/srv/irclogs.ubuntu.com/2010/03/01/#ubuntu-bugs.txt

nigelb	yofel: anything I can do on the bug you said fixed in sid?	01:57
nigelb	the openclipart bug	01:58
yofel	nigelb: don't think so, I posted a sync request for that (bug 529625), so we'll have to wait now	01:59
ubot4	Launchpad bug 529625 in openclipart (Ubuntu) "Sync openclipart 0.18+dfsg-9 (universe) from Debian unstable (main) (affects: 1)" [Wishlist,New] https://launchpad.net/bugs/529625	01:59
nigelb	ah, so posted a sync request already	01:59
nigelb	I was about to post one :)	01:59
Anzenketh	Can somone take a look at Bug #529744 and tell me what they think needs done to it to get a code reviewer to look at it.	05:57
ubot4	Launchpad bug 529744 in gnome-system-tools (Ubuntu) (and 1 other project) "When creating a user shortname should really be username. (affects: 1)" [Undecided,New] https://launchpad.net/bugs/529744	05:57
vish	Anzenketh: : you can leave it as in progress and subscribe the "review team"	06:03
vish	Anzenketh: select the "subscribe someone else" , and search the "ubuntu review team"	06:04
Anzenketh	Thanks	06:06
micahg	Anzenketh: why is there a GPG key in there?	06:06
Anzenketh	in my patch	06:06
Anzenketh	First time submitting a patch for ubuntu	06:06
Anzenketh	last one I did was for gnome	06:06
micahg	yes, why is there a key in the patch?	06:06
Anzenketh	Following instructions.	06:06
micahg	Anzenketh: from where?	06:07
Anzenketh	https://wiki.ubuntu.com/PackagingGuide/Recipes/Debdiff	06:07
Anzenketh	Was not clear on if I should or not	06:08
micahg	Anzenketh: also, it says debian/control is generated, but your debdiff shows it modified	06:08
micahg	Anzenketh: I don't think you understand the instructions	06:08
Anzenketh	I don't think so either	06:08
micahg	Anzenketh: you sign the package with the key, not include it	06:08
Anzenketh	Ok I am up to step 5 on that then	06:09
micahg	Anzenketh: I suggest you delete that patch and try to upload a cleaner one	06:09
Anzenketh	Will do	06:09
micahg	Anzenketh: it looks like you did the debdiff right though...	06:10
Anzenketh	Still trying to figure out how I am suppost to see if it did what I think it should have	06:14
Anzenketh	aka verify the fix.	06:14
micahg	Anzenketh: idk	06:17
Anzenketh	Neither do I I am going to try something else	06:17
micahg	Anzenketh: the string replaces looked good	06:17
Anzenketh	Ya it was a easy fix	06:18
Anzenketh	Just the type I like	06:18
micahg	Anzenketh: so, remove that key, rebuild and do the debdiff again	06:19
Anzenketh	Working on it.	06:19
micahg	Anzenketh: remove the key from teh package dir	06:19
vish	argh lp is really hungry :/ it eats half the comment at times..	06:56
nigelb	vish: you using gm scripts?	06:58
vish	nigelb: yeah , i have it installed.. but the comment was from the edit-status box and did not use the bug squad response	07:00
nigelb	vish: Does it happen when there is a release name mentioned in the comment?	07:00
nigelb	like Lucid or Karmic..	07:00
vish	hmm , this time , i did mention.. dont recall earlier	07:01
nigelb	If so turn off highlighting, its a bit buggy.	07:01
nigelb	ddecator mentioned it here some time back	07:01
nigelb	LP seems to be eating the comments up to the name of the release, but its actually the GM script	07:02
vish	the funny thing is , the lp mail has my comment full , but just not in LP	07:02
nigelb	its just hidden	07:02
ddecator	what did i mention?	07:02
nigelb	disable the highlighting	07:02
nigelb	and refresh, you can see the whole thing	07:02
ddecator	vish, turn of the highlighting option	07:02
nigelb	ddecator: gm scripts being buggy ;)	07:02
ddecator	vish, it's been reported	07:02
vish	hm,..	07:02
ddecator	nigelb, yah, that's the only one i have trouble with...	07:02
nigelb	ddecator: I noticed the same thing as vish	07:03
ddecator	let me find the report...	07:03
nigelb	it is now disabled for me	07:03
ddecator	that's how i noticed it too, haha	07:03
vish	ha , i can see !	07:03
vish	there it is!	07:03
nigelb	hehe	07:03
ddecator	bug 504956	07:04
ubot4	Launchpad bug 504956 in launchpad-gm-scripts "partially hidden comment in bug report (affects: 5) (dups: 1)" [Undecided,Confirmed] https://launchpad.net/bugs/504956	07:04
vish	hehe , others would have thought what am i talking about , i one bug report , i mentioned lp ate my comment and commented again ;p	07:04
vish	in one*	07:04
nigelb	hahaha	07:04
ddecator	haha, if they use the scripts then i'm sure they'll know	07:04
ddecator	i noticed it when i got an email showing the full path to an iso file when i was trying to help someone make a live cd, but then lp itself only showed part of it, then i noticed it always stopped after the highlighted text...not sure why there hasn't been any work on it	07:05
nigelb	ddecator: brian will get to it	07:06
nigelb	eventually ;)	07:06
ddecator	ah, did brian write them?	07:06
nigelb	ddecator: he wrote the highlight script	07:06
ddecator	nigelb, gotcha...well i would rather he review my -control application first, the highlighting can wait ;)	07:07
nigelb	lol	07:07
nigelb	I tend to think the other way though	07:07
ddecator	what, that the highlighting script is more important?	07:08
persia	ddecator: You ought be hunting others to review the application first: bdmurray may be the admin, but doesn't tend to act as final arbiter.	07:08
nigelb	a bug fix is more important than me and you getting rights	07:08
nigelb	persia: I thought we were to wait for someone to do it?	07:08
nigelb	(I did get 1 review, waiting for the ack)	07:08
ddecator	persia, idk how i would "hunt" others...hg_gdh gave me a +1, but i thought brian had the final say	07:08
nigelb	ddecator: you need two +1s	07:09
ddecator	nigelb, ah...half way there =)	07:09
nigelb	ddecator: same here ;)	07:09
