Hi, On 2021-08-02 12:21 p.m., Samuel Henrique wrote: > Hello Polyna-Maude, > > I'm gonna reply here even though I'm not Raphaël, > >> I've already (for myself) ported many to Debian many packages that are >> only on Kali. >> Some of them may not have the quality to pass the tests done by Lintian >> or obey to Debian guidelines. >> Anyway, I'd be more than interested in giving times to help out. > > Awesome, > >> I'm on the step of contacting a local Debian member to have myself >> authenticated in "real life" with my id cards. > ok > Just don't worry too much about it, it is important to get your gpg > key signed but that's not a blocker for contributing, it will only be > required once you start the DM process, and even on that case we have > ways around it (key endorsements, if you used to sign all your > commits). > >> If there's anything that I could do as a start ? >> >> I've seen you as maintainer of many of the Debian security packages. >> >> I know there's another person wanting to port the "seclists" package >> over to Debian. I've told him that I've already done this for my >> personal use and offered to check against each other the differences >> between both result we may have in the results. >> For myself, I've noted that SecLists is not maintained anymore by OWASP. >> >> If you ever want to take a look at all I've done, let me know how would >> it be easier for you. >> >> I could simply put the files online (.dsc / .deb) ? >> And if I can give a hand in any way... > http://cogniscience.ca/ I shall be uploaded all done by the end of the day. Hoping that my shared hosting security scanner won't flag some of the files. If I see it does then I'll put them on my server (one that I have complete control over). I already had the DNS set for the shared hosting. My server is not on DNS (prevent at least a level of scanning). > The best thing you could do, from our POV, is to push your packaging > files to salsa, under your user. But hosting your work anywhere and in > any way can be helpful, it's gonna be up to the people working on > those packages to check it out, though. > Guilherme (who's working on seclists) mentioned he would like to see > what you've done in the other thread. > Not too sure how does Salsa work for "outsider" ? I'll let Guillherme know but it shall be finished uploading soon. Those are the packages I made for Buster. Some of them are local compile of buster-backports, some of them may be from testing, and some may not be related to security. Mostly everything related to security comes from Kali. Some package may be some version from debian-multimedia that I didn't like the bloating too. At least it shall show that I can modify and patch source code when needed ;-) Some of it may have had some "dirty hack" done to get it working. Everything that was build since mid 2020 can be considered better than everything else (I discovered better way and cleaner way of doing things, respecting the Debian policy to explain modifications, publishing a watch file, etc). > With regards to contributions, I'm just taking a guess based on my > limited understanding of what you have there, but you could try to > upload one of the packages you've worked on to Debian. > http://cogniscience.ca/ > Thank you! > > > -- > Samuel Henrique <samueloph> > -- Polyna-Maude R.-Summerside -Be smart, Be wise, Support opensource development
Attachment:
OpenPGP_signature
Description: OpenPGP digital signature