From freddy.dsx at free.fr Sun Feb 1 11:24:21 2015 From: freddy.dsx at free.fr (Freddy DISSAUX) Date: Sun, 1 Feb 2015 11:24:21 +0100 Subject: fossil 1.30 update Message-ID: <20150201102421.GI18408@linutop.bsdsx.fr> Hello, Patch for fossil 1.30. Regards, -------------- next part -------------- Index: Makefile =================================================================== --- Makefile (revision 24607) +++ Makefile (working copy) @@ -2,10 +2,10 @@ # TODO (release-critical prefixed with !, non release-critical with *) # Recipe sent in by Freddy DISSAUX freddy.dsx free.fr NAME = fossil -VERSION = 1.29 +VERSION = 1.30 GARTYPE = v2 GARCOMPILER = GNU -DISTVERSION = 20140612172556 +DISTVERSION = 20150119112900 DESCRIPTION = DSCM with built-in wiki, http interface and server, tickets database define BLURB Fossil is an easy-to-use Distributed Source Control Management system (DSCM) @@ -18,7 +18,6 @@ DISTFILES = $(NAME)-src-$(DISTVERSION).tar.gz WORKSRC = $(WORKDIR)/$(NAME)-src-$(DISTVERSION) PATCHDIR = $(WORKSRC) -PATCHFILES += 0001-Include-string.h-to-mitigate-warnings.patch BUILD_DEP_PKGS = CSWlibssl-dev Index: checksums =================================================================== --- checksums (revision 24607) +++ checksums (working copy) @@ -1 +1 @@ -dd8e7392e1a0ea69eb391f8b13ee34bf fossil-src-20140612172556.tar.gz +dd7cf91c2725ea8aaa0913330fffa0ff fossil-src-20150119112900.tar.gz From maciej at opencsw.org Sun Feb 1 12:13:14 2015 From: maciej at opencsw.org (=?UTF-8?Q?Maciej_=28Matchek=29_Blizi=C5=84ski?=) Date: Sun, 1 Feb 2015 11:13:14 +0000 Subject: fossil 1.30 update In-Reply-To: <20150201102421.GI18408@linutop.bsdsx.fr> References: <20150201102421.GI18408@linutop.bsdsx.fr> Message-ID: Thanks! It will appear in the unstable catalog in 10 minutes (mirrors will be slower than that). -------------- next part -------------- An HTML attachment was scrubbed... URL: From Andreas.Dvorak at baaderbank.de Mon Feb 2 09:02:56 2015 From: Andreas.Dvorak at baaderbank.de (Dvorak Andreas) Date: Mon, 2 Feb 2015 09:02:56 +0100 Subject: AW: CSWlogrotate configuration In-Reply-To: References: Message-ID: Hi Ben, I have created a cron entry and it is working * 2-4 * * * /opt/csw/sbin/logrotate /etc/logrotate.conf If I execute /opt/csw/sbin/logrotate without the config file I get this /opt/csw/sbin/logrotate logrotate 3.8.3 - Copyright (C) 1995-2001 Red Hat, Inc. This may be freely redistributed under the terms of the GNU Public License Usage: logrotate [-dfv?] [-d|--debug] [-f|--force] [-m|--mail=command] [-s|--state=statefile] [-v|--verbose] [-?|--help] [--usage] [OPTION...] ls -l /etc/opt/csw/logrotate.conf -rw-r--r-- 1 root root 25 Feb 2 09:00 /etc/opt/csw/logrotate.conf Does that mean that there is a bug? Best regards Andreas Von: Ben Walton [mailto:bwalton at opencsw.org] Gesendet: Samstag, 31. Januar 2015 02:22 An: Questions and discussions; Dvorak Andreas Betreff: Re: CSWlogrotate configuration If CSWlogrotate is looking for config in /etc/logrotate.conf, that's a bug. The config file should be in /etc/opt/csw/. Please file a bug against the package if you determine this is what's happening. Thanks -Ben On Fri Jan 30 2015 at 3:40:30 AM Dvorak Andreas > wrote: Dear all The logrotate does not rotate. Can you please help me? I have installed the package CSWlogrotate 3.8.3,REV=2012.11.14 I don?t find the logrotate.conf, so I have to create an own file /etc/logrotate.conf. My file /etc/logrotate.conf: include /etc/logrotate.d cat /etc/logrotate.d/puppet /var/log/puppet/agent.log{ daily missingok rotate 14 compress delaycompress notifempty copytruncate } Running logrotate tells the the file /var/log/puppet/agent.log needs rotating but it does not do it. /opt/csw/sbin/logrotate -dfv /etc/logrotate.conf reading config file /etc/logrotate.conf including /etc/logrotate.d reading config file puppet Handling 1 logs rotating pattern: /var/log/puppet/agent.log forced from command line (14 rotations) empty log files are not rotated, old logs are removed considering log /var/log/puppet/agent.log log needs rotating rotating log /var/log/puppet/agent.log, log->rotateCount is 14 dateext suffix '-20150130' glob pattern '-[0-9][0-9][0-9][0-9][0-9][0-9][0-9][0-9]' previous log /var/log/puppet/agent.log.1 does not exist renaming /var/log/puppet/agent.log.14.gz to /var/log/puppet/agent.log.15.gz (rotatecount 14, logstart 1, i 14), renaming /var/log/puppet/agent.log.13.gz to /var/log/puppet/agent.log.14.gz (rotatecount 14, logstart 1, i 13), renaming /var/log/puppet/agent.log.12.gz to /var/log/puppet/agent.log.13.gz (rotatecount 14, logstart 1, i 12), renaming /var/log/puppet/agent.log.11.gz to /var/log/puppet/agent.log.12.gz (rotatecount 14, logstart 1, i 11), renaming /var/log/puppet/agent.log.10.gz to /var/log/puppet/agent.log.11.gz (rotatecount 14, logstart 1, i 10), renaming /var/log/puppet/agent.log.9.gz to /var/log/puppet/agent.log.10.gz (rotatecount 14, logstart 1, i 9), renaming /var/log/puppet/agent.log.8.gz to /var/log/puppet/agent.log.9.gz (rotatecount 14, logstart 1, i 8), renaming /var/log/puppet/agent.log.7.gz to /var/log/puppet/agent.log.8.gz (rotatecount 14, logstart 1, i 7), renaming /var/log/puppet/agent.log.6.gz to /var/log/puppet/agent.log.7.gz (rotatecount 14, logstart 1, i 6), renaming /var/log/puppet/agent.log.5.gz to /var/log/puppet/agent.log.6.gz (rotatecount 14, logstart 1, i 5), renaming /var/log/puppet/agent.log.4.gz to /var/log/puppet/agent.log.5.gz (rotatecount 14, logstart 1, i 4), renaming /var/log/puppet/agent.log.3.gz to /var/log/puppet/agent.log.4.gz (rotatecount 14, logstart 1, i 3), renaming /var/log/puppet/agent.log.2.gz to /var/log/puppet/agent.log.3.gz (rotatecount 14, logstart 1, i 2), renaming /var/log/puppet/agent.log.1.gz to /var/log/puppet/agent.log.2.gz (rotatecount 14, logstart 1, i 1), renaming /var/log/puppet/agent.log.0.gz to /var/log/puppet/agent.log.1.gz (rotatecount 14, logstart 1, i 0), copying /var/log/puppet/agent.log to /var/log/puppet/agent.log.1 truncating /var/log/puppet/agent.log removing old log /var/log/puppet/agent.log.15.gz error: error opening /var/log/puppet/agent.log.15.gz: No such file or directory /var/log/puppet# ls -l total 29209 -rw-r--r-- 1 root root 14913631 Jan 30 12:26 agent.log Best regards Andreas Dvorak -------------- next part -------------- An HTML attachment was scrubbed... URL: From laurent at opencsw.org Mon Feb 2 12:41:59 2015 From: laurent at opencsw.org (Laurent Blume) Date: Mon, 02 Feb 2015 12:41:59 +0100 Subject: AW: CSWlogrotate configuration In-Reply-To: References: Message-ID: <54CF6287.8000804@opencsw.org> Le 2015/02/02 09:02 +0100, Dvorak Andreas a ?crit: > Does that mean that there is a bug? Merely that you did not read the manual: If no command line arguments are given, logrotate will print version and copyright information, along with a short usage summary. If any errors occur while rotating logs, logrotate will exit with non-zero status. You MUST put the configuration file, and the default one is the one in /etc/opt/csw. Laurent From rb4723 at att.com Mon Feb 2 20:16:59 2015 From: rb4723 at att.com (BRIGGS, RICHARD A) Date: Mon, 2 Feb 2015 19:16:59 +0000 Subject: Ports Required for CSW install/pkgadd through Firewall Message-ID: <0492D9B0A98BE2499F1C3398FD0C7DBE25CA2259@MOSTLS1MSGUSRFB.ITServices.sbc.com> Can anyone tell me the required ports needed for initial install of CSW and subsequent adding of packages? I have to request the ports be opened in my firewall. Thanks! -------------- next part -------------- An HTML attachment was scrubbed... URL: From ihsan at opencsw.org Mon Feb 2 20:41:03 2015 From: ihsan at opencsw.org (=?UTF-8?B?xLBoc2FuwqBEb8SfYW4=?=) Date: Mon, 02 Feb 2015 20:41:03 +0100 Subject: Ports Required for CSW install/pkgadd through Firewall In-Reply-To: <0492D9B0A98BE2499F1C3398FD0C7DBE25CA2259@MOSTLS1MSGUSRFB.ITServices.sbc.com> References: <0492D9B0A98BE2499F1C3398FD0C7DBE25CA2259@MOSTLS1MSGUSRFB.ITServices.sbc.com> Message-ID: <54CFD2CF.2030905@opencsw.org> Hi, Am 02.02.2015 um 20:16 schrieb BRIGGS, RICHARD A: > Can anyone tell me the required ports needed for initial install of CSW > and subsequent adding of packages? I have to request the ports be > opened in my firewall. Thanks! Port 80 (HTTP) or 443 (HTTPS), whatever you prefer, to mirror.opencsw.org is enough. You can reach mirror.opencsw.org through IPv4 and IPv6: IPv4: 131.188.40.82 IPv6: 2001:638:a000:4140::ffff:82 Hope this helps. Ihsan -- ihsan at dogan.ch http://blog.dogan.ch/ From rb4723 at att.com Mon Feb 2 20:42:32 2015 From: rb4723 at att.com (BRIGGS, RICHARD A) Date: Mon, 2 Feb 2015 19:42:32 +0000 Subject: Ports Required for CSW install/pkgadd through Firewall In-Reply-To: <54CFD2CF.2030905@opencsw.org> References: <0492D9B0A98BE2499F1C3398FD0C7DBE25CA2259@MOSTLS1MSGUSRFB.ITServices.sbc.com> <54CFD2CF.2030905@opencsw.org> Message-ID: <0492D9B0A98BE2499F1C3398FD0C7DBE25CA22E2@MOSTLS1MSGUSRFB.ITServices.sbc.com> Yes it does. Thank you!! -----Original Message----- From: users [mailto:users-bounces+rb4723=att.com at lists.opencsw.org] On Behalf Of Ihsan?Dogan Sent: Monday, February 02, 2015 1:41 PM To: Questions and discussions Subject: Re: Ports Required for CSW install/pkgadd through Firewall Hi, Am 02.02.2015 um 20:16 schrieb BRIGGS, RICHARD A: > Can anyone tell me the required ports needed for initial install of CSW > and subsequent adding of packages? I have to request the ports be > opened