[blog] 01/02: move archlinux imap issue to #136

Holger Levsen holger at layer-acht.org
Tue Dec 5 01:39:48 UTC 2017 

This is an automated email from the git hooks/post-receive script.

holger pushed a commit to branch master
in repository blog.

commit 5fb057d93a9a7a5a4763e7eeae971d2aa46730de
Author: Holger Levsen <holger at layer-acht.org>
Date:   Tue Dec 5 01:38:29 2017 +0000

    move archlinux imap issue to #136
    
    Signed-off-by: Holger Levsen <holger at layer-acht.org>
---
 drafts/136.mdwn | 12 ++++++++++++
 drafts/137.mdwn | 10 ----------
 2 files changed, 12 insertions(+), 10 deletions(-)

diff --git a/drafts/136.mdwn b/drafts/136.mdwn
index 1767597..3b16353 100644
--- a/drafts/136.mdwn
+++ b/drafts/136.mdwn
@@ -9,6 +9,18 @@ Media coverage
 
 * A while back, on October 31st 2017, Ludovic Courtès wrote a [summary about the status of Reproducible Guix](https://gnu.org/software/guix/news/reproducible-builds-a-status-update.html), which for them led to a nice and unexpected benefit: faster downloads!
 
+Arch Linux imap key leakage
+---------------------------
+
+A [security issue](https://bugs.archlinux.org/task/56484) was found on the imap
+package for Arch Linux thanks to the reproducible builds efforts. Due to a
+hardcoded key-generation routine in the build() step of imap's PKGBUILD (the
+standard packaging file for Arch Linux pakcages), a default secret key was
+generated and leaked on all imap installations. 
+
+This was prompty reviewed, confirmed and fixed by the Arch Linux package
+maintainers.
+
 Debian Packages reviewed and fixed, and bugs filed
 -------------------------------------------
 
diff --git a/drafts/137.mdwn b/drafts/137.mdwn
index 06b2da4..0ee763a 100644
--- a/drafts/137.mdwn
+++ b/drafts/137.mdwn
@@ -16,14 +16,4 @@ lede/openwrt package feeds
         	https://github.com/openwrt/packages/pull/5217 
 		https://github.com/openwrt/packages/pull/5218
 
-Arch Linux imap key leakage
----------------------------
 
-A [security issue](https://bugs.archlinux.org/task/56484) was found on the imap
-package for Arch Linux thanks to the reproducible builds efforts. Due to a
-hardcoded key-generation routine in the build() step of imap's PKGBUILD (the
-standard packaging file for Arch Linux pakcages), a default secret key was
-generated and leaked on all imap installations. 
-
-This was prompty reviewed, confirmed and fixed by the Arch Linux package
-maintainers.

-- 
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/reproducible/blog.git

More information about the Reproducible-commits mailing list