Bug#701476: marked as done (unblock: nagios-nrpe/2.13-3)

To: "Adam D. Barratt" <adam@adam-barratt.org.uk>
Subject: Bug#701476: marked as done (unblock: nagios-nrpe/2.13-3)
From: owner@bugs.debian.org (Debian Bug Tracking System)
Date: Sat, 09 Mar 2013 11:24:04 +0000
Message-id: <[🔎] handler.701476.D701476.136282803627660.ackdone@bugs.debian.org>
References: <1362828025.26434.9.camel@jacala.jungle.funky-badger.org> <20130223155911.7129.91132.reportbug@localhost.localdomain>

Your message dated Sat, 09 Mar 2013 11:20:25 +0000
with message-id <1362828025.26434.9.camel@jacala.jungle.funky-badger.org>
and subject line Re: Bug#701476: unblock: nagios-nrpe/2.13-2
has caused the Debian Bug report #701476,
regarding unblock: nagios-nrpe/2.13-3
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact owner@bugs.debian.org
immediately.)


-- 
701476: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=701476
Debian Bug Tracking System
Contact owner@bugs.debian.org with problems

--- Begin Message ---

To: Debian Bug Tracking System <submit@bugs.debian.org>

Subject: unblock: nagios-nrpe/2.13-2

From: Thijs Kinkhorst <thijs@debian.org>

Date: Sat, 23 Feb 2013 16:59:11 +0100

Message-id: <20130223155911.7129.91132.reportbug@localhost.localdomain>
Package: release.debian.org
Severity: normal
User: release.debian.org@packages.debian.org
Usertags: unblock

Dear release team,

Please unblock package nagios-nrpe.

The update is documentation only. It's done to address #547092: SSL support
is fundamentally broken in NRPE, which cannot be fixed easily (breaking
the protocol and hence compatibility with non-Debian npre hosts),

The update changes the documentation to warn against using the option. This
downgrades the bug to an important functionality problem, but not RC since
NRPE is usable securely without SSL in many cases.

unblock nagios-nrpe/2.13-2


Thanks,
Thijs
--- End Message ---

--- Begin Message ---

To: Alexander Wirt <formorer@formorer.de>, 701476-done@bugs.debian.org

Cc: Thijs Kinkhorst <thijs@debian.org>

Subject: Re: Bug#701476: unblock: nagios-nrpe/2.13-2

From: "Adam D. Barratt" <adam@adam-barratt.org.uk>

Date: Sat, 09 Mar 2013 11:20:25 +0000

Message-id: <1362828025.26434.9.camel@jacala.jungle.funky-badger.org>

In-reply-to: <20130223164533.GB24782@lisa.snow-crash.org>

References: <20130223155911.7129.91132.reportbug@localhost.localdomain> <20130223164533.GB24782@lisa.snow-crash.org>
On Sat, 2013-02-23 at 17:45 +0100, Alexander Wirt wrote:
> Thijs Kinkhorst schrieb am Saturday, den 23. February 2013:
> > Please unblock package nagios-nrpe.
> > 
> > The update is documentation only. It's done to address #547092: SSL support
> > is fundamentally broken in NRPE, which cannot be fixed easily (breaking
> > the protocol and hence compatibility with non-Debian npre hosts),
> > 
> > The update changes the documentation to warn against using the option. This
> > downgrades the bug to an important functionality problem, but not RC since
> > NRPE is usable securely without SSL in many cases.
[...]
> Hold on please :). We agreed on IRC earlier that morning to wait for the
> coming security update.

-3 unblocked.

fwiw:

++NOTE: the currently shipped native SSL support of NRPE is not an
++adequante protection, because it does not verify clients and

s/adequante/adequate/

Regards,

Adam
--- End Message ---

Reply to:

Prev by Date: Bug#702629: unblock: x2goclient/3.99.2.1-5
Next by Date: Bug#702629: marked as done (unblock: x2goclient/3.99.2.1-5)
Previous by thread: Bug#702629: marked as done (unblock: x2goclient/3.99.2.1-5)
Next by thread: Processed: tagging 702412
Index(es):
- Date
- Thread