shell script question
I know this isn't a bash/korn shell script news group, but the fact is I can't find one. Since bash/ksh is the default linux shell, I was hoping someone could answer a few pretty simple questions. Is there any way to export a variable for one parent shell to a different parent shell? I know that export will work to a subshell, but I can't find any process to return a variable to a different parent shell. Thanks, Han _ Tired of slow downloads and busy signals? Get a high-speed Internet connection! Comparison-shop your local high-speed providers here. https://broadband.msn.com -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Anyone used a Lindows Laptop?
Hi I have just started looking for a new laptop courtesy of the logic board on my ibook dying and being hit for a Aust $935 bill for a new one. I have been looking at the Lindows Mobile PC which I could get for Aust $1165 from sub300.com. I have been trying to find some reviews by people who have purchased a Lindows Laptop but have not had much luck? I have seen a few posts that say describe upgrading the Lindows to Debian Unstable and it sounds quite easy. Just wondering if anyone has used this laptop and has any comments. Thanks for any help John www.ngogeeks.com -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Turtle Beach Santa Cruz soundcard
> [EMAIL PROTECTED] > Today 21:11:13 > Hi all, > I'm having trouble with a new Turtle Beach Santa Cruz soundcard I just put >into my Debian machine. (I took out the old card.) > >A bit of searching around indicates that the Santa Cruz uses the cs46xx >chipset, so I selected that kernel module. Doing modprobe cs46xx gives me: > > cs46xx: Unable to detect valid cs46xx device > >then it gives me some insmod errors caused by not having a valid device. > >I'm guessing there's some sort of IRQ conflict or something similar going on. >Has anyone run into this problem who could give me some guidance on where to >look? Tracking down these problems seems to me to be something of a wild >goose chase. > >Thanks and regards, >Charles. Yea the Santa Cruz sound card can be a little tricky at times, you might want to see what lspci says, you might even have to reboot. Here is what lsmod says about my modules loaded for sound. cs46xx 58196 2 ac97_codec 13428 0 [cs46xx] soundcore3972 3 [cs46xx] Of course this is the OSS modules, and not the Alsa modules, I understand that the Alsa modules might be of better quality, so if you feel brave go ahead and give it a shot. It probably wouldn't hurt, as the new 2.6.-- are going to use Alsa, so it wouldn't hurt to get things working now. I use testing and this is somewhat of a default setup, as you know the Santa Cruz card is not 100% supported under linux. I have several games that after I play Xmms have major sound problems. Also after a reboot I have to manually adjust the volume in a mixer. You might get away with not having the ac97-codec loaded as it is not used, as lsmod has shown. I would certainly make sure soundcore module was loaded as to the 3 procs I really couldn't tell you as I am unsure exactly what the soundcore module does. Hope you get it sorted out, as the sound card is great, I just wish it was as good as under the other OS. Rthoreau -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: APT::Default-Release doesn't seem to affect upgrades
On Thu, Dec 04, 2003 at 12:57:23PM -0700, Jamin W. Collins wrote: > On Wed, Dec 03, 2003 at 11:39:09PM -0800, Ross Boylan wrote: > > We have a winner. Every single package that I checked that apt-get -s > > said was from unstable had the same version in testing and unstable. > > Which entry is first in your sources.list (unstable or testing)? > unstable is first. But putting it last doesn't change the output of apt-get -s. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: I'm face Few problem , need suggestion
Tom Allison wrote: > I think before you start parroting the same thing 1,000's before you > have griped about I would like to at least present some of my personal > findings in the last 4 months. Not 1000's times, but many times, yes. hee hee Facts: 1) I am griping about Woody installer. 2) Haven't seen sarge installer -- didn't know it was out. 3) I am NOT griping about a GUI in the installer(in the sense that you seems to have understood, that is why you gave the Windoze example below). I am griping about a better UI though, I wouldn't mind even an ncurses based one which is "easy" and "intuitive". If sarge installer is an improvement, Great!! > I have been trying to work with the installation process of SuSE 8.2 and > RedHat 9.0. Mostly SuSE8.2. > > I will solidly admit that the SuSE GUI installer looks pretty. > But you don't really give a rip about looks if it takes longer or has > other problems. If that's how you really feal about it the either > reconsider Windows (very pretty), design your own front end for Debian, > or check out the other distributions (Knoppix and Libranet) if you must. Your premise in all the above arguments is that I am demanding a *Graphical* UI _only_. Wrong. See the facts above. > But I really was very impressed with the performance that I experienced > on the pre-released nightly build of the sarge-installer. The potential > is there to have a really great installer far better than the commercial > distributions. > > It's a great advance and some really great work. This must be great then. I will try as soon it is released in Sarge. ->HS __ Do you Yahoo!? Free Pop-Up Blocker - Get it now http://companion.yahoo.com/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: I'm face Few problem , need suggestion
Thanasis Kinias wrote: > scripsit H. S.: > I'm a bit perplexed here -- are you arguing that the Sarge installer is Haven't seen it. I just started using Debian by downloading Woody. And then dist-upgraded to Sarge. Never seen Sarge installer. If it is out, then I have missed it. > so much in need of improvement? I've not used it yet, but it sure > sounds like it addresses all the legitimate gripes about bootfloppies. > In what way is the new installer inadequate? > > If not, if you're arguing about the Woody installer, then methinks Yes. > you're arguing against a strawman -- its deficiencies have been > recognized and are in the process of being corrected. This, as I > understand, is a big part of why we don't have a Sarge release yet. Oh Yippeee!!! I would be *so* happy to see an improved installer, honest. NB: I am not against Debian. But I was kind of pissed off when I noticed that there are Debian users to pride themselves in using the unnecessarily difficult installer which *can* be improved -- even to extent of advocating that a new improved installer is NOT needed, that the present need *not* be improved! Thanks for the info though. I am really glad to hear that an improved installer is on its way, actually can't wait to try it out :) ->HS __ Do you Yahoo!? Free Pop-Up Blocker - Get it now http://companion.yahoo.com/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: [OT] Slashdot and media accuracy (was Re: Improved Debian Project Emergency Communications)
scripsit Tom: > On Thu, Dec 04, 2003 at 02:32:15PM -0700, Thanasis Kinias wrote: > > > a system (I did the math a while ago) we'd have a small but nonzero > > number of (at least) Greens and Libertarians in the House, even with > > There is 1 independent Senator and 1 independent Congressman (what's the > generic term for member of House? Representative?), so it's already > "nonzero". The senator was elected as a Republican, though, and bolted, IIRC. I was aware of the indepentents; `nonzero' referred to members of organized `third' parties, which could run party lists under a Scottish-style system. AFAIK there are no party members in the Congress that are not Democrats or Republicans. > I want to be a Whig. Anarcho-syndicalist, myself... Well, maybe not really, but it sounds cooler than whig. ¡No pasarán! We should really take this off-list, BTW... -- Pax vobiscum; pax cum omnibus. Thanasis Kinias tkinias at asu.edu Doctoral Student, Department of History Arizona State University Tempe, Arizona, U.S.A. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: serial modem + wvdial
David Morse <[EMAIL PROTECTED]> writes: Please don't post in html. > titania:/dev# wvdial speakeasy > ---> WvDial: Internet dialer version 1.53 > ---> Cannot open /dev/ttyS2: Input/output error > ---> Cannot open /dev/ttyS2: Input/output error > ---> Cannot open /dev/ttyS2: Input/output error > titania:/dev# > > Do the following as root: chgrp dialout /dev/ttyS2 chgrp g+w /dev/ttyS2 chown dialout /usr/bin/wvdial # now for each user that you want to be able to dialout adduser [username] dialout I had to log out and log in again for the changes to take effect for the changes to take effect for the account I was logged into (as I generally access the root account by using su). Someone else might be able to tell you a more elegant way of doing it. -- Email address now bogus due to spam. Take my firstname then my surname and replace the abuse to send an email. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: My machine compromised?
On Wed, 2003-12-03 at 03:03, Vanh Phom wrote: > Hi folk, > After reading on report of servers compromised. Just for curiorsity I > run chkrootkit on my own machine and come up with this result: > > Searching for anomalies in shell history files... nothing found > Checking `asp'... not infected > Checking `bindshell'... not infected > Checking `lkm'... You have12 process hidden for readdir command > You have12 process hidden for ps command > Warning: Possible LKM Trojan installed > Checking `rexedcs'... not found > Checking `sniffer'... > eth0: PROMISC > > Is my machine compromised? How to fix this? > > Vanh > Vanh, Try this link: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=217525 Regards, Brian -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: [OT] Slashdot and media accuracy
At 2003-12-05T04:08:54Z, John Hasler <[EMAIL PROTECTED]> writes: > Actually, the salaries for most elected offices are low by the standards of > the class of people who are usually nominated by the major parties. Sure, but $26,000/year? Basically, the experienced businessman with the know-how to deliberate law but hasn't become idly rich yet can't afford to do it, and those are the guys we *should* be trying to attract. -- Kirk Strauser pgp0.pgp Description: PGP signature
Re: Color in text console
On Thu, Dec 04, 2003 at 08:05:49PM -0600, Hugo Vanwoerkom wrote: > How come I don't see a dependency of prboom on aalib1? It being able to *use* it if it's there isn't the same thing as *requiring* that it be there in order to function. Although a Suggests might be nice. ^_^ -- Marc Wilson | panic: kernel trap (ignored) [EMAIL PROTECTED] | -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: ye olde upgrade vs. dist-upgrade
scripsit Marc Wilson: > On Thu, Dec 04, 2003 at 02:57:16PM -0700, Thanasis Kinias wrote: > > I wonder the same thing as Marc. > > You're not wondering the same thing as me... I know perfectly well > what the two targets do. It's Bill Moseley who's doing the wondering. Sorry, brain-finger connection problem there. I do not doubt your expertise. > > I always do dist-upgrade also. Since I also always use -u, I'm not > > worried about its removing or installing things I don't want... > > Uh, no, all that does is show you what it's going to do without actually > *doing* it. It has nothing to do with what you're *allowing* it to do. > Assuming it shows you that it intends to remove a package, or install a new > one... what are you going to do then? Are you going to still turn it > loose, or are you going to investigate why? If I discover that it's going to remove something I need (for whatever reason), I will certainly investigate why, and use pins as necessary to prevent it. I'm not going to empower apt potentially to remove packages without checking with me first! > There should never be a reason to need 'dist-upgrade' if you're running > stable. That certainly makes sense. I should have mentioned, I suppose, that I run mostly testing -- so there is fairly often the need to do `dist-upgrade'. > Certainly. See above. If you don't want to give apt the power to > change the installation state of a package, you don't use > 'dist-upgrade'. Why would you give it that power, if it weren't > necessary? Let me rephrase that: Given that it is (for a system tracking testing) at times necessary to do `dist-upgrade', is there any reason not to do it always? The alternative is to do `upgrade' routinely, and then redo it with `dist-upgrade' when it fails occasionally, which (unless there's a good reason to do it that way) seems like adding a needless extra step. (Analogy: If a script will only ever be run by bash, why do `FOO=bar; export FOO' when `export FOO=bar' will do?) -- Pax vobiscum; pax cum omnibus. Thanasis Kinias tkinias at asu.edu Doctoral Student, Department of History Arizona State University Tempe, Arizona, U.S.A. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: radeon and X: was X won't start: Resolved
Mark, One thing I forgot to mention on this was that I am running unstable with XF86 4.3, though it should work with XF86 4.2, as well. Also, I say use a 2.6 series kernel because the DRI and AGPGART stuff is already in there, no need to build more modules. Yes, it's possible. I've done it before. That doesn't mean it's not a pain in my ass. But, honestly, the only reason why I'm running a 2.6 kernel is because I couldn't get DRI working in a 2.4 series kernel, either. Peace, DAVE
Re: ye olde upgrade vs. dist-upgrade
On Fri, Dec 05, 2003 at 02:11:30AM +0100, Benedict Verheyen wrote: > ? So you automatically assume that when a person reads the man > page he understands what's being said? > That's not the best assumption IMHO. No. I assume that if a person reads the man page, and does not understand it, he will then ask questions about the part he does not understand. Until he has at least attempted the available information, his questions are more than likely going to be meaningless. Perhaps you don't see a difference there. I most certainly do, especially in these days where most people think they're above doing anything for themselves. -- Marc Wilson | A political man can have as his aim the realization [EMAIL PROTECTED] | of freedom, but he has no means to realize it other | than through violence. -- Jean Paul Sartre -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: ye olde upgrade vs. dist-upgrade
On Thu, Dec 04, 2003 at 02:57:16PM -0700, Thanasis Kinias wrote: > I wonder the same thing as Marc. You're not wondering the same thing as me... I know perfectly well what the two targets do. It's Bill Moseley who's doing the wondering. > I always do dist-upgrade also. Since I also always use -u, I'm not > worried about its removing or installing things I don't want... Uh, no, all that does is show you what it's going to do without actually *doing* it. It has nothing to do with what you're *allowing* it to do. Assuming it shows you that it intends to remove a package, or install a new one... what are you going to do then? Are you going to still turn it loose, or are you going to investigate why? There should never be a reason to need 'dist-upgrade' if you're running stable. > So, if I'm doing -u to verify all changes, is there any reason _not_ to > do dist-upgrade for routine upgrades? Certainly. See above. If you don't want to give apt the power to change the installation state of a package, you don't use 'dist-upgrade'. Why would you give it that power, if it weren't necessary? -- Marc Wilson | The scene is dull. Tell him to put more life into [EMAIL PROTECTED] | his dying. -Samuel Goldwyn -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: [OT] Slashdot and media accuracy
> That narrows the selection pool to those too rich to need the money, or > those so inexperienced that they'd do an insanely difficult job for > peanuts. Actually, the salaries for most elected offices are low by the standards of the class of people who are usually nominated by the major parties. -- John Hasler [EMAIL PROTECTED] (John Hasler) Dancing Horse Hill Elmwood, WI -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: [OT] Slashdot and media accuracy
On Thu, Dec 04, 2003 at 09:50:35PM -0600, John Hasler wrote: > David Palmer. wrote: > > Put all politicians on a wage of $500.00/week, and make it a capital > > offense to take a political bribe, and you would get the ones that want > > to do the job for the right reasons. > > No. You'd get the ones that want to do the job for all the worst possible > reasons. Under those conditions only fanatics and crackpots would run for > office. This is true, but you could take a huge step in the right direction just by applying a halfway-sane definition of "political bribe" in the first place, and making sure it comes with stiff penalties. Half of the stuff that gets called "campaign contribution" in the US would get both parties ten years in jail if you tried it in any other democracy in the world. How Enron donating a billion dollars (that it got from stockholders by fraud) to G. W. Bush's presidential campaign (for example) contributes to freedom, democracy, and fair elections is a mystery to me. Cheers! -- ---<>--- There are already a million monkeys on a million typewriters, and Usenet is NOTHING like Shakespeare. - Blair Houghton --<>-- pgp0.pgp Description: PGP signature
Re: [OT] Slashdot and media accuracy
scripsit John Hasler: > David Palmer. wrote: > > Put all politicians on a wage of $500.00/week, and make it a capital > > offense to take a political bribe, and you would get the ones that want > > to do the job for the right reasons. > > No. You'd get the ones that want to do the job for all the worst possible > reasons. Under those conditions only fanatics and crackpots would run for > office. $500 a week? Sounds like the Arizona state legislature's pay. Fanatics and crackpots? Um, I do believe Mr. Hasler has a point... -- Pax vobiscum; pax cum omnibus. Thanasis Kinias tkinias at asu.edu Doctoral Student, Department of History Arizona State University Tempe, Arizona, U.S.A. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: [OT] Slashdot and media accuracy
David Palmer. wrote: > Put all politicians on a wage of $500.00/week, and make it a capital > offense to take a political bribe, and you would get the ones that want > to do the job for the right reasons. No. You'd get the ones that want to do the job for all the worst possible reasons. Under those conditions only fanatics and crackpots would run for office. -- John Hasler [EMAIL PROTECTED] (John Hasler) Dancing Horse Hill Elmwood, WI -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Debian Server Compromise -- A Fire Drill ??
On Thu, Dec 04, 2003 at 05:07:59PM -0700, Monique Y. Herman wrote: > On Fri, 05 Dec 2003 at 00:48 GMT, [EMAIL PROTECTED] penned: > > > > given the regular stream of ridiculous garbage coming from redmond > > about linux, while new holes are found in their os and apps on an > > almost weekly basis, this seems like the next stage in the campaign to > > buttress the losses they've been taking all the while linux has found > > favor. apart from the money issue, linux, and particularly debian, > > represents the absolute opposite to their culture. this distro, as a > > product of volunteerism on the part of people who have nothing to gain > > apart from their own satisfaction in making the thing work, represents > > a huge philosophical challenge to those who view the world in terms of > > how much they can extract from it. > > I find this to be unlikely. I mean, look at the risk vs. reward. > > Reward: they cause a very temporary disruption to some trusted sources > and cause some folks to maybe worry about how secure linux might be. > > Risk: getting caught funding black hats against the competition. > > This just doesn't sound like good business to me. Well, I'm not gonna go all conspiracy-theory on you and say that Microsoft is behind it, but I will say I find the idea ... reasonably plausible. The reward isn't much _if_ the incident is taken at face value. However, presented as the "See, we have proof!" bit of a big push to discredit Linux and the Free software movement, it could have some serious pay-off. MS has always been all about the PR spin. And considering the arrogant, awful business practices that have characterized Microsoft's history, with the addition of the subtle ways that a big corporation can move money around, I don't know if the risk really amounts to much. Cheers! -- ---<>--- I care less and less what people think. - Ani DiFranco --<>-- pgp0.pgp Description: PGP signature
Re: [OT] Slashdot and media accuracy (was Re: Improved Debian Project Emergency Communications)
scripsit Monique Y. Herman: > Friends of mine postulated the idea of having "politician duty" in > much the same was as we have jury duty ... you get a letter one day > telling you it's your turn to serve. Pretty sure this was done in at > least one ancient govt ... think it was Athens. Funny that you came up with that; my recent political utopianizing (if I may coin a word) involved much the opposite -- a dedicated active citizenry which would be required to give up private property. The problem this was intended to address is the corrupting influence a politician's particular, private interests exert on his or her attention to the greater interests of the community. The goal was to eliminate the distinction, on the part of the decision makers, between their particular interest and the general good. The result (which is, of course, problematic for other reasons) is something like a philosopher-aristocracy. -- Pax vobiscum; pax cum omnibus. Thanasis Kinias tkinias at asu.edu Doctoral Student, Department of History Arizona State University Tempe, Arizona, U.S.A. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: [OT] Slashdot and media accuracy
At 2003-12-04T11:13:33Z, "David Palmer." <[EMAIL PROTECTED]> writes: > Put all politicians on a wage of $500.00/week, and make it a capital > offense to take a political bribe, and you would get the ones that want to > do the job for the right reasons. Regards, Yeah. That narrows the selection pool to those too rich to need the money, or those so inexperienced that they'd do an insanely difficult job for peanuts. Not exactly who I want running my government. Not that *any* of this has to do with Debian, mind you. -- Kirk Strauser In Googlis non est, ergo non est. pgp0.pgp Description: PGP signature
Turtle Beach Santa Cruz soundcard
Hi all, I'm having trouble with a new Turtle Beach Santa Cruz soundcard I just put into my Debian machine. (I took out the old card.) A bit of searching around indicates that the Santa Cruz uses the cs46xx chipset, so I selected that kernel module. Doing modprobe cs46xx gives me: cs46xx: Unable to detect valid cs46xx device then it gives me some insmod errors caused by not having a valid device. I'm guessing there's some sort of IRQ conflict or something similar going on. Has anyone run into this problem who could give me some guidance on where to look? Tracking down these problems seems to me to be something of a wild goose chase. Thanks and regards, Charles. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: apt question
Mark Healey wrote: On Thu, 04 Dec 2003 20:10:26 -0600, Kent West wrote: Did you "apt-get update" first? If not, you need to. Thanks. I could swear that wasn't in the man page. enjae[westk]:/home/westk> man apt-get . . . DESCRIPTION apt-get is the command-line tool for handling packages, and may be con- . . . update update is used to resynchronize the package index files from . . . updated packages is available. *An update should always be per- formed before an upgrade or dist-upgrade.* Please be aware that (Emphasis added.) But of course, this is on a sid box; it may not be in the stable version of the man page. And even so, it's quite easy to miss. - Please leave this. It is a filter term. ferulebezel -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
RE: [OT] Slashdot and media accuracy (was Re: Improved Debian Pro ject Emergency Communications)
> -Original Message- > From: Monique Y. Herman [mailto:[EMAIL PROTECTED] > Sent: Friday, 5 December 2003 7:48 AM > To: [EMAIL PROTECTED] > Subject: Re: [OT] Slashdot and media accuracy (was Re: > Improved Debian Project Emergency Communications) > > > On Thu, 04 Dec 2003 at 17:56 GMT, Paul Johnson penned: > > -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 > > > > On Thu, Dec 04, 2003 at 07:13:33PM +0800, David Palmer. wrote: > >> Put all politicians on a wage of $500.00/week, and make it > a capital > >> offense to take a political bribe, and you would get the ones that > >> want to do the job for the right reasons. > > > > Would also encourage just random people to get a job as a > politician > > because it would be a reasonable income. > > > > Friends of mine postulated the idea of having "politician > duty" in much the same was as we have jury duty ... you get a > letter one day telling you it's your turn to serve. Pretty > sure this was done in at least one ancient govt ... think it > was Athens. > This idea was explored in more detail in the novel Red Mars (or Green Mars, I forget which). m -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: radeon and X: was X won't start: Resolved
Personally, "Give up" isn't in my vocab. Here's what you do (and what worked for me on my Radeon 8500): 1) download/compile/install a 2.6.0 series kernel, modularizing the Direct Rendering stuff for Radeon, and AGPGART, and whatever your motherboard and processor specific setup is 2) Add agpgart, *motherboard*_agp, ati_agp, *processor*_agp to /etc/modules. 3) Reboot, make sure you didn't mess up your kernel configuration. If you did, go back to one and repeat. 4) add this to your /etc/X11/XF86Config-4: Section "Device" Identifier "ATI Radeon 9700" Driver "radeon" Option "UseFBDev" "true" Option "AGPMode" "4" I'm not sure that AGPMode of 8 is supported, I'm sure somebody will tell you once I send this. Make sure you change the label in the Screen configuration, too. 4) Restart X, look at /var/log/XFree86.0.log and look for this: (II) RADEON(0): Somewhere around there you'll find: (II) RADEON(0): Direct rendering enabled (or disabled). If you're still turning up with nothing, e-mail the list again. Hope this works for you, it worked for me. Peace, DAVE I'm willing to give up on this card for a while. What I'd like is a card that supports lots of unusual and low resolutions. I don't really need 3D accel. The solution was fairly simple. I gave up. Several responders gave suggestions that are beyond my current understanding. I'm going to wait until I have more in depth understanding of Debian and Linux in general or there is a tried and tested package. For now I'm just going to use "vesa" - Please leave this. It is a filter term. ferulebezel - Mark Healey [EMAIL PROTECTED] Don't bothor CCing or emailing this address. Since spammers seem to be harvesting this list anything that doesn't come from the list server is assumed to be spam and deleted. ASUS A87V8X mobo w AMD Athalon Broadcom 4401 onboard nic with static IP Address ATI All-In-Wonder 9700 Video card. Sampo Alphascan 17mx monitor
Re: Murdering those mutt-gpg key retrievals
On Sat, Nov 29, 2003 at 08:49:01PM +0100, Florian Ernst wrote: > > You can import keys manually just like > gpg --keyserver pgp.mit.edu --recv-keys 8DE4D38E > for Karsten's key. > > If you want to have it done automatically one way is to enable a > keyserver in your .gnupg/pgp.conf and enable > keyserver-options auto-key-retrieve > as well. While on the subject, I have something I don't quite understand. I have recently upgraded to testing. I use mutt. On stable, a key would automatically be retrieved, or at least attempted (I'm on dialup).. Yesterday, I noted that this wasn't happening with testing - not sure if this has been the case all along with testing. I still have my stable system installed. I have nothing whatsoever mentioning auto-key-retrieve on the stable system. I've diffed the corresponding ~/.muttrc's, /etc/Muttrc's and ~/.gnupg/options and cannot find anything that would account for the different behaviors. I wonder if there is a difference in the default behavior between the stable/testing gnupg's or what? I'm puzzled. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: serial modem + wvdial
On Thu, Dec 04, 2003 at 09:23:49PM -0500, David Morse wrote: > [Modem0] > Modem = /dev/ttyS2 > Baud = 115200 > SetVolume = 2 > Dial Command = ATDT > Init1 = ATZ > [Dialer speakeasy] > Phone = XXX > Password = XXX > Username = XXX > Inherits = Modem0 > first off, nobody likes html around here. dump that. re the modem, you don't have access permission to /dev/ttyS2. investigate that. otherwise, welcome to the free--though not necessarily easy--world. ben -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
dhelp_parse: no title found for directory games/arcade
Hi, When I use apt-get it ends up getting stuck in a loop that prints endlessly the following: dhelp_parse: no title found for directory games/arcade dhelp_parse: no title found for directory games/card dhelp_parse: no title found for directory games/arcade dhelp_parse: no title found for directory games/card (and doesn't stop until I do Cntl+C) What is causing this? How can I fix it; or where should I start diagnostics? Example - stndout snip: p3a:~# apt-get remove zope Reading Package Lists... Done Building Dependency Tree... Done The following packages will be REMOVED: zope 0 packages upgraded, 0 newly installed, 1 to remove and 0 not upgraded. 3 packages not fully installed or removed. Need to get 0B of archives. After unpacking 12.1MB will be freed. Do you want to continue? [Y/n] (Reading database ... 55874 files and directories currently installed.) Removing zope ... Stopping Zope... done (Zope was not running). Setting up doc-base (0.7.11) ... registering 86 documents from /usr/share/doc-base ... dhelp_parse: no title found for directory games/arcade dhelp_parse: no title found for directory games/card dhelp_parse: no title found for directory games/arcade dhelp_parse: no title found for directory games/card dhelp_parse: no title found for directory games/arcade dhelp_parse: no title found for directory games/card dhelp_parse: no title found for directory games/arcade dhelp_parse: no title found for directory games/card dhelp_parse: no title found for directory games/arcade dhelp_parse: no title found for directory games/card dhelp_parse: no title found for directory games/arcade dhelp_parse: no title found for directory games/card dhelp_parse: no title found for directory games/arcade dhelp_parse: no title found for directory games/card dhelp_parse: no title found for directory games/arcade (doesn't stop untill I do Cntl+C) *** What is going on? How can I fix it? Thanks Roger :-) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: I'm face Few problem , need suggestion
On Thu, Dec 04, 2003 at 05:57:43PM -0700, Monique Y. Herman wrote: > On Thu, 04 Dec 2003 at 23:04 GMT, ScruLoose penned: > > > > They don't have to. They can use Libranet or Xandros or Knoppix if > > they want an "easy" way (on x86 systems). If you choose Debian, you > > should know that an idiot-proof installer is _not_ one of its > > features. > > To play devil's advocate, it doesn't say anything to that effect > anywhere in the docs; at least, not that I'm aware. True. At least as far as I know. OTOH, reading the "Before installing Debian" section of the installation manual (all eight subsections) gives a pretty good indication that one is not looking at an "automagic" or idiot-proof process. Not to say that it wouldn't be a good thing to point out explicitly, and possibly with mention of the alternatives... On the other other _other_ hand, just to play devil's advocate back at you, the spinoff distros are mentioned on the Debian site: http://www.debian.org/misc/children-distros.en-us.html (Just in case someone's trying to get started in Linux without having discovered distrowatch.com) > > I would amend that to ... Libranet, Xandros, or Knoppix. Having > > experienced apt, I cannot in good faith recommend an rpm-based distro > > to anyone. > > amen. (I left this in just 'cause I like how it looks) Cheers! -- ---<>--- There are already a million monkeys on a million typewriters, and Usenet is NOTHING like Shakespeare. - Blair Houghton --<>-- pgp0.pgp Description: PGP signature
worldnet.att.net
I use them as my provider.Have a problem to report but don't have that phone number. I can send Email but can't recieve,so an Email responce won't do any good. Either call 1-336-852-5255 or Email my neighbor Harry Sledge "troutferns @aol.com.Thanks
Re: Anfrage f?r einen Linktausch an debian-user@lists.debian.org
Karsten M. Self wrote: on Thu, Dec 04, 2003 at 09:08:40AM -0800, Paul Johnson ([EMAIL PROTECTED]) wrote: On Thu, Dec 04, 2003 at 08:00:28AM -0800, Karsten M. Self wrote: Thomas: Fragen Sie bitte auf englisch an diese Liste, oder frage an den debian-user-de Liste Karsten, you realise what you replied to was spam, right? Feh. I do about 50% comprehension of written German when I try reading it. That looked _vaguely_ technical when I read it in the wee hours /me hides in a corner Peace. Karsten, I was impressed anyway about your German. And then you talked about it on the Debian channel also. Hugo. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: apt question
On Thu, 04 Dec 2003 20:10:26 -0600, Kent West wrote: >Mark Healey wrote: > >>On Thu, 13 Nov 2003 20:53:35 -0600, Kent West wrote: >> >>As you recommended I added these lines to my /etc/apt/sources.list: >> >> >> >> # Uncomment if you want the apt-get source function to work >>which I did >> >> #deb-src http://http.us.debian.org/debian stable main contrib non-free #deb-src http://non-us.debian.org/debian-non-US stable non-US >> >> >> # Stable deb http://http.us.debian.org/debian/ stable main non-free contrib deb http://non-us.debian.org/debian-non-US stable/non-US main contrib non-free deb http://security.debian.org/ stable/updates main contrib non-free >> >>Just to check things out I did "apt-cache search nethack" to see if >>everything is working. It's not. >> >>I get: >>W: Couldn't stat source package list [an entry from above] Packages >>([a path which I assume is what the listing is a symbolic link to]) - >>stat (2 No such file or directory). >> >> >> >Did you "apt-get update" first? If not, you need to. Thanks. I could swear that wasn't in the man page. - Please leave this. It is a filter term. ferulebezel - Mark Healey [EMAIL PROTECTED] Don't bothor CCing or emailing this address. Since spammers seem to be harvesting this list anything that doesn't come from the list server is assumed to be spam and deleted. ASUS A87V8X mobo w AMD Athalon Broadcom 4401 onboard nic with static IP Address ATI All-In-Wonder 9700 Video card. Sampo Alphascan 17mx monitor -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Color in text console
Cruncher wrote: I've got aalib installed and games like prboom or quakeforge (nq-sdl) use it by default, which is what I want, and I can alter the text size to get a reasonable resolution. Does anybody know how to get color? The text console will do color (eg. ls -l --color=auto produces a color listing of files). And if I run these games packages without aalib installed, they run in a normal kind of svga mode, in color. But with aalib they run in black, white and grey. How come I don't see a dependency of prboom on aalib1? Hugo. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
serial modem + wvdial
Hi, I have a USRobot. internal serial modem that was working fine under redhat 7.2. I wiped the box and installed debian, and now wvdial claims the modem smells: titania:/dev# wvdial speakeasy ---> WvDial: Internet dialer version 1.53 ---> Cannot open /dev/ttyS2: Input/output error ---> Cannot open /dev/ttyS2: Input/output error ---> Cannot open /dev/ttyS2: Input/output error titania:/dev# I checked the IRQ and IO for /dev/ttyS2, and they're set to the standard DOS values (IRQ4, IO 0x03e8). Not sure if this matters, but /proc/interrupts doesn't have an entry for IRQ4. Does anyone know what I'm doing wrong? (PS The included wvdial.conf file is salvaged from the previous install. I tried building a new one, but wvdial couldn't even guess to check ttyS2...stupid wvdial) [Modem0] Modem = /dev/ttyS2 Baud = 115200 SetVolume = 2 Dial Command = ATDT Init1 = ATZ [Dialer speakeasy] Phone = XXX Password = XXX Username = XXX Inherits = Modem0
Re: [OT] Slashdot and media accuracy (was Re: Improved Debian Project Emergency Communications)
On Fri, 05 Dec 2003 at 01:06 GMT, Jason A Whittle penned: > I'm sorry that my first post to debian-user is so off-topic, and that > I don't have a key yet. I hope to rectify the latter ASAP. > > On Thu, Dec 04, 2003 at 01:34:11PM -0700, Monique Y. Herman wrote: >> In theory, we have a multi-party system. In practice, voting for a >> "third-party" candidate is a wasted vote, because everyone "knows" >> that every vote cast outside of the Big Two is wasted, and so no one >> bothers. >> >> If we had a system in which we could vote more than once, for example >> by specifying a first, second, and third choice, maybe we would see >> some shake-up. > > The concept I believe you're formulating is commonly called Instant > Runoff Voting. It's an exciting voting reform developed in the 1870s > that has been gaining some small momentum of late. > Ah, yeah, that's what it's called! There are a lot of alternate voting schemes out there. Seems there's a decent chance that some of them might be better than what we have. -- monique -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Debian Server Compromise -- A Fire Drill ??
ben writes: > well, i am hoping for eventual disclosure, but willing to understand > obvious security priorities. Disclosure of _what_? -- John Hasler [EMAIL PROTECTED] (John Hasler) Dancing Horse Hill Elmwood, WI -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Debian Server Compromise -- A Fire Drill ??
Thanasis Kinias writes: > If Foo Corp. wanted to do this, they really wouldn't have anything to > fear from the law... Little maybe, but not nothing. And risking the shareholder's (or even your own) money is one thing. Risking prison is quite another. Their biggest risk would be a whistle-blower. "We'll fire you" just doesn't carry the weight of the threats the mafia makes (and even they have their squealers). > ...and if they're confident that they have more media pull, they wouldn't > have anything to fear from the media either. The media are like sharks: cowards, but when they smell blood... > That's not to say that MS/SCO/whoever had anything to do with this at > all, just that I wouldn't discount the possibility based solely on the > (to me, apparently small) risk they would be taking. The risk might be small, but the cost of getting caught would be enormous, not just for the company, but for all the individuals involved. And then there is morality. I know you won't believe this, but almost all corporate executives consider themselves moral law-abiding citizens. -- John Hasler [EMAIL PROTECTED] (John Hasler) Dancing Horse Hill Elmwood, WI -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Debian Server Compromise -- A Fire Drill ??
On Thu, Dec 04, 2003 at 05:59:34PM -0700, Thanasis Kinias wrote: > scripsit Monique Y. Herman: > > > I find this to be unlikely. I mean, look at the risk vs. reward. > > > > Reward: they cause a very temporary disruption to some trusted sources > > and cause some folks to maybe worry about how secure linux might be. > > > > Risk: getting caught funding black hats against the competition. > > > > This just doesn't sound like good business to me. > > I'm very much not a black-helicopter conspiracy type, but I think it > unlikely that, if someone who didn't want to be found out was behind > this, it could ever be pinned on them. Look at the trouble FBI has > pinning things like contract killings on mafia bosses; the amount of > effort law enforcement is willing to spend on going after them is _much_ > higher than what they'd be willing to spend on crackers going after > Linux. If Foo Corp. wanted to do this, they really wouldn't have > anything to fear from the law -- and if they're confident that they have > more media pull, they wouldn't have anything to fear from the media > either. > > That's not to say that MS/SCO/whoever had anything to do with this at > all, just that I wouldn't discount the possibility based solely on the > (to me, apparently small) risk they would be taking. > > well put. to address monique's points, where's the risk? whoever pulled the stunt has serious talent. an esoteric bug that even the kernel hackers couldn't imagine being exploitable was manipulated. the thing that concerns me is that anyone with such skills who isn't interested in leaving a mark must be getting some other compensation. cracking debian.org--and gnu/savannah with the same exploit--is no small feat. not to claim credit suggests the kind of restraint that only money can buy. who's got the money? who's losing market share to gnu/linux? who could benefit by demonstrating insecurity in the other os? just recently, at comdex, gates presented a mini-movie, a matrix parody, wherein linux was portrayed as the enemy of freedom. that all of this occurs in the same time period strikes me as way more than coincidence. ben -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: apt question
Mark Healey wrote: On Thu, 13 Nov 2003 20:53:35 -0600, Kent West wrote: As you recommended I added these lines to my /etc/apt/sources.list: # Uncomment if you want the apt-get source function to work which I did #deb-src http://http.us.debian.org/debian stable main contrib non-free #deb-src http://non-us.debian.org/debian-non-US stable non-US # Stable deb http://http.us.debian.org/debian/ stable main non-free contrib deb http://non-us.debian.org/debian-non-US stable/non-US main contrib non-free deb http://security.debian.org/ stable/updates main contrib non-free Just to check things out I did "apt-cache search nethack" to see if everything is working. It's not. I get: W: Couldn't stat source package list [an entry from above] Packages ([a path which I assume is what the listing is a symbolic link to]) - stat (2 No such file or directory). Did you "apt-get update" first? If not, you need to. If that doesn't solve the problem, comment out all but one line and run "apt-get update" again. Then add lines back in and repeat until you find the line with the problem. Let us know which line it is and we'll go from there. I added the lines above the CDrom entries. What's up? - Please leave this. It is a filter term. ferulebezel - -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
RAID question
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hi list, I have a mainboard (ASUS A7N8X) with onboard SATA controller (SiI 3112A) and am planning to plug in two SATA drives and use RAID 1 (mirroring) on them. Besides telling the controller to use them as a RAID array, what do I have to do on Linux (Debian unstable) to make it recognize the array? Is there any software for linux to detect disk failures on the RAID array, so that I can get alarmed when a drive gets a mad? Any documentation on the net? Cheers Arne - -- Arne Goetje <[EMAIL PROTECTED]> (Spam catcher. Address might change in future!) PGP/GnuPG key: 1024D/685D1E8C Fingerprint: 2056 F6B7 DEA8 B478 311F 1C34 6E9F D06E 685D 1E8C Key available at wwwkeys.pgp.net. Encrypted e-mail preferred. -BEGIN PGP SIGNATURE- Version: GnuPG v1.2.3 (GNU/Linux) iD8DBQE/z+J+bp/QbmhdHowRAnQ3AKCzA8Gy6RmjIKEZCHxHEbhkJGnZZACg/vwX HiNyiFPWjoaWvOnmsEMeQsU= =Yq7u -END PGP SIGNATURE- -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Debian Investigation Report after Server Compromises
* Paul Morgan ([EMAIL PROTECTED]) [031204 12:32]: > I have all services locked down to localhost; my only connections to > the outside world are mail, news via nntpcached, web via squid... I run > Apache but it too is locked down to localhost. My mail is run through my this ... > ISP's (earthlink's) virus and spam filters before I get it (otherwise I'd > be getting like 10 Svens per day). I do see, from time to time, Apache > refusing connections attempts which are generally attacks by Windoze worms. ... and this do not add up. Methinks your apache is not "locked down to localhost." good times, Vineet -- http://www.doorstop.net/ -- http://www.anti-dmca.org/ signature.asc Description: Digital signature
Apache memory leak
Hello, I'm using Apache from Debian Woody on my server. Now I noticed that Apache is eating up more and more memory, so that I have to restart it every few days. The following graph of the swap usage illustrates the problem: https://andreas-s.net/mrtg/localhost.swap-week.png The big drop around saturday evening was when I restarted Apache. It seems this problem exists since I have set up a cronjob to run logrotate every hour to update my statistics. The rotation itself is only done once per week, but every time the logrotate script is run, it executes /etc/init.d/apache reload. So I tried to run "/etc/init.d/apache reload manually", and I could see the apache memory usage increase by about 500kB (fits quite well to the swapping graph): Before: 9765 www-data 10 0 24836 21M 19968 R 4.8 21.8 0:00 apache After /etc/init.d/apache reload: 10031 www-data 4 0 26888 23M 23508 S 0.0 23.8 0:00 apache Any ideas on how I could track down this problem? Andreas -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Removal of packages from woody/main
scripsit Mike Beattie: > On Thu, Dec 04, 2003 at 06:09:30PM -0600, Andrew Davidoff wrote: > > Greetings: > > > > As of 21.30GMT today (when a local rsync of debian's archive is run) I > > noticed that quite a few files have been removed from the main section > > of debian's pool. Can anyone shed any light as to why this happened, > > and if they are coming back? > ... > > Notable (to us) files that were removed: > [snip] > > They look suspiciously (I havent checked), like old versions of packages > that were upgraded as a part of the 3.0r2 release. That is indeed what they are. They're all still in stable with newer versions... -- Pax vobiscum; pax cum omnibus. Thanasis Kinias tkinias at asu.edu Doctoral Student, Department of History Arizona State University Tempe, Arizona, U.S.A. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Removal of packages from woody/main
On Thu, Dec 04, 2003 at 06:09:30PM -0600, Andrew Davidoff wrote: > Greetings: > > As of 21.30GMT today (when a local rsync of debian's archive is run) I > noticed that quite a few files have been removed from the main section > of debian's pool. Can anyone shed any light as to why this happened, > and if they are coming back? ... > Notable (to us) files that were removed: [snip] They look suspiciously (I havent checked), like old versions of packages that were upgraded as a part of the 3.0r2 release. Mike. -- Mike Beattie <[EMAIL PROTECTED]> ZL4TXK, IRLP Node 6184 If you can stay calm, while all around you is chaos... Then you probably haven't completely understood the seriousness of the situation. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Debian Server Compromise -- A Fire Drill ??
> "Dave" == Dave <[EMAIL PROTECTED]> writes: Dave> So how many daemons and kernel routines need both root access and Dave> input from a user process? Remember that *all* kernel routines are running in kernel-mode of the processor, i.e., having even higher permission than a normal root process. And most of the inputs taken by system calls are tainted with user inputs. Even worse, the kernel is performance critical. Adding all of these, you'll understand why it is so hard to make sure everything is correct. That's why some people advocate micro-kernels, to reduce the "source of power" to a very small code base that can be monitored in an easier way. But we are not at that point yet, so the race between white-hat and black-hat hackers *will* continue. In any case, even if we are in a micro-kernel like Hurd, a bug in the core servers (e.g., the authentication server, the filesystem server or the Unix API server) can easily give out arbitrary power to the user, so it is important to make sure core servers are bug-free in any case. The only question is "how many code are in the core servers". Regards, Isaac. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
apt question
On Thu, 13 Nov 2003 20:53:35 -0600, Kent West wrote: As you recommended I added these lines to my /etc/apt/sources.list: >> # Uncomment if you want the apt-get source function to work which I did >> #deb-src http://http.us.debian.org/debian stable main contrib non-free >> #deb-src http://non-us.debian.org/debian-non-US stable non-US >> # Stable >> deb http://http.us.debian.org/debian/ stable main non-free contrib >> deb http://non-us.debian.org/debian-non-US stable/non-US main contrib non-free >> deb http://security.debian.org/ stable/updates main contrib non-free Just to check things out I did "apt-cache search nethack" to see if everything is working. It's not. I get: W: Couldn't stat source package list [an entry from above] Packages ([a path which I assume is what the listing is a symbolic link to]) - stat (2 No such file or directory). I added the lines above the CDrom entries. What's up? - Please leave this. It is a filter term. ferulebezel - Mark Healey [EMAIL PROTECTED] Don't bothor CCing or emailing this address. Since spammers seem to be harvesting this list anything that doesn't come from the list server is assumed to be spam and deleted. ASUS A87V8X mobo w AMD Athalon Broadcom 4401 onboard nic with static IP Address ATI All-In-Wonder 9700 Video card. Sampo Alphascan 17mx monitor -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Debian Server Compromise -- A Fire Drill ??
On Fri, 5 Dec 2003 00:48:58 + [EMAIL PROTECTED] wrote: > On Thu, Dec 04, 2003 at 04:57:55PM -0500, ScruLoose wrote: > > On Thu, Dec 04, 2003 at 01:50:35PM -0700, Dave wrote: > > > On Thu, 04 Dec 2003 20:20:21 +0100, Terry Hancock <[EMAIL PROTECTED]> wrote: > > who benefits from the publicity > surrounding this? there's got to be a reason why no calling card was > left, i.e., the caller has a vested interest in not claiming credit, > which would tend to suggest a contract job. as to the issue of whether > the attacker had previous knowledge of the debian servers, only a fool > wouldn't do everything to acquaint him/herself with the environment > where they plan to engage in mischief. In detection, this is the crux,-who benefits. In this scenario, I believe that it is those who are incapable of surviving within the level playing field environment. The first thing to be compromised in this situation is Debians' reputation for security. Has anything else been found? Planted? If you are incapable of raising your own standard, you lower the reputation of the opposition. Thus far, that is the only thing the enemy has achieved. Perhaps that is the only thing they were after. But, we will not assume that. > > given the regular stream of ridiculous garbage coming from redmond about linux, > while new holes are found in their os and apps on an almost weekly basis, this seems > like the next stage in the > campaign to buttress the losses they've been taking all the while linux > has found favor. apart from the money issue, linux, and particularly debian, > represents the absolute opposite to their culture. this distro, as a > product of volunteerism on the part of people who have nothing to gain > apart from their own satisfaction in making the thing work, represents a > huge philosophical challenge to those who view the world in terms of how > much they can extract from it. > > the attacks are, on > the one hand, a wake-up call, but, on the other, a statement from the > opposition that proves both the significance and the ascendance of human > cooperation as a power, with no other incentive in mind than to do the > best that can be done. There is another statement here that is actually a positive for Debian. The action is an admission that the enemy is incapable of competing within the level playing field environment. The negative is that they cannot afford to stop at this stage. They will come again, and not necessarily from the same direction. > > on the subject of disclosure of methods, i've been trusting the team for > almost five years, since i first came across debian. i have no reason > not to trust them now. i'm amazed at the speed of the recovery, given > that everything that had to be done was done by folks who do this in > their spare time. my thanks and respect. debian keeps on rockin'. > > ben > Regards, David. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Maildrop + SA
Darik Horn wrote: > So, I would like send spams (witch my SA didn't catch) to e-mail > [EMAIL PROTECTED] and my maildrop use sa-learn in this e-mail. > How can I do that in my maildrop??? Be careful about doing this. Things that you forward to [EMAIL PROTECTED] will appear to come from your address, so you may accidentally teach SpamAssassin to negatively score messages from your domain. A better solution is to export a maildir as a shared IMAP folder, and then drag-and-drop spams there with your mail reader. The spam will not be changed by another run through the MTA, which will improve the effectiveness of sa-learn. You could then run a cron job against that maildir like this: IFS=' ' for i in $(find /my/spam/maildir -type f) do sa-learn --spam "$i" && rm "$i" done Test this first. I tried this under Cyrus and really screwed up my maildir by removing a file that wasn't supposed to be removed. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
[OT] got a new isp
After 28 months with Mexican Prodigy switched to Mexican AT&T. It was the worst service ever: almost every day at least one hangup, frequent DSN lookup hangs, frequent nothing-at-alls. But... I should not complain because I paid for only 12 months... which is a symbol of the organization. So I have a question: does anybody know of a way to compare ISP performances? I looked into this in the past and even installed it: it is PasTmon, the passive network monitor. I installed it from source, uses Postgresql as database, R as the statistical package, you need a network intercept library for it. Very complete package. Except... you get deluged in data. So in order to compare ISP's you would need a significant statistical effort, with some sort of benchmarks to go with. So, do I only wonder about comparing ISP's in Mexico, or does this have more universal validity? Hugo. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: I'm face Few problem , need suggestion
On Thu, 04 Dec 2003 at 23:35 GMT, Paul Morgan penned: > > You are dead right, of course. I keep forgetting that there are folks > new to Unix, even, installing debian. Which is really great. It's great, but ... My first linux install was done by a friend. Even redhat was hard for me to figure out at the time (granted, redhat's installer back then was probably more cryptic than debian's installer now). We can have newbies using linux without requiring them to install it for the first time. Installs are the hardest part of using *any* linux distro. -- monique -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: I'm face Few problem , need suggestion
H. S. wrote: Satyajit Das wrote: Dear list, Just today I entire this world and also in Linux world. By "this world" I would assume the newsgroup world and *this* world in general :)) welcome to Linux world! I'm single user. I collect Debian 3.0 beta , total 8 CD's . After struggle 4 days("dselect" very difficult for newbies) I installed Debian. Oh boy. I can understand that. I went through the same thing myself a few weeks ago. But then I was not new to the world of Linux so it didn't take me 4 days :) But I agree, the installation routine of Debian is hideous. Delusions of grandeur must be over and the routine *must* be vastly improved and made easier if Debian want to live up to people's expectations. I think before you start parroting the same thing 1,000's before you have griped about I would like to at least present some of my personal findings in the last 4 months. I have been trying to work with the installation process of SuSE 8.2 and RedHat 9.0. Mostly SuSE8.2. My impression is that it is very GUI oriented. It is also easy to miss something that might otherwise be important. Especially if you have hardware that isn't auto-detected by their installation process. If you miss it, it's very hard to fix it. As for installations, SuSE was pretty quick (45-60 minutes) to get started and then another 3 hours on rpm unpacking. After that things go downhill fast. Configuring SuSE to your *specific and unique* needs is very difficult. If you configure to their expectations you will not be too disappointed. But there are shortcomings. As for Debian. Check out the new sarge installer. I was amazed!!! The entire installation process to about 10 minutes following by hours of deb package download and install. Using the sarge installer in it's default configuration I was able to get all my hardware detected and working with the exception of ide-scsi for my cd-burner. I considered it trivial and didn't look into it at the time. Using the sarge installer in it's network install configuration never worked, but then again it's not released. The sarge installer is not "GUI" in the sense that you expect it to be. It's so damn effecient, fast, effective, and to-the-point that a GUI would actually be a stumbling block because it would uneccesarily tie up resources drawing pretty pictures when it should be installing ASAP. I will solidly admit that the SuSE GUI installer looks pretty. But you don't really give a rip about looks if it takes longer or has other problems. If that's how you really feal about it the either reconsider Windows (very pretty), design your own front end for Debian, or check out the other distributions (Knoppix and Libranet) if you must. But I really was very impressed with the performance that I experienced on the pre-released nightly build of the sarge-installer. The potential is there to have a really great installer far better than the commercial distributions. It's a great advance and some really great work. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Debian Server Compromise -- A Fire Drill ??
On Thu, Dec 04, 2003 at 04:04:26PM -0800, Tom wrote: > > almost five years, since i first came across debian. i have no reason > > not to trust them now. > > I like them too but faith like that is just made to be broken. > well, i am hoping for eventual disclosure, but willing to understand obvious security priorities. ben -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: I'm face Few problem , need suggestion
On Thu, 04 Dec 2003 at 22:52 GMT, Bijan Soleymani penned: > > I agree that the installer isn't that difficult to get through but > once you're done you're faced with a text mode login. When you're new > and don't know any command this isn't very useful. I mean there's a > huge step between that and having a working X setup, etc. On the other > hand distributions like Red Hat, Mandrake, Suse, etc. once you finish > the install you boot up into gnome or kde. Yes, but not everyone *wants* a working X setup. One of the major gripes I had with Red Hat (several years ago, mind; this was version 6.x or 7.x) was that its networking scripts appeared to be optimized for its GUI configurators rather than hand-hacking, with no comments in the scripts and strange file separations. As the machine in question was not intended to run X, this was somewhere between annoying and infuriating. (I'll readily admit that the problem may have been me, but the above was how I interpreted the situation.) When I do run X on my machines, I still prefer to run it from startx, rather than from xdm etc. If all I want to do is run some console utilities, I don't need the X overhead. > I compare the current installatin process with the process of > installing knoppix to the harddisk. > > Knoppix: 1) Put knoppix cd in. 2) Boot. 3) Run knx-hdinstall. 4) > Partition disks. 5) Wait 20 minutes. 6) Reboot into kde or whatever > X setup you like. > > Plain Debian: 1) Put cd in. 2) Boot. 3) Partition disks. 4) Get > module selection dialog. 5) Get network setup dialog. 6) Get asked > where you want to install from. 7) Reboot. 8) Get asked a bunch of > other questions. 9) Get dumped into tasksel or dselect. 10) Get > dumped into scary text mode login. > Scary to whom? Given a choice, I'd much rather be dumped into a text mode login than into an unfamiliar gui interface. -- monique -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: 2.6 kernel: module cannot be unloaded
scripsit Monique Y. Herman: > Hrm. Okay, well, I don't know what AFS is (though now I'm thinking I > should find out), and I don't use sound at the moment, so I probably > just have to worry about the "couple others" =P AFS is a distributed file system. My uni uses it (among other things) to allow access to user directories across platforms -- I can mount my $HOME on Windows, Mac, or *nix, from anywhere on the Internet. In Linux, it needs a kernel module to work, though (for obvious reasons). It's pretty handy when you have something like 60,000 users... -- Pax vobiscum; pax cum omnibus. Thanasis Kinias tkinias at asu.edu Doctoral Student, Department of History Arizona State University Tempe, Arizona, U.S.A. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: I'm face Few problem , need suggestion
On Thu, 04 Dec 2003 at 22:29 GMT, Bijan Soleymani penned: > "Monique Y. Herman" <[EMAIL PROTECTED]> writes: > >> I don't have a problem with the installer. I'd rather have devs >> working on other stuff than on something that works (for me). > > The installer also works for me, at least most of the time. But it > would be nice if relative newbies could install Debian on their own. Agreed, *if* the installer also allows relatively experienced folk (I would never call myself an expert) the freedom to do what they want without having to jump through a bunch of hoops. Actually, there's a snarky part of me that thinks that forcing newbies to use a different distro first will give them an appreciation for the wonder that is debian ... yeah, as I said, snarky. [snip] >> But I don't really see this as a problem. There are different >> distros for different needs, and debian is designed for the needs of >> an experienced linux user. > > If that is the case we should at least be honest. They should post in > big bold letters on www.debian.org: > > "This Operating System is not for general users it is only for > experienced linux users. If you have never used Linux before > please go to www.redhat.org or www.mandrake.org or > www.knoppix.org." Actually, I should rephrase that in *my* view, debian is designed for the needs of an experienced linux user. I would suspect that the movers and shakers in the debian world may not see things this way. But you do have a point. > I'm kind of in the pro-knoppix camp. I think that debian could > incorporate certain features from knoppix. The experts could always > disable the hardware detection, etc. But it would be very useful for > beginners. I've only used knoppix a few times, so I can't really say if I agree. I found the instant recognition of all my laptop stuff rather spiff, but I don't know if there were admin trade-offs involved. -- monique -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: I'm face Few problem , need suggestion
On Thu, 04 Dec 2003 at 23:04 GMT, ScruLoose penned: > > > They don't have to. They can use Libranet or Xandros or Knoppix if > they want an "easy" way (on x86 systems). If you choose Debian, you > should know that an idiot-proof installer is _not_ one of its > features. To play devil's advocate, it doesn't say anything to that effect anywhere in the docs; at least, not that I'm aware. > I would amend that to ... Libranet, Xandros, or Knoppix. Having > experienced apt, I cannot in good faith recommend an rpm-based distro > to anyone. amen. -- monique -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: I'm face Few problem , need suggestion
scripsit H. S.: > Moreover, if one were to do a poll today out of the number of people > interested in using Debian asking them if Debian's installer needs to > improved upon, I am certain you would be in a minority. [snip] > Not an excuse NOT to improve the installer. [snip] > Thinking Debian installer need NOT be improved and is fine enough == > delusions of grandeur. I'm a bit perplexed here -- are you arguing that the Sarge installer is so much in need of improvement? I've not used it yet, but it sure sounds like it addresses all the legitimate gripes about bootfloppies. In what way is the new installer inadequate? If not, if you're arguing about the Woody installer, then methinks you're arguing against a strawman -- its deficiencies have been recognized and are in the process of being corrected. This, as I understand, is a big part of why we don't have a Sarge release yet. -- Pax vobiscum; pax cum omnibus. Thanasis Kinias tkinias at asu.edu Doctoral Student, Department of History Arizona State University Tempe, Arizona, U.S.A. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: 2.6 kernel: module cannot be unloaded
On Thu, 04 Dec 2003 at 23:15 GMT, Thanasis Kinias penned: > scripsit Monique Y. Herman: >> On Thu, 04 Dec 2003 at 21:46 GMT, Thanasis Kinias penned: > >> > OK, I recompiled and enabled that... (Aside: Lots of possible >> > gotchas switching to 2.6...) >> >> Please elaborate! > > Well, I didn't mean to be melodramatic ;) I didn't mean to imply that you were =P > The biggest one for me is that OpenAFS is apparently completely > unusable with a 2.6 kernel, so my machines with AFS home directories > have to stay with 2.4 for now... > > The others have to do with ALSA, the new module format, and the > default config. I never used ALSA before, so I had to do a bit of > learning there to get sound working. The new module format means that > modconf is unusable, and I haven't got my head quite around how the > /etc/modprobe.d differs from /etc/modutils, for example. It's not a > big problem, it just requires taking the time to read a bit. Finally, > the default config of Sid's 2.6.0-test9 has a lot of things disabled > that I didn't expect, so I had do do a few recompiles before I got a > usable kernel. Unloading modules, as came up here, was one; sound > support was another. There were a couple others as I recall, but I > didn't keep notes and deleted the useless kernels that resulted from > my flailing about... > Hrm. Okay, well, I don't know what AFS is (though now I'm thinking I should find out), and I don't use sound at the moment, so I probably just have to worry about the "couple others" =P Actually, I don't think I'll be using 2.6 till it's considered pretty solid, but I like to pay attention to what's going on, anyway. -- monique -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: ye olde upgrade vs. dist-upgrade
Marc Wilson wrote: > On Wed, Dec 03, 2003 at 08:41:27PM -0800, Bill Moseley wrote: >> Is there a reason to use or not use dist-upgrade on Woody machines >> for security updates? > > Is there a reason to not actually bother reading the man page for > apt-get and learning the difference between the two targets? ? So you automatically assume that when a person reads the man page he understands what's being said? That's not the best assumption IMHO. Benedict -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: [OT] Slashdot and media accuracy (was Re: Improved Debian Project Emergency Communications)
I'm sorry that my first post to debian-user is so off-topic, and that I don't have a key yet. I hope to rectify the latter ASAP. On Thu, Dec 04, 2003 at 01:34:11PM -0700, Monique Y. Herman wrote: > In theory, we have a multi-party system. In practice, voting for a > "third-party" candidate is a wasted vote, because everyone "knows" that > every vote cast outside of the Big Two is wasted, and so no one bothers. > > If we had a system in which we could vote more than once, for example by > specifying a first, second, and third choice, maybe we would see some > shake-up. The concept I believe you're formulating is commonly called Instant Runoff Voting. It's an exciting voting reform developed in the 1870s that has been gaining some small momentum of late. Cheers, Jason Whittle -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Creating VCD from AVI
On Thu, Dec 04, 2003 at 06:13:46PM +0200, Aryan Ameri wrote: > I have some AVI files here, which are riped from my DVDs using acidrip > (a frontend to mencoder). Now I want to write to a CD as a VCD, so that > they don't took space on my hard. > > My googling shows that there are a couple of tools I should use. > mjpegtools, vcdimager, cdrdao etc. However I don't quite get the > picture that want: How can I build a VCD. What is the process of making > a VCD, from a AVI file. Actually mencoder comes with the mencvcd script that completely automates the process of converting AVI to VCD. If you need to chop it up into smaller pieces first I recommend avidemux (which can also make VCDs, but in my experience is more likely to have trouble with sound sync). The problem I've seen is that with the current Sarge (you don't mention a distribution) and the Christian Marillat mencoder-k7 and support packages, mplex doesn't work. However, vcdmplex and vcdimager work fine on the files mencoder makes. -- Carl Fink [EMAIL PROTECTED] Jabootu's Minister of Proofreading http://www.jabootu.com -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Debian Server Compromise -- A Fire Drill ??
scripsit Monique Y. Herman: > I find this to be unlikely. I mean, look at the risk vs. reward. > > Reward: they cause a very temporary disruption to some trusted sources > and cause some folks to maybe worry about how secure linux might be. > > Risk: getting caught funding black hats against the competition. > > This just doesn't sound like good business to me. I'm very much not a black-helicopter conspiracy type, but I think it unlikely that, if someone who didn't want to be found out was behind this, it could ever be pinned on them. Look at the trouble FBI has pinning things like contract killings on mafia bosses; the amount of effort law enforcement is willing to spend on going after them is _much_ higher than what they'd be willing to spend on crackers going after Linux. If Foo Corp. wanted to do this, they really wouldn't have anything to fear from the law -- and if they're confident that they have more media pull, they wouldn't have anything to fear from the media either. That's not to say that MS/SCO/whoever had anything to do with this at all, just that I wouldn't discount the possibility based solely on the (to me, apparently small) risk they would be taking. -- Pax vobiscum; pax cum omnibus. Thanasis Kinias tkinias at asu.edu Doctoral Student, Department of History Arizona State University Tempe, Arizona, U.S.A. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: 2.6 kernel: module cannot be unloaded
scripsit Roberto Sanchez: > I'm not sure. Do you have discover or kudzu installed (both are > hardware autodetectors that may try loading/unloading modules to > figure out what you have. Just a thought. Nope; neither is installed. This is a fairly new net install with no tasksel stuff, either, just base plus X and the apps I use. -- Pax vobiscum; pax cum omnibus. Thanasis Kinias tkinias at asu.edu Doctoral Student, Department of History Arizona State University Tempe, Arizona, U.S.A. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Debian Server Compromise -- A Fire Drill ??
ben writes: > there's got to be a reason why no calling card was left, i.e., the caller > has a vested interest in not claiming credit, which would tend to suggest > a contract job. No. It merely suggests that they didn't finish the job. The "calling-card" would have been left in the archive had they gotten into it. > given the regular stream of ridiculous garbage coming from redmond about > linux... I doubt Microsoft was involved. > i'm amazed at the speed of the recovery, given that everything that had > to be done was done by folks who do this in their spare time. That's not entirely true. -- John Hasler [EMAIL PROTECTED] Dancing Horse Hill Elmwood, Wisconsin -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Removal of packages from woody/main
Greetings: As of 21.30GMT today (when a local rsync of debian's archive is run) I noticed that quite a few files have been removed from the main section of debian's pool. Can anyone shed any light as to why this happened, and if they are coming back? Some of the effected files are not in use by our company anymore (as they have been updated to fix vulnerabilities, etc), but some we still depend on until an upgrade effort can be completed. Thank you. Andrew Davidoff Notable (to us) files that were removed: pool/main/u/util-linux/bsdutils_2.11n-4_i386.deb pool/main/c/console-data/console-data_1999.08.29-24_all.deb pool/main/d/debianutils/debianutils_1.16_i386.deb pool/main/f/file/file_3.37-3.1_i386.deb pool/main/g/gzip/gzip_1.3.2-3_i386.deb pool/main/g/glibc/libc6_2.2.5-11.2_i386.deb pool/main/c/cupsys/libcupsys2_1.1.14-3_i386.deb pool/main/o/openldap2/libldap2_2.0.23-6_i386.deb pool/main/libm/libmailtools-perl/libmailtools-perl_1.44-1_all.deb pool/main/libp/libpng/libpng2_1.0.12-3.woody.2_i386.deb pool/main/p/perl/libperl5.6_5.6.1-7_i386.deb pool/main/m/man-db/man-db_2.3.20-18_i386.deb pool/main/m/mime-support/mime-support_3.18-1_all.deb pool/main/u/util-linux/mount_2.11n-4_i386.deb pool/main/n/nano/nano_1.0.6-2_i386.deb pool/main/p/perl/perl_5.6.1-7_i386.deb pool/main/p/perl/perl-base_5.6.1-7_i386.deb pool/main/p/perl/perl-modules_5.6.1-7_all.deb pool/main/p/procps/procps_2.0.7-8_i386.deb pool/main/t/tcpdump/tcpdump_3.6.2-2.2_i386.deb pool/main/u/util-linux/util-linux_2.11n-4_i386.deb pool/main/u/util-linux/util-linux-locales_2.11n-4_all.deb pool/main/z/zlib/zlib1g_1.1.4-1_i386.deb pool/main/e/exim/exim_3.35-1_i386.deb -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Color in text console
On Thursday 04 December 2003 4:45 pm, Leandro GuimarÃes Faria Corsetti Dutra wrote: > Em Thu, 04 Dec 2003 21:06:12 +, Cruncher escreveu: > > with aalib they run in black, white and grey. > > Talking out of the top of my head, does aalib has an option > somewhere to enable ANSI output? ASCII art is per definition > black-and-white, but ANSI terminals are what gives you colour. You might look at the "Colour AsCii Art library." It has an unfortunate name (and mascot), but it does what you want. =) http://sam.zoy.org/projects/libcaca/ -- Wesley J. Landaker - [EMAIL PROTECTED] OpenPGP FP: 4135 2A3B 4726 ACC5 9094 0097 F0A9 8A4C 4CD6 E3D2 pgp0.pgp Description: signature
Re: Debian Server Compromise -- A Fire Drill ??
On Fri, 05 Dec 2003 at 00:48 GMT, [EMAIL PROTECTED] penned: > > the question i keep arriving at is who benefits from the publicity > surrounding this? there's got to be a reason why no calling card was > left, i.e., the caller has a vested interest in not claiming credit, > which would tend to suggest a contract job. as to the issue of whether > the attacker had previous knowledge of the debian servers, only a fool > wouldn't do everything to acquaint him/herself with the environment > where they plan to engage in mischief. Maybe someone just wanted to test their abilities against what should be a fairly locked-down system? > given the regular stream of ridiculous garbage coming from redmond > about linux, while new holes are found in their os and apps on an > almost weekly basis, this seems like the next stage in the campaign to > buttress the losses they've been taking all the while linux has found > favor. apart from the money issue, linux, and particularly debian, > represents the absolute opposite to their culture. this distro, as a > product of volunteerism on the part of people who have nothing to gain > apart from their own satisfaction in making the thing work, represents > a huge philosophical challenge to those who view the world in terms of > how much they can extract from it. I find this to be unlikely. I mean, look at the risk vs. reward. Reward: they cause a very temporary disruption to some trusted sources and cause some folks to maybe worry about how secure linux might be. Risk: getting caught funding black hats against the competition. This just doesn't sound like good business to me. -- monique -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: My machine compromised?
don't know if its normal, but vmware3 does something that causes chkrootkit to see 1 hidden process for me. wasn't activly using it at the time, so maybe if you have the vm running it causes more hidden processes. On Thursday 04 December 2003 17:09, Micha Feigin wrote: > First thing, you sent this to me instead of the list which seems > like what you wanted considering the last question. > > On Wed, Dec 03, 2003 at 10:38:10PM -0800, Vanh Phom wrote: > > On Wed, 2003-12-03 at 02:07, Micha Feigin wrote: > > > On Wed, Dec 03, 2003 at 01:03:34AM -0800, Vanh Phom wrote: > > > > Hi folk, > > > > After reading on report of servers compromised. Just for > > > > curiorsity I run chkrootkit on my own machine and come up > > > > with this result: > > > > > > > > Searching for anomalies in shell history files... nothing > > > > found Checking `asp'... not infected > > > > Checking `bindshell'... not infected > > > > Checking `lkm'... You have12 process hidden for readdir > > > > command You have12 process hidden for ps command > > > > Warning: Possible LKM Trojan installed > > > > Checking `rexedcs'... not found > > > > Checking `sniffer'... > > > > eth0: PROMISC > > > > > > > > Is my machine compromised? How to fix this? > > > > > > > > Vanh > > > > > > If its unstable, then there is a bug with chkrootkit. > > > do a ps ax and see how many processes you have with pid 0. > > > Don't remember the criterion, but some processes owned by the > > > kernel are started with the kernel's pid which is 0 (I hope I > > > am not mixing things up, but that is the essential idea, search > > > the archives on this if you want the exact story). > > > also try running /usr/lib/chkrootkit/chkproc -v and it will > > > tell you exactly which processes are seen as hidden. You can > > > then try to do: cat /proc//status (hoping that wasn't > > > compromised if the computer was, which it probably wasn't) to > > > see what the process actually is. > > > > > > > -- > > > > To UNSUBSCRIBE, email to [EMAIL PROTECTED] > > > > with a subject of "unsubscribe". Trouble? Contact > > > > [EMAIL PROTECTED] > > > > I'm running 2.6.0test11 sid. > > /usr/lib/chkrootkit/chkproc -v report no pid 0 > > This will not show you pid 0 but what pids it thinks are hidden. > You should see pid 0 on ps ax. > What pid does ps ax shows for those processes? could it be that > they have the same pid as their parent process instead of a > seperate pid? > > > cat /proc//status report all 8 process are either nautilus > > or evolution as sleep. > > I guess is just a false positive for checkrootkit. I'm just > > starting to run debian in the last month or so. So I'm pretty > > green on debian. BTW, is anyone know how how to setup guarddog to > > start whenever the machine is booting. On SuSe the firewall > > automatically configure to start when machine is booting. > > > > Vanh -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: I'm face Few problem , need suggestion
On Thu, Dec 04, 2003 at 02:42:21PM -0700, Monique Y. Herman wrote: > On Thu, 04 Dec 2003 at 17:14 GMT, H. S. penned: > > Oh boy. I can understand that. I went through the same thing myself a > > few weeks ago. But then I was not new to the world of Linux so it > > didn't take me 4 days :) But I agree, the installation routine of > > Debian is hideous. Delusions of grandeur must be over and the routine > > *must* be vastly improved and made easier if Debian want to live up to > > people's expectations. > > > > Must it, now? And which people? > > I don't have a problem with the installer. I'd rather have devs working > on other stuff than on something that works (for me). > > Many people, including me, would not recommend debian for a linux > novice, though there are debian-based distros that some might recommend. > But I don't really see this as a problem. There are different distros > for different needs, and debian is designed for the needs of an > experienced linux user. > -- someone, a while back, said debian isn't necessarily the best place to start but definitely the best place to end up. that sums it up, for me. ben -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: I'm face Few problem , need suggestion
On Thu, Dec 04, 2003 at 06:35:47PM -0500, Paul Morgan wrote: > > And I sure as heck wouldn't want to discourage anyone new to Linux by > making them think, "Wow, he thinks this is easy, but it's really hard for > me, I'd better go back to XP". I was a lifelong Windows geek and had a couple years of serious SunOS/X11/shell scripting at college (okay, I was still a dumbass) but it still took me about one month of 8 hours a day nonstop learning Debian before I got all my hardware detected. I'd burn Redhat and Mandrake ISOs to compare them with what I was seeing in Debian. It was *really* hard. If I hadn't been out of work (and still out of work) there's no way I'd have put up with it. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Debian Server Compromise -- A Fire Drill ??
On Fri, Dec 05, 2003 at 12:48:58AM +, [EMAIL PROTECTED] wrote: > > given the regular stream of ridiculous garbage coming from redmond about linux, while new holes are found in their os and apps on an almost weekly basis, this seems like the next stage in the > campaign to buttress the losses they've been taking all the while linux > has found favor. You can bet they well capitalize on these (I bet they haven't even noticed yet) but I highly doubt they had anything to do with it. I bet a few MS Devs are aware of the security issues but in general MS hasn't noticed yet; when they do you can bet Infoworld/news.com/microsoft.com will be plastered with it. > on the subject of disclosure of methods, i've been trusting the team for > almost five years, since i first came across debian. i have no reason > not to trust them now. I like them too but faith like that is just made to be broken. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Color in text console
Em Thu, 04 Dec 2003 21:06:12 +, Cruncher escreveu: > with aalib they run in black, white and grey. Talking out of the top of my head, does aalib has an option somewhere to enable ANSI output? ASCII art is per definition black-and-white, but ANSI terminals are what gives you colour. -- Leandro GuimarÃes Faria Corsetti Dutra <[EMAIL PROTECTED]> +55 (11) 9406 7191 Belo Horizonte, Londrina, SÃo Paulo +55 (11) 5686 9607 http://br.geocities.com./lgcdutra/ +55 (11) 5685 2219 -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: I'm face Few problem , need suggestion
On Thu, 04 Dec 2003 17:52:00 -0500, Bijan Soleymani wrote: > Paul Morgan <[EMAIL PROTECTED]> writes: > >> On Thu, 04 Dec 2003 14:42:21 -0700, Monique Y. Herman wrote: >> You know, people are always saying this (about the installer being >> difficut), but when I set up my first debian installation (potato), I >> didn't have any difficulty at all. >> >> Of course, setting up some stuff (like X) was harder than it is now, but >> the installer was great. I think it's just really a question of reading >> the docs first, then thinking and planning. > > I agree that the installer isn't that difficult to get through but > once you're done you're faced with a text mode login. When you're new > and don't know any command this isn't very useful. I mean there's a > huge step between that and having a working X setup, etc. On the other > hand distributions like Red Hat, Mandrake, Suse, etc. once you finish > the install you boot up into gnome or kde. > > I compare the current installatin process with the process of > installing knoppix to the harddisk. > > Knoppix: > 1) Put knoppix cd in. > 2) Boot. > 3) Run knx-hdinstall. > 4) Partition disks. > 5) Wait 20 minutes. > 6) Reboot into kde or whatever X setup you like. > > Plain Debian: > 1) Put cd in. > 2) Boot. > 3) Partition disks. > 4) Get module selection dialog. > 5) Get network setup dialog. > 6) Get asked where you want to install from. > 7) Reboot. > 8) Get asked a bunch of other questions. > 9) Get dumped into tasksel or dselect. > 10) Get dumped into scary text mode login. > > Bijan You are dead right, of course. I keep forgetting that there are folks new to Unix, even, installing debian. Which is really great. I have difficulty seeing a text mode login as scary, but I'm sure that's because of long familiarity with Unix and mainframe OSes. It's almost impossible for me to look at that with new eyes. And there wasn't much if any autodetection with potato as far as I remember; I had to know my hardware. But I've been hacking and building PCs for a long time, so that wasn't a big deal either. I guess I am *not* the person to help a newcomer, not everyone's an obsessive geek with no life away from a computer. And I sure as heck wouldn't want to discourage anyone new to Linux by making them think, "Wow, he thinks this is easy, but it's really hard for me, I'd better go back to XP". -- paul "The number of UNIX installations has grown to 10, with more expected." (The UNIX Programmer's Manual, 2nd Edition, June 1972) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Debian Server Compromise -- A Fire Drill ??
On Thu, Dec 04, 2003 at 04:57:55PM -0500, ScruLoose wrote: > On Thu, Dec 04, 2003 at 01:50:35PM -0700, Dave wrote: > > On Thu, 04 Dec 2003 20:20:21 +0100, Terry Hancock <[EMAIL PROTECTED]> wrote: > > > [...] > > >There is also the point that *somebody* found this bug. Just not the > > >folks we were hoping would. ;-) Letting real crackers hammer your > > >system is another way to find bugs, although we hope it's a last resort. > > > > You missed my point. I think this *is* a fire drill! I think this > > break-in was done by the best folks we could ever hope for. > > I disagree entirely. All the evidence seems to indicate that this was a > serious compromise attempt by a real Black Hat. The Debian folks caught > it quickly by a combination of good luck and good management. > > > Consider this: The attacker chose a system that was heavily guarded and > > would generate a quick response from the people who could distribute a fix > > most quickly. He or she had intimate knowledge of the various Debian > > servers. And no damage was done. > > Is there any actual indication that the attacker had prior knowledge of > the Debian servers? I don't remember any mention of that in the official > announcements so far. As for "No damage was done" I believe that has to > do with the security model of the package repositories. I don't > know the details, but my money says they're designed to be hard to > tamper with. > > > Can you hope for a better hacker than this? Do you think he could have had > > the same impact by merely announcing that he *could* break into a system if > > he wanted? > > It's "cracker". Not "hacker". > http://web.bilkent.edu.tr/Online/Jargon30/JARGON_C/CRACKER.HTML > > If it were a publicity stunt, somebody would probably have made some > kind of "I did it and here's why" statement ... from a throwaway hotmail > address or some other hard-to-trace source. Or left a "ha-ha, see how > easily I 0wnzed yer b0x" message on the system to be found. > I see no indication in any of the reports that the intruder(s) expected > to be caught, or did this as a deliberate warning. > If it weren't for the frequent oopses and the AIDE warnings, I > completely believe the attacker would be busily figuring out how to get > into the package archive to tamper with the distro itself. > the question i keep arriving at is who benefits from the publicity surrounding this? there's got to be a reason why no calling card was left, i.e., the caller has a vested interest in not claiming credit, which would tend to suggest a contract job. as to the issue of whether the attacker had previous knowledge of the debian servers, only a fool wouldn't do everything to acquaint him/herself with the environment where they plan to engage in mischief. given the regular stream of ridiculous garbage coming from redmond about linux, while new holes are found in their os and apps on an almost weekly basis, this seems like the next stage in the campaign to buttress the losses they've been taking all the while linux has found favor. apart from the money issue, linux, and particularly debian, represents the absolute opposite to their culture. this distro, as a product of volunteerism on the part of people who have nothing to gain apart from their own satisfaction in making the thing work, represents a huge philosophical challenge to those who view the world in terms of how much they can extract from it. the attacks are, on the one hand, a wake-up call, but, on the other, a statement from the opposition that proves both the significance and the ascendance of human cooperation as a power, with no other incentive in mind than to do the best that can be done. on the subject of disclosure of methods, i've been trusting the team for almost five years, since i first came across debian. i have no reason not to trust them now. i'm amazed at the speed of the recovery, given that everything that had to be done was done by folks who do this in their spare time. my thanks and respect. debian keeps on rockin'. ben -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Maildrop + SA
> So, I would like send spams (witch my SA didn't catch) to e-mail > [EMAIL PROTECTED] and my maildrop use sa-learn in this e-mail. > How can I do that in my maildrop??? Be careful about doing this. Things that you forward to [EMAIL PROTECTED] will appear to come from your address, so you may accidentally teach SpamAssassin to negatively score messages from your domain. A better solution is to export a maildir as a shared IMAP folder, and then drag-and-drop spams there with your mail reader. The spam will not be changed by another run through the MTA, which will improve the effectiveness of sa-learn. You could then run a cron job against that maildir like this: IFS=' ' for i in $(find /my/spam/maildir -type f) do sa-learn --spam "$i" && rm "$i" done Gilberto Villani Brito wrote: Hi, I have a server with qmail + vpopmail + spamassassin + maildrop. My maildrop use spamc to mark spam and move it to other dir. So, I would like send spams (witch my SA didn't catch) to e-mail [EMAIL PROTECTED] and my maildrop use sa-learn in this e-mail. How can I do that in my maildrop??? I tried this: --- mailfilter import EXT import HOST SHELL="/bin/sh" VPOP="| /usr/local/vpopmail/bin/vdelivermail '' bounce-no-mailbox" VHOME=`/usr/local/vpopmail/bin/vuserinfo -d [EMAIL PROTECTED] VUSR=`/usr/local/vpopmail/bin/vhmchk.pl $EXT $HOST` if ( $SIZE < 262144 ) { exception { xfilter "/usr/local/bin/spamc -f -u [EMAIL PROTECTED]" } } if (/^X-Spam-Flag: *YES/) { to "/usr/local/vpopmail/domains/domain.com/spam/Maildir/" exit } else { if (/^From:.*<[EMAIL PROTECTED]>.*/ && /^To: [EMAIL PROTECTED]/){ to "/usr/local/vpopmail/domains/domain.com/spam/Maildir/.Spam/" # it stop here and the next comands don't execute '/usr/local/bin/sa-learn --spam /usr/local/vpopmail/domains/domain.com/spam/Maildir/.Spam/new/*' 'rm -f /usr/local/vpopmail/domains/domain.com/spam/Maildir/.Spam/new/*' exit } to "$VPOP" exit } mailfilter Hugs Gilberto -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: I'm face Few problem , need suggestion
Paul Morgan wrote: On Thu, 04 Dec 2003 14:42:21 -0700, Monique Y. Herman wrote: Of course, setting up some stuff (like X) was harder than it is now, but That was exactly where I had the problem, because the "good enough" installer wouldn't tell me anywhere what to do with a wheel mouse, though it had a lengthy explanation about the other kind of mouse. The trick was not know in advance in what USB modules to include I guess, otherwise there was no option of /inputs/mice or something like this in the devices menu when the installer was explaning what a mouse device is to the user while not knowing what a wheel mouse is! the installer was great. I think it's just really a question of reading the docs first, then thinking and planning. True, reading some docs and knowing what a partition is, how big certain partitions should be, and other such fundamental things should be fine. But it is not impossible to make a "Back" button in the ncurses-gui so that a mistake can be undone? Even this one simple improvement will be a HUGE one in the installer. ->HS -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: I'm face Few problem , need suggestion
Monique Y. Herman wrote: On Thu, 04 Dec 2003 at 17:14 GMT, H. S. penned: Oh boy. I can understand that. I went through the same thing myself a few weeks ago. But then I was not new to the world of Linux so it didn't take me 4 days :) But I agree, the installation routine of Debian is hideous. Delusions of grandeur must be over and the routine *must* be vastly improved and made easier if Debian want to live up to people's expectations. Must it, now? And which people? 1) People who want to start using Debian without spending multiple days installing it. 2) People who are not developers. 3) People who believe that good things need not be made difficult to do. 4) People who believe that things can be improved. 5) People who live in the real world and know wheel mouse exists (Debian installer doesn't) ;) I don't have a problem with the installer. I'd rather have devs working on other stuff than on something that works (for me). *You* may not have a problem, that doesn't mean others shouldn't demand an improvement. For example, you may not be color blind, but if you were planning a presentation using color slides, wouldn't you want to have a color scheme that is not 'offensive' to color blind people? Or maybe if someone says s/he can't read your slides properly, would you retort: "*I* can, *I* don't see a problem, hmmrpphh!" and continue with your presentation? Moreover, if one were to do a poll today out of the number of people interested in using Debian asking them if Debian's installer needs to improved upon, I am certain you would be in a minority. Many people, including me, would not recommend debian for a linux novice, though there are debian-based distros that some might recommend. Not an excuse NOT to improve the installer. Tell me, why is apt-used in Debian? Why not just plain use tar-gzipped files and the usual configure,make,install procedure, since many developers are fine with that too and it is *not* impossible to install and maintain a system with tar-gzipped files? The point is, saying "I have no problem so no improvement is needed" is just not good enough reason to argue NOT wanting an improvement. Thinking Debian installer need NOT be improved and is fine enough == delusions of grandeur. ->HS -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: My machine compromised?
First thing, you sent this to me instead of the list which seems like what you wanted considering the last question. On Wed, Dec 03, 2003 at 10:38:10PM -0800, Vanh Phom wrote: > On Wed, 2003-12-03 at 02:07, Micha Feigin wrote: > > On Wed, Dec 03, 2003 at 01:03:34AM -0800, Vanh Phom wrote: > > > Hi folk, > > > After reading on report of servers compromised. Just for curiorsity I > > > run chkrootkit on my own machine and come up with this result: > > > > > > Searching for anomalies in shell history files... nothing found > > > Checking `asp'... not infected > > > Checking `bindshell'... not infected > > > Checking `lkm'... You have12 process hidden for readdir command > > > You have12 process hidden for ps command > > > Warning: Possible LKM Trojan installed > > > Checking `rexedcs'... not found > > > Checking `sniffer'... > > > eth0: PROMISC > > > > > > Is my machine compromised? How to fix this? > > > > > > Vanh > > > > > > > If its unstable, then there is a bug with chkrootkit. > > do a ps ax and see how many processes you have with pid 0. Don't > > remember the criterion, but some processes owned by the kernel are > > started with the kernel's pid which is 0 (I hope I am not mixing things > > up, but that is the essential idea, search the archives on this if you > > want the exact story). > > also try running /usr/lib/chkrootkit/chkproc -v and it will tell you > > exactly which processes are seen as hidden. You can then try to do: > > cat /proc//status (hoping that wasn't compromised if the computer > > was, which it probably wasn't) to see what the process actually is. > > > > > > > > > > > -- > > > To UNSUBSCRIBE, email to [EMAIL PROTECTED] > > > with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED] > > > > > > > I'm running 2.6.0test11 sid. > /usr/lib/chkrootkit/chkproc -v report no pid 0 This will not show you pid 0 but what pids it thinks are hidden. You should see pid 0 on ps ax. What pid does ps ax shows for those processes? could it be that they have the same pid as their parent process instead of a seperate pid? > cat /proc//status report all 8 process are either nautilus or > evolution as sleep. > I guess is just a false positive for checkrootkit. I'm just starting to > run debian in the last month or so. So I'm pretty green on debian. > BTW, is anyone know how how to setup guarddog to start whenever the > machine is booting. On SuSe the firewall automatically configure to > start when machine is booting. > > Vanh > > > -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Galeon troubles
Em Thu, 04 Dec 2003 13:17:28 -0500, Mark Roach escreveu: > try running galeon under strace It gave a *huge* output which I'm in no position to understand, and I'd rather avoid posting here for its size... then end seems interesting, time(NULL) = 1070575025 time(NULL) = 1070575025 read(29, "time=\"1068594145\" visits=\"1\"/>\n "..., 4096) = 4096 time(NULL) = 1070575025 time(NULL) = 1070575025 --- SIGSEGV (Segmentation fault) @ 0 (0) --- unlink("/home/leandro/.galeon/mozilla/galeon/lock") = 0 rt_sigprocmask(SIG_SETMASK, NULL, ~[KILL STOP], 8) = 0 rt_sigsuspend(~[KILL STOP RTMIN] Qui Dez 04 20:42 dutras:~$ Should I put it up on the web for you to see, or search for something specific and post here? -- Leandro GuimarÃes Faria Corsetti Dutra <[EMAIL PROTECTED]> +55 (11) 9406 7191 Belo Horizonte, Londrina, SÃo Paulo +55 (11) 5686 9607 http://br.geocities.com./lgcdutra/ +55 (11) 5685 2219 -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: I'm face Few problem , need suggestion
ScruLoose <[EMAIL PROTECTED]> writes: > On Thu, Dec 04, 2003 at 06:00:18PM -0500, Bijan Soleymani wrote: > >> ... Having autodetection on ia32 doesn't hurt sparc users (it >> doesn't help them either, but that's not a problem). > > I think you're preaching to the choir on this issue. > Unless I'm mistaken, the new "debian-installer" that will ship with > Sarge _has_ a fair degree of hardware autodetection. I'm glad to hear that. I'll check it out soon. > Of course, this doesn't change the fact that Knoppix serves a completely > different niche than Debian and it wouldn't make a lot of sense to > strive to make Debian just like Knoppix. > Knoppix made some sacrifices to achieve a no-questions-asked, > straight-outta-the-box desktop system, and it's great for that purpose. > Debian's priorities are not the same and there's no reason they should > be. Agreed. I think Knoppix is more of a taste than the real thing. But I think that there are some good features that Knoppix has that could be added to Debian (like autodetection). But the way things are it's pretty difficult for a newbie to go from Knoppix to Debian. I'm just glad that is being worked on. Bijan -- Bijan Soleymani <[EMAIL PROTECTED]> http://www.crasseux.com -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: 2.6 kernel: module cannot be unloaded
scripsit Monique Y. Herman: > On Thu, 04 Dec 2003 at 21:46 GMT, Thanasis Kinias penned: > > OK, I recompiled and enabled that... (Aside: Lots of possible > > gotchas switching to 2.6...) > > Please elaborate! Well, I didn't mean to be melodramatic ;) The biggest one for me is that OpenAFS is apparently completely unusable with a 2.6 kernel, so my machines with AFS home directories have to stay with 2.4 for now... The others have to do with ALSA, the new module format, and the default config. I never used ALSA before, so I had to do a bit of learning there to get sound working. The new module format means that modconf is unusable, and I haven't got my head quite around how the /etc/modprobe.d differs from /etc/modutils, for example. It's not a big problem, it just requires taking the time to read a bit. Finally, the default config of Sid's 2.6.0-test9 has a lot of things disabled that I didn't expect, so I had do do a few recompiles before I got a usable kernel. Unloading modules, as came up here, was one; sound support was another. There were a couple others as I recall, but I didn't keep notes and deleted the useless kernels that resulted from my flailing about... -- Pax vobiscum; pax cum omnibus. Thanasis Kinias tkinias at asu.edu Doctoral Student, Department of History Arizona State University Tempe, Arizona, U.S.A. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: I'm face Few problem , need suggestion
On Thu, Dec 04, 2003 at 06:00:18PM -0500, Bijan Soleymani wrote: > Thanasis Kinias <[EMAIL PROTECTED]> writes: > > scripsit Bijan Soleymani: > > > > I was under the impression that Knoppix, as ia32-only, was just in a > > different category than Debian, with (including stuff under development) > > four kernels and thirteen architectures. I don't think anyone objects > > to having spiffy hardware autodetection, it's just that making it work > > for Debian is a bit different from making it work for Knoppix. > > ... Having autodetection on ia32 doesn't hurt sparc users (it > doesn't help them either, but that's not a problem). I think you're preaching to the choir on this issue. Unless I'm mistaken, the new "debian-installer" that will ship with Sarge _has_ a fair degree of hardware autodetection. Of course, this doesn't change the fact that Knoppix serves a completely different niche than Debian and it wouldn't make a lot of sense to strive to make Debian just like Knoppix. Knoppix made some sacrifices to achieve a no-questions-asked, straight-outta-the-box desktop system, and it's great for that purpose. Debian's priorities are not the same and there's no reason they should be. Cheers! -- ---<>--- He that breaks a thing to find out what it is has left the path of wisdom. - J.R.R. Tolkien --<>-- pgp0.pgp Description: PGP signature
Re: [OT] Slashdot and media accuracy (was Re: Improved Debian Project Emergency Communications)
Monique Y. Herman wrote: On Thu, 04 Dec 2003 at 12:38 GMT, Hoyt Bailey penned: - Original Message - From: "Monique Y. Herman" In theory, we have a multi-party system. In practice, voting for a "third-party" candidate is a wasted vote, because everyone "knows" that every vote cast outside of the Big Two is wasted, and so no one bothers. If we had a system in which we could vote more than once, for example by specifying a first, second, and third choice, maybe we would see some shake-up. Vote for your third-party during the primary, to get the third party some name-recognition and perhaps on the general ballot, and then vote for the lesser-of-two-evils in the General Election. -- Kent -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: 2.6 kernel: module cannot be unloaded
Thanasis Kinias wrote: scripsit Roberto Sanchez: They are unsafe to unload because it is possible that unloading them could cause very serious problems. To unload those, you must have enabled CONFIG_MODULE_FORCE_UNLOAD (for Forced Module Unloading): OK, now I'm confused. Why, then, would the kernel be attempting to load _and_ unload these drivers during boot? I only noticed this because I got the warnings that the kernel had attempted to unload them and failed during boot. I can't figure out what is causing piix or ide_probe_mod to be loaded in the first place, either. 'grep -r piix /etc/*' returns nothing... I'm not sure. Do you have discover or kudzu installed (both are hardware autodetectors that may try loading/unloading modules to figure out what you have. Just a thought. -Roberto pgp0.pgp Description: PGP signature
Re: Installing KDE
Quoting Bob Proulx <[EMAIL PROTECTED]>: > James Hosken wrote: > > I'm trying top install KDE but all I get are errors. I origianlly > > installed woody then upgraded to testing. > > There is some documentation on tricking unstable with kde into > working > here at this reference. > > http://wiki.debian.net/index.cgi?DebianKDE > Reading Package Lists... Done > Bob I have followed the instructions on the DebianKDE, but when you run apt-get install kde-core -t unstable I only get a error message Some packages could not be installed. This may mean that you have requested an impossible situation or if you are using the unstable distribution that some required packages have not yet been created or been moved out of Incoming. Since you only requested a single operation it is extremely likely that the package is simply not installable and a bug report against that package should be filed. The following information may help to resolve the situation: The following packages have unmet dependencies: kde-core: Depends: kdebase but it is not going to be installed E: Broken packages What does thes mean? Have I done some thing wrong? James -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: I'm face Few problem , need suggestion
On Thu, Dec 04, 2003 at 05:29:02PM -0500, Bijan Soleymani wrote: > "Monique Y. Herman" <[EMAIL PROTECTED]> writes: > > > Many people, including me, would not recommend debian for a linux > > novice, though there are debian-based distros that some might recommend. > > It would be nice if we could recommend Debian for novices. I was a > novice when I started using Debian, almost died trying :) I like it > now, but it would be nice if new users didn't have to go through all > those problems. They don't have to. They can use Libranet or Xandros or Knoppix if they want an "easy" way (on x86 systems). If you choose Debian, you should know that an idiot-proof installer is _not_ one of its features. > > But I don't really see this as a problem. There are different distros > > for different needs, and debian is designed for the needs of an > > experienced linux user. > > If that is the case we should at least be honest. They should post in > big bold letters on www.debian.org: > > "This Operating System is not for general users it is only for > experienced linux users. If you have never used Linux before > please go to www.redhat.org or www.mandrake.org or > www.knoppix.org." I would amend that to ... Libranet, Xandros, or Knoppix. Having experienced apt, I cannot in good faith recommend an rpm-based distro to anyone. Cheers! -- ---<>--- Beer is proof that God loves us and wants us to be happy. - Benjamin Franklin --<>-- pgp0.pgp Description: PGP signature
Re: aliasing internet addresses
scripsit Micha Feigin: > I want to alias internet addresses localy, is it possible? For > example to alias www.site1.org -> www.site2.org such that trying to > access www.site1.org would actually connect to www.site2.org. I > didn't see how to do this with /etc/hosts if it is even possible that > way. I have a personal cvs server that I can access from my local > network or from the internet, and its not convinient to access it > localy with the external address. If I understand you correctly, this is easy. I do something like that for easy access to my home workstation from outside. The home machine's `real' name is something like ipW-X-Y-Z.ph.ph.cox.net (IP address W.X.Y.Z). My laptop contains, in /etc/hosts: W.X.Y.Z ipW-X-Y-Z.ph.ph.cox.net hostname where `hostname' is the box's local hostname. You should be able to put in your /etc/hosts: A.B.C.D www.site2.org www.site1.org where A.B.C.D is the site's IP address. Then if you put www.site1.org in your browser, you will actually get www.site2.org. -- Pax vobiscum; pax cum omnibus. Thanasis Kinias tkinias at asu.edu Doctoral Student, Department of History Arizona State University Tempe, Arizona, U.S.A. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: I'm face Few problem , need suggestion
Thanasis Kinias <[EMAIL PROTECTED]> writes: > scripsit Bijan Soleymani: > >> I'm kind of in the pro-knoppix camp. I think that debian could >> incorporate certain features from knoppix. The experts could always >> disable the hardware detection, etc. But it would be very useful for >> beginners. > > I was under the impression that Knoppix, as ia32-only, was just in a > different category than Debian, with (including stuff under development) > four kernels and thirteen architectures. I don't think anyone objects > to having spiffy hardware autodetection, it's just that making it work > for Debian is a bit different from making it work for Knoppix. I've said it before and I'll say it again. People running Debian on Sparcs (I'm doing this myself) and s390s (haven't gone there yet :) know what they're doing and don't need autodetection. There's not that much hardware for those systems. On the other hand ia32 has insane amount of hardware and tons of inexperienced (Windows) users are running on that hardware. Therefore the needs are completely different. Wine (the windows emulator) is included in Debian even though it's only useful on ia32. I'm sure that there are Sparc specific packages (I think I even used one to mess with the sound card on a Sparc system). Having autodetection on ia32 doesn't hurt sparc users (it doesn't help them either, but that's not a problem). Bijan -- Bijan Soleymani <[EMAIL PROTECTED]> http://www.crasseux.com -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: only allow password change with SSH
(Please post in plain text, not HTML) On Thu, Dec 04, 2003 at 08:31:17PM +0100, Robert Cates wrote: >Hi, > >my ISP allows me to use SSH to logon (port 22), but only to change my >account password. > >I am running a Debian Woody server with SSH 3.7.1 (using protocol 2 >only) and would like to do the same. > >Does anybody know how this is done? Don't take my word for it, but: For your users, set SHELL=/usr/bin/passwd maybe? Now there _may_ be some clever way to make this dependent on the kind of login (ie console access would have bash as shell, but ssh access would get /usr/bin/passwd) but I don't know about that. Cheers! -- ---<>--- We lie loudest when we lie to ourselves. - Eric Hoffer --<>-- pgp0.pgp Description: PGP signature
Re: I'm face Few problem , need suggestion
scripsit Paul Morgan: > You know, people are always saying this (about the installer being > difficut), but when I set up my first debian installation (potato), I > didn't have any difficulty at all. Other than Linux from Scratch, the only other distro I've installed is Mandrake. Here's the difference: 1) Mandrake autodetected things like Ethernet and video cards, so I didn't have to know what hardware my box contained or what drivers to use. Debian required that I know, for example, that I needed the tulip driver -- not obvious at all for a n00b. 2) If I knew what drivers I needed (and, of course, they existed!), Debian _always_ worked -- flawlessly. Mandrake, OTOH, sometimes just crashed during installation, etc. This only applies on i386; on powerpc, Debian was a bit trickier. There just isn't the same amount of information out there to get you through figuring things out, and things are a bit more immature. Mandrake PPC, OTOH, simply didn't work at all in my experience. If the hardware autodetection in Sarge works, Debian should be just as easy to set up as Mandrake -- and I don't see it losing its advantage in stability and reliability. -- Pax vobiscum; pax cum omnibus. Thanasis Kinias tkinias at asu.edu Doctoral Student, Department of History Arizona State University Tempe, Arizona, U.S.A. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: I'm face Few problem , need suggestion
Paul Morgan <[EMAIL PROTECTED]> writes: > On Thu, 04 Dec 2003 14:42:21 -0700, Monique Y. Herman wrote: > You know, people are always saying this (about the installer being > difficut), but when I set up my first debian installation (potato), I > didn't have any difficulty at all. > > Of course, setting up some stuff (like X) was harder than it is now, but > the installer was great. I think it's just really a question of reading > the docs first, then thinking and planning. I agree that the installer isn't that difficult to get through but once you're done you're faced with a text mode login. When you're new and don't know any command this isn't very useful. I mean there's a huge step between that and having a working X setup, etc. On the other hand distributions like Red Hat, Mandrake, Suse, etc. once you finish the install you boot up into gnome or kde. I compare the current installatin process with the process of installing knoppix to the harddisk. Knoppix: 1) Put knoppix cd in. 2) Boot. 3) Run knx-hdinstall. 4) Partition disks. 5) Wait 20 minutes. 6) Reboot into kde or whatever X setup you like. Plain Debian: 1) Put cd in. 2) Boot. 3) Partition disks. 4) Get module selection dialog. 5) Get network setup dialog. 6) Get asked where you want to install from. 7) Reboot. 8) Get asked a bunch of other questions. 9) Get dumped into tasksel or dselect. 10) Get dumped into scary text mode login. Bijan -- Bijan Soleymani <[EMAIL PROTECTED]> http://www.crasseux.com -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: 2.6 kernel: module cannot be unloaded
On Thu, 04 Dec 2003 at 21:46 GMT, Thanasis Kinias penned: > scripsit Roberto Sanchez: > >> Module unloading *must* be specifically enabled in 2.6 kernels. >> Otherwise, you can only load. > > OK, I recompiled and enabled that... (Aside: Lots of possible > gotchas switching to 2.6...) Please elaborate! > > ...and I can now unload _some_ but not all modules. Specifically, > ide_probe_mod and piix are listed as `unsafe' and cannot be unloaded. > They are loaded at boot. With modconf unusable ATM I'm not sure how > to go about cleaning out the cruft... I've got a boatload of IDE > drivers being unnecessarily loaded... > -- monique -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: crontab
> * Alf Werder ([EMAIL PROTECTED]) [031204 11:16]: >> On Thu, 2003-12-04 at 19:17, Michael Martinell wrote: >> > I am definitely doing something wrong here. I want to schedule a >> job >> > to run once at 12:00noon. I set it up in cron. It waits until >> > 12:00noon, runs, and then runs every minute after. > >> > * 12 * * * /usr/sbin/parselog >> >> Try '0 12 * * * /usr/bin/parselog'. >> >> According to crontab(5) an asterix means 'first-last'. Your line is >> interpreted as '0-59' 12 * * * /usr/bin/parselog', which indeed >> means to >> start the command every minute in the time from 12pm to 1am. > > You mean 12:00 - 12:59, which is until 1pm. > > good times, > Vineet > -- > http://www.doorstop.net/ > -- > "If you can put it on a T-shirt, it's speech... To enjoin the T-shirts > as a > circumvention device is ludicrous." --Robin Gross, EFF staff attorney > I messed up all sorts of way in that email. I am going to shoot myself now, thank you. Bojan -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: aliasing internet addresses
On Thu, Dec 04, 2003 at 02:44:01PM -0800, Tom wrote: > want to the internal server's name to point to the pubic server yeah pubic server that's what I meant to say :-) I got the Flumist, the pharmacist squirted live virus up my nose, I'm out of it... -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: aliasing internet addresses
On Fri, Dec 05, 2003 at 12:07:22AM +0200, Micha Feigin wrote: > > > >I want to alias internet addresses localy, is it possible? > > > >For example to alias www.site1.org -> www.site2.org such that trying to > > > >access www.site1.org would actually connect to www.site2.org. > > > >I didn't see how to do this with /etc/hosts if it is even possible that > > > >way. > > www.site1.org is and internal name that has no meaning on the open > network. > www.site2.org is linked to a dynamic ip using freedns. > I don't want to use the same name inernaly and externaly as that can > cause some abiguity. Me = confused, think there's a communication gap please to explain have no idea what you're trying to accomplish it sounds like you have an internal server, and when you're at home you want to the internal server's name to point to the pubic server but since that can easily be done with /etc/hosts you must mean something else -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: I'm face Few problem , need suggestion
scripsit Bijan Soleymani: > I'm kind of in the pro-knoppix camp. I think that debian could > incorporate certain features from knoppix. The experts could always > disable the hardware detection, etc. But it would be very useful for > beginners. I was under the impression that Knoppix, as ia32-only, was just in a different category than Debian, with (including stuff under development) four kernels and thirteen architectures. I don't think anyone objects to having spiffy hardware autodetection, it's just that making it work for Debian is a bit different from making it work for Knoppix. -- Pax vobiscum; pax cum omnibus. Thanasis Kinias tkinias at asu.edu Doctoral Student, Department of History Arizona State University Tempe, Arizona, U.S.A. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: I'm face Few problem , need suggestion
On Thu, 04 Dec 2003 14:42:21 -0700, Monique Y. Herman wrote: > On Thu, 04 Dec 2003 at 17:14 GMT, H. S. penned: >> Oh boy. I can understand that. I went through the same thing myself a >> few weeks ago. But then I was not new to the world of Linux so it >> didn't take me 4 days :) But I agree, the installation routine of >> Debian is hideous. Delusions of grandeur must be over and the routine >> *must* be vastly improved and made easier if Debian want to live up to >> people's expectations. >> > > Must it, now? And which people? > > I don't have a problem with the installer. I'd rather have devs working > on other stuff than on something that works (for me). > > Many people, including me, would not recommend debian for a linux > novice, though there are debian-based distros that some might recommend. > But I don't really see this as a problem. There are different distros > for different needs, and debian is designed for the needs of an > experienced linux user. You know, people are always saying this (about the installer being difficut), but when I set up my first debian installation (potato), I didn't have any difficulty at all. Of course, setting up some stuff (like X) was harder than it is now, but the installer was great. I think it's just really a question of reading the docs first, then thinking and planning. -- paul "The number of UNIX installations has grown to 10, with more expected." (The UNIX Programmer's Manual, 2nd Edition, June 1972) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Debian Investigation Report after Server Compromises
- Original Message - From: "csj" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Wednesday, December 03, 2003 22:40 Subject: Re: Debian Investigation Report after Server Compromises > On 3. December 2003 at 5:52PM -0800, > Vineet Kumar <[EMAIL PROTECTED]> wrote: > > > * Monique Y. Herman ([EMAIL PROTECTED]) [031203 16:59]: > > > I have been wondering about the password-sniffing thing, too. > > > If you send a password using ssh, isn't it encrypted? > > > > > > I suppose some debian developer's kid sister could have > > > installed a keystroke logger on the dev machine ... um ... > > > > Almost there -- minus the assumption that one needs physical > > access to a machine to install a keystroke logger. At the risk > > of perpetuating the telephone game, I recall reading that the > > developer's machine had been rooted. I didn't hear how, but I > > don't really see how it matters. I picture an always-on > > machine in someone's home on a DSL or cable line. > > Now I'm curious: is it possible to get rooted while on dialup? > I'm thinking of a user with access to a slow but dirt cheap > dialup connection and so is online for significant stretches, > say, eight hours. This also assumes that no trojans or similar > have been installed on the user's system. > FYI. As one who has caught several virisus. It can happen on dialup and it has always happened to me while downloading virisus definitions from Norton.com. I dont believe that norton was infectied. Therefore it came from somewhere else. Hoyt -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: I'm face Few problem , need suggestion
"Monique Y. Herman" <[EMAIL PROTECTED]> writes: > I don't have a problem with the installer. I'd rather have devs working > on other stuff than on something that works (for me). The installer also works for me, at least most of the time. But it would be nice if relative newbies could install Debian on their own. > Many people, including me, would not recommend debian for a linux > novice, though there are debian-based distros that some might recommend. It would be nice if we could recommend Debian for novices. I was a novice when I started using Debian, almost died trying :) I like it now, but it would be nice if new users didn't have to go through all those problems. > But I don't really see this as a problem. There are different distros > for different needs, and debian is designed for the needs of an > experienced linux user. If that is the case we should at least be honest. They should post in big bold letters on www.debian.org: "This Operating System is not for general users it is only for experienced linux users. If you have never used Linux before please go to www.redhat.org or www.mandrake.org or www.knoppix.org." I'm kind of in the pro-knoppix camp. I think that debian could incorporate certain features from knoppix. The experts could always disable the hardware detection, etc. But it would be very useful for beginners. Bijan -- Bijan Soleymani <[EMAIL PROTECTED]> http://www.crasseux.com -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]