Re: Interest in adopting libpcap, tcpdump, and ngrep?

To: Simon Josefsson <simon@josefsson.org>
Cc: Arnaud Rebillout <arnaudr@debian.org>, debian-security-tools@lists.debian.org, sophie@offensive-security.com, Romain Francoise <rfrancoise@debian.org>
Subject: Re: Interest in adopting libpcap, tcpdump, and ngrep?
From: Peter Wienemann <wiene@debian.org>
Date: Sun, 9 Feb 2025 19:39:08 +0100
Message-id: <[🔎] 432e9edd-7e2e-4e55-8580-c7c787307eb9@debian.org>
In-reply-to: <[🔎] 87o6ze86ls.fsf@josefsson.org>
References: <[🔎] CAHt6kzHbT6OY1ZeeLO6w6iE+D4eug7uH+z47a1P7W0+KOqFB5Q@mail.gmail.com> <[🔎] c6e4e21e-9746-4bdc-b81e-6765a17a1e09@debian.org> <[🔎] CAHt6kzFKa8N7zDzah0UWV2=6RJOgW44bqYdYH0Qoxav1Om-U4Q@mail.gmail.com> <[🔎] 87o6ze86ls.fsf@josefsson.org>

Hi Simon,

On 2025-02-07 10:08:31, Simon Josefsson wrote:

Romain Francoise <rfrancoise@debian.org> writes:

On Fri, Feb 7, 2025 at 3:16 AM Arnaud Rebillout <arnaudr@debian.org> wrote:

With my Kali Linux developer hat on, yes. These tools are widely
used in Kali, and we (Kali team) are active contributors in the
Debian's pkg-security team. Having those tools here will make it
easier for us to fix/update it.


Sure. If one of the team owners on Salsa can add me to the group, I'll
move the repos there. I was not using gpb and the repos are not in
DEP-14 format, so some menial cleanup work will be necessary.


Would you consider moving them to /debian/ instead?

I think moving around git repositories on Salsa depending on which group
packages are in is counter productive.  For me, I move the packages that
I bring to pkg-security into the /debian/ namespace, because that
namespace is more likely to be stable over time.  And then there is no
need to fiddle around with GitLab permissions since all DD's have access
to the repository.

I see your point. But there is also a downside of this approach. Thereare mainly three things that come to my mind:

- I watch all packages below /pkg-security-team for merge requests whileI do not do that for /debian (simply because of the large number ofpackages below /debian). I. e. security tools packages below /debian getless attention from my side. Of course I could watch individual securitytools packages below /debian but keeping track of them is tedious. Ifthe same holds for other team members, this might be disadvantageous fornew contributors.

- Different namespaces for security tools packages make commonmaintenance tools like [0] more cumbersome.

- Salsa team membership for pkg-security-team is not strictly tied tobeing a DD. Historically there have been people becoming salsa teammembers prior to becoming a DD if this seemed reasonable given theirtrack records.

I agree with Samuel that balancing pros and cons of the two approachesmight be a good topic for face-to-face discussions at DebConf.


Best regards

Peter

[0] https://salsa.debian.org/pkg-security-team/pkg-security-team

Reply to:

References:
- Interest in adopting libpcap, tcpdump, and ngrep?
  - From: Romain Francoise <rfrancoise@debian.org>
- Re: Interest in adopting libpcap, tcpdump, and ngrep?
  - From: Arnaud Rebillout <arnaudr@debian.org>
- Re: Interest in adopting libpcap, tcpdump, and ngrep?
  - From: Romain Francoise <rfrancoise@debian.org>
- Re: Interest in adopting libpcap, tcpdump, and ngrep?
  - From: Simon Josefsson <simon@josefsson.org>

Prev by Date: Re: Interest in adopting libpcap, tcpdump, and ngrep?
Next by Date: Re: Interest in adopting libpcap, tcpdump, and ngrep?
Previous by thread: Re: Interest in adopting libpcap, tcpdump, and ngrep?
Next by thread: Re: Interest in adopting libpcap, tcpdump, and ngrep?
Index(es):
- Date
- Thread