Debian Project News - January 1st, 2016
Welcome to this year's ninth issue of DPN, the newsletter for the Debian community. Topics covered in this issue include:
- Mourning Ian Murdock
NewDebian Project News
- Internal News/Happenings
- Help needed
- More than just code
- Outside News
- Want to continue reading DPN?
Debian is saddened to share the news of the passing of Ian Murdock. Ian was not only the founder of Debian, but friend and mentor to many. We will miss him dearly.
The publication of this issue of the Debian Project News has been delayed with this sad news, along with the preparation of a dedicated announcement that will be published soon on the debian-announce mailing list and the website. Thus what should have been the last DPN issue of 2015 has become the first of 2016. In any case, we hope you find it useful.
This is our second newly revised issue of the DPN. We have shifted some of the content around, introduced new sections, and moved some content onto the Bits from Debian blog.
Bits from Debian will showcase new packages and interviews, plus some announcements, and is where we will welcome new DDs.
We are planning to send more short news items via our social network account. Please be sure to follow us on identi.ca/debian (or fall back to the non-official mirrors in other social networks).
One of the major changes is the removal of the DSA security advisories from the newsletter. Debian's Security Team releases current advisories on a daily basis (Security Advisories 2015), so please read them carefully and take the proper measures.
If you need to be kept up to date about security advisories released by the Debian Security Team, please subscribe to the security mailing list (and the separate backports list, stable updates list, and long term support security updates list) for announcements.
We are simplifying and (we hope) improving the
help needed section.
From now on, you will find:
- links to packages needing help,
- links to bug reports tagged
- calls for help from teams in coordination with the Welcome Team, tailored for first-time contributors.
FAI 5.0 released
After several months of hard work, the FAI team is very happy to announce their new major release 5.0.
FAI (Fully Automatic Installation) is a non-interactive system to install, customise, and manage Linux systems and software configurations on computers as well as virtual machines and chroot environments. FAI is a long-standing project in Debian and was started in 1999.
The new FAI ISO image now supports the installation of Debian 8 with XFCE or GNOME desktop, Ubuntu 14.04, and CentOS 7.
Read the full feature list, download installation images (for CD/DVD or USB sticks), or watch screenshots and videos on the FAI project website.
Official Debian Images for Microsoft Azure
The Microsoft Azure platform officially endorses and supports Debian, by providing in their marketplace official Debian images, which are created in collaboration between several Debian teams (the Debian Cloud Team, Debian Trademark Team, and Debian CD Team), credativ GmbH (Debian development partner), and Microsoft.
Kernel oops collector is back in Debian!
Debian's Kernel oops collector has returned to Debian thanks to the efforts of Bálint Réczey. The kerneloops collector available in unstable sends reports to the Linux Kernel Oops Service, which collects kernel errors from all over the world helping kernel developers find and fix kernel issues that otherwise are not reported.
Mini DebConf at 2015 Latinoware Report
Giovani Ferreira reported on a Mini DebConf that occurred on October 15 2015 during Latinoware in Brazil. Debian Developers Antonio Terceiro, Felipe Augusto van de Wiel, João Eriberto Mota Filho, and Thadeu Lima de Souza Cascardo were present and presented a number of talks on the Debian Project and ways to contribute.
At the end of the programme new contributors and speakers spoke about how to
collaborate with Debian specifically in Brazil, and gave an
everything you wanted
to know about Debian session. In addition to the presentation, the project had a
stand available at the exposition to receive stakeholders and distribute merchandise.
Annual Deb Med Advent Calendar
The Debian Med Advent Calendar ran from December 1 through to 24. This annual event aims at squashing bugs each day and marking them on their Advent Calendar. This year they were able to close more than 50% of open bugs, 150 in total! Many thanks to all who contributed.
General Resolution: Update Standard Resolution Procedure
Once upon a time in Debian:
- 1996-12-12 The Debian
Rexrelease announced by Bruce Perens.
- 2004-11-28 Package signing added to apt
Contributors1,974 people and 18 teams are listed on the Debian Contributors page for 2015.
DebConf16 needs your help to raise funds
We are well into the organisation of DebConf16, which will take place in Cape Town, South Africa, in July of 2016. The Debconf Fundraising Team asks every Debian contributor to consider acting as an advocate for Debian, by asking your organisations to sponsor DebConf, particularly if your organisation is either entirely new to sponsoring Debian, or has not sponsored Debian recently. You can download a brochure and a flyer to help with the effort. They summarise what Debian and DebConf are and list the available sponsorship benefits.
Although it would be great if the request came from someone known, if you would prefer not to ask directly, please contact the Fundraising Team with any leads.
Debian will be at 2016 FOSDEM!
Debian put forth a booth proposal which was accepted by FOSDEM and we will have one table at the 2016 FOSDEM event. A Call for Help is needed for volunteers, organising, mailing, booth presence, and other items. Help us put our best forward at this amazing event!
Packages needing help:
Debian has a newcomer bug tag used to indicate bugs which are suitable for new contributors to use as an entry point to working on specific packages.
There are 153 newcomer bugs available.
