expanded to address this
greatly increased range of available ids.

 29. http://lists.debian.org/debian-policy-0307/msg00003.html
 30. http://www.debian.org/doc/debian-policy/ch-opersys.html#s9.2

Debian turns 10. On August 16th, the Debian Project will [31]celebrate
its 10th birthday with several [32]parties around the globe. The
largest parties will take place in [33]Brno, Czech Republic,
[34]Turku, Finland, [35]Wallenrod and [36]Berlin, Germany, as well as
in [37]Cambridge in the United Kingdom. During the last ten years, the
project has developed an extensive set of policies and procedures for
packaging and delivering software. These standards are backed up by
tools, automation, and documentation implementing all of Debian's key
elements in an open and visible way. As a present, Jörg Jaspert
created a [38]rescue CD in the size of a [39]business card which will
be handed out in Berlin and Wallenrod.

 31. http://www.debian.org/News/2003/20030811
 32. http://www.debconf.org/10years/
 33. http://www.penguin.cz/~skim/10deb
 34. http://www.linux-aktivaattori.org/twiki/bin/view/Bazaar/DebianBirthdayTurku2003
 35. http://www.infodrom.org/Debian/party/
 36. http://buug.de/deb10/
 37. http://the.earth.li/~huggie/cgi-bin/moin/Debian10thBirthday
 38. http://people.debian.org/~joerg/rettcd/
 39. http://www.linuxland.de/katalog/01_linuxdistri_bs/debian/debiangeburtstag/framify

Debian Package Exams at LPI. The [40]Linux Professional Institute
(LPI) introduced new exams which allow candidates to be tested on RPM
or Debian package management. Candidates pick the package they wish to
be tested on when beginning an exam, LPI said on a story on
[41]Certcities.com. LPI has delivered more than 24,000 exams, and
awarded more than 5,500 certifications worldwide.

 40. http://www.lpi.org/
 41. http://www.certcities.com/editorial/news/story.asp?EditorialsID=426

List of setuid/setgid Binaries in the current stable Release. Steve
Kemp [42]announced a list of all the setuid/setgid binaries in the
current release. The main reactions to this list revolved around the
recent security advisories on games and Joey Hess' [43]suggestion to
make it a policy that all setuid/gid binaries should go through a peer
review, an idea that was supported by [44]several [45]developers who
also [46]volunteered to do the review.

 42. http://lists.debian.org/debian-devel-0307/msg02375.html
 43. http://lists.debian.org/debian-devel-0307/msg02404.html
 44. http://lists.debian.org/debian-devel-0308/msg00033.html
 45. http://lists.debian.org/debian-devel-0308/msg00039.html
 46. http://lists.debian.org/debian-devel-0308/msg00044.html

Security Updates. You know the drill. Please make sure that you update
your systems if you have any of these packages installed.

 * [47]phpgroupware -- Several vulnerabilities.
 * [48]eroaster -- Insecure temporary file creation.
 * [49]xtokkaetama -- Buffer overflow.
 * [50]xpcd -- Buffer overflow.
 * [51]zblast -- Buffer overflow.
 * [52]pam-pgsql -- Format string vulnerability.
 * [53]perl -- Cross-site scripting.

 47. http://www.debian.org/security/2003/dsa-365
 48. http://www.debian.org/security/2003/dsa-366
 49. http://www.debian.org/security/2003/dsa-367
 50. http://www.debian.org/security/2003/dsa-368
 51. http://www.debian.org/security/2003/dsa-369
 52. http://www.debian.org/security/2003/dsa-370
 53. http://www.debian.org/security/2003/dsa-371

New or Noteworthy Packages. The following packages were added to the
unstable Debian archive recently or contain important updates.

 * [54]autoconf-archive -- GNU Autoconf Macro Archive.
 * [55]bluez-pin -- Bluetooth PIN helper with D-BUS support.
 * [56]cyclades-serial-client -- Network Serial port client software
   for Cyclades terminal servers.
 * [57]drgeo-doc -- Dr. Geo online manual.
 * [58]grub-disk -- GRUB bootable disk image.
 * [59]mboxcheck-applet -- GNOME2 applet to check your mbox files.
 * [60]scalemail -- Scalable virtual mail domain system built on
   Postfix and LDAP.
 * [61]synaptic-debtags -- Gtk GUI-frontend for APT with debtags
 * [62]tclthread -- Tcl extension implementing script level access to
   Tcl threading capabilities.
 * [63]tclvfs -- Exposes Tcl 8.4's virtual filesystem C API to the
   Tcl script level.
 * [64]tome -- Single-player, text-based, dungeon simulation game.
 * [65]wmkbd -- WindowMaker dock app which can define/modify/switch
   keyboard maps.
 * [66]xfe -- Lightweight file manager for X11.

