date:20130729

On Fri, Jul 26, 2013 at 3:42 PM, J B  wrote:

> Dear list,
>
> I'm suffering with a very serious issue and seek guidance.
>
> I have a debian server functional at my place which is attached with a
> leased line connection.
> Iand I use this box as a gateway.
>

Any other firewall or gateway that you administer in between?

> This debian box administer a remote opensuse linux server through this
> debian box and I use pubkey auth
> mechanism to log into the remote linux server.
>

Does your mechanism involve an approach by which you would use non-standard
ports to connect? (My memory brings up an example called "port knocking",
but that would not be the only possibility.)

> At the remote linux server, I can found huge

What do you mean by huge? Hundreds of log-in attempts? Many more logins
than you remember having made, at times you didn't make them?

> brute force ssh attempt at the different
> port and surprisingly the attempt is made with the same username which I
> actually use
> to llog into the remote box. Some of the messages from log are as below
>
> ```
> accepted public key from  from
>  port 50574 ssh2
> ```
>

I'm not sure I'd call that an attempt, as others have noted

> The attack is random with a serially increment at port number.
>

That kind of sounds kind of like port scanning, although most port scanning
tools do not actually pass credentials.

> If I bloack the ssh connection limit through firewall at the remote box,
> It actually blocks me to log into in further.
>

I think it would be a surprise if it didn't.

> Could any one suggest what is happening in my local box ?
>

As others have mentioned, have you checked for regular, scheduled
processes, such as a backup using rsync? Or a user process checking mail
over ssh?

> rootkit ? local box compromising ?

Those are possibilities, too.

> What is it ?
>

Good question. What have you found so far?

Have you inserted a logging firewall between the leased line and the local
box, and/or enabled a logging firewall on the local box? A physical
firewall can tell you whether the connections are being spoofed, for
instance. It can also give you times to check on the local box. The local
box may have a compromised firewall, but if the firewall on the local box
catches the outgoing connection, you should be able to get information on
the local process initiating the connection.

The only person who can figure out what it is is you or whoever has admin
responsibility for that local box. All we can do here is make half-baked
guesses.

--
Joel Rees

Installing Mate

2013-07-29 Thread Ethan Rosenberg, PhD


Dear List -

I am sorry I have to revisit this, but

for starters I am running squeeze.

Here is what happened:

apt-get install mate-core

The following packages have unmet dependencies:
 mate-core : Depends: mate-control-center (>= 1.6.0) but it is not
going to be installed
 Depends: caja (>= 1.6.0) but it is not going to be installed
 Depends: marco (>= 1.6.0) but it is not going to be installed
 Depends: mate-session-manager (>= 1.6.0) but it is not
going to be installed
 Depends: mate-panel (>= 1.6.0) but it is not going to be 
installed
 Depends: mate-polkit (>= 1.6.0) but it is not going to be 
installed

 Depends: mate-settings-daemon (>= 1.6.0) but it is not
going to be installed
 Depends: mate-terminal (>= 1.6.0) but it is not going to
be installed
 Depends: mate-desktop (>= 1.6.0) but it is not going to
be installed
 Depends: gvfs-bin but it is not installable
E: Broken packages

apt-get install mate-desktop-environmentapt-get install 
mate-desktop-environment


Some packages could not be installed.

The following packages have unmet dependencies:
 mate-desktop-environment : Depends: dconf-gsettings-backend but it is
not installable or
 gsettings-backend but it is not 
installable

Depends: mate-core (= 1.6.0.2+7.wheezy)
but it is not going to be installed
Depends: atril (>= 1.6.0) but it is not
going to be installed
Depends: engrampa (>= 1.6.0) but it is not
going to be installed
Depends: pluma (>= 1.6.0) but it is not
going to be installed
Depends: eom (>= 1.6.0) but it is not
going to be installed
Depends: mate-power-manager (>= 1.6.0) but
it is not going to be installed
Depends: mate-screensaver (>= 1.6.0) but
it is not going to be installed
Depends: mate-calc (>= 1.6.0) but it is
not going to be installed
Depends: mate-utils (>= 1.6.0) but it is
not going to be installed
Depends: mate-applets (>= 1.6.0) but it is
not going to be installed
Depends: mate-media (>= 1.6.0) but it is
not going to be installed
Depends: mate-themes (>= 1.6.0) but it is
not going to be installed
Depends: mate-system-monitor (>= 1.6.0)
but it is not going to be installed
Depends: ffmpegthumbnailer but it is not 
installable


 cat /etc/apt/sources.list
#

# deb cdrom:[Debian GNU/Linux 6.0.1a _Squeeze_ - Official i386 DVD
Binary-1 20110322-15:11]/ squeeze contrib main

#deb cdrom:[Debian GNU/Linux 6.0.1a _Squeeze_ - Official i386 DVD
Binary-1 20110322-15:11]/ squeeze contrib main

#deb cdrom:[Debian GNU/Linux 6.0.1a _Squeeze_ - Official i386 DVD
Binary-2 20110322-15:11]/ squeeze contrib main

deb http://security.debian.org/ squeeze/updates main contrib
deb-src http://security.debian.org/ squeeze/updates main contrib

# squeeze-updates, previously known as 'volatile'
# A network mirror was not selected during install.  The following entries
# are provided as examples, but you should amend them as appropriate
# for your mirror of choice.
#
# deb http://ftp.debian.org/debian/ squeeze-updates main contrib
# deb-src http://ftp.debian.org/debian/ squeeze-updates main contrib
deb http://repo.mate-desktop.org/debian wheezy main
deb http://ftp.debian.org/debian/ wheezy-updates main contrib

TIA

Ethan


--
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Archive: http://lists.debian.org/51f703d0.7010...@hygeiabiomedical.com

Re: Continuous brute force attempt from own server !!! (OT question)

On Tue, Jul 30, 2013 at 12:19 AM, Chris Bannister <
cbannis...@slingshot.co.nz> wrote:

> On Mon, Jul 29, 2013 at 11:26:17PM +0900, Joel Rees wrote:
> >
> > Do you mean actually recycled? Or are you thinking of one-time pads?
>
> Not really.
>
> Umm, what about:
> http://www.logicalsecurity.com/resources/whitepapers/Cryptography.pdf
>
> "... We'll cite two kinds of rotation ciphering machines: the Jefferson
> disk and the ..."
>
> And the term "rotation" crops up in the actual ciphering technique, e.g.
> http://en.wikipedia.org/wiki/Caesar_cipher
>
> "... For instance, here is a Caesar cipher using a left rotation of
> three places, equivalent to a right shift of 23 (the shift parameter is
> used as the key): ..."
>
> And as the technology "evolved" the terminology did not and got infused
> into modern technology.
>

Yeah, that possibility occurred to me, too.

> E.g. "Hey Barman, can you put that on the slate mate." :)
>
> I'm not sure if my reasoning is accurate or not, but it sounds darned
> good to me. :)
>

So much of our reasoning is post-facto rationalization. It's important to
recognize that a reasonable interpretation is not necessarily an accurate
description of events, even when it may be an informative interpretation.

--
> "If you're not careful, the newspapers will have you hating the people
> who are being oppressed, and loving the people who are doing the
> oppressing." --- Malcolm 
> X1893@tal
>

And I find myself puzzling over whether re-cycling a password by running it
through an encryption device and using the encryption result as the new
password is better or worse than using a random password generator.

Obviously, systemizing the process would set up a huge vulnerability,
relative to former employees and others who might get access to the process
and historical passwords.

On the other hand, picking a different encryption or even just a different
encryption key at random would defeat the attempt to re-construct the
generation chain.

If there were some need to be able to re-create the sequence of passwords,
it might be useful, and it might be considered less exposing than leaving
the old passwords in some closely guarded database.

