debian-edu-config (2.12.37)
[PTS] [DDPO]
NEW: VCS has unreleased changes: 2.12.38 > 2.12.37
- Git: https://salsa.debian.org/debian-edu/debian-edu-config.git
-
- Branch: master
- Path: debian/changelog
- Repo size: 13221888
- Browser: https://salsa.debian.org/debian-edu/debian-edu-config
- Last scan: 2023-09-27 20:43:20+00
- Next scan: 2023-10-05 19:43:00+00
- Merge requests: 2
- CI pipeline status: failed
- Debian changelog in Git:
debian-edu-config (2.12.38) UNRELEASED; urgency=medium
* Start 2.12.38 development. d/changelog entries will be written on
release using the git commit messages.
-- Mike Gabriel <sunweaver@debian.org> Sat, 09 Sep 2023 23:08:48 +0200
- This branch is 29 commits ahead of tag 2.12.35
- Git log:
commit 01e201ca94e576280b5973d967f747fcc6ca35e8
Author: Mike Gabriel <mike.gabriel@das-netzwerkteam.de>
Date: Sat Sep 9 23:09:10 2023 +0200
Start 2.12.38 development.
d/changelog entries will be written on release using the git commit
messages.
Use 'gbp dch --since 2.12.37' to write d/changelog entries since that
last release.
Gbp-Dch: ignore
commit 41a4f5c665d1bb0d9ad9beb14b0ff36632a53e52
Author: Mike Gabriel <mike.gabriel@das-netzwerkteam.de>
Date: Wed Sep 27 22:31:46 2023 +0200
release as 2.12.37
commit 02c4c4c14c7b9ecccfb2633af103699c41403979
Author: Guido Berhoerster <guido+freiesoftware@berhoerster.name>
Date: Mon Sep 25 09:46:40 2023 +0200
Change minimum UID/GID for LDAP user to 2000
With this change local user accounts now use the UID/GID range 1000-1999
instead of 500-999 whereas LDAP user accounts use 2000-59999 instead of
1000-59999. This is to reserve UID/GID 0-999 for system users which is the
default in Debian and not conforming to it is increasingly problematic as
packages are beginning to use systemd-sysusers for creating system user
accounts which does not obey /etc/addusers.conf or /etc/login.defs by default.
The first user account created during installation now has UID/GID 2000 instead
of 1000.
Configure gosa and adjust ldap-createuser-krb5 accordingly.
Closes: #1003192.
commit e29c074f5f577fd2712d798d96d360f95225ded0
Author: Guido Berhoerster <guido+freiesoftware@berhoerster.name>
Date: Mon Sep 25 14:05:37 2023 +0200
setup-freeradius-server: Improve robustness
Use update-ini-file for OpenSSL config files.
Use more precise sed substitutions which do not rely on example values.
Increase password length from 8 to 16 characters.
commit ed1d0ca17c8b4aee729057ead20a41c61a9de3fa
Author: Guido Berhoerster <guido+freiesoftware@berhoerster.name>
Date: Mon Sep 25 12:47:37 2023 +0200
setup-freeradius-server: Set commonName and subjectAltNames on the server cert
Closes: #1010159.
commit 6d803b3a9a42dad8a178a4a1b281a60a792e6ca5
Author: Guido Berhoerster <guido+freiesoftware@berhoerster.name>
Date: Fri Sep 15 11:23:30 2023 +0200
Disable the LDAP PAM module
commit 3504627e96902399e1ffbdadaa99bd25a3e7390d
Author: Guido Berhoerster <guido+freiesoftware@berhoerster.name>
Date: Thu Sep 14 09:32:10 2023 +0200
Fix remaining invocations of ldapsearch
commit 7b4304a4a73c95cd26aae5c2ec114ec7ed9aabcd
Author: Guido Berhoerster <guido+freiesoftware@berhoerster.name>
Date: Wed Sep 13 14:49:07 2023 +0200
testsuite/ldap-server: fix invocation of ldapsearch
The -h command line option has been removed, ldapsearch now only accepts a LDAP
URI via the -H option.
commit 92cba3da0c02ad22939bd27e438afa8b05e15206
Author: Guido Berhoerster <guido+freiesoftware@berhoerster.name>
Date: Wed Sep 13 14:36:09 2023 +0200
testsuite/ldap-client: improve error message on PAM modules
Also do not use the deprecated egrep and get rid of unnecessary wc.
commit 7584d0c4757547b085ff27b41672f5e5b4535240
Author: Guido Berhoerster <guido+freiesoftware@berhoerster.name>
Date: Wed Sep 13 14:21:13 2023 +0200
testsuite/ldap-client: fix invocation of ldapsearch
The -h command line option has been removed, ldapsearch now only accepts a LDAP
URI via the -H option. Use dig and awk instead of host and interpret the SRV
record properly.
commit 47cc42ed92bd4b61e9e6432bc4cacebbe8cbaa5b
Author: Guido Berhoerster <guido+freiesoftware@berhoerster.name>
Date: Wed Sep 13 13:04:07 2023 +0200
Rewrite testsuite/filesystems, add exception for /boot
Rewrite for clarity and robustness.
Add exception for /boot which may use ext2.
commit fddcfc173f7bd469f2c625dd9c5fbdb564ebc1a9
Author: Guido Berhoerster <guido+freiesoftware@berhoerster.name>
Date: Tue Sep 19 11:47:23 2023 +0200
Disable cfengine3 systemd service
Disabling only cf-execd in 75b4e3f7 (see #1041323) did not work as it gets
pulled in as a dependency of cfengine3. Thus disable the cfengine3 service
instead.
commit 21457dc883407da542bbf95b95cc33d119779b37
Author: Guido Berhoerster <guido+freiesoftware@berhoerster.name>
Date: Tue Sep 19 11:46:53 2023 +0200
ldap-createuser-krb5: fix password prompt
commit 5561b91a51da5b24bc914167604448e9686aa61c
Author: Guido Berhoerster <guido+freiesoftware@berhoerster.name>
Date: Thu Sep 7 12:35:09 2023 +0200
Discard excessive nullmailer logging
Filter out log messages coming from a client running nullmailer since it is
very verbose and can easily fill up the filesystem under /var/log
(Closes: #1003728).
commit d35745252c464f22f10c74f362c58fb4516c1bda
Author: Mike Gabriel <mike.gabriel@das-netzwerkteam.de>
Date: Sat Sep 9 23:09:10 2023 +0200
Start 2.12.37 development.
d/changelog entries will be written on release using the git commit
messages.
Use 'gbp dch --since 2.12.36' to write d/changelog entries since that
last release.
Gbp-Dch: ignore
commit 88a0b8b1505bf83182804b180bfe17fd84d9e984
Author: Mike Gabriel <mike.gabriel@das-netzwerkteam.de>
Date: Sat Sep 9 23:04:59 2023 +0200
release as 2.12.36
commit 23b937e77c6a79b429293eef7e87b7661dc4efe7
Author: Guido Berhoerster <guido+freiesoftware@berhoerster.name>
Date: Fri Sep 8 09:05:43 2023 +0200
Add missing dependency on iptables
This is required by debian-edu-update-netblock (Closes: #1051446).
commit 35d62a9091001e1b12a6498da51976137644c0f6
Author: Guido Berhoerster <guido+freiesoftware@berhoerster.name>
Date: Thu Sep 7 08:13:15 2023 +0200
Do not use command paths in maintainer scripts
Fix lintian warning introduced in commit
9a38129b8c9de16bf658bcdef4423410e4aaf686.
