Re: 64-Bit Land
On Wed, 2010-01-06 at 18:21 +0100, Sven Joachim wrote: > On 2010-01-06 18:13 +0100, Freeman wrote: > > > But is somebody still building 32-bit cpu's? > > Yes, see http://en.wikipedia.org/wiki/ARM_architecture, for instance. > It will be fun when all those embedded devices break. > > Sven > And some relatively current Intel Atoms - including the one in this machine which doesn't have 64 bit capability. Lots of embedded systems too - but at least it's not 2016 yet ... oh no, wait ... AndyC -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Re: CPU fan working more than it should
Dne, 07. 01. 2010 16:08:40 je George napisal(a): On 1/7/10, Arthur Machlas wrote: > On Thu, Jan 7, 2010 at 8:50 AM, George wrote: > >> I just installed Debian on my laptop and I notice that the CPU fan is >> working much more than it used to work on windows. It must be that >> Debian changed the temperature threshold. How can I change it back? Apparently, ACPI implementations in laptops are buggy (or let's say non-standardized) more often than not. I suspect M$ must have several workarounds in place in order to run -- at least in general -- cooler and more power-savvy than GNU/Linux. These workarounds may well be industry secrets between M$ and the laptop vendors for all we know ... You may read a write up on my humble experience with a heated, noisy, jumpy laptop (gosh, sounds like my wife), by hopping over to the link provided at the end of my post; just look for the heading "Laptops in Heat". There you'll find more about ACPI, the thermal kernel module, the trip points and related stuff, and also some relevant links for further reading. -- Regards, Klistvud Certifiable Loonix User #481801 http://bufferoverflow.tiddlyspot.com -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Re: Capturing keypresses during screensaver.
Dne, 07. 01. 2010 21:58:51 je Timothy Legg napisal(a): When using Gnome on Lenny, If the user starts typing while a screensaver is operating, the character representing the first keypress is lost. Is there a way that the screensaver can send this character to the focused application? You may achieve that by "disabling" the screensaver and relying on the Gnome Power Options to blank your monitor instead (say, by setting the monitor to standby after a given amount of minutes). In this case, the screensaver won't kick in, but it will still be used for detecting "idle" system condition. The actual timeout taken by the monitor to standby is the sum of the two timeouts (when you slide the screensaver timeout slider, you can watch the Gnome Power Options slider move accordingly, to reflect that). Of course, this way, any fancy screensaver (company logo) you may have in place will be lost. -- Regards, Klistvud Certifiable Loonix User #481801 http://bufferoverflow.tiddlyspot.com -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Re: New testing install; no /boot/grub/menu.lst exists.
Dne, 08. 01. 2010 01:32:32 je s. keeling napisal(a): Thanks. That's looking very tempting at the moment. So far, I've not solved it. It would not be unwise to switch to Grub 2 (the new Grub that's slowly becoming the default in many distros). It stores its configuration in /boot/grub/grub.cfg (not in menu.lst anymore) and is every bit as capable as grub legacy and then some (for example, it can boot some live CD.ISO images -- such as Ubuntu -- from your hard drive; also, Grub splash images are fairly easy to implement; and pre-existing systems on your hard drives/partitions are detected automagically and added to the Grub startup menu; it's also more consistent IMHO). The configuration is not handled by directly editing the grub.cfg, but by modifying the scripts in /etc/grub.d and then running update-grub. -- Regards, Klistvud Certifiable Loonix User #481801 http://bufferoverflow.tiddlyspot.com -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Re: Two computers in one: two users each with their own accounts, monitor, and keyboard?
On Wed, 6 Jan 2010 19:15:28 -0600, "Boyd Stephen Smith Jr." wrote: > In <4b44b28b.10...@hardwarefreak.com>, Stan Hoeppner wrote: >> To make OpenGL >> really scream on single user 3D chips, they had to eliminate over the >> network OpenGL completely, as keeping that capability would have totally >> hosed the rendering pipeline performance for 3D chips. > > That makes no sense. OpenGL is an abstration, like the X protocol itself. It makes sense when one takes into account that over 99% of the GL extensions developed over the past decade target a local GPU optimized OpenGL server. Each OpenGL server implementation must target a rendering device, and the Linux OpenGL server has been written with a local GPU device driver as the target. This change in architecture occurred in the early 2000's IIRC. I recall seeing something on LKML or a similar list about the final abandonment of remote rendering capability for OpenGL in Linux because the two requirements were inversely compatible: local GPU vs remote network rendering. Due to the latencies, if you optimize for one the other sucks, and if you optimize for the middle, both end up unusable. Thus, at that point, the OpenGL server in Linux became GPU centric and no network rendering was possible. I don't have a link or hard copy. Like I said I read this 8-10 years ago. IIRC, this change took place back in the 2.0 kernel era. For one to develop a network centric OpenGL application today, you would require a hardware (GPU) agnostic OpenGL server component. Good luck finding one. You'll likely need a time machine to take you back prior to the late 90's. One would also require an OpenGL client design optimized for use with a hardware agnostic OpenGL server on a remote IP address. Again, good luck finding such a beast. Oh, I guess you could write one of each, and then write your network OpenGL application to take advantage of them, regardless of their limited rendering capability. Good luck troubleshooting any capability and/or performance issues. Due to the client/server model of OpenGL, what you say is possible, and in the 80s and 90s was the norm. But it hasn't been for over a decade due to ultra cheap 3D rendering chips. The need for the network model evaporated, and all the operating systems adapted to this paradigm shift. -- Stan -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
latest sid of Dec. 25 can't see partition
Hi All, Late on Dec. 25 I rebooted my sid system and my home directory is no longer visible to my system even to Grub. It contains my home directory. An Ubuntu 8.10 live CD sees it just fine. I normally keep everything updated unless apt-listbugs shows. FWIW it's /dev/hda10 on a 40GB drive. The / directory which is /dev/hda9 is completely visible. Is anyone aware of any recent changes that would cause this? Any diagnostic ideas? TIA, Paul Scott -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Re: Handle paths with spaces
On Thu, Jan 07, 2010 at 08:35:56AM -0800, Bob McGowan wrote: > Doesn't work - bash and the 'for' loop work on newline > terminated strings and don't know how to handle the null > terminator from -print0: That's why I said > > Look at the -print0 arg for find and the -0 argument for > > xargs. You need to use them both, *instead* of the for loop. > I would suggest to the OP that they use a 'while' loop > rather than 'for': snip > The 'read' gets the whole line, ignoring spaces. Let's hope none of the files have newlines in their names. signature.asc Description: Digital signature
Re: Disallow other users from reading my $HOME
On Thu, Jan 07, 2010 at 10:24:27PM +, Roger Leigh wrote: > Once could just give execute perm to ~ and maybe additionally > read as well to ~/public_html? Exactly right. The read to ~/public_html is not necessary if you have +x and a suitable index file underneath which is readable, but it doesn't really hurt. (some people might not want their web directories 'indexable'. Those people will not want +r, but they will also want to turn of their web server's directory indexing feature too). -- Jon Dowland signature.asc Description: Digital signature
Re: Removing the indent-string quote marker '>' in emails.
