[opensuse-factory] preliminary release notes update for 12.2
Please, check the release notes and provide feedback (via bugzilla preferred). I just submitted a small update to Factory. These are basically the old release notes with checkit markers; many of them are systemd related. I still maintain the document at Berlios: https://svn.berlios.de/svnroot/repos/opensuse/trunk/documentation/release-no... Editor accounts are available on request ;) -- Karl Eichwalder SUSE LINUX Products GmbH R&D / Documentation Maxfeldstraße 5 90409 Nürnberg, Germany GF: Jeff Hawn, Jennifer Guild, Felix Imendörffer, HRB 16746 (AG Nürnberg) -- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-factory+owner@opensuse.org
On 16/06/12 00:24, Karl Eichwalder wrote:
Please, check the release notes and provide feedback (via bugzilla preferred).
I just submitted a small update to Factory. These are basically the old release notes with checkit markers; many of them are systemd related.
I still maintain the document at Berlios: https://svn.berlios.de/svnroot/repos/opensuse/trunk/documentation/release-no... Editor accounts are available on request ;)
I tried going to the above link but Firefox came up with this warning: http://picpaste.com/untrusted-site-LxRsmJTG.png so I didn't look as I didn't feel like being compromised. BC -- Using openSUSE 12.1 x86_64 KDE 4.8.3 and kernel 3.4.2 on a system with- AMD FX 8-core 3.6/4.2GHz processor 16GB PC14900/1866MHz Quad Channel Corsair "Vengeance" RAM Gigabyte AMD3+ m/board; Gigabyte nVidia GTX550Ti 1GB DDR5 GPU -- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-factory+owner@opensuse.org
Basil Chupin wrote:
On 16/06/12 00:24, Karl Eichwalder wrote:
Please, check the release notes and provide feedback (via bugzilla preferred).
I just submitted a small update to Factory. These are basically the old release notes with checkit markers; many of them are systemd related.
I still maintain the document at Berlios:
https://svn.berlios.de/svnroot/repos/opensuse/trunk/documentation/release-no...
Editor accounts are available on request ;)
I tried going to the above link but Firefox came up with this warning:
http://picpaste.com/untrusted-site-LxRsmJTG.png
so I didn't look as I didn't feel like being compromised.
Basil, that only says that the certificate presented by berlios could not be verified: "The certificate is not trusted because no issuer chain was provided." The certificate is issued by Berlios CA, but I can't find the root certificate. See also: http://developer.berlios.de/bugs/?func=detailbug&bug_id=12168&group_id=1 -- Per Jessen, Zürich (20.8°C) -- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-factory+owner@opensuse.org
On 16/06/12 17:32, Per Jessen wrote:
Basil Chupin wrote:
On 16/06/12 00:24, Karl Eichwalder wrote:
Please, check the release notes and provide feedback (via bugzilla preferred).
I just submitted a small update to Factory. These are basically the old release notes with checkit markers; many of them are systemd related.
I still maintain the document at Berlios:
https://svn.berlios.de/svnroot/repos/opensuse/trunk/documentation/release-no...
Editor accounts are available on request ;) I tried going to the above link but Firefox came up with this warning:
http://picpaste.com/untrusted-site-LxRsmJTG.png
so I didn't look as I didn't feel like being compromised. Basil, that only says that the certificate presented by berlios could not be verified: "The certificate is not trusted because no issuer chain was provided."
The certificate is issued by Berlios CA, but I can't find the root certificate. See also:
http://developer.berlios.de/bugs/?func=detailbug&bug_id=12168&group_id=1
And here we are spending time and effort about trying to decide what to do with Microsoft's UEFI and how it is going to affect openSUSE and you are saying that its only a matter that "the certificate presented by berlios could not be verified" :-) . Why can't the certificate be verified? What am I to do: believe Firefox's security extension and its warning or ignore it? :-) BC -- Using openSUSE 12.1 x86_64 KDE 4.8.3 and kernel 3.4.2 on a system with- AMD FX 8-core 3.6/4.2GHz processor 16GB PC14900/1866MHz Quad Channel Corsair "Vengeance" RAM Gigabyte AMD3+ m/board; Gigabyte nVidia GTX550Ti 1GB DDR5 GPU -- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-factory+owner@opensuse.org
Basil Chupin wrote:
On 16/06/12 17:32, Per Jessen wrote:
Basil Chupin wrote:
On 16/06/12 00:24, Karl Eichwalder wrote:
Please, check the release notes and provide feedback (via bugzilla preferred).
