Re: Xfree 3.3.3.1 for slink anywhere?
From: Sven LUTHER [EMAIL PROTECTED] Subject: Re: Xfree 3.3.3.1 for slink anywhere? Date: Wed, 26 May 1999 12:23:26 +0200 On Wed, May 19, 1999 at 11:43:40PM +0100, Adrian Bridgett wrote: I've spent quite a while trying to find out but the only reference I could see doesn't have any packages there anymore (www.debian.org/~vincent IIRC). NB: I know that generally you can just grab the Xserver you want. Just grab the source and compile your own slink X packages, should work without problem. Here is an apt stanza to point you to some potato versions compiled with glibc 2.0 (also includes apache 1.3.6, communicator 4.6 (doesn't work for me), gimp 1.1, PHP 3 and some more stuff). deb http://netgod.net/ x/ HTH, --Amos --Amos Shapira | Of course Australia was marked for | glory, for its people had been chosen [EMAIL PROTECTED] | by the finest judges in England. | -- Anonymous pgpynm1UGG4Qb.pgp Description: PGP signature
glibc 2.1 machine for debian developers?
Hello, Not daring to upgrade my machines to glibc 2.1 yet for lack of stability, I was hoping I'll be able to upgrade my package on master.debian.org but now see that it is also based on glibc 2.0. Is there any debian glibc 2.1 machine (actually a potato machine) available for Debian developers to compile their packages on? Thanks, --Amos --Amos Shapira | Of course Australia was marked for | glory, for its people had been chosen [EMAIL PROTECTED] | by the finest judges in England. | -- Anonymous pgprzZlfNpcIy.pgp Description: PGP signature
Re: PROPOSAL: automatic installation and configuration
From: Massimo Dal Zotto [EMAIL PROTECTED] Subject: PROPOSAL: automatic installation and configuration Date: Tue, 25 May 1999 00:01:57 +0200 (MEST) Hi, I have done a few experiments about automatic configuration of packages and have now some working code. I want to describe my ideas and how to integrate in the distribution. You can download my experimental but almost working code at: http://www.cs.unitn.it/~dz/debian/dpkggetconfig_1.0.deb [ excellent explenation deleted ] Comments? I like the idea and examples VERY much. This is the right aproach, IMHO - provide a program, hopefully get it inserted to the base system, and let packages start using it one by one, without forcing a major reorganization. Well done! Cheers, --Amos --Amos Shapira | Of course Australia was marked for | glory, for its people had been chosen [EMAIL PROTECTED] | by the finest judges in England. | -- Anonymous pgpKoRl7sfKkA.pgp Description: PGP signature
Re: better /etc/init.d/network
From: Massimo Dal Zotto [EMAIL PROTECTED] Subject: Re: better /etc/init.d/network Date: Mon, 17 May 1999 22:42:09 +0200 (MEST) On Sun, May 16, 1999 at 10:15:48PM +0200, Massimo Dal Zotto wrote: Hi, The /etc/init.d/network script created by the debian installation is very simple and not flexible enough if you need to manage complex networks with many interfaces. I have written a generic network interface management command, net, which can be used to start/stop/show/configure network interfaces, and a smarter replacement for the /etc/init.d/network script. ... So what is the big difference between your tool and ifconfig? Seems you get the same results and you don't save a lot of work... Please provide more details on benifits of your tool. Obviously you can do the same things with ifconfig. The difference is that now you don't need to put all the ifconfig and route commands for your network in one big network startup script, but instead you store only the configuration parameters in separate config files which are used by the new net script. Not directly related to the question above (your argument sound pretty convincing to me, I missed such features many times before), but another point to pay attention to in such a script would be to somehow make all the running daemons aware of the new/old interfaces (e.g. ntp, bind, inetd). Some daemons bind explictly to each interface and would need to be re-initialized when an interface is added/removed from the system. (soapbox Another point which could be solved with a common-format config file, maybe XML-based /soapbox) Cheers, --Amos Shapira | Of course Australia was marked for | glory, for its people had been chosen [EMAIL PROTECTED] | by the finest judges in England. | -- Anonymous
Re: What to do with CPAN ?
