Re: What is the status of Xorg 7.0?
On 4/26/06, Miguel Enrique Cobá Martínez <[EMAIL PROTECTED]> wrote: > Jan Brons wrote: > > I am wondering if the Xorg 7.0 update problems are solved. I am using > > Sid AMD64 and just want to do a apt-update but are mainly waiting for > > most of the Xorg problems are solved. If I do an update I see for > > example that xserver-common 6.9 xfree86-common and xprint are going > > to be removed. Can't find this to be an safe option! I am no Xorg > > expert, so can anyone give me a clue? > > > > > I have just aptitude dist-upgraded a few day ago and all is working fine. > > [EMAIL PROTECTED]:~$ dpkg -l|grep xorg > ii libglu1-xorg 7.0.14 > transitional package for Debian etch > ii xorg 7.0.14 X.Org X > Window System > ii xserver-xorg 7.0.14 the > X.Org X server > ii xserver-xorg-core 1.0.2-5X.Org X > server -- core server > ii xserver-xorg-input-all7.0.14 the > X.Org X server -- input driver metapacka > ii xserver-xorg-input-evdev 1.0.0.5-2 X.Org X > server -- evdev input driver > ii xserver-xorg-input-kbd1.0.1.3-2 X.Org X > server -- keyboard input driver > ii xserver-xorg-input-mouse 1.0.4-2X.Org X > server -- mouse input driver > ii xserver-xorg-input-synaptics 0.14.4-4 > Synaptics TouchPad driver for X.Org/XFree86 > > You should do the following: > # aptitude update > # aptitude -d upgrade > (this is for just downloading the .debs) > then, when all is downloaded, logout your graphical desktop (no reboot > nor shutdown), change to a VT, CTRL + ALT + F1 for example, and execute > as root > # /etc/init/gdm stop > # cp /etc/X11/xorg.conf /etc/X11/xorg.conf.backup.6.9 > # aptitude upgrade > (this will begin the instalation of new .debs) > > if X11 doesnt start try > #dpkg-reconfigure xserver-xorg > > remember to check /var/log/Xorg.0.log for errors (lines beginning with (EE)) > you can start X alone (without a desktop manager) as normal user with > > $ X > > if you can see a black and white pattern and a cursor, all is ok. > > When all is ok, you can start your desktop manager with: > > # /etc/init.d/gdm start > > Try it! > > P.D If you can't start X and need to search the internet for help, use > links, lynx or elinks. They are text-mode web browsers. > > > Thanks in advance, > > > > Jan. > > > > > > So, I did backup xorg.conf just in case. I read somewhere the font paths are changed to /usr/share/font/X11 and some other things. I'll let apt change xorg.conf. But, you are saying that xsever-common isn't important anymore. I suppose that it is replaced by an equilivant package. The same is with xprint, etc.? Then it should be safe to remove these packages. I'll give it a try tonight! I love lynx, as it helped me a couple of times when I messed up Nvidia. Jan.
Re: ssh via inetd the Debian way
Joey Hess wrote: > Many embedded systems don't have swap. ssh in inetd worked ok last time > I used it as long as speed was not important. Thanks, Joey, I'll give it a whirl later on and let everyone know. Was just hoping that it was a question on dpkg-reconfigure that I was missing. -- Steve C. Lamb | But who decides what they dream? PGP Key: 8B6E99C5 | And dream I do... ---+- signature.asc Description: OpenPGP digital signature
Re: ssh via inetd the Debian way
Martin A. Brooks wrote: > If a process is unused for any length the time it will get swapped out > and will use very little, if any, real memory until it's woken up. Limited swap as well. I just rather it be well and gone and only loaded when required. -- Steve C. Lamb | But who decides what they dream? PGP Key: 8B6E99C5 | And dream I do... ---+- signature.asc Description: OpenPGP digital signature
Re: ssh via inetd the Debian way
Matthew R. Dempsky wrote: > It generates the host-specific keys at install time, but the v1 ssh > protocol requires a second smaller RSA key generated that's not used for > more than an hour, whereas the v2 protocol uses Diffie-Hellman. Ah, thanks for the explination! -- Steve C. Lamb | But who decides what they dream? PGP Key: 8B6E99C5 | And dream I do... ---+- signature.asc Description: OpenPGP digital signature
Re: ssh via inetd the Debian way
Matthew R. Dempsky wrote: > Depending on how RAM limited the system is, you might also take a look > at dropbear; it's a lightweight ssh server available in Debian. Ah, thanks. It's a 96 from unixshell.com. Trying to fit exim, apache(-ssl), SA, clamav all in 96Mb is rough. :( -- Steve C. Lamb | But who decides what they dream? PGP Key: 8B6E99C5 | And dream I do... ---+- signature.asc Description: OpenPGP digital signature
Re: What is the status of Xorg 7.0?
Jan Brons wrote: > I am wondering if the Xorg 7.0 update problems are solved. I am using > Sid AMD64 and just want to do a apt-update but are mainly waiting for > most of the Xorg problems are solved. If I do an update I see for > example that xserver-common 6.9 xfree86-common and xprint are going > to be removed. Can't find this to be an safe option! I am no Xorg > expert, so can anyone give me a clue? > I have just aptitude dist-upgraded a few day ago and all is working fine. [EMAIL PROTECTED]:~$ dpkg -l|grep xorg ii libglu1-xorg 7.0.14 transitional package for Debian etch ii xorg 7.0.14 X.Org X Window System ii xserver-xorg 7.0.14 the X.Org X server ii xserver-xorg-core 1.0.2-5X.Org X server -- core server ii xserver-xorg-input-all7.0.14 the X.Org X server -- input driver metapacka ii xserver-xorg-input-evdev 1.0.0.5-2 X.Org X server -- evdev input driver ii xserver-xorg-input-kbd1.0.1.3-2 X.Org X server -- keyboard input driver ii xserver-xorg-input-mouse 1.0.4-2X.Org X server -- mouse input driver ii xserver-xorg-input-synaptics 0.14.4-4 Synaptics TouchPad driver for X.Org/XFree86 You should do the following: # aptitude update # aptitude -d upgrade (this is for just downloading the .debs) then, when all is downloaded, logout your graphical desktop (no reboot nor shutdown), change to a VT, CTRL + ALT + F1 for example, and execute as root # /etc/init/gdm stop # cp /etc/X11/xorg.conf /etc/X11/xorg.conf.backup.6.9 # aptitude upgrade (this will begin the instalation of new .debs) if X11 doesnt start try #dpkg-reconfigure xserver-xorg remember to check /var/log/Xorg.0.log for errors (lines beginning with (EE)) you can start X alone (without a desktop manager) as normal user with $ X if you can see a black and white pattern and a cursor, all is ok. When all is ok, you can start your desktop manager with: # /etc/init.d/gdm start Try it! P.D If you can't start X and need to search the internet for help, use links, lynx or elinks. They are text-mode web browsers. > Thanks in advance, > > Jan. > > -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
etch testing bug 341055 spamassassin and exim - high load
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=341055 http://issues.apache.org/SpamAssassin/show_bug.cgi?id=4590 Anyone have a work around? the "--round-robin" from the above link has lessened the issue however it is still creating a load ave of over 12.0 ! I tried downgrading to sarge/stable for sa sa-exim and exim-daemon-heavy and ended up with "TLS cache read failed" What is that and how can the cache be fixed? Just recently did a apt-get update;apt-get dist-upgrade on etch. Was already on etch. This brought in: spamassassin 3.1.0a-2 exim-daemon-heavy 4.61-1 sa-exim 4.2.1-2 -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Debian SSH server configuration
On Tue, Apr 25, 2006 at 07:23:03PM -0400, Bruce Corbin wrote: > Any suggestions? Have you commented out ``UsePAM yes'' at the bottom of Debian's default /etc/ssh/sshd_config? -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
[Fwd: Re: Debian SSH server configuration]
Thanks. I'll read up on certificates and read the link at the bottom of your reply. It's not sinking in at the moment but hopefully it will after a little reading. With respect to the problem: I want to have files on my "server" at home and have my laptop be the only "out of house" machine that can access them. This much I have already, but I enter a password to get in. I may be off base, but it seems like I should be able to have the key on the laptop and get in without using a password or pass phrase. It isn't really a big deal, but it bothers me that I think I should be able to do it but I can't find a way. Another application for this is that it is a server oriented way of avoiding the man-in-the-middle issue for the first connection. I currently have no concern over this, but it is another example. Thank you, Bruce --- Begin Message --- On (25/04/06 19:23), Bruce Corbin wrote: > Hi All, > > Before you flame me --- I asked this question over in debian-ssh and > after 24 hours I didn't have a single hit on it. So I thought I would > try it over here. > > I would like to configure a Debian server to only allow clients to ssh > in if the public keys (probably RSA keys) already reside on the hard > drives of both machines. > > After spending some time in the snail book I am able to use > "StrictHostKeyChecking yes" in the clients /etc/ssh/ssh_config file to > cause the client to refuse to establish a ssh connection unless the > server's public key is in the client's /home/user-name/.ssh/known_hosts > file. This is useful in preventing "overly trusting users" from blindly > answering "yes" and accepting man-in-the-middle keys when connecting to > a new server. But, this does not restrict who can connect to the server. I haven't used this setting. What happens when the server's key expires? > > I tried putting "StrictHostKeyChecking yes" in the server's > /etc/ssh/sshd_config file but I got a "bad configuration option" error. StrictHostKeyChecking is a client configuration directive, not a server one. > My server's /etc/ssh/sshd_config file has "PublicKeyAuthentication yes" Good > and "PasswordAuthentication no". Any other methods allowed? > I am uneasy about experimenting with > PublicKeyAuthentication without having a better understanding of what it > really does. I don't want to turn off any authentication features or > turn off any encryption features and leave myself wide open but thinking > that I am secure. > The sshd_config file has pretty conservative settings by default, i.e. it disables things that are at the riskier end of the scale. Turning off PasswordAuthentication and others and using PublicKeyAuthentication should make you more secure (by that I mean you will be immune from script kiddies using password guessing scripts). You are right to be careful about what you do though. I would not recommend turning off password authentication until the end of the process unless you have local access to the server, otherwise you're on your own. You haven't actually explained what your problem is, so I'll just descibe the usual setup. The server has a certificate so that you know who they are, and you get this bit and have set it up. The client has a key, this is slightly different, as their is no web of trust or similar, the client just has to prove knowledge of that secret. You have to create a key for each client. This is easily done with ssh-keygen -t rsa on the client machine. You then need to get this key to the server so that it can check it with the client. The easiest way to do this is with ssh-copy-id -i ~/.ssh/id_rsa.pub [EMAIL PROTECTED] You can then ssh [EMAIL PROTECTED] and instead of being prompted to enter your password for the server you will be prompted for the passphrase on the key. Turn on debugging output from ssh if you want to confirm it is using key based authentication. Then I would recommend looking in to ssh-agent, and libpam-ssh. libpam-ssh is one of the most useful bits of software I have installed. You can get a full walkthrough here http://www.debian-administration.org/articles/152 James > > Any suggestions? > http://www.google.co.uk/search?hl=en&q=ssh+key&btnG=Google+Search&meta= -- James Westby [EMAIL PROTECTED] http://jameswestby.net/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED] --- End Message ---
Can DVD-R do multi-session
Hi Can any confirm me whether DVD-R can do multi-session or not? I had always thought DVD-R can only write once. But one thought suddenly strikes me that CDRs can only write once also, but it can do multi-session. So why not DVD-R. thanks a lot tong -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Debian SSH server configuration
On Tue, Apr 25, 2006 at 07:23:26PM -0400, Bruce Corbin wrote: > Hi All, > > I would like to configure a Debian server to only allow clients to ssh > in if the public keys (probably RSA keys) already reside on the hard > drives of both machines. > > After spending some time in the snail book I am able to use > "StrictHostKeyChecking yes" in the clients /etc/ssh/ssh_config file to > cause the client to refuse to establish a ssh connection unless the > server's public key is in the client's /home/user-name/.ssh/known_hosts > file. This is useful in preventing "overly trusting users" from blindly > answering "yes" and accepting man-in-the-middle keys when connecting to > a new server. But, this does not restrict who can connect to the server. > > I tried putting "StrictHostKeyChecking yes" in the server's > /etc/ssh/sshd_config file but I got a "bad configuration option" error. > My server's /etc/ssh/sshd_config file has "PublicKeyAuthentication yes" > and "PasswordAuthentication no". I am uneasy about experimenting with > PublicKeyAuthentication without having a better understanding of what it > really does. I don't want to turn off any authentication features or > turn off any encryption features and leave myself wide open but thinking > that I am secure. > > Thus, I think my goal is simple, I have paid some dues and I am hitting > a brick wall. I don't want any client computers to be able to ssh into > my server unless they already have the key on their hard drive. > > Any suggestions? > > Thank you, > Bruce It sounds like what you are asking for is host based authentication, where the server check to make sure that it has the host public key of the client, as well as the client making sure that it has the host public key of the server. In general I think this is a bad idea, as it is less secure than the default approach where he server uses the host private key to prove to the client (via the host public key in the clients known_hosts file) that it is the server it thinks it is, and then the client user proves his/her identity using a personal private key. Host bast authentication, once the two hosts are satisfied that they know each other, falls back to the old /etc/hosts.equiv and $HOME/.rhosts style of authentication. I think the closest thing to what you are asking for would be to require that the servers public host key be on the clients hard disk, and the client users public key be no the servers hard disk. You do that by selecting the StrictHostKeyChecking option on the client machine as you have done, and by also disabling password (and anything else but the type of public key authentication you opt for) based authentication. You still stop the black hats from trying to guess passwords using your ssh server. Regards, DigbyT -- Digby R. S. Tarvin digbyt(at)digbyt.com http://www.digbyt.com -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Debian SSH server configuration