in my firewall. Thanks! Port 80 (HTTP) or 443 (HTTPS), whatever you prefer, to mirror.opencsw.org is enough. You can reach mirror.opencsw.org through IPv4 and IPv6: IPv4: 131.188.40.82 IPv6: 2001:638:a000:4140::ffff:82 Hope this helps. Ihsan -- ihsan at dogan.ch http://blog.dogan.ch/ From rb4723 at att.com Tue Feb 3 21:26:19 2015 From: rb4723 at att.com (BRIGGS, RICHARD A) Date: Tue, 3 Feb 2015 20:26:19 +0000 Subject: Catalog Error Message-ID: <0492D9B0A98BE2499F1C3398FD0C7DBE25CA2982@MOSTLS1MSGUSRFB.ITServices.sbc.com> My openCSW was working fine, but now I get this....does anyone know why? # pkgutil -a Stale lock file (/var/opt/csw/pkgutil/admin.run) removed common package catalog size Use of uninitialized value $ARGV[0] in concatenation (.) or string at /opt/csw/b in/pkgutil line 134. No exact matches found, doing fuzzy matching for first argument () ... Use of uninitialized value $P in length at /opt/csw/lib/perl/csw/String/Approx.p m line 242. Suggestions: 1 # pkgutil -A package catalog installed # pkgutil -V - System - Pkgutil 2.6.5 Arch sparc Solaris 5.10 Pkg patch 119317 (119317-01 installed) GPG binary /opt/csw/bin/gpg Gzip binary /bin/gzip Mailx binary /bin/mailx MD5 binary not found (suggestion: install CSWcoreutils) MD5 module 2.39 (primary choice for MD5) Perl 5.010001 Perl binary /bin/perl Wget binary /usr/sfw/bin/wget PATH /bin:/usr/bin - Configuration - catalog_not_cached true (default: true) catalog_update 14 (default: 14) deptree_filter_common false (default: false) exclude_pattern not set (default: none) gpg_homedir not set (default: none) maxpkglist 100000 (default: 10000) mirror http://mirrors.ibiblio.org/pub/mirrors/opencsw/current (default: http://mirror.opencsw.org/opencsw/testing) noncsw false (default: false) pkgaddopts not set (default: none) pkgliststyle 2 (default: 0) pkgrmopts not set (default: none) root_path not set (default: /) show_current true (default: true) stop_on_hook_soft_error not set (default: false) use_gpg false (default: false) use_md5 false (default: false) wgetopts not set (default: none) From bonivart at opencsw.org Tue Feb 3 22:11:36 2015 From: bonivart at opencsw.org (Peter Bonivart) Date: Tue, 3 Feb 2015 22:11:36 +0100 Subject: Catalog Error In-Reply-To: <0492D9B0A98BE2499F1C3398FD0C7DBE25CA2982@MOSTLS1MSGUSRFB.ITServices.sbc.com> References: <0492D9B0A98BE2499F1C3398FD0C7DBE25CA2982@MOSTLS1MSGUSRFB.ITServices.sbc.com> Message-ID: On Tue, Feb 3, 2015 at 9:26 PM, BRIGGS, RICHARD A wrote: > My openCSW was working fine, but now I get this....does anyone know why? > > > # pkgutil -a > Stale lock file (/var/opt/csw/pkgutil/admin.run) removed > common package catalog size > Use of uninitialized value $ARGV[0] in concatenation (.) or string at /opt/csw/b > in/pkgutil line 134. > > No exact matches found, doing fuzzy matching for first argument () ... > Use of uninitialized value $P in length at /opt/csw/lib/perl/csw/String/Approx.p > m line 242. > Suggestions: 1 > > # pkgutil -A > package catalog installed Take a look at your local catalog file, it's probably empty or corrupt. It should be in /var/opt/csw/pkgutil but you can try "pkgutil --catinfo" to see more info about path and number of packages it contains. From tlynch at primate.wisc.edu Tue Feb 3 22:23:49 2015 From: tlynch at primate.wisc.edu (Tom Lynch) Date: Tue, 3 Feb 2015 15:23:49 -0600 Subject: problems after upgrade with apache2 and ldap authentication In-Reply-To: <03248E93-38FB-4D92-B618-FE1E60F642CF@primate.wisc.edu> References: <2EA4A3EC-A65D-458B-88B8-F2CA272D73CE@primate.wisc.edu> <982ACD9E-A053-45F2-A8AF-E4F938F3BCE0@opencsw.org> <03248E93-38FB-4D92-B618-FE1E60F642CF@primate.wisc.edu> Message-ID: <731654F8-0606-4ABF-8DFD-FEECC90A4F71@primate.wisc.edu> Unfortunately, I am still having problems with this. Here is what my error_log says: [Mon Feb 02 17:01:51 2015] [info] APR LDAP: Built with OpenLDAP LDAP SDK [Mon Feb 02 17:01:51 2015] [info] LDAP: SSL support unavailable: LDAP: SSL/TLS ldapssl_client_init() function not supported by this Netscape/Mozilla/Solaris SDK. Certificate authority file not set What exactly is this telling me - that SSL support is unavailable even though the previous line show that the APR is built with openLDAP SDK? Or is it not supported because there is a problem with my trusted certificate file? I?ve tested my trusted certificate using openssl: # /opt/csw/bin/openssl verify ssl/crt/ldapservr.crt ssl/crt/retronight.crt: C = US, postalCode = 53706, ST = WI, L = Madison, street = 1210 West Dayton Street, O = University of Wisconsin-Madison, OU = OCIS, CN = retronight.primate.wisc.edu error 20 at 0 depth lookup:unable to get local issuer certificate Is this the cause of the ?Certificate authority file not set?? When I query the openldap server I get ?self signed certificate in the certificate chain? is this the problem, see below.? Is there a way to append the chains together into a LDAPTrustedGlobalcert file that will work? I?ve tried verifying the three certificates with openssl but can only get ?Ok? if I put a ?untrusted? after the first file, i.e. /opt/csw/bin/openssl verify -CAfile ssl/crt/incommonroot.crt -untrusted ssl/crt/intermediate.crt ssl/crt/ldapserver.crt. # /opt/csw/bin/openssl s_client -connect retronight.primate.wisc.edu:636 -showcerts CONNECTED(00000004) depth=2 C = SE, O = AddTrust AB, OU = AddTrust External TTP Network, CN = AddTrust External CA Root verify error:num=19:self signed certificate in certificate chain verify return:0 --- Certificate chain 0 s:/C=US/postalCode=53706/ST=WI/L=Madison/street=1210 West Dayton Street/O=University of Wisconsin-Madison/OU=OCIS/CN=retronight.primate.wisc.edu i:/C=US/O=Internet2/OU=InCommon/CN=InCommon Server CA -----BEGIN CERTIFICATE----- MIIFUzCCBDugAwIBAgIQY++XbIx0xIZZ5TcOG+AZXzANBgkqhkiG9w0BAQUFADBR MQswCQYDVQQGEwJVUzESMBAGA1UEChMJSW50ZXJuZXQyMREwDwYDVQQLEwhJbkNv bW1vbjEbMBkGA1UEAxMSSW5Db21tb24gU2VydmVyIENBMB4XDTEyMDMwMjAwMDAw MFoXDTE1MDMwMjIzNTk1OVowgb0xCzAJBgNVBAYTAlVTMQ4wDAYDVQQREwU1Mzcw NjELMAkGA1UECBMCV0kxEDAOBgNVBAcTB01hZGlzb24xIDAeBgNVBAkTFzEyMTAg V2VzdCBEYXl0b24gU3RyZWV0MSgwJgYDVQQKEx9Vbml2ZXJzaXR5IG9mIFdpc2Nv bnNpbi1NYWRpc29uMQ0wCwYDVQQLEwRPQ0lTMSQwIgYDVQQDExtyZXRyb25pZ2h0 LnByaW1hdGUud2lzYy5lZHUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDsJ5xSSAUzPJdlfPzGsmDmEOWy1AGtLL64hZ8e+VRCMaBNvceS4LpIQYPo3liW WJPQEnkgGBMiRCvBjdFKq+eibgzBGKMOsB1kKeDluZmDiwVN6P2mi17JTNdMfU3u Wc3XKDOfyVDwYUJ3q08dNIEYfbFF/P+Dg4B7DO/H+oxehB4i9ekT/5ogxItnI9qJ 2zykA1oi33m6uACP3kdzfTD5jHMbckO7Y6VAYlVcRSaSh5kTFFaUdf0vAXb8HekJ 5dZ3CX22A+R7prEPvjo8WfD+KHgfSKReQ3YyzYF55W8pIdhfjD9f7EK4EpJtfkZa N3XcRlH2cGa0Wmcizd65HdbvAgMBAAGjggG4MIIBtDAfBgNVHSMEGDAWgBRIT1r6 L0qaXuBQ82t7VaXe9b40XTAdBgNVHQ4EFgQUdFTMywqiwNZIPtyl8LCK9N52pSAw DgYDVR0PAQH/BAQDAgWgMAwGA1UdEwEB/wQCMAAwHQYDVR0lBBYwFAYIKwYBBQUH AwEGCCsGAQUFBwMCMF0GA1UdIARWMFQwUgYMKwYBBAGuIwEEAwEBMEIwQAYIKwYB BQUHAgEWNGh0dHBzOi8vd3d3LmluY29tbW9uLm9yZy9jZXJ0L3JlcG9zaXRvcnkv Y3BzX3NzbC5wZGYwPQYDVR0fBDYwNDAyoDCgLoYsaHR0cDovL2NybC5pbmNvbW1v bi5vcmcvSW5Db21tb25TZXJ2ZXJDQS5jcmwwbwYIKwYBBQUHAQEEYzBhMDkGCCsG AQUFBzAChi1odHRwOi8vY2VydC5pbmNvbW1vbi5vcmcvSW5Db21tb25TZXJ2ZXJD QS5jcnQwJAYIKwYBBQUHMAGGGGh0dHA6Ly9vY3NwLmluY29tbW9uLm9yZzAmBgNV HREEHzAdghtyZXRyb25pZ2h0LnByaW1hdGUud2lzYy5lZHUwDQYJKoZIhvcNAQEF BQADggEBACsoJOY0HT1Bebm44nKqXx8OnQPD3cF5IOlhkFDQMUBmxnmkcfgf1j/5 gs5X1Ypqw/u+3RVNu+0vbor0huSx4MkBZ3uGf1bZPA8bO7u5KbodwDvgprxi+Z7S Y3Xsgvj6BbT/g6wR0zU72D3Dg6JRdgpgvgU3lZv05b2z0e1b3UQv5fPLnLDFYcLh /Wtm/QD7ojySboxPeD6zfgV4EkyQjqHGAMA1bay2BedXFKNn6AKUwgNS1UCbb1qp 8h1XppOriYbI/T7WMlWr3iOLjsx4LNMBdxh6gVeeegFZ9fuRMVci9qDXmdNAVnnz O8lwWMhXixea0YABDYhjLP4dfAOME2A= -----END CERTIFICATE----- 1 s:/C=US/O=Internet2/OU=InCommon/CN=InCommon Server CA i:/C=SE/O=AddTrust AB/OU=AddTrust External TTP Network/CN=AddTrust External CA Root -----BEGIN CERTIFICATE----- MIIEwzCCA6ugAwIBAgIQf3HB06ImsNKxE/PmgWdkPjANBgkqhkiG9w0BAQUFADBv MQswCQYDVQQGEwJTRTEUMBIGA1UEChMLQWRkVHJ1c3QgQUIxJjAkBgNVBAsTHUFk ZFRydXN0IEV4dGVybmFsIFRUUCBOZXR3b3JrMSIwIAYDVQQDExlBZGRUcnVzdCBF eHRlcm5hbCBDQSBSb290MB4XDTEwMTIwNzAwMDAwMFoXDTIwMDUzMDEwNDgzOFow UTELMAkGA1UEBhMCVVMxEjAQBgNVBAoTCUludGVybmV0MjERMA8GA1UECxMISW5D b21tb24xGzAZBgNVBAMTEkluQ29tbW9uIFNlcnZlciBDQTCCASIwDQYJKoZIhvcN AQEBBQADggEPADCCAQoCggEBAJd8x8j+s+kgaqOkT46ONFYGs3psqhCbSGErNpBp 4zQKR6e7e96qavvrgpWPyh1/r3WmqEzaIGdhGg2GwcrBh6+sTuTeYhsvnbGYr8YB +xdw26wUWexvPzN/ppgL5OI4r/V/hW0OdASd9ieGx5uP53EqCPQDAkBjJH1AV49U 4FR+thNIYfHezg69tvpNmLLZDY15puCqzQyRmqXfq3O7yhR4XEcpocrFup/H2mD3 /+d/8tnaoS0PSRan0wCSz4pH2U341ZVm03T5gGMAT0yEFh+z9SQfoU7e6JXWsgsJ iyxrx1wvjGPJmctSsWJ7cwFif2Ns2Gig7mqojR8p89AYrK0CAwEAAaOCAXcwggFz MB8GA1UdIwQYMBaAFK29mHo0tCb3+sQmVO8DveAky1QaMB0GA1UdDgQWBBRIT1r6 L0qaXuBQ82t7VaXe9b40XTAOBgNVHQ8BAf8EBAMCAQYwEgYDVR0TAQH/BAgwBgEB /wIBADARBgNVHSAECjAIMAYGBFUdIAAwRAYDVR0fBD0wOzA5oDegNYYzaHR0cDov L2NybC51c2VydHJ1c3QuY29tL0FkZFRydXN0RXh0ZXJuYWxDQVJvb3QuY3JsMIGz BggrBgEFBQcBAQSBpjCBozA/BggrBgEFBQcwAoYzaHR0cDovL2NydC51c2VydHJ1 c3QuY29tL0FkZFRydXN0RXh0ZXJuYWxDQVJvb3QucDdjMDkGCCsGAQUFBzAChi1o dHRwOi8vY3J0LnVzZXJ0cnVzdC5jb20vQWRkVHJ1c3RVVE5TR0NDQS5jcnQwJQYI KwYBBQUHMAGGGWh0dHA6Ly9vY3NwLnVzZXJ0cnVzdC5jb20wDQYJKoZIhvcNAQEF BQADggEBAJNmIYB0RYVLwqvOMrAp/t3f1iRbvwNqb1A+DhuzDYijW+7EpBI7Vu8G f89/IZVWO0Ex/uGqk9KV85UNPEerylwmrT7x+Yw0bhG+9GfjAkn5pnx7ZCXdF0by UOPjCiE6SSTNxoRlaGdosEUtR5nNnKuGKRFy3NacNkN089SXnlag/l9AWNLV1358 xY4asgRckmYOha0uBs7Io9jrFCeR3s8XMIFTtmYSrTfk9e+WXCAONumsYn0ZgYr1 kGGmSavOPN/mymTugmU5RZUWukEGAJi6DFZh5MbGhgHPZqkiKQLWPc/EKo2Z3vsJ FJ4O0dXG14HdrSSrrAcF4h1ow3BmX9M= -----END CERTIFICATE----- 2 s:/C=SE/O=AddTrust AB/OU=AddTrust External TTP Network/CN=AddTrust External CA Root i:/C=SE/O=AddTrust AB/OU=AddTrust External TTP Network/CN=AddTrust External CA Root -----BEGIN CERTIFICATE----- MIIENjCCAx6gAwIBAgIBATANBgkqhkiG9w0BAQUFADBvMQswCQYDVQQGEwJTRTEU MBIGA1UEChMLQWRkVHJ1c3QgQUIxJjAkBgNVBAsTHUFkZFRydXN0IEV4dGVybmFs IFRUUCBOZXR3b3JrMSIwIAYDVQQDExlBZGRUcnVzdCBFeHRlcm5hbCBDQSBSb290 MB4XDTAwMDUzMDEwNDgzOFoXDTIwMDUzMDEwNDgzOFowbzELMAkGA1UEBhMCU0Ux FDASBgNVBAoTC0FkZFRydXN0IEFCMSYwJAYDVQQLEx1BZGRUcnVzdCBFeHRlcm5h bCBUVFAgTmV0d29yazEiMCAGA1UEAxMZQWRkVHJ1c3QgRXh0ZXJuYWwgQ0EgUm9v dDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALf3GjPm8gAELTngTlvt H7xsD821+iO2zt6bETOXpClMfZOfvUq8k+0DGuOPz+VtUFrWlymUWoCwSXrbLpX9 uMq/NzgtHj6RQa1wVsfwTz/oMp50ysiQVOnGXw94nZpAPA6sYapeFI+eh6FqUNzX mk6vBbOmcZSccbNQYArHE504B4YCqOmoaSYYkKtMsE8jqzpPhNjfzp/haW+710LX a0Tkx63ubUFfclpxCDezeWWkWaCUN/cALw3CknLa0Dhy2xSoRcRdKn23tNbE7qzN E0S3ySvdQwAl+mG5aWpYIxG3pzOPVnVZ9c0p10a3CitlttNCbxWyuHv77+ldU9U0 WicCAwEAAaOB3DCB2TAdBgNVHQ4EFgQUrb2YejS0Jvf6xCZU7wO94CTLVBowCwYD VR0PBAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wgZkGA1UdIwSBkTCBjoAUrb2YejS0 Jvf6xCZU7wO94CTLVBqhc6RxMG8xCzAJBgNVBAYTAlNFMRQwEgYDVQQKEwtBZGRU cnVzdCBBQjEmMCQGA1UECxMdQWRkVHJ1c3QgRXh0ZXJuYWwgVFRQIE5ldHdvcmsx IjAgBgNVBAMTGUFkZFRydXN0IEV4dGVybmFsIENBIFJvb3SCAQEwDQYJKoZIhvcN AQEFBQADggEBALCb4IUlwtYj4g+WBpKdQZic2YR5gdkeWxQHIzZlj7DYd7usQWxH YINRsPkyPef89iYTx4AWpb9a/IfPeHmJIZriTAcKhjW88t5RxNKWt9x+Tu5w/Rw5 6wwCURQtjr0W4MHfRnXnJK3s9EK0hZNwEGe6nQY1ShjTK3rMUUKhemPR5ruhxSvC Nr4TDea9Y355e6cJDUCrat2PisP29owaQgVR1EX1n6diIWgVIEM8med8vSTYqZEX c4g/VhsxOBi0cQ+azcgOno4uG+GMmIPLHzHxREzGBHNJdmAPx/i9F4BrLunMTA5a mnkPIAou1Z5jJh5VkpTYghdae9C8x49OhgQ= -----END CERTIFICATE----- --- Server certificate subject=/C=US/postalCode=53706/ST=WI/L=Madison/street=1210 West Dayton Street/O=University of Wisconsin-Madison/OU=OCIS/CN=retronight.primate.wisc.edu issuer=/C=US/O=Internet2/OU=InCommon/CN=InCommon Server CA --- No client certificate CA names sent ? DONE > On Jan 31, 2015, at 7:51 AM, Tom Lynch wrote: > > Dago, > > Thanks for the response. The paths were correct but there was a misconfiguration in my httpd-ssl.conf file that caused the problem. > > Tom > On Jan 30, 2015, at 11:01 AM, Dagobert Michelsen > wrote: > >> Hi Tom, >> >>> Am 30.01.2015 um 17:52 schrieb Tom Lynch >: >>> >>> After upgrading Solaris and opencsw, Apache2 no longer is able to authenticate against my openldap server. I get: >>> >>> [Fri Jan 30 09:19:34 2015] [info] [client 192.168.0.21] [5973] auth_ldap authenticate: user authentication failed; URI /staff [LDAP: SSL/TLS is not supported by this version of the Netscape/Mozilla/Solaris SDK][Can't contact LDAP server] >>> >>> I configured the site several years ago so am a little foggy on what I originally did to get it to work. Not sure where to go next. >>> >>> I?m using the csw apache2 build, shouldn?t it be using the correct SDK, apache apr is installed, or is there something I?m missing? >> >> I guess you have to revise your httpd.conf, the LDAP authentication and especially OpenSSL has changed >> considerably in the last years. Look for mod_ldap in httpd.conf and see if all pathes still match. >> >> >> Best regards >> >> ? Dago >> >> -- >> "You don't become great by trying to be great, you become great by wanting to do something, >> and then doing it so hard that you become great in the process." - xkcd #896 > -------------- next part -------------- An HTML attachment was scrubbed... URL: -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/pkcs7-signature Size: 2877 bytes Desc: not available URL: From rb4723 at att.com Wed Feb 4 00:42:05 2015 From: rb4723 at att.com (BRIGGS, RICHARD A) Date: Tue, 3 Feb 2015 23:42:05 +0000 Subject: Catalog Error In-Reply-To: References: <0492D9B0A98BE2499F1C3398FD0C7DBE25CA2982@MOSTLS1MSGUSRFB.ITServices.sbc.com> Message-ID: <0492D9B0A98BE2499F1C3398FD0C7DBE25CA29D1@MOSTLS1MSGUSRFB.ITServices.sbc.com> -----Original Message----- From: users [mailto:users-bounces+rb4723=att.com at lists.opencsw.org] On Behalf Of Peter Bonivart Sent: Tuesday, February 03, 2015 3:12 PM To: Questions and discussions Subject: Re: Catalog Error On Tue, Feb 3, 2015 at 9:26 PM, BRIGGS, RICHARD A wrote: >> My openCSW was working fine, but now I get this....does anyone know why? >> >> >> # pkgutil -a > >Stale lock file (/var/opt/csw/pkgutil/admin.run) removed > >common package catalog size > >Use of uninitialized value $ARGV[0] in concatenation (.) or string at /opt/csw/b > >n/pkgutil line 134. >> > >No exact matches found, doing fuzzy matching for first argument () ... > >Use of uninitialized value $P in length at /opt/csw/lib/perl/csw/String/Approx.p > >m line 242. > >Suggestions: 1 >> > ># pkgutil -A > >package catalog installed > >Take a look at your local catalog file, it's probably empty or >corrupt. It should be in /var/opt/csw/pkgutil but you can try "pkgutil >--catinfo" to see more info about path and number of packages it >contains. # pkgutil --catinfo URL http://mirror.opencsw.org/opencsw/allpkgs/sparc/5.10 Release - Creation time - Number of pkgs 0 File /var/opt/csw/pkgutil/catalog.mirror.opencsw.org_opencsw_allpkgs_ sparc_5.10 URL http://mirror.opencsw.org/opencsw/sparc/5.10 Release - Creation time - Number of pkgs 0 File /var/opt/csw/pkgutil/catalog.mirror.opencsw.org_opencsw_sparc_5. 10 URL http://mirror.opencsw.org/opencsw/testing/sparc/5.10 Release - Creation time - Number of pkgs 0 File /var/opt/csw/pkgutil/catalog.mirror.opencsw.org_opencsw_testing_ sparc_5.10 URL http://mirrors.ibiblio.org/pub/mirrors/opencsw/current/sparc/5.1 0 Release - Creation time - Number of pkgs 0 File /var/opt/csw/pkgutil/catalog.mirrors.ibiblio.org_pub_mirrors_ope ncsw_current_sparc_5.10 URL http://www.ibiblio.org/pub/packages/solaris/opencsw/sparc/5.10 Release - Creation time - Number of pkgs 0 File /var/opt/csw/pkgutil/catalog.www.ibiblio.org_pub_packages_solari s_opencsw_sparc_5.10 also: # pkgutil --catinfo => Fetching new catalog and descriptions (https://reflector.westga.edu/repos/Ope nCSW/sparc/5.10) if available ... ^C--2015-02-03 17:33:53-- https://reflector.westga.edu/repos/OpenCSW/sparc/5.10 /catalog Resolving reflector.westga.edu... 160.10.5.26 Connecting to reflector.westga.edu|160.10.5.26|:443... Fetching of catalog failed. From rb4723 at att.com Wed Feb 4 00:45:00 2015 From: rb4723 at att.com (BRIGGS, RICHARD A) Date: Tue, 3 Feb 2015 23:45:00 +0000 Subject: Initial install of openCSW Message-ID: <0492D9B0A98BE2499F1C3398FD0C7DBE25CA29E7@MOSTLS1MSGUSRFB.ITServices.sbc.com> On a machine that does not yet have openCSW and try to do the pkgadd and I get this... HTTP/1.1 server? Why # pkgadd -d http://get.opencsw.org/now pkgadd: ERROR: Failure occurred with http(s) negotiation: pkgadd: ERROR: unable to download package datastream from . -------------- next part -------------- An HTML attachment was scrubbed... URL: From dam at opencsw.org Wed Feb 4 10:06:37 2015 From: dam at opencsw.org (Dagobert Michelsen) Date: Wed, 4 Feb 2015 10:06:37 +0100 Subject: problems after upgrade with apache2 and ldap authentication In-Reply-To: <731654F8-0606-4ABF-8DFD-FEECC90A4F71@primate.wisc.edu> References: <2EA4A3EC-A65D-458B-88B8-F2CA272D73CE@primate.wisc.edu> <982ACD9E-A053-45F2-A8AF-E4F938F3BCE0@opencsw.org> <03248E93-38FB-4D92-B618-FE1E60F642CF@primate.wisc.edu> <731654F8-0606-4ABF-8DFD-FEECC90A4F71@primate.wisc.edu> Message-ID: <72E8504F-19CB-4ED5-9069-0860F85249CB@opencsw.org> Hi Tom, > Am 03.02.2015 um 22:23 schrieb Tom Lynch : > > Unfortunately, I am still having problems with this. Here is what my error_log says: > > [Mon Feb 02 17:01:51 2015] [info] APR LDAP: Built with OpenLDAP LDAP SDK > [Mon Feb 02 17:01:51 2015] [info] LDAP: SSL support unavailable: LDAP: SSL/TLS ldapssl_client_init() function not supported by this Netscape/Mozilla/Solaris SDK. Certificate authority file not set > > What exactly is this telling me - that SSL support is unavailable even though the previous line show that the APR is built with openLDAP SDK? Or is it not supported because there is a problem with my trusted certificate file? I think you need to install CSWlibaprutil1-ldap as package has been split for consistency. Best regards ? Dago PS: I suggest you generate new certificates after posting them on a public mailing list ;-) -- "You don't become great by trying to be great, you become great by wanting to do something, and then doing it so hard that you become great in the process." - xkcd #896 -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/pkcs7-signature Size: 2418 bytes Desc: not available URL: From dam at opencsw.org Wed Feb 4 10:11:49 2015 From: dam at opencsw.org (Dagobert Michelsen) Date: Wed, 4 Feb 2015 10:11:49 +0100 Subject: Initial install of openCSW In-Reply-To: <0492D9B0A98BE2499F1C3398FD0C7DBE25CA29E7@MOSTLS1MSGUSRFB.ITServices.sbc.com> References: <0492D9B0A98BE2499F1C3398FD0C7DBE25CA29E7@MOSTLS1MSGUSRFB.ITServices.sbc.com> Message-ID: <8B454F2F-E5D3-4427-B46B-55544E7F6219@opencsw.org> Hi Richard, > Am 04.02.2015 um 00:45 schrieb BRIGGS, RICHARD A : > > On a machine that does not yet have openCSW and try to do the pkgadd and I get this? HTTP/1.1 server? Why > > # pkgadd -d http://get.opencsw.org/now > > pkgadd: ERROR: Failure occurred with http(s) negotiation: > > pkgadd: ERROR: unable to download package datastream from . This usually