On Mon, February 1 1999, Christian Hammers [EMAIL PROTECTED] wrote: |Hi ! | |I wonder if there was already a discussion about what to do with all those |CPAN libraries. Should we package all of them (naaa...) or only the best, |or none of them (oohhh :-(). | |Or should we create some Big-Packages i.e. say the user ok, you can get |CPAN/Networking of CPAN/Databases but only all those 1MB, or none. | |Any conclusion ? I think someone said a few months (a year?) ago that they are considering a way to make CPAN packages known to dpkg, i.e. you would be able to run something which will download and install a package from CPAN and make it known to the dpkg database so other packages which require it will know it is installed. At least that's what I think I remember. Cheers, --Amos --Amos Shapira| Of course Australia was marked for 133 Shlomo Ben-Yosef st. | glory, for its people had been chosen Jerusalem 93 805 | by the finest judges in England. ISRAEL[EMAIL PROTECTED] | -- Anonymous
Re: gnuserv/gnuclient problem
On Sun, January 31 1999, Ionutz Borcoman [EMAIL PROTECTED] wro te: |packages from potato. I am running the mule xemacs. Do we fill a bug |report against gnuserv ? I've already filed a bug report against gnuserv on October 19th: http://www.debian.org/Bugs/db/28/28175.html That's error #28175 Thanks. --Amos --Amos Shapira| Of course Australia was marked for 133 Shlomo Ben-Yosef st. | glory, for its people had been chosen Jerusalem 93 805 | by the finest judges in England. ISRAEL[EMAIL PROTECTED] | -- Anonymous
non-us.debian.org OK?
Hi, Ever since I installed the new apt (0.3.0) on a hamm system it can't access the non-us archives. Trying to access them via ftp or netwcape fails as well. I tried both the default config given in the sample sources.list file and some lines which used to work before the last upgrade. Can anyone send me a working configuration for non-us? Thanks, --Amos --Amos Shapira| Of course Australia was marked for 133 Shlomo Ben-Yosef st. | glory, for its people had been chosen Jerusalem 93 805 | by the finest judges in England. ISRAEL [EMAIL PROTECTED] | -- Anonymous
Re: non-us.debian.org OK?
On Sun, January 31 1999, Wichert Akkerman [EMAIL PROTECTED] wrote: |Previously Amos Shapira wrote: | Can anyone send me a working configuration for non-us? | |deb http://non-us.debian.org/debian-non-US slink non-US Thanks. This works. The ftp method URL's someone sent me are not recognized by the current version of apt I have. Cheers, --Amos --Amos Shapira| Of course Australia was marked for 133 Shlomo Ben-Yosef st. | glory, for its people had been chosen Jerusalem 93 805 | by the finest judges in England. ISRAEL[EMAIL PROTECTED] | -- Anonymous
Re: gnuserv/gnuclient problem
On Sat, January 30 1999, Jim Pick [EMAIL PROTECTED] wrote: | |Amos Shapira [EMAIL PROTECTED] writes: | | On Fri, January 29 1999, Ionutz Borcoman [EMAIL PROTECTED] |wro | te: | |Hi, | | | |Is the gnuclient/gnuserv broken in XEmacs ? Using the latest versions | |from potato I am no more able to start a gnuclient :-( Is anybody else | |experiencing this ? | | I've reported this bug with slink months ago with no response. I | still can't use gnuclient with xemacs under slink. | |It seems to work for me here (gnuclient.xemac20) | |ii xemacs20-bin20.4-13Editor and kitchen sink -- support binaries |ii xemacs20-nomule 20.4-13Editor and kitchen sink -- Non-mule binary |ii xemacs20-suppor 20.4-13Editor and kitchen sink -- architecture ind |e |ii xemacs20-suppor 20.4-13Editor and kitchen sink -- non-required lib |r It's the same version I have as well (latest Slink). Do you have gnuserv installed as well? With gnuserv 2.1alpha-4 installed it doesn't work. I tried purging gnuserv and then run gnuclient.xemacs20 but I still get an error like: (1) (error/warning) Error in process filter: (void-function gnuserv-edit-files) Maybe the previous installation of gnuserv broke it? As far as I remember, I tried to install gnuserv *because* gnuclient didn't work without it. Thanks, --Amos --Amos Shapira| Of course Australia was marked for 133 Shlomo Ben-Yosef st. | glory, for its people had been chosen Jerusalem 93 805 | by the finest judges in England. ISRAEL[EMAIL PROTECTED] | -- Anonymous