Tips and Tricks
David Bremner shares a quick How-To for a Bootable Debian USB. Jonathan McDowell shows how to Update Brother HL-3040CN firmware from Linux. Simon Josefsson explains an Automatic Replicant Backup over USB using rsync.
Long Term Support for Squeeze reported 71.50 hours of paid support in September,
85.50 hours in October,
and 114.50 hours in November
following an ascending curve.
Now the project jumped from 50% to 65% of the
objective of the equivalent of a full-time position with a single new
sponsor said Raphaël Hertzog
in the monthly Freexian report about Debian Long Term Support,
greeting the first Platinum sponsor: TOSHIBA (through Toshiba Software Development
Vietnam). These work hours are regularly distributed between eight paid
contributors: Ben Hutchings, Chris Lamb, Guido Günther, Mike Gabriel,
Raphaël Hertzog, Santiago Ruano Rincon, Scott Kitterman, and Thorsten
Altenholz. In terms of security, at the end of November, the dla-needed.txt
file listed 19 packages awaiting an update; the list of open vulnerabilities
in Squeeze shows about 22 affected packages in total, which is around the
average of the last months.
Guido Günther reported on his contributed LTS work for August; he worked on pykerberos, wordpress and the Common Vulnerabilities and Exposures (CVE) triage for nine CVE items. In September he worked on glibc and nss, with nine CVEs. For the month of October he worked on krb5 and the triaging of 16 CVEs. He also added indentation support to LTS CVE/list Emacs on his own time, leading into December with work on krb5 and nss. After observing that nss requires frequent updates, he added autopkg tests to the process and discussed using the same version in all suites.
Thorsten Alteholz reported on his September LTS contributions, work on a new version of php5, a php5 update, openldap, and rpcbind. In October he worked on updates for freeimage, polarssl, and libxml along with nine CVEs fixed. For November he worked on php5, libpng, and libsndfile along with additional security bugs.
The Debian 6
Squeeze long term support will continue until
February 2016. The LTS cycle of Debian 7
Wheezy is planned to run from
February 2016 to May 2018.
Reproducible Build status/update
The Reproducible Builds project produces weekly reports on package and toolchain fixes in the Stretch cycle.
- Week 24 reports 31 packages moved to reproducible state, 103 packages reviewed and a total of 29 packages updated. 72 packages have been identified as failing to build from source.
- Week 25 reports 130 packages moved to reproducible state, 70 packages reviewed and a total of 17 packages updated. 22 packages have been identified as failing to build from source.
- Week 26 reports 28 packages moved to reproducible state, 44 packages reviewed and a total of 48 packages updated. 70 packages have been identified as failing to build from source.
- Week 27 reports 22 packages moved to reproducible state, 206 packages reviewed and a total of 196 packages updated. 28 packages have been identified as failing to build from source.
- Week 28 reports 37 packages moved to reproducible state, 70 packages reviewed and a total of 17 packages updated. 22 packages have been identified as failing to build from source.
- Week 29 reports 41 packages moved to reproducible state, 133 packages reviewed and a total of 103 packages updated. 57 packages have been identified as failing to build from source.
- Week 30 reports 24 packages moved to reproducible state, 180 packages reviewed and a total of 59 packages updated. 70 packages have been identified as failing to build from source.
- Week 31 reports 17 packages moved to reproducible state, 78 packages reviewed and a total of 49 packages updated. 25 packages have been identified as failing to build from source.
- Week 32 reports 21 packages moved to reproducible state, 27 packages reviewed and a total of 14 packages updated. 4 packages have been identified as failing to build from source.
- Week 33 reports 43 packages moved to reproducible state, 113 packages reviewed and a total of 56 packages updated. 42 packages have been identified as failing to build from source.
- Week 34 reports 61 packages moved to reproducible state, 143 packages reviewed and a total of 22 packages updated. 12 packages have been identified as failing to build from source.
Software Freedom Conservancy Needs Donors!
The Software Freedom Conservancy (SFC) helps promote, improve, develop, and defend Free, Libre, and Open Source Software (FLOSS) projects and provides a non-profit home and infrastructure for FLOSS projects.
Last August, Debian and Conservancy announced a partnership and formed the Copyright Aggregation Project where, among other things, Conservancy will be able to hold copyrights for some Debian works and ensure compliance with copyleft so that those works remain in free software.
Recently, Conservancy launched a major fundraising campaign and needs more individual supporters to gain more sustainable and independent funding. This will allow the Conservancy to continue its efforts towards convincing more companies to comply with free software licenses such as the GPL and take legal actions when dialogue turns out to be unsuccessful. Conservancy needs your support now, more than ever!
Please help us create this newsletter. We still need more volunteer writers to watch the Debian community and report about what is going on. Please see the contributing page to find out how to help. We're looking forward to receiving your mail at firstname.lastname@example.org.
To receive this newsletter in your mailbox, subscribe to the debian-news mailing list.
Back issues of this newsletter are available.
This issue of Debian Project News was edited by Cédric Boutillier, Jean-Pierre Giraud, Donald Norwood, Laura Arjona Reina, Justin B Rye and Paul Wise.