persia	bdmurray tends to just administer this, and it's the rest of bugsquad that should be reviewing.	07:09
vish	persia: what is the criteria for bug control approval? some applicants get approved when there is just one person approving ..	07:09
persia	I forget precisely. It's something like a set time period (may be longer) with positive advocations and no leftover questions or issues.	07:10
nigelb	vish: are you confusing bug control and bug squad?	07:10
ddecator	yah the whole system is a little "mysterious." the wiki pretty much says "let us know these things, and it may or may not happen"	07:10
vish	nigelb: nope ;)	07:10
persia	I think it's supposed to be some minimum number of endorsements, but most of us don't spend enough time reviewing work of potential applicants.	07:10
* nigelb prods persia to review applications ;)		07:11
persia	So, if you're in bug control, please make an effort to respond to some of the applications.	07:11
vish	there needs to be a minimum number of approvals	07:11
* persia reviews some, but on a time-available basis, and needs more time		07:11
ddecator	-ahem- i agree with persia's idea of more -control people reviewing apps ;)	07:12
* nigelb feels like persia is like the wind, everywhere, all the time ;)		07:12
* ddecator agrees with nigelb		07:12
* vish wonders if persia's nick is because he likes/liked "Prince of persia" ;p		07:12
persia	No.	07:14
Anzenketh	There that bug is all fixed.	07:14
Anzenketh	Speeking of bugcontrol how long should I wait before applying?	07:15
ddecator	Anzenketh, as persia told me, you should apply when you feel ready =)	07:16
Anzenketh	Ehh not quite there yet	07:16
persia	Anzenketh: One thing to remember is that it's not about how much time has passed, but how much confidence and learning has occurred.	07:17
nigelb	Anzenketh: area you running karmic?	07:17
Anzenketh	Both	07:17
persia	We had a recent new member who joined bugsquad a week before applying and was approved (but that person had been working towards being a developer for a few months first, so already had a lot of familiarity with working with LP bugs).	07:17
Anzenketh	lucid and karmic	07:17
persia	Some people take months or years before they apply.	07:17
Anzenketh	Ugh Forgot to change that in my changelog	07:18
nigelb	Anzenketh: yup ;)	07:18
nigelb	Anzenketh: did you run what-patch on the source?	07:19
Anzenketh	no	07:19
Anzenketh	I know verry little about patching bugs	07:19
Anzenketh	Don't even know what that does.	07:19
* Anzenketh goes out and looks for a patching ubuntu for dummies		07:20
nigelb	Anzenketh: just ask in #ubuntu-motu, tell what you're doing	07:20
nigelb	and people will offer help	07:20
Anzenketh	Ok thanks	07:22
ddecator	this may be better asked in motu, but how much programming knowledge is needed for patching?	07:22
nigelb	ddecator: you should know how to read code	07:23
vish	ddecator: hehe , ask in -motu ;p	07:23
ddecator	vish, yah i kinda had a feeling, haha	07:23
* persia really needs to get around to cleaning up and separating the "how to make a patch" and "how to make a candidate revision as a developer" documentation		07:24
* ddecator still hasn't figured out how to package yet either...still not sure what he's doing		07:25
ddecator	but anyway, back to bug convo =p	07:25
* Anzenketh thinks lucid is ready for use on my main machine. I can put up with a few bugs here or there.		07:49
ddecator	so long as nouveau and plymouth behave...	07:49
Anzenketh	Ya forgot about that.	07:51
Anzenketh	It was runing fine on a older nvidia	07:51
ddecator	it sounds like it may be a simple fix, but yah. it might not affect you. it happens to me on live usb so if it doesn't happen to you in a live session, you should be fine	07:52
Anzenketh	well it happened to me in a live session.	08:20
Anzenketh	what was that bug number.	08:20
arand	Would anyone care to confirm Bug #529902 (simply install maxima and try to run it)?	08:42
ubot4	Launchpad bug 529902 in maxima (Ubuntu) "maxima tries to find /lib/libreadline.so.5 but 9.10 has .6 (affects: 1)" [Undecided,New] https://launchpad.net/bugs/529902	08:42
BUGabundo_remote	m0rn\|ng	08:44
kermiac_	morning BUGabundo_remote :)	08:45
nigelb	morning BUGabundo_remote :)	08:45
=== kermiac_ is now known as kermiac
BUGabundo_remote	hey guys	08:46
yofel	morning folks	09:01
nigelb	mornin yofel :)	09:01
kermiac	morning yofel :)	09:05
yofel	hi nigelb, kermiac	09:05
nigelb	:)	09:05
Zus	hi	09:43
arand	Would anyone care to confirm Bug #529902 (simply install maxima and run it)?	09:43
ubot4	Launchpad bug 529902 in maxima (Ubuntu) "maxima tries to find /lib/libreadline.so.5 but 9.10 has .6 (affects: 1)" [Undecided,New] https://launchpad.net/bugs/529902	09:43
Zus	are openpgp keys a person key to a profile on LP or can or will a certain team have pgp keys?	09:47
pascalFR	anyone can display correctly this site in flash on firefox ? http://www.grandpalais.fr/visite/fr/#/l-exploration/monument/histoire-du-monument/prouesse-architecturale/ i'd like to discriminate a flash problem from a video driver problem or other	09:49
nigelb	pascalFR: what problem do you encounter?	09:50
pascalFR	nigelb: images are jumping inside the animation dont know how to say it better in english	09:51
Zus	pascalFR, are they flickering?	09:51
pascalFR	yes Zus	09:51
nigelb	pascalFR: there is something wrong indeed. but it could be a problem with that site itself	09:51
Zus	flickering here also	09:51
Zus	i also just ran update manager before comming online...so i think im updatred	09:52
Zus	pascalFR, what site is this pretty cool	09:53
pascalFR	I deactivated composition on kde with shift-alt-f12 and same result less CPU indeed	09:53
pascalFR	i wonder if it is displayed correctly in windows	09:54
