retitle 770365 debsources: should not return 403 on internal symlinks severity 761121 normal forcemerge 761121 770365 thanks On Sun, Nov 30, 2014 at 09:55:12PM +0100, Matthieu Caneill wrote: > On 20 November 2014 at 20:05, Jérémy Bobbio <lunar@debian.org> wrote: > > When visiting https://sources.debian.net/src/beignet/1.0.0-1/README.md/ > > I'm told “403 Permission Denied”. This is a bit annoying as the file is > > listed on https://sources.debian.net/src/beignet/1.0.0-1/ > > Due to security reasons, we deactivated all symbolic links on > Debsources (even the ones internal to a package, but this isn't > implemented yet). > Zack what do you think? Oooh, I see, I didn't realize, before your message, that these 404 where due to symlinks. So this bug is effectively the same of #761121, which was the wishlist bug requesting the support for symlinks that point within the same source package. Arguably, we could provide a better user experience than 403 (especially because the user has no way of knowing a priori that a given file is a symlink, until #763921 is implemented, that is). But the best fix here will indeed be to do support internal symlinks. I'm therefore retitling/merging as needed. Thanks Lunar for your bug report! Cheers. -- Stefano Zacchiroli . . . . . . . zack@upsilon.cc . . . . o . . . o . o Maître de conférences . . . . . http://upsilon.cc/zack . . . o . . . o o Former Debian Project Leader . . @zack on identi.ca . . o o o . . . o . « the first rule of tautology club is the first rule of tautology club »
Attachment:
signature.asc
Description: Digital signature