I just submitted a small update to Factory. These are basically the old release notes with checkit markers; many of them are systemd related.
I still maintain the document at Berlios:
https://svn.berlios.de/svnroot/repos/opensuse/trunk/documentation/release-no...
Editor accounts are available on request ;) I tried going to the above link but Firefox came up with this warning:
http://picpaste.com/untrusted-site-LxRsmJTG.png
so I didn't look as I didn't feel like being compromised. Basil, that only says that the certificate presented by berlios could not be verified: "The certificate is not trusted because no issuer chain was provided."
The certificate is issued by Berlios CA, but I can't find the root certificate. See also:
http://developer.berlios.de/bugs/?func=detailbug&bug_id=12168&group_id=1
And here we are spending time and effort about trying to decide what to do with Microsoft's UEFI and how it is going to affect openSUSE and you are saying that its only a matter that "the certificate presented by berlios could not be verified" :-) .
Why can't the certificate be verified?
Because the root certificate isn't installed on your browser or system.
What am I to do: believe Firefox's security extension and its warning or ignore it? :-)
Well, the right thing would be to a) decide if your trust Berlios or not, and b) install their root certificate if you do. However, as they apparently do not publish the root certificate, you only have the option of adding an exception to your browser. -- Per Jessen, Zürich (21.3°C) -- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-factory+owner@opensuse.org
On 16/06/12 18:00, Per Jessen wrote:
Basil Chupin wrote:
On 16/06/12 17:32, Per Jessen wrote:
Basil Chupin wrote:
On 16/06/12 00:24, Karl Eichwalder wrote:
Please, check the release notes and provide feedback (via bugzilla preferred).
I just submitted a small update to Factory. These are basically the old release notes with checkit markers; many of them are systemd related.
I still maintain the document at Berlios:
https://svn.berlios.de/svnroot/repos/opensuse/trunk/documentation/release-no...
Editor accounts are available on request ;) I tried going to the above link but Firefox came up with this warning:
http://picpaste.com/untrusted-site-LxRsmJTG.png
so I didn't look as I didn't feel like being compromised. Basil, that only says that the certificate presented by berlios could not be verified: "The certificate is not trusted because no issuer chain was provided."
The certificate is issued by Berlios CA, but I can't find the root certificate. See also:
http://developer.berlios.de/bugs/?func=detailbug&bug_id=12168&group_id=1 And here we are spending time and effort about trying to decide what to do with Microsoft's UEFI and how it is going to affect openSUSE and you are saying that its only a matter that "the certificate presented by berlios could not be verified" :-) .
Why can't the certificate be verified? Because the root certificate isn't installed on your browser or system.
What am I to do: believe Firefox's security extension and its warning or ignore it? :-) Well, the right thing would be to a) decide if your trust Berlios or not, and b) install their root certificate if you do. However, as they apparently do not publish the root certificate, you only have the option of adding an exception to your browser.
I am of the cautious type. Not paranoid, just cautious :-) . BC -- Using openSUSE 12.1 x86_64 KDE 4.8.3 and kernel 3.4.2 on a system with- AMD FX 8-core 3.6/4.2GHz processor 16GB PC14900/1866MHz Quad Channel Corsair "Vengeance" RAM Gigabyte AMD3+ m/board; Gigabyte nVidia GTX550Ti 1GB DDR5 GPU -- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-factory+owner@opensuse.org
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 2012-06-16 10:33, Basil Chupin wrote:
I am of the cautious type. Not paranoid, just cautious :-) .