ev	Anzenketh: Regarding the ubiquity hug day that you're trying to organize, if it comes to fruition, could you please make it clear to the participants that the most helpful thing people can do is try to reproduce reported bugs in ubiquity debug mode (ubiquity -d) and attach the logs upon failure using ubuntu-bug bugnumber?	09:54
ev	Anzenketh: Also, please ask that they don't mark bugs as duplicates or close bugs that don't have logs or a response.	09:54
Zus	cant help there im on ubuntu 9.10 100%	09:54
ev	We've had problems in the past where people have marked loads of bugs as duplicates that were not.	09:54
pascalFR	so am i	09:54
Zus	i have a question about pgp's	09:55
pascalFR	other friends say it is displayed correctly on windows	09:55
Zus	are pgp bound to me personaly or would a specific team have one ?	09:56
nigelb	Zus: this isn't the right place to ask that, sorry	09:56
Anzenketh	ev: I don't understand what fruition is.	09:56
pascalFR	a little bit flickering but not the black flickerring under linux	09:56
persia	Zus: Try asking in #launchpad : it may be trivial (but it may not), as pgp identities are email addresses, which teams can have.	09:57
ev	Anzenketh: apologies. It roughly translates to "if the bug day you're planning happens"	09:57
Zus	ok then thanks i guess you need it to sign the code of conduct	09:58
arand	pascalFR: It flickers horribly but works otherwise and when not moving about..	09:59
Zus	oh hi arand	10:00
arand	Zus: Yea, I'm everywhere ;)	10:01
pascalFR	arand: yes ok so i'm not alone what video chipset ?	10:01
arand	pascalFR: Nvidia, 185, proprietary, laptop... 32bit flash.. compiz..	10:02
Anzenketh	ev: Ok I added a notes page to the wiki.	10:02
arand	pascalFR: G84 [GeForce 8600M GT]	10:03
pascalFR	arand: ok i am on intel GM965 so its not video driver dependent	10:04
Anzenketh	I am outa see ya all	10:18
=== kermiac is now known as kermiac_
=== pascalFR is now known as PascalFr_parti
kamusin	:)	12:20
tesso	I just found an interesting hardware dependency (PIII faster than P4) concerning a mobile broadband bandwidth issue – Bug #525049. What could be the packages affected?	12:37
ubot4	Launchpad bug 525049 in ppp (Ubuntu) "3G download speed is very slow compared to Hardy or Microsoft Windows OSs (affects: 1)" [Undecided,New] https://launchpad.net/bugs/525049	12:37
maja87_	hello	12:39
maja87_	anybody here?	12:40
persia	!ask	12:40
ubot4	Please don't ask to ask a question, simply ask the question (all on ONE line and in the channel, so that others can read and follow it easily). If anyone knows the answer they will most likely reply. :-)	12:40
maja87_	i dont have a question, i have a bug	12:41
maja87_	:)	12:41
maja87_	in Acer Aspire 5710z Synaptics driver	12:42
maja87_	the bug is with the laptop mode, if i change battery or AC power i got some touchpad malfunction, its jumping all over the screen and opening menus or submenus	12:42
maja87_	anybody heard of this bug?	12:43
maja87_	!bug synaptics	12:45
persia	maja87_: Have you searched fro the bug in launchpad?	12:49
vish	maja87_: odd , i have an Acer Aspire too and I noticed something similar with windows XP , and that was before I installed Ubuntu[linux] .. when using windows i just imagined it was a virus and reinstalled the drivers...	12:51
persia	vish: And you don't get it now?	12:51
vish	nope.. :)	12:52
charles	bdmurray: ping	12:52
maja87_	i trying to find it in launchpad yes	12:53
maja87_	and in xp there is no error	12:53
charles	bdmurray: I got a mail overnight saying I need to contact you (or ogasawara or jcastro or pedro_) to prevent my (https://launchpad.net/~charles-rebelbase) ubuntu-bugcontrol membership from expiring	12:54
maja87_	the problem only stand in 9.04, 9.10	12:54
LimCore	hi, it would seem ubuntu fails to provide an fire wall	13:19
LimCore	that is at least as capable as windows firewalls where back in 1999 or so	13:19
persia	Are you sure? We have heaps of firewall packages.	13:20
LimCore	but iptables is broken	13:21
LimCore	it fails to provide --cmd-owner option	13:21
LimCore	which makes it impossible to make the most obvious and important thing in firewall: disable given PROGRAMS to use internet	13:21
persia	LimCore: Well, I'd claim that the issue is that iptables is buggy, rather than the issue being that a firewall isn't provided.	13:22
persia	Has this bug been filed?	13:22
LimCore	not yet. its probably a compilation option	13:22
LimCore	for unknown reasons, perhaps someone breain dead designed it	13:22
persia	Well, either file it or go fiddle and fix it first :)	13:22
persia	But statements like "hi, it would seem ubuntu fails to provide an fire wall" don't help reach the goal.	13:23
LimCore	"hey, we have 592 options in firewall, but lets take one of 3 MOST IMPORTANT security options in iptables, and lets make THIS option to be optional / not compiled by default =)" what where they thinking	13:23
LimCore	now but seriously	13:23
LimCore	what where they thinking???	13:23
persia	Well, that's the nature of what we do. All of us (including you) find stuff that doesn't do what we want. We then fix it.	13:24
persia	Eventually we'll be perfect, but it might take a while :)	13:24
LimCore	most important firewall options: 1. block all inbount (all server connections) 2. block given outbound ports. 3. block unauthorized programs. And Ubuntu proviedes, 1, and 2, and then 100 other options, but fails to provide 3rd... ???	13:24
persia	Those aren't my most important options at all :)	13:24
LimCore	I am happy for all the work on free software and so on, but someone had to be really very incomeptent or short sighted to disable such super imprtant thing	13:25
persia	My three would be 1) provide port filtering for inbound and outbound access, 2) provide smart proxies for selected protocols, 3) provide an authentication mechanism that allows clients to adjust filter application	13:25
