Bug#853903: RFS: scap-security-guide/0.1.31-6 [ITP] -- security guides and conformity checks using SCAP standard

To: "phil@reseau-libre.net" <phil@reseau-libre.net>, "853903@bugs.debian.org" <853903@bugs.debian.org>
Subject: Bug#853903: RFS: scap-security-guide/0.1.31-6 [ITP] -- security guides and conformity checks using SCAP standard
From: Gianfranco Costamagna <locutusofborg@debian.org>
Date: Fri, 31 Mar 2017 16:54:20 +0000 (UTC)
Message-id: <[🔎] 1164500495.13648549.1490979260741@mail.yahoo.com>
Reply-to: Gianfranco Costamagna <locutusofborg@debian.org>, 853903@bugs.debian.org
In-reply-to: <[🔎] d52ede802ca828f6312c69ce064cdae6@reseau-libre.net>
References: <589252AE.4060604@reseau-libre.net> <487445802.2292221.1486055597497@mail.yahoo.com> <4aef8c74165abb421af83fc41f7a1a9b@reseau-libre.net> <[🔎] 780452342.711531.1488463166258@mail.yahoo.com> <[🔎] d52ede802ca828f6312c69ce064cdae6@reseau-libre.net>

Hello,


sorry for not doing this earlier, but life happened, some
showstoppers were preventing me from uploading them and somebody else
sponsored it.
(and new packages can't go in Stretch, so during freeze there is no real hurry
to upload them)

However (even if I didn't upload the package), I would like to see something fixed:

e.g.
Build-Depends: debhelper (>=9), 

^^ it is 10 now (also compat level should be 10)

bash (>=4.3), sed (>=4.2)
^^

the version is satisfied in old-old-stable already, and they should be part of essential packages,
so don't need to manually specify them

same happens for runtime dependencies:
Suggests: ansible (>= 2), puppet (>= 4.8), bash (>= 4.4)

ansible is satisfied in stable and stable-bpo, so I would just remove that dependency, same for puppet
and I would just remove bash

(this package can't migrate to Stretch because of freeze, it can't go in stable right now)
it might end in Buster, and then go in Stretch backports, or Jessie-backports-sloppy, and all the above
versions will be satisfied.



BTW the README.Debian seems still not pointing to real locations:

# oscap xccdf eval --profile <profilename> \
--cpe /usr/share/<package-name>/ssg-<target>-cpe-dictionary.xml \
--results <resulsfile>.xml \
--report <reportfile>.html \
/usr/share/<package-name>/ssg-<target>-xccdf.xml


cheers!

G.

Reply to:

References:
- Bug#853903: RFS: scap-security-guide/0.1.31-6 [ITP] -- security guides and conformity checks using SCAP standard
  - From: Gianfranco Costamagna <locutusofborg@debian.org>
- Bug#853903: RFS: scap-security-guide/0.1.31-6 [ITP] -- security guides and conformity checks using SCAP standard
  - From: phil@reseau-libre.net

Prev by Date: Bug#859139: marked as done (RFS: synergy/1.4.16-1+deb8u1)
Next by Date: Bug#856603: RFS: arc-theme/20170302-1
Previous by thread: Bug#853903: RFS: scap-security-guide/0.1.31-6 [ITP] -- security guides and conformity checks using SCAP standard
Next by thread: Bug#856576: RFS: gammaray/2.7.0-1 -- Tool for examining the internals of Qt application
Index(es):
- Date
- Thread