When you setup a site with a certificate, you can go to a veritable certificate agency and buy one, for good money. Then it will work straight in any browser. Or you can buy it from a cheaper agency - but it may happen that the said agency does not have its master certificate installed in all browsers: then when some one goes to your site the browser will not be able to follow the chain of trust and they will see that warning message. Or you can create your own master certificate and site certificates, for no money - and users end in the same situation as above, they have to import the master certificate from you as well. The situation is secure, depending on what you want it for. For money, absolutely not. If your network is insecure, someone might give you a false master certificate. If you simply want to do free software things, accept that master certificate and accept that berlios and others do not want to pay money to the certificate agencies, that's all. There are cases. In Spain, our government has its own certificate agency which master certificate is not included in Firefox list. Are those certificates confiables? Yes, of course, but we have to trust them initially and add their master certificate. And this certificates are indeed used for money matters. Why the Spanish agency (FNMT) certificate is not included in FF list? No idea, perhaps because they did not bother to ask, perhaps because it is valid for Spain only... - -- Cheers / Saludos, Carlos E. R. (from 11.4 x86_64 "Celadon" at Telcontar) -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.16 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iEYEARECAAYFAk/ceygACgkQIvFNjefEBxqP0wCgziTM6xvl2sUR8Y/5kpN8AqKQ H7wAoK6GMG5rTLPAZsTZZM+pUiEwK/AG =cLrB -----END PGP SIGNATURE----- -- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-factory+owner@opensuse.org
Carlos E. R. wrote:
In Spain, our government has its own certificate agency which master certificate is not included in Firefox list. Are those certificates confiables? Yes, of course, but we have to trust them initially and add their master certificate. And this certificates are indeed used for money matters.
Why the Spanish agency (FNMT) certificate is not included in FF list? No idea, perhaps because they did not bother to ask, perhaps because it is valid for Spain only...
Sounds like they didn't bother asking - I see other national issuers in the list: http://www.mozilla.org/projects/security/certs/included/ There is also one Spanish provider listed - ACCV. -- Per Jessen, Zürich (19.9°C) -- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-factory+owner@opensuse.org
On 16/06/12 22:25, Carlos E. R. wrote:
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
On 2012-06-16 10:33, Basil Chupin wrote:
I am of the cautious type. Not paranoid, just cautious :-) . When you setup a site with a certificate, you can go to a veritable certificate agency and buy one, for good money. Then it will work straight in any browser.
Or you can buy it from a cheaper agency - but it may happen that the said agency does not have its master certificate installed in all browsers:
[.......]
Why the Spanish agency (FNMT) certificate is not included in FF list? No idea, perhaps because they did not bother to ask, perhaps because it is valid for Spain only...
I am getting the feeling that what you are trying to imply is that Firefox has some sort of a list of certificates installed as part of FF itself. It doesn't. Just like NoScript, AdBlock, etc. this side of security is controlled by an Extension called PERSPECTIVES which contains a database of sites which are considered "safe". <Shrugs shoulders> I don't know who is supposed to contact who to get their name on the "safe site" list - but at the moment Perspectives shows me that the site is unsafe :-) . (Last week I had some e-mails rejected as undeliverable because in one case my message was blocked because it was considered as spam by some idiot system in America, and the other because AT&T was blocking traffic from my ISP's domain address. The above may very well be along the same lines - bureaucracy gone mad :-) .) BC -- Using openSUSE 12.1 x86_64 KDE 4.8.3 and kernel 3.4.2 on a system with- AMD FX 8-core 3.6/4.2GHz processor 16GB PC14900/1866MHz Quad Channel Corsair "Vengeance" RAM Gigabyte AMD3+ m/board; Gigabyte nVidia GTX550Ti 1GB DDR5 GPU -- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-factory+owner@opensuse.org
Am 18.06.2012 09:17, schrieb Basil Chupin:
Why the Spanish agency (FNMT) certificate is not included in FF list? No idea, perhaps because they did not bother to ask, perhaps because it is valid for Spain only...