(And having to think that deeply about such things is usually indication of
structural problems in the organization. And then there is the question of
whether that particular organization should try to fix the structural
problems or should try to get along with partial remedies. And so it goes.)

If rotating stock as a metaphor helps the sales crew to understand the
necessity of regularly changing passwords, I'd use it as a metaphor.

--
Joel Rees

Re: Gaining ownership of an inode in own directory using vim :w!

(The subject still isn't quite right, but it's closer.)

On Thu, May 23, 2013 at 7:48 AM, Beco  wrote:

>
> Dear users,
>
> I'm astonished by this (maybe I'm naive and I'm missing something).
>
> Yesterday as root I saved a file skel.bashrc in my /home/beco user, owned
> by root, group root.
>
> Today I edited it, logged as beco, and vi told me "warning, read only!". I
> edited anyway, just to test, and saved with :w!
>
> After that I checked the file and it has changed to owner beco, group beco.
>
> How is that possible?
>
> Thanks,
> Beco
>

You know, it occurs to me just now to wonder whether this misconception
about the difference between privileges on an object and privileges on the
holding container is part of the motivation behind all the churn on ACLs
and their ilk. (And, by extension, the unreasoning trust in the DMCA, as
opposed to trusting the US Constitution as it should have been.)

--
Joel Rees

Re: rkhunter on Wheezy hangs

2013-07-29 Thread Brian

On Mon 29 Jul 2013 at 22:42:02 +0200, sp113438 wrote:

> > > rkhunter on Wheezy hangs halfway.
> > > 
> > > It stops at "Performing malware checks" (for at least 10 hours)
> > > 
> > > How can solve this problem?
> > > 
> > > Thanks!
> > > 
> > > 
> > 
> > The rkhunter.log shows:
> > 
> > *
> > 
> > Performing malware checks
> > 
> > Info: Test 'deleted_files' disabled at users request
> > 
> > Info: Starting test name 'running_procs'
> > 
> > **
> > End of log.
> > 
> > 
> The system-, kernel-, daemon-, message-logs all stay empty

You appear to having a number problems with rkhunter. The major one is
believing it can ever do anything useful for anyone. Read its README
closely and carefully and do a search on 'Info: . . .'. This might help
you to decide whether you have a misconfiguration somewhere in its
setup.


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: 
http://lists.debian.org/29072013215922.ca326509c...@desktop.copernicus.demon.co.uk

Re: unable to mount a vfat filesystem.

2013-07-29 Thread Pascal Hambourg

atar a écrit :
> OK, so if this doesn't answer on your question, how can I check that the  
> active kernel and initramfs are the intended one
> and not an older version ?

$ uname -a

should print the active kernel build date. If not, try :

$ cat /proc/version

You can compare it to the date of the module files in
/lib/modules/$(uname -r)/kernel/ on the root filesystem.

To see the date of the module files in the active initramfs, you can add
the "break" option to the kernel command line with the bootloader.
Sorry, I don't know how to do it with syslinux. This will halt the
initramfs execution and drop a minimal shell, allowing you to print file
dates in /lib/modules/$(uname -r)/kernel/ of the initial root. Press
Ctrl+d when done to resume execution.


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/51f6d406.6040...@plouf.fr.eu.org

Re: rkhunter on Wheezy hangs

2013-07-29 Thread sp113438

> > rkhunter on Wheezy hangs halfway.
> > 
> > It stops at "Performing malware checks" (for at least 10 hours)
> > 
> > How can solve this problem?
> > 
> > Thanks!
> > 
> > 
> 
> The rkhunter.log shows:
> 
> *
> 
> Performing malware checks
> 
> Info: Test 'deleted_files' disabled at users request
> 
> Info: Starting test name 'running_procs'
> 
> **
> End of log.
> 
> 
The system-, kernel-, daemon-, message-logs all stay empty


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/20130729224202.7c39e723@fx4100

Re: rkhunter on Wheezy hangs

2013-07-29 Thread sp113438

On Mon, 29 Jul 2013 21:34:31 +0200
sp113438  wrote:

> Hi all,
> 
> rkhunter on Wheezy hangs halfway.
> 
> It stops at "Performing malware checks" (for at least 10 hours)
> 
> How can solve this problem?
> 
> Thanks!
> 
> 

The rkhunter.log shows:

*

Performing malware checks

Info: Test 'deleted_files' disabled at users request

Info: Starting test name 'running_procs'

**
End of log.


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/20130729223348.468564ea@fx4100

Re: Difficulty configuring kdump

Thanks for the reply.

However, I believe that's an expected behavior when simulating a crash.

See the following doc, which states "'c' - Will perform a system crash by a
NULL pointer dereference. A crashdump will be taken if configured."

https://www.kernel.org/doc/Documentation/sysrq.txt

*Andrew Walsh*

Re: Problems with installing HP LaserJet M1005 usb printer on debian clients on a network

2013-07-29 Thread Brian

On Mon 29 Jul 2013 at 16:15:13 -0400, Stefan Monnier wrote:

> > Check that there is a tick for
> >Show printers shared by other systems
> 
> IIUC this doesn't exist in the cups version of Debian testing.

Quoting the OP:

   . . . . on a network of machines running debian wheezy.

> Instead you need to install cups-browsed to get this functionality.

Basically, yes - on Jessie and Sid.


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: 
http://lists.debian.org/29072013212833.592f2ea31...@desktop.copernicus.demon.co.uk

Re: Problems with installing HP LaserJet M1005 usb printer on debian clients on a network

2013-07-29 Thread Stefan Monnier

> Check that there is a tick for
>Show printers shared by other systems

IIUC this doesn't exist in the cups version of Debian testing.
Instead you need to install cups-browsed to get this functionality.


Stefan


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: 
http://lists.debian.org/jwvfvuxceec.fsf-monnier+gmane.linux.debian.u...@gnu.org

Re: Difficulty configuring kdump

2013-07-29 Thread emmanuel segura

Hello

as you see in the kernel trace, maybe it's kernel BUG, i don't know if
there is an open bug for this, but it can be useful if you try to do the
same thing with an other kernel.