On (26/04/06 01:22), James Westby wrote: > ...The server has a certificate so that you know who they are, and you get > this bit and have set it up. > > The client has a key, this is slightly different, as their is no web of > trust or similar... Sorry, I don't know what came over me. I don't even know why I thought that was true at the time. James -- James Westby [EMAIL PROTECTED] http://jameswestby.net/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Gnome/KDE resources
On Tue, 2006-04-25 at 15:43 -0700, Bill Thompson wrote: > On Tue, 25 Apr 2006 15:01:39 -0700 > Curtis Vaughan <[EMAIL PROTECTED]> wrote: > [snip] > > I just switched to KDE from Gnome on Sid. In my subjective opinion, > Gnome 2.14 runs much faster and with less resources than KDE 5.4. > > However, KDE appears to have more usage and configuration options which > may make the resource use worthwhile to you. The rumors from people who've them all is that KDE is visually a lot like Win XP, and that GNOME is visually in the same "family" as OS X. Many complain that GNOME is dumbed down, and not configurable enough. I only entered that camp when I discovered that menu items don't have Properties anymore. Otherwise, I'm not into constant fiddling. But that's just me. And yes, GNOME Terminal is an outrageous pig. So I use rxvt. Nice and small and does what's needed. -- - Ron Johnson, Jr. Jefferson, LA USA "As far as the laws of mathematics refer to reality, they are not certain; and as far as they are certain, they do not refer to reality." Albert Einstein -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Gnome/KDE resources
On Tue, 2006-04-25 at 16:15 -0600, Cameron Matheson wrote: > Hi, > > On Tue, 2006-04-25 at 15:01 -0700, Curtis Vaughan wrote: > > I remember sometime at the end of last year reading that KDE uses > > less resources than Gnome. After reading that I had to install linux > > on an older machine for someone, so I put KDE on it. It worked OK. > > > > Now I get the latest Linux Journal and they say in there than Gnome > > uses less resources. > > Both desktops have been making huge strides lately in performance and > what not. I hadn't used GNOME/KDE in about a year, but I have given the > 1.8 release a whirl and it does seem a lot snappier. Version 1.8? Am I missing something? -- - Ron Johnson, Jr. Jefferson, LA USA "Another doctor a day earlier had testified that a fetus sometimes does not immediately die after limbs are pulled off." http://story.news.yahoo.com/news?tmpl=story&cid=519&ncid=519&e=7&; u=/ap/20040401/ap_on_re_us/abortion_lawsuits_31 -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Debian SSH server configuration
On (25/04/06 19:23), Bruce Corbin wrote: > Hi All, > > Before you flame me --- I asked this question over in debian-ssh and > after 24 hours I didn't have a single hit on it. So I thought I would > try it over here. > > I would like to configure a Debian server to only allow clients to ssh > in if the public keys (probably RSA keys) already reside on the hard > drives of both machines. > > After spending some time in the snail book I am able to use > "StrictHostKeyChecking yes" in the clients /etc/ssh/ssh_config file to > cause the client to refuse to establish a ssh connection unless the > server's public key is in the client's /home/user-name/.ssh/known_hosts > file. This is useful in preventing "overly trusting users" from blindly > answering "yes" and accepting man-in-the-middle keys when connecting to > a new server. But, this does not restrict who can connect to the server. I haven't used this setting. What happens when the server's key expires? > > I tried putting "StrictHostKeyChecking yes" in the server's > /etc/ssh/sshd_config file but I got a "bad configuration option" error. StrictHostKeyChecking is a client configuration directive, not a server one. > My server's /etc/ssh/sshd_config file has "PublicKeyAuthentication yes" Good > and "PasswordAuthentication no". Any other methods allowed? > I am uneasy about experimenting with > PublicKeyAuthentication without having a better understanding of what it > really does. I don't want to turn off any authentication features or > turn off any encryption features and leave myself wide open but thinking > that I am secure. > The sshd_config file has pretty conservative settings by default, i.e. it disables things that are at the riskier end of the scale. Turning off PasswordAuthentication and others and using PublicKeyAuthentication should make you more secure (by that I mean you will be immune from script kiddies using password guessing scripts). You are right to be careful about what you do though. I would not recommend turning off password authentication until the end of the process unless you have local access to the server, otherwise you're on your own. You haven't actually explained what your problem is, so I'll just descibe the usual setup. The server has a certificate so that you know who they are, and you get this bit and have set it up. The client has a key, this is slightly different, as their is no web of trust or similar, the client just has to prove knowledge of that secret. You have to create a key for each client. This is easily done with ssh-keygen -t rsa on the client machine. You then need to get this key to the server so that it can check it with the client. The easiest way to do this is with ssh-copy-id -i ~/.ssh/id_rsa.pub [EMAIL PROTECTED] You can then ssh [EMAIL PROTECTED] and instead of being prompted to enter your password for the server you will be prompted for the passphrase on the key. Turn on debugging output from ssh if you want to confirm it is using key based authentication. Then I would recommend looking in to ssh-agent, and libpam-ssh. libpam-ssh is one of the most useful bits of software I have installed. You can get a full walkthrough here http://www.debian-administration.org/articles/152 James > > Any suggestions? > http://www.google.co.uk/search?hl=en&q=ssh+key&btnG=Google+Search&meta= -- James Westby [EMAIL PROTECTED] http://jameswestby.net/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Debian SSH server configuration
Hi All, Before you flame me --- I asked this question over in debian-ssh and after 24 hours I didn't have a single hit on it. So I thought I would try it over here. I would like to configure a Debian server to only allow clients to ssh in if the public keys (probably RSA keys) already reside on the hard drives of both machines. After spending some time in the snail book I am able to use "StrictHostKeyChecking yes" in the clients /etc/ssh/ssh_config file to cause the client to refuse to establish a ssh connection unless the server's public key is in the client's /home/user-name/.ssh/known_hosts file. This is useful in preventing "overly trusting users" from blindly answering "yes" and accepting man-in-the-middle keys when connecting to a new server. But, this does not restrict who can connect to the server. I tried putting "StrictHostKeyChecking yes" in the server's /etc/ssh/sshd_config file but I got a "bad configuration option" error. My server's /etc/ssh/sshd_config file has "PublicKeyAuthentication yes" and "PasswordAuthentication no". I am uneasy about experimenting with PublicKeyAuthentication without having a better understanding of what it really does. I don't want to turn off any authentication features or turn off any encryption features and leave myself wide open but thinking that I am secure. Thus, I think my goal is simple, I have paid some dues and I am hitting a brick wall. I don't want any client computers to be able to ssh into my server unless they already have the key on their hard drive. Any suggestions? Thank you, Bruce -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: distributions: UBUNTU vs DEBIAN
On Tue, Apr 25, 2006 at 02:18:27PM -0700, Paul Johnson wrote: > On Tuesday 25 April 2006 10:02, Digby Tarvin wrote: > > > I don't think I am here primarily for the social contract. > [...] > > I like the policy of > > providing mechanism without mandating how it is used. > > Sounds like you summarized the social contract in one sentence. If thats all it means, then maybe that is why I am here ;) Regards, DigbyT -- Digby R. S. Tarvin digbyt(at)digbyt.com http://www.digbyt.com -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Fortune file!
Kevin Mark wrote: On Mon, Apr 24, 2006 at 07:19:02PM -0700, Paul Johnson wrote: On Monday 24 April 2006 17:54, Marc Shapiro wrote: I, also, live in Aloha, only about 3 miles from the 'center of the universe'. I frequently pass within site of OSDL when I am out shopping. I wonder how many of us on this list are in the immediate local? I don't know. It would be interesting to get a Portland-area Debianista meet-up and key-signing party. Hi Paul and others in OR, This link[0] is list of local debian meeting groups. I'm on the one for NYC. Cheers, Kev [0] http://wiki.debian.org/LocalGroups I had joined the mailing list for the NYC group while I was still living there, but then I moved back to Portland before I made it to any of the get-togethers. I was under the impression that B.M. Hill, who I thought started the group, had moved back to Boston, but he is still listed as the contact for the NYC group. -- Michael M. ++ Portland, OR ++ USA "No live organism can continue for long to exist sanely under conditions of absolute reality; even larks and katydids are supposed, by some, to dream." --S. Jackson -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Fortune file!
Paul Johnson wrote: On Monday 24 April 2006 17:54, Marc Shapiro wrote: I, also, live in Aloha, only about 3 miles from the 'center of the universe'. I frequently pass within site of OSDL when I am out shopping. I wonder how many of us on this list are in the immediate local? I don't know. It would be interesting to get a Portland-area Debianista meet-up and key-signing party. Don't know about Debianistas specifically, but there are a couple of LUGs in the area: Portland: http://www.pdxlinux.org/ http://www.pdxlug.org/ Beaverton: http://www.bluegroup.org/ (link is dead, at least for me, but I'm pretty sure the group is still active) And more elsewhere in Oregon (Eugene, Tillamook, Willamette Valley, etc.) and southern Washington. (Never mind those subversives in the Seattle area trying to undermine Microsoft on its home turf.) If we do get a meet-up going, please not in Aloha, that's too close to Beaverton, and I'm still not over the fact Beaverton Police gave me a speeding ticket on Allen Blvd by Beaverton Christian Church the same day they refused to investigate someone getting shot to death a few hours later on the same spot behind my house they cited me for going 31 in a 30 on a bicycle. They're also too spineless to stop the drug dealing in front of Beaverton High School when classes let out (they'll watch it happen in plain sight right in front of them in their siezed-from-a-drug-dealer DARE car and do nothing). Beaverton's not safe and there is no (useful) police in that city (and I used to live at MLK and Killingsworth Street in Portland!); I feel Linus may have moved there for the same reason he moved to California: Didn't realize it's not the part of the [country|state] you ever want to live for any income or length of time before he got there. And yet, according to today's Oregonian, Beaverton has the fastest-growing school district in the state, while enrollment in Portland's public schools continues to decline. -- Michael M. ++ Portland, OR ++ USA "No live organism can continue for long to exist sanely under conditions of absolute reality; even larks and katydids are supposed, by some, to dream." --S. Jackson -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Gnome/KDE resources
On Tue, Apr 25, 2006 at 04:15:39PM -0600, Cameron Matheson wrote: > Hi, > > I still think GNOME/KDE (despite their improvements) are a little bit > too fat for older systems w/out much ram... it's certainly not very > groovy on my old 256M laptop. I generally use openbox, but if you're > looking for something similar to gnome/kde maybe you could try out XFCE. > Like GNOME, it uses the Gtk to render widgets. It was a lot more > responsive on the old Sun boxes at school than the other desktop > environments I tried. > > Good luck, > Cameron Matheson Depends how old. I have KDE on some of my middle-aged notebooks (64MB, 166Mhz) and it runs ok. Though I normally prefer to use fvwm because it doesn't use up as much of the valuable 800x480 display area with task bars etc.. On my older (66Mhz, 32Mb 486) machines they are fine with fvwm but I don't think they would handle KDE/GNOME very comfortably. As far as Gnome vs KDE goes, I don't think there is enough in it to worry about. The results of a comparison today are likely to be different from the results of a comparison after the next round of updates... Regards, DigbyT -- Digby R. S. Tarvin digbyt(at)digbyt.com http://www.digbyt.com -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Gnome/KDE resources
Curtis Vaughan wrote: I remember sometime at the end of last year reading that KDE uses less resources than Gnome. After reading that I had to install linux on an older machine for someone, so I put KDE on it. It worked OK. Now I get the latest Linux Journal and they say in there than Gnome uses less resources. I tried to remember what it was that I had read about KDE and began to think, well maybe it wasn't that KDE used less resources overall but that it used less ROM or something. Doesn't matter. My question then is, given an older machine that KDE or Gnome can run on, which should I install to get better performance? Thanks! Curtis Both environments load so much that it wouldn't be smart to use them if performance is really a big issue -- Both are fullblown desktop environments so neither is a great choice when running on a system with low resources The reasons for choosing between KDE en Gnome are mostly about personal preference -- how does it "feel" if you try using it; I personally like KDE better as I find it easier to use/configure The current KDE (in debian stable) is much better than it was in oldstable, but still the initial load irritates me; (I don't use KDE regularly either) HTH, Joris -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Gnome/KDE resources