On Sun,03.Jan.10, 13:18:59, Freeman wrote: > On Sun, Jan 03, 2010 at 03:50:32PM -0500, Chris Jones wrote: > > > > Hmm.. what exactly is your 'smartlist'? > > "Was" my smartlist. It was an attempt at a social list among fiends back in > the day, when I fell in love with email and the usenet and thought I might > make something of it. :) > > Smartlist is built on procmail and is on their page. It is easily Googled > because so many play with it. But host services tend to dislike it. To > many messy experiments maybe. Do you mean the SmartList mentioned here[1]? ;) [1] http://www.debian.org/MailingLists/ Regards, Andrei -- Offtopic discussions among Debian users and developers: http://lists.alioth.debian.org/mailman/listinfo/d-community-offtopic signature.asc Description: Digital signature
LVM+RAID+CRYPT
Hi all, I have been using Debian for a few years now. For my new workstation I want to try something new. What I want to do: 1. Make a RAID1 using two SATA discs 2. Create one partition on the RAID 3. Encrypt that partition 4. Use LVM on the partition I can't find very much info on this setup and have some questions: 1. Is this a wise setup? 2. What's the difference between the two encryptions Lenny offers? Which one is better? 3. Is it ok to have swap and /boot on an encrypted LVM? 4. Are there any alternatives I should consider? ZFS seems great, but is only available in userspace AFAIK. Thanks -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
LVM+RAID+CRYPT
Hi all, I have been using Debian for a few years now. For my new workstation I want to try something new. What I want to do: 1. Make a RAID1 using two SATA discs 2. Create one partition on the RAID 3. Encrypt that partition 4. Use LVM on the partition I can't find very much info on this setup and have some questions: 1. Is this a wise setup? 2. What's the difference between the two encryptions Lenny offers? Which one is better? 3. Is it ok to have swap and /boot on an encrypted LVM? 4. Are there any alternatives I should consider? ZFS seems great, but is only available in userspace AFAIK. Thanks PS: I resend this message because I think the first one didn't make it to the list. Sorry if it did -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Re: LVM+RAID+CRYPT
Sjors van der Pluijm put forth on 1/8/2010 5:13 AM: > 3. Is it ok to have swap and /boot on an encrypted LVM? Never run encryption on swap. Doing so merely burdens performance. I doubt even NSA, CIA, MI6 encrypt swap partitions on workstations. I've never tried to boot from an encrypted /boot, so I really can't say if it would work or not. Why can't/won't you create 3 partitions? [boot] 100MB mounted as /boot normal ext2 [swap] 1-8GB mounted as normal swap partition [root] [remaining space] mounted as /root and encrypted however you like -- Stan -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Re: LVM+RAID+CRYPT
Op vrijdag 8 januari 2010 12:26:37 schreef Stan Hoeppner: > Sjors van der Pluijm put forth on 1/8/2010 5:13 AM: > > 3. Is it ok to have swap and /boot on an encrypted LVM? > > Never run encryption on swap. Doing so merely burdens performance. I > doubt even NSA, CIA, MI6 encrypt swap partitions on workstations. Well, I might heave read wrong, but I thought the Debian installer warned me not to leave swap unencrypted while other partitions are encrypted. It makes sense too: sensitive content could easily be written to swap. > I've never tried to boot from an encrypted /boot, so I really can't say if > it would work or not. Why can't/won't you create 3 partitions? > > [boot] 100MB mounted as /boot normal ext2 > [swap] 1-8GB mounted as normal swap partition > [root] [remaining space] mounted as /root and encrypted however you like Just found out that /boot should not be in LVM because bootloaders might not understand it. /boot unencrypted does not seem to be the end of the world. http://tldp.org/HOWTO/LVM-HOWTO/benefitsoflvmsmall.html > > -- > Stan > -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Re: LVM+RAID+CRYPT
On 1/8/2010 5:26 AM, Stan Hoeppner wrote: Sjors van der Pluijm put forth on 1/8/2010 5:13 AM: 3. Is it ok to have swap and /boot on an encrypted LVM? Never run encryption on swap. Doing so merely burdens performance. I doubt even NSA, CIA, MI6 encrypt swap partitions on workstations. I've never tried to boot from an encrypted /boot, so I really can't say if it would work or not. Why can't/won't you create 3 partitions? 4: [boot] 200MB mounted as /boot normal ext2 [swap] 1-8GB mounted as normal swap partition [root] [1/3 remaining space] mounted as / [root] and encrypted however you like [home] [2/3 remaining space] probably the most urgent for encryption Mark Allums -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Re: LVM+RAID+CRYPT
Sjors van der Pluijm wrote: Op vrijdag 8 januari 2010 12:26:37 schreef Stan Hoeppner: Sjors van der Pluijm put forth on 1/8/2010 5:13 AM: 3. Is it ok to have swap and /boot on an encrypted LVM? Never run encryption on swap. Doing so merely burdens performance. I doubt even NSA, CIA, MI6 encrypt swap partitions on workstations. Well, I might heave read wrong, but I thought the Debian installer warned me not to leave swap unencrypted while other partitions are encrypted. It makes sense too: sensitive content could easily be written to swap. i maintain a few laptops with encryption and i developed the following habit. / 10GB /home the rest + encryption these are fairly new laptops with or more then 1GB RAM, simply not having any /swap solves the problem and with enough RAM available i never had any problem. not having the / root partition encrypted leaves some room for trouble shooting is the thought here since the sensitive information is in the /home anyway. not sure if this is the best way to do this but its simple and works nicely in my experience. Randall -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
is there a tool which can make a index for my pdf file?
hi all, Is there a tool which can make a index for my exist pdf files? I find it is too boring for reading a pdf file without a index.Or a highly efficient method for reading the pdf file? thanks very much. best regards, -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Grub 2
Hi, I'm trying to install Debian Lenny on a new computer. I've only one IDE port so I've put an old 120GB drive as master and a cd rom as slave. The IDE is only really going to be used to store virtual oses on, and may disappear at some point. The main drives are 2x1Tb SATA drives, which has 300mb for boot on each, then the rest is set up as RAID1, with all the partitions stored in an LVM on this RAID setup. I've set the motherboard to boot off the first of the SATA drives, the one with the actual boot partition on. I intend to mirror these later for redundancy. I'm fine when I use GRUB 0.97 as I can edit the debian settings which always put hd(1,0) when as I'm booting and then have it boot. Problem is, I want to use grub2 as the first thing I'm going to do is upgrade to debian testing, which uses this. Because debian is convinced the boot drive is hd(1,0) I get an error 15. I'm trying to find out how to solve this, either by manually editing the grub file on boot, or by rescuing the installation and then editing the grub. Any help would be really appreciated. Jim -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Re: LVM+RAID+CRYPT
Stan Hoeppner wrote: Sjors van der Pluijm put forth on 1/8/2010 5:13 AM: 3. Is it ok to have swap and /boot on an encrypted LVM? Never run encryption on swap. Doing so merely burdens performance. I doubt even NSA, CIA, MI6 encrypt swap partitions on workstations. I've never tried to boot from an encrypted /boot, so I really can't say if it would work or not. Why can't/won't you create 3 partitions? [boot] 100MB mounted as /boot normal ext2 [swap] 1-8GB mounted as normal swap partition [root] [remaining space] mounted as /root and encrypted however you like I run a couple of identical machines, some with full disk encryption (i.e. everything including swap except /boot which you cannot encrypt) and some where only home is encrypted with LUKS. Never noticed any performance impact. I think that swap encryption is *mandatory* for the reason of there being written many things that shouldn't in case they are sensitive. And I guess this why the approach of the debian installer should you choose to encrypt includes swap encryption. G. smime.p7s Description: S/MIME Cryptographic Signature
Re: LVM+RAID+CRYPT
Op vrijdag 8 januari 2010 13:40:00 schreef Γιώργος Πάλλας: > Stan Hoeppner wrote: > > Sjors van der Pluijm put forth on 1/8/2010 5:13 AM: > >> 3. Is it ok to have swap and /boot on an encrypted LVM? > > > > Never run encryption on swap. Doing so merely burdens performance. I > > doubt even NSA, CIA, MI6 encrypt swap partitions on workstations. > > > > I've never tried to boot from an encrypted /boot, so I really can't say > > if it would work or not. Why can't/won't you create 3 partitions? > > > > [boot] 100MB mounted as /boot normal ext2 > > [swap] 1-8GB mounted as normal swap partition > > [root] [remaining space] mounted as /root and encrypted however you like > > I run a couple of identical machines, some with full disk encryption > (i.e. everything including swap except /boot which you cannot encrypt) > and some where only home is encrypted with LUKS. Never noticed any > performance impact. I think that swap encryption is *mandatory* for the > reason of there being written many things that shouldn't in case they > are sensitive. And I guess this why the approach of the debian installer > should you choose to encrypt includes swap encryption. > > G. > Ok, getting a clear picture here. I will have /boot en / on a seperate partition. The remainer will be encrypted and configured using LVM (/home, /tmp, /var and swap) Thanks! -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Re: Grub 2
On Fri, 2010-01-08 at 12:33 +, James Allsopp wrote: > Problem is, I want to use grub2 as the first thing I'm going to do > is upgrade to debian testing, which uses this. Is there a reason for not just installing Debian Testing rather than trying to get Lenny on there first? The testing install would add Grub2 and I believe that it (and fstab) now use UUIDs to identify drives, which helps avoid hdX/sdX drive identification mixups. I a newbie to a lot of this, so may be talking rubbish. ;-) -- Tixy -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Re: Two computers in one: two users each with their own accounts, ??monitor, and keyboard?
