List Info

Thread: monolithic silc-server 1.0.4 deb released
monolithic silc-server 1.0.4 deb released
user name
 2007-05-15 21:50:08 
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

I've bumped along the monolithic debian packaging for
silc-server, so
that version 1.0.4 is released as a debian package.

The package SHA256 sums are:

 fd5be56c7469b18eaa6b32c36558dc02d4f391c0483014d84191b7b62cb
f766f  silc-server_1.0.4-1.diff.gz
 5c1733cb1c8356d6696a43446fb9a662138ee546f44ce25755e9433315a
2f59a  silc-server_1.0.4-1.dsc
 4aa51fbf08b78c7658a5de7321bd8b354b885332e272f8582feca6811e7
16153  silc-server_1.0.4-1_i386.build
 28c2ba3c3e74104a164557910e0dc90fa94a6a49945c426e50ebf84e6ed
4c3ce  silc-server_1.0.4-1_i386.changes
 8cc41d34f6f92dcc39735f94113c65d062e504ea643670584f151a8162e
f83ab  silc-server_1.0.4-1_i386.deb
 bc387bd340fae5a872214908678a57d8658e6bad452ec4599e296a33d6a
7e876  silc-server_1.0.4.orig.tar.gz

I note that silcnet.org publishes MD5 sums, which surprises
me a
little bit because i thought that was a deprecated hash.  I
can
publish MD5 sums as well if anyone wants them.  Just ask.

The packages are available from the usual place:

  http://l
air.fifthhorseman.net/~dkg/src/silc/

Regards,

        --dkg
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
Comment: Processed by Mailcrypt 3.5.8+ <http://mailcryp
t.sourceforge.net/>

iD8DBQFGSnFeiXTlFKVLY2URAj/NAJ9v1y3YLx86YzUAFMrL1QzjuF5qHACa
A5xn
ADvLNvZbsBJjKMwvKDJNAWQ=
=XHtq
-----END PGP SIGNATURE-----
____________________________________________________________
___________
Info:    https://lists.silcnet.org/mailman/listinfo/silc-announce

Archive: htt
ps://lists.silcnet.org/pipermail/silc-announce
FAQ:     http://silcnet.org/su
pport/faq/
Re: monolithic silc-server 1.0.4 deb released
user name
 2007-05-16 13:04:25 
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Tue 2007-05-15 22:50:08 -0400, Daniel Kahn Gillmor
wrote:

> I've bumped along the monolithic debian packaging for
silc-server, so
> that version 1.0.4 is released as a debian package.

I've just modified the package a little bit to remove the
requirement
that the server's private key be mode 0600.  This
requirement seems
like a bad idea to me: why should the silc server own the
key that it
uses?  It should never need to modify it.  better to allow
mode 0640
if the sysadmin wants it, so that the key can be owned by
root but
readable by a special group that the silc-server user is a
member of.

The packages are available, as always, at:

  http://l
air.fifthhorseman.net/~dkg/src/silc/

Here's the change:

- --- silc-server-1.0.4.orig/apps/silcd/serverconfig.c
+++ silc-server-1.0.4/apps/silcd/serverconfig.c
 -619,10
+619,13 

     /*	Check the private key file permissions. */
     if ((stat(file_tmp, &st)) != -1) {
- -      if ((st.st_mode & 0777) != 0600) {
+      if ((st.st_mode & 0137) != 0000) {
+       /* The things we don't want are: user execute,
group
+          write/execute, other anything.
+      	*/
        SILC_SERVER_LOG_ERROR(("Wrong permissions in
private key "
                              "file "%s". 
The permissions must be "
- -                             "0600.",
file_tmp));
+ 		              "no more permissive than 0640.",
file_tmp));
  	 return	SILC_CONFIG_ESILENT;
       }
     }


And here are the updated sha256sums:

ae4c6f2255b2e2fd4419d8b0a8ca24e5df569e8b27a452caa3495abca4f8
482d  silc-server_1.0.4-2.diff.gz
8107a7b101b3b09310500a4e2734545fc7799ea6739582a94bc70d2d9564
c8ee  silc-server_1.0.4-2.dsc
9224c6b35586552f3e7da17d159a549c85f6079a02b5ba218402793bafdc
42c1  silc-server_1.0.4-2_i386.build
eaeebef19970b47f79cf3eb65d6ef0c3d356b742a1c58d7c9fb50d4e2a8e
5663  silc-server_1.0.4-2_i386.changes
fdc7d5ef740e309b2c696f8cf209af326ed2b427765b163479cef1c5654e
8496  silc-server_1.0.4-2_i386.deb
bc387bd340fae5a872214908678a57d8658e6bad452ec4599e296a33d6a7
e876  silc-server_1.0.4.orig.tar.gz

If someone could update http://s
ilcnet.org/software/download/server/,
i would appreciate it.