On Tue, Apr 25, 2006 at 03:14:20PM -0700, Curtis Vaughan wrote: > > On 25.04.2006, at 15:11, Roberto C. Sanchez wrote: > > >Curtis Vaughan wrote: > >>I remember sometime at the end of last year reading that KDE uses > >>less > >>resources than Gnome. After reading that I had to install linux > >>on an > >>older machine for someone, so I put KDE on it. It worked OK. > >> > >>Now I get the latest Linux Journal and they say in there than Gnome > >>uses less resources. > >>I tried to remember what it was that I had read about KDE and > >>began to > >>think, well maybe it wasn't that KDE used less resources overall but > >>that it used less ROM or something. Doesn't matter. My question then > >>is, given an older machine that KDE or Gnome can run on, which > >>should I > >>install to get better performance? > >> > >>Thanks! > >> > >>Curtis FWIW, I think the only way to really tell for YOUR situation is to put them both on and configure them for your system and uses and then see which one you like better, or performs better or whatever. Different aspects of the two environments surely have different levels of efficiency and so without knowing exactly what you want, it would be difficult for anyone else to tell you what is better. Further, IMO, a lot of the difference in performance is perception. For example, many people think that windows XP was a faster boot than previous versions because it hit the login screen pretty quickly when all they had done was deferred portions of the loading until after a login. For some people, this seemed to imply better performance, but was really a red herring. I remember the first time I wrote something to floppy in linux (pretty recently actually) I thought it was REALLY fast as the command line popped right back. Then a few seconds later it synced and I could see that it wasn't any faster than any other floppy writes I've seen over the years. The point is, it depends on what your criteria are for performance. Does it start the process and return control right away, but then take longer to complete the process? Does it start and run the process at higher priority and return control after it has completed? or some combination? Then there are memory issues. I've found gterm to be a hog and have dumped it for aterm and am happier. much less swapping. I'm sure you can find numbers for how much ram each one uses in its base configuration, but how many people operate at a base configuration? In other words, IMVHO, its a very complex issue and the comparison is not really valid in a objective sense. try them out and see which works for you. that said apt-cache says that gnome (package desktop-base) is smaller installed size than kdebase-bin. but what does that really mean? A signature.asc Description: Digital signature
Re: Gnome/KDE resources
On Tue, 25 Apr 2006 15:01:39 -0700 Curtis Vaughan <[EMAIL PROTECTED]> wrote: > I remember sometime at the end of last year reading that KDE uses > less resources than Gnome. After reading that I had to install linux > on an older machine for someone, so I put KDE on it. It worked OK. > > Now I get the latest Linux Journal and they say in there than Gnome > uses less resources. > I tried to remember what it was that I had read about KDE and began > to think, well maybe it wasn't that KDE used less resources overall > but that it used less ROM or something. Doesn't matter. My question > then is, given an older machine that KDE or Gnome can run on, which > should I install to get better performance? > I just switched to KDE from Gnome on Sid. In my subjective opinion, Gnome 2.14 runs much faster and with less resources than KDE 5.4. However, KDE appears to have more usage and configuration options which may make the resource use worthwhile to you. I have also been playing with running openbox with Gnome and KDE components (for example, openbox using gnome-panel with kdesktop) which uses less resources than any of them, but still has that "Desktop Environment" convenience. I can't say which is best. I've decided that all window managers suck and the trick is to find the one that sucks less for you. -- Bill Thompson [EMAIL PROTECTED] signature.asc Description: PGP signature
Re: ssh via inetd the Debian way
On Tue, Apr 25, 2006 at 01:59:10PM -0700, Steve Lamb wrote: > Machine with low RAM that I rarely access via ssh. I do need access from > time to time via ssh however. Depending on how RAM limited the system is, you might also take a look at dropbear; it's a lightweight ssh server available in Debian. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: ssh via inetd the Debian way
Martin A. Brooks wrote: > If a process is unused for any length the time it will get swapped out > and will use very little, if any, real memory until it's woken up. Many embedded systems don't have swap. ssh in inetd worked ok last time I used it as long as speed was not important. -- see shy jo signature.asc Description: Digital signature
Re: ssh via inetd the Debian way
On Tue, Apr 25, 2006 at 02:02:03PM -0700, Steve Lamb wrote: > Uh, does this seem right? I recall sshd generating the key when it is > first installed and don't recall the key changing every reboot which is when > sshd would shutdown/startup like it would from inetd. :/ It generates the host-specific keys at install time, but the v1 ssh protocol requires a second smaller RSA key generated that's not used for more than an hour, whereas the v2 protocol uses Diffie-Hellman. See the man page: SSH protocol version 1 Each host has a host-specific RSA key (normally 2048 bits) used to identify the host. Additionally, when the daemon starts, it generates a server RSA key (normally 768 bits). This key is normally regenerated every hour if it has been used, and is never stored on disk. SSH protocol version 2 Version 2 works similarly: Each host has a host-specific key (RSA or DSA) used to identify the host. However, when the daemon starts, it does not generate a server key. Forward security is provided through a Diffie-Hellman key agreement. This key agreement results in a shared session key. With inetd, sshd is invoked for each connection, so with the v1 protocol it must generate a new RSA key for each connection. This does not apply to the v2 protocol, however. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Updating Network Install to Full Install
On Tuesday 25 April 2006 08:26, Gil Citro wrote: > Second, what I'd like to do is wind up with a full install of Sarge, > as if I'd installed everything from the DVD. What you ask for does not exist. Debian has a concept of a minimum install, and a customized install. There is no full install because many packages conflict with other packages that provide the same functionality. -- Paul Johnson Email and IM (XMPP & Google Talk): [EMAIL PROTECTED] Jabber: Because it's time to move forward http://ursine.ca/Ursine:Jabber pgp0keUGdJjhV.pgp Description: PGP signature
Re: Thanks! Re: good anti-virus software to use?
On Tue, 2006-04-25 at 17:38 -0400, Roberto C. Sanchez wrote: > Monique Y. Mudama wrote: > > On 2006-04-25, Ron Johnson penned: > > > >>On Tue, 2006-04-25 at 13:34 -0600, Monique Y. Mudama wrote: > >> > >>>Sure, but I could write a program in COBOL and still load passwords > >>>from a plain text file stored with wide-open permissions, just for > >>>example. > >> > >>That's willfully stupid programming. > > > > > > People do stuff like that all the time. As I said, you can write an > > insecure program in any language. > > > > I think you are twisting Ron's point. His original point was that some > languages (like C/C++) make it possible to have hard to detect subtle > faults that become security problems. Other languages (like COBOL) do > away with those subtle issues. Essentially, you have to try and be > determined to write something insecure. I think his discussion focused > on strings, but it probably extends to other things as well. Correct. Strings, their generalized older brother arrays, and their cousin, malloc(). For example, pass an overly-long string into a C program, and you can smash the stack. Pass that same string into a COBOL program and it gets truncated at the compile-time field length. -- - Ron Johnson, Jr. Jefferson, LA USA "The Socialist who finds his children playing with soldiers is usually upset, but he is never able to think of a substitute for the tin soldiers; tin pacifists somehow won't do." George Orwell, 1940, reviewing /Mein Kampf/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: screen : problem
Hi,
On Tue, 2006-04-25 at 13:46 -0700, fai amd wrote:
> open("./tls/i686/mmx/cmov/libncursesw.so.5", O_RDONLY) = -1 ENOENT (No
> such file or directory)
> open("./tls/i686/mmx/libncursesw.so.5", O_RDONLY) = -1 ENOENT (No such
> file or directory)
> open("./tls/i686/cmov/libncursesw.so.5", O_RDONLY) = -1 ENOENT (No such
> file or directory)
> open("./tls/i686/libncursesw.so.5", O_RDONLY) = -1 ENOENT (No such file
> or directory)
> open("./tls/mmx/cmov/libncursesw.so.5", O_RDONLY) = -1 ENOENT (No such
> file or directory)
> open("./tls/mmx/libncursesw.so.5", O_RDONLY) = -1 ENOENT (No such file
> or directory)
> open("./tls/cmov/libncursesw.so.5", O_RDONLY) = -1 ENOENT (No such file
> or directory)
> open("./tls/libncursesw.so.5", O_RDONLY) = -1 ENOENT (No such file or
> directory)
> open("./i686/mmx/cmov/libncursesw.so.5", O_RDONLY) = -1 ENOENT (No such
> file or directory)
> open("./i686/mmx/libncursesw.so.5", O_RDONLY) = -1 ENOENT (No such file
> or directory)
> open("./i686/cmov/libncursesw.so.5", O_RDONLY) = -1 ENOENT (No such
> file or directory)
> open("./i686/libncursesw.so.5", O_RDONLY) = -1 ENOENT (No such file or
> directory)
> open("./mmx/cmov/libncursesw.so.5", O_RDONLY) = -1 ENOENT (No such file
> or directory)
> open("./mmx/libncursesw.so.5", O_RDONLY) = -1 ENOENT (No such file or
> directory)
> open("./cmov/libncursesw.so.5", O_RDONLY) = -1 ENOENT (No such file or
> directory)
> open("./libncursesw.so.5", O_RDONLY)= -1 ENOENT (No such file or
> directory)
Do you not have ncurses installed? I've never seen these errors before.
> lstat64("/var/run/screen", {st_mode=S_IFDIR|0775, st_size=4096, ...}) =
> 0
> fstat64(1, {st_mode=S_IFREG|0644, st_size=2439138, ...}) = 0
> mmap2(NULL, 8192, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1,
> 0) = 0xb7e01000
> write(1, "Directory \'/var/run/screen\' must"..., 49Directory
> '/var/run/screen' must have mode 777.
> ) = 49
You need to chmod 777 /var/run/screen
Good luck,
Cameron Matheson
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Gnome/KDE resources
Curtis Vaughan wrote: > > On 25.04.2006, at 15:11, Roberto C. Sanchez wrote: > >> >> If you are looking for low resource usage, then you want Window Maker >> (my favorite), or fluxbox, or Enlightenment, or XFCE, or IceWM, or any >> of the many other lightweight WMs. >> >> -Roberto > > > No I know that. I use XFCE on one computer for that reason. But I just > want to know between KDE and Gnome. > Then let me say that it seems a bit pointless to make a distinction. It is a bit like asking whether a Ford Expedition, a Chevy Suburban, or a Dodge Durango gets better gas mileage. -Roberto -- Roberto C. Sanchez http://familiasanchez.net/~roberto signature.asc Description: OpenPGP digital signature
Re: 'M-v' not working in man pages
On Tue, Apr 25, 2006 at 03:54:29PM +0200, Rodolfo Medina wrote: > When I'm reading a manual page, I do 'C-v' to go one screen ahead, > but 'M-v' does not work to go one screen back: when I do 'M-v', > the View menu is displayed instead. > How can I fix that? > I have Sarge stable, and Gnome. Are you referring to the gnome-terminal menu bar? If so, you can disable it from the options and re-enable it in the right-click context menu when necessary. Last I used Gnome, there were some weird bugs that gnome-terms created with a menu would intercept the shortcuts even when the menu was hidden. Maybe those are fixed by now. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Debian Installation on ACER TRAVELMATE TM3004WTMIB
On Wednesday 26 April 2006 05:09, Seidenthal Steve wrote this for perusal by us all: >---> Hi Debian Users, >---> >---> I tried to install Debian Sarge 3.1 on my Subnotebook which is an Acer >---> Travelmate TM3004 WTMIB. >---> >---> This is a 12,1" Device which has no internal DVD Drive, but has an >---> Firewire external MutliDrive. >---> >---> I can boot from the DVD but the installer does not find the modules to >---> detect de DVD Drive. >---> >---> What can i do ? Can i manually load Modules for Firewire DVD Drives ? > How ;-) ? ---> >---> Many thanks for any ideas >---> >---> PS: I am a Newbie >---> >---> Don't know if this has any relevance or is of any help, but my Acer Aspire would run an external DVD drive, through a USB hub. But the drive had to be connected to the actual laptop USB ports for the installer to find it. -- Registered Linux User:- 329524 +++ The smoke is now making the first sky of the year. --- ISSA *** Brilliant Debian Sarge 3.1 ___ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Gnome/KDE resources
Hi, On Tue, 2006-04-25 at 15:01 -0700, Curtis Vaughan wrote: > I remember sometime at the end of last year reading that KDE uses > less resources than Gnome. After reading that I had to install linux > on an older machine for someone, so I put KDE on it. It worked OK. > > Now I get the latest Linux Journal and they say in there than Gnome > uses less resources. Both desktops have been making huge strides lately in performance and what not. I hadn't used GNOME/KDE in about a year, but I have given the 1.8 release a whirl and it does seem a lot snappier. > I tried to remember what it was that I had read about KDE and began > to think, well maybe it wasn't that KDE used less resources overall > but that it used less ROM or something. Doesn't matter. My question > then is, given an older machine that KDE or Gnome can run on, which > should I install to get better performance? I still think GNOME/KDE (despite their improvements) are a little bit too fat for older systems w/out much ram... it's certainly not very groovy on my old 256M laptop. I generally use openbox, but if you're looking for something similar to gnome/kde maybe you could try out XFCE. Like GNOME, it uses the Gtk to render widgets. It was a lot more responsive on the old Sun boxes at school than the other desktop environments I tried. Good luck, Cameron Matheson -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Gnome/KDE resources
On 25.04.2006, at 15:11, Roberto C. Sanchez wrote: Curtis Vaughan wrote: I remember sometime at the end of last year reading that KDE uses less resources than Gnome. After reading that I had to install linux on an older machine for someone, so I put KDE on it. It worked OK. Now I get the latest Linux Journal and they say in there than Gnome uses less resources. I tried to remember what it was that I had read about KDE and began to think, well maybe it wasn't that KDE used less resources overall but that it used less ROM or something. Doesn't matter. My question then is, given an older machine that KDE or Gnome can run on, which should I install to get better performance? Thanks! Curtis PS. Please no rants You can write me directly in order to avoid such, if you want. PPS. I know about IceWM, etc. which use much less resources than KDE or Gnome. But those don't interest me for the purpose of this letter. Thanks! If you are looking for low resource usage, then you want Window Maker (my favorite), or fluxbox, or Enlightenment, or XFCE, or IceWM, or any of the many other lightweight WMs. -Roberto No I know that. I use XFCE on one computer for that reason. But I just want to know between KDE and Gnome. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: partitioning for dual-linux..