Dotan Cohen wrote: > Thanks, Chris. Once I had discovered the keyword "multiseat" I have > been able to google what I need on the topic. I do appreciate the > gentle hint, though. I do try to be independent. No problem. Glad it was useful Chris -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
jabber cliente
hey¡ Someone knows if there are some jabber client which support voice and video? thanks
Re: Grub 2
On 1/8/2010 7:15 AM, Tixy wrote: On Fri, 2010-01-08 at 12:33 +, James Allsopp wrote: Problem is, I want to use grub2 as the first thing I'm going to do is upgrade to debian testing, which uses this. Is there a reason for not just installing Debian Testing rather than trying to get Lenny on there first? The testing install would add Grub2 and I believe that it (and fstab) now use UUIDs to identify drives, which helps avoid hdX/sdX drive identification mixups. I a newbie to a lot of this, so may be talking rubbish. ;-) Sometimes, the new installer is broken. Other than that, I concur, install from squeeze and be done with it. Mark Allums -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Re: Grub 2
On Fri, 2010-01-08 at 13:24 +, James Allsopp wrote: > I looked for that install but it seemed to take me back to the penny > install site, i'll look again, Jim Look for the 'netinst' iso at http://www.debian.org/devel/debian-installer/ I've used that method several times to install Testing; though as the installer is built daily, it may on occasion be broken. I also note that the "Changes for Squeeze in Debian Installer"¹ says "setting up RAID, LVM and crypto is simplified", which you may appreciate. (I've no personal experience of this though.) Cheers -- Tixy [1] http://lists.debian.org/debian-devel-announce/2010/01/msg2.html -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Re: jabber cliente
Jesus arteche wrote: hey¡ Someone knows if there are some jabber client which support voice and video? thanks i thought the latest pidgin had this finaly implemented, think i also heard that it was to be included in telepathy -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Re: LVM+RAID+CRYPT
2010/1/8 Γιώργος Πάλλας : > Stan Hoeppner wrote: >> >> Sjors van der Pluijm put forth on 1/8/2010 5:13 AM: >> >> >>> >>> 3. Is it ok to have swap and /boot on an encrypted LVM? >>> >> >> Never run encryption on swap. Doing so merely burdens performance. I >> doubt >> even NSA, CIA, MI6 encrypt swap partitions on workstations. >> >> I've never tried to boot from an encrypted /boot, so I really can't say if >> it >> would work or not. Why can't/won't you create 3 partitions? >> >> [boot] 100MB mounted as /boot normal ext2 >> [swap] 1-8GB mounted as normal swap partition >> [root] [remaining space] mounted as /root and encrypted however you like >> > > I run a couple of identical machines, some with full disk encryption (i.e. > everything including swap except /boot which you cannot encrypt) and some > where only home is encrypted with LUKS. Never noticed any performance > impact. I think that swap encryption is *mandatory* for the reason of there > being written many things that shouldn't in case they are sensitive. And I > guess this why the approach of the debian installer should you choose to > encrypt includes swap encryption. > > G. > I second most opinions here. Mainly: NEVER leave swap unencrypted if encryption is for security (i.e. anything more than just playing around with encryption) as any data that's on your computer RAM might at some point be written to the swap space and that has Also, I would not leave / (root) unencrypted as that might hold sensitive information too. In my work laptop I have custom entries in /etc/hosts, I also have an apache/php setup that holds company info, etc. The recommended setup to encrypt everything but /boot is good and I could not perceive any performance degradation (even though I'm sure there must be some, it is not something that gets in my way). Cheers, Cassiano Leal -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Re: KVM networking
On Thu, 07 Jan 2010 16:13:20 +, Jon Dowland wrote: >> I want all users in the kvm group can start kvm and have network >> access. >> Does this require different setting than your previous answer? > > I believe so, see below. . . Thanks a lot! -- Tong (remove underscore(s) to reply) http://xpt.sourceforge.net/techdocs/ http://xpt.sourceforge.net/tools/ -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Re: aptitude forces full-upgrade
It would be easier to answer the question if you provided specific examples of packages that apt-get didn't install and aptitude did. A full copy/paste of the upgrade preview from both programs would be particularly helpful. Daniel -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Re: pvmove "Couldn't find device with uuid"
On Thu, Jan 07, 2010 at 10:13:12PM -0430, Olaf Reitmaier Veracierta wrote: > > Well I use LVM but in Redhat maybe you need to reaload extends on nodes:| > > clvmd -R > | > Look at this: > > http://kbase.redhat.com/faq/docs/DOC-3786 Thanks, this is the most promising lead yet. Alas, etch's clvmd is too old to have that flag. Hopefully rebooting the nodes will take care of that, but of course, that's not exactly something that can happen trivially. noah signature.asc Description: Digital signature
Re: Comparing two debian boxes (find which package is different)
On Wed, Jan 6, 2010 at 12:27 AM, Rob Owens wrote: > There's also "apt-show-versions". It'll tell you the version and if > it's from lenny, squeeze, etc. Worked out perfectly ! Thanks. -- Mathieu -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Re: LVM+RAID+CRYPT
On Fri, Jan 08, 2010 at 12:13:14PM +0100, Sjors van der Pluijm wrote: > Hi all, > > I have been using Debian for a few years now. For my new workstation I want > to > try something new. What I want to do: > 1. Make a RAID1 using two SATA discs > 2. Create one partition on the RAID > 3. Encrypt that partition > 4. Use LVM on the partition > > I can't find very much info on this setup and have some questions: > 1. Is this a wise setup? Be aware that RAID-1 in itself is no substitute for a backup system. That said, The order should be something like physical devices partitioned identically, with a small-ish boot (512M usually suffices) and the remaining space dedicated to one large partition[1]. two software RAID devices md0 - with the two small boot partitions as backing md1 - with the large remaining partition as backing Stick an ext3 filesystem on top of md0 and use it as /boot. Then, format md1 as an LVM physical volume + plumb it into a volume group. Carve out a logical volume for /. I wouldn't bother encrypting this myself, personally. Carve out a logical volume for swap. I'd encrypt this with a random key. mkswap the resulting block device. Carve out a logical volume for your main user's $HOME. I'd encrypt this with a passphrase of your choosing. I'd use the LUKS settings as your encryption parameters, via device mapper 'dm-crypt'. Stick an ext3 filesystem on top of the resulting block device. So, from bottom to top, the stacking order is physical devices DOS-style partition tables MD RAID LVM dm-loop crypto where necessary The reason for having the /boot outside of LVM is so that bootloaders can read it OK. In the old days, grub would read the kernel and initrd from one of the underlying partitions (not understanding MD RAID itself) but that worked fine, since all writing to the partitions was done via the OS and thus through the MD RAID layer. Modern grubs might be able to understand MD RAID, LVM, who knows what. I would do all of the above steps using the debian-installer if you are installing from scratch, with the exception of your $HOME, which I would do by hand once the system was installed. "luksformat" with the "-t ext3" option is a useful shortcut for formatting a LVM logical volume with dm-crypt and sticking a filesystem on top. I'd also use "libpam-mount" to configure it to be unlocked with your passphrase and mounted automatically on login. Finally, unless you specify a seperate /tmp and encrypt that (and/or /var/tmp too), I would create a ~/tmp and ensure you have TMPDIR pointing at it, or some apps might store some working files in a non-encrypted location. You will find that not all apps honour TMPDIR, so be prepared to file some bugs :)) > 3. Is it ok to have swap and /boot on an encrypted LVM? swap yes, /boot no (your bootloader needs to read it. You don't have anything confidential in your vmlinuz or initramfs) [1] For large hard drives, I create a medium-to-large partition, rather than fill the disk. Just in case I want to use some of the remaining space for a non-Linux purpose. I can always create a new partition, format it as an LVM physical volume and add it to my existing volume group if I want the space in Linux after all, further down the line. -- Jon Dowland signature.asc Description: Digital signature
Re: Problems with the install kernel on serverworks chipset.