works. Can you download via wget from that machine? What release and which pkgadd patch level are you using? Older releases and unpatched machines had problems with that. Best regards ? Dago -- "You don't become great by trying to be great, you become great by wanting to do something, and then doing it so hard that you become great in the process." - xkcd #896 -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/pkcs7-signature Size: 2418 bytes Desc: not available URL: From bonivart at opencsw.org Wed Feb 4 10:53:15 2015 From: bonivart at opencsw.org (Peter Bonivart) Date: Wed, 4 Feb 2015 10:53:15 +0100 Subject: Catalog Error In-Reply-To: <0492D9B0A98BE2499F1C3398FD0C7DBE25CA29D1@MOSTLS1MSGUSRFB.ITServices.sbc.com> References: <0492D9B0A98BE2499F1C3398FD0C7DBE25CA2982@MOSTLS1MSGUSRFB.ITServices.sbc.com> <0492D9B0A98BE2499F1C3398FD0C7DBE25CA29D1@MOSTLS1MSGUSRFB.ITServices.sbc.com> Message-ID: On Wed, Feb 4, 2015 at 12:42 AM, BRIGGS, RICHARD A wrote: > > > -----Original Message----- > From: users [mailto:users-bounces+rb4723=att.com at lists.opencsw.org] On Behalf Of Peter Bonivart > Sent: Tuesday, February 03, 2015 3:12 PM > To: Questions and discussions > Subject: Re: Catalog Error > > On Tue, Feb 3, 2015 at 9:26 PM, BRIGGS, RICHARD A wrote: >>> My openCSW was working fine, but now I get this....does anyone know why? >>> >>> >>> # pkgutil -a >> >Stale lock file (/var/opt/csw/pkgutil/admin.run) removed >> >common package catalog size >> >Use of uninitialized value $ARGV[0] in concatenation (.) or string at /opt/csw/b >> >n/pkgutil line 134. >>> >> >No exact matches found, doing fuzzy matching for first argument () ... >> >Use of uninitialized value $P in length at /opt/csw/lib/perl/csw/String/Approx.p >> >m line 242. >> >Suggestions: 1 >>> >> ># pkgutil -A >> >package catalog installed >> >>Take a look at your local catalog file, it's probably empty or >>corrupt. It should be in /var/opt/csw/pkgutil but you can try "pkgutil >>--catinfo" to see more info about path and number of packages it >>contains. > > > # pkgutil --catinfo > > URL http://mirror.opencsw.org/opencsw/allpkgs/sparc/5.10 > Release - > Creation time - > Number of pkgs 0 > File /var/opt/csw/pkgutil/catalog.mirror.opencsw.org_opencsw_allpkgs_ > sparc_5.10 > > URL http://mirror.opencsw.org/opencsw/sparc/5.10 > Release - > Creation time - > Number of pkgs 0 > File /var/opt/csw/pkgutil/catalog.mirror.opencsw.org_opencsw_sparc_5. > 10 > > URL http://mirror.opencsw.org/opencsw/testing/sparc/5.10 > Release - > Creation time - > Number of pkgs 0 > File /var/opt/csw/pkgutil/catalog.mirror.opencsw.org_opencsw_testing_ > sparc_5.10 > > URL http://mirrors.ibiblio.org/pub/mirrors/opencsw/current/sparc/5.1 > 0 > Release - > Creation time - > Number of pkgs 0 > File /var/opt/csw/pkgutil/catalog.mirrors.ibiblio.org_pub_mirrors_ope > ncsw_current_sparc_5.10 > > URL http://www.ibiblio.org/pub/packages/solaris/opencsw/sparc/5.10 > Release - > Creation time - > Number of pkgs 0 > File /var/opt/csw/pkgutil/catalog.www.ibiblio.org_pub_packages_solari > s_opencsw_sparc_5.10 > > also: > > # pkgutil --catinfo > => Fetching new catalog and descriptions (https://reflector.westga.edu/repos/Ope > nCSW/sparc/5.10) if available ... > ^C--2015-02-03 17:33:53-- https://reflector.westga.edu/repos/OpenCSW/sparc/5.10 > /catalog > Resolving reflector.westga.edu... 160.10.5.26 > Connecting to reflector.westga.edu|160.10.5.26|:443... > Fetching of catalog failed. You need to fix your download issues. Pkgutil uses wget for the downloads so if you can manually download a catalog pkgutil can too. Just browse the url:s above and try wget:ing the catalog files. Maybe you have firewall and/or proxy issues? From tlynch at primate.wisc.edu Wed Feb 4 15:29:11 2015 From: tlynch at primate.wisc.edu (Tom Lynch) Date: Wed, 4 Feb 2015 08:29:11 -0600 Subject: problems after upgrade with apache2 and ldap authentication In-Reply-To: <72E8504F-19CB-4ED5-9069-0860F85249CB@opencsw.org> References: <2EA4A3EC-A65D-458B-88B8-F2CA272D73CE@primate.wisc.edu> <982ACD9E-A053-45F2-A8AF-E4F938F3BCE0@opencsw.org> <03248E93-38FB-4D92-B618-FE1E60F642CF@primate.wisc.edu> <731654F8-0606-4ABF-8DFD-FEECC90A4F71@primate.wisc.edu> <72E8504F-19CB-4ED5-9069-0860F85249CB@opencsw.org> Message-ID: <3C81E291-C252-4F99-9932-0C875D413945@primate.wisc.edu> It is already installed. Do I need to force an upgrade of cswapache2 afterwards? > On Feb 4, 2015, at 3:06 AM, Dagobert Michelsen wrote: > > Hi Tom, > >> Am 03.02.2015 um 22:23 schrieb Tom Lynch : >> >> Unfortunately, I am still having problems with this. Here is what my error_log says: >> >> [Mon Feb 02 17:01:51 2015] [info] APR LDAP: Built with OpenLDAP LDAP SDK >> [Mon Feb 02 17:01:51 2015] [info] LDAP: SSL support unavailable: LDAP: SSL/TLS ldapssl_client_init() function not supported by this Netscape/Mozilla/Solaris SDK. Certificate authority file not set >> >> What exactly is this telling me - that SSL support is unavailable even though the previous line show that the APR is built with openLDAP SDK? Or is it not supported because there is a problem with my trusted certificate file? > > I think you need to install CSWlibaprutil1-ldap as package has been split for > consistency. > > > Best regards > > ? Dago > > > PS: I suggest you generate new certificates after posting them on a public > mailing list ;-) > > -- > "You don't become great by trying to be great, you become great by wanting to do something, > and then doing it so hard that you become great in the process." - xkcd #896 > -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/pkcs7-signature Size: 2877 bytes Desc: not available URL: From dam at opencsw.org Wed Feb 4 15:31:57 2015 From: dam at opencsw.org (Dagobert Michelsen) Date: Wed, 4 Feb 2015 15:31:57 +0100 Subject: problems after upgrade with apache2 and ldap authentication In-Reply-To: <3C81E291-C252-4F99-9932-0C875D413945@primate.wisc.edu> References: <2EA4A3EC-A65D-458B-88B8-F2CA272D73CE@primate.wisc.edu> <982ACD9E-A053-45F2-A8AF-E4F938F3BCE0@opencsw.org> <03248E93-38FB-4D92-B618-FE1E60F642CF@primate.wisc.edu> <731654F8-0606-4ABF-8DFD-FEECC90A4F71@primate.wisc.edu> <72E8504F-19CB-4ED5-9069-0860F85249CB@opencsw.org> <3C81E291-C252-4F99-9932-0C875D413945@primate.wisc.edu> Message-ID: <9BAF4E18-A1B9-47A6-A501-64273FA8D920@opencsw.org> Hi Tom, > Am 04.02.2015 um 15:29 schrieb Tom Lynch : > > It is already installed. Do I need to force an upgrade of cswapache2 afterwards? Well, you already did a pkgutil -U -y -u did you? I guess then you need to debug the issue, sorry. Best regards ? Dago > > >> On Feb 4, 2015, at 3:06 AM, Dagobert Michelsen wrote: >> >> Hi Tom, >> >>> Am 03.02.2015 um 22:23 schrieb Tom Lynch : >>> >>> Unfortunately, I am still having problems with this. Here is what my error_log says: >>> >>> [Mon Feb 02 17:01:51 2015] [info] APR LDAP: Built with OpenLDAP LDAP SDK >>> [Mon Feb 02 17:01:51 2015] [info] LDAP: SSL support unavailable: LDAP: SSL/TLS ldapssl_client_init() function not supported by this Netscape/Mozilla/Solaris SDK. Certificate authority file not set >>> >>> What exactly is this telling me - that SSL support is unavailable even though the previous line show that the APR is built with openLDAP SDK? Or is it not supported because there is a problem with my trusted certificate file? >> >> I think you need to install CSWlibaprutil1-ldap as package has been split for >> consistency. >> >> >> Best regards >> >> ? Dago >> >> >> PS: I suggest you generate new certificates after posting them on a public >> mailing list ;-) >> >> -- >> "You don't become great by trying to be great, you become great by wanting to do something, >> and then doing it so hard that you become great in the process." - xkcd #896 >> > -- "You don't become great by trying to be great, you become great by wanting to do something, and then doing it so hard that you become great in the process." - xkcd #896 -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/pkcs7-signature Size: 2418 bytes Desc: not available URL: From jh at opencsw.org Wed Feb 4 15:48:07 2015 From: jh at opencsw.org (Jan Holzhueter) Date: Wed, 04 Feb 2015 15:48:07 +0100 Subject: problems after upgrade with apache2 and ldap authentication In-Reply-To: <3C81E291-C252-4F99-9932-0C875D413945@primate.wisc.edu> References: <2EA4A3EC-A65D-458B-88B8-F2CA272D73CE@primate.wisc.edu> <982ACD9E-A053-45F2-A8AF-E4F938F3BCE0@opencsw.org> <03248E93-38FB-4D92-B618-FE1E60F642CF@primate.wisc.edu> <731654F8-0606-4ABF-8DFD-FEECC90A4F71@primate.wisc.edu> <72E8504F-19CB-4ED5-9069-0860F85249CB@opencsw.org> <3C81E291-C252-4F99-9932-0C875D413945@primate.wisc.edu> Message-ID: <54D23127.3060605@opencsw.org> Hi, Am 04.02.15 um 15:29 schrieb Tom Lynch: >>> >>> Unfortunately, I am still having problems with this. Here is what my error_log says: >>> >>> [Mon Feb 02 17:01:51 2015] [info] APR LDAP: Built with OpenLDAP LDAP SDK >>> [Mon Feb 02 17:01:51 2015] [info] LDAP: SSL support unavailable: LDAP: SSL/TLS ldapssl_client_init() function not supported by this Netscape/Mozilla/Solaris SDK. Certificate authority file not set >>> >>> What exactly is this telling me - that SSL support is unavailable even though the previous line show that the APR is built with openLDAP SDK? Or is it not supported because there is a problem with my trusted certificate file? you need to provide a PEM for your LDAP Server I guess. of your CA that is Put this: TLS_CACERT /var/ldap/cacert.pem in /etc/opt/csw/openldap/ldap.conf hope this helps. Greetings Jan From rb4723 at att.com Thu Feb 5 19:58:25 2015 From: rb4723 at att.com (BRIGGS, RICHARD A) Date: Thu, 5 Feb 2015 18:58:25 +0000 Subject: Catalog Error In-Reply-To: References: <0492D9B0A98BE2499F1C3398FD0C7DBE25CA2982@MOSTLS1MSGUSRFB.ITServices.sbc.com> <0492D9B0A98BE2499F1C3398FD0C7DBE25CA29D1@MOSTLS1MSGUSRFB.ITServices.sbc.com> Message-ID: <0492D9B0A98BE2499F1C3398FD0C7DBE25CA304A@MOSTLS1MSGUSRFB.ITServices.sbc.com> Peter! Thank you! It was indeed a firewall/proxy issue! -----Original Message----- From: users [mailto:users-bounces+rb4723=att.com at lists.opencsw.org] On Behalf Of Peter Bonivart Sent: Wednesday, February 04, 2015 3:53 AM To: Questions and discussions Subject: Re: Catalog Error On Wed, Feb 4, 2015 at 12:42 AM, BRIGGS, RICHARD A wrote: > > > -----Original Message----- > From: users [mailto:users-bounces+rb4723=att.com at lists.opencsw.org] On Behalf Of Peter Bonivart > Sent: Tuesday, February 03, 2015 3:12 PM > To: Questions and discussions > Subject: Re: Catalog Error > > On Tue, Feb 3, 2015 at 9:26 PM, BRIGGS, RICHARD A wrote: >>> My openCSW was working fine, but now I get this....does anyone know why? >>> >>> >>> # pkgutil -a >> >Stale lock file (/var/opt/csw/pkgutil/admin.run) removed >> >common package catalog size >> >Use of uninitialized value $ARGV[0] in concatenation (.) or string at /opt/csw/b >> >n/pkgutil line 134. >>> >> >No exact matches found, doing fuzzy matching for first argument () ... >> >Use of uninitialized value $P in length at /opt/csw/lib/perl/csw/String/Approx.p >> >m line 242. >> >Suggestions: 1 >>> >> ># pkgutil -A >> >package catalog installed >> >>Take a look at your local catalog file, it's probably empty or >>corrupt. It should be in /var/opt/csw/pkgutil but you can try "pkgutil >>--catinfo" to see more info about path and number of packages it >>contains. > > > # pkgutil --catinfo > > URL http://mirror.opencsw.org/opencsw/allpkgs/sparc/5.10 > Release - > Creation time - > Number of pkgs 0 > File /var/opt/csw/pkgutil/catalog.mirror.opencsw.org_opencsw_allpkgs_ > sparc_5.10 > > URL http://mirror.opencsw.org/opencsw/sparc/5.10 > Release - > Creation time - > Number of pkgs 0 > File /var/opt/csw/pkgutil/catalog.mirror.opencsw.org_opencsw_sparc_5. > 10 > > URL http://mirror.opencsw.org/opencsw/testing/sparc/5.10 > Release - > Creation time - > Number of pkgs 0 > File /var/opt/csw/pkgutil/catalog.mirror.opencsw.org_opencsw_testing_ > sparc_5.10 > > URL http://mirrors.ibiblio.org/pub/mirrors/opencsw/current/sparc/5.1 > 0 > Release - > Creation time - > Number of pkgs 0 > File /var/opt/csw/pkgutil/catalog.mirrors.ibiblio.org_pub_mirrors_ope > ncsw_current_sparc_5.10 > > URL http://www.ibiblio.org/pub/packages/solaris/opencsw/sparc/5.10 > Release - > Creation time - > Number of pkgs 0 > File /var/opt/csw/pkgutil/catalog.www.ibiblio.org_pub_packages_solari > s_opencsw_sparc_5.10 > > also: > > # pkgutil --catinfo > => Fetching new catalog and descriptions (https://reflector.westga.edu/repos/Ope > nCSW/sparc/5.10) if available ... > ^C--2015-02-03 17:33:53-- https://reflector.westga.edu/repos/OpenCSW/sparc/5.10 > /catalog > Resolving reflector.westga.edu... 160.10.5.26 > Connecting to reflector.westga.edu|160.10.5.26|:443... > Fetching of catalog failed. You need to fix your download issues. Pkgutil uses wget for the downloads so if you can manually download a catalog pkgutil can too. Just browse the url:s above and try wget:ing the catalog files. Maybe you have firewall and/or proxy issues? From yvoinov at gmail.com Fri Feb 6 19:16:14 2015 From: yvoinov at gmail.com (Yuri Voinov) Date: Sat, 07 Feb 2015 00:16:14 +0600 Subject: Package updates Message-ID: <54D504EE.3020000@gmail.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hi there, Somebody is going to update packages on time? Openssl is two releases old, c-icap is 5 releases old.... Guys, are you crazy? You come to lead this repository - so be kind even to update it in a timely manner! Why I must build all critical software from sources? Maintainers ignores e-mails, are you all there died ?! If you are died - just tell us about it! We will build all soft from sources! This is very bad work. Year to update OpenSSL - is unacceptably! Weeks to update ClamAV - is unacceptably! Updates is mature as elephant bullshit - from years and older. Are your serious? -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 iQEcBAEBAgAGBQJU1QTtAAoJENNXIZxhPexGL6MIAI/6pWlb/6uO15dHOgV08ynv 6UtILOTDn4rQaoRMfw3KPd0GwBa2PQVPqqwcLgr0HJJgunHyJ08sEmO9zlli9AYw f0kbNryX7DEuNUqhVpDlvivqyR/jQS9ozp8bb3Jb+tnLRfi1F+nS3mwHWuIs/o5d WvuBynOGSPOxFi4GLAn5e2khuxWYbChyrADbt8MhzxVA0ICyu3d3ZRA5rBbJJj2x d3R65vkr8d0xen/IOySgdQXgTlw9MdRDB5EwSu6do4DHgc+akyEwc78ec+kni6JG qalLmMuXrJezKS0Cn+QViFeng+zZMTag59JrMkTsKSomoI9/VRoINJDUlk5xNm8= =UfFT -----END PGP SIGNATURE----- From bonivart at opencsw.org Fri Feb 6 20:30:13 2015 From: bonivart at opencsw.org (Peter Bonivart) Date: Fri, 6 Feb 2015 20:30:13 +0100 Subject: Package updates In-Reply-To: <54D504EE.3020000@gmail.com> References: <54D504EE.3020000@gmail.com> Message-ID: On Fri, Feb 6, 2015 at 7:16 PM, Yuri Voinov wrote: > Weeks to update ClamAV - is unacceptably! Ignoring the rest of your friendly mail I choose to answer only this part since I'm the maintainer of ClamAV. 0.98.6 was released on the 27th, a little more than a week ago. On the 30th I had packages uploaded to our experimental repo for all of you to test, I've had zero feedback so far. http://buildfarm.opencsw.org/experimental.html#bonivart You're welcome to give them a spin and tell me if they work alright, then I can release them to the next repo - unstable. From tw at wsf.at Fri Feb 6 21:58:03 2015 From: tw at wsf.at (Thomas Wolf) Date: Fri, 06 Feb 2015 21:58:03 +0100 Subject: Package updates In-Reply-To: <54D504EE.3020000@gmail.com> References: <54D504EE.3020000@gmail.com> Message-ID: <54D52ADB.5050501@wsf.at> You, Sir, just qualified for the "most impertinent post of the decade". Thomas P.S.: I'm just a (happy) occasional user of OpenCSW but this kind of 'feedback' just leaves me (nearly) speechless... To the project and all the maintainers: Please keep up the good work and don't let such ridiculous and unfriendly complaints get you down! Am 2015-02-06 um 19:16 schrieb Yuri Voinov: > > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > Hi there, > > Somebody is going to update packages on time? > > Openssl is two releases old, c-icap is 5 releases old.... > > Guys, are you crazy? > > You come to lead this repository - so be kind even to update it in a > timely manner! > > Why I must build all critical software from sources? > > Maintainers ignores e-mails, are you all there died ?! > > If you are died - just tell us about it! We will build all soft from > sources! > > This is very bad work. Year to update OpenSSL - is unacceptably! > > Weeks to update ClamAV - is unacceptably! > Updates is mature as elephant bullshit - from years and older. Are your > serious? > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v2 > > iQEcBAEBAgAGBQJU1QTtAAoJENNXIZxhPexGL6MIAI/6pWlb/6uO15dHOgV08ynv > 6UtILOTDn4rQaoRMfw3KPd0GwBa2PQVPqqwcLgr0HJJgunHyJ08sEmO9zlli9AYw > f0kbNryX7DEuNUqhVpDlvivqyR/jQS9ozp8bb3Jb+tnLRfi1F+nS3mwHWuIs/o5d > WvuBynOGSPOxFi4GLAn5e2khuxWYbChyrADbt8MhzxVA0ICyu3d3ZRA5rBbJJj2x > d3R65vkr8d0xen/IOySgdQXgTlw9MdRDB5EwSu6do4DHgc+akyEwc78ec+kni6JG > qalLmMuXrJezKS0Cn+QViFeng+zZMTag59JrMkTsKSomoI9/VRoINJDUlk5xNm8= > =UfFT > -----END PGP SIGNATURE----- > > From rb4723 at att.com Fri Feb 6 22:40:43 2015 From: rb4723 at att.com (BRIGGS, RICHARD A) Date: Fri, 6 Feb 2015 21:40:43 +0000 Subject: Package updates In-Reply-To: <54D52ADB.5050501@wsf.at> References: <54D504EE.3020000@gmail.com> <54D52ADB.5050501@wsf.at> Message-ID: <0492D9B0A98BE2499F1C3398FD0C7DBE25CA3324@MOSTLS1MSGUSRFB.ITServices.sbc.com> I agree with Thomas! Good (and appreciated) work !! -----Original Message----- From: users [mailto:users-bounces+rb4723=att.com at lists.opencsw.org] On Behalf Of Thomas Wolf Sent: Friday, February 06, 2015 2:58 PM To: users at lists.opencsw.org Subject: Re: Package updates You, Sir, just qualified for the "most impertinent post of the decade". Thomas P.S.: I'm just a (happy) occasional user of OpenCSW but this kind of 'feedback' just leaves me (nearly) speechless... To the project and all the maintainers: Please keep up the good work and don't let such ridiculous and unfriendly complaints get you down! Am 2015-02-06 um 19:16 schrieb Yuri Voinov: > > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > Hi there, > > Somebody is going to update packages on time? > > Openssl is two releases old, c-icap is 5 releases old.... > > Guys, are you crazy? > > You come to lead this repository - so be kind even to update it in a > timely manner! > > Why I must build all critical software from sources? > > Maintainers ignores e-mails, are you all there died ?! > > If you are died - just tell us about it! We will build all soft from > sources! > > This is very bad work. Year to update OpenSSL - is unacceptably! > > Weeks to update ClamAV - is unacceptably! > Updates is mature as elephant bullshit - from years and older. Are your > serious? > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v2 > > iQEcBAEBAgAGBQJU1QTtAAoJENNXIZxhPexGL6MIAI/6pWlb/6uO15dHOgV08ynv > 6UtILOTDn4rQaoRMfw3KPd0GwBa2PQVPqqwcLgr0HJJgunHyJ08sEmO9zlli9AYw > f0kbNryX7DEuNUqhVpDlvivqyR/jQS9ozp8bb3Jb+tnLRfi1F+nS3mwHWuIs/o5d > WvuBynOGSPOxFi4GLAn5e2khuxWYbChyrADbt8MhzxVA0ICyu3d3ZRA5rBbJJj2x > d3R65vkr8d0xen/IOySgdQXgTlw9MdRDB5EwSu6do4DHgc+akyEwc78ec+kni6JG > qalLmMuXrJezKS0Cn+QViFeng+zZMTag59JrMkTsKSomoI9/VRoINJDUlk5xNm8= > =UfFT > -----END PGP SIGNATURE----- > > From dam at opencsw.org Fri Feb 6 22:46:13 2015 From: dam at opencsw.org (Dagobert Michelsen) Date: Fri, 6 Feb 2015 22:46:13 +0100 Subject: Package updates In-Reply-To: <54D504EE.3020000@gmail.com> References: <54D504EE.3020000@gmail.com> Message-ID: <3072215C-1DB5-4BEE-ABB2-56E14D14D3FB@opencsw.org> Hi Yuri, > Am 06.02.2015 um 19:16 schrieb Yuri Voinov : > > Somebody is going to update packages on time? > > Openssl is two releases old, c-icap is 5 releases old.... > > Guys, are you crazy? > > You come to lead this repository - so be kind even to update it in a > timely manner! > > Why I must build all critical software from sources? > > Maintainers ignores e-mails, are you all there died ?! > > If you are died - just tell us about it! We will build all soft from > sources! > > This is very bad work. Year to update OpenSSL - is unacceptably! > > Weeks to update ClamAV - is unacceptably! > Updates is mature as elephant bullshit - from years and older. Are your > serious? This answer is a little longer, also because I think your attitude in the post has a connection to the recent Werner Koch story [1]. It is because people take things for granted, that ?somebody? does the work and offers it for free and then people start demanding and complaining instead of joining the project and fix the stuff they complained about. Your post is not the first one like this we got so the issues you raise are certainly valid. Let me tell you a story: a customer watched over my shoulder when I was doing some package updates for OpenCSW some time ago and asked me why it would be necessary nowadays to build packages on my own when there is OpenCSW. It never came to his mind that someone actually has to do the work of making it compile and building the package. It would be easier for me to just build the packages for myself, not share my patches, not contribute them upstream. So why am I making the packages public? Make the build recipes public? Contribute the patches and offer upstream accounts so they can check for Solaris compatibility? One reason for me is to give something back to the community whom I profited much both in terms of tools and skills. The other reason is because in a packaging project I don?t need to build the world, but only a part of it. So I think both you and the rest of Solaris users would benefit when you would join the project and fix the things you complain about. I know from the conversations with you that you are also working with upstream and contributing in that way, so I hope not to be too far off. However, I do feel personally hurt by your post, not because I maintain any of the packages you complained about or haven?t answered any of your emails, but because you imply that we are not updating the packages because we are lazy or dumb or both. This is not the case. But we all are working less often with Solaris and maintainers who actively used their packages are no longer using Solaris at their work and update the packages purely for fun in their freetime. In the past I took over orphaned packages and have now a package count of over 1300 which I definitely can?t manage with the quality I would like to offer. Personally I only update packages when I need it for a customer or someone kindly asks for it (like you did in the past for Squid which I updated for you, remember?). So again, to all users on this mailing list: if your favority package is not updated, join the project and update it. If your favorite packaging system is not offered, join the project and build it. Complaining will fix exactly 0% of the issues you complained about, but is much easier than fixing the issues. Thank you for your time ? Dago [1] http://www.propublica.org/article/the-worlds-email-encryption-software-relies-on-one-guy-who-is-going-broke -- "You don't become great by trying to be great, you become great by wanting to do something, and then doing it so hard that you become great in the process." - xkcd #896 -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/pkcs7-signature Size: 2418 bytes Desc: not available URL: From rb4723 at att.com Fri Feb 6 22:51:46 2015 From: rb4723 at att.com (BRIGGS, RICHARD A) Date: Fri, 6 Feb 2015 21:51:46 +0000 Subject: Package updates In-Reply-To: <3072215C-1DB5-4BEE-ABB2-56E14D14D3FB@opencsw.org> References: <54D504EE.3020000@gmail.com> <3072215C-1DB5-4BEE-ABB2-56E14D14D3FB@opencsw.org> Message-ID: <0492D9B0A98BE2499F1C3398FD0C7DBE25CA335D@MOSTLS1MSGUSRFB.ITServices.sbc.com> Dago - I'm a relatively new Solaris user, but an old sysadmin. I would love to contribute and help. I'm just unsure of how to get started and what I need to learn in plain terms... any advice would be appreciated! ~Richard -----Original Message----- From: users [mailto:users-bounces+rb4723=att.com at lists.opencsw.org] On Behalf Of Dagobert Michelsen Sent: Friday, February 06, 2015 3:46 PM To: Questions and discussions; Yuri Voinov Subject: Re: Package updates Hi Yuri, > Am 06.02.2015 um 19:16 schrieb Yuri Voinov : > > Somebody is going to update packages on time? > > Openssl is two releases old, c-icap is 5 releases old.... > > Guys, are you crazy? > > You come to lead this repository - so be kind even to update it in a > timely manner! > > Why I must build all critical software from sources? > > Maintainers ignores e-mails, are you all there died ?! > > If you are died - just tell us about it! We will build all soft from > sources! > > This is very bad work. Year to update OpenSSL - is unacceptably! > > Weeks to update ClamAV - is unacceptably! > Updates is mature as elephant bullshit - from years and older. Are your > serious? This answer is a little longer, also because I think your attitude in the post has a connection to the recent Werner Koch story [1]. It is because people take things for granted, that ?somebody? does the work and offers it for free and then people start demanding and complaining instead of joining the project and fix the stuff they complained about. Your post is not the first one like this we got so the issues you raise are certainly valid. Let me tell you a story: a customer watched over my shoulder when I was doing some package updates for OpenCSW some time ago and asked me why it would be necessary nowadays to build packages on my own when there is OpenCSW. It never came to his mind that someone actually has to do the work of making it compile and building the package. It would be easier for me to just build the packages for myself, not share my patches, not contribute them upstream. So why am I making the packages public? Make the build recipes public? Contribute the patches and offer upstream accounts so they can check for Solaris compatibility? One reason for me is to give something back to the community whom I profited much both in terms of tools and skills. The other reason is because in a packaging project I don?t need to build the world, but only a part of it. So I think both you and the rest of Solaris users would benefit when you would join the project and fix the things you complain about. I know from the conversations with you that you are also working with upstream and contributing in that way, so I hope not to be too far off. However, I do feel personally hurt by your post, not because I maintain any of the packages you complained about or haven?t answered any of your emails, but because you imply that we are not updating the packages because we are lazy or dumb or both. This is not the case. But we all are working less often with Solaris and maintainers who actively used their packages are no longer using Solaris at their work and update the packages purely for fun in their freetime. In the past I took over orphaned packages and have now a package count of over 1300 which I definitely can?t manage with the quality I would like to offer. Personally I only update packages when I need it for a customer or someone kindly asks for it (like you did in the past for Squid which I updated for you, remember?). So again, to all users on this mailing list: if your favority package is not updated, join the project and update it. If your favorite packaging system is not offered, join the project and build it. Complaining will fix exactly 0% of the issues you complained about, but is much easier than fixing the issues. Thank you for your time ? Dago [1] http://www.propublica.org/article/the-worlds-email-encryption-software-relies-on-one-guy-who-is-going-broke -- "You don't become great by trying to be great, you become great by wanting to do something, and then doing it so hard that you become great in the process." - xkcd #896 From dam at opencsw.org Sun Feb 8 21:04:07 2015 From: dam at opencsw.org (Dagobert Michelsen) Date: Sun, 8 Feb 2015 21:04:07 +0100 Subject: OpenCSW question about package curl In-Reply-To: <201502041842.t14IgmQO010592@www.opencsw.org> References: <201502041842.t14IgmQO010592@www.opencsw.org> Message-ID: <2C597487-9552-4058-B85F-4ABAF0B4B775@opencsw.org> Hi Nagaraju, > Am 04.02.2015 um 19:42 schrieb dogiparthi.n at ghc.org: > > Hi Dagobert Michelsen, > I would like to download curl software for Solaris