On Tue, Apr 25, 2006 at 05:29:19PM -0400, Roberto C. Sanchez wrote: > > Why bother with two side-by-side installs? Just use Xen and then you > can run multiple Linux (or BSD) domU's. Of course, you will still need > a separate partition for windows. I have been using vmware when all I want to do is use an alternate system. In particular, if I need to run a windows application then I would rather run it in a VM sandbox than let it loose with complete control of the machine. The ability to roll back changes by storing disk writes as deltas is particularly reassuring when messing with windows. The windows partition is mainly so that I can test hardware using the manufacturers drivers and get service if there are demonstrable problems. However in this case I want to be able to test updates/alternatives for compatability with my hardware before committing to it for my day to day work, and using a virtual machine won't achieve that. As an example, currently I have a Debian install in one partition which now fully utilizes my display hardware but cannot yet access the DVD, and a Ubuntu install that can access the DVD successfully but can't run the display at maximum (1280x764) resolution. Looking at what Ubuntu is doing to access the DVD is a useful way to help diagnose the problem I am having with Debian, and vice versa. Regards, DigbyT -- Digby R. S. Tarvin digbyt(at)digbyt.com http://www.digbyt.com -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Gnome/KDE resources
Curtis Vaughan wrote: > I remember sometime at the end of last year reading that KDE uses less > resources than Gnome. After reading that I had to install linux on an > older machine for someone, so I put KDE on it. It worked OK. > > Now I get the latest Linux Journal and they say in there than Gnome > uses less resources. > I tried to remember what it was that I had read about KDE and began to > think, well maybe it wasn't that KDE used less resources overall but > that it used less ROM or something. Doesn't matter. My question then > is, given an older machine that KDE or Gnome can run on, which should I > install to get better performance? > > Thanks! > > Curtis > > PS. Please no rants You can write me directly in order to avoid > such, if you want. > PPS. I know about IceWM, etc. which use much less resources than KDE or > Gnome. But those don't interest me for the purpose of this letter. Thanks! > > If you are looking for low resource usage, then you want Window Maker (my favorite), or fluxbox, or Enlightenment, or XFCE, or IceWM, or any of the many other lightweight WMs. -Roberto -- Roberto C. Sanchez http://familiasanchez.net/~roberto signature.asc Description: OpenPGP digital signature
Gnome/KDE resources
I remember sometime at the end of last year reading that KDE uses less resources than Gnome. After reading that I had to install linux on an older machine for someone, so I put KDE on it. It worked OK. Now I get the latest Linux Journal and they say in there than Gnome uses less resources. I tried to remember what it was that I had read about KDE and began to think, well maybe it wasn't that KDE used less resources overall but that it used less ROM or something. Doesn't matter. My question then is, given an older machine that KDE or Gnome can run on, which should I install to get better performance? Thanks! Curtis PS. Please no rants You can write me directly in order to avoid such, if you want. PPS. I know about IceWM, etc. which use much less resources than KDE or Gnome. But those don't interest me for the purpose of this letter. Thanks! -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: afraid to upgrade libc6 and libc6-dev
On Tue, Apr 25, 2006 at 09:40:48AM -0700, Andrew Sackville-West wrote: > On Tue, Apr 25, 2006 at 11:06:42AM -0400, [EMAIL PROTECTED] wrote: > > On Mon, Apr 24, 2006 at 09:41:09PM +0300, Andrei Popescu wrote: > > > > > > If the filename doesn't change (of the kernel image) i think neither > > > grub nor lilo need the update. But it doesn't hurt. Unless you changed > > > menu.lst without reading/understanding the instructions inside. > > > > lilo has to be called if it is a new file, even if it has the same > > name. > > Isn't that the purpose of symlinks to kernel images? so you don't have > to rerun for new kernels with same name? lilo records the actual location of the file, in hardware disk addresses, so that it doesn't have to care about file systems at boot time. -- hendrik -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Updating Network Install to Full Install
On Tue, Apr 25, 2006 at 03:19:38PM -0600, Nate Duehr wrote: > Gil Citro wrote: > > >Second, what I'd like to do is wind up with a full install of Sarge, > >as if I'd installed everything from the DVD. I have both DVDs from the > >3.1r1 DVD set. Is there a way to install everything from the DVD > >that's not already installed? I'm new to Debian and not sure how to do > >this. > > A "full" install of Debian is rediculously large. Debian has tens of > thousands of packages, and many conflict. > > Why would you want to install massive amounts of software you're never > going to use? > > Nate The poster said in the original post that by "full" install he doesn't mean every possible Debian package, just "as if I'd installed everything from the DVD". And the reason given was, if I understood correctly, was to help avoid dependency problems when trying to install/build/develop software manually. If he has disk space to burn, and the Internet is not always readily or economically available, then there is an argument for installing as complete a system as possible. I havn't done a comparison to see if the total number of installed packages is different after a net install vs a DVD install, but if they are not the same, then I think it is worthwhile to ask how they can be made so. Regards, DigbyT -- Digby R. S. Tarvin digbyt(at)digbyt.com http://www.digbyt.com -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: distributions: UBUNTU vs DEBIAN
On Tuesday 25 April 2006 10:02, Digby Tarvin wrote: > I don't think I am here primarily for the social contract. [...] > I like the policy of > providing mechanism without mandating how it is used. Sounds like you summarized the social contract in one sentence. -- Paul Johnson Email and IM (XMPP & Google Talk): [EMAIL PROTECTED] Jabber: Because it's time to move forward http://ursine.ca/Ursine:Jabber pgpG0l4YgQhtA.pgp Description: PGP signature
Re: Thanks! Re: good anti-virus software to use?
Monique Y. Mudama wrote: > On 2006-04-25, Roberto C. Sanchez penned: > >>I think you are twisting Ron's point. His original point was that >>some languages (like C/C++) make it possible to have hard to detect >>subtle faults that become security problems. Other languages (like >>COBOL) do away with those subtle issues. Essentially, you have to >>try and be determined to write something insecure. I think his >>discussion focused on strings, but it probably extends to other >>things as well. > > > I'm not trying to twist anything. I do agree that language features > can help prevent all sorts of bugs and security issues. > > I guess I'm just responding to an argument (maybe it only exists in my > head) that "Oh, if we code in , we will never have to > worry about security again!" The language may reduce certain types of > security issues, but you still need to pay attention. > Agreed. There seems to be far too much of that going around. "Let's code in Java, since it's garbage collected and we won't have to manage memory." Both on the security front and the performance front. -Roberto -- Roberto C. Sanchez http://familiasanchez.net/~roberto signature.asc Description: OpenPGP digital signature
Re: ssh via inetd the Debian way
On 2006-04-25, Steve Lamb penned: > > Uh, does this seem right? I recall sshd generating the key when > it is first installed and don't recall the key changing every > reboot which is when sshd would shutdown/startup like it would > from inetd. :/ It seems like at some point in my life I remember seeing ssh in my inetd file ... but I don't recall the circumstances. It certainly doesn't seem to me that I've ever had to wait tens of seconds after the restart of sshd to log in. -- monique Help us help you: http://www.catb.org/~esr/faqs/smart-questions.html -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Thanks! Re: good anti-virus software to use?
On 2006-04-25, Roberto C. Sanchez penned: > > I think you are twisting Ron's point. His original point was that > some languages (like C/C++) make it possible to have hard to detect > subtle faults that become security problems. Other languages (like > COBOL) do away with those subtle issues. Essentially, you have to > try and be determined to write something insecure. I think his > discussion focused on strings, but it probably extends to other > things as well. I'm not trying to twist anything. I do agree that language features can help prevent all sorts of bugs and security issues. I guess I'm just responding to an argument (maybe it only exists in my head) that "Oh, if we code in , we will never have to worry about security again!" The language may reduce certain types of security issues, but you still need to pay attention. -- monique Help us help you: http://www.catb.org/~esr/faqs/smart-questions.html -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: afraid to upgrade libc6 and libc6-dev
On Tue, Apr 25, 2006 at 04:33:51PM -0400, Matthias Julius wrote: > Andrew Sackville-West <[EMAIL PROTECTED]> writes: > > > Isn't that the purpose of symlinks to kernel images? so you don't have > > to rerun for new kernels with same name? > > This is so that the lilo.conf doesn't need to be changed. The lilo > bootloader doesn't know anything about filesystems. And it doesn't > care about filenames. > > When you run lilo it saves raw disk block numbers for where the kernel > and its initrd is stored on disk. Since there is no trivial way to > ensure these blocknumbers don't change when you install a new kernel > you have to rerun lilo. > > Matthias > oops. now that I read it I see that I knew this. Thanks though. A signature.asc Description: Digital signature
Re: Thanks! Re: good anti-virus software to use?
Monique Y. Mudama wrote: > On 2006-04-25, Ron Johnson penned: > >>On Tue, 2006-04-25 at 13:34 -0600, Monique Y. Mudama wrote: >> >>>Sure, but I could write a program in COBOL and still load passwords >>>from a plain text file stored with wide-open permissions, just for >>>example. >> >>That's willfully stupid programming. > > > People do stuff like that all the time. As I said, you can write an > insecure program in any language. > I think you are twisting Ron's point. His original point was that some languages (like C/C++) make it possible to have hard to detect subtle faults that become security problems. Other languages (like COBOL) do away with those subtle issues. Essentially, you have to try and be determined to write something insecure. I think his discussion focused on strings, but it probably extends to other things as well. -Roberto -- Roberto C. Sanchez http://familiasanchez.net/~roberto signature.asc Description: OpenPGP digital signature
Re: bind9: high default SOA value
George Borisov wrote: > Hello, > > I have just finished configuring a new bind9 server on our network. :-) > > As a test I generated a report at www.dnsreport.com and it gave me the > following error message: > > --- > WARNING: Your SOA RETRY interval is : 86400 seconds. This seems very > high. You should consider decreasing this value to about 120-7200 > seconds. The retry value is the amount of time your secondary/slave > nameservers will wait to contact the master nameserver again if the last > attempt failed. > --- > > The 86400 value is supplied in the Debian default configuration and also > (for example) suggested here: > http://www.debian.org/doc/manuals/network-administrator/ch-bind.html > > Is Debian wrong in recommending this as a default? > > Should I worry about this and change the value? (The reason I am > reluctant to do this is because there are nearly 50 domains defined on > that server, which means I would have to remember some sed to write a > script to change all of these values :-p ) I don't think the Debian package is wrong. It is really a matter of preference. -Roberto -- Roberto C. Sanchez http://familiasanchez.net/~roberto signature.asc Description: OpenPGP digital signature
Re: partitioning for dual-linux..
