Hi,

The winner of the election is Sam Hartman.

The details of the results are available at:
https://vote.debian.org/2019/vote_001

Stats for the DPL votes:
|------+------+--------+-------+--------+---------+--------+-----------|
|      |  Num |        | Valid | Unique | Rejects |      % |  Multiple |
| Year |  DDs | Quorum | Votes | Voters |         | Voting | of Quorum |
|------+------+--------+-------+--------+---------+--------+-----------|
| 1999 |  347 | 27.942 |       |    208 |         | 59.942 |   7.44399 |
| 2000 |  347 | 27.942 |       |    216 |         | 62.248 |   7.73030 |
| 2001 |   ?? |     ?? |       |    311 |         |        |           |
| 2002 |  939 | 45.965 |   509 |    475 |     122 | 50.586 |  10.33395 |
| 2003 |  831 | 43.241 |   510 |    488 |     200 | 58.724 |  11.28559 |
| 2004 |  908 | 45.200 |   506 |    482 |      52 | 53.084 |  10.66372 |
| 2005 |  965 | 46.597 |   531 |    504 |      69 | 52.228 |  10.81615 |
| 2006 |  972 | 46.765 |   436 |    421 |      41 | 43.313 |   9.00246 |
| 2007 | 1036 | 48.280 |   521 |    482 |     267 | 46.525 |   9.98343 |
| 2008 | 1075 | 49.181 |   425 |    401 |      35 | 37.302 |   8.15356 |
| 2009 | 1013 | 47.741 |   366 |    361 |      43 | 35.636 |   7.56155 |
| 2010 |  886 | 44.648 |   459 |    436 |      88 | 49.210 |   9.76513 |
| 2011 |  911 | 45.274 |   402 |    392 |      93 | 43.030 |   8.65836 |
| 2012 |  948 | 46.184 |   436 |    403 |      72 | 42.511 |   8.72589 |
| 2013 |  988 | 47.149 |   402 |    390 |      73 | 39.474 |   8.27170 |
| 2014 | 1003 | 47.505 |   412 |    401 |      61 | 39.980 |   8.44117 |
| 2015 |  986 | 47.101 |   364 |    353 |      39 | 35.801 |   7.49454 |
| 2016 | 1023 | 47.977 |   286 |    282 |      74 | 27.566 |   5.87787 |
| 2017 | 1062 | 48.882 |   327 |    322 |      57 | 30.320 |   6.58729 |
| 2018 | 1001 | 47.457 |   343 |    333 |      53 | 33.266 |   7.01674 |
| 2019 | 1003 | 47.505 |   389 |    378 |      59 | 37.687 |   7.95701 |
|------+------+--------+-------+--------+---------+--------+-----------|


Kurt Roeckx
Debian Project Secretary

Also: DPL elections 2019, congratulations Sam Hartman!

Reference: Debian Project Leader Elections 2019

Phoronix: Sam Hartman Is Debian's Newest Project Leader, Aims To "Keep Debian Fun"

Old: People behind Debian: Sam Hartman, Kerberos package maintainer

There is no set release date for Debian 10 Buster. Why is that so? Unlike other distributions, Debian doesn’t do time-based releases. It instead focuses on fixing release-critical bugs. Release-critical bugs are bugs which have either security issues CVE’s or some other critical issues which prevent Debian from releasing.

Debian has four parts in its archive, called Main, contrib, non-free and optional. Of the four, Debian Developers and Release Managers are most concerned that the packages which form the bedrock of the distribution i.e. Main is rock stable. So they make sure that there aren’t any major functional or security issues.

This is necessary because Debian is used as a server in many different environments and people have come to depend on Debian. They also look at upgrade cycles to see nothing breaks for which they look for people to test and see if something breaks while upgrading and inform Debian of the same.

• Debian Web Team Sprint 2019

  The Debian Web team held a sprint for the first time, in Madrid (Spain) from March 15th to March 17th, 2019.

  We discussed the status of the Debian website in general, review several important pages/sections and agreed on many things how to improve them.

• Freexian’s report about Debian Long Term Support, March 2019

  Like each month, here comes a report about the work of paid contributors to Debian LTS.

• Raphaël Hertzog: Freexian’s report about Debian Long Term Support, March 2019

  Like each month, here comes a report about the work of paid contributors to Debian LTS.

• Your Favorite Ad Blocker Can Be Exploited To Infect PCs With Malicious Code

  In July 2018, the popular Adblock Plus software released its version 3.2 that brought a new feature called $rewrite. This feature allowed one to change the filter rules and decide which content got blocked and which didn’t. It was said that often there are content elements that are difficult to block. This feature was soon implemented by AdBlock as well as uBlock.

  In a troubling development, it has been revealed that this filter option can be exploited by notorious actors to inject arbitrary code into the web pages. With more than 100 million users of these ad blocking tools, this exploit has great potential to harm the web users.

• Adblock Plus filter lists may execute arbitrary code in web pages
  

  A new version of Adblock Plus was released on July 17, 2018. Version 3.2 introduced a new filter option for rewriting requests. A day later AdBlock followed suit and released support for the new filter option. uBlock, being owned by AdBlock, also implemented the feature.

  Under certain conditions the $rewrite filter option enables filter list maintainers to inject arbitrary code in web pages.

  The affected extensions have more than 100 million active users, and the feature is trivial to exploit in order to attack any sufficiently complex web service, including Google services, while attacks are difficult to detect and are deployable in all major browsers.

• Big Companies Thought Insurance Covered a Cyberattack. They May Be Wrong.

  The disputes ares playing out in court. In a closely watched legal battle, Mondelez sued Zurich Insurance last year for a breach of contract in an Illinois court, and Merck filed a similar suit in New Jersey in August. Merck sued more than 20 insurers that rejected claims related to the NotPetya attack, including several that cited the war exemption. The two cases could take years to resolve.

  The legal fights will set a precedent about who pays when businesses are hit by a cyberattack blamed on a foreign government. The cases have broader implications for government officials, who have increasingly taken a bolder approach to naming-and-shaming state sponsors of cyberattacks, but now risk becoming enmeshed in corporate disputes by giving insurance companies a rationale to deny claims.

SolydXK is a Debian-based desktop distribution available in Xfce and KDE Plasma flavours. The distribution takes Debian's Stable branch and attempts to build a user friendly desktop experience on top of it. The latest version of the project adds new file system support for flash drives (offering f2fs and nilfs2 file systems). There have also been some changes in the arena of web browsers:
We changed the SolydXK Firefox settings even further to improve user privacy and also comply with Mozilla's distribution policies. This is done in the firefox-solydxk-adjustments package which can be purged if you don't need it.

Waterfox is now packaged and distributed by the SolydXK repository. You can install Waterfox with this command: apt install waterfox waterfox-solydxk-adjustments.
The official versions of SolydXK run on 64-bit (x86_64) machines only. There are 32-bit x86 ISO files provided by the community and there is a build for Raspberry Pi 3 computers. I opted to try the official Xfce edition which is a 1.5GB download.

The live media boots to the Xfce desktop. The live environment features bright orange wallpaper and offers a single icon on the desktop for launching the system installer. The desktop's panel, with the application menu and system tray, sit at the bottom of the screen.