2013/7/29 Andrew Walsh 

> Here is the output once I trigger the crash:
>
>
>
> [3518.067263] SysRq : Trigger a crash
>
> [3518.070526] BUG: unable to handle kernel NULL pointer dereference at
> (null)
>
> [3518.071338] IP: [] sysrq_handle_crash+0xd/0x16
>
> [3518.072163] PGD 7c781067 PUD 7c780067 PMD 0
>
> [3518.072973] Oops: 0002 [#1] SMP
>
> [3518.073772] CPU 0
>
> [3518.073782] Modules linked in: autofs4 fuse nfs lockd fscache
> auth_rpcgss nfs_acl sunrpc dm_crypt snd_pcm snd_timer snd parport_pc
> tpm_tis tpm tpm_bios soundcore snd_page_alloc psmouse i2c_piix4 i2c_core
> parport evdev vmw_balloon shpchp pcspkr coretemp serio_raw processor ac
> container button power_supply thermal_sys ext3 jbd mbcache dm_mod raid10
> raid456 async_raid6_recov asynx_pq raid6_pq async_xor xor asyn_memcpy
> async_tx raid1 raid0 multipath linear md_mod nbd sg sr_mod cdrom sd_mod
> ata_generic crc_t10dif ata_piix libata floppy e1000 crc32c_intel mptspi
> mptscih mptbase scsi_transport_spi scsi_mod [last unloaded: scsi_wait_scan]
>
> [3518.082803]
>
> [3518.083718] Pid: 2108, comm: bash Not tainted: 3.2.0-0.bpo.3-amd64 #1
> VMware, Inc. VMware Virtual Platform/440BX Desktop Reference Platform
>
> [3518.084706] RIP: 0010:[f812446fe>]  []
> sysrq_handle_crash+0xd/0x16
>
> [3518.085667] RSP: 0018"880037abbe80  EFLAGS: 00010092
>
> [3518.086610] RAX: 0010 RBX: 8164b660 RCX:
> 09e069e06
>
> [3518.087580] RDX:  RSI: 0046 RDI:
> 00063
>
> [3518.088532] RBP: 0063 R08:  R09:
> 0
>
> [3518.089475] R10: 88007ab874d0 R11: 81433470 R12:
> 1
>
> [3518.094532] R13: 0246 R14: 7fff09a49200 R15:
> 1
>
> [3518.096509] FS:  7f4a16be5700() GS:88007fc0()
> knlGS:
>
> [3518.097494] CS:  0010 DS:  ES:  CR0: 80050033
>
> [3518.098470] CR2:  CR3: 7cba2000 CR4:
> 006f0
>
> [3518.100774] DR0:  DR1:  DR2:
> 0
>
> [3518.104353] DR3:  DR6: 0ff0 DR7:
> 00400
>
> [3518.105309] Process bash (pid: 2108, threadinfo 880037aba000, task
> 8800379430e0)
>
> [3518.106266] Stack:
>
> [3518.107217]  81244c90 0002 
> 880037abbf58
>
> [3518.108205]  0002 7fff09a4922c 81244d5d
> fff4
>
> [3518.109197]  88007abf5480 88007c909ec0 8114df96
> 0002
>
> [3518.110208] Call Trace:
>
> [3518.113574]  [] ? __handle_sysrq+0xa9/0x141
>
> [3518.115998]  [] ? write_sysrq_trigger+0x35/0x3d
>
> [3518.117025]  [] ? proc_reg_write+0x7a/0x93
>
> [3518.118032]  [] ? vfs_write+0xa4/0xff
>
> [3518.119023]  [] ? sys_write+0x45/0x6e
>
> [3518.120019]  [] ? system_call_fastpath+0x16/0x1b
>
> [3518.121003] Code: 00 01 8a 81 13 2f 80 81 19 d2 83 e0 8f f7 d2 83 e2 03
> c1 e2 04 09 d0 88 81 13 2f 80 81 c3 c7 05 a1 d4 52 00 01 00 00 00 0f ae f8
>  04 25 00 00 00 00 01 c3 8d 47 d0 83 f8 09 76 0d 8d 57 9f 31
>
> [3518.125802] RIP  [] sysrq_handle_crash+0xd/0x16
>
> [3518.128071]  RSP 
>
> [3518.129085] DR2: 
>
>
>
>
>
> *Andrew Walsh*
>



-- 
esta es mi vida e me la vivo hasta que dios quiera

rkhunter on Wheezy hangs

2013-07-29 Thread sp113438

Hi all,

rkhunter on Wheezy hangs halfway.

It stops at "Performing malware checks" (for at least 10 hours)

How can solve this problem?

Thanks!


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/20130729213431.3b67be85@fx4100

Re: fsck on boot...revisited

2013-07-29 Thread Dan Ritter

On Thu, Jul 25, 2013 at 10:09:00AM -0500, Tim Nelson wrote:
> - Original Message -
> > On Thu, Jul 25, 2013 at 09:28:56AM -0500, Tim Nelson wrote:
> > > I have an interesting use case where a Debian Lenny server runs
> > > headless, and is at the mercy of poor power conditions
> > > (environmental monitoring at a remote storage building). We used
> > > to have issues with the server not coming up after several
> > > reboots, but we gave it a bandaid by forcing an fsck on every boot
> > > (tune2fs...) to correct any issues. This is fine, and has done
> > > wonders for disk errors.
> > > 
> > > However...
> > > 
> > > On occasion, we find that a filesystem error is bad enough that
> > > instead of auto{matically|magically} fixing the issue and
> > > continuing to boot, the system hangs, needing a root password
> > > entered for a manual fsck to be run.
> > > 
> > > My question is thus: How do I prevent that requirement to login and
> > > run fsck manually? Is there some parameter that can be set? Or, am
> > > I going about this the completely wrong way?
> > 
> > Solve the underlying problem as best you can.
> > 
> > Buy a cheap UPS with a serial or USB interface; run the
> > appropriate daemon on your server to shut it down automatically
> > when the power drops. Replace the UPS every year or two.
> > 
> > Now your disks will be much happier.
> > 
> 
> Yes, that is the *proper* solution. But, how about a situation where I want 
> to solve this even if battery power goes out?
> 
> Does the 'FSCKFIX' option within /etc/default/rcS do what I need?

Yes, but your disks will continue to degrade. One morning you
will wake up to find a dead server, much earlier than you would
otherwise.

-dsr- 


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/20130725151744.gp31...@randomstring.org

Re: Problems with installing HP LaserJet M1005 usb printer on debian clients on a network

2013-07-29 Thread Brian

On Mon 29 Jul 2013 at 20:59:39 +0530, Arvind wrote:

> I am saddled with a job of installing a HP laserjet M1005
> multifunction printer on a network of machines running debian wheezy.
> This is a usb printer, NOT a network printer. Unfortunately, it also
> requires a proprietary plugin from HP. I could get it running on the
> machine to which it is connected via USB. My problem: I am not able to
> get it to print from other machines on the network.

A concisely explained problem.

> Details:
> I will begin with describing how I got it working on the print server
> (i.e. the machine to which the printer is connected on a usb port). I
> installed hplip using aptitude and then used 'hp-setup -i'. It asked
> about the mode of connection, on selecting 'usb', it found the
> attached printer right away, downloaded the proprietary plugin from
> the internet, asked if I accepted the license, installed the plugin on
> selecting 'yes', and then generated a ppd file in a few more steps.
> Done! The printer works as it is supposed to.

Neatly done. Now from 'Administration' in the web interface tick

   Share printers connected to this system

Check that you have 'Shared Yes' in /etc/cups/printers.conf.

With these settings the server will be advertising the print queue for
the LaserJet M1005 for other machines to use.

> On any client machine on the network, the above procedure doesn't
> work. If I select 'network' as the mode of connection, hp-setup cannot
> find the printer. I am not able to find any way of telling hp-setup to
> look for a printer connected through usb to another machine on the
> network. Using "hp-setp -i ip_address_of_print_server" doesn't work
> either.

You client machine has CUPS installed? This technique is incorrect.

Check that there is a tick for

   Show printers shared by other systems

Look under the 'Printers' tab of the web interface or execute

   lpstat -a

to see what queues the client is aware of.

> So I took the cups printer set-up route. I gave the ip address and
> path of the printer, copied the ppd file from the print server, and
> set up the printer. When I tried printing a test page, it failed with
> the error "/usr/lib/cups/filter/hpcups failed". So I used 'hp-plugin
> -i' and it downloaded all possible proprietary plugins from the
> internet and installed them. I restarted cups, even rebooted the
> machine, but the error remains the same as given above.

You only need the hp software installed on the server.


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/20130729192455.gb18...@copernicus.demon.co.uk

Re: Hardware support

2013-07-29 Thread Dan Ritter

On Mon, Jul 29, 2013 at 08:31:52PM +0400, sean Griffiths wrote:
> 
> Hello and Good Day,
> 
> Please can you tell me if Debian squeeze 64 bit accepts more than 4GB ram, ie 
> 8GB? I have a Dell Latitude D6200 and am in the process of upgrading to a 
> D6300 which will accept 8GB maximum RAM and Dell actually sell these 8gb 
> Memory modules (2x4gb), even though in the beginning they stated it's max was 
> 4GB. And so knowing that the machine itself has no problems accepting it, I 
> just need to make sure that Debian 6.0.7 64 bit will accept it, because these 
> RAM modules are not on the cheap side! - about 150 uk pounds for the pair.

Squeeze has no problem with lots of RAM.