On Fri, 08 Jan 2010 02:01:53 +0100, Mathias wrote: (...) > The machine is a HP NetServer E800 with ASUS CUR-DLS mobo, dual P-III. > > Any tips? It's listed here: http://kmuto.jp/debian/hcl/ASUS/CUR-DLS It seems that was tested with kernel 2.6.25. Greetings, -- Camaleón -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Re: How to temporary set dvorak keymap in terminal
On Wed, 06 Jan 2010 22:32:52 +, Sebastian wrote: > I'm just getting started learning the dvorak layout using the package > dvorak7min. So far I have only been able to practice under X using > 'setxkbdmap dvorak' which works great. What I'm interested in if there's > an easy way to (temporarily as I'm nowhere near fluent yet) load another > keymap as an ordinary user in a regular terminal session. I have tried > the loadkeys command but that doesn't work for a ordinary user here. I'm > running a mixed-release debian with apt-pinning (mainly testing). Any > suggestions appreciated. Although I don't like using "sudo" so much, this can be a good reason to set it up :-) Greetings, -- Camaleón -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Re: Problems with the install kernel on serverworks chipset.
On Fri, 8 Jan 2010 15:38:41 + (UTC), Camaleón wrote: > On Fri, 08 Jan 2010 02:01:53 +0100, Mathias wrote: > > (...) > >> The machine is a HP NetServer E800 with ASUS CUR-DLS mobo, dual P-III. >> >> Any tips? > > It's listed here: > > http://kmuto.jp/debian/hcl/ASUS/CUR-DLS > > It seems that was tested with kernel 2.6.25. What SCSI RAID card is in the machine, if any? -- Stan -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Re: Problems with the install kernel on serverworks chipset.
On Fri, 8 Jan 2010, Stan Hoeppner wrote: On Fri, 8 Jan 2010 15:38:41 + (UTC), Camaleón wrote: On Fri, 08 Jan 2010 02:01:53 +0100, Mathias wrote: (...) The machine is a HP NetServer E800 with ASUS CUR-DLS mobo, dual P-III. Any tips? It's listed here: http://kmuto.jp/debian/hcl/ASUS/CUR-DLS It seems that was tested with kernel 2.6.25. What SCSI RAID card is in the machine, if any? It's equpiped with 2-chan LSI SYM53C896 U160 and an Adaptec 1200A ATA-100/ATA-133 controller to replace the crappy Broadcom IDE controller this board has. Anyway, I managed to install a basic configuration of Etch, late last night, booting in with LILO (Wanted Grub 2, but my XFS disks wont work with it). So I'm going to try and upgrade it further from there. Mat
Re: CPU fan working more than it should
On Fri, Jan 8, 2010 at 3:42 AM, Klistvud wrote: > Dne, 07. 01. 2010 16:08:40 je George napisal(a): > > On 1/7/10, Arthur Machlas wrote: >> > On Thu, Jan 7, 2010 at 8:50 AM, George wrote: >> > >> >> I just installed Debian on my laptop and I notice that the CPU fan is >> >> working much more than it used to work on windows. It must be that >> >> Debian changed the temperature threshold. How can I change it back? >> > > Apparently, ACPI implementations in laptops are buggy (or let's say > non-standardized) more often than not. I suspect M$ must have several > workarounds in place in order to run -- at least in general -- cooler and > more power-savvy than GNU/Linux. These workarounds may well be industry > secrets between M$ and the laptop vendors for all we know ... You may read a > write up on my humble experience with a heated, noisy, jumpy laptop (gosh, > sounds like my wife), by hopping over to the link provided at the end of my > post; just look for the heading "Laptops in Heat". There you'll find more > about ACPI, the thermal kernel module, the trip points and related stuff, > and also some relevant links for further reading. > > -- > Regards, > > Klistvud > Certifiable Loonix User #481801 > http://bufferoverflow.tiddlyspot.com > In addition to the info above, I use the PHC patch to allow undervolting of the CPU, or in my case CPUs. Without it on a default kernel my fan kicks in every 30 seconds or so. With it it doesn't kick in at all unless I do something like render video or compile a kernel. Haven't bothered to check the temp differences or do any real benchmarking. Best, Arthur
an appreciation
Perhaps I'm in a peculiar mood, but I so appreciate the candor that characterizes Debian, in contrast to the marketing talk so common in the industry. I'm referring to the quotes around "fixed" in the message below. Keep up the good work! Ross Boylan On Fri, 2010-01-08 at 00:36 +, Testing Security Team wrote: > Removed from testing: > = > The following issues have been "fixed" by removing the (source) > packages from testing. -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Re: Problems with the install kernel on serverworks chipset.
On Fri, 8 Jan 2010 18:24:52 +0100 (CET), Mathias wrote: >> What SCSI RAID card is in the machine, if any? >> > > It's equpiped with 2-chan LSI SYM53C896 U160 and an Adaptec 1200A > ATA-100/ATA-133 controller to replace the crappy Broadcom IDE controller > this board has. > > Anyway, I managed to install a basic configuration of Etch, late last > night, > booting in with LILO (Wanted Grub 2, but my XFS disks wont work with it). > So I'm going to try and upgrade it further from there. If your skills are up to it, I'd recommend building a custom non-initrd kernel with your storage controller and network drivers (and all needed drivers for that matter) built in. That would eliminate this boot problem. -- Stan -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Re: LVM+RAID+CRYPT
On Friday January 8 2010 4:41:54 am Sjors van der Pluijm wrote: > Just found out that /boot should not be in LVM because bootloaders might > not understand it. /boot unencrypted does not seem to be the end of the > world. http://tldp.org/HOWTO/LVM-HOWTO/benefitsoflvmsmall.html Since we are being paranoid, what happens if the NSA breaks into your home when you are asleep and installs a hypervisor on your /boot that records your password/keyfile next time you derypt? The way that I have heard to prevent this type of attack is to store checksums of every file in /boot on the encrypted partition and then verify those checksums on startup. MM -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Sound problem
Hello list, (I am not to experienced with debian - I hope I didn' overlook some FAQ.) I just installed debian-5.0 with kde-5.3 on an old Laptop (Medion MD 5222). Everything works fine so far, but I have problems with the sound device. This is the output of # cat /dev/sndstat Sound Driver:3.8.1a-980706 (ALSA v1.0.16 emulation code) Kernel: Linux x 2.6.26-2-686 #1 SMP Wed Nov 4 20:45:37 UTC 2009 i686 Config options: 0 Installed drivers: Type 10: ALSA emulation Card config: VIA 82C686A/B rev50 with AD1886 at 0x1000, irq 5 Audio devices: 0: VIA 82C686A/B rev50 (DUPLEX) Synth devices: NOT ENABLED IN CONFIG Midi devices: NOT ENABLED IN CONFIG Timers: 7: system timer Mixers: 0: Analog Devices AD1886 - I can # cat /dev/audio and kde will play some little tune when started. But it seems neither kde's CD-player nor its mulimedia-player can produce any sound. What's wrong here? Thanks for your help. Uli. | Peter Ulrich Kruppa | Wuppertal | Germany -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Re: Problems with the install kernel on serverworks chipset.
On Fri, 8 Jan 2010, Stan Hoeppner wrote: On Fri, 8 Jan 2010 18:24:52 +0100 (CET), Mathias wrote: What SCSI RAID card is in the machine, if any? It's equpiped with 2-chan LSI SYM53C896 U160 and an Adaptec 1200A ATA-100/ATA-133 controller to replace the crappy Broadcom IDE controller this board has. Anyway, I managed to install a basic configuration of Etch, late last night, booting in with LILO (Wanted Grub 2, but my XFS disks wont work with it). So I'm going to try and upgrade it further from there. If your skills are up to it, I'd recommend building a custom non-initrd kernel with your storage controller and network drivers (and all needed drivers for that matter) built in. That would eliminate this boot problem. Yeah, that's no problem, just have to figure out all the hardware, so I wont miss to include any modules. Been compiling loads of kernels over the years, but it's been a while now, hope it hasn't changed that much. :) Mat -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Re: Two computers in one: two users each with their own accounts, monitor, and keyboard?
In , Stan Hoeppner wrote: >On Wed, 6 Jan 2010 19:15:28 -0600, "Boyd Stephen Smith Jr." > wrote: >> In <4b44b28b.10...@hardwarefreak.com>, Stan Hoeppner wrote: >>> To make OpenGL >>> really scream on single user 3D chips, they had to eliminate over the >>> network OpenGL completely, as keeping that capability would have totally >>> hosed the rendering pipeline performance for 3D chips. >> >> That makes no sense. OpenGL is an abstration, like the X protocol >>itself. > >It makes sense when one takes into account that over 99% of the GL >extensions developed over the past decade target a local GPU optimized >OpenGL server. Yet again, you make no points about OpenGL that have not been make about X in the past. Yet, X (and I'm pretty sure OpenGL) still *work* over the network. They aren't as fast, but the network increases latency in all things. NFS isn't as fast as a local filesystem, either. Also the X client/server model is different than the open OpenGL remote rendering model. In the OpenGL remote rendering model a program running on a local CPU would send commands to a remote GPU and the results would be viewed on a local display. In the X client/server model a program running on a remote CPU would send commands to a local GPU and the results would be view on a local display. -- Boyd Stephen Smith Jr. ,= ,-_-. =. b...@iguanasuicide.net ((_/)o o(\_)) ICQ: 514984 YM/AIM: DaTwinkDaddy `-'(. .)`-' http://iguanasuicide.net/\_/ signature.asc Description: This is a digitally signed message part.
Re: LVM+RAID+CRYPT
Matthew Moore put forth on 1/8/2010 12:49 PM: > Since we are being paranoid, what happens if the NSA breaks into your home > when you are asleep and installs a hypervisor on your /boot that records your > password/keyfile next time you derypt? Until now I had no reason for an IMAP folder labeled "kook". Oh, wait, that's because these messages go in the "trash" folder. ;) -- Stan -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Re: LVM+RAID+CRYPT
In <4b47166d.8070...@hardwarefreak.com>, Stan Hoeppner wrote: >Sjors van der Pluijm put forth on 1/8/2010 5:13 AM: >> 3. Is it ok to have swap and /boot on an encrypted LVM? Swap is okay. Boot depends on your boot loader. I don't know if grub2 can handle this or not. >Never run encryption on swap. Doing so merely burdens performance. I doubt >even NSA, CIA, MI6 encrypt swap partitions on workstations. BS. Encrypting swap is *critical*. If you do not, an attacker can use differential cryptanalysis between what is swapped out and the cyphertext on disk. Before even generating the encryption keys for other devices, you should change the mount options of your swap partition so that it is encrypted using a random key and then remount it. -- Boyd Stephen Smith Jr. ,= ,-_-. =. b...@iguanasuicide.net ((_/)o o(\_)) ICQ: 514984 YM/AIM: DaTwinkDaddy `-'(. .)`-' http://iguanasuicide.net/\_/ signature.asc Description: This is a digitally signed message part.
Re: Two computers in one: two users each with their own accounts, monitor, and keyboard?
Boyd Stephen Smith Jr. put forth on 1/8/2010 1:35 PM: > Yet again, you make no points about OpenGL that have not been make about X in > the past. Yet, X (and I'm pretty sure OpenGL) still *work* over the network. > Cite an example of a current working Linux remote OpenGL implementation. I'd love to read about it. -- Stan -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Re: Recovering data from NTFS disk
Jochen Schulz wrote: > KS: >> >> I have already started testdisk and it is analysing the disk since the >> last hour or so. Should be finished soon. > > Good luck! > >> It might give me an hint as to what is the status of the disk. No, it coudn't find any partition table after 2 passes. I started photorec and it has found hundred's of files. It says it will take around 20 more hours to finish. > > Install smartmontools and try to run smartctl -a /dev/sdb on it. Then > post the output. It might be that smartctl doesn't work over USB. In > that case you would have to connect the disk directly via SATA/IDE. > The HDD is connected to internal SATA connector. Sadly, the external USB drives sold these days don't have the capability of reading SMART data. I have an old WD external disk which does, but a newer Lacie does not and it doesn't spin down the HDD either! Waiting for photorec to finish. /ks -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Re: jabber cliente
On Fri, Jan 8, 2010 at 06:07, randall wrote: > Jesus arteche wrote: >> >> heyĄ >> >> Someone knows if there are some jabber client which support voice and >> video? >> >> thanks > > i thought the latest pidgin had this finaly implemented, think i also heard > that it was to be included in telepathy Yep, Empathy/Telepathy has voice and video now. Cheers, Kelly Clowers -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Re: LVM+RAID+CRYPT
On Fri, 2010-01-08 at 05:26 -0600, Stan Hoeppner wrote: > > Never run encryption on swap. Doing so merely burdens performance. I > doubt > even NSA, CIA, MI6 encrypt swap partitions on workstations. This is completely contrary to the advice of the encryption folks. You MUST encrypt swap in order for your system to be secure; otherwise secrets in RAM may be recoverable from the swap partition. The setup I've been using has 2 physical disks. Each disk has an boot partition, a swap partition, and a big remaining partition. I RAID (0 I think--simple mirroring--apparently anything fancier is slower) the first and 3rd partitions. The 3rd partition is all under LVM, and individual logical volumes within it are encrypted (and fstab says to dynamically encrypt the swap). I do not RAID the swap (2nd partition), just to get more space (and maybe it's faster). I do encrypt the root partition, and I put encryption keys on it to unlock the other partitions. This avoids having to enter pass-phrases for every encrypted volume. If you simply want to encrypt everything, it would be simpler to encrypt the 3 partition and then run LVM on top of it, ie., bare disk : raid : encryption: LVM physical volume : LVM logical volumes. We have encountered one problem: when the first disk failed, we couldn't boot off the second. I think it needs a different boot partition, because mirroring the disk 1 paritition to disk 2 means that disk 2 still tries to boot off disk 1 when it starts. I'm not clear if the differences are really limited the the MBR of the disks, in which cases mirroring would still be OK. Not mirroring also doesn't seem a great idea, since then disk 2 will get dated. Anybody have any pointers about this? I'm using grub, and got held up because the manual says (under the install command) if REAL_CONFIG_FILE is present and STAGE2_FILE is a Stage 1.5, then the Stage 2 CONFIG_FILE is patched with the configuration file name REAL_CONFIG_FILE. This seems to say that installation modifies the stage 2 (really, 1.5) file, which I think is in the partition, not the MBR. That implies as soon as I boot, RAID will blow the changes away. Ross Boylan -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Re: Sound problem
On 2010-01-08 at 13:57:07 -0500, Peter Ulrich Kruppa wrote: > Hello list, > > (I am not to experienced with debian - I hope I didn' overlook > some FAQ.) > > I just installed debian-5.0 with kde-5.3 on an old Laptop (Medion > MD 5222). Everything works fine so far, but I have problems with > the sound device. > > This is the output of # cat /dev/sndstat > > Sound Driver:3.8.1a-980706 (ALSA v1.0.16 emulation code) > Kernel: Linux x 2.6.26-2-686 #1 SMP Wed Nov 4 20:45:37 UTC > 2009 i686 > Config options: 0 > > Installed drivers: > Type 10: ALSA emulation > > Card config: > VIA 82C686A/B rev50 with AD1886 at 0x1000, irq 5 > > Audio devices: > 0: VIA 82C686A/B rev50 (DUPLEX) > > Synth devices: NOT ENABLED IN CONFIG > > Midi devices: NOT ENABLED IN CONFIG > > Timers: > 7: system timer > > Mixers: > 0: Analog Devices AD1886 > - > > I can # cat /dev/audioand kde will play some > little tune when started. > But it seems neither kde's CD-player nor its mulimedia-player can > produce any sound. > > What's wrong here? Have you checked the volume levels in the mixer application (e.g. alsamixer)? That's the first thing I would check. I use GNOME, not KDE, and have no experience with KDE; so if it's a KDE-related problem, I can't be of much help. I installed Lenny on an old laptop too (an IBM ThinkPad 600), and here's a link to my web page that shows how I got sound working (as well as a bunch of other stuff). I realize that you are using a different sound chip, but you may be able to glean some tidbits that are useful in your situation. http://www.wowway.com/~zlinuxman/tp600.htm -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Re: Sound problem
On Fri, 8 Jan 2010, Stephen Powell wrote: On 2010-01-08 at 13:57:07 -0500, Peter Ulrich Kruppa wrote: Hello list, (I am not to experienced with debian - I hope I didn' overlook some FAQ.) I just installed debian-5.0 with kde-5.3 on an old Laptop (Medion MD 5222). Everything works fine so far, but I have problems with the sound device. This is the output of # cat /dev/sndstat Sound Driver:3.8.1a-980706 (ALSA v1.0.16 emulation code) Kernel: Linux x 2.6.26-2-686 #1 SMP Wed Nov 4 20:45:37 UTC 2009 i686 Config options: 0 Installed drivers: Type 10: ALSA emulation Card config: VIA 82C686A/B rev50 with AD1886 at 0x1000, irq 5 Audio devices: 0: VIA 82C686A/B rev50 (DUPLEX) Synth devices: NOT ENABLED IN CONFIG Midi devices: NOT ENABLED IN CONFIG Timers: 7: system timer Mixers: 0: Analog Devices AD1886 - I can # cat /dev/audio and kde will play some little tune when started. But it seems neither kde's CD-player nor its mulimedia-player can produce any sound. What's wrong here? Have you checked the volume levels in the mixer application (e.g. alsamixer)? That's the first thing I would check. I use GNOME, not KDE, and have no experience with KDE; so if it's a KDE-related problem, I can't be of much help. I installed Lenny on an old laptop too (an IBM ThinkPad 600), and here's a link to my web page that shows how I got sound working (as well as a bunch of other stuff). I realize that you are using a different sound chip, but you may be able to glean some tidbits that are useful in your situation. http://www.wowway.com/~zlinuxman/tp600.htm Thanks a lot, but that doesn't seem to help :-( Uli. -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org | Peter Ulrich Kruppa | Wuppertal | Germany -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Re: Disallow other users from reading my $HOME
On Fri, Jan 08, 2010 at 09:50:42AM +, Jon Dowland wrote: > On Thu, Jan 07, 2010 at 10:24:27PM +, Roger Leigh wrote: > > Once could just give execute perm to ~ and maybe additionally > > read as well to ~/public_html? > > Exactly right. The read to ~/public_html is not necessary if > you have +x and a suitable index file underneath which is I believe the requirement for apache is it has to be able to read from / to the destination directory. I ran into trouble one time when I change / to 0.0 750 > readable, but it doesn't really hurt. (some people might not > want their web directories 'indexable'. Those people will > not want +r, but they will also want to turn of their web > server's directory indexing feature too). > > -- "Let me put it to you bluntly. In a changing world, we want more people to have control over your own life." - George W. Bush 08/09/2004 Annandale, VA signature.asc Description: Digital signature