Re: gnuserv/gnuclient problem
On Sat, January 30 1999, Steve Dunham [EMAIL PROTECTED] wrote: |Jim Pick [EMAIL PROTECTED] writes: | | Amos Shapira [EMAIL PROTECTED] writes: | | On Fri, January 29 1999, Ionutz Borcoman [EMAIL PROTECTED] | wro | te: | |Hi, | | | |Is the gnuclient/gnuserv broken in XEmacs ? Using the latest versions | |from potato I am no more able to start a gnuclient :-( Is anybody else | |experiencing this ? | | I've reported this bug with slink months ago with no response. I | still can't use gnuclient with xemacs under slink. | | It seems to work for me here (gnuclient.xemac20) | | ii xemacs20-bin20.4-13Editor and kitchen sink -- support binari |es | ii xemacs20-nomule 20.4-13Editor and kitchen sink -- Non-mule binar |y | ^ |The problem only shows up with the mule versions of xemacs. Yup. It's true for my case - I have the -mule version installed. Thanks, --Amos --Amos Shapira| Of course Australia was marked for 133 Shlomo Ben-Yosef st. | glory, for its people had been chosen Jerusalem 93 805 | by the finest judges in England. ISRAEL[EMAIL PROTECTED] | -- Anonymous
Re: gnuserv/gnuclient problem
On Sat, January 30 1999, [EMAIL PROTECTED] (Frozen Rose) wrote: | |In article [EMAIL PROTECTED], |Steve Dunham [EMAIL PROTECTED] wrote: | | It seems to work for me here (gnuclient.xemac20) | | ii xemacs20-bin20.4-13Editor and kitchen sink -- support binar |ies | ii xemacs20-nomule 20.4-13Editor and kitchen sink -- Non-mule bina |ry | ^ |The problem only shows up with the mule versions of xemacs. | |Does | $ xemacs20 -batch -eval (and (require 'gnuserv) (print gnuserv-program)) |print out a sensible gnuserv pathname? |i.e. /usr/lib/xemacs-20.4/i386-debian-linux//gnuserv Yes, it gives the same path: /usr/lib/xemacs-20.4/i386-debian-linux//gnuserv And this file exists. According to dpkg -S gnuserv it comes from xemacs20-bin. Thanks, --Amos --Amos Shapira| Of course Australia was marked for 133 Shlomo Ben-Yosef st. | glory, for its people had been chosen Jerusalem 93 805 | by the finest judges in England. ISRAEL[EMAIL PROTECTED] | -- Anonymous
Re: gnuserv/gnuclient problem
On Fri, January 29 1999, Ionutz Borcoman [EMAIL PROTECTED] wro te: |Hi, | |Is the gnuclient/gnuserv broken in XEmacs ? Using the latest versions |from potato I am no more able to start a gnuclient :-( Is anybody else |experiencing this ? I've reported this bug with slink months ago with no response. I still can't use gnuclient with xemacs under slink. --Amos --Amos Shapira| Of course Australia was marked for 133 Shlomo Ben-Yosef st. | glory, for its people had been chosen Jerusalem 93 805 | by the finest judges in England. ISRAEL[EMAIL PROTECTED] | -- Anonymous
Re: Call for mascot! :-)
On Thu, January 28 1999, Anderson MacKay [EMAIL PROTECTED] wrote: |On Thu, 28 Jan 1999, Chris Waters wrote: | 1. Dragon (well-liked choice on IRC) | 2. Octopus (my own suggestion) | 3. Monkey | 4. Ant | 5. Bee | |that's any thing. I'd have to take ants. Lots of little creatures doing |their own thing, but cooperatively building something really cool as a |result. Hmmm, that sounds familiar. :) I'd second that (especially after watching Antz :). --Amos --Amos Shapira| Of course Australia was marked for 133 Shlomo Ben-Yosef st. | glory, for its people had been chosen Jerusalem 93 805 | by the finest judges in England. ISRAEL[EMAIL PROTECTED] | -- Anonymous
jdk doesn't work at all - is anyone on it?
Hello, After a recent upgrade of the JDK package (on a slink machine) it stopped working. It complains about not finding 'versionCheck' and won't run any program (I'm talking about the jre, the runtime environment). At first I suspected that maybe I screwed something and purged and re-installed the package, but that doesn't work. Now I had a report from someone else that it doesn't work for him at all too. I haven't recieved any response from the maintainerso far (about a week after sending this bug, and about two weeks since the fatal upgrade). Is anyone sitting on this? How severe is this for the release? Thanks, --Amos --Amos Shapira| Of course Australia was marked for 133 Shlomo Ben-Yosef st. | glory, for its people had been chosen Jerusalem 93 805 | by the finest judges in England. ISRAEL [EMAIL PROTECTED] | -- Anonymous
Alan Cox: Re: Minor XF86 DoS
The following message was part of a discussion on the linux security audit mailing list. It looks like debian hamm (up-to-date package versions) took the aproach of sticky bit, but Alan is right (of course) - someone can still block /tmp/.X11-unix/X0 from being used. Cheers, --Amos --Amos Shapira| Of course Australia was marked for 133 Shlomo Ben-Yosef st. | glory, for its people had been chosen Jerusalem 93 805 | by the finest judges in England. ISRAEL[EMAIL PROTECTED] | -- Anonymous --- Forwarded Message Message-Id: [EMAIL PROTECTED] From: [EMAIL PROTECTED] (Alan Cox) Subject: Re: Minor XF86 DoS To: [EMAIL PROTECTED] (Mark Wooding) Date: Wed, 24 Jun 1998 12:24:44 +0100 (BST) Cc: [EMAIL PROTECTED], [EMAIL PROTECTED], [EMAIL PROTECTED] In-Reply-To: [EMAIL PROTECTED] from Mark Wooding at Jun 24, 98 10:54:03 am Content-Type: text terribly wonderful idea. Not all X servers are run as root. For example, Xvnc, the VNC server (see http://www.orl.co.uk/vnc/) contains an X server the frame buffer of which it makes available via the VNC protocol to the user's client software. Making the socket directory read-only except by root would prevent users from running VNC servers. Sticky bits sound like a more sensible solution to this problem than read-only-ness. Sticky bit leaves DoS attacks (think mkdir /tmp/.X11-unix/X0). There is probably a case for group xserver. Do we have any Xfree people here ? --- End of Forwarded Message -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
p3nfs - got it compiled with libc6 - what should I do?
Hello, I've just got a patch for p3nfs to make it compile with libc6 (had to apply a couple of tweaks to make it compile under Debian hamm). Can I help the Hamm Bug Stamp-Out effort by simply uploading my version? I'm an inexperienced debian developer (packaged c2ps) so any help about this would be appreciated. (I'm also off the debian-devel list because I'm in the middle of finals period, so please cc replys to me). Thanks, --Amos --Amos Shapira| Of course Australia was marked for 133 Shlomo Ben-Yosef st. | glory, for its people had been chosen Jerusalem 93 805 | by the finest judges in England. ISRAEL [EMAIL PROTECTED] | -- Anonymous -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Security problem - inetd.conf has rsh/rlogin/rexec ON as a default
Hello, The rsh/rlogin/ident/rexec services are active by default in the inetd.conf file. Even though I keep removing them (I delete their lines altogether since that way it's much easier to notice a change) they seem to keep popping up after updating any software related to this file. I'd like to suggest that these services will be off by default and the user should be given a chance to stop the system before it reactivates them. I'm not on the list (finals period) so please CC to me any response to this message. Thanks, --Amos --Amos Shapira| Of course Australia was marked for 133 Shlomo Ben-Yosef st. | glory, for its people had been chosen Jerusalem 93 805 | by the finest judges in England. ISRAEL [EMAIL PROTECTED] | -- Anonymous -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Security problem - inetd.conf has rsh/rlogin/rexec ON as a default