I am getting the feeling that what you are trying to imply is that Firefox has some sort of a list of certificates installed as part of FF itself. It doesn't.
? It has. At least in general. Actually on openSUSE the package mozilla-nss-certs has which is required and used by Firefox.
Just like NoScript, AdBlock, etc. this side of security is controlled by an Extension called PERSPECTIVES which contains a database of sites which are considered "safe".
This is just an addon not a general feature so it might be true for you but not for others. Wolfgang -- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-factory+owner@opensuse.org
On 18/06/12 17:24, Wolfgang Rosenauer wrote:
Am 18.06.2012 09:17, schrieb Basil Chupin:
Why the Spanish agency (FNMT) certificate is not included in FF list? No idea, perhaps because they did not bother to ask, perhaps because it is valid for Spain only... I am getting the feeling that what you are trying to imply is that Firefox has some sort of a list of certificates installed as part of FF itself. It doesn't. ? It has. At least in general. Actually on openSUSE the package mozilla-nss-certs has which is required and used by Firefox.
Ooops, you are right. Sorry. I forgot about that :-(
Just like NoScript, AdBlock, etc. this side of security is controlled by an Extension called PERSPECTIVES which contains a database of sites which are considered "safe". This is just an addon not a general feature so it might be true for you but not for others.
Wolfgang
BC -- Using openSUSE 12.1 x86_64 KDE 4.8.4 and kernel 3.4.3 on a system with- AMD FX 8-core 3.6/4.2GHz processor 16GB PC14900/1866MHz Quad Channel Corsair "Vengeance" RAM Gigabyte AMD3+ m/board; Gigabyte nVidia GTX550Ti 1GB DDR5 GPU -- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-factory+owner@opensuse.org
Basil Chupin wrote:
On 16/06/12 22:25, Carlos E. R. wrote:
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
On 2012-06-16 10:33, Basil Chupin wrote:
I am of the cautious type. Not paranoid, just cautious :-) . When you setup a site with a certificate, you can go to a veritable certificate agency and buy one, for good money. Then it will work straight in any browser.
Or you can buy it from a cheaper agency - but it may happen that the said agency does not have its master certificate installed in all browsers:
[.......]
Why the Spanish agency (FNMT) certificate is not included in FF list? No idea, perhaps because they did not bother to ask, perhaps because it is valid for Spain only...
I am getting the feeling that what you are trying to imply is that Firefox has some sort of a list of certificates installed as part of FF itself. It doesn't.
Yes it does. Preferences->Advanced->Encryption->View Certificates That opens the certificate manager which under "Authorities" will show you the collection of root certificates that is shipped with FF. The list is also available here: http://www.mozilla.org/projects/security/certs/included/
Just like NoScript, AdBlock, etc. this side of security is controlled by an Extension called PERSPECTIVES which contains a database of sites which are considered "safe".
That is something else, see http://perspectives-project.org/ -- Per Jessen, Zürich (23.7°C) -- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-factory+owner@opensuse.org
Per Jessen <per@computer.org> writes:
Well, the right thing would be to a) decide if your trust Berlios or not, and b) install their root certificate if you do. However, as they apparently do not publish the root certificate, you only have the option of adding an exception to your browser.
Yes, and it is partially my bad. In this case, HTTP would have equally fine (and firefox would not warn you that annoyingly): http://svn.berlios.de/svnroot/repos/opensuse/trunk/documentation/release-not... BTW, there is just the XML document. If you are interested in something human-readable, please download the release notes package from the build service. -- Karl Eichwalder SUSE LINUX Products GmbH R&D / Documentation Maxfeldstraße 5 90409 Nürnberg, Germany GF: Jeff Hawn, Jennifer Guild, Felix Imendörffer, HRB 16746 (AG Nürnberg) -- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-factory+owner@opensuse.org
On Fri, Jun 15, 2012 at 10:24 PM, Karl Eichwalder <ke@suse.de> wrote:
Please, check the release notes and provide feedback (via bugzilla preferred).