Re: LVM+RAID+CRYPT
On Fri, Jan 08, 2010 at 03:23:13PM +, Jon Dowland wrote: > On Fri, Jan 08, 2010 at 12:13:14PM +0100, Sjors van der Pluijm wrote: > > Hi all, Hi I have a few laptops which I encrypt for work > > > > I have been using Debian for a few years now. For my new workstation I want > > to > > try something new. What I want to do: > > 1. Make a RAID1 using two SATA discs > > 2. Create one partition on the RAID > > 3. Encrypt that partition > > 4. Use LVM on the partition > > > > I can't find very much info on this setup and have some questions: > > 1. Is this a wise setup? > > Be aware that RAID-1 in itself is no substitute for a backup > system. > > That said, The order should be something like > > physical devices partitioned identically, with a small-ish > boot (512M usually suffices) and the remaining space > dedicated to one large partition[1]. I like my /boot to be around 1G up to about 2G - why because it is unencrypted you have easy access to it, so I like to have a toolkit of stuff here to help when things go wrong and with the size of drives today 1G is nothing big > > two software RAID devices > > md0 - with the two small boot partitions as backing > md1 - with the large remaining partition as backing > > Stick an ext3 filesystem on top of md0 and use it as /boot. Remember to grub-install (with grub2) to sda and to sdb (that should solve you failed boot attempt when 1 drive dies), a minor thing I would use ext2, no need for journaling, in fact most times I would say you could get away with loading it read only > > Then, format md1 as an LVM physical volume + plumb it into > a volume group. > > Carve out a logical volume for /. I wouldn't bother > encrypting this myself, personally. > > Carve out a logical volume for swap. I'd encrypt this with a > random key. mkswap the resulting block device. > > Carve out a logical volume for your main user's $HOME. I'd > encrypt this with a passphrase of your choosing. I'd use > the LUKS settings as your encryption parameters, via device > mapper 'dm-crypt'. Stick an ext3 filesystem on top of the > resulting block device. Depending on needs and usage I would create 1 big lvm lv use it a /root and 1 lvm lv for swap. If you think you are going to be doing a lot of work with files locally which are going to run into performance issues (rendering video/media) then carve out a lvm which you will not encrypt. But the first 2 ( root & swap) I would encrypt. > > So, from bottom to top, the stacking order is > > physical devices > DOS-style partition tables > MD RAID > LVM > dm-loop crypto where necessary > > The reason for having the /boot outside of LVM is so that > bootloaders can read it OK. In the old days, grub would > read the kernel and initrd from one of the underlying > partitions (not understanding MD RAID itself) but that > worked fine, since all writing to the partitions was done > via the OS and thus through the MD RAID layer. Modern grubs > might be able to understand MD RAID, LVM, who knows what. > > I would do all of the above steps using the debian-installer I have done this with the debian installer > if you are installing from scratch, with the exception of > your $HOME, which I would do by hand once the system was > installed. "luksformat" with the "-t ext3" option is a > useful shortcut for formatting a LVM logical volume with > dm-crypt and sticking a filesystem on top. I'd also use > "libpam-mount" to configure it to be unlocked with your > passphrase and mounted automatically on login. > > Finally, unless you specify a seperate /tmp and encrypt that > (and/or /var/tmp too), I would create a ~/tmp and ensure you > have TMPDIR pointing at it, or some apps might store some > working files in a non-encrypted location. You will find > that not all apps honour TMPDIR, so be prepared to file some > bugs :)) > > > 3. Is it ok to have swap and /boot on an encrypted LVM? > > swap yes, /boot no (your bootloader needs to read it. You > don't have anything confidential in your vmlinuz or > initramfs) > > [1] For large hard drives, I create a medium-to-large > partition, rather than fill the disk. Just in case > I want to use some of the remaining space for a > non-Linux purpose. I can always create a new partition, > format it as an LVM physical volume and add it to my > existing volume group if I want the space in Linux after > all, further down the line. > > -- "All up and down the different aspects of our society, we had meaningful discussions. Not only in the Cabinet Room, but prior to this and after this day, our secretaries, respective secretaries, will continue to interact to create the conditions necessary for prosperity to reign." - George W. Bush 05/19/2003 Washington, DC signature.asc Description: Digital signature
Re: LVM+RAID+CRYPT
Ross Boylan put forth on 1/8/2010 1:53 PM: > On Fri, 2010-01-08 at 05:26 -0600, Stan Hoeppner wrote: >> >> Never run encryption on swap. Doing so merely burdens performance. I >> doubt >> even NSA, CIA, MI6 encrypt swap partitions on workstations. > This is completely contrary to the advice of the encryption folks. Car salesmen want to sell you a new car too, not that you necessarily need a new one. > You MUST encrypt swap in order for your system to be secure; otherwise > secrets in RAM may be recoverable from the swap partition. *MUST*? Always be careful when stating absolutes. There is always more than one way to skin a cat. Such as adding the following to rc.local: /sbin/swapoff -a /bin/dd if=/dev/zero of=/dev/sda5 changing sda5 to your swap partition device ID or filename if you're using a swap file instead of a partition. Depending on your disk speed and swap device size it'll add anywhere from 15 secs up to a minute or so to your shutdown time. But your swap will be zero'd. Zeros can't be decrypted, even if a cracker somehow got hold of the keys to the kingdom. ;) -- Stan -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Hosting in the US
Hello Debian people, I'm looking for a good hosting service in the US. I need full root shell access and basic debian net installation. Do you know a good and reliable provider ? In France, I'm usually very satisfed with Gandi.net, they have a clear offer and they don't bullshit you when they screw up. Something similar on this side of the atlantic would be perfect. Thanks, Julien -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Re: Disallow other users from reading my $HOME
> In addition to using chmod as suggested by others, for securing > your files, why not try using encfs on directories that you *really* want > to protect from prying eyes? The added bonus is even root cannot see > those files and booting off a cd also will not let others look at > your files. > Thanks for the idea. I do not need that level of security, I just want to open another account on this machine so that my neighbour can send me pics of our daughters' joint birthday party over wifi! I like having the security that if some component of this machine breaks, I can mount the drive anywhere and recover the data. -- Dotan Cohen http://what-is-what.com http://gibberish.co.il -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Re: Backlight bug on Acer Aspire 7720
On Saturday 19 December 2009 18:07:11 Thomas McCullough wrote: Hi all, It's working for about 10 days now!! Thierry -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Re: an appreciation
Ross Boylan wrote at 2010-01-08 11:57 -0600: > Perhaps I'm in a peculiar mood, but I so appreciate the candor that > characterizes Debian, in contrast to the marketing talk so common in the > industry. I'm referring to the quotes around "fixed" in the message > below. Indeed; the simple honesty shown by the Debian developers/community inspires trust more than the typical marketing scheme. signature.asc Description: Digital signature
Re: Hosting in the US
Unmanaged hosting. But I want to be sure the company takes care of the machines properly. I don't have big resources requirements, so dedicated or virtual doesn't matter as long as some minimum bandwidth is garantied. I'll take a look at liquidweb, thanks David. On Fri, 08 Jan 2010 17:04:25 -0500, David Crampton wrote: > Hello Julien, > > Are you looking for managed or unmanaged hosting? Dedicated or virtual > servers? Here in Michigan, there are a few, but I've had the best > experience with LiquidWeb. There's a good forum out there as well > called Web Hosting Talk. > > Good luck! > > Julien Vehent wrote: >> Hello Debian people, >> >> I'm looking for a good hosting service in the US. I need full root shell >> access and basic debian net installation. Do you know a good and reliable >> provider ? >> >> In France, I'm usually very satisfed with Gandi.net, they have a clear >> offer and they don't bullshit you when they screw up. Something similar >> on >> this side of the atlantic would be perfect. >> >> >> Thanks, >> Julien >> >> -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Re: Hosting in the US
