Your message dated Fri, 9 Oct 2015 20:15:00 +0000 (UTC) with message-id <1798440856.2333560.1444421700141.JavaMail.yahoo@mail.yahoo.com> and subject line Re: Bug#790125: RFS: dropbear/2015.68-1 - lightweight SSH2 server and client has caused the Debian Bug report #790125, regarding RFS: dropbear/2015.68-1 - lightweight SSH2 server and client to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact owner@bugs.debian.org immediately.) -- 790125: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=790125 Debian Bug Tracking System Contact owner@bugs.debian.org with problems
--- Begin Message ---
- To: Debian Bug Tracking System <submit@bugs.debian.org>
- Cc: Gerrit Pape <pape@smarden.org>
- Subject: RFS: dropbear/2015.67-1.1 NMU
- From: Guilhem Moulin <guilhem@guilhem.org>
- Date: Sat, 27 Jun 2015 14:40:24 +0200
- Message-id: <20150627124024.GA25717@localhost>
Package: sponsorship-requests Severity: normal Dear mentors, I am looking for a sponsor for my package "dropbear" * Package name : dropbear Version : 2015.67-1.1 Upstream Author : Matt Johnston <matt@ucc.asn.au> * URL : http://matt.ucc.asn.au/dropbear/ * License : MIT Section : net It builds those binary packages: dropbear - transitional dummy package for dropbear-{run,initramfs} dropbear-bin - lightweight SSH2 server and client - command line tools dropbear-initramfs - lightweight SSH2 server and client - initramfs integration dropbear-run - lightweight SSH2 server and client - startup scripts To access further information about this package, please visit the following URL: http://mentors.debian.net/package/dropbear Alternatively, one can download the package with dget using this command: dget -x http://mentors.debian.net/debian/pool/main/d/dropbear/dropbear_2015.67-1.1.dsc More information about dropbear can be obtained from http://matt.ucc.asn.au/dropbear/ . The maintainer told me to go ahead a proceed with the NMU [0]. Changes since the last upload: * Non-maintainer upload. [ Matt Johnston ] * New upstream release. (Closes: #775222.) [ Guilhem Moulin ] * debian/source/format: 3.0 (quilt) * debian/compat: 9 * debian/control: bump Standards-Version to 3.9.6 (no changes necessary). * debian/copyright: add machine-readable file. * Split up package in dropbear-bin (binaries), dropbear-run (init scripts) and dropbear-initramfs (initramfs integration). 'dropbear' is now a transitional dummy package depending on on dropbear-run and dropbear-initramfs. (Closes: #692932.) * Refactorize the package using dh_* tools, including dh_autoreconf. (Closes: #689618, #777324.) * dropbear-run: + Add a status option to the /etc/init.d script. + Pass key files with -r not -d in /etc/init.d script. (Closes: #761143.) + Post-installation script: Generate missing ECDSA in addition to RSA and DSS host keys. (Closes: #776976.) * dropbear-initramfs: + Don't mark /usr/share/initramfs-tools/conf-hooks.d/dropbear as a configuration file, since it violates the Debian Policy Manual section 10.7.2. (Regression from 2014.64-1.) + Delete debian/initramfs/premount-devpts, since /dev/pts in mounted by init since initramfs-tools 0.94. (Closes: #632656.) + Auto-generate host keys in the postinstall script, not when runing update-initramfs. Pass the '-R' option (via $PKGOPTION_dropbear_OPTION) for the old behavior. Also, print fingerprint and ASCII art for generated keys (if ssh-keygen is available). + Revert ad2fb1c and remove warning about changing host key. Users shouldn't be encouraged to use the same keys in the encrypted partition and in the initramfs. The proper fix is to use an alternative port or UserKnownHostFile. + Set ~root to `mktemp -d "$DESTDIR/root-XXXXXX"` to avoid collisions with $rootmnt. (Closes: #558115.) + Exit