SPARC 64, can you please provide the software. You can download the package manually from https://mirror.opencsw.org but I strongly suggest to use pkgutil: http://www.opencsw.org/manual/for-administrators/getting-started.html Best regards ? Dago -- "You don't become great by trying to be great, you become great by wanting to do something, and then doing it so hard that you become great in the process." - xkcd #896 -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/pkcs7-signature Size: 2418 bytes Desc: not available URL: From dam at opencsw.org Sun Feb 8 21:09:02 2015 From: dam at opencsw.org (Dagobert Michelsen) Date: Sun, 8 Feb 2015 21:09:02 +0100 Subject: Package updates In-Reply-To: <0492D9B0A98BE2499F1C3398FD0C7DBE25CA335D@MOSTLS1MSGUSRFB.ITServices.sbc.com> References: <54D504EE.3020000@gmail.com> <3072215C-1DB5-4BEE-ABB2-56E14D14D3FB@opencsw.org> <0492D9B0A98BE2499F1C3398FD0C7DBE25CA335D@MOSTLS1MSGUSRFB.ITServices.sbc.com> Message-ID: Hi Richard, > Am 06.02.2015 um 22:51 schrieb BRIGGS, RICHARD A : > > Dago - I'm a relatively new Solaris user, but an old sysadmin. I would love to contribute and help. I'm just unsure of how to get started and what I need to learn in plain terms... any advice would be appreciated! ~Richard Glad to hear that, I would say it depends on what packages are you using. You can either take over an orphaned package or help in general with upstream communication for the applications you use or help on the website infrastructure. Best regards ? Dago -- "You don't become great by trying to be great, you become great by wanting to do something, and then doing it so hard that you become great in the process." - xkcd #896 -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/pkcs7-signature Size: 2418 bytes Desc: not available URL: From maciej at opencsw.org Sun Feb 8 21:10:03 2015 From: maciej at opencsw.org (=?UTF-8?Q?Maciej_=28Matchek=29_Blizi=C5=84ski?=) Date: Sun, 08 Feb 2015 20:10:03 +0000 Subject: OpenCSW question about package curl References: <201502041842.t14IgmQO010592@www.opencsw.org> <2C597487-9552-4058-B85F-4ABAF0B4B775@opencsw.org> Message-ID: http://www.opencsw.org/manual/for-administrators/faq.html#please-provide-me-with-a-solaris-binary-for-something A dom, 8/02/2015, 20:04, Dagobert Michelsen escreveu: > Hi Nagaraju, > > > Am 04.02.2015 um 19:42 schrieb dogiparthi.n at ghc.org: > > > > Hi Dagobert Michelsen, > > I would like to download curl software for Solaris SPARC 64, can you > please provide the software. > > You can download the package manually from > https://mirror.opencsw.org > but I strongly suggest to use pkgutil: > http://www.opencsw.org/manual/for-administrators/getting-started.html > > > Best regards > > ? Dago > > -- > "You don't become great by trying to be great, you become great by wanting > to do something, > and then doing it so hard that you become great in the process." - xkcd > #896 > > -------------- next part -------------- An HTML attachment was scrubbed... URL: From dam at opencsw.org Sun Feb 8 21:18:33 2015 From: dam at opencsw.org (Dagobert Michelsen) Date: Sun, 8 Feb 2015 21:18:33 +0100 Subject: Package updates In-Reply-To: <54D7BBFA.6040401@gmail.com> References: <54D504EE.3020000@gmail.com> <3072215C-1DB5-4BEE-ABB2-56E14D14D3FB@opencsw.org> <54D7BBFA.6040401@gmail.com> Message-ID: Hi Yuri, > Am 08.02.2015 um 20:41 schrieb Yuri Voinov : > Hi Dag. > > I think, I can help with some packages. > > Can I join to maintainers? Sure, I can give you an account on the buildfarm. For that I need your ssh public key, intended user name and sourceforge user name. Yann, our OpenSSL maintainer, really seems to be not reachable at the moment and we obviously missed the past two updates. Unfortunately it is not a simple version bump as there are several patches which need to be forward ported. Also feel free to take over Squid from me as you already worked extensively with it. Best regards ? Dago -- "You don't become great by trying to be great, you become great by wanting to do something, and then doing it so hard that you become great in the process." - xkcd #896 -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/pkcs7-signature Size: 2418 bytes Desc: not available URL: From tosmi at opencsw.org Wed Feb 11 16:34:15 2015 From: tosmi at opencsw.org (Toni Schmidbauer) Date: Wed, 11 Feb 2015 16:34:15 +0100 Subject: [HEADSUP] puppet package updates Message-ID: <878ug4zclk.fsf@opencsw.org> dear csw puppeteers, this is just a short notice that I'm going to upload updated puppet3 packages to unstable. changelog: - update puppet3/puppetmaster3 to 3.7.4 please be aware of the puppet upgrade guide at: https://docs.puppetlabs.com/guides/install_puppet/upgrading.html and especially https://docs.puppetlabs.com/guides/install_puppet/upgrading.html#always-upgrade-the-puppet-master-first - rebuilt facter and augeas packages this is just a cleanup of the packages, no version change here. - new facter2 (2.4.1) package facter2 provides structured fact for puppet and more. please read the release notes especially for version 2.0.0: https://docs.puppetlabs.com/facter/2.0/release_notes.html facter and facter2 are incompatible, you can switch between version with pkgutil: pkgutil -i facter2 will remove facter if installed pkgutil -i facter will remove facter2 if installed have fun toni From tlynch at primate.wisc.edu Thu Feb 12 23:09:08 2015 From: tlynch at primate.wisc.edu (Tom Lynch) Date: Thu, 12 Feb 2015 16:09:08 -0600 Subject: problems after upgrade with apache2 and ldap authentication In-Reply-To: <54D23127.3060605@opencsw.org> References: <2EA4A3EC-A65D-458B-88B8-F2CA272D73CE@primate.wisc.edu> <982ACD9E-A053-45F2-A8AF-E4F938F3BCE0@opencsw.org> <03248E93-38FB-4D92-B618-FE1E60F642CF@primate.wisc.edu> <731654F8-0606-4ABF-8DFD-FEECC90A4F71@primate.wisc.edu> <72E8504F-19CB-4ED5-9069-0860F85249CB@opencsw.org> <3C81E291-C252-4F99-9932-0C875D413945@primate.wisc.edu> <54D23127.3060605@opencsw.org> Message-ID: <3C121D20-9420-4B9A-9F97-0ECAD8D6712D@primate.wisc.edu> > On Feb 4, 2015, at 8:48 AM, Jan Holzhueter wrote: > > Hi, > > Am 04.02.15 um 15:29 schrieb Tom Lynch: >>>> >>>> Unfortunately, I am still having problems with this. Here is what my error_log says: >>>> >>>> [Mon Feb 02 17:01:51 2015] [info] APR LDAP: Built with OpenLDAP LDAP SDK >>>> [Mon Feb 02 17:01:51 2015] [info] LDAP: SSL support unavailable: LDAP: SSL/TLS ldapssl_client_init() function not supported by this Netscape/Mozilla/Solaris SDK. Certificate authority file not set >>>> >>>> What exactly is this telling me - that SSL support is unavailable even though the previous line show that the APR is built with openLDAP SDK? Or is it not supported because there is a problem with my trusted certificate file? > > you need to provide a PEM for your LDAP Server I guess. > > of your CA that is > > Put this: > > > TLS_CACERT /var/ldap/cacert.pem > > in > /etc/opt/csw/openldap/ldap.conf > > hope this helps. Jan, This didn?t appear to help. Do you mean I need to put this in the ldap.conf file on my ldap server? I searched the source code for "LDAP: SSL support unavailable?? that I get in my log file. That error appears to be in apr-util apr_ldap_option.c in a section that deals with the Netscape/Mozilla/Solaris SDK. But how does it get to that section when APR LDAP was built with OpenLDAP LDAP SDK? Maybe this is a question for another list? Thanks for your help. Tom -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/pkcs7-signature Size: 2877 bytes Desc: not available URL: From jh at opencsw.org Fri Feb 13 07:53:35 2015 From: jh at opencsw.org (=?windows-1252?Q?Jan_Holzh=FCter?=) Date: Fri, 13 Feb 2015 07:53:35 +0100 Subject: problems after upgrade with apache2 and ldap authentication In-Reply-To: <3C121D20-9420-4B9A-9F97-0ECAD8D6712D@primate.wisc.edu> References: <2EA4A3EC-A65D-458B-88B8-F2CA272D73CE@primate.wisc.edu> <982ACD9E-A053-45F2-A8AF-E4F938F3BCE0@opencsw.org> <03248E93-38FB-4D92-B618-FE1E60F642CF@primate.wisc.edu> <731654F8-0606-4ABF-8DFD-FEECC90A4F71@primate.wisc.edu> <72E8504F-19CB-4ED5-9069-0860F85249CB@opencsw.org> <3C81E291-C252-4F99-9932-0C875D413945@primate.wisc.edu> <54D23127.3060605@opencsw.org> <3C121D20-9420-4B9A-9F97-0ECAD8D6712D@primate.wisc.edu> Message-ID: <54DD9F6F.7050101@opencsw.org> Hi, Am 12.02.15 um 23:09 schrieb Tom Lynch: >> Put this: >> >> >> TLS_CACERT /var/ldap/cacert.pem >> >> in >> /etc/opt/csw/openldap/ldap.conf >> >> hope this helps. > Jan, > > This didn?t appear to help. Do you mean I need to put this in the ldap.conf file on my ldap server? no on your client Server/Apache. You need to create a Pam with the CA of you ldap Server. As ldap/ ldap libs don't have a Cert Store to check if the certs you use on your Ldap Server are valid. > > I searched the source code for "LDAP: SSL support unavailable?? that I get in my log file. That error appears to be in apr-util apr_ldap_option.c in a section that deals with the Netscape/Mozilla/Solaris SDK. But how does it get to that section when APR LDAP was built with OpenLDAP LDAP SDK? Well Openldap is in that section. Too. It tries to find the CA Certs. And can't find any. Thats what the error does say. Greetings Jan From dam at opencsw.org Fri Feb 13 09:01:49 2015 From: dam at opencsw.org (Dagobert Michelsen) Date: Fri, 13 Feb 2015 09:01:49 +0100 Subject: Package updates In-Reply-To: <54D7BBFA.2060004@gmail.com> References: <54D504EE.3020000@gmail.com> <3072215C-1DB5-4BEE-ABB2-56E14D14D3FB@opencsw.org> <54D7BBFA.2060004@gmail.com> Message-ID: Hi Yuri, > Am 08.02.2015 um 20:41 schrieb Yuri Voinov : > > I think, I can help with some packages. How are you coming along? Are there any issues I can help with? Best regards ? Dago -- "You don't become great by trying to be great, you become great by wanting to do something, and then doing it so hard that you become great in the process." - xkcd #896 -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/pkcs7-signature Size: 2418 bytes Desc: not available URL: From dam at opencsw.org Fri Feb 13 09:23:24 2015 From: dam at opencsw.org (Dagobert Michelsen) Date: Fri, 13 Feb 2015 09:23:24 +0100 Subject: Package updates In-Reply-To: <54DDB33B.2080000@gmail.com> References: <54D504EE.3020000@gmail.com> <3072215C-1DB5-4BEE-ABB2-56E14D14D3FB@opencsw.org> <54D7BBFA.2060004@gmail.com> <54DDB33B.2080000@gmail.com> Message-ID: Hi Yuri, > Am 13.02.2015 um 09:18 schrieb Yuri Voinov : > > Sorry for delay, Dagobert, > > my notebook HDD was accidentally died, I've just recovered them. > > I have question - can I select packages to maintain? Sure. If you want to work on a package get in touch with the current maintainer. Some have vanished and will therefore not reply, some are overloaded like me and are happy to hand over maintenance for some packages, some maintainers are really active and maintain stuff actively and a nudge is usually sufficient for a new version or an additional configure flag. I guess you would be interested at least in Squid, just write what you are interested in, I pretty much know all active maintainers personally and the state of the packages. Best regards ? Dago -- "You don't become great by trying to be great, you become great by wanting to do something, and then doing it so hard that you become great in the process." - xkcd #896 -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/pkcs7-signature Size: 2418 bytes Desc: not available URL: From maciej at opencsw.org Fri Feb 13 09:50:50 2015 From: maciej at opencsw.org (=?UTF-8?Q?Maciej_=28Matchek=29_Blizi=C5=84ski?=) Date: Fri, 13 Feb 2015 08:50:50 +0000 Subject: Package updates References: <54D504EE.3020000@gmail.com> <3072215C-1DB5-4BEE-ABB2-56E14D14D3FB@opencsw.org> <54D7BBFA.2060004@gmail.com> <54DDB33B.2080000@gmail.com> Message-ID: We have documentation on this very topic! Let's use it! :) http://www.opencsw.org/manual/for-maintainers/contributing-to-recipes.html If anything is missing from the doc, let's add the missing thing. -------------- next part -------------- An HTML attachment was scrubbed... URL: From dam at opencsw.org Fri Feb 13 20:40:23 2015 From: dam at opencsw.org (Dagobert Michelsen) Date: Fri, 13 Feb 2015 20:40:23 +0100 Subject: OpenCSW question about package CSWpython27 In-Reply-To: References: <201501221507.t0MF7h9m001416@www.opencsw.org> <44C19678-4928-47C7-A836-BEC40DC63A7E@opencsw.org> <8948A704-44C1-4C8A-8AC5-8B435A587AF8@opencsw.org> <656649FF-0966-4132-B3FA-EBCFE680FF14@opencsw.org> <5B48EAF3-F498-42FB-805D-F158467AD4F6@opencsw.org> <62962991-BCFB-4FB3-B0DF-B7670767D8D4@opencsw.org> <3D244D10-2171-45A0-91A8-540C1B0BC7F1@opencsw.org> <447171D0-9831-4A6D-8EF1-2E877E2FC70F@opencsw.org> <1E785051-0524-491A-9AB3-39E094C1F49C@opencsw.org> Message-ID: <8D4BBEF4-B774-4B89-9D72-DBF1503813E6@opencsw.org> Hi Alex, > Am 13.02.2015 um 19:40 schrieb Alex : > > Hey, what is the proper way to get mgar to install a package? I see that 'mgar install' installs in work/install-isa-amd64 folder but does not actually system install. What is the process to get a proper install done. You build a package with mgar and then manually install it. ?mgar install? does essentially a ?make install? of the upstream software. > Also for Python 2.7.8 on Solaris 10 x86, setup.py needs to be patched so that crypt module can be build, can this be specified in the Makefile or what is the procedure for modifying source packages? Sure, just follow this tutorial: http://www.opencsw.org/2012/12/tutorial-patching-source-code-in-gar/ Best regards ? Dago > > On Wed, Jan 28, 2015 at 3:17 AM, Dagobert Michelsen wrote: > Hi Alex, > > > Am 28.01.2015 um 05:43 schrieb Alex : > > > > I seem to have managed to get rid of the curses error on unstable10s in 'mgar compile' by adding EXTRA_INC += /opt/csw/include/ncurses and EXTRA_INC += /opt/csw/include/ncursesw into Makefile. > > I don?t need that, with the committed Makefile I get a working package. You can > compare your results with mine by comparing your tree against mine at > /home/dam/mgar/pkg/lang-python/python/branches/python-2.7 > > > Now with BUILD64_ONLY = 1 only the following are missing: > > Python build finished, but the necessary bits to build these modules were not found: > > bsddb185 dl imageop > > linuxaudiodev ossaudiodev > > > > However when doing 'mgar package' the curses test was skipped and the build later on ended up not succeeding. Got any ideas as to why this would happen? > > Unfortunately not, you have to dig. > > > Best regards > > - Dago > > -- > "You don't become great by trying to be great, you become great by wanting to do something, > and then doing it so hard that you become great in the process." - xkcd #896 > > -- "You don't become great by trying to be great, you become great by wanting to do something, and then doing it so hard that you become great in the process." - xkcd #896 -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/pkcs7-signature Size: 2418 bytes Desc: not available URL: From ceving at gmail.com Wed Feb 25 13:34:17 2015 From: ceving at gmail.com (Sascha Ziemann) Date: Wed, 25 Feb 2015 13:34:17 +0100 Subject: Missmatch between web site version and install version. Message-ID: When I search for sudo the web site shows me the following package: http://www.opencsw.org/packages/CSWsudo/ Software: Name sudo Package: Name CSWsudo Description: Provides limited super user privileges Version: 1.8.12,REV=2015.02.11 But when I search with pkgutil on a Solaris 10 system: /opt/csw/bin/pkgutil -a|grep -i sudo I get a different version: sudo CSWsudo 1.8.11p2,REV=2014.10.31 1.1 MB sudo_common_stub CSWsudo-common 1.8.11p1,REV=2014.10.10 3.5 KB sudo_ldap CSWsudo-ldap 1.8.11p2,REV=2014.10.31 169.9 KB sudo_ldap_stub CSWsudoldap 1.8.11p1,REV=2014.10.10 3.5 KB sudosh2 CSWsudosh2 1.0.2,REV=2009.12.02 38.3 KB How to get the latest package? Also all mirrors are marked "red", which probably means that they are out dated. When I take a look at a mirror I can see that the mirror has also just the old sudo package: ftp://ftp.uni-erlangen.de/pub/mirrors/csw/munich/sparc/5.11/sudo-1.8.11p2,REV%3D2014.10.31-SunOS5.10-sparc-CSW.pkg.gz So what is the URL where the latest packages from the web site can be found? Regards, Sascha From dam at opencsw.org Wed Feb 25 13:52:47 2015 From: dam at opencsw.org (Dagobert Michelsen) Date: Wed, 25 Feb 2015 13:52:47 +0100 Subject: Missmatch between web site version and install version. In-Reply-To: References: Message-ID: <78E7C1BB-2F2B-48D0-9FFF-BFA48321BE45@opencsw.org> Hi Sascha, > Am 25.02.2015 um 13:34 schrieb Sascha Ziemann : > > When I search for sudo the web site shows me the following package: > > http://www.opencsw.org/packages/CSWsudo/ > > Software: Name sudo > Package: Name CSWsudo > Description: Provides limited super user privileges > Version: 1.8.12,REV=2015.02.11 The version shown is the unstable version, after 14 days without bugs they are promoted to testing. Regarding sudo there is one day left: http://buildfarm.opencsw.org/package-promotions/promote-packages.html#sudo > But when I search with pkgutil on a Solaris 10 system: > > /opt/csw/bin/pkgutil -a|grep -i sudo > > I get a different version: > > sudo CSWsudo 1.8.11p2,REV=2014.10.31 1.1 MB > sudo_common_stub CSWsudo-common 1.8.11p1,REV=2014.10.10 3.5 KB > sudo_ldap CSWsudo-ldap 1.8.11p2,REV=2014.10.31 169.9 KB > sudo_ldap_stub CSWsudoldap 1.8.11p1,REV=2014.10.10 3.5 KB > sudosh2 CSWsudosh2 1.0.2,REV=2009.12.02 38.3 KB > > How to get the latest package? You can wait for a day or just grab manually from unstable, it is safe to mix here. > Also all mirrors are marked "red", which probably means that they are out dated. A new mirror infrastructure is in the works and the old check has not gotten much love lately. The new one is accurate: http://mirror.test.opencsw.org/mirmon/mirmon.html > When I take a look at a mirror I can see that the mirror has also just > the old sudo package: > > ftp://ftp.uni-erlangen.de/pub/mirrors/csw/munich/sparc/5.11/sudo-1.8.11p2,REV%3D2014.10.31-SunOS5.10-sparc-CSW.pkg.gz > > So what is the URL where the latest packages from the web site can be found? Change from munich to unstable to get it immediately. Best regards ? Dago -- "You don't become great by trying to be great, you become great by wanting to do something, and then doing it so hard that you become great in the process." - xkcd #896 -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/pkcs7-signature Size: 2418 bytes Desc: not available URL: From maciej at opencsw.org Wed Feb 25 21:17:59 2015 From: maciej at opencsw.org (=?UTF-8?Q?Maciej_=28Matchek=29_Blizi=C5=84ski?=) Date: Wed, 25 Feb 2015 20:17:59 +0000 Subject: Missmatch between web site version and install version. In-Reply-To: References: Message-ID: 2015-02-25 12:34 GMT+00:00 Sascha Ziemann : Is ceving a rot13 of privat? :) -------------- next part -------------- An HTML attachment was scrubbed... URL: