Back to amanda PTS page

Accepted amanda 1:3.3.9-1 (source amd64) into unstable



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sat, 13 Aug 2016 10:13:13 +0100
Source: amanda
Binary: amanda-common amanda-server amanda-client
Architecture: source amd64
Version: 1:3.3.9-1
Distribution: unstable
Urgency: low
Maintainer: Jose M Calhariz <jose@calhariz.com>
Changed-By: Jose M Calhariz <jose@calhariz.com>
Description:
 amanda-client - Advanced Maryland Automatic Network Disk Archiver (Client)
 amanda-common - Advanced Maryland Automatic Network Disk Archiver (Libs)
 amanda-server - Advanced Maryland Automatic Network Disk Archiver (Server)
Closes: 759871 816961 830725
Changes:
 amanda (1:3.3.9-1) unstable; urgency=low
 .
   * Imported Upstream version 3.3.9
     * Changes for 3.3.9
         * new --with-security-file configure option
           - It set the default security file
           - default to /etc/amanda-security.conf
       * security-fix
           - All previous release of amanda allow the 'amanda' user to execute
             any code as root, and to execute an interactive shell as root.
           - This is a security vulnerability if you do not trust the 'amanda'
             user.
           - There is no need to upgrade if you trust the 'amanda' user and the
             account is secure.
               - good password
               - secure xinetd.conf setting
               - securae .amandahosts setting
           - The 'amanda' user can read all files in the machine, it is what a
             backup program do.
           - The set of fix disable the abilities to run unwanted code as root
             or to write file anywhere in the filesystem.
       * /etc/amanda-security.conf
           - A file that contains security setting.
           - It list all binaries amanda can execute as root
           - restore_by_amanda_user
               - It tell if the 'amanda' user can do restore as root.
               - It allow the 'amanda' user to write files anywhere in the
                 filesystem
           - see: man amanda-security.conf
       * amgtar/amstar/ambsdtar/runtar
           - Disable arguments that can fork program.
           - Verify the realpath (with symbolic link resolved) is in the
             amanda-security.conf file.
           - Verify the tar/star/bsdtar realpath program is secure
               - owned by root and modifiable only by root.
           - On restore, check the restore_by_amanda_user setting if not run
             by root.
 .
   * Fix to configure and build with future openssl v1.1, but fail to link.
   * Bump Standards-Version to 3.9.8, no changes needed.
   * New configuration file /etc/amanda-security.conf.
   * Update translations pt_BR (Closes: #816961) and tr (Closes: #759871).
   * Fix uri on Vcs-* fields.
   * Add missing description and author to patches.
   * Use set command to setup options of scripts.
   * Change to new style of rules.
   * Make amanda build reproducible (Closes: #830725).  Thank you Chris Lamb.
Checksums-Sha1:
 1685ac16605a2414e5c343639df7ff1e4a4d2950 2190 amanda_3.3.9-1.dsc
 ff2f79fffe880a01c97029651c847fa1dbe96264 4567354 amanda_3.3.9.orig.tar.gz
 565ddc0b35826d2f1408049e0d0cf8a3f22f7758 42048 amanda_3.3.9-1.debian.tar.xz
 4d58a0dac39edb86f0c761c1a464807cda1a4854 522988 amanda-client-dbgsym_3.3.9-1_amd64.deb
 2d056e14e5507da4c9d3cae86754c4ae1d57b00b 384552 amanda-client_3.3.9-1_amd64.deb
 209cbc21b3d3c8019b8a09274e603bfb1febebd6 4158346 amanda-common-dbgsym_3.3.9-1_amd64.deb
 7e10200ddcb4ed134526194711ea182130f09fee 1568126 amanda-common_3.3.9-1_amd64.deb
 20b16fb6b8f78748043ce49dbf11d41e3867960c 365102 amanda-server-dbgsym_3.3.9-1_amd64.deb
 576dc4b80e90aafcba359d0cfcb26896a716a03b 438456 amanda-server_3.3.9-1_amd64.deb
Checksums-Sha256:
 4a3e483db1f6538574e45e3c8df9c7f85960230ec38c58f267a1f8a6eedaeb59 2190 amanda_3.3.9-1.dsc
 7cd570d85ecdd22a59d31531d28dcd7594bb3188cec0a856ff249ee1389a8483 4567354 amanda_3.3.9.orig.tar.gz
 58759c481e6bf4400629637948ff6906fc473f79fa0dfd7527bbef6feb82257c 42048 amanda_3.3.9-1.debian.tar.xz
 2d58402078aac8bfd9c59c179a04966bf18be9a972fa109798864759eedefc8d 522988 amanda-client-dbgsym_3.3.9-1_amd64.deb
 ffe03783fcd6037b765842475307f1bcae2c3b3c36f2f1e969416fd332a46b6b 384552 amanda-client_3.3.9-1_amd64.deb
 723680ff4021cf8a9d680447fd516d9425079b4e1feade80ad8d0a686e9f4121 4158346 amanda-common-dbgsym_3.3.9-1_amd64.deb
 ff389005a7cb0cc028fac8a43fc69b1d5c9329f2f967c4b4c184f3ede43c1cc7 1568126 amanda-common_3.3.9-1_amd64.deb
 fd7ac5b550c5474ba40e3548f3abf8dca98382347931d9b1e90d7c293463cf8f 365102 amanda-server-dbgsym_3.3.9-1_amd64.deb
 df6b9758b3cdb98c310a974cb15805f92cbeff4f65f9a5a48e6c9cf2972ce568 438456 amanda-server_3.3.9-1_amd64.deb
Files:
 a1f7a636dc9e9bd9e0f4dad695543662 2190 utils optional amanda_3.3.9-1.dsc
 fa7f84cdb70c8423051d2c66a3e863fd 4567354 utils optional amanda_3.3.9.orig.tar.gz
 3d6ab5ee86ae325f01eea1897131f885 42048 utils optional amanda_3.3.9-1.debian.tar.xz
 64b4e29c0b71318dc851b75d4d61ce21 522988 debug extra amanda-client-dbgsym_3.3.9-1_amd64.deb
 f40efe4c928cce539565022acf8095bd 384552 utils optional amanda-client_3.3.9-1_amd64.deb
 a7549fb4992cbcf9d2f4e742cee12350 4158346 debug extra amanda-common-dbgsym_3.3.9-1_amd64.deb
 5ed76751342cc5f1e310f8753f099014 1568126 utils optional amanda-common_3.3.9-1_amd64.deb
 ecf201d4ba86e635daa600e3926bd77d 365102 debug extra amanda-server-dbgsym_3.3.9-1_amd64.deb
 ee31ca2496c025ddc6f1fb03357feec7 438456 utils optional amanda-server_3.3.9-1_amd64.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
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=6Lv4
-----END PGP SIGNATURE-----