If you want a laptop with lots of RAM, though, it may be cheaper
for you in the long run to buy a new machine that can accept
DDR3 RAM, which is currently quite cheap. 8GB DDR3 laptop memory
sticks start at 40 pounds.

> The other thing, just out of curiosity really, is to do with NVIDIA chipsets. 
> Apparently the D6300 with the NVIDIA chipsets don't last long. And I think 
> that maybe it is the pressure of using Windows, especially 7 or 8, on the 
> chip that is the problem. So, am I right in thinking that, even using compiz, 
> Debian is still going to be lighter on the graphics chip, than of Windows?

If there's a heat-related flaw in the GPU, Linux versus Windows
is unlikely to help. Avoid machines with known problems.

-dsr-


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/20130729171616.gv31...@randomstring.org

Re: no xorg

2013-07-29 Thread Dan Ritter

On Mon, Jul 29, 2013 at 12:18:15AM +0200, sp113438 wrote:
> On Sat, 27 Jul 2013 20:36:37 -0700
> Patrick Bartek  wrote:
> 
> > On Sun, 28 Jul 2013, sp113438 wrote:
> > 
> > > Hello,
> > > I did a fresh minimal install of wheezy
> > > I could not add xorg afterwards.
> > > I am not going to install bla bla bla
> > > 
> > > So I had to reinstall wheezy with desktop from tasksel
> > > 
> > > That did the job
> > 
> > I started my Wheezy as a minimal install, too.  But ...
> > 
> > Did you set up the Debian repositories?
> > 
> > After which, did you do an "apt-get update" and "apt-get upgrade"?
> > 
> > Then, "apt-get install xserver-xorg-core" and "apt-get install xinit"?
> > 
> > Then install whatever GUI metapackage you want?  For example: "apt-get
> > install xfce4"  will install xfce4. Or "apt-get install gnome". Or
> > "apt-get install lxde".
> > 
> > Always read the manual first. I do.  You'll have a lot less problems.
> > 
> > B
> > 
> > 
> > 
> I did not do:
> apt-get install xserver-xorg-core and apt-get install xinit
> 
> I was thinking 
> apt-get install fluxbox would do the job

The reason that didn't work is because you don't need a local X
display to run fluxbox on a machine. It can make sense, and is
therefore allowed, to install X software on a machine that can't
display it.

In order to get a local X display, install xserver-xorg-FOO as
appropriate.

-dsr-


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/20130729025802.gu31...@randomstring.org

Re: Hardware support

2013-07-29 Thread Erwan David

Le 29/07/2013 20:55, Erwan David a écrit :
> Le 29/07/2013 20:48, Stefan Monnier a écrit :
>>> Please can you tell me if Debian squeeze 64 bit accepts more than 4GB ram,
>>> ie 8GB?
>> Yes.  And Debian 32bit also supports 8GB.
> With the PAE kernel
>
>
Sorry, I hit send too early. And in PAE, each process is limited to 3
GB. Which is important if you want to edit pictures and need much RAM
fir darytable/digikam or gimp.


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/51f6bb1a.50...@rail.eu.org

Re: Hardware support

2013-07-29 Thread Erwan David

Le 29/07/2013 20:48, Stefan Monnier a écrit :
>> Please can you tell me if Debian squeeze 64 bit accepts more than 4GB ram,
>> ie 8GB?
> Yes.  And Debian 32bit also supports 8GB.

With the PAE kernel


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/51f6ba9b.5090...@rail.eu.org

Re: Hardware support

2013-07-29 Thread Stefan Monnier

> Please can you tell me if Debian squeeze 64 bit accepts more than 4GB ram,
> ie 8GB?

Yes.  And Debian 32bit also supports 8GB.


Stefan


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: 
http://lists.debian.org/jwvli4pcie1.fsf-monnier+gmane.linux.debian.u...@gnu.org

Re: SOLVED: export vs. save menu in gimp2.8 - simple and lasting solution

2013-07-29 Thread Ralf Mardorf

On Mon, 2013-07-29 at 22:28 +0400, Alexandre Prokoudine wrote:
> >  The problem are e.g. Windows that are transparent, but
> > can't moved away, so that they cover the artwork we want to work on.
> 
> WTF?

If you want to add text, than a transparent window is opened that does
cover parts of the artwork and can't be moved away.

No off-list in the subject, so I guess you randomly send your request
not to the mailing list and I suspect you're part of upstream that
seriously is interested in the work-flow of the users.

Thank you for the reply.

Hth,
Ralf

-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/1375123661.675.162.camel@archlinux

Re: avahi-daemon: Is it really needed?

2013-07-29 Thread Kevin Chadwick

> Yeah, and the best and most correct way to do that is to use the
> aforementioned:
> 
>   update-rc.d avahi-daemon disable
> 
> avahi no longer uses a ENABLE flag in /etc/default/avahi-daemon. Those
> flags are a hack and the above menthod is much better.

Personally I disagree in that I believe it should be straight forward
and not be time consuming to edit a systems configuration whilst it is
switched off (etc on another system). Even moreso an annoyance for me
with gconftool/gsettings compared to .fvwmrc etc..


-- 
___

'Write programs that do one thing and do it well. Write programs to work
together. Write programs to handle text streams, because that is a
universal interface'

(Doug McIlroy)
___


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/171737.77215...@smtp141.mail.ir2.yahoo.com

Re: Hardware support

2013-07-29 Thread Gary Dale


On 29/07/13 12:31 PM, sean Griffiths wrote:

Hello and Good Day,

Please can you tell me if Debian squeeze 64 bit accepts more than 4GB
ram, ie 8GB? I have a Dell Latitude D6200 and am in the process of
upgrading to a D6300 which will accept 8GB maximum RAM and Dell actually
sell these 8gb Memory modules (2x4gb), even though in the beginning they
stated it's max was 4GB. And so knowing that the machine itself has no
problems accepting it, I just need to make sure that Debian 6.0.7 64 bit
will accept it, because these RAM modules are not on the cheap side! -
about 150 uk pounds for the pair.

The other thing, just out of curiosity really, is to do with NVIDIA
chipsets. Apparently the D6300 with the NVIDIA chipsets don't last long.
And I think that maybe it is the pressure of using Windows, especially 7
or 8, on the chip that is the problem. So, am I right in thinking that,
even using compiz, Debian is still going to be lighter on the graphics
chip, than of Windows?

Thankyou

--
Sean Griffith(s)



Yes it does.

re. NVidia, the proprietary drivers should be similar. It would depend 
on the use you put it to. The open source drivers probably don't use the 
chip to the same degree.



--
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Archive: http://lists.debian.org/51f6ad88.9060...@velcom.ca

Re: Gain owner of a file using vim :w!

2013-07-29 Thread Kevin Chadwick

> I'm not sure how this works. What were the permissions on the file before you 
> edited it?

Yeah, you sure your not accessing an sftp with suid dir permissions.

I get permission denied.

Also setting chattr +ias on a file as root prevents the folder
shenanigans

On OpenBSD setting chflags schg means you would need to reboot or
defeat the very secure kernel.

I understand how the folder thing could trick you and I would guess
whether it is a bug has been debated many times coming down to inodes
vs logic but as for read-only and IPR how could you expect any
different, you can prevent others except root reading with standard
chmod?