 54. http://packages.debian.org/unstable/devel/autoconf-archive.html
 55. http://packages.debian.org/unstable/net/bluez-pin.html
 56. http://packages.debian.org/unstable/comm/cyclades-serial-client.html
 57. http://packages.debian.org/unstable/doc/drgeo-doc.html
 58. http://packages.debian.org/unstable/admin/grub-disk.html
 59. http://packages.debian.org/unstable/gnome/mboxcheck-applet.html
 60. http://packages.debian.org/unstable/mail/scalemail.html
 61. http://packages.debian.org/unstable/admin/synaptic-debtags.html
 62. http://packages.debian.org/unstable/interpreters/tclthread.html
 63. http://packages.debian.org/unstable/interpreters/tclvfs.html
 64. http://packages.debian.org/unstable/games/tome.html
 65. http://packages.debian.org/unstable/x11/wmkbd.html
 66. http://packages.debian.org/unstable/x11/xfe.html

Orphaned Packages. 9 packages were orphaned this week and require a
new maintainer. This makes a total of 185 orphaned packages. Many
thanks to the previous maintainers who contributed to the Free
Software community. Please see the [67]WNPP pages for the full list,
and please add a note to the bug report and retitle it to ITA: if you
plan to take over a package.

 67. http://www.debian.org/devel/wnpp/

 * [68]libastro-ads-perl -- Modules for querying the Astrophysics
   Data System. ([69]Bug#204442)
 * [70]libastro-catalog-perl -- Generic object-oriented astronomical
   catalog object. ([71]Bug#204447)
 * [72]libastro-dss-perl -- Interface to the Digital Sky Surveys
   astronomical databases. ([73]Bug#204448)
 * [74]libastro-fits-cfitsio-perl -- Perl extension for using the
   cfitsio library. ([75]Bug#204458)
 * [76]libastro-fits-header-perl -- Perl tools for reading, modifying
   and writing FITS headers. ([77]Bug#204453)
 * [78]libastro-simbad-perl -- Object-oriented interface to the
   SIMBAD astronomical database. ([79]Bug#204450)
 * [80]libastro-waveband-perl -- Transparent change between
   astronomical filter names, wavelength and frequency.
 * [82]sextractor -- Builds a catalogue of objects from an
   astronomical image. ([83]Bug#204464)
 * [84]snacc -- ASN.1 to C or C++ or IDL compiler. ([85]Bug#204807)

 68. http://packages.debian.org/unstable/perl/libastro-ads-perl.html
 69. http://bugs.debian.org/204442
 70. http://packages.debian.org/unstable/perl/libastro-catalog-perl.html
 71. http://bugs.debian.org/204447
 72. http://packages.debian.org/unstable/perl/libastro-dss-perl.html
 73. http://bugs.debian.org/204448
 74. http://packages.debian.org/unstable/perl/libastro-fits-cfitsio-perl.html
 75. http://bugs.debian.org/204458
 76. http://packages.debian.org/unstable/perl/libastro-fits-header-perl.html
 77. http://bugs.debian.org/204453
 78. http://packages.debian.org/unstable/perl/libastro-simbad-perl.html
 79. http://bugs.debian.org/204450
 80. http://packages.debian.org/unstable/perl/libastro-waveband-perl.html
 81. http://bugs.debian.org/204451
 82. http://packages.debian.org/unstable/science/sextractor.html
 83. http://bugs.debian.org/204464
 84. http://packages.debian.org/unstable/devel/snacc.html
 85. http://bugs.debian.org/204807

Want to continue reading DWN? Please help us create this newsletter.
We still need more volunteer writers who investigate the Debian
community and report about events in the community. Please see the
[86]contributing page to find out how to help. We're looking forward
to receiving your mail at [87]dwn@debian.org.

 86. http://www.debian.org/News/weekly/contributing
 87. mailto:dwn@debian.org

Reply to: