{
GPGKeyring {
"/srv/keyring.debian.org/keyrings/debian-keyring.gpg";
- "/srv/keyring.debian.org/keyrings/debian-keyring.pgp";
};
// was non-us.d.o path before
SigningKeyring "/srv/security-master.debian.org/s3kr1t/dot-gnupg/secring.gpg";
SigningPubKeyring "/srv/security-master.debian.org/s3kr1t/dot-gnupg/pubring.gpg";
SigningKeyIds "55BE302B";
SendmailCommand "/usr/sbin/sendmail -odq -oi -t";
- MyEmailAddress "Debian Installer <installer@ftp-master.debian.org>";
+ MyEmailAddress "Debian FTP Masters <ftpmaster@ftp-master.debian.org>";
MyAdminAddress "ftpmaster@debian.org";
MyHost "debian.org"; // used for generating user@my_host addresses in e.g. manual_reject()
MyDistribution "Debian"; // Used in emails
SecurityQueueHandling "true";
SecurityQueueBuild "true";
DefaultSuite "stable";
- SuiteSuffix "updates";
+ SuiteSuffix "updates/";
OverrideMaintainer "dak@security.debian.org";
LegacyStableHasNoSections "false";
};
Process-New
{
- AcceptedLockFile "/srv/security-master.debian.org/lock/unchecked.lock";
+ DinstallLockFile "/srv/security-master.debian.org/lock/processnew.lock";
+ LockDir "/srv/security-master.debian.org/lock/new/";
};
Import-Users-From-Passwd
{
ValidGID "800";
// Comma separated list of users who are in Postgres but not the passwd file
- KnownPostgres "postgres,dak,www-data,udmsearch";
+ KnownPostgres "postgres,dak,www-data,udmsearch,repuser";
};
Queue-Report
{
Directories
{
- // byhand;
- // new;
+ byhand;
+ new;
unembargoed;
+ embargoed;
+ };
+};
+
+Import-Keyring
+{
+ /srv/keyring.debian.org/keyrings/debian-maintainers.gpg
+ {
+ Debian-Maintainer "true";
+ };
+};
+
+Import-LDAP-Fingerprints
+{
+ LDAPDn "ou=users,dc=debian,dc=org";
+ LDAPServer "db.debian.org";
+ ExtraKeyrings
+ {
+ "/srv/keyring.debian.org/keyrings/removed-keys.pgp";
+ "/srv/keyring.debian.org/keyrings/removed-keys.gpg";
+ "/srv/keyring.debian.org/keyrings/extra-keys.pgp";
+ };
+ KeyServer "wwwkeys.eu.pgp.net";
+};
+
+Check-Overrides
+{
+ OverrideSuites
+ {
+ Stable
+ {
+ Process "0";
+ };
+
+ Testing
+ {
+ Process "0";
+ };
+
};
};
// Priority determines which suite is used for the Maintainers file
// as generated by 'dak make-maintainers' (highest wins).
- Stable
+ OldStable
{
Components
{
CopyDotDak "/srv/security-master.debian.org/queue/done/";
};
- Testing
+ Stable
{
Components
{
Version "";
Origin "Debian";
Label "Debian-Security";
- Description "Debian testing Security Updates";
+ Description "Debian 6.0 Security Updates";
ValidTime 864000; // 10 days
CodeName "squeeze";
OverrideCodeName "squeeze";
CopyDotDak "/srv/security-master.debian.org/queue/done/";
};
+
+ Testing
+ {
+ Components
+ {
+ updates/main;
+ updates/contrib;
+ updates/non-free;
+ };
+ Announce "dak@security.debian.org";
+ Version "";
+ Origin "Debian";
+ Label "Debian-Security";
+ Description "Debian testing Security Updates";
+ ValidTime 864000; // 10 days
+ CodeName "wheezy";
+ OverrideCodeName "wheezy";
+ CopyDotDak "/srv/security-master.debian.org/queue/done/";
+ };
};
SuiteMappings
"silent-map etch-secure oldstable";
"silent-map lenny-secure stable";
"silent-map testing-security testing";
+ "silent-map lenny-security oldstable";
+ "silent-map squeeze-security stable";
+ "silent-map wheezy-security testing";
};
Dir
{
Root "/srv/security-master.debian.org/ftp/";
Pool "/srv/security-master.debian.org/ftp/pool/";
+ Export "/srv/security-master.debian.org/export/";
Dak "/srv/security-master.debian.org/dak/";
Templates "/srv/security-master.debian.org/dak/templates/";
PoolRoot "pool/";
Override "/srv/security-master.debian.org/override/";
Lock "/srv/security-master.debian.org/lock/";
+ Cache "/srv/security-master.debian.org/database/";
Lists "/srv/security-master.debian.org/dak-database/dists/";
Log "/srv/security-master.debian.org/dak-log/";
Morgue "/srv/security-master.debian.org/morgue/";
Override "/srv/security-master.debian.org/scripts/override/";
QueueBuild "/srv/security-master.debian.org/buildd/";
Upload "/srv/queued/ftpmaster/";
+ TempPath "/srv/security-master.debian.org/tmp";
Queue
{
Byhand "/srv/security-master.debian.org/queue/byhand/";
Unchecked "/srv/security-master.debian.org/queue/unchecked/";
Newstage "/srv/security-master.debian.org/queue/newstage/";
- ProposedUpdates "/does/not/exist/"; // XXX fixme
- OldProposedUpdates "/does/not/exist/"; // XXX fixme
+ ProposedUpdates "/srv/security-master.debian.org/does/not/exist/"; // XXX fixme
+ OldProposedUpdates "/srv/security-master.debian.org/does/not/exist/"; // XXX fixme
Embargoed "/srv/security-master.debian.org/queue/embargoed/";
Unembargoed "/srv/security-master.debian.org/queue/unembargoed/";
DB
{
- Name "obscurity";
- Host "";
- Port -1;
-
+ Service "obscurity";
+ // PoolSize should be at least ThreadCount + 1
+ PoolSize 5;
+ // MaxOverflow shouldn't exceed postgresql.conf's max_connections - PoolSize
+ MaxOverflow 13;
+ // should be false for encoding == SQL_ASCII
+ Unicode "false"
};
Architectures
critical;
};
};
+
+Changelogs
+{
+ Export "/srv/security-master.debian.org/export/changelogs";
+}
+
+Generate-Releases
+{
+ MD5Sum
+ {
+ oldstable;
+ stable;
+ testing;
+ };
+ SHA1
+ {
+ oldstable;
+ stable;
+ testing;
+ };
+ SHA256
+ {
+ oldstable;
+ stable;
+ testing;
+ };
+}
projects / dak.git / blobdiff