-- 
___

'Write programs that do one thing and do it well. Write programs to work
together. Write programs to handle text streams, because that is a
universal interface'

(Doug McIlroy)
___


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/305833.61127...@smtp101.mail.ir2.yahoo.com

RE: Difficulty configuring kdump

Here is the output once I trigger the crash:



[3518.067263] SysRq : Trigger a crash

[3518.070526] BUG: unable to handle kernel NULL pointer dereference at
(null)

[3518.071338] IP: [] sysrq_handle_crash+0xd/0x16

[3518.072163] PGD 7c781067 PUD 7c780067 PMD 0

[3518.072973] Oops: 0002 [#1] SMP

[3518.073772] CPU 0

[3518.073782] Modules linked in: autofs4 fuse nfs lockd fscache auth_rpcgss
nfs_acl sunrpc dm_crypt snd_pcm snd_timer snd parport_pc tpm_tis tpm
tpm_bios soundcore snd_page_alloc psmouse i2c_piix4 i2c_core parport evdev
vmw_balloon shpchp pcspkr coretemp serio_raw processor ac container button
power_supply thermal_sys ext3 jbd mbcache dm_mod raid10 raid456
async_raid6_recov asynx_pq raid6_pq async_xor xor asyn_memcpy async_tx
raid1 raid0 multipath linear md_mod nbd sg sr_mod cdrom sd_mod ata_generic
crc_t10dif ata_piix libata floppy e1000 crc32c_intel mptspi mptscih mptbase
scsi_transport_spi scsi_mod [last unloaded: scsi_wait_scan]

[3518.082803]

[3518.083718] Pid: 2108, comm: bash Not tainted: 3.2.0-0.bpo.3-amd64 #1
VMware, Inc. VMware Virtual Platform/440BX Desktop Reference Platform

[3518.084706] RIP: 0010:[f812446fe>]  []
sysrq_handle_crash+0xd/0x16

[3518.085667] RSP: 0018"880037abbe80  EFLAGS: 00010092

[3518.086610] RAX: 0010 RBX: 8164b660 RCX:
09e069e06

[3518.087580] RDX:  RSI: 0046 RDI:
00063

[3518.088532] RBP: 0063 R08:  R09:
0

[3518.089475] R10: 88007ab874d0 R11: 81433470 R12:
1

[3518.094532] R13: 0246 R14: 7fff09a49200 R15:
1

[3518.096509] FS:  7f4a16be5700() GS:88007fc0()
knlGS:

[3518.097494] CS:  0010 DS:  ES:  CR0: 80050033

[3518.098470] CR2:  CR3: 7cba2000 CR4:
006f0

[3518.100774] DR0:  DR1:  DR2:
0

[3518.104353] DR3:  DR6: 0ff0 DR7:
00400

[3518.105309] Process bash (pid: 2108, threadinfo 880037aba000, task
8800379430e0)

[3518.106266] Stack:

[3518.107217]  81244c90 0002 
880037abbf58

[3518.108205]  0002 7fff09a4922c 81244d5d
fff4

[3518.109197]  88007abf5480 88007c909ec0 8114df96
0002

[3518.110208] Call Trace:

[3518.113574]  [] ? __handle_sysrq+0xa9/0x141

[3518.115998]  [] ? write_sysrq_trigger+0x35/0x3d

[3518.117025]  [] ? proc_reg_write+0x7a/0x93

[3518.118032]  [] ? vfs_write+0xa4/0xff

[3518.119023]  [] ? sys_write+0x45/0x6e

[3518.120019]  [] ? system_call_fastpath+0x16/0x1b

[3518.121003] Code: 00 01 8a 81 13 2f 80 81 19 d2 83 e0 8f f7 d2 83 e2 03
c1 e2 04 09 d0 88 81 13 2f 80 81 c3 c7 05 a1 d4 52 00 01 00 00 00 0f ae f8
 04 25 00 00 00 00 01 c3 8d 47 d0 83 f8 09 76 0d 8d 57 9f 31

[3518.125802] RIP  [] sysrq_handle_crash+0xd/0x16

[3518.128071]  RSP 

[3518.129085] DR2: 





*Andrew Walsh*

Hardware support

2013-07-29 Thread sean Griffiths


Hello and Good Day,

Please can you tell me if Debian squeeze 64 bit accepts more than 4GB ram, ie 
8GB? I have a Dell Latitude D6200 and am in the process of upgrading to a D6300 
which will accept 8GB maximum RAM and Dell actually sell these 8gb Memory 
modules (2x4gb), even though in the beginning they stated it's max was 4GB. And 
so knowing that the machine itself has no problems accepting it, I just need to 
make sure that Debian 6.0.7 64 bit will accept it, because these RAM modules 
are not on the cheap side! - about 150 uk pounds for the pair.

The other thing, just out of curiosity really, is to do with NVIDIA chipsets. 
Apparently the D6300 with the NVIDIA chipsets don't last long. And I think that 
maybe it is the pressure of using Windows, especially 7 or 8, on the chip that 
is the problem. So, am I right in thinking that, even using compiz, Debian is 
still going to be lighter on the graphics chip, than of Windows?

Thankyou

-- 
Sean Griffith(s)

Change Lightdm background

2013-07-29 Thread Klearchos-Angelos Gkountras

I want to change the background of lightdm with a custom image .
Do you know how to do that ? Thanks very much
-- 
 .''`.   Klearchos-Angelos Gkountras
: :' :   webiste  → http://jemadux.info
`. `'email→ k...@riseup.net
  `- xmpp/jabber  → k...@jabbim.com


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/51f69ec9.4020...@riseup.net

Re: Difficulty configuring kdump

2013-07-29 Thread emmanuel segura

Can you show us the screen when crash happen? after you give echo c >
/proc/sysrq-trigger


2013/7/29 Andrew Walsh 

> Yes, it appears that it was loaded as expected:
>
> # grep -i crash /proc/iomem
>
>   3300-36ff : Crash kernel
>
>
>
> Thanks for the response.
>
> *Andrew Walsh*
>



-- 
esta es mi vida e me la vivo hasta que dios quiera

RE: Difficulty configuring kdump

Yes, it appears that it was loaded as expected:

# grep -i crash /proc/iomem

  3300-36ff : Crash kernel



Thanks for the response.

*Andrew Walsh*

Re: Difficulty configuring kdump

2013-07-29 Thread emmanuel segura

Hello

After you reboot and configure your kdump, before you do the test crash
dump, check if your crash kernel was loaded corretly with grep -i crash
/proc/iomem