On Thu, June 11 1998, Scott Ellis [EMAIL PROTECTED] wrote: |On Thu, 11 Jun 1998, Amos Shapira wrote: | | The rsh/rlogin/ident/rexec services are active by default in the | inetd.conf file. Even though I keep removing them (I delete their | lines altogether since that way it's much easier to notice a change) | they seem to keep popping up after updating any software related to | this file. | |If you comment them out with a single #, they won't be re-enabled by |updated packages. OK, I'll get back to doing that. I used to do that until I got fed up with having to comment the lines in the first place and look for the uncommented lines periodically, instead of just deleting all but 2-3 lines and being able to watch them at a glance. | I'd like to suggest that these services will be off by default and | the user should be given a chance to stop the system before it | reactivates them. | |Many people do administration remotely. They would probably be very |disapointed to have their login services yanked out from under them. I do a lot of remote administration too (actually, almost exclusively) using ssh. I know that ssh is not freely distributable with debian (due to the crypto limitations) but having these services opened as a default, and being re-opened after closed, looks like a risk to me (I mean - how many people are really aware of the risk? How many would bother to install ssh if they were aware of the risk and the (easy, IMHO) secure alternative?). |They're easy enough to disable and only truely a security hole if you have |.rhosts or hosts.equivs files laying around. Even then, tcpwrappers makes They are easy enough to disable indeed, but it's another administative point to keep looking at in case things changed. Also the hosts.equiv and .rhosts files are another administrative trace point. Not that I don't have to watch these files anyway, but watching them and finding them to be OK is much less alarming than watching them and see that everything is activated. |them significantly harder to spoof than on a traditional UNIX environment. You can't trust the DNS these days, not until secure DNS becomes more common. Also all passwords and sessions passed across the network are wide open to anyone on the net to read. So a cracker can either: 1. hack the DNS or fake a reply when the wrappers or rshd try to reverse-map the host. 2. watch the first TCP packet passed from the client to the server - the password is right there as plain text. I may sound paranoid and bitching, but I used to be relaxed about these things (who's gona care about some tiny ISP at the end of the world, really?) until I was bitten hard by a cracker (he sounded like the interviews with the Analyzer, maybe it was him). Since then I live and work under the assumption that the cracker is there, watching every move I make on any machine and the net. And finding that rsh/rexec/rlogin where again enabled this morning on my home machine didn't help much to my happiness. | I'm not on the list (finals period) so please CC to me any response to | this message. | |CC sent. Thanks. --Amos --Amos Shapira| Of course Australia was marked for 133 Shlomo Ben-Yosef st. | glory, for its people had been chosen Jerusalem 93 805 | by the finest judges in England. ISRAEL[EMAIL PROTECTED] | -- Anonymous -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: MDA's was: Yet another Linux distribution! :-)
On Sun, May 3 1998, [EMAIL PROTECTED] wrote: |'From Bill Leach [EMAIL PROTECTED]' | |Sendmail configuration is tough but it is also the best documented MTA |bar none! The O'Reliey book alone on sendmail is 2 1/5 thick. Probably |close to everything that has ever been done with mail has been done with |sendmail (and possibly some things that can only be done with sendmail -- |and NO I don't know of any examples personally). The only reason I still keep sendmail on my home machine is that I didn't get any answer about how to implement a fallback MX in Qmail. The point is a little mute now that I have an FR line at home but still maybe this is your example. Cheers, --Amos --Amos Shapira| Of course Australia was marked for 133 Shlomo Ben-Yosef st. | glory, for its people had been chosen Jerusalem 93 805 | by the finest judges in England. ISRAEL[EMAIL PROTECTED] | -- Anonymous -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
policy about Qmail's Maildir support?
Hello, Looking for support for Qmail's maildir format in Debian packages, I came up with empty hands. Would it be possible to add this to the debian policy to have Maildir support in packages like mailx, pine and imapd? Is there another mechanism to make debian support this format? Thanks, --Amos -- --Amos Shapira | Of course Australia was marked for | glory, for its people had been chosen [EMAIL PROTECTED]| by the finest judges in England. | -- Anonymous -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: policy about Qmail's Maildir support?
[EMAIL PROTECTED] wrote: On Wed, Apr 08, 1998 at 09:43:08AM +0300, Amos Shapira wrote: Looking for support for Qmail's maildir format in Debian packages, I came up with empty hands. Look more closely. Mutt handles maildir. Thanks. Would it be possible to add this to the debian policy to have Maildir support in packages like mailx, pine and imapd? AFAIK there is no DFSG-free MTA that supports Maildir. Therefore I don't think that Maildir support should be obligatory via Debian policy. I think we should encourage maintainers to add Maildir support to mail-related packages, but this should be a suggestion, not an obligation under Debian policy. Fine with me. Is there another mechanism to make debian support this format? I vaguely recall that procmail has some support for it; if that's the case, I think it should be fairly easy to have a formail script to convert to mbox or mh format; that could serve as a temporary form of support. I was thinking more of things like IMAPD, qpopper, and the c-client library, which have patches for maildir support available for them, they just have to be integrated into the official debian package (e.g. it looks like the procmail support was taken through the same page which points to the patches I mentioned - http://qmail.org). Thanks, --Amos -- --Amos Shapira | Of course Australia was marked for | glory, for its people had been chosen [EMAIL PROTECTED]| by the finest judges in England. | -- Anonymous -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: [?] egcs increases C++ binary size dramatically
On Wed, Apr 08, 1998 at 01:01:46AM +0200, Marcus Brinkmann wrote: However, you can give the compiler a hint that a function does not throw any exceptions by adding throw() at the right place: class ABC { ABC (int theInt) throw(); } Shouldn't the compiler still handle eceptions in functions which call functions which throw exceptions? If so, this probably means that you should have exceptions handled in any binary which uses a function which throws exceptions (e.g. almost any STL container). Cheers, --Amos -- --Amos Shapira | Of course Australia was marked for | glory, for its people had been chosen [EMAIL PROTECTED] | by the finest judges in England. | -- Anonymous -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: New official mirrors
James A. Treacy [EMAIL PROTECTED] wrote: |Debian has it's newest official mirror. This one is in Korea. We now |have a mirror on the mainland of Asia (yeah, I know that |Japan in in Asia too). South America and Africa are |being difficult. It'll be really be nice when we get Does anyone know the official status of the Israeli mirrors? I've just talked about a week ago with the person who runs the mirror at Tel-Aviv University and he is on a VERY flaky link, rendering his mirror practically useless. (I'd put a mirror in my ISP site, but this isn't the kind of operation which holds spare disks in the back room, not currently). Thanks, --Amos --Amos Shapira| Of course Australia was marked for 133 Shlomo Ben-Yosef st. | glory, for its people had been chosen Jerusalem 93 805 | by the finest judges in England. ISRAEL[EMAIL PROTECTED] | -- Anonymous -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word unsubscribe to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED] .
Re: Question/request concerning master
In message [EMAIL PROTECTED] you write: |On 6 Jan 1998, Rob Browning wrote: | | Or if you use X, just put: |=20 | exec ssh-agent ~/.x-common-startup |=20 | in your .xinitrc. Then you can run ssh-add once after logging in, and | never type the phrase again until you log out. | |I have been looking al over for this trick... Tried this one to, which did |not work... It's very simple (assuming that a .xsession is equal in function to .xinitrc) here is my .xsession: -- #!/bin/sh -- # execute the rest of the .xsession file through the ssh-agent exec /usr/bin/ssh-agent $HOME/.xsession-ssh -- And here is my .xsession-ssh: -- #!/bin/sh -- export PATH=/usr/local/bin:/usr/sbin:$PATH xrdb $HOME/.Xresources # run window manager first and remember its pid fvwm wmpid=$! # Next line is significant: xtoolwait /usr/bin/ssh-add /dev/null xtoolwait xterm -geometry +150+8 xtoolwait xterm -geometry +150+385 xtoolwait xdaliclock xtoolwait xemacs -f mh -name emh -iconic #xsetroot -solid RoyalBlue4 xsetroot -solid DeepSkyBlue4 #xsetbg -smooth -border DeepSkyBlue4 -center ~/etc/pictures/float.jpg #xearth unclutter netscape -iconic # wait for the window manager to exit, this marks the logout wait $wmpid -- And here is something relevant from the .fvwmrc (artificially line-warped): Style SSH Authentication Passphrase Request NoTitle, NoHandles, \ Sticky, WindowListSkip, StaysOnTop One bug I noticed which is worked on by the author is that ssh-add seems to call ssh-askpass using a system(3) call without quoting the user identification comment, so you should avoid characters which are meaningfull to the shell in the user identification comment. Otherwise you can do something like: ssh-askpass | ssh-add instead of the call to ssh-add above. And while I'm on the soap-box - who should I talk to about an offer to provide auto-login? I find it very convenient that my home machine boots and automatically logs me in. I have it set up and working for a year and I think it would be very usefull to most home users. Cheers, --Amos --Amos Shapira| Of course Australia was marked for 133 Shlomo Ben-Yosef st. | glory, for its people had been chosen Jerusalem 93 805 | by the finest judges in England. ISRAEL[EMAIL PROTECTED] | -- Anonymous -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word unsubscribe to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED] .
