Custom Query (1145 matches)
Results (223 - 225 of 1145)
Ticket | Resolution | Summary | Owner | Reporter |
---|---|---|---|---|
#764 | fixed | Get libstdc++.so.5 on to the dialups | jweiss | jdreed |
Description |
The rest of the world still relies on this library, unfortunately, so we need to find a way to get it on to the dialups. (Discussions of why programs that still rely on this are Wrong(tm) is out of scope for this ticket.) Conventional wisdom seems to be to install the amd64 version from here: http://packages.debian.org/stable/base/libstdc++5 and also download the i386 version from the same place, and use dpkg-deb to manually shove the i386 libraries in /usr/lib32. We should possibly consider a compatibility package. |
|||
#374 | fixed | clean up redundancies in debathena-thirdparty | kaduk | geofft |
Description |
This is a separate issue from removing unwanted packages from debathena-thirdparty: there are a couple of cases in which our metapackages depend on one package and a couple of that package's dependencies, which can be simplified. -dev packages and their non-dev library partners are a good example of this. This should not be a change in practical function of the package. There are also a couple of cases in which our metapackages depend on one package and a couple of that package's recommendations: for instance, we could replace (almost?) all of the boost packages in thirdparty-libraries with just libboost-dev. This would be a significant cleanup, but a slight functional change. It's worth considering if there are reasons to keep these packages as hard dependencies; one technical reason to do so is that recommendations are never resatisfied if they happen not to be satisfied when the package is first installed (see #373). See that ticket and also #372 for discussion of making everything in -thirdparty recommendations, which, if implementable, would make this option clearly okay. |
|||
#529 | fixed | Make Athena ready to transition away from single-DES | kaduk | andersk |
Description |
[Not entirely a Debathena bug, but this is the most convenient place to keep track of it.] As an experiment, I modified my Kerberos principal to have only a triple-DES enctype using kadmin: kadmin: cpw -e des3-hmac-sha1:normal andersk This works out fine from a Kerberos client perspective:
However, it exposed some problems with various password-authenticated services:
Given that single-DES is critically weak, is disabled by default in current releases of Kerberos, and will be removed entirely in future releases, we should talk with network and try to get these little problems worked out sooner rather than later. SolutionIn at least one case (ca.mit.edu), the problem was that the server’s /etc/krb5.conf had the line default_tkt_enctypes = des-cbc-crc. This line should be removed. Since we think this misconfigured /etc/krb5.conf has been copied to many MIT servers, that’s probably all we need to do to fix most or all of these problems. |