Digby Tarvin wrote: > I have just about sorted out Debian on my laptop to the point where I > am ready to do a final permanent install, so I now need to decide on > a good final partitioning scheme. > > I want to be able to run two unix/linux systems side by side, so I want to > keep shareable partitions (such as home, swap and tmp) separate from > distribution specific ones (root and usr). The parallel operating system > provision means I can evaluate other distributions, as well as upgrade > to new releases while keeping the previous one available for a while. > > I also plan to keep the bundled operating system in case it ever needs > service and to test new hardware before trying to get Linux driver working. > > My traditional partitioning scheme is to have /var for all changing system > data and /home for changing user data, and ideally these are the only > partitions mounted r/w - which means these are the only partitions that > need regular backup. They can also usually be mounted nosuid and nodev > to improve security. /usr is fairly static and mounted read-only. The > root filesystem is small and changes infrequently so gets backed up in > full but less often. > > This is my initial though on the partitioning of the 60GB drive on my > Debian laptop: > XP -10.00GB > boot - 0.10GB ?? > sys 1 > root - 0.15GB > usr- 2.00GB > var- 2.00GB > sys 2 > root - 0.15GB > usr- 2.00GB > var- 2.00GB > shared > swap - 1.00GB > tmp - ramfs? > home -10.00GB > home2 -10.00GB > local -20.00GB > > With this scheme I am only losing 3-5GB in order to have the parallel > distribution installed, if I am estimating the size requirements > correctly. > > I'm not sure if I should have a separate /tmp filesystem, or perhaps > should just add the space to swap and use a ramfs for tmp. > > I'm also not really decided if I should use a separate /boot partition > with both sets of kernels in it, or just use /boot directories in the > two root filesystems. The latter implies that one of the root filesystems > becomes special in that it will be the one pointed to by the master > boot record. > > Any thoughts or suggestions? > > Regards, > DigbyT Why bother with two side-by-side installs? Just use Xen and then you can run multiple Linux (or BSD) domU's. Of course, you will still need a separate partition for windows. -Roberto -- Roberto C. Sanchez http://familiasanchez.net/~roberto signature.asc Description: OpenPGP digital signature
Wrong output from lpstat
Hallo, I am using Debian Sarge with all the security updates and cupsys with foomatic/hpijs. If I get a listing of the queue using "lpstat -o" then I get a corrupted output for the locale "en_US". The output for the locale "C" is correct. Here is some output. PC-Vincent:532$ lpstat HP-DeskJet-670C-40 vincent 1024 PC-Vincent:533$ LANG=C lpstat -o HP-DeskJet-670C-40 vincent 1024 Tue Apr 25 22:40:54 2006 PC-Vincent:534$ LANG=en_US lpstat -o HP-DeskJet-670C-40 vincent 1024 ÄKe @[EMAIL PROTECTED]@[EMAIL PROTECTED] PC-Vincent:535$ I think it is a kind of stack overflow. Regards, Vincent Smeets -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Horde takes forever to load
Butch Coolidge wrote: > Quoting "Roberto C. Sanchez" <[EMAIL PROTECTED]>: > >> Did you remove or purge? Did you also have to drop the database tables? >> >> -Roberto > > > > I did remove the packages, not purge. And I did no changes to the > database. At first I downgraded horde3 and im4 to the versions in > stable. With my current settings that worked already fine. After that I > have upgraded again to the latest versions in testing. I think the > downgrade was not needed after all. > > Butch > Odd. I tried purging horde3, and all the other modules (imp4, kronolith2, and so on) then reinstalling them. It does not seem to have fixed the problem. Can anyone suggest what may be going wrong here? -Roberto -- Roberto C. Sanchez http://familiasanchez.net/~roberto signature.asc Description: OpenPGP digital signature
Re: ati fglrx and xorg 7.0.0
On Tue, 18 Apr 2006 23:05:46 +0200 Ivan Glushkov <[EMAIL PROTECTED]> wrote: > Since you only requested a single operation it is extremely likely that > the package is simply not installable and a bug report against > that package should be filed. > The following information may help to resolve the situation: > > The following packages have unmet dependencies: > fglrx-driver: Depends: xserver-xorg (< 6.9.99) > E: Broken packages > > So in the moment there is NO way to install fglrx drivers on debian/sid. > As said in http://www.x.org/ an advantage of xorg 7 is the modularity, > which is used in ubuntu, where already the package xorg-driver-fglrx > exists. So the question is is an analogue package for Debian, and if > not, what should I do to get fglrx installed on my laptop? Maybe the drivers have been updated since you wrote this? I am running Debian Unstable and the fglrx packages installed fine for me and using make-kpkg to create the kernel modules package then installing worked as well. There seem to be some performance issues after doing this. Performance on 3D stuff seems OK but for non 3D stuff there seems to be some issues. So it seems there is some trade off in having good 3D or having everything else work at the moment. If you have a 9200 or less it shouldn't be an issue, just use the mesa/DRI ATI driver that ships with Xorg. If you have a card with an R300 chipset there is an experimental branch of the mesa/dri radeon driver that extends the ATI driver with support for these. http://dri.freedesktop.org/snapshots/ There are instructions here: http://dri.freedesktop.org/wiki/Download : For installing binary snapshots, but they never seemed to work as it was stated they should and with the move to X.org 7.x that seems to go double. If you do what it shows here: http://wiki.debian.org/Xorg69To7 : about the I915 driver: "DRI with i915 libmesa stops working after upgrade to 7.* of XOrg with i915 driver (and maybe some others). MESA in sid is too old. It is necessary to download new drivers from [WWW] http://dri.freedesktop.org/snapshots/ and copy *_dri.so files to /usr/lib/dri/. This is [WWW] bug# 359328" You can do the same thing for the R300 driver. You might need to shut down the X server and do a 'dpkg-reconfigure xserver-xorg' afterwards. For basic usage performance is good and stable. For 3D the range of stuff that is supported is a question and I have had some lock ups. The lock ups could be because the other mesa stuff really should be upgraded as well not just the driver. Not sure I really want to get into compiling the mesa CVS stuff. I think newer mesa stuff is slated to be upgraded with X.org 7.1, but no telling when that will be: http://wiki.debian.org/XStrikeForce/XSFTODO Later, Seeker -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: US Taxpayers: America's Army for Linux cancelled
Steve Lamb wrote: > Hal Vaughan wrote: > >>Interesting dilemma for any Quakers (or members of any "peace churches") >>who are FOSS advocates. Does one take the chance to advocate for open >>source or suggest that the entire program should be dropped? > > > Scrap the whole thing unless I'm missing the "make video games" clause in > the Constitution. > It's a PR thing. Just like the recruiting commercials on TV and radio and parachute demonstration thing. It is out there to raise awareness among the public. They have a budget for that sort of thing. -Roberto -- Roberto C. Sanchez http://familiasanchez.net/~roberto signature.asc Description: OpenPGP digital signature
Re: Updating Network Install to Full Install
Gil Citro wrote: Second, what I'd like to do is wind up with a full install of Sarge, as if I'd installed everything from the DVD. I have both DVDs from the 3.1r1 DVD set. Is there a way to install everything from the DVD that's not already installed? I'm new to Debian and not sure how to do this. A "full" install of Debian is rediculously large. Debian has tens of thousands of packages, and many conflict. Why would you want to install massive amounts of software you're never going to use? Nate -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: ssh via inetd the Debian way
Steve Lamb wrote: Machine with low RAM that I rarely access via ssh. I do need access from time to time via ssh however. 500k of a resident ssh is 500k I could free up by moving it to inetd. If a process is unused for any length the time it will get swapped out and will use very little, if any, real memory until it's woken up. -- Martin A. Brooks | http://www.antibodymx.net/ | Anti-spam & anti-virus Consultant| [EMAIL PROTECTED] | filtering. Inoculate antibodymx.net | m: +4745888254 | your mail system. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: ssh via inetd the Debian way
Monique Y. Mudama wrote: > -i Specifies that sshd is being run from inetd(8). sshd is normally > not run from inetd because it needs to generate the server key > before it can respond to the client, and this may take tens of > seconds. Uh, does this seem right? I recall sshd generating the key when it is first installed and don't recall the key changing every reboot which is when sshd would shutdown/startup like it would from inetd. :/ -- Steve C. Lamb | But who decides what they dream? PGP Key: 8B6E99C5 | And dream I do... ---+- signature.asc Description: OpenPGP digital signature
Re: ssh via inetd the Debian way
Greg Folkert wrote: > Why would one want sshd to run from inetd? Machine with low RAM that I rarely access via ssh. I do need access from time to time via ssh however. 500k of a resident ssh is 500k I could free up by moving it to inetd. > ssh stream tcp nowait root /usr/sbin/tcpd /usr/sbin/sshd For the record, -i at the end. -- Steve C. Lamb | But who decides what they dream? PGP Key: 8B6E99C5 | And dream I do... ---+- signature.asc Description: OpenPGP digital signature
Re: Thanks! Re: good anti-virus software to use?
On 2006-04-25, Ron Johnson penned: > On Tue, 2006-04-25 at 13:34 -0600, Monique Y. Mudama wrote: >> >> Sure, but I could write a program in COBOL and still load passwords >> from a plain text file stored with wide-open permissions, just for >> example. > > That's willfully stupid programming. People do stuff like that all the time. As I said, you can write an insecure program in any language. -- monique Help us help you: http://www.catb.org/~esr/faqs/smart-questions.html -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: vnc+gdm+xinetd
On Tue, Apr 25, 2006 at 11:30:09AM -0700, Matt Johnson wrote:
>
>
> - Original Message
> From: Ferran Donadie <[EMAIL PROTECTED]>
> To: debian-user@lists.debian.org
> Sent: Tuesday, 25 April, 2006 10:45:06 AM
> Subject: vnc+gdm+xinetd
>
> this is the configuration file for xinetd
>
> service vnc-800x600
> {
> only_from = 192.168.2.0
> disable = no
> socket_type = stream
> protocol= tcp
> wait= no
> user= nobody
> server = /usr/bin/Xvnc4
> server_args = -inetd -query localhost -geometry 800x600 -depth 24 -fp
> unix/:7100 -once securitytypes=none
> }
>
> -
>
> Hmmm. From memory, I had to change something from how it was in the man
> page... I emailed them about it and submitted a bug report... never heard
> anything.
>
> Now then... I *think* it may have been adding a "-" before
> securitytypes=none...
>
> -securitytypes=none
>
I have tried that and different combinations, with the same
results.
> for both services.
>
> I'm not certain. Let me know if this is nonsense.
>
Thank you :)
> --
> Matt
>
>
>
>
> --
> To UNSUBSCRIBE, email to [EMAIL PROTECTED]
> with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
>
--
Ferran Donadie
Email: [EMAIL PROTECTED]
Carpe diem, quam minimum credula postero
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
screen : problem
hi,
i am having some trouble in using screen. i connect to system A and
then ssh to system B and run screen.
when i use screen, it launches it and when attempted to detach it
terminates than detach (cntrl+1 cntrl+d). this happens only user who's
id is got from nis server and home directory mounted over nfs. there
are no file names like /var/run/screen/S-username/*pts* .
i am not sure what is going on .
would appreciate some help to figure this out.
screen -> 4.0.2-4.1
ls -l /var/run/screen/
total 8
drwx-- 2 prod prod 4096 Apr 25 20:21 S-prod
drwx-- 2 root root 4096 Apr 25 15:33 S-root
[EMAIL PROTECTED] prod] ls -ld /var/run/screen/
drwxrwxr-x 4 root utmp 4096 Apr 25 17:25 /var/run/screen/
[EMAIL PROTECTED] prod] ls -l /usr/bin/sc
scp screenscreendumpscriptscriptreplay
[EMAIL PROTECTED] prod] ls -l /usr/bin/screen
-rwxr-sr-x 1 root utmp 306616 Nov 14 2004 /usr/bin/screen
[EMAIL PROTECTED] prod] ls -ld /var/run/screen/
drwxrwxr-x 4 root utmp 4096 Apr 25 17:25 /var/run/screen/
[EMAIL PROTECTED] prod] ls -l /var/run/screen/
total 8
drwx-- 2 prod prod 4096 Apr 25 20:21 S-prod
drwx-- 2 root root 4096 Apr 25 15:33 S-root
[EMAIL PROTECTED] prod] ls -ld /var/run/utmp
-rw-rw-r-- 1 root utmp 6144 Apr 25 20:21 /var/run/utmp
---
strace screen gives this.
execve("/usr/bin/screen", ["screen"], [/* 632 vars */]) = 0
uname({sys="Linux", node="somenode", ...}) = 0
brk(0) = 0x809c000
old_mmap(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS,
-1, 0) = 0xb7fbb000
access("/etc/ld.so.nohwcap", F_OK) = -1 ENOENT (No such file or
directory)
open("/etc/ld.so.preload", O_RDONLY)= -1 ENOENT (No such file or
directory)
old_mmap(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS,
-1, 0) = 0xb7fba000
open("./tls/i686/mmx/cmov/libncursesw.so.5", O_RDONLY) = -1 ENOENT (No
such file or directory)
open("./tls/i686/mmx/libncursesw.so.5", O_RDONLY) = -1 ENOENT (No such
file or directory)
open("./tls/i686/cmov/libncursesw.so.5", O_RDONLY) = -1 ENOENT (No such
file or directory)
open("./tls/i686/libncursesw.so.5", O_RDONLY) = -1 ENOENT (No such file
or directory)
open("./tls/mmx/cmov/libncursesw.so.5", O_RDONLY) = -1 ENOENT (No such
file or directory)
open("./tls/mmx/libncursesw.so.5", O_RDONLY) = -1 ENOENT (No such file
or directory)
open("./tls/cmov/libncursesw.so.5", O_RDONLY) = -1 ENOENT (No such file
or directory)
open("./tls/libncursesw.so.5", O_RDONLY) = -1 ENOENT (No such file or
directory)
open("./i686/mmx/cmov/libncursesw.so.5", O_RDONLY) = -1 ENOENT (No such
file or directory)
open("./i686/mmx/libncursesw.so.5", O_RDONLY) = -1 ENOENT (No such file
or directory)
open("./i686/cmov/libncursesw.so.5", O_RDONLY) = -1 ENOENT (No such
file or directory)
open("./i686/libncursesw.so.5", O_RDONLY) = -1 ENOENT (No such file or
directory)
open("./mmx/cmov/libncursesw.so.5", O_RDONLY) = -1 ENOENT (No such file
or directory)
open("./mmx/libncursesw.so.5", O_RDONLY) = -1 ENOENT (No such file or
directory)
open("./cmov/libncursesw.so.5", O_RDONLY) = -1 ENOENT (No such file or
directory)
open("./libncursesw.so.5", O_RDONLY)= -1 ENOENT (No such file or
directory)
snipped.
open("/lib/tls/libdl.so.2", O_RDONLY) = 3
read(3, "\177ELF\1\1\1\0\0\0\0\0\0\0\0\0\3\0\3\0\1\0\0\0\320\32"...,
512) = 512
fstat64(3, {st_mode=S_IFREG|0644, st_size=9872, ...}) = 0
old_mmap(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS,
-1, 0) = 0xb7e06000
old_mmap(NULL, 8632, PROT_READ|PROT_EXEC, MAP_PRIVATE, 3, 0) =
0xb7e03000
old_mmap(0xb7e05000, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED,
3, 0x2000) = 0xb7e05000
close(3)= 0
set_thread_area({entry_number:-1 -> 6, base_addr:0xb7e06a40,
limit:1048575, seg_32bit:1, contents:0, read_exec_only:0,
limit_in_pages:1, seg_
not_present:0, useable:1}) = 0
getrlimit(RLIMIT_NOFILE, {rlim_cur=32767, rlim_max=32767}) = 0
close(32766)= -1 EBADF (Bad file
descriptor)
close(32765)= -1 EBADF (Bad file
descriptor)
.