persia	In fact, on reflection, I probably never want to block based on process owner because I don't run trusted machines in untrusted networks.	13:26
persia	And I don't run programs on firewalls.	13:26
persia	This isn't to say the feature isn't useful, just that I'm unlikely to use it	13:27
persia	(note also that process owner is defined by the command executed, and is not particularly difficult to spoof)	13:28
LimCore	huh?	13:28
LimCore	you block local originating connections based on local application	13:28
LimCore	in example	13:28
LimCore	you want ping to use internet, and firefox	13:28
LimCore	but you do not want adobe-pdf-reader binary to connect to internet =)	13:28
LimCore	nor you want ./from-my-friend/trojan.lol.bin to connect	13:29
LimCore	Zone Alarm did it right	13:29
LimCore	on windows	13:29
LimCore	in 1999 or so	13:29
LimCore	now we could do it as well on ubuntu (just 10 years later ;) IF we have --owner-cmd in iptables	13:29
persia	I understand the feature you want to exist. I am unlikely to use it myself. I have ideas as to how to work around such a filter.	13:30
LimCore	only really noob users would not use this	13:30
persia	So, if you implement it, and I have some time, I might file some private security bugs if I can spoof it.	13:30
LimCore	do not take this personally, I just take it from windows	13:30
LimCore	only most noob users did not used Zone Alarm or similar thing. And that is by 2000's standards	13:31
ikonia	LimCore: don't make personal comments/statements then	13:31
ikonia	LimCore: your attitude/rantings towards bugs has to stop now	13:31
ikonia	it's gone on long enough	13:31
LimCore	well everyone is a noob in some area of life nothing to be ashame of. I am sure Im noob about for examply health care and such ;) But ok then	13:31
LimCore	so how to rebuild iptables with this option	13:31
LimCore	this really needs to be patched	13:32
ikonia	LimCore: only a noob would ask that question	13:32
persia	LimCore: Really, it's not as simple as that. I wouldn't bother because I trust my network and have a cryptographic trail for every executable on every trusted machine. As a result, there's no point. But I agree that most people aren't as paranoid as I.	13:32
ikonia	LimCore: the function you require, is it in iptables, yes/no ?	13:32
LimCore	persia: are you sure none of your applications contains an exploit?	13:32
LimCore	ikonia: it is available, but turned off in ubuntu	13:32
ikonia	LimCore: how is it turned off ?	13:32
ikonia	LimCore: what has been done to disable it ?	13:33
persia	LimCore: Rather, I'm sure nearly all of them are, but I'm sure none are currently passing information in a way I'm not aware of.	13:33
LimCore	hmmmm	13:34
LimCore	this seems surprisingly undocumented on iptables homepage	13:34
* LimCore digs in		13:34
cyphermox	persia, I am rather curious to know how you deal with the checksums or whatever for your executables. Is it something like tripwire or AIDE?	13:34
ikonia	LimCore: are you %100 sure the functionality exists in iptables	13:35
LimCore	ikonia: yes	13:35
ikonia	LimCore: how ?	13:35
ikonia	LimCore: what gives you this confidence	13:35
LimCore	thousands of forums and iptables mailing lists guestions	13:35
Pici	A quick google search reveals that those commands should exist for iptables.	13:35
ikonia	Pici: where I'm going is what version	13:35
LimCore	Pici: it is surprisingly hard to find descriprion of that cmd in iptables homepage	13:36
LimCore	site:netfilter.org "--cmd-owner" -lists -ftp -svn returns nothing	13:36
LimCore	site:netfilter.org "--cmd-owner" -lists returns something else	13:36
ikonia	LimCore: at what point was this command introduced to iptables, is it new/legacy ?	13:36
LimCore	I see mentions of it from years ago	13:36
ikonia	ok - so it's legacy	13:36
LimCore	I remember experimetin with it years ago too	13:36
ikonia	so have you contacted either by mail/launchpad/bug the iptables package maintainers for ubuntu to find out why it's been removed and how ?	13:37
persia	cyphermox: I use debsums actually, and prohibit executables outside of / and /usr (and track failures in /etc).	13:37
kklimonda	LimCore: your arguments and the way you discuss them is almost indistinguishable from some forms of trolling I've seen in my life. Could you make your point in a more acceptable way and not call us, users or the way we do things "stupid", "noobs" et cetera?	13:37
cyphermox	persia, nice.	13:37
persia	cyphermox: It's a little annoying to set up because you need to mount everything in special places, and eset noexec in fstab, etc. but once it's there, it just works. One of the advantages of debian-based systems that people don't always know about.	13:39
kklimonda	LimCore: wrt --cmd-owner please see http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=492284	13:39
ubot4	kklimonda: Error: Could not parse data returned by Debian: (-2, 'Name or service not known')	13:40
BUGabundo_remote	LimCore: don't we have SElinux and similar to do precisley that?	13:40
ikonia	kklimonda: interesting so it's been dumped from the kernel support	13:40
cyphermox	persia, does sound nice. I've been asked to build very secure systems on RHEL in the past, similar things exist but there's often just a little thing missing or slightly wrong (IMO). Make me do some pretty cool code to extend acct though :)	13:40
persia	cyphermox: My solution isn't very secure. It is subject to tampering. If you need to be more paranoid, run several different integrity checkers, and store the results remotely for comparison.	13:41
persia	But I think my solution is secure enough that with traffic monitoring I can know if something unexpected is happening, and have a fair degree of confidence.	13:41
LimCore	BUGabundo_remote: there is, but SELinux is a bit "too big guns" and apparmor is not so good yet	13:42