2013/7/29 Andrew Walsh 

> Hi all,
>
>
>
> I’ve got an issue trying to configure kdump on my debian systems, and I
> was hoping someone could help shine some light on the issue for me that
> might help me get it working.  I’ve done some extensive reading about how
> to configure it, but nothing has been fruitful in pointing me in the right
> direction.  The systems I am trying to get this working on are running
> debian squeeze with the 64-bit 3.2 backported kernel via squeeze-backports.
>
>
>
> Here's the scenario:
>
> I configure kdump /etc/default/kdump-tools as I would like (I've varied
> the location of /var/crash around in the event that partitioning or
> location had anything to do with it, with no success):
>
>   USE_KDUMP=1
>   KDUMP_COREDIR="/var/crash"
>   DEBUG_KERNEL=/usr/lib/debug/boot/vmlinux-3.2.0-0.bpo.3-amd64
>   KDUMP_CMDLINE_APPEND="irqpoll maxcpus=1"
>
>
> And then update the grub config
>
>   For grub1 (for xen-hosts): Append crashkernel=64M@192M to kernel line
> on default boot
>   For grub2: edit /etc/default/grub and append "crashkernel=64M to
> GRUB_CMDLINE_LINUX_DEFAULT
> (I’ve noticed that if I keep quiet in there, kdump-tools fails to load
> as well)
>   run update-grub
>   (If there is a double space before crashkernel in the resulting
> grub.cfg or menu.lst, I noticed that I have to remove it manually)
>
> On one of the systems (the same one showing the output of kdump-config),
> here is the resulting kernel param in my grub.cfg:
>   linux   /boot/vmlinuz-3.2.0-0.bpo.3-amd64
> root=UUID=8135cc05-9b88-4aa1-be74-9c4d687bf956 ro crashkernel=64M
>
>
>
> I then reboot the host and run kdump-config status, which returns "Ready
> to kdump":
>
> # kdump-config status
> current state   : ready to kdump
>
>
> This is the output of kdump-config show:
>
> # kdump-config show
> USE_KDUMP:1
> KDUMP_SYSCTL: kernel.panic_on_oops=1
> KDUMP_COREDIR:/var/crash
> crashkernel addr: 0x330
> current state:ready to kdump
>
> kernel link:
>   /usr/lib/debug/boot/vmlinux-3.2.0-0.bpo.3-amd64
>
> kexec command:
>   /sbin/kexec -p
> --command-line="BOOT_IMAGE=/boot/vmlinuz-3.2.0-0.bpo.3-amd64
> root=UUID=8135cc05-9b88-4aa1-be74-9c4d687bf956 ro  irqpoll maxcpus=1"
> --initrd=/boot/initrd.img-3.2.0-0.bpo.3-amd64
> /boot/vmlinuz-3.2.0-0.bpo.3-amd64
>
>
> Ensure that I have the sysrq trigger set up correctly by setting it to 1:
>
> echo 1 > /proc/sys/kernel/sysrq
>
> (This is usually already set to 1, but I still do it to make sure)
>
> Then I simulate a crash:
>
> echo c > /proc/sysrq-trigger
>
>
> On a Squeeze host, the panic occurs, but nothing else. I have to manually
> reset the machine to bring it back.
> On a RHEL6 host (slightly varied configuration), the kernel dumps the core
> as expected and reboots.
>
> One thing to also note is that when I have this config in place, sending a
> reboot operation to the system responds as expected, where it doesn’t fully
> reboot the machine, it just simply reloads the running kernel, so it does
> appear that things are half-working.
>
>
> I have tried this configuration on several machines, and they all react
> the same way. I've reached out to the package maintainer for the best place
> to ask this question for kdump-tools, but I haven't gotten a reply, so this
> was my best guess.
>
>
>
> I would greatly appreciate any help or insight into where I might find
> some assistance with this issue.
>
> Thanks.
>
> *Andrew Walsh*
>



-- 
esta es mi vida e me la vivo hasta que dios quiera

Difficulty configuring kdump

Hi all,



I’ve got an issue trying to configure kdump on my debian systems, and I was
hoping someone could help shine some light on the issue for me that might
help me get it working.  I’ve done some extensive reading about how to
configure it, but nothing has been fruitful in pointing me in the right
direction.  The systems I am trying to get this working on are running
debian squeeze with the 64-bit 3.2 backported kernel via squeeze-backports.



Here's the scenario:

I configure kdump /etc/default/kdump-tools as I would like (I've varied the
location of /var/crash around in the event that partitioning or location
had anything to do with it, with no success):

  USE_KDUMP=1
  KDUMP_COREDIR="/var/crash"
  DEBUG_KERNEL=/usr/lib/debug/boot/vmlinux-3.2.0-0.bpo.3-amd64
  KDUMP_CMDLINE_APPEND="irqpoll maxcpus=1"


And then update the grub config

  For grub1 (for xen-hosts): Append crashkernel=64M@192M to kernel line on
default boot
  For grub2: edit /etc/default/grub and append "crashkernel=64M to
GRUB_CMDLINE_LINUX_DEFAULT
(I’ve noticed that if I keep quiet in there, kdump-tools fails to load
as well)
  run update-grub
  (If there is a double space before crashkernel in the resulting grub.cfg
or menu.lst, I noticed that I have to remove it manually)

On one of the systems (the same one showing the output of kdump-config),
here is the resulting kernel param in my grub.cfg:
  linux   /boot/vmlinuz-3.2.0-0.bpo.3-amd64
root=UUID=8135cc05-9b88-4aa1-be74-9c4d687bf956 ro crashkernel=64M



I then reboot the host and run kdump-config status, which returns "Ready to
kdump":

# kdump-config status
current state   : ready to kdump


This is the output of kdump-config show:

# kdump-config show
USE_KDUMP:1
KDUMP_SYSCTL: kernel.panic_on_oops=1
KDUMP_COREDIR:/var/crash
crashkernel addr: 0x330
current state:ready to kdump

kernel link:
  /usr/lib/debug/boot/vmlinux-3.2.0-0.bpo.3-amd64

kexec command:
  /sbin/kexec -p
--command-line="BOOT_IMAGE=/boot/vmlinuz-3.2.0-0.bpo.3-amd64
root=UUID=8135cc05-9b88-4aa1-be74-9c4d687bf956 ro  irqpoll maxcpus=1"
--initrd=/boot/initrd.img-3.2.0-0.bpo.3-amd64
/boot/vmlinuz-3.2.0-0.bpo.3-amd64


Ensure that I have the sysrq trigger set up correctly by setting it to 1:

echo 1 > /proc/sys/kernel/sysrq

(This is usually already set to 1, but I still do it to make sure)

Then I simulate a crash:

echo c > /proc/sysrq-trigger


On a Squeeze host, the panic occurs, but nothing else. I have to manually
reset the machine to bring it back.
On a RHEL6 host (slightly varied configuration), the kernel dumps the core
as expected and reboots.

One thing to also note is that when I have this config in place, sending a
reboot operation to the system responds as expected, where it doesn’t fully
reboot the machine, it just simply reloads the running kernel, so it does
appear that things are half-working.


I have tried this configuration on several machines, and they all react the
same way. I've reached out to the package maintainer for the best place to
ask this question for kdump-tools, but I haven't gotten a reply, so this
was my best guess.



I would greatly appreciate any help or insight into where I might find some
assistance with this issue.

Thanks.

*Andrew Walsh*

Re: no xorg

On Mon, Jul 29, 2013 at 08:19:49AM -0700, Patrick Bartek wrote:
> On Mon, 29 Jul 2013, sp113438 wrote:
> > Anyway, it's too late to check out myself since I installed Sid ;)
> 
> Just remember when updating to use dist-upgrade instead of regular
> upgrade to have the most current files installed instead of just the
> "fixes" for old installed files.

As discussed on this list in the past, that can get you into trouble!

The recommended procedure is to upgrade first, THEN dist-upgrade, BUT
ONLY IF you are satisfied with what is going to be removed and replaced.

IOW, answer no to the dist-upgrade question if you are not happy with
what it is going to do your system.

-- 
"If you're not careful, the newspapers will have you hating the people
who are being oppressed, and loving the people who are doing the 
oppressing." --- Malcolm X

-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/20130729155649.GA2669@tal

Problems with installing HP LaserJet M1005 usb printer on debian clients on a network

2013-07-29 Thread Arvind

Dear All,

I am saddled with a job of installing a HP laserjet M1005
multifunction printer on a network of machines running debian wheezy.
This is a usb printer, NOT a network printer. Unfortunately, it also
requires a proprietary plugin from HP. I could get it running on the
machine to which it is connected via USB. My problem: I am not able to
get it to print from other machines on the network.

Details:
I will begin with describing how I got it working on the print server
(i.e. the machine to which the printer is connected on a usb port). I
installed hplip using aptitude and then used 'hp-setup -i'. It asked
about the mode of connection, on selecting 'usb', it found the
attached printer right away, downloaded the proprietary plugin from
the internet, asked if I accepted the license, installed the plugin on
selecting 'yes', and then generated a ppd file in a few more steps.
Done! The printer works as it is supposed to.

On any client machine on the network, the above procedure doesn't
work. If I select 'network' as the mode of connection, hp-setup cannot
find the printer. I am not able to find any way of telling hp-setup to
look for a printer connected through usb to another machine on the
network. Using "hp-setp -i ip_address_of_print_server" doesn't work
either.