I just submitted a small update to Factory. These are basically the old release notes with checkit markers; many of them are systemd related.
I still maintain the document at Berlios: https://svn.berlios.de/svnroot/repos/opensuse/trunk/documentation/release-no... Editor accounts are available on request ;)
-- Karl Eichwalder SUSE LINUX Products GmbH R&D / Documentation Maxfeldstraße 5 90409 Nürnberg, Germany GF: Jeff Hawn, Jennifer Guild, Felix Imendörffer, HRB 16746 (AG Nürnberg) -- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-factory+owner@opensuse.org
Hi, Karl, I have no permission to 'svn commit' to Berlios svn repository. (seems it's different from svn.opensuse.org) so I attached my zh_CN.po here. please add. BTW, how to help editing release note? (they seems to be XML files and out of po directory.) or you're calling help for translation? Greetings, Marguerite
Marguerite Su <i@marguerite.su> writes:
I have no permission to 'svn commit' to Berlios svn repository. (seems it's different from svn.opensuse.org)
Yes, but sooner or later I'll probably move to opensuse.org with the release notes.
so I attached my zh_CN.po here. please add.
BTW, how to help editing release note? (they seems to be XML files and out of po directory.)
Yes, it is DocBook XML (RELEASE-NOTES-openSUSE.xml) and I restrict myself to a few simple tagging elements only. We usually discuss entries in Bugzilla first. This mean, if you want to add something "serious", create a Bugzilla entry and ask one of the experts for approval.
or you're calling help for translation?
This time, I did not. RN translations take place in the 'lcn' directory of the opensuse translation SVN. I think it is too early to start with the RN translations now. -- Karl Eichwalder SUSE LINUX Products GmbH R&D / Documentation Maxfeldstraße 5 90409 Nürnberg, Germany GF: Jeff Hawn, Jennifer Guild, Felix Imendörffer, HRB 16746 (AG Nürnberg) -- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-factory+owner@opensuse.org
On Fri, Jun 15, 2012 at 04:24:01PM +0200, Karl Eichwalder wrote:
Please, check the release notes and provide feedback (via bugzilla preferred).
I just submitted a small update to Factory. These are basically the old release notes with checkit markers; many of them are systemd related.
Do you plan to merge the wiki page with upcomming features? http://en.opensuse.org/openSUSE:Upcoming_features Regards Michal Vyskocil
I still maintain the document at Berlios: https://svn.berlios.de/svnroot/repos/opensuse/trunk/documentation/release-no... Editor accounts are available on request ;)
-- Karl Eichwalder SUSE LINUX Products GmbH R&D / Documentation Maxfeldstraße 5 90409 Nürnberg, Germany GF: Jeff Hawn, Jennifer Guild, Felix Imendörffer, HRB 16746 (AG Nürnberg) -- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-factory+owner@opensuse.org
Michal Vyskocil <mvyskocil@suse.cz> writes:
Do you plan to merge the wiki page with upcomming features? http://en.opensuse.org/openSUSE:Upcoming_features
Thanks for the hint, and I'll take a look (ATM, there are still many uncertainities such as "somethings" and "might also ship"). But usually I do not list new features just because they are now; I only list bugs (and workarounds) or changed things to warn users that upgrade. These technical RN are not a marketing document :) -- Karl Eichwalder SUSE LINUX Products GmbH R&D / Documentation Maxfeldstraße 5 90409 Nürnberg, Germany GF: Jeff Hawn, Jennifer Guild, Felix Imendörffer, HRB 16746 (AG Nürnberg) -- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-factory+owner@opensuse.org
participants (7)
-
Basil Chupin -
Carlos E. R. -
Karl Eichwalder -
Marguerite Su -
Michal Vyskocil -
Per Jessen -
Wolfgang Rosenauer