cyphermox	persia, it's still pretty good... one needs to keep a reasonable balance between security and convenience.	13:42
persia	cyphermox: Indeed. Just don't try to sell the default system as very secure :)	13:43
jdstrand	LimCore: what are the limitations of apparmor that make it "not so good yet"?	13:43
cyphermox	persia, oh no :)	13:43
LimCore	jdstrand: it is not trivila to use, the error messages are not always helpfull, there are some bug(s) that I reported, it lacks a nice gui etc	13:43
* BUGabundo_remote wonders when did #-bugs got renamed to #-security		13:43
BUGabundo_remote	I like the topic, but it's a bit OT in here	13:44
LimCore	its a security bug/missing feauture	13:44
ikonia	LimCore: no	13:44
ikonia	LimCore: it's been removed from the kernel	13:44
cyphermox	BUGabundo_remote, I did get a little off-topic, thanks ;)	13:44
BUGabundo_remote	LimCore: #ubuntu-bugs is for bug triaging ... not winning	13:44
ikonia	tired of this ranting about nonsense	13:44
jdstrand	LimCore: well, the point of apparmor in Ubuntu is to mostly stay out of the way of the user (which is why a gui hasn't been developed yet). as far as other MAC systems are concerned, it is considerably easier to use	13:44
persia	Belongs in -hardening, but they probably have an even better solution.	13:45
LimCore	persia: you security system will not prevent a targeted attack to quickly and simply use exploit in any application to steal data from the user	13:45
ikonia	LimCore: then log a bug to the kernel develoeprs on kernel.org	13:45
persia	LimCore: I suppose. That's why I don't keep critical data on machines that have access to the internet.	13:45
jdstrand	LimCore: there are bugs in all software, however, apparmor does a lot to help security in the default install	13:45
ikonia	jdstrand: if he cares about security as much as he claims with these random "security incidents" he'd learn how to setup apamor or selinux	13:46
persia	LimCore: But we're well off-topic. The issue is the feature you want. Apparently linux doesn't support it any more. You want something like SELinux or Tomoyo or apparmour, etc.	13:46
LimCore	persia: having 5 computers for every other thing you do is very secure, but very uncomfortable. A simple application matching filtering with simple GUI to learn would suffice	13:46
persia	LimCore: Depends on the use case. Like I said, that it's not important for me has nothing to do with whether it's important for you.	13:46
jdstrand	ikonia: sure. I was not responding to backscroll so much as the isolated comment. if my reply was out of context, I apologize	13:46
ikonia	jdstrand: not out of context at all, very valid	13:47
LimCore	ikonia: each time you see some a bit advanced topic you say its "nonsense". This area of security is definatelly not nonsense	13:47
ikonia	LimCore: it's not an advanced topic, I see the point you're trying to make, but you make these comments without ANY research	13:47
LimCore	is apparmor stil the prefered security MAC tool in ubuntu?	13:47
jdstrand	LimCore: yes	13:47
LimCore	or perhaps are we moving to tomoyo or grsec	13:47
ikonia	it's still the default enabled	13:47
LimCore	ikonia: the reaserch is that I know that this feauture is very needed. If its not supported by iptables no more than well it is quite unfortunate.	13:48
jdstrand	LimCore: the ubuntu-kernel team has put a lot of effort into it in the last two cycles to get it in mailine (it is very close). the ubuntu-security team has also done a lot of work on profiling	13:48
LimCore	Hopefull this still can be achieved	13:48
LimCore	well this could be done as well by apparmor	13:49
jdstrand	LimCore: we've also pretty much incorporated everything in grsec that can be incorporated in a mainstream distribution, aiui	13:49
LimCore	pax randomization too?	13:50
ikonia	LimCore: a.) you don't know it's needed b.) you've not looked at why / how it was removed c.) you call people like the ubuntu developers incompetant - when actually it is YOU who are looking like you don't know what you're doing by making random issues up, when in reality here is the bug "I limcore would like this iptables feature enabling somehow in ubuntu" - it's not a bug, it's a feature request,	13:50
persia	Not that it's a default recommendation, but I know that tomoyo upstream was happy with the state of tomoyo on karmic. I expect the same would be true for lucid, so users have lots of options (as many as can be sensibly combined).	13:50
jdstrand	LimCore: https://wiki.ubuntu.com/Security/Features has all the details	13:50
ikonia	and it's not an ubuntu issue - it's a change in the kernel design	13:50
jdstrand	persia: re tomoyo> that is very good to hear!	13:51
LimCore	ok so I was mistaken, its sad that kernel upstream removed this -owner-cmd	13:51
LimCore	in either way	13:51
virtuald	paxtest has all the answers	13:51
LimCore	I am sure Ubuntu should provide a application + host/port filtering application with easy to use GUI	13:52
ikonia	LimCore: they do ufw	13:52
persia	jdstrand: Is there interest in ensuring it works? The Japanese team does a bit of coordination with the Tomoyo team, and I could maybe send them your way.	13:52
persia	Otherwise I suspect they'll stick to filing kernel bugs if required.	13:52
LimCore	to provide protection like with ZoneAlarm; Each new application for given user asks, like, are you sure you want to allow Firefox to connect? Yes ; Only to LAN ; Only to port 80; No	13:52
LimCore	are we thinking of moving from app armor to tomoyo?	13:53
ikonia	LimCore: no	13:53
persia	LimCore: No. Or at least, not soon.	13:53
jdstrand	LimCore: no	13:53
ikonia	I don't know why you keep saying that	13:53
LimCore	I was happy to see apparmor, but after some testing I found number of problems, especially in area of tweaking it easly	13:53
persia	LimCore: Did you file bugs?	13:53
ikonia	like the other security issues you find	13:53
jdstrand	LimCore: apparmor is more fully functional, tested and integrated into Ubuntu. tomoyo is there for those who want it, but apparmor is the default and that is not going to change in the forseeable future	13:54
LimCore	bug #421216	13:54
ubot4	Launchpad bug 421216 in apparmor (Ubuntu) "Useless "null-complain-profile" warnings flood dmesg log (affects: 1)" [Undecided,Incomplete] https://launchpad.net/bugs/421216	13:54
LimCore	yeah I should go back into this topic	13:54
LimCore	perhaps app armor will work out after all	13:55
ikonia	so your customer profiles create error messages.......Hmmmmm	13:55
* jdstrand actually asked LimCore for more information in that bug, but never received it ;)		13:55
kklimonda	jdstrand: I was just going to say that ;)	13:55
LimCore	ikonia: the bug is that this error message not allowing user to understand where are they from	13:55
persia	LimCore: Please update the bug, rather than chatting here. It will get a better result.	13:56
LimCore	that too, but Im more interested in this equivalent of ZA	13:56
ikonia	that's your hot topic of the hour	13:57
jdstrand	LimCore: btw, that is obviously a bug, but you asked for at least the PID in that-- it is part of the line 'pid=19145'	13:57
ikonia	LimCore: why not revisit your firewire bug that's all ubuntu's fault	13:57
ikonia	or one of the many otherss	13:57
LimCore	ikonia: that ZA is the firewall bug	13:58
ikonia	LimCore: there is currenrlty no ZoneAlarm style app developed by ubunutu, there is UFW, firestarter, iptables-builder - all are gui and can assist you	13:58
ikonia	LimCore: no - it's not a firewall bug, it's a kernel bug and nothing to do with ubuntu	13:58
jdstrand	slight correction-- ufw is cli, but there is gufw that is a gui for ufw	13:58
ikonia	go to #kernel and tell the developers they are incompentant - in the same way you call the ubuntu developers	13:59
ikonia	lets see how far that stinking attitude gets you	13:59
LimCore	main point of ZA is that user is interactivly informed and asked to confirm given connection while a new application is trying to connect (and then this rules are updated based on his response)	13:59
ikonia	LimCore: zonealarm is not a linux product - stop referencing it	13:59
ikonia	LimCore: if you want to right zone alarm for linux - go for it, but don't you dare start calling people incopentant again for a freature you want but doesn't have - and you've done nothign about	14:00
LimCore	ikonia: Linus do have a very family friendly style	14:00
ikonia	LimCore: that has nothing to do with it	14:00
LimCore	hmm ok perhaps I was not clear previously	14:00
LimCore	SORRY I WAS MISTAKEN, it is a kernel decission to remove this command I needed; and there seem to be some reasons for that	14:00
ikonia	LimCore: go and rant at #kernel for their foolish designs and treat them the same way you treat this channel and the people of the ubuntu community	14:00
jdstrand	we discussed that feature of ZA recently, and it is not something that is particularly interesting (to me and the security team) due to the potentially extrememly poor user experience: "I want to do something, so now I have to click Ok on a bunch of popups"	14:01
jdstrand	since they want to do it, they will clock 'Ok'	14:01
ikonia	LimCore: it doesn'tmatter if you where mistaken, you think this is incompetance, so therefore it's the kernels developers incompetence, or are your instults and lack of respect saved up just for ubuntu developers	14:01
LimCore	ikonia: above remarks should go to kernel, yes	14:02
ikonia	LimCore: no - they should not go anywhere	14:02
ikonia	LimCore: your attitude towards people who offer there time, needs to change, as you can tell I'm pretty annoyed by your presistant rude and offensive approach to logging bugs and feature requests, and it has to stop now	14:02
LimCore	/if/ they killed a potentially important part of security, then it is not very good	14:02
persia	Um, can we get back to the bug please?	14:02
ikonia	persia: actually I'm not sure	14:03
ikonia	persia: I'm fed up of this attitude and I'm questioning if this sort of attitude should get attention	14:03
LimCore	this would be more of a blueprint then a bug?	14:03
ikonia	behave like a child, rant and rave and get your bug looked at, rather than do the research, log the bug and commuicate clearly	14:03
LimCore	ikonia: you said you will fix a bug for a bug I fix, then lets do this one	14:04
ikonia	this isn't a bug	14:04
persia	ikonia: We don't actually do anything other than help triage bugs here. Don't fear that any different engagement model will get different results.	14:04
ikonia	this is you wanting an application desgned and developed	14:04
BUGabundo_remote	humf	14:04
BUGabundo_remote	guys take 5 everyone	14:04
BUGabundo_remote	we all need to fresh our heads for a bit	14:05
persia	LimCore: So anyway, bug #421216 needs a comment, I suspect.	14:05
ubot4	Launchpad bug 421216 in apparmor (Ubuntu) "Useless "null-complain-profile" warnings flood dmesg log (affects: 1)" [Undecided,Incomplete] https://launchpad.net/bugs/421216	14:05
BUGabundo_remote	LimCore: please rest a bit, and file all bugs and wishbugs as approprieted	14:05
LimCore	ok. Have to build a test box first. Then we will finish it	14:05
persia	LimCore: And please file a new bug asking for the per-command network restrictions. That iptables can't do it anymore doesn't mean that there isn't another way (perhaps with apparmor)	14:06
persia	LimCore: Thanks.	14:06
LimCore	for a new tool, c++ + libboost + wxWidgets should be fine? or are his dependencies "too big"	14:08
ikonia	LimCore: speak to designers, this is a bug channel	14:09