So I took the cups printer set-up route. I gave the ip address and
path of the printer, copied the ppd file from the print server, and
set up the printer. When I tried printing a test page, it failed with
the error "/usr/lib/cups/filter/hpcups failed". So I used 'hp-plugin
-i' and it downloaded all possible proprietary plugins from the
internet and installed them. I restarted cups, even rebooted the
machine, but the error remains the same as given above.

I tried another trick. The default installation of cups has two more
ppd files, one for HP LaserJet 1005 and another one for HP LaserJet
M1005, and both these files do no seem to require proprietary plugins.
I tried to use these ppd files during installation through cups, both
with and without the proprietary plugin installed. Either way, the
print job simply says "The printer is busy", the error log file on
cups repeats it with no elaboration.

Next, I purged all of hplip and cups, simply installed
printer-driver-foo2zjs using aptitude, and tried to install the
printer through ppd plus proprietary plugin route. The error message
still remains "The printer is busy".

Next, I purged the printer-driver-foo2zjs package installed through
aptitude, downloaded foo2zjs package from the openprinting website,
and repeated the procedure. The error message - "The printer is busy".

My guess is that the problem is with the proprietary plugin files. I
suspect that the plugin looks for a printer connected on the usb port
of the (client) machine on which it is installed, not for usb
connection on the print server machine. I understand that this is the
expected behaviour for a non-network, usb printer, but is there any
way to circumvent this restriction? Say, is it possible for cups on
the client machine to use the plugin files on the print server? Would
that help? Or can one get the printer to work without the proprietary
plugin?

Curiously, I could set up the scanner part of this (multi-function)
device on all machines without any problem, using instructions given
at
http://wiki.debian.org/SaneOverNetwork
No idea if this can act as a clue of some sort.

Another point: Previously, all the machines at my workplace had
different versions of windows, before I convinced them to shift to
debian gnu/linux. The printer could be set up to be used through the
windows server as well as through all the windows clients.

As of now, I am clueless about the next step.

Any help appreciated.

Regards,
arvind

--
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive:
http://lists.debian.org/CAGCaVKsBTQQhCr8jy=qnxwy_hbv7c1jpzkgyrdxfosetjbe...@mail.gmail.com

Re: Continuous brute force attempt from own server !!! (OT question)

On Mon, Jul 29, 2013 at 11:26:17PM +0900, Joel Rees wrote:
> 
> Do you mean actually recycled? Or are you thinking of one-time pads?

Not really.

Umm, what about:
http://www.logicalsecurity.com/resources/whitepapers/Cryptography.pdf

"... We'll cite two kinds of rotation ciphering machines: the Jefferson
disk and the ..."

And the term "rotation" crops up in the actual ciphering technique, e.g. 
http://en.wikipedia.org/wiki/Caesar_cipher

"... For instance, here is a Caesar cipher using a left rotation of
three places, equivalent to a right shift of 23 (the shift parameter is
used as the key): ..."

And as the technology "evolved" the terminology did not and got infused
into modern technology.

E.g. "Hey Barman, can you put that on the slate mate." :)

I'm not sure if my reasoning is accurate or not, but it sounds darned
good to me. :)

-- 
"If you're not careful, the newspapers will have you hating the people
who are being oppressed, and loving the people who are doing the 
oppressing." --- Malcolm X

-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/20130729151946.GA1893@tal

Re: no xorg

2013-07-29 Thread Patrick Bartek

On Mon, 29 Jul 2013, sp113438 wrote:

> On Sat, 27 Jul 2013 20:36:37 -0700
> Patrick Bartek  wrote:
> 
> > On Sun, 28 Jul 2013, sp113438 wrote:
> > 
> > > Hello,
> > > I did a fresh minimal install of wheezy
> > > I could not add xorg afterwards.
> > > I am not going to install bla bla bla
> > > 
> > > So I had to reinstall wheezy with desktop from tasksel
> > > 
> > > That did the job
> > 
> > I started my Wheezy as a minimal install, too.  But ...
> > 
> > Did you set up the Debian repositories?
> > 
> > After which, did you do an "apt-get update" and "apt-get upgrade"?
> > 
> > Then, "apt-get install xserver-xorg-core" and "apt-get install
> > xinit"?
> > 
> > Then install whatever GUI metapackage you want?  For example:
> > "apt-get install xfce4"  will install xfce4. Or "apt-get install
> > gnome". Or "apt-get install lxde".
> > 
> > Always read the manual first. I do.  You'll have a lot less
> > problems.
> > 
> > B
> > 
> > 
> > 
> I did not do:
> apt-get install xserver-xorg-core and apt-get install xinit
> 
> I was thinking 
> apt-get install fluxbox would do the job

One would think so, but it doesn't; however, it used to.  Years ago,
with a minimal install of Etch, I just installed xfce and X and all
necessary files were installed.

> Anyway, it's too late to check out myself since I installed Sid ;)

Just remember when updating to use dist-upgrade instead of regular
upgrade to have the most current files installed instead of just the
"fixes" for old installed files.

B


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/20130729081949.44d5f...@debian7.boseck208.net

Re: Continuous brute force attempt from own server !!! (OT question)

2013-07-29 Thread John Hasler

Chris Bannister writes:
> My guess is that they were actually rotated at some point but when
> that changed, the name was not.

People wrote about rotating passwords decades ago but they didn't really
mean it then either.
-- 
John Hasler 
jhas...@newsguy.com
Elmwood, WI USA


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/87ob9ll8yv@thumper.dhh.gt.org

Re: Continuous brute force attempt from own server !!! (OT question)

On Mon, Jul 29, 2013 at 10:12 PM, Chris Bannister <
cbannis...@slingshot.co.nz> wrote:

> On Mon, Jul 29, 2013 at 09:16:50PM +0900, Joel Rees wrote:
> > On Sun, Jul 28, 2013 at 10:12 PM, Henrique de Moraes Holschuh <
> > > Switching to a new one and disposing of the older one is, for whatever
> > > reason, usually called "rotating the keys".
> >
> > Probably because of perceived similarities to rotating logs?
>
> Unlikely. Two completely different concepts.

How so?

A log is a resource. When it's time to move on, use a new resource.

A key is a resource. When it is time to move on, use a new key.

The difference being of course that the log is renamed and left behind for
a bit, where the key is not left behind. Maybe moved to the list of keys to
be watched for. Speaking of which, PKI techniques would indeed move the old
keys to the revocation list

> My guess is that they were
> actually rotated at some point but when that changed, the name was not.
>

Do you mean actually recycled? Or are you thinking of one-time pads?

--
Joel Rees

Re: home/end keys over ssh

2013-07-29 Thread Tony van der Hoff

On 29/07/13 13:08, Zenaan Harkness wrote:
> On 7/29/13, Tony van der Hoff  wrote:
>> I have a remote server running squeezy, which I access from a KDE
>> terminal via ssh from my squeeze/wheezy hosts.
>> All works well, except that the home and end keys don't work as
>> expected; they only echo a tilde(~).
> 
> google: ssh home end keys
> top result has some answers which may help:
> http://blog.andrewbeacock.com/2007/08/how-to-get-home-end-keys-working-in.html
> 

Great; thanks for this.

I normally do a google search as a first move; can't think why I didn't
this time.  My bad :(


-- 
Tony van der Hoff| mailto:t...@vanderhoff.org
Buckinghamshire, England |


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/51f66cbb.3000...@vanderhoff.org

Re: Continuous brute force attempt from own server !!! (OT question)

On Mon, Jul 29, 2013 at 09:16:50PM +0900, Joel Rees wrote:
> On Sun, Jul 28, 2013 at 10:12 PM, Henrique de Moraes Holschuh <
> > Switching to a new one and disposing of the older one is, for whatever
> > reason, usually called "rotating the keys".
> 
> Probably because of perceived similarities to rotating logs?