Try linode.com. Inexpensive and great support. Mark --Original Message-- From: Julien Vehent To: David Crampton Cc: Debian Users Subject: Re: Hosting in the US Sent: Jan 8, 2010 3:37 PM Unmanaged hosting. But I want to be sure the company takes care of the machines properly. I don't have big resources requirements, so dedicated or virtual doesn't matter as long as some minimum bandwidth is garantied. I'll take a look at liquidweb, thanks David. On Fri, 08 Jan 2010 17:04:25 -0500, David Crampton wrote: > Hello Julien, > > Are you looking for managed or unmanaged hosting? Dedicated or virtual > servers? Here in Michigan, there are a few, but I've had the best > experience with LiquidWeb. There's a good forum out there as well > called Web Hosting Talk. > > Good luck! > > Julien Vehent wrote: >> Hello Debian people, >> >> I'm looking for a good hosting service in the US. I need full root shell >> access and basic debian net installation. Do you know a good and reliable >> provider ? >> >> In France, I'm usually very satisfed with Gandi.net, they have a clear >> offer and they don't bullshit you when they screw up. Something similar >> on >> this side of the atlantic would be perfect. >> >> >> Thanks, >> Julien >> >> -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Sent via BlackBerry from T-Mobile
Re: Disallow other users from reading my $HOME
Dotan Cohen wrote at 2010-01-08 15:52 -0600: > > In addition to using chmod as suggested by others, for securing > > your files, why not try using encfs on directories that you *really* want > > to protect from prying eyes? The added bonus is even root cannot see > > those files and booting off a cd also will not let others look at > > your files. > > Thanks for the idea. I do not need that level of security, I just want > to open another account on this machine so that my neighbour can send > me pics of our daughters' joint birthday party over wifi! I like > having the security that if some component of this machine breaks, I > can mount the drive anywhere and recover the data. Have you considered Samba? I think you can set up a password-protected or public share without adding a user to the system. signature.asc Description: Digital signature
Re: Disallow other users from reading my $HOME
> Have you considered Samba? I think you can set up a password-protected or > public share without adding a user to the system. > Does that work over wifi? I figured that I would just give him the password to the already-existing "guest" user on this system and let him SSH in. He can figure out what to do with Putty on his Windows machine, I'm sure. -- Dotan Cohen http://what-is-what.com http://gibberish.co.il -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Re: Sound problem
On Fri, 8 Jan 2010 21:32:09 +0100 (CET), Peter Ulrich Kruppa in gmane.linux.debian.user wrote: > On Fri, 8 Jan 2010, Stephen Powell wrote: >> Have you checked the volume levels in the mixer application >> (e.g. alsamixer)? That's the first thing I would check. >> I use GNOME, not KDE, and have no experience with KDE; so >> if it's a KDE-related problem, I can't be of much help. >> >> I installed Lenny on an old laptop too (an IBM ThinkPad 600), >> and here's a link to my web page that shows how I got sound >> working (as well as a bunch of other stuff). I realize that >> you are using a different sound chip, but you may be able to >> glean some tidbits that are useful in your situation. >> >> http://www.wowway.com/~zlinuxman/tp600.htm > Thanks a lot, > > but that doesn't seem to help :-( As root run 'alsaconf' and follow the prompts. See if that helps. -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Re: Hosting in the US
Julien Vehent put forth on 1/8/2010 4:37 PM: > Unmanaged hosting. But I want to be sure the company takes care of the > machines properly. > I don't have big resources requirements, so dedicated or virtual doesn't > matter as long as some minimum bandwidth is garantied. > > I'll take a look at liquidweb, thanks David. I'd look elsewhere if you plan on sending much email from your host. LiquidWeb hosts many snowshoe spammers. I have three of their /17s local blocked here. 67.225.128.0/17 REJECT 67.227.128.0/17 REJECT 72.52.128.0/17 REJECT -- Stan -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Re: Hosting in the US
So far, linode looks ok. Very close to what Gandi offer.. a little bit more expensive though. Do they have any limitation on the Linux distribution you can install ? On Fri, 08 Jan 2010 18:12:29 -0600, Stan Hoeppner wrote: > Julien Vehent put forth on 1/8/2010 4:37 PM: >> Unmanaged hosting. But I want to be sure the company takes care of the >> machines properly. >> I don't have big resources requirements, so dedicated or virtual doesn't >> matter as long as some minimum bandwidth is garantied. >> >> I'll take a look at liquidweb, thanks David. > > I'd look elsewhere if you plan on sending much email from your host. > LiquidWeb > hosts many snowshoe spammers. I have three of their /17s local blocked > here. > > 67.225.128.0/17 REJECT > 67.227.128.0/17 REJECT > 72.52.128.0/17 REJECT > > -- > Stan -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Re: Hosting in the US
I'll go along with mentioning Linode.com, I'm not currently using them but have a project I'm currently starting and have picked them to go with for hosting. I've also previously used GrokThis and had a good experience. m...@phillipsmarketing.biz wrote: > Try linode.com. Inexpensive and great support. > Mark > --Original Message-- > From: Julien Vehent > To: David Crampton > Cc: Debian Users > Subject: Re: Hosting in the US > Sent: Jan 8, 2010 3:37 PM > > Unmanaged hosting. But I want to be sure the company takes care of the > machines properly. > I don't have big resources requirements, so dedicated or virtual doesn't > matter as long as some minimum bandwidth is garantied. > > I'll take a look at liquidweb, thanks David. > > > > On Fri, 08 Jan 2010 17:04:25 -0500, David Crampton > wrote: >> Hello Julien, >> >> Are you looking for managed or unmanaged hosting? Dedicated or virtual >> servers? Here in Michigan, there are a few, but I've had the best >> experience with LiquidWeb. There's a good forum out there as well >> called Web Hosting Talk. >> >> Good luck! >> >> Julien Vehent wrote: >>> Hello Debian people, >>> >>> I'm looking for a good hosting service in the US. I need full root > shell >>> access and basic debian net installation. Do you know a good and > reliable >>> provider ? >>> >>> In France, I'm usually very satisfed with Gandi.net, they have a clear >>> offer and they don't bullshit you when they screw up. Something similar >>> on >>> this side of the atlantic would be perfect. >>> >>> >>> Thanks, >>> Julien >>> >>> > > signature.asc Description: OpenPGP digital signature
Re: Hosting in the US
On Fri, Jan 08, 2010 at 10:35:17PM +0100, Julien Vehent wrote: > Hello Debian people, > > I'm looking for a good hosting service in the US. I need full root shell > access and basic debian net installation. Do you know a good and reliable > provider ? > > In France, I'm usually very satisfed with Gandi.net, they have a clear > offer and they don't bullshit you when they screw up. Something similar on > this side of the atlantic would be perfect. > http://www.pair.com runs freeBSD. I've been with pair 8 years. They have been fastidious with their servers. They offer shell access via ssh. I particularly like that they still maintain local usenet newsgroups for their clients and customers. Their support is well worked out, timely and effective. Never had a problem other than their servers might be a tad slow on occasion. Never had a price increase. -- Kind Regards, Freeman -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Daemon impotent after dropping priviledges with setuid()
I have a peculiar problem with a daemon. Some of the tasks that the daemon needs to accomplish should be done with reduced priviledges, particularly if they are complex or depend on user input. So the daemon forks a child process, which setuid's to some lesser user. Unfortunately, as soon as the daemon setuid(some_other_userid), it can no longer write files. Not into the home directory of some_other_userid, not into /tmp, ... I haven't found anywhere that the daemon can write without receiving a "permission denied" error. The files didn't exist before the daemon action. Permissions to /tmp are 777+t. Doing a getuid(), geteuid() show that the permissions were set properly in the daemon's child process. The same user can write files into these same directories without error from the console or from a plain 'C' program. The daemon's child (before setuid) also succeeds at writing files. 'strace -f' doesn't show any problem until the open() call results in the permission denied error. This is on a 'squeeze' system, 64 bit i7 860 that otherwise seems to run properly. Anyone have any hints? Suggestions for diagnosing things? Would be appreciated!! -f -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Re: Hosting in the US
amost ! just replace bsd by debian and I'm in :p On Fri, 8 Jan 2010 16:30:46 -0800, freeman wrote: > On Fri, Jan 08, 2010 at 10:35:17PM +0100, Julien Vehent wrote: >> Hello Debian people, >> >> I'm looking for a good hosting service in the US. I need full root shell >> access and basic debian net installation. Do you know a good and reliable >> provider ? >> >> In France, I'm usually very satisfed with Gandi.net, they have a clear >> offer and they don't bullshit you when they screw up. Something similar >> on >> this side of the atlantic would be perfect. >> > > http://www.pair.com runs freeBSD. > > I've been with pair 8 years. They have been fastidious with their servers. > They offer shell access via ssh. > > I particularly like that they still maintain local usenet newsgroups for > their clients and customers. Their support is well worked out, timely and > effective. > > Never had a problem other than their servers might be a tad slow on > occasion. Never had a price increase. > > -- > Kind Regards, > Freeman -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Re: Removing the indent-string quote marker '>' in emails.