Regards,
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
Comment: Processed by Mailcrypt 3.5.8+ <http://mailcryp
t.sourceforge.net/>

iD8DBQFGS0eeiXTlFKVLY2URAmNyAKDfjnLRQdp4VAo0I8fjGs2Ax32/TgCf
ck4e
h0OaHwPIOvril4XJ0VBJhiI=
=p+LD
-----END PGP SIGNATURE-----
____________________________________________________________
___________
Info:    https://lists.silcnet.org/mailman/listinfo/silc-announce

Archive: htt
ps://lists.silcnet.org/pipermail/silc-announce
FAQ:     http://silcnet.org/su
pport/faq/
silc-server 1.0.4-2 backported to debian sarge
user name
 2007-05-21 22:06:37 
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Tue 2007-05-15 22:50:08 -0400, Daniel Kahn Gillmor
wrote:

> I've bumped along the monolithic debian packaging for
silc-server, so
> that version 1.0.4 is released as a debian package.

I've just now (Mon, 21 May 2007 23:03:14 -0400) backported
silc-server
1.0.4 to sarge as well, including the small change (about
permissions
on /etc/silc-server/silcd.prv) mentioned earlier.  The
sha256 sums
should look like this:

ae4c6f2255b2e2fd4419d8b0a8ca24e5df569e8b27a452caa3495abca4f8
482d  silc-server_1.0.4-2.diff.gz
8107a7b101b3b09310500a4e2734545fc7799ea6739582a94bc70d2d9564
c8ee  silc-server_1.0.4-2.dsc
9224c6b35586552f3e7da17d159a549c85f6079a02b5ba218402793bafdc
42c1  silc-server_1.0.4-2_i386.build
eaeebef19970b47f79cf3eb65d6ef0c3d356b742a1c58d7c9fb50d4e2a8e
5663  silc-server_1.0.4-2_i386.changes
fdc7d5ef740e309b2c696f8cf209af326ed2b427765b163479cef1c5654e
8496  silc-server_1.0.4-2_i386.deb
3f38771c152a79ae8d9b6fb2fa9b2c0dc8524d29737fe4c57747aa6b2224
576a  silc-server_1.0.4-2~sarge1.diff.gz
ad5cb8f8ea12abab6ddb70bcd622a1cc783f27e4313da16466601aa28f81
14f2  silc-server_1.0.4-2~sarge1.dsc
5801393fd6972014f95440d0d01e3fc473cad5391bf944b38e5eed26d20a
bfe7  silc-server_1.0.4-2~sarge1_i386.build
7b77246428d716434a389bbcc313b7923be5a884f14de227f7f33a1bac5f
a49c  silc-server_1.0.4-2~sarge1_i386.changes
1619e93ebf1da5619abc9f8843fae3599d26a0bcda5ffa7bd022d162a607
0fa8  silc-server_1.0.4-2~sarge1_i386.deb

They're available for download from the usual place:

  http://l
air.fifthhorseman.net/~dkg/src/silc/

As always, if you use any of these packages, i'd be happy to
get
reports about them.

Regards,

        --dkg
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
Comment: Processed by Mailcrypt 3.5.8+ <http://mailcryp
t.sourceforge.net/>

iD8DBQFGUl4wiXTlFKVLY2URAkxCAKCE+/6RYU9i5+ZnwRnipGA+0XT2lwCg
oAgE
skSzCeixFKL+AOneNWvpWIw=
=DoSv
-----END PGP SIGNATURE-----
____________________________________________________________
___________
Info:    https://lists.silcnet.org/mailman/listinfo/silc-announce

Archive: htt
ps://lists.silcnet.org/pipermail/silc-announce
FAQ:     http://silcnet.org/su
pport/faq/
[1-3]

about | contact  Other archives ( Real Estate discussion Medical topics )