Unlikely. Two completely different concepts. My guess is that they were
actually rotated at some point but when that changed, the name was not.

-- 
"If you're not careful, the newspapers will have you hating the people
who are being oppressed, and loving the people who are doing the 
oppressing." --- Malcolm X


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/20130729131259.GA32146@tal

Re: PXE, automatic installation and reboot

2013-07-29 Thread Iain M Conochie


> 
> You also have a default file in your pxelinux.cfg file with the
> following in it:

This should read pxelinux.cfg Directory not file. And the default file
is called default

Ta

Iain


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: 
http://lists.debian.org/1375101811.5786.10.ca...@lnxdesk.rivers.proact.co.uk

Re: PXE, automatic installation and reboot

2013-07-29 Thread Iain M Conochie

On Thu, 2013-07-25 at 17:30 +0200, Jimmy Thrasibule wrote:
> Hi,
> 
> I've setup and environment to automatically install some Debian boxes
> via the network using PXE, TFTP and Preseed. If this part is working
> fine, I'm facing a little issue when the installation is done.
> 
> I'm trying to make everything automatic with no human intervention. The
> problem is that when the installation is done, the box will reboot, boot
> again using PXE and start a new installation process.

You can prevent that from happening by using a specific configuration
file for every machine you install. The name of the file is based on the
HEX of the IP address that the machine will get from DHCP when you PXE
boot.

E.G. have a file called 0A641901 for a machine with IP 10.100.25.1

You also have a default file in your pxelinux.cfg file with the
following in it:

# generated by fai-chboot
default fai-generated

label fai-generated
localboot 0

You then have a simple PHP script to move the boot config to,
say, .disabled and when the machine reboots it will boot from local
disk.

Example PHP script:

> How can I prevent that without having to monitor every installation
> process? The idea would be to kind of deny access to `pxelinux.0` when a
> host had already made a request.
> 
> --
> Jimmy
> 
> 
> 

-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: 
http://lists.debian.org/1375101097.5786.9.ca...@lnxdesk.rivers.proact.co.uk

Re: Continuous brute force attempt from own server !!! (OT question)

On Sun, Jul 28, 2013 at 10:12 PM, Henrique de Moraes Holschuh <
h...@debian.org> wrote:

> On Sat, 27 Jul 2013, Paul E Condon wrote:
> > I intended the question to be answered in the context of the post by
> > Henrique de Moraes Holschuh, where 'across security domains' is
> > considered less desirable than 'across hosts'. I know what hosts are
> > when writing computer stuff, but, come to think about it what does it
> > mean to rotate keys? Is the idea that a particular key string is to be
>
> Switching to a new one and disposing of the older one is, for whatever
> reason, usually called "rotating the keys".
>

Probably because of perceived similarities to rotating logs?

> > reused on some host after it has been removed from service on some
> > other host? I had thought that it was best to never use a retired key
> > string again - but security is tricky - maybe there might be some
>
> You're correct.  It is best to dispose of old keys, and never reuse them.
>
> > point in using old strings as the keys on some (unmentioned) honey pot
> > servers.
>
> You could do that, but there might be risks associated with that (or not).
>

Actually, if you are running a network which needs to assume regular
penetration (such as the banking internets and banks' intranets), honeypots
of various kinds should be part of the network. Tripwire techniques. And
the old keys folded into certain honeypots (flypaper servers), which would
flag their use as indicating a potential source of privilege leak.

But you have to be very careful, because you are not putting the keys out
to be discovered.

--
Joel Rees

Re: home/end keys over ssh

2013-07-29 Thread Zenaan Harkness

On 7/29/13, Tony van der Hoff  wrote:
> I have a remote server running squeezy, which I access from a KDE
> terminal via ssh from my squeeze/wheezy hosts.
> All works well, except that the home and end keys don't work as
> expected; they only echo a tilde(~).

google: ssh home end keys
top result has some answers which may help:
http://blog.andrewbeacock.com/2007/08/how-to-get-home-end-keys-working-in.html

:)


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: 
http://lists.debian.org/caosgnst9e_qc3oa3wvrguncu+wschxqobovott7njelxq_6...@mail.gmail.com

Re: Sid google-earth-stable dependency problems

2013-07-29 Thread Darac Marjal

On Sun, Jul 28, 2013 at 11:14:45PM +0200, sp113438 wrote:
> On my Sid system it is not possible to install google-earth.
> 
> I tried to install the downloaded program from Googles site:
> 
> Selecting previously unselected package google-earth-stable.
> (Reading database ... 165240 files and directories currently installed.)
> Unpacking google-earth-stable
> (from .../google-earth-stable_current_amd64(1).deb) ... dpkg:
> dependency problems prevent configuration of google-earth-stable:
> google-earth-stable depends on lsb-core (>= 3.2); however: Package
> lsb-core is not installed. google-earth-stable depends on ia32-libs;
> however: Package ia32-libs is not installed.
> 
> dpkg: error processing google-earth-stable (--install):
>  dependency problems - leaving unconfigured
> Processing triggers for man-db ...
> Processing triggers for menu ...
> Processing triggers for desktop-file-utils ...
> Processing triggers for mime-support ...
> Errors were encountered while processing:
>  google-earth-stable

This is fairly normal behaviour. dpkg won't, by itself, download and
install dependencies. That job is left to the higher-level tools such as
apt-get and aptitude.

You can either fetch and install those dependencies yourself (lsb-core
and ia32-libs. It is probably safest to install all three at the same
time and let dpkg work out the ordering: dpkg -i lsb-core*.deb
ia32-libs*.deb google-earth-stable*.deb) or you can use a command such
as "apt-get -f install" to fix things up. After a "dpkg -i", you would
have google-earth-stable in a "half-installed" state. apt-get should be
able to spot that this can be fixed by installing its dependencies.
Sometimes, though, apt-get will suggest that the way to fix things is to
remove the package you just installed - that probably means the
dependecies can't be satisfied.

> 
> I also build a deb from  make-googleearth-package with following result:
> 
> Unpacking googleearth
> (from .../googleearth_6.0.3.2197+0.7.0-1_amd64.deb) ... dpkg:
> dependency problems prevent configuration of googleearth: googleearth
> depends on libfreeimage3; however: Package libfreeimage3 is not
> installed. googleearth depends on lsb-core; however:
>   Package lsb-core is not installed.
>  googleearth depends on ia32-libs-gtk; however:
>   Package ia32-libs-gtk is not installed.
> 
> dpkg: error processing googleearth (--install):
>  dependency problems - leaving unconfigured
> Processing triggers for mime-support ...
> Processing triggers for menu ...
> Processing triggers for desktop-file-utils ...
> Processing triggers for shared-mime-info ...
> Unknown media type in type 'all/all'
> Unknown media type in type 'all/allfiles'
> Unknown media type in type 'uri/mms'
> Unknown media type in type 'uri/mmst'
> Unknown media type in type 'uri/mmsu'
> Unknown media type in type 'uri/pnm'
> Unknown media type in type 'uri/rtspt'
> Unknown media type in type 'uri/rtspu'
> Errors were encountered while processing:
>  googleearth

This is the same issue. It's not saying that the dependencies CAN'T be
installed, only that they AREN'T at the moment. It didn't try to install
them.

signature.asc
Description: Digital signature

home/end keys over ssh

2013-07-29 Thread Tony van der Hoff

Hi all,

I have a remote server running squeezy, which I access from a KDE
terminal via ssh from my squeeze/wheezy hosts.

All works well, except that the home and end keys don't work as
expected; they only echo a tilde(~).

Has anyone any suggestions as to how I may fix this, please?

Cheers, Tony
-- 
Tony van der Hoff| mailto:t...@vanderhoff.org
Buckinghamshire, England |


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/51f64851.5050...@vanderhoff.org

Re: package recommendation for grammar checker