On Fri, Jan 08, 2010 at 01:01:42PM +0200, Andrei Popescu wrote: > Do you mean the SmartList mentioned here[1]? ;) > > [1] http://www.debian.org/MailingLists/ > > Regards, > Andrei > -- > Offtopic discussions among Debian users and developers: > http://lists.alioth.debian.org/mailman/listinfo/d-community-offtopic Yep. :) -- Kind Regards, Freeman -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Re: Hosting in the US
Julien Vehent put forth on 1/8/2010 6:53 PM: > amost ! just replace bsd by debian and I'm in :p Maybe this will help you out a bit: http://wiki.debian.org/DebianHosting -- Stan -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Re: Hosting in the US
On 2010-01-08 at 19:53:38 -0500, Julien Vehent wrote: > amost ! just replace bsd by debian and I'm in :p The following is my own personal opinion and does not necessarily represent the opinion or the official position of the Debian organization itself. I am not a Debian developer and I do not speak for the Debian organization in any capacity. I am just a Debian user. That is all. I'll tell you one outfit I will definitely *not* recommend: multibuild.org. I don't know if they offer a general hosting service or not, but they do host at least one web server for the Debian organization itself: lophos.multibuild.org. I don't know what else may be on that server, but one thing I do know that is on that server, or is supposed to be on that server, is the latest development version of Debian Installer for the s390 architecture. See the following web page: http://www.debian.org/devel/debian-installer/ On that page, click on the "s390" link, which is under the heading "other images (netboot, usb stick, floppy, etc)". This is supposed to take you to http://lophos.multibuild.org/d-i/images/daily/ but it doesn't. It times out. As far as I can tell, the server is down. And it has been down for days, maybe as long as two weeks. I don't know. Maybe Debian didn't pay their bill or something. But I've sent the sysadmin a note about it days ago, and nothing happens. I'm glad they don't host for me. In the meantime, I am forced to wait. -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Re: LVM+RAID+CRYPT
On 1/8/2010 3:32 PM, Stan Hoeppner wrote: Ross Boylan put forth on 1/8/2010 1:53 PM: On Fri, 2010-01-08 at 05:26 -0600, Stan Hoeppner wrote: Never run encryption on swap. Doing so merely burdens performance. I doubt even NSA, CIA, MI6 encrypt swap partitions on workstations. I bet every three-letter agency encrypts swap, or does without swap. This is completely contrary to the advice of the encryption folks. Car salesmen want to sell you a new car too, not that you necessarily need a new one. You MUST encrypt swap in order for your system to be secure; otherwise secrets in RAM may be recoverable from the swap partition. *MUST*? Always be careful when stating absolutes. There is always more than one way to skin a cat. Such as adding the following to rc.local: /sbin/swapoff -a /bin/dd if=/dev/zero of=/dev/sda5 changing sda5 to your swap partition device ID or filename if you're using a swap file instead of a partition. Depending on your disk speed and swap device size it'll add anywhere from 15 secs up to a minute or so to your shutdown time. But your swap will be zero'd. Zeros can't be decrypted, even if a cracker somehow got hold of the keys to the kingdom. ;) -- Stan Swap should always be encrypted on the principal of presenting minimal attack surface. A running machine can have its cord yanked, and where is your init script then? Yes, even a battery-powered laptop is vulnerable to to forensics if caught red-handed, or in the case of evil maid attacks, etc. Paranoids have enemies, too. I know that many irresponsible people put employee data on a laptop and then lose the machine. A good IT man plans for such boneheaded behavior. It's like defensive driving. It's the *other* guy you have to look out for, not yourself. Mark Allums -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Re: Disallow other users from reading my $HOME
Dotan Cohen wrote at 2010-01-08 16:58 -0600: > > Have you considered Samba? I think you can set up a password-protected or > > public share without adding a user to the system. > > Does that work over wifi? Certainly. If your computer is on the same network as his (both connected to the same access point), Windows should list your computer in "Network Places" or somesuch. Or just use "Map Network Drive" and the address "\\\". > I figured that I would just give him the > password to the already-existing "guest" user on this system and let > him SSH in. He can figure out what to do with Putty on his Windows > machine, I'm sure. I would consider Samba to be more secure (other thoughts anyone?); I feel cautious about giving someone a network-accessible shell. Samba will limit access to a specific folder. signature.asc Description: Digital signature
Re: Inquiry:How to install Debian from Internet?
2010/1/7 Osamu Aoki > Hi, > > On Tue, Jan 05, 2010 at 11:09:18AM +, hadi motamedi wrote: > > Dear All > > I have my Debian server installed from Debian-31 netinst & businesscard > CDs > > , but when trying to install Asterisk 1.4 it failed . I thought that my > > Debian installation was incomplete. Can you please let me know how to > > install a complete Debian 3.1 right from the Internet ? Is there anything > > like "yum install" to try with ? > > You are coming back with the same things it has been answered. You > may check our mailing list archive if you missed replies which were only > sent to the mailing list. http://lists.debian.org/users.html > > You sound strange to me and I suspect you have a job to do this and > asking free help here. If you could not do it with what has been told > and you are doing this for work, it is time to hire someone to do it for > you. > > Please remember this is user-to-user friendly volunteer help mailing > list. Please use this resource with great care. > > Osamu > > PS: I found following on net: > > http://www.linkedin.com/pub/hadi-motamedi/15/9bb/1b5 > > hadi motamedi’s Experience > >* engineer > Mesco Consulting Ltd > (Privately Held; Information Technology and Services industry) > > > It may be just coincidence > Thank you very much for your kind contineous help . I manually set the network IP address and then tried to start with Debian_50 netinst and now everything is on the road . Thank you again for your technical help .
Re: Hosting in the US
On Friday 08 January 2010 15:35:17 Julien Vehent wrote: > I'm looking for a good hosting service in the US. I need full root shell > access and basic debian net installation. Do you know a good and reliable > provider ? So far, I am enjoying Slicehost.com. -- Boyd Stephen Smith Jr. ,= ,-_-. =. b...@iguanasuicide.net ((_/)o o(\_)) ICQ: 514984 YM/AIM: DaTwinkDaddy `-'(. .)`-' http://iguanasuicide.net/\_/ signature.asc Description: This is a digitally signed message part.
Re: Hosting in the US
On Fri, Jan 8, 2010 at 14:39, wrote: > Try linode.com. Inexpensive and great support. I second that. My needs are very minimal, but so far everything with Linode has been great. Cheers, Kelly Clowers -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
