Wolfgang Schweer · Wolfgang Schweer · Wolfgang Schweer · Wolfgang Schweer · Wolfgang Schweer · Wolfgang Schweer
--- a/Makefile
+++ b/Makefile
@@ -58,6 +58,7 @@ CF3FILES = \
 	cf.squid \
 	cf.sshd \
 	cf.syslog \
+	cf.tftpd \
 	cf.xrdp \
 	edu.cf \
 	promises.cf

--- a/cf3/cf.tftpd
+++ b/cf3/cf.tftpd
+bundle agent tftpd
+{
+# Remove the '--secure' option to be able to provide both Debian Edu PXE menu and LTSP.
+
+files:
+
+  debian.(server|ltspserver).installation::
+
+    "/etc/default/tftpd-hpa"
+      edit_line => tftpd_conf;
+}
+
+bundle edit_line tftpd_conf
+{
+
+replace_patterns:
+
+  "TFTP_OPTIONS=\"--secure\"" replace_with => value("TFTP_OPTIONS=");
+}
+
--- a/cf3/promises.cf
+++ b/cf3/promises.cf
@@ -59,6 +59,7 @@ body common control
                          sshd,
                          syslog,
                          xrdp,
+                          tftpd,
                          pxeinstall,
                          finalize,
     };
@@ -94,6 +95,7 @@ body common control
                  "debian-edu/cf.squid",
                  "debian-edu/cf.sshd",
                  "debian-edu/cf.syslog",
+                  "debian-edu/cf.tftpd",
                  "debian-edu/cf.xrdp",
      };


--- a/debian/changelog
+++ b/debian/changelog
 debian-edu-config (2.10.34) UNRELEASED; urgency=medium

+  [ Holger Levsen ]
  * Bump standards version to 4.2.0, no changes needed.

+  [ Wolfgang Schweer ]
+  * Add new cfengine file cf3/cf.tftpd; the '--secure' option (tftpd-hpa) needs
+     to be disabled to provide both PXE menu and LTSP. (tftpd-hpa is now used
+     instead of atftpd to match the ltsp-server package recommends).
+  * Adjust cf3/promises.cf to enable the tftpd configuration file.
+  * Adjust Makefile to reflect cfengine changes.
+  * testsuite/network: fix log message (nmap path).
+  * testsuite/webserver: Drop etc/skel test; the test is obsolete, now that the
+    firefox ini file is no longer generated.
+
 -- Holger Levsen <holger@debian.org>  Wed, 08 Aug 2018 09:42:21 +0200

 debian-edu-config (2.10.33) unstable; urgency=medium

--- a/testsuite/network
+++ b/testsuite/network
@@ -29,7 +29,7 @@ fi
 if [ -x /usr/bin/nmap ] ; then
 	/usr/bin/nmap localhost 2>&1 | sed "s%^%info: $0: nmap: %" || true
 else
-	error "Unable to find /sbin/nmap"
+	error "Unable to find /usr/bin/nmap"
 fi

 # Only test if nfs-common is installed which is not the case on a

--- a/testsuite/webserver
+++ b/testsuite/webserver
@@ -22,9 +22,6 @@ else
    exit 0
 fi

-# Only Main-Server have the debian-edu profile in the firefox setup.
-check_file_perm /etc/skel/.mozilla/firefox/profiles.ini 600
-
 server=www

 # Wait for 10 seconds