Re: Debian and the millenium bug
In message [EMAIL PROTECTED] you write: | a 64 bit variable, it's good for another 4000 years. | |Uhhh -- no. If it went from 32 bits to *33* bits, that would get us Actually, the current limit of 68 years (1970 + 68 = 2038) is posed by the used of SIGNED int (31 bits) instead of unsigned bits: |butch| bc -l bc 1.04 Copyright (C) 1991, 1992, 1993, 1994, 1997 Free Software Foundation, Inc. This is free software with ABSOLUTELY NO WARRANTY. For details type `warranty'. 2^31 2147483648 2^31/(60*60*24*365) 68.09625976661593099949 Just moving to unsigned int will give you 68 more years, up to year 2106: 2^32 4294967296 2^32/(60*60*24*365) 136.19251953323186199898 1970+136 2106 So it's even simpler in regards of type size, but moving to an unsigned int may cause serious troubles in comparing dates (unless you use some functions which hide thedetails). |4000 years. This gets us more like 16 billion billion years (american |billions - 16 x 10^18 is what I mean, but it's off the top of my head...) Where did you get this 4000 years figure anyway? 33 bits would just double the duration from 136 years to 272 (bringing us to year 2242). Cheers, --Amos --Amos Shapira| Of course Australia was marked for 133 Shlomo Ben-Yosef st. | glory, for its people had been chosen Jerusalem 93 805 | by the finest judges in England. ISRAEL[EMAIL PROTECTED] | -- Anonymous -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word unsubscribe to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED] .
Re: Question/request concerning master
Dale Scheetz [EMAIL PROTECTED] wrote: |I suspect the error message of being a fall through. I just tried the |same route and was rejected. In the past this has been because someone has |disabled ftp on master, and it usually clears up soon. You should still be |able to telnet into master and then ftp from your site to master. I might be missing something here, but after being beaten by crackers who simply put a password sniffer on one of my Debian machines, I'd strongly recommand the Debian leaders to reconsider the policy of plain ftp and telnet. In the least you should consider using SSLtelnet and SSLftp, if you insist on an alternative for ssh. I'd also like to recommand that all passwords on master shall be replaced if and when you disable plain ftp and telnet. With plain passwords allowed to fly in the direction of master, ssh is useless, as one can simply find the password from other sources and use it to login. Thanks, --Amos --Amos Shapira| Of course Australia was marked for 133 Shlomo Ben-Yosef st. | glory, for its people had been chosen Jerusalem 93 805 | by the finest judges in England. ISRAEL[EMAIL PROTECTED] | -- Anonymous -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word unsubscribe to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED] .
qmail for debian - when will it be released?
Hi, You keep talking about using Qmail - when will it be released for Debian? Is the experimentation over? How stable is it? The file in project/experimental is dated Apr 24th so it's been over a month of testting. Thanks, --Amos --Amos Shapira| Of course Australia was marked for 133 Shlomo Ben-Yosef st. | glory, for its people had been chosen Jerusalem 93 805 | by the finest judges in England. ISRAEL[EMAIL PROTECTED] | -- Anonymous -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word unsubscribe to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED] .
Re: default file perms
In message [EMAIL PROTECTED] you write: |--==_Exmh_263623679P |Content-Type: text/plain; charset=us-ascii | | |dpkg-cert already does something like this. Klee is going to fold the |capabilities of dpkg-cert into dpkg, so I think a solution is on |the horizon. :-) PLEASE PLEASE PLEASE! If you are allready at it - it would be nice to be able to find files which do NOT come from any package. This will make it much easier for the person in charge to find sniffer log files and binaries, and make it harder on the cracker to conceal them. Thanks, --Amos --Amos Shapira| Of course Australia was marked for 133 Shlomo Ben-Yosef st. | glory, for its people had been chosen Jerusalem 93 805 | by the finest judges in England. ISRAEL [EMAIL PROTECTED] | -- Anonymous -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word unsubscribe to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED] .
How to re-install installed packages?
Hello, Is there a way to force dpkg to find all the installed packages and re-install them? One of my Debian (bo) installations went through a badly handled tar (i.e. many file attributes were lost). Thanks, --Amos --Amos Shapira| Of course Australia was marked for 133 Shlomo Ben-Yosef st. | glory, for its people had been chosen Jerusalem 93 805 | by the finest judges in England. ISRAEL[EMAIL PROTECTED] | -- Anonymous -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word unsubscribe to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED] .
Re: How to re-install installed packages?
