Ubuntu
libapache-mod-security package

Please sync libapache-mod-security from Debian Unstable (Main)

Bug #247268 reported by gunfus
16
Affects Status Importance Assigned to Milestone
libapache-mod-security (Ubuntu)
Fix Released
Wishlist
Dustin Kirkland 

Bug Description

Upstream resolved the licensing problem that cause this to be removed from Debian/Ubuntu and so the sync blacklist should be removed and the package sync'ed from Debian. Note that despite the date on the debian/changelog entry, this just got out of New recently:

libapache-mod-security (2.5.6-1) unstable; urgency=low
   * The 'Back to the archive!' Release (Closes: #487431)
   * Drop '2' from package name, now libapache-mod-security
   * New upstream release
     - Includes a new licensing exception that allows binary
       distribution with licenses not compatible with GPLv2,
       such as Apache's. See MODSECURITY_LICENSING_EXCEPTION
   * Removed debian/bug and debian/rules entry to install bug
     handling when out of the archive.
   * Bumped Standards-Version to 3.8.0.0

 -- Alberto Gonzalez Iniesta <email address hidden> Fri, 08 Aug 2008 13:31:56 +0200

See original description
Revision history for this message
Hanno Stock (hefe_bia) (hanno-stock) wrote :

There is/was a licensing problem with mod_security that makes the distribution of the binary illegal. (See bug #19832)

However upstream has just recently added a license exception, which might solve this issue. Debian-Legal has been notified, but no decision has been made, yet.
(See http://groups.google.com/group/linux.debian.legal/browse_thread/thread/d4b4a74c82042abd)

Changed in libapache-mod-security:
status: New → Confirmed
Kees Cook (kees)
Changed in libapache-mod-security:
status: Confirmed → Won't Fix
Revision history for this message
Tim Thomson (tim-thomson) wrote :

This has been resolved in debian and a package is now in sid. (See: http://packages.debian.org/sid/libapache-mod-security )

Any plans to pull this into ubuntu?

Scott Kitterman (kitterman)
description: updated
Changed in libapache-mod-security:
importance: Undecided → Wishlist
status: Won't Fix → Confirmed
Revision history for this message
James Westby (james-w) wrote :

Hi,

This request will have to be acked by the sponsorship team first. I'm subscribing
them for you now.

Thanks,

James

Changed in libapache-mod-security:
status: Confirmed → New
Revision history for this message
Michael Bienia (geser) wrote :

Sync request ACKed.

Changed in libapache-mod-security:
status: New → Confirmed
Revision history for this message
Dustin Kirkland  (kirkland) wrote :

Getting binaries for jaunty...
[Updating] libapache-mod-security (0 [Ubuntu] < 2.5.6-1 [Debian])
 * Trying to add libapache-mod-security...
  - <libapache-mod-security_2.5.6.orig.tar.gz: downloading from http://ftp.debian.org/debian/>
  - <libapache-mod-security_2.5.6-1.diff.gz: downloading from http://ftp.debian.org/debian/>
  - <libapache-mod-security_2.5.6-1.dsc: downloading from http://ftp.debian.org/debian/>

:-Dustin

Changed in libapache-mod-security:
assignee: nobody → kirkland
status: Confirmed → In Progress
status: In Progress → Fix Released
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.