[ubuntu/trusty-proposed] audit 1:2.3.2-2ubuntu1 (Accepted)
Tyler Hicks
tyhicks at canonical.com
Wed Dec 4 15:43:13 UTC 2013
audit (1:2.3.2-2ubuntu1) trusty; urgency=low
* Migrate from the Ubuntu-specific way of providing a rules directory
(/etc/audit/rules.d/) to the new, upstream rules directory feature based
on /sbin/augenrules. If USE_AUGENRULES is set to "yes" in
/etc/default/auditd, then the auditd init script will use
/etc/audit/rules.d/*.rules files to generate /etc/audit/audit.rules.
Instead of generating the /etc/audit/audit.rules file, the old
Ubuntu-specific way of handling a rules directory parsed
/etc/audit/audit.rules, in addition to the /etc/audit/rules.d/*.rules
files.
- debian/auditd.preinst, debian/auditd.postinst, debian/auditd.postrm:
When upgrading from a version without augenrules, check for a
pre-existing rules directory (/etc/audit/rules.d/). If it exists and is
populated with rules files, move /etc/audit/audit.rules to
/etc/audit/rules.d/audit.rules and set USE_AUGENRULES to "yes". This
migration logic should be dropped after the 14.04 release.
* Merge from Debian testing (LP: #1251795). Remaining changes:
- debian/rules: Disable auditd network listener, with --disable-listener,
to reduce the risk of a remote attack on auditd, which runs as root
- debian/control, debian/rules: Remove libwrap0-dev Build-Dependency and
--with-libwrap configure argument since libwrap is only used by the
auditd network listener
* Dropped changes:
- debian/auditd.init: apply the intent of Peter Moody's patch to add
support for rules.d directory for splitting out audit.d rules
+ The new augenrules tool, called from the init script, replaces this
- debian/control: The upstream audit sources embed and build against their
own version of libev. This is not desirable, but there's no reason to
list libev-dev as a build dependency at this time.
+ Debian commented out the libev Build-Dependency
- debian/patches/FTBFS-python-multiarch.diff: No longer needed
- debian/patches/fix-asprintf-warnings.patch,
debian/patches/fix-unused-result-warnings.patch
debian/patches/fix-discards-const-qualifier-warnings.patch: Present in
upstream release
* debian/auditd.init: The start command now requires $remote_fs to be
started because it may call /bin/augenrules, which depends on
/usr/bin/awk. $PATH must also be updated so that augenrules can find awk.
audit (1:2.3.2-2) unstable; urgency=low
* QA upload.
* Upload to unstable.
audit (1:2.3.2-1) experimental; urgency=low
* QA upload.
* New upstream release
* debian/control, debian/rules: Add support for dh-systemd
* debian/rules: Call dh_installinit with --restart-after-upgrade to minimize
downtime
* debian/patches/01-no-refusemanualstop.patch: Remove RefuseManualStop=yes
option, this is preventing the auditd daemoin to be restarted on upgrade
audit (1:2.3.1-1) experimental; urgency=low
* QA upload.
* New upstream release
- debian/libauparse0.symbols: Adjust .symbols file
* debian/control: Bump Standards-Version to 3.9.4 (no further changes)
* debian/control: Use canonical URL for VCS field
* debian/auditd.init: Remove the usage of the VERBOSE variable
(see lintian error: init.d-script-call-internal-API)
audit (1:2.3-1) experimental; urgency=low
* QA upload.
* New upstream release
* debian/auditd.install: Install /sbin/augenrules and the related manpage
* debian/auditd.post{inst,rm}: /etc/audit/audit.rules is no longer shipped
in the package, copy it on first installation and remove it on purge.
* debian/auditd.default, debian/auditd.init: Automatically generate
/etc/audit/audit.rules on start if USE_AUGENRULES is set to yes
* debian/auditd.NEWS, debian/auditd.README.Debian: Add documentation about
automatically generating the audit.rules file on startup.
* debian/auditd.lintian-overrides: Adjust overrides to match new installed
config files.
* debian/auditd.default, debian/auditd.init: Add an option to disable the
audit system when the daemon is stopped.
audit (1:2.2.3-1) experimental; urgency=low
* QA upload.
* New upstream release
- Properly document audit_open() can fails and sets errno (Closes: #642501)
- Drop all the patches, they have been applied upstream
* Remove libev-dev Build-Dependency
- debian/control: The upstream audit sources embed and build against their
own version of libev. This is not desirable, but there's no reason to
list libev-dev as a build dependency at this time. (Closes: #699933)
Date: Fri, 15 Nov 2013 17:24:58 -0800
Changed-By: Tyler Hicks <tyhicks at canonical.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Signed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
https://launchpad.net/ubuntu/trusty/+source/audit/1:2.3.2-2ubuntu1
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Fri, 15 Nov 2013 17:24:58 -0800
Source: audit
Binary: auditd libauparse0 libauparse-dev libaudit1 libaudit-common libaudit-dev python-audit audispd-plugins
Architecture: source
Version: 1:2.3.2-2ubuntu1
Distribution: trusty
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Tyler Hicks <tyhicks at canonical.com>
Description:
audispd-plugins - Plugins for the audit event dispatcher
auditd - User space tools for security auditing
libaudit-common - Dynamic library for security auditing - common files
libaudit-dev - Header files and static library for security auditing
libaudit1 - Dynamic library for security auditing
libauparse-dev - Header files and static library for the libauparse0 library
libauparse0 - Dynamic library for parsing security auditing
python-audit - Python bindings for security auditing
Closes: 642501 699933
Launchpad-Bugs-Fixed: 1251795
Changes:
audit (1:2.3.2-2ubuntu1) trusty; urgency=low
.