gracefully if $IP is 'none' or 'off'. (Closes: #692932.) + Start dropbear with flag -s to explicitly disable password logins. + Terminate all children before killing dropbear, to avoid stalled SSH connections. (Closes: #735203.) + Run configure_networking in the foreground. (Closes: #584780, #626181, #739519.) + Bring down interfaces and flush network configuration before existing the ramdisk, to avoid misconfigured network in the regular kernel. (Closes: #715048, #720987, #720988.) + Add a script '/bin/unlock' to the initramfs to make remote unlocking easier and possibly as a forced-command restrictions in authorized_keys. Cheers, -- Guilhem. [0] https://lists.debian.org/debian-devel/2015/06/msg00285.htmlAttachment: signature.asc
Description: Digital signature
--- End Message ---
--- Begin Message ---
- To: Guilhem Moulin <guilhem@guilhem.org>, <790125-done@bugs.debian.org>
- Subject: Re: Bug#790125: RFS: dropbear/2015.68-1 - lightweight SSH2 server and client
- From: Gianfranco Costamagna <costamagnagianfranco@yahoo.it>
- Date: Fri, 9 Oct 2015 20:15:00 +0000 (UTC)
- Message-id: <1798440856.2333560.1444421700141.JavaMail.yahoo@mail.yahoo.com>
- Reply-to: Gianfranco Costamagna <costamagnagianfranco@yahoo.it>
- In-reply-to: <[🔎] 20151009180054.GA10917@localhost.localdomain>
- References: <[🔎] 20151009180054.GA10917@localhost.localdomain>
Hi, Built&Signed&Uploaded on ftp-master/DELAYED/4. I thought it was a safer option(due to limited time during weekends, and soonafter I noticed that the binNEW packages are blocking anyway because of new queue. I did a reschedule, not sure if it worked correctly (I didn't wait too much). Anyway, your package will appear soon in the binNEW queue :) thanks a lot for your really nice contribution to Debian! cheers, Gianfranco Il Venerdì 9 Ottobre 2015 20:03, Guilhem Moulin <guilhem@guilhem.org> ha scritto: Hi, On Fri, 09 Oct 2015 at 17:19:24 +0000, Gianfranco Costamagna wrote: > how do you feel about merging the two above Ubuntu deltas in the Debian packaging? Thanks for pointing that out. I didn't check the Ubuntu uploads, actually. > https://launchpad.net/ubuntu/+source/dropbear/2014.65-1ubuntu1 > + debian/initramfs/premount-devpts, debian/rules: drop the script, this is > handled by initramfs-tools. Done already: + Delete debian/initramfs/premount-devpts, since /dev/pts in mounted by init since initramfs-tools 0.94. (Closes: #632656, #797939.) > + debian/initramfs/dropbear-hook: do not install dropbear in the initramfs > if there's no uncommented line in /etc/crypttab. IMHO this is no longer relevant. The hook now only belongs to the ‘dropbear-initramfs’ binary package, the sole purpose of which is to install dropbear in the initramfs. For backward compatibility it's still possible to disable the hook by setting ‘DROPBEAR=n’, but I don't think we need to make extra checks: if someone doesn't want the hook they can simply uninstall the package. (Furthermore, Ubuntu refuses to install the hook if the crypttab is nonexistant or empty regardless of the value of $DROPBEAR, which is probably a bug. A SSH server in the initrd can have uses beyond remote cryptroot unlocking.) > + debian/initramfs/premout-dropbear: fix so that the network configuration > happens before dropbear takes hold of the network card. I believe it's no longer necessary, with this changelog: + Run configure_networking in the foreground. (Closes: #584780, #626181, #739519.) > https://launchpad.net/ubuntu/+source/dropbear/2014.65-1ubuntu2 > * Enable hmac-sha2-256 and hmac-sha2-512 MAC algorithms (LP: #1409798) Upstream took care of that in the subsequent release: * New upstream release. (Closes: #631858, #775222.) Cheers, -- Guilhem.
--- End Message ---