[EMAIL PROTECTED] (J.H.M.Dassen) wrote: |On May 28, Amos Shapira wrote | Is there a way to force dpkg to find all the installed packages and | re-install them? One of my Debian (bo) installations went through a | badly handled tar (i.e. many file attributes were lost). | |Guessing from dpkg --help, |dpkg --selected-only --refuse-downgrade --recursive [dir containing mirror] |might do it. Thanks, but this would require me to download the entire distribution from the net. I'd like to somehow force dpkg to figure for itself which packages need to be fetched and installed. Cheers, --Amos --Amos Shapira| Of course Australia was marked for 133 Shlomo Ben-Yosef st. | glory, for its people had been chosen Jerusalem 93 805 | by the finest judges in England. ISRAEL [EMAIL PROTECTED] | -- Anonymous -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word unsubscribe to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED] .
Re: dpkg verify mode for security?
Darren/Torin/Who Ever... wrote: Actually, as opposed t a security measure, I would've found something like this useful as a backup-check measure. I had a nasty head-crash last week. Thankfully, I had recent backups. Unfortunately, I had upgraded a number of packages after the latest backup. /usr was hit hard but /var was pretty clean. So, I had restored some old version of files and had no real idea which ones. I figure that eventually, they will all get replaced. Still, being able to write a perl script that tells me which files didn't match the stuff in /var/lib/dpkg/info would've been handy. Or an audit-trail of invocations of dpkg (e.g. adduser 3.1-2 installed and configured successfully on Wed May 29 1997 00:00:23, replaced adduser-3.1-0) Cheers, --Amos --Amos Shapira | Of course Australia was marked for | glory, for its people had been chosen [EMAIL PROTECTED] | by the finest judges in England. | -- Anonymous -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word unsubscribe to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED] .
Re: dpkg verify mode for security?
In message [EMAIL PROTECTED] you write: |'Amos Shapira wrote:' | |I was asking over Linux-ISP about doing cleanup after breakins and got |many use tripwire answers, and one which says that RPM has a verify |mode which checks for files which were changed since they were |installed. Can the dpkg maintainers consider adding such a feature |for Debian? | |What does the rpm verify give you? As far as I can tell it gives a |false sense of security. Nothing more. The rpm database is easily |hacked once root access is attained. | |Tripwire or something similar is the only viable option. You give the answer yourself :-). What I was thinking about is the ability to verify files against a database on a non-writeable media (or fetched from the net). Someone pointed me to an experimental package called 'dpkgcert', which seems to do just that. Look at the experimental directory on master.debian.org. Cheers, --Amos --Amos Shapira| Of course Australia was marked for 133 Shlomo Ben-Yosef st. | glory, for its people had been chosen Jerusalem 93 805 | by the finest judges in England. ISRAEL [EMAIL PROTECTED] | -- Anonymous -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word unsubscribe to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED] .
dpkg verify mode for security?
Hi, I was asking over Linux-ISP about doing cleanup after breakins and got many use tripwire answers, and one which says that RPM has a verify mode which checks for files which were changed since they were installed. Can the dpkg maintainers consider adding such a feature for Debian? Chees, --Amos --Amos Shapira | Of course Australia was marked for | glory, for its people had been chosen [EMAIL PROTECTED] | by the finest judges in England. | -- Anonymous -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word unsubscribe to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED] .
Re: netpbmdevel-1994.03.01p1-1
In message [EMAIL PROTECTED] you write: | |-BEGIN PGP SIGNED MESSAGE- | |Date: 30 Jun 96 22:33 UT |Format: 1.5 |Distribution: unstable |Priority: Low |Maintainer: Jim Robinson [EMAIL PROTECTED] |Source: netpbmdevel Wouldn't it be more conformant to call this package netpbm-dev? I think it makes things a little more readable. (Just to keep in line with the libs, for instance) Cheers, --Amos --Amos Shapira| Of course Australia was marked for 133 Shlomo Ben-Yosef st. | glory, for its people had been chosen Jerusalem 93 805 | by the finest judges in England. ISRAEL [EMAIL PROTECTED] | -- Anonymous
Bug#3446: expect 5.19.0-1 still depends on tcl74
Package: expect Version: 5.19.0-1 While installing expect (from the buzz/binary-i386/devel dir at caldera), *and* with tcl75 7.5-1 allready installed, expect failed to install since it insisted on tcl74. I installed tcl74 and left the links pointing to 75, so I suppose expect can run with 75 (right?). Also, dpkg reports old expect .deb file format, maybe that's relevant? Thanks. --Amos --Amos Shapira| Of course Australia was marked for 133 Shlomo Ben-Yosef st. | glory, for its people had been chosen Jerusalem 93 805 | by the finest judges in England. ISRAEL[EMAIL PROTECTED] | -- Anonymous