* Migrate from the Ubuntu-specific way of providing a rules directory
(/etc/audit/rules.d/) to the new, upstream rules directory feature based
on /sbin/augenrules. If USE_AUGENRULES is set to "yes" in
/etc/default/auditd, then the auditd init script will use
/etc/audit/rules.d/*.rules files to generate /etc/audit/audit.rules.
Instead of generating the /etc/audit/audit.rules file, the old
Ubuntu-specific way of handling a rules directory parsed
/etc/audit/audit.rules, in addition to the /etc/audit/rules.d/*.rules
files.
- debian/auditd.preinst, debian/auditd.postinst, debian/auditd.postrm:
When upgrading from a version without augenrules, check for a
pre-existing rules directory (/etc/audit/rules.d/). If it exists and is
populated with rules files, move /etc/audit/audit.rules to
/etc/audit/rules.d/audit.rules and set USE_AUGENRULES to "yes". This
migration logic should be dropped after the 14.04 release.
* Merge from Debian testing (LP: #1251795). Remaining changes:
- debian/rules: Disable auditd network listener, with --disable-listener,
to reduce the risk of a remote attack on auditd, which runs as root
- debian/control, debian/rules: Remove libwrap0-dev Build-Dependency and
--with-libwrap configure argument since libwrap is only used by the
auditd network listener
* Dropped changes:
- debian/auditd.init: apply the intent of Peter Moody's patch to add
support for rules.d directory for splitting out audit.d rules
+ The new augenrules tool, called from the init script, replaces this
- debian/control: The upstream audit sources embed and build against their
own version of libev. This is not desirable, but there's no reason to
list libev-dev as a build dependency at this time.
+ Debian commented out the libev Build-Dependency
- debian/patches/FTBFS-python-multiarch.diff: No longer needed
- debian/patches/fix-asprintf-warnings.patch,
debian/patches/fix-unused-result-warnings.patch
debian/patches/fix-discards-const-qualifier-warnings.patch: Present in
upstream release
* debian/auditd.init: The start command now requires $remote_fs to be
started because it may call /bin/augenrules, which depends on
/usr/bin/awk. $PATH must also be updated so that augenrules can find awk.
.
audit (1:2.3.2-2) unstable; urgency=low
.
* QA upload.
* Upload to unstable.
.
audit (1:2.3.2-1) experimental; urgency=low
.
* QA upload.
* New upstream release
* debian/control, debian/rules: Add support for dh-systemd
* debian/rules: Call dh_installinit with --restart-after-upgrade to minimize
downtime
* debian/patches/01-no-refusemanualstop.patch: Remove RefuseManualStop=yes
option, this is preventing the auditd daemoin to be restarted on upgrade
.
audit (1:2.3.1-1) experimental; urgency=low
.
* QA upload.
* New upstream release
- debian/libauparse0.symbols: Adjust .symbols file
* debian/control: Bump Standards-Version to 3.9.4 (no further changes)
* debian/control: Use canonical URL for VCS field
* debian/auditd.init: Remove the usage of the VERBOSE variable
(see lintian error: init.d-script-call-internal-API)
.
audit (1:2.3-1) experimental; urgency=low
.
* QA upload.
* New upstream release
* debian/auditd.install: Install /sbin/augenrules and the related manpage
* debian/auditd.post{inst,rm}: /etc/audit/audit.rules is no longer shipped
in the package, copy it on first installation and remove it on purge.
* debian/auditd.default, debian/auditd.init: Automatically generate
/etc/audit/audit.rules on start if USE_AUGENRULES is set to yes
* debian/auditd.NEWS, debian/auditd.README.Debian: Add documentation about
automatically generating the audit.rules file on startup.
* debian/auditd.lintian-overrides: Adjust overrides to match new installed
config files.
* debian/auditd.default, debian/auditd.init: Add an option to disable the
audit system when the daemon is stopped.
.
audit (1:2.2.3-1) experimental; urgency=low
.
* QA upload.
* New upstream release
- Properly document audit_open() can fails and sets errno (Closes: #642501)
- Drop all the patches, they have been applied upstream
* Remove libev-dev Build-Dependency
- debian/control: The upstream audit sources embed and build against their
own version of libev. This is not desirable, but there's no reason to
list libev-dev as a build dependency at this time. (Closes: #699933)
Checksums-Sha1:
b715f0e20c45706291ccb0344784b6f7c4ad3a65 2431 audit_2.3.2-2ubuntu1.dsc
fb135dc049b3cc60843045fd67fa9704b4aba67a 947897 audit_2.3.2.orig.tar.gz
ac9ff00907a9dfd1de1e54e4b80d4a24e94636d0 14702 audit_2.3.2-2ubuntu1.debian.tar.gz
Checksums-Sha256:
2670ea995e20abd7cc3fb8cc86f66d9c040e156ffccbeea34324759d1ea3e750 2431 audit_2.3.2-2ubuntu1.dsc
8872e0b5392888789061db8034164305ef0e1b34543e1e7004d275f039081d29 947897 audit_2.3.2.orig.tar.gz
9aa22280f6248f0f750a6aea84624907d796872ecdca17936cd48888a50a4104 14702 audit_2.3.2-2ubuntu1.debian.tar.gz
Files:
873173fd346413d6622201bbd69731b9 2431 libs extra audit_2.3.2-2ubuntu1.dsc
4e8d065b5cc16b77b9b61e93a9ed160e 947897 libs extra audit_2.3.2.orig.tar.gz
6e12dc895e282fc60b33626539a1e858 14702 libs extra audit_2.3.2-2ubuntu1.debian.tar.gz
Original-Maintainer: Debian QA Group <packages at qa.debian.org>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.14 (GNU/Linux)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=6Fqp
-----END PGP SIGNATURE-----
More information about the Trusty-changes
mailing list