commit 8ccc22b89cdb29cfc1e3382997d6c78a1c4642df
Author: Guido Berhoerster <guido+freiesoftware@berhoerster.name>
Date: Thu Sep 7 08:10:35 2023 +0200
Rename dhclient hook in Makefile
Followup to commit 912fa538970efd7175481779a5bde71f6d14d530.
commit de18a627339a8d976114aba23803ee31260c37ef
Author: Guido Berhoerster <guido+freiesoftware@berhoerster.name>
Date: Wed Sep 6 15:29:47 2023 +0200
Ship PAM group.conf for workstations
LDAP users should be members of several system groups on networked (roaming)
workstations.
commit da8c1dd309ed958565a8b95078caab9101eb394f
Author: Guido Berhoerster <guido+freiesoftware@berhoerster.name>
Date: Thu Sep 7 14:57:16 2023 +0200
Silence exim4 warnings in logfile
The lack of keep_environment in the exim4 configuration for clients leads to
continuous warnigs in the logfile:
Warning: purging the environment.
Suggested action: use keep_environment.
Setting it to an empty values (which is the default) silences that.
commit 912fa538970efd7175481779a5bde71f6d14d530
Author: Guido Berhoerster <guido+freiesoftware@berhoerster.name>
Date: Tue Sep 5 14:26:50 2023 +0200
Replace invocation of fetch-ldap-cert init script in DHCP hooks
This has been replaced by fetch-rootca-cert (see #971780).
commit 7028af6b19fc9a9588189b1828b4029d273cd154
Author: Guido Berhoerster <guido+freiesoftware@berhoerster.name>
Date: Tue Sep 5 14:25:39 2023 +0200
Remove direct invocation of wlan init script
This no longer exists in Debian.
commit 9a38129b8c9de16bf658bcdef4423410e4aaf686
Author: Guido Berhoerster <guido+freiesoftware@berhoerster.name>
Date: Tue Sep 5 14:23:57 2023 +0200
Do not solely rely on the presence of init scripts in maintainer scripts
Check also for systemd service files.
commit 7f7b819882e2fec58fd85d5d52db5248aafed48e
Author: Mike Gabriel <mike.gabriel@das-netzwerkteam.de>
Date: Tue Aug 29 16:25:51 2023 +0200
ldap-bootstrap/gosa.ldif: Provide ou=incoming potentially used by GOsa²'s class 'newArpDevice'. This is esp. to silence GOsa² error messages but might be useful at a later point of time.
commit 34b9ae60484989b676efba3dfce2ea61d557b317
Author: Guido Berhoerster <guido+freiesoftware@berhoerster.name>
Date: Mon Aug 21 10:16:39 2023 +0200
Use command -v builtin over external which command
commit a3a6e9f5cfc3d80154486191490ead2d2592a773
Author: Guido Berhoerster <guido+freiesoftware@berhoerster.name>
Date: Mon Aug 21 10:11:21 2023 +0200
Remove use of obsolete grep aliases
These have been obsolete forever and have been removed from GNU grep upstream.
commit 7c4d3a12f4f1a59fc87186fcee34ade386a10b53
Author: Guido Berhoerster <guido+freiesoftware@berhoerster.name>
Date: Mon Aug 21 09:26:36 2023 +0200
Update proxy settings in dconf
This adds support in update-proxy-from-wpad for setting the proxy default
values in dconf. The values are added to a site database, it also packages an
empty local database in order to obviate the need to modify the user profile.
(Closes: #955702)
commit ce6678053be939d1bad5f93e4b6cd00ad9a7f0ac
Author: Mike Gabriel <mike.gabriel@das-netzwerkteam.de>
Date: Sat Aug 19 17:24:08 2023 +0200
Start 2.12.36 development.
d/changelog entries will be written on release using the git commit
messages.
Use 'gbp dch --since 2.12.35' to write d/changelog entries since that
last release.
Gbp-Dch: ignore
Signed-off-by: Mike Gabriel <mike.gabriel@das-netzwerkteam.de>