hggdh	hum. I see that life was not boring while I slept	14:16
thekorn	good morning hggdh ;)	14:17
hggdh	good morning thekorn	14:18
hggdh	er, afternoon	14:18
BUGabundo_remote	eheh hggdh :p wb	14:18
hggdh	ola BUGabundo_remote , boas tardes	14:18
persia	LimCore: #ubuntu-app-devel might be a good place to ask about developing applications.	14:38
jpds	crimsun: Ping.	15:14
nigelb	hola hggdh :)	15:43
hggdh	Ola nigelb	15:44
nigelb	hggdh: I've ended up getting in touch with the music store creator. He wanted me know he'll help me with bugs if I needed help 0_o	15:45
hggdh	nigelb: what music store creator? I am lost...	15:49
nigelb	hggdh: the ubuntu one music store which uses a rhythmbox plugin	15:49
hggdh	Oh, OK. Cool. Already working with upstream (even if it is a local one) :-)	15:50
nigelb	:)	15:52
nigelb	strange thing - he got in touch with me.	15:52
vish	nigelb: why is it strange ... were you hiding/avoiding him? ;p	15:54
nigelb	vish: I never knew who was behind it.	15:54
hggdh	heh. I myself do not know who they are (OTOH, never looked for them)	15:55
nigelb	hehe, but anyway, happy to help in whatever capacity	15:56
=== yofel_ is now known as yofel
arand	Should I leave Bug #529902 as fix released (since only occurs in Karmic), or should it be "commited" to advertise that it needs reviewing?	16:45
ubot4	Launchpad bug 529902 in maxima (Ubuntu) "maxima tries to find /lib/libreadline.so.5 but 9.10 has .6 (affects: 1)" [Undecided,Fix released] https://launchpad.net/bugs/529902	16:45
arand	Or even just confirmed?	16:46
greg-g	arand: it is fixed in Lucid? then keep it fix released	16:48
greg-g	if the fix needs to be backported to karmic for some compelling reason, it needs to go through the SRU process: https://wiki.ubuntu.com/StableReleaseUpdates	16:49
arand	Well, it's fixed as per upstream, but I reported it as a karmic problem..	16:50
hggdh	arand: So upstream fixed it. Did the fix land on Lucid?	16:51
arand	greg-g: well, the application fails to run unless you either install libreadline5-dev, or symlink libreadline6-dev	16:51
arand	hggdh: yep	16:51
hggdh	arand: then (since the fix is in Lucid) Fix-Released is correct	16:52
* greg-g nods		16:52
hggdh	If Karmic still needs to be fixed, then (as greg-g pointed out) we need a SRU	16:52
PascalFr_parti	!suspend	16:53
ubot4	Factoid 'suspend' not found	16:53
bdmurray	Is there some translators channel?	17:15
vish	there isnt..	17:27
vish	atleast for Ubuntu..	17:28
bdmurray	I found what I was looking for more or less	17:28
vish	ah, the local help channel? :)	17:28
vish	mind sharing ,might be useful for us too ;)	17:28
vish	bdmurray: .. would be fun though having translators from all over the world in one channel :)	17:32
bdmurray	I just really wanted to point someone where to get started	17:33
bdmurray	w.u.c/Translations seemed to fit the bill	17:33
vish	righto..	17:34
qense	Was Pedro hit by the earth quake?	17:50
seb128	qense, he's fine, we got news	17:52
seb128	he has no internet though	17:52
qense	good to hear he's ok	17:52
qense	I hope his family is alright as well.	17:53
seb128	they are	17:53
seb128	it's all good I think ;-)	17:53
qense	good	17:53
seb128	at least the news we got were good	17:53
seb128	he's just sure when internet will be back for him so he's not online	17:53
seb128	brb testing updates	17:53
bdmurray	qense: can you confirm that bug 524941 is fixed?	18:07
ubot4	Launchpad bug 524941 in grub2 (Ubuntu) "Grub fails to install on Lucid guests running under KVM during installation (affects: 3)" [High,Confirmed] https://launchpad.net/bugs/524941	18:07
qense	bdmurray: I've just downloaded the ISO of alpha 3 and will check that bug.	18:07
bdmurray	qense: awesome, thanks	18:07
=== radoe_ is now known as radoe
thekorn	phew, thanks god for the good new about pedro, was about to ask the same	19:04
bdmurray	thekorn: you made a 5-a-day applet once right?	19:22
thekorn	bdmurray, yes	19:22
bdmurray	thekorn: I was thinking it might be neat to have one that counted down from 5 to 0 showing your progress now	19:23
thekorn	bdmurray, I did not follow the 5-a-day initiative over the last few month, is it still on?	19:23
thekorn	or do you what this applet not as part of 5-a-day	19:24
thekorn	but as something completely different	19:24
thekorn	e.g. how would such an applet get it's data	19:24
thekorn	s/it's/its	19:24
thekorn	I mean it is alot easier to get this directly from launchpad now, as I landed a change to make searchTasks() available on person objects	19:26
bdmurray	thekorn: it'd look at the person's - http://qa.ubuntu.com/reports/five-a-day/people/brian-murray.data	19:26
bdmurray	thekorn: oh, that's right. five-a-day is using the mailing list to generate the .data file now	19:26
thekorn	bdmurray, hmm, I think we have to options here: trying to fix the old one to use this data, or 2.) rewrite something using this fancy new indicator aplet techniques	19:31
thekorn	where rewriting it seems to be the right way if your target user is using lucid or later	19:32
bdmurray	thekorn: do you mean the new notification system or something else?	19:32
thekorn	bdmurray, yes	19:32
bdmurray	thekorn: aren't notifications supposed to be temporary? I'd think this should be there all the time reminding you to do your 5! ;-)	19:33
ddecator	an indicator for 5-a-day?	19:33
thekorn	bdmurray, oh, I'm not sure, but isn't the battery applet in lucid also using this new indicator technique?	19:35
thekorn	ok, anyway, what do you what me to do? any timeframe? ;)	19:35
bdmurray	thekorn: I'd like you to make it work! ;-) whenever	19:36
thekorn	okidoki	19:36
thekorn	bdmurray, is the code generating this 5-a-day data files available somewhere?	19:43
bdmurray	thekorn: of course! https://code.edge.launchpad.net/five-a-day-stats	19:48
vish	bdmurray: how are the 5-a-day actually counted? only ubuntu task status change or importance changes/adding upstream link/comments? [just wondering since you mention it counts from mail list]	20:03
=== maco2_ is now known as maco2
bdmurray	any activity for ubuntu bug tasks	20:04
thekorn	vish, from lloking at the code at http://bazaar.launchpad.net/~5-a-day/five-a-day-stats/trunk/annotate/head%3A/simple-mailinglist-parser it is all activity which generates notification emails besides [NEW] bugreports	20:04
bdmurray	yep ;-)	20:05
bdmurray	reporting bugs doesn't count	20:05
thekorn	damn ;)	20:05
vish	hehe :)	20:05
bdmurray	actually maybe it should substract from the 5 ;-)	20:05
vish	ha , so it is only the helping "others" that counts ;p	20:05
Anzenketh	Getting 5 a day is not that hard	20:06
Anzenketh	It just take commitment to remember to spend about a hour	20:06
Anzenketh	Depending on what you are working on.	20:06
vish	Anzenketh: yup , but doing "only" 5 a day is hard , sometimes i have to control myself ;)	20:07
ddecator	haha, except when you get wrapped up in deeply testing one for an hour. then you can lose track of how many you've worked on so far that day ;)	20:07
Anzenketh	vish: speaking to the choir 2231 karma in 1 week	20:08
vish	the funny thing is , we see so many people working on bugs and rarely our paths cross , and there are still so many bugs left untouched :(	20:09
ddecator	vish, i think that has a lot to do with specializations...	20:09
vish	which makes we wonder , will we ever cover _all_ the bugs	20:09
bdmurray	Anzenketh: I actually wish you'd slow down as some of your work is a bit off	20:09
Anzenketh	ya	20:10
Anzenketh	I am working on that	20:10
Anzenketh	Got a spreadsheet that I check off on every bug I work on now.	20:10
yofel	vish: I doubt that, but I'll be happy to throw a party if we get the New count below 10k ...	20:12
* ddecator will attend		20:13
Anzenketh	That is 8+k to go	20:14
yofel	Anzenketh: 'New' for Ubuntu is at 43390 right now	20:16
Anzenketh	I was pulling from untriaged list	20:16
bdrung_	bug #43390	20:17
ubot4	Launchpad bug 43390 in gparted (Ubuntu) "unfitting icon in gparted in cause of new icon theme (dup-of: 45444)" [Medium,Confirmed] https://launchpad.net/bugs/43390	20:17
ubot4	Launchpad bug 45444 in tangerine-icon-theme (Ubuntu) "the Human "cancel" icon is not appropriate (dups: 2)" [Low,Fix released] https://launchpad.net/bugs/45444	20:17
yofel	lol	20:17
* Anzenketh starts to go though his subscribed bugs to make sure everything is up to par		20:19
crimsun	jpds: contentless pong	22:06
BUGabundo	heh	22:07
zetheroo	I think I may have found a bug ... but wanted to run it past the experts first ...	23:48
ddecator	zetheroo, lets hear it =)	23:48
zetheroo	I am running Karmic on several machines, Desktops and Laptops ...	23:48
zetheroo	the issue is regarding auto-mounting of USB volumes	23:49
ddecator	what behavior are you experiencing?	23:49
zetheroo	when the desktop is disabled auto-mounting does not work	23:49
zetheroo	however au-mounting is still enabled	23:49
zetheroo	I am using the Configuration Editor to see all this	23:50
zetheroo	once i re-enable show_desktop, auto-mounting works again	23:50
seb128	that's not a bug	23:51
seb128	nautilus does the automounting if it's not running it doesn't	23:51
zetheroo	the settings for media_automount is in apps>nautilus>preferences	23:52
zetheroo	so nautilus and the desktop are synonymous?	23:52
zetheroo	I thought nautilus was the file manager	23:52
seb128	it's the filemanager	23:52
zetheroo	right	23:52
seb128	it's also what draws your background usually	23:52
seb128	and what puts icons there	23:52
zetheroo	well my background works fine with desktop off	23:52
seb128	that's what I said usually	23:53
seb128	why	23:53
seb128	gnome-settings-daemon do that too	23:53
seb128	when nautilus is not doing it	23:53
zetheroo	but my icons are gone .. which is what I wanted .. but then for some reason volumes don't mount automatically ...	23:53
seb128	did you read why I wrote?	23:54
zetheroo	yes	23:54
seb128	so?	23:54
zetheroo	when nautilus is not doing something then gnome-settings-daemon does it	23:54
seb128	no	23:54
seb128	that was about the background drawing	23:54
zetheroo	oh	23:54
persia	zetheroo: That's not a bug. Please file a question on launchpad or ask for help in #ubuntu. If you aren't using nautilus to handle it, you'll need something else.	23:55
zetheroo	well that I have no issue with	23:55
seb128	did you read what I wrote some minutes ago?	23:55
seb128	about automounting	23:55
seb128	and not having to run	23:55
seb128	nautilus having to run rather	23:55
zetheroo	"nautilus does the automounting if it's not running it doesn't"	23:56
seb128	nautilus does the automounting and need to be running for that	23:56
zetheroo	so by switching off desktop I am switching off nautilus?	23:56
seb128	when you don't use it to display the background and don't run it by opening a view it's not running	23:56
seb128	what ubuntu version do you use?	23:56
zetheroo	ok, so if I have a nautilus window open it should auto mount the volumes?	23:57
seb128	yes	23:57
zetheroo	I said at the beginning I was using Karmic ;)	23:57
zetheroo	well I will try that with having a nautilus window open ... still, I don't think the two should be connected... I should be able to hide all the icons on the desktop without loosing key functionality like auto-mounting ...	23:58
seb128	there is a gconf key to set to let nautilus does automounting when there is no ui view set	23:58
zetheroo	anyhow .. I guess it's "working" as it's designed to so not a "bug" per se	23:59
zetheroo	really?	23:59
seb128	it's set by default in karmic	23:59
zetheroo	where?	23:59
seb128	ups	23:59
seb128	lucid	23:59
seb128	I'm looking for it	23:59

Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!