.
close(3)= -1 EBADF (Bad file
descriptor)
brk(0) = 0x809c000
brk(0x80bd000) = 0x80bd000
brk(0) = 0x80bd000
getuid32() = 500
getgid32() = 500
geteuid32() = 500
getegid32() = 500
rt_sigaction(SIGXFSZ, {SIG_IGN}, {SIG_DFL}, 8) = 0
rt_sigaction(SIGPIPE, {SIG_IGN}, {SIG_DFL}, 8) = 0
access("/home/prod/.nethackrc", F_OK) = -1 ENOENT (No such file or
directory)
readlink("/proc/self/fd/0", 0xbf9b16fc, 511) = -1 EACCES (Permission
denied)
ioctl(0, SNDCTL_TMR_TIMEBASE or TCGETS, {B38400 opost isig icanon echo
...}) = 0
fstat64(0, {st_mode=S_IFCHR|0620, st_rdev=makedev(136, 3), ...}) = 0
stat64("/dev/pts/", {st_mode=S_IFDIR|0755, st_size=0, ...}) = 0
Re: OT: Comparison of filesystems
On Tuesday 25 April 2006 09:16, [EMAIL PROTECTED] wrote: > While we're on the subject of file systems ... Are there any useful > runours about the long-awaited landing of reiser4 at Debian? > The rumors are true (at least on sid): [EMAIL PROTECTED]:/usr/src$ apt-cache search reiser4 kernel-patch-2.6-reiser4 - Kernel patches for Reiser4 FS libaal-dev - Reiser4's application abstraction library libreiser4-dev - Reiser4's filesystem access and manipulation library reiser4progs - administration utilities for the Reiser4 filesystem from the kernel-patch-2.6-reiser4 package description: Description: Kernel patches for Reiser4 FS Patches to build Reiser4 FS support in your kernel. . Supported kernel version(s): 2.6.12, 2.6.12.1, 2.6.12.2, 2.6.12.3. . WARNING: this software is to be considered usable but its deployment in production environments is still not recommended. Use at your own risk. Justin Guerin -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Debian Installation on ACER TRAVELMATE TM3004WTMIB
Seidenthal Steve wrote: Hi Debian Users, I tried to install Debian Sarge 3.1 on my Subnotebook which is an Acer Travelmate TM3004 WTMIB. This is a 12,1" Device which has no internal DVD Drive, but has an Firewire external MutliDrive. I can boot from the DVD but the installer does not find the modules to detect de DVD Drive. What can i do ? Can i manually load Modules for Firewire DVD Drives ? How ;-) ? Many thanks for any ideas PS: I am a Newbie Did you try running Knoppix on that? -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Thanks! Re: good anti-virus software to use?
On Tue, 2006-04-25 at 13:34 -0600, Monique Y. Mudama wrote: > On 2006-04-22, Ron Johnson penned: > > On Sat, 2006-04-22 at 09:42 -0600, Monique Y. Mudama wrote: > >> On 2006-04-22, Ron Johnson penned: > >> > > >> > Unless you write with a secure language like COBOL. > >> > >> I'm sure it's possible to write an insecure program in COBOL. > > > > It would be darned hard. > > > > Strings are fixed length, the RTL chops off strings that are longer > > than the variable's PICTURE clause, and space-fills strings that are > > shorter than the PIC. Also, the RTL does array bounds checking, so > > you can't smash the stack that way either. And it doesn't have > > stupid \0-terminated strings. > > > > Face it: any language without malloc() is going to be much more > > secure that C/C++ & Pascal. > > Sure, but I could write a program in COBOL and still load passwords > from a plain text file stored with wide-open permissions, just for > example. That's willfully stupid programming. The COBOL run-time, though, just "does away" with issues like stack smashing and corrupted heaps. -- - Ron Johnson, Jr. Jefferson, LA USA Remember when environmental doom-and-gloomers said that it would take 10 years to put out the 750 post-GW1 oil fires? Yet they were all out in 6 months. Remember when environmental doom-and-gloomers said in ~1975 that the oil would run out in 50 years? -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: afraid to upgrade libc6 and libc6-dev
Andrew Sackville-West <[EMAIL PROTECTED]> writes: > Isn't that the purpose of symlinks to kernel images? so you don't have > to rerun for new kernels with same name? This is so that the lilo.conf doesn't need to be changed. The lilo bootloader doesn't know anything about filesystems. And it doesn't care about filenames. When you run lilo it saves raw disk block numbers for where the kernel and its initrd is stored on disk. Since there is no trivial way to ensure these blocknumbers don't change when you install a new kernel you have to rerun lilo. Matthias -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: ssh via inetd the Debian way
On Tue, 2006-04-25 at 12:45 -0700, Steve Lamb wrote: > Is there some automated method of placing sshd into inetd? I've attempted > to dpkg-reconfigure openssh-server to no avail. Why would one want sshd to run from inetd? sshd should typically be run as a daemon. As far as I know, there isn't a debconf way to place it as a inetd process. But if you really want it to be run from inetd... it'll be very similar to this as an entry in /etc/inetd.conf: ssh stream tcp nowait root /usr/sbin/tcpd /usr/sbin/sshd Please make sure you have priv separation enabled in /etc/ssh/sshd_config ie: UsePrivilegeSeparation yes also in /etc/services ensure you have: ssh 22/tcp # SSH Remote Login Protocol ssh 22/udp Also make sure that you touch the file: /etc/ssh/sshd_not_to_be_run so it won't start on bootup spewing errors that something else is listening on port 22. Now, since I have not tested this at all... it should really work, though YMMV. -- greg, [EMAIL PROTECTED] The technology that is Stronger, Better, Faster: Linux Use Debian GNU/Linux, its a bazaar thing NOTICE: Due to Presidential Executive Orders, the National Security Agency may have read this email without warning, warrant, or notice, and certainly without probable cause. They may do this without any judicial or legislative oversight. You have no recourse nor protection. signature.asc Description: This is a digitally signed message part
Re: ssh via inetd the Debian way
On 2006-04-25, Steve Lamb penned: > > Is there some automated method of placing sshd into inetd? I've atte= > mpted > to dpkg-reconfigure openssh-server to no avail. I don't know about automated, but I found this warning in `man sshd`: -i Specifies that sshd is being run from inetd(8). sshd is normally not run from inetd because it needs to generate the server key before it can respond to the client, and this may take tens of seconds. Clients would have to wait too long if the key was regenerated every time. However, with small key sizes (e.g., 512) using sshd from inetd may be feasible. -- monique Help us help you: http://www.catb.org/~esr/faqs/smart-questions.html -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: ssh via inetd the Debian way
Steve Lamb wrote: Is there some automated method of placing sshd into inetd? I've attempted to dpkg-reconfigure openssh-server to no avail. You almost certainly don't want to run sshd from inetd. Bad idea. -- Martin A. Brooks | http://www.antibodymx.net/ | Anti-spam & anti-virus Consultant| [EMAIL PROTECTED] | filtering. Inoculate antibodymx.net | m: +4745888254 | your mail system. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Handling apt-get, apt-cdrom, sources.list, cdroms.list
Rodolfo Medina wrote: >> >> The two CDs I have are actually two DVDs that came out of a magazine, >> >> including the complete Debian Sarge 3.1 stable. >> >> I have no more installation media. >> >> I thought they were including everything I'd need, but instead, >> >> if I understand what you say, they are not sufficient to fully satisfy >> >> all the installation needs with Debian Sarge. Chris Metzler writes: >> > Do you not have network access from that machine? If so, just add >> > some network sources to your sources.list, and pull the source from >> > over the net. Rodolfo: >> Thanks, I'll try. >> Only, I'm disapponted because I'd preferred I could do without the net >> when installing packages: that all I needed was there in my two DVDs. Andrew Sackville-West <[EMAIL PROTECTED]> writes: > All you need to install and run a system from binaries is on the two > DVDs. If you want to build packages you need more stuff. You could > however easily > > apt-get install emacs > > and have a running emacs without having to build it. Thanks. No, the problem is, that I need Emacs cvs, because 'normal' Emacs does not handle gmail's pop3. Cheers, Rodolfo -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
ssh via inetd the Debian way
Is there some automated method of placing sshd into inetd? I've attempted to dpkg-reconfigure openssh-server to no avail. -- Steve C. Lamb | But who decides what they dream? PGP Key: 8B6E99C5 | And dream I do... ---+- signature.asc Description: OpenPGP digital signature
Re: 'M-v' not working in man pages
Rodolfo Medina writes: > Hi. > When I'm reading a manual page, I do 'C-v' to go one screen ahead, > but 'M-v' does not work to go one screen back: when I do 'M-v', > the View menu is displayed instead. > How can I fix that? > I have Sarge stable, and Gnome. Which pager are you using? $ update-alternatives --display pager will tell you. With `less` as the default pager you can just use SPACE and b to move through man screens... -- --Jhair -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Thanks! Re: good anti-virus software to use?
On 2006-04-22, Ron Johnson penned: > On Sat, 2006-04-22 at 09:42 -0600, Monique Y. Mudama wrote: >> On 2006-04-22, Ron Johnson penned: >> > >> > Unless you write with a secure language like COBOL. >> >> I'm sure it's possible to write an insecure program in COBOL. > > It would be darned hard. > > Strings are fixed length, the RTL chops off strings that are longer > than the variable's PICTURE clause, and space-fills strings that are > shorter than the PIC. Also, the RTL does array bounds checking, so > you can't smash the stack that way either. And it doesn't have > stupid \0-terminated strings. > > Face it: any language without malloc() is going to be much more > secure that C/C++ & Pascal. Sure, but I could write a program in COBOL and still load passwords from a plain text file stored with wide-open permissions, just for example. -- monique Help us help you: http://www.catb.org/~esr/faqs/smart-questions.html -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
bind9: high default SOA value
Hello, I have just finished configuring a new bind9 server on our network. :-) As a test I generated a report at www.dnsreport.com and it gave me the following error message: --- WARNING: Your SOA RETRY interval is : 86400 seconds. This seems very high. You should consider decreasing this value to about 120-7200 seconds. The retry value is the amount of time your secondary/slave nameservers will wait to contact the master nameserver again if the last attempt failed. --- The 86400 value is supplied in the Debian default configuration and also (for example) suggested here: http://www.debian.org/doc/manuals/network-administrator/ch-bind.html Is Debian wrong in recommending this as a default? Should I worry about this and change the value? (The reason I am reluctant to do this is because there are nearly 50 domains defined on that server, which means I would have to remember some sed to write a script to change all of these values :-p ) Thank you in advance, -- George Borisov DXSolutions Ltd signature.asc Description: OpenPGP digital signature
Re: Makefile parametrisation
On Tue, Apr 25, 2006 at 06:56:27PM +0200, Dennis Stosberg wrote: > [EMAIL PROTECTED] wrote: > > > I'd like to define a symbol ARCH in my Makefile to be the output > > of > > uname -m > > > > The obvious thing, just starting with > > > > ARCH = `uname -m` > > > > didn't seem to work. It defined ARCH to be `uname -m' instead of > > i686 or x86_64. Not unreasonable, but What *is* the way to do > > this? > > With GNU make you can use "ARCH = $(shell uname -m)". ...or even "ARCH := $(shell uname -m)", the difference being that when you use ":=", the value will be expanded only once upon definition, while with "=", it is evaluated anew every time you use it -- resulting in lots of unnecessary fork()s when you have many occurrences of $(ARCH) in your makefile.[1] Since the result of "uname -m" is unlikely to change while running make, this performance optimisation can safely be made. Cheers, Almut [1] sceptical minds can verify this themselves: ;) With the following little makefile ARCH := $(shell uname -m) target: # $(ARCH) $(ARCH) $(ARCH) $(ARCH) the command $ strace -eprocess make 3>&2 2>&1 1>&3 | grep fork | wc -l should count only 2 forks, while when using "ARCH = $(shell uname -m)" you'd get 5 ... -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Debian Installation on ACER TRAVELMATE TM3004WTMIB
Hi Debian Users, I tried to install Debian Sarge 3.1 on my Subnotebook which is an Acer Travelmate TM3004 WTMIB. This is a 12,1" Device which has no internal DVD Drive, but has an Firewire external MutliDrive. I can boot from the DVD but the installer does not find the modules to detect de DVD Drive. What can i do ? Can i manually load Modules for Firewire DVD Drives ? How ;-) ? Many thanks for any ideas PS: I am a Newbie
Re: US Taxpayers: America's Army for Linux cancelled
On Tuesday 25 April 2006 09:50, Steve Lamb wrote: > Scrap the whole thing unless I'm missing the "make video games" clause in > the Constitution. I tend to agree. I was only lukewarm to the game to start, got really into it, then the port was dropped. -- Paul Johnson Email and IM (XMPP & Google Talk): [EMAIL PROTECTED] Jabber: Because it's time to move forward http://ursine.ca/Ursine:Jabber pgpONGLxkCwo8.pgp Description: PGP signature
Re: Firefox question about pop-up menus
On 4/25/06, Paul E Condon <[EMAIL PROTECTED]> wrote: > I have checked java and preferences. I see a window asking for permission > to install software. I click on the button that gives permission. There > is a short delay, after which the 'Extensions' window is still empty. > Shouldn't all installed plugins be listed in this window? That seems to > be implied by the help instructions for removing plugins. (It does confirm > my memory that I've never gotten any plugin installed.) If you're trying to install from an "untrusted" site, then Firefox prompts you for what to do (as you've noted). However, it *doesn't* then do the thing you'd asked it to do before it asked you if it was OK to do it. Ahem. That is to say, after trying to install an extension and then telling Firefox it's OK to install from that site, you have to install it *again*. Granting permissions isn't treated as a step in the installation process -- it's a handler for a failure mode. Your best bet is usually to try to find extensions from the official site -- the one you're directed to when you click "Get More Extensions" from the Extensions dialog. Those won't ask for permission. I highly recommend Web Developer. One of its features is to edit the CSS of a page that you're currently viewing. That could include wiping out all of the style information, in drastic cases. -- Michael A. Marsh http://www.umiacs.umd.edu/~mmarsh http://mamarsh.blogspot.com
Re: vnc+gdm+xinetd
- Original Message
From: Ferran Donadie <[EMAIL PROTECTED]>
To: debian-user@lists.debian.org
Sent: Tuesday, 25 April, 2006 10:45:06 AM
Subject: vnc+gdm+xinetd
this is the configuration file for xinetd
service vnc-800x600
{
only_from = 192.168.2.0
disable = no
socket_type = stream
protocol= tcp
wait= no
user= nobody
server = /usr/bin/Xvnc4
server_args = -inetd -query localhost -geometry 800x600 -depth 24 -fp
unix/:7100 -once securitytypes=none
}
-
Hmmm. From memory, I had to change something from how it was in the man
page... I emailed them about it and submitted a bug report... never heard
anything.
Now then... I *think* it may have been adding a "-" before
securitytypes=none...
-securitytypes=none
for both services.
I'm not certain. Let me know if this is nonsense.
--
Matt
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
wireless problems
I cant build either module wlan-bg or ndiswrapper is this a know problem on etch? I have the kernel-source and the headers and just am having no luck. I have googled around trying to find something and found a few and have followed the directions but still to no avail, any ideas, thanks. -- LostSon http://www.lostsonsvault.org /\ \ \ \__/ \__/ \ \ (oo) (oo) \_\/~~\_/~~\_ _.-~===~-._ (___) \___/ I Want To Believe signature.asc Description: This is a digitally signed message part
Re: partitioning for dual-linux..
On Tue, Apr 25, 2006 at 10:11:43AM -0700, Andrew Sackville-West wrote: > On Tue, Apr 25, 2006 at 09:29:51AM +0100, Digby Tarvin wrote: > > On Tue, Apr 25, 2006 at 07:15:35PM +1000, Arafangion wrote: > > > Digby Tarvin wrote: > > > > > > > > >This is my initial though on the partitioning of the 60GB drive on my > > I've pondered this issue a bit. what about this idea, slightly OT to > your original post but ... > > place a /home in each root partition (one for each distro) and then > within that home have a mount point for all your "stuff" within ~. > The idea being that each distro could write all its various and > possibly conflicting ~/. in the ~ located in > the root partition, but place all the "neutral" stuff like documents, > project, photos whatever into the other partition with links to it > all. > > for example: > > in /etc/fstab of each distro: > > /dev/hd12 /home/me/my_stuff ext3 etc... > > then in each / of each distro: > > mkdir /home/me > mkdir /home/me/my_stuff > > this way, with two sets of /home/me the crucially incompatible stuff > stays hidden from the other distro. > > lots of noise for a simple idea. Yes, that is something that I hand't really addressed in the layout I described. I was rather hoping that Debian and Ubuntu would be similar enough to share the home directory unmodified, and upgrading from one version of Debian to another would also not effect the home partition. But I do have a desktop system on which I have installed Gentoo and SuSE, and have used a strategy similar to what you have described. Except the /home on the root partition is a symlink to a directory in /var so that users don't get write permission in root. An alternative, perhaps cleaner, approach would be to have the system dependencies in a /var/home, with a shared home directories union mounted over the top to avoid the need for the extra directory level. Ultimately I think the whole '$HOME/.' paradigm for configuration files is over used and has exceeded its usefulness. It was fine when there were just one or two such files, but now there are hundreds. If I remember correctly, when the guys at Bell labs went on to design the successor to Unix (Plan9), they did away with using the '.' hidden files, and instead just use a $user/lib directory to hold all configuration files, such as $user/lib/profile, which I think is a bit tidier, and it would then be easy to, for instance, make a sym link to a per user directory in /var. -- Digby R. S. Tarvin digbyt(at)digbyt.com http://www.digbyt.com -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Firefox question about pop-up menus
On Tue, Apr 25, 2006 at 11:08:55 -0600, Paul E Condon wrote: > On Tue, Apr 25, 2006 at 06:23:56PM +0200, Johannes Wiedersich wrote: [...] > > I just installed it for sarge from > > http://readeasily.mozdev.org/installation.html > > > > You probably have to allow java and to set preferences > web features > > > allow sites to install software > > and add that url. > > > > Worked for me. > But not for me. > Are you using Sarge? > Are you using the Firefox that is distributed by Debian as a .deb file? > I have checked java and preferences. I see a window asking for permission > to install software. I click on the button that gives permission. There > is a short delay, after which the 'Extensions' window is still empty. > Shouldn't all installed plugins be listed in this window? That seems to > be implied by the help instructions for removing plugins. (It does confirm > my memory that I've never gotten any plugin installed.) > > Have plugins been disabled in the Debian version? > Please make suggestions as to what I should try. > What information can I post that would help others help me? I have noticed the following with Mozilla (and I hope it also is applicable for Firefox): The installation of extensions often fails because the installer was written by a brain-dead Windows programmer who assumes that the installer will have write permissions in Mozilla's system folder /usr/lib/mozilla. You can find this in the install.log in the .mozilla folder of your users $HOME. To make it even worse, this also happens with installers that have an explicit "install in the user's homedir" option. I then either decide that the extension is not that important to me, or I give my user temporary write permission for the system folder and do the installation again. Maybe the same thing works with /usr/lib/mozilla-firefox. (I always download the installer file first so that I am at least not connected to a website while my Mozilla system folder can be modified by the user.) -- Regards, Florian -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Firefox question about pop-up menus
On 25 Apr 2006, Paul E Condon wrote: > On Tue, Apr 25, 2006 at 06:23:56PM +0200, Johannes Wiedersich wrote: > > Paul E Condon wrote: > > >>Try using the Read Easily add-on. If a site is difficult to read you > > >>just press Shft-Ctrl-Z and it becomes plain text. I use this a lot for > > >>those ridiculous site where you have pale blue text on a white > > >>background, etc. > > >> > > > > > > > > >Thanks. > > >I'd like to try this but so far as I know I've never succeeded at > > >installing > > >a mozilla add-on. I've failed again on this one. Where can I find > > >instructions > > >that don't assume that it 'just works'? > > > > > I just installed it for sarge from > > http://readeasily.mozdev.org/installation.html > > > > You probably have to allow java and to set preferences > web features > > > allow sites to install software > > and add that url. > > > > Worked for me. > But not for me. > Are you using Sarge? > Are you using the Firefox that is distributed by Debian as a .deb file? > I have checked java and preferences. I see a window asking for permission > to install software. I click on the button that gives permission. There > is a short delay, after which the 'Extensions' window is still empty. > Shouldn't all installed plugins be listed in this window? That seems to > be implied by the help instructions for removing plugins. (It does confirm > my memory that I've never gotten any plugin installed.) > > Have plugins been disabled in the Debian version? > Please make suggestions as to what I should try. > What information can I post that would help others help me? > -- > Paul E Condon > [EMAIL PROTECTED] I'm using the deb package for firefox that is currently in Unstable. Extensions work well. You go to the Tools menu and choose Extensions and then Get More Extensions. The Read Easily extension is in Message Reading. Anthony -- Anthony Campbell - [EMAIL PROTECTED] Microsoft-free zone - Using Linux Gnu-Debian http://www.acampbell.org.uk (blog, book reviews, on-line books and sceptical articles) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Failed wireless connection
Hi, I'm trying to use wireless access with a Asus WL-100 pcmcia wireless card. The card is detected and works in the system (Debian Etch beta2). When I insert the card the hostap driver is activated. I then changed the driver default wireless parameters with: iwconfig wlan0 mode managed essid "ANY" rate auto and running iwconfig again shown the card connect to an AP in the range. My problems begin when I try to get a IP address, because the dhclient keeps reporting network down everytime it send a package. After that the interface desapears from ifconfig, and iwconfig reports the interface has no wireless extensions. Any ideas? Thank you all, Antonio -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: distributions: UBUNTU vs DEBIAN
On Tue, Apr 25, 2006 at 05:14:49PM +0100, Chris Lale wrote: > Andrew Sackville-West wrote: > > >On Sat, Apr 22, 2006 at 05:15:06PM -0500, Kent West wrote: > >>Kamaraju Kusumanchi wrote: > >>>On Saturday 22 April 2006 14:14, Steve Lamb wrote: > >>>Include my name in the list of "people for whom socila contract is the #1 > >>>point". I use debian because of its commitment to free software (which > >>>is part > >>>of social contract) not because it has apt or some other cool software. > >>> > >>>raju > >>> > >>Include my name in the list of "people for whom social contract is the > >>#1 point" also. When Debian ceases to be Free, then Debian ceases to > >>retain my loyalty. > >>-- > >>Kent > > > >1 more here. > > > >A > > > And another. I don't think I am here primarily for the social contract. I'm definately not here for APT either. My current preference for Debian is its flexibility. I like the policy of providing mechanism without mandating how it is used. There are some things in Debian that are not quite as I like them, but I am more confident that I can tailor things in Debian without having the next update put be back where I started than I am with most of the commercial distributions. It is also important to have an active and knowledgeable user base where help can be found with problems. I didn't mind paying a fair price for a BSD system (with source) back in the days before free software - although I wasn't so keen on the idea of annual license fees or annual payments to get updates. And I didn't mind installing software in /usr/local from a tarball. I do like the convenience of being able to update the system online, and it is also nice to get the system for free and be able to share it. Probably the number one priority for me is open source, which if I understand correctly is a subset of the requirements of the Social Contract, by virtue of the Debian guidlines on what is meant by 'Free' (which involves more than 'as in beer').. If I had to choose, I would rather pay a fair price for software with source, than have a free binary. The details of any license are of course very important, but I think the Debian requirements are more stringent than mine. So long as I can do what I want to my own system, and am free to share the code that I write, then I don't insist on being able to share the code someone else has written. Regards, DigbyT -- Digby R. S. Tarvin digbyt(at)digbyt.com http://www.digbyt.com -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: partitioning for dual-linux..
On Tue, Apr 25, 2006 at 10:11:43AM -0700, Andrew Sackville-West wrote: > On Tue, Apr 25, 2006 at 09:29:51AM +0100, Digby Tarvin wrote: > > On Tue, Apr 25, 2006 at 07:15:35PM +1000, Arafangion wrote: > > > Digby Tarvin wrote: > > > > > > > > >This is my initial though on the partitioning of the 60GB drive on my > > > >Debian laptop: > > > > XP -10.00GB > > > > boot - 0.10GB ?? > > > > sys 1 > > > > root - 0.15GB > > > > usr- 2.00GB > > > > var- 2.00GB > > > > sys 2 > > > > root - 0.15GB > > > > usr- 2.00GB > > > > var- 2.00GB > > > > shared > > > > swap - 1.00GB > > > > tmp - ramfs? > > > > home -10.00GB > > > > home2 -10.00GB > > > > local -20.00GB > > > > > > > Three comments I can make so far: > > > 1) Why the two home directories? If you keep your /etc/passwd and > > > /etc/groups in sync, you should not have issues between the two /home's. > > > (Then again, conflicts between multiple versions of gnome or kde, etc, > > > could be an issue - how about a "shared" space, and make /home just a > > > gig each) > > > > Oh no - I wasn't intending separate home directories for the two > > systems. Everything in the region labelled 'shared' is as the name > > implies... > > > > It is just a personal convention that I keep a separate encrypted > > home2 partition for sensitive stuff, which I only mount when needed. > > I've pondered this issue a bit. what about this idea, slightly OT to > your original post but ... > > place a /home in each root partition (one for each distro) and then > within that home have a mount point for all your "stuff" within ~. > The idea being that each distro could write all its various and > possibly conflicting ~/. in the ~ located in > the root partition, but place all the "neutral" stuff like documents, > project, photos whatever into the other partition with links to it > all. > > for example: > > in /etc/fstab of each distro: > > /dev/hd12 /home/me/my_stuff ext3 etc... > > then in each / of each distro: > > mkdir /home/me > mkdir /home/me/my_stuff > > this way, with two sets of /home/me the crucially incompatible stuff > stays hidden from the other distro. > > lots of noise for a simple idea. > > A Just this morning I was thinking of filing a wishlist bug against Debian HFS. It should include policy about what GUI systems (gnome, KDE, etc.) are allowed to install in a user's ~/ . Different dists within Debian install different versions of GUI which in turn step on each others files in ~/. I don't think any user action is workable without help from an enforced policy. -- Paul E Condon [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Makefile parametrisation
[EMAIL PROTECTED] wrote: > I'd like to define a symbol ARCH in my Makefile to be the output of > uname -m > > The obvious thing, just starting with > > ARCH = `uname -m` > > didn't seem to work. It defined ARCH to be `uname -m' instead of > i686 or x86_64. Not unreasonable, but What *is* the way to do this? With GNU make you can use "ARCH = $(shell uname -m)". Regards, Dennis -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: slimp3 server behaving oddly
On Mon, Apr 24, 2006 at 10:24:16PM -0600, Monique Y. Mudama wrote: > On 2006-04-16, Monique Y. Mudama penned: > > I run the slimp3 package. Lately I've been using it a lot more than > > usual, because I finally put a client box next to my stereo so that > > I can listen to my music on decent speakers. > > > > Anyway. > > > > It just stopped working. > > [snip] > > With no leads, I gave up and installed slimserver, which seems to be > the same idea with a slicker interface and an active debian > maintainer. Turns out slimp3 was orphaned. > > Anyone happen to know the exact relationship between the slimp3 and > the slimserver packages? Is slimp3 an older form of slimserver? > As far as I know, yes, though there are some differences. check www.slimdevices.com (I think) for info. A > -- > monique > > Help us help you: > http://www.catb.org/~esr/faqs/smart-questions.html > > > -- > To UNSUBSCRIBE, email to [EMAIL PROTECTED] > with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED] > signature.asc Description: Digital signature
Re: partitioning for dual-linux..
On Tue, Apr 25, 2006 at 09:29:51AM +0100, Digby Tarvin wrote: > On Tue, Apr 25, 2006 at 07:15:35PM +1000, Arafangion wrote: > > Digby Tarvin wrote: > > > > > >This is my initial though on the partitioning of the 60GB drive on my > > >Debian laptop: > > > XP -10.00GB > > > boot - 0.10GB ?? > > > sys 1 > > > root - 0.15GB > > > usr- 2.00GB > > > var- 2.00GB > > > sys 2 > > > root - 0.15GB > > > usr- 2.00GB > > > var- 2.00GB > > > shared > > > swap - 1.00GB > > > tmp - ramfs? > > > home -10.00GB > > > home2 -10.00GB > > > local -20.00GB > > > > > Three comments I can make so far: > > 1) Why the two home directories? If you keep your /etc/passwd and > > /etc/groups in sync, you should not have issues between the two /home's. > > (Then again, conflicts between multiple versions of gnome or kde, etc, > > could be an issue - how about a "shared" space, and make /home just a > > gig each) > > Oh no - I wasn't intending separate home directories for the two > systems. Everything in the region labelled 'shared' is as the name > implies... > > It is just a personal convention that I keep a separate encrypted > home2 partition for sensitive stuff, which I only mount when needed. I've pondered this issue a bit. what about this idea, slightly OT to your original post but ... place a /home in each root partition (one for each distro) and then within that home have a mount point for all your "stuff" within ~. The idea being that each distro could write all its various and possibly conflicting ~/. in the ~ located in the root partition, but place all the "neutral" stuff like documents, project, photos whatever into the other partition with links to it all. for example: in /etc/fstab of each distro: /dev/hd12 /home/me/my_stuff ext3 etc... then in each / of each distro: mkdir /home/me mkdir /home/me/my_stuff this way, with two sets of /home/me the crucially incompatible stuff stays hidden from the other distro. lots of noise for a simple idea. A signature.asc Description: Digital signature
Re: Firefox question about pop-up menus
On Tue, Apr 25, 2006 at 06:23:56PM +0200, Johannes Wiedersich wrote: > Paul E Condon wrote: > >>Try using the Read Easily add-on. If a site is difficult to read you > >>just press Shft-Ctrl-Z and it becomes plain text. I use this a lot for > >>those ridiculous site where you have pale blue text on a white > >>background, etc. > >> > > > > > >Thanks. > >I'd like to try this but so far as I know I've never succeeded at > >installing > >a mozilla add-on. I've failed again on this one. Where can I find > >instructions > >that don't assume that it 'just works'? > > > I just installed it for sarge from > http://readeasily.mozdev.org/installation.html > > You probably have to allow java and to set preferences > web features > > allow sites to install software > and add that url. > > Worked for me. But not for me. Are you using Sarge? Are you using the Firefox that is distributed by Debian as a .deb file? I have checked java and preferences. I see a window asking for permission to install software. I click on the button that gives permission. There is a short delay, after which the 'Extensions' window is still empty. Shouldn't all installed plugins be listed in this window? That seems to be implied by the help instructions for removing plugins. (It does confirm my memory that I've never gotten any plugin installed.) Have plugins been disabled in the Debian version? Please make suggestions as to what I should try. What information can I post that would help others help me? -- Paul E Condon [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Handling apt-get, apt-cdrom, sources.list, cdroms.list
On Tue, Apr 25, 2006 at 03:53:35PM +0200, Rodolfo Medina wrote: > Rodolfo Medina wrote: > > >> The two CDs I have are actually two DVDs that came out of a magazine, > >> including the complete Debian Sarge 3.1 stable. > >> I have no more installation media. > >> I thought they were including everything I'd need, but instead, > >> if I understand what you say, they are not sufficient to fully satisfy > >> all the installation needs with Debian Sarge. > >> Sorry if I'm not technically correct. > >> Does anybody know how I could burn a source CD for the two I have? > > > > Chris Metzler writes: > > > Do you not have network access from that machine? If so, just add > > some network sources to your sources.list, and pull the source from > > over the net. > > > > This is all explained in the documentation, btw. > > > > man sources.list > > http://www.debian.org/doc/ (esp. the Apt HOWTO) > > > Thanks, I'll try. > Only, I'm disapponted because I'd preferred I could do without the net > when installing packages: that all I needed was there in my two DVDs. > All you need to install and run a system from binaries is on the two DVDs. If you want to build packages you need more stuff. You could however easily apt-get install emacs and have a running emacs without having to build it. A signature.asc Description: Digital signature
Re: OT: Comparison of filesystems
[EMAIL PROTECTED] wrote: On Tue, Apr 25, 2006 at 01:57:30AM -0700, Alvin Oga wrote: While we're on the subject of file systems ... Are there any useful runours about the long-awaited landing of reiser4 at Debian? While we are at it: reiser4 was one of the main reasons, why I switched from suse to debian :-) My laptop came with an installation cd to install suse 9.x on my thinkpad. It installed one big reiser4 partition for everything. After that I couldn't resize that partition from suse, because it was / and not from knoppix etc., because reiser4 was not supported. The simplest solution to have a separate /home was to install debian :-) Well how would I recommend on reiserfs? Johannes -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Cant install Sarge on my new laptop
On Tue, Apr 25, 2006 at 01:31:14PM +0200, Zouari Fourat wrote: > am trying to install debian sarge 3.1r1 (netinstall, expert26 at boot) > on my new Toshiba Satellite A100 laptop and it wont install, telling > me : > > Linux kernel modules needed to drive some of your hardware are not > available yet. Simply proceeding with the install may make these > modules available later. > > The unavailable modules, and the devices that need them are: > ide-scsi(Linux IDE-SCSI emulation layer), ide-mod(Linux IDE driver), > ide-prob-mod(Linux IDE probe driver), ide-detect(Linux IDE detection), > ide-floppy(Linux IDE floppy). > so, did you proceed with the install? I don't think the above is necessarily a critical problem. Those drivers just aren't on the install disk (floppy, right?) and you need to get them from somewhere. If you're doing a net install, you've got to load the net drivers from the net-drivers.img floppy and then you can grab the disk drivers off the net. I think. I'm going through that right now with an older toshiba satellite and see the same thing, but I don't think its a show-stopper. A signature.asc Description: Digital signature
Re: Makefile parametrisation
[EMAIL PROTECTED] wrote: > I'd like to define a symbol ARCH in my Makefile to be the output > of > uname -m > > The obvious thing, just starting with > > ARCH = `uname -m` > > didn't seem to work. It defined ARCH to be `uname -m' instead of > i686 or x86_64. Not unreasonable, but What *is* the way to do > this? With GNU make you can use "ARCH = $(shell uname -m)". Regards, Dennis -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Handling apt-get, apt-cdrom, sources.list, cdroms.list
On Tue, Apr 25, 2006 at 03:53:35PM +0200, Rodolfo Medina wrote: > Only, I'm disapponted because I'd preferred I could do without the net > when installing packages: that all I needed was there in my two DVDs. You can do the entire installation from the DVD's, but if you want to build packages yourself you need the sources. It might be a good idea to pull packages from the security archives anyway, to keep vulnerabilities patched up, at least if you plan to use that net at all. -- Christopher Nelson -- [EMAIL PROTECTED] --- The most exciting phrase to hear in science, the one that heralds new discoveries, is not "Eureka!" (I found it!) but "That's funny ..." -- Isaac Asimov -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: NIC Problems
On Tue, Apr 25, 2006 at 08:58:20AM -0400, daniel arjona wrote: > Hello Everybody: > > I am playing with Linux Debian 3.1 release 1 for first time. I have some > problems with the network access. In fact I can not ping my gateway. I > double checked the network setups using webmin and also using the X-Term what's this? -- webmin works but you can't ping? How are you accessing webmin? over the net or localhost: (not sure if that works actually). A > screen and everything look good. > > Can anybody gime a clue to start troubleshooting this issue. > > Thanks in advance, > > DANIEL > > > > > -- > To UNSUBSCRIBE, email to [EMAIL PROTECTED] > with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED] > signature.asc Description: Digital signature
Re: US Taxpayers: America's Army for Linux cancelled
Hal Vaughan wrote: > Interesting dilemma for any Quakers (or members of any "peace churches") > who are FOSS advocates. Does one take the chance to advocate for open > source or suggest that the entire program should be dropped? Scrap the whole thing unless I'm missing the "make video games" clause in the Constitution. -- Steve C. Lamb | But who decides what they dream? PGP Key: 8B6E99C5 | And dream I do... ---+- signature.asc Description: OpenPGP digital signature
Re: 'M-v' not working in man pages
On Tue, Apr 25, 2006 at 03:54:52PM +0200, Rodolfo Medina wrote: > Hi. > > When I'm reading a manual page, I do 'C-v' to go one screen ahead, > but 'M-v' does not work to go one screen back: when I do 'M-v', > the View menu is displayed instead. > How can I fix that? change the key assignments for M-v. Gnome is grabbing it and using it to drop down that view menu instead of passing it to the terminal. THere is a way to change the key assignments in gnome, but I can't recall off the top of my head. I had a similar problem with IceWM for a while... when using emacs C-M-n (I think) was the key code for "Next Paren" but Ice was grabbing it for "Net" and launching Dillo. took me forever to figure that out. A > I have Sarge stable, and Gnome. > > Thanks in advance for any help, > Rodolfo > > > -- > To UNSUBSCRIBE, email to [EMAIL PROTECTED] > with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED] > signature.asc Description: Digital signature
Re: distributions: UBUNTU vs DEBIAN
Chris Lale wrote: [ snipped 46 lines of quoted material ] > And another. Whoa, who let the AOLer in here. -- Steve C. Lamb | I'm your priest, I'm your shrink, I'm your PGP Key: 8B6E99C5 | main connection to the switchboard of souls. ---+- signature.asc Description: OpenPGP digital signature
Re: afraid to upgrade libc6 and libc6-dev
On Tue, Apr 25, 2006 at 11:06:42AM -0400, [EMAIL PROTECTED] wrote: > On Mon, Apr 24, 2006 at 09:41:09PM +0300, Andrei Popescu wrote: > > > > If the filename doesn't change (of the kernel image) i think neither > > grub nor lilo need the update. But it doesn't hurt. Unless you changed > > menu.lst without reading/understanding the instructions inside. > > lilo has to be called if it is a new file, even if it has the same > name. Isn't that the purpose of symlinks to kernel images? so you don't have to rerun for new kernels with same name? A > > -- hendrik > > > -- > To UNSUBSCRIBE, email to [EMAIL PROTECTED] > with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED] > signature.asc Description: Digital signature
Re: Makefile parametrisation
On Tue, Apr 25, 2006 at 11:25:23AM -0400, [EMAIL PROTECTED] wrote: > I'd like to define a symbol ARCH in my Makefile to be the output of > uname -m > > The obvious thing, just starting with > > ARCH = `uname -m` > > didn't seem to work. It defined ARCH to be `uname -m' instead of > i686 or x86_64. Not unreasonable, but What *is* the way to do this? I'm no bash guy but: ARCH=`eval unmae -m` works here. A > > -- hendrik > > > -- > To UNSUBSCRIBE, email to [EMAIL PROTECTED] > with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED] > signature.asc Description: Digital signature
Re: Performance issue on Stable
IraqiGeek wrote: As far as performance, those early P4s and Xeons werent any real performers. My old XP 1800+ rig with 512MB was on par with a 2.4GHz Northwood P4 (512KB, 400MHz bus) in most tasks that I could throw at it. Agreed. My rule of thumb, which may not be true for newer Intel processors, is that an Athlon processor will keep up with a pentium 4 running at twice the speed. It's certainly my experience that an Opteron will outperform a significantly higher clocked Xeon. Horses for courses, ymmv, etc. -- Martin A. Brooks | http://www.antibodymx.net/ | Anti-spam & anti-virus Consultant| [EMAIL PROTECTED] | filtering. Inoculate antibodymx.net | m: +4745888254 | your mail system. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Etch and Xorg
Just this AM I put ETCH on a Dell Dim. 4100 and no X. YIKES. I did an apt-get install xserver-xorg xutils x-windows-system-core and I had 640x480 in /etc/X11/xorg.config I added my monitor's HorizSync and VertRrefresh and I was at my max res. If this helps anyone, great. Craig -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Firefox question about pop-up menus
Paul E Condon wrote: Try using the Read Easily add-on. If a site is difficult to read you just press Shft-Ctrl-Z and it becomes plain text. I use this a lot for those ridiculous site where you have pale blue text on a white background, etc. Thanks. I'd like to try this but so far as I know I've never succeeded at installing a mozilla add-on. I've failed again on this one. Where can I find instructions that don't assume that it 'just works'? I just installed it for sarge from http://readeasily.mozdev.org/installation.html You probably have to allow java and to set preferences > web features > allow sites to install software and add that url. Worked for me. Johannes -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
