date:20140608



Le 8 juin 14 à 12:24, Francois Lafont a écrit :


Bonjour à tous,

Le 07/06/2014 23:05, nb a écrit :


Le 07/06/2014 20:31, Philippe Gras a écrit :
Non, justement pas quel que soit l'état de la connexion, et  
c'est logique.


On n'aurait pas de règle pour les connexions établies, sinon ;-)


Philippe a raison.
INPUT ne sert pas pour une connexion déjà établie, seulement pour  
l'établissement d'une connexion (paquet tcp syn)


Loin de moi l'idée de vouloir vous embêter avec tout ça (j'essaye
vraiment d'être constructif dans ma démarche) mais il me semble
sincèrement que Philippe et toi nb vous trompez sur ce point.
J'essaye de donner une explication ci-dessous qui tend à le prouver.
Certes, ça n'a pas de rapport direct avec Debian mais je trouve que
le sujet n'est pas inintéressant en soi. Et dans le pire des cas,
si on me montre que j'ai tort (ce qui est tout à fait envisageable
;)), j'en serais le premier content car j'aurais appris quelque
chose (et je pense que je ne serai pas le seul).


OK, ce n'est pas Debian, mais Iptables. Mais on peut l'installer sur  
une Debian.


Je n'ai pas vu de forum ou de liste dédiée à Iptables, alors je pose  
ma question

ici même.


J'ai une petite Debian Wheezy toute simple sur laquelle j'ai un
petit apache2 qui tourne (avec la fameuse page « It works »). Je
n'ai fait à la base aucune modification iptables (et donc par
défaut tout passe etc). Cette machine a pour IP 172.31.0.1/16.


OK pour cette démonstration, mais le cas que j'ai évoqué est  
différent, dans la
mesure où j'ai dû établir ma règle pendant l'attaque, je ne l'ai pas  
écrite avant.


Je crois qu'il y a une explication à cet état de choses ici :
http://www.bortzmeyer.org/rate-limiting-dos.html
=
Ici, on met les adresses IP dans une table nommée Web. On peut  
afficher son contenu avec cat /proc/net/xt_recent/Web pour surveiller  
le bon fonctionnement. On ne teste que les paquets TCP de type SYN,  
ceux envoyés pour créer une nouvelle connexion (on aurait pu  
remplacer --tcp-flags SYN SYN par -m state --state NEW mais cette  
commande est à état, ce qui est toujours déconseillé face à une DoS).

=
Il existe apparemment une différence dans le traitement des paquets  
par iptables

selon leur état.


Je crée alors ces deux règles :

iptables -A INPUT -p tcp --dport 80 -s 172.31.100.144 -j LOG --log- 
prefix BASIC INPUT 
iptables -A INPUT -p tcp --dport 80 -s 172.31.100.144 -m state -- 
state RELATED,ESTABLISHED -j LOG --log-prefix STATE INPUT 


J'ai juste repris le même type de règle que Philippe (dans son message
du 7 juin à 18h16) sauf que :

* j'ai pris une autre IP source (qui correspond à l'IP d'une VM sur
   mon réseau local 172.31.0.0/16)

* j'ai changé l'action. Au lieu de faire un DROP comme Philippe, je me
  contente simplement de journaliser les paquets qui matchent les
  règles avec un préfixe différent pour les différencier dans le log.

Une fois que tout ça est en place, je me rends sur la machine
dont l'IP est 172.31.100.144 et je me contente de visiter une fois
la page http://172.31.0.1 qui m'affiche « It works ». Au même
moment je regarde le fichier de log /var/log/kern.log du serveur
apache2 et voici toutes les lignes que j'obtiens au moment de
la visite de la page web :

[ 3082.346423] BASIC INPUT IN=eth1 SRC=172.31.100.144  
DST=172.31.0.1 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=60953 DF  
PROTO=TCP SPT=58402 DPT=80 WINDOW=14600 RES=0x00 SYN URGP=0·
[ 3082.346697] BASIC INPUT IN=eth1 SRC=172.31.100.144  
DST=172.31.0.1 LEN=52 TOS=0x00 PREC=0x00 TTL=64 ID=60954 DF  
PROTO=TCP SPT=58402 DPT=80 WINDOW=913 RES=0x00 ACK URGP=0·
[ 3082.346704] STATE INPUT IN=eth1 SRC=172.31.100.144  
DST=172.31.0.1 LEN=52 TOS=0x00 PREC=0x00 TTL=64 ID=60954 DF  
PROTO=TCP SPT=58402 DPT=80 WINDOW=913 RES=0x00 ACK URGP=0·
[ 3082.357986] BASIC INPUT IN=eth1 SRC=172.31.100.144  
DST=172.31.0.1 LEN=372 TOS=0x00 PREC=0x00 TTL=64 ID=60955 DF  
PROTO=TCP SPT=58402 DPT=80 WINDOW=913 RES=0x00 ACK PSH URGP=0·
[ 3082.357994] STATE INPUT IN=eth1 SRC=172.31.100.144  
DST=172.31.0.1 LEN=372 TOS=0x00 PREC=0x00 TTL=64 ID=60955 DF  
PROTO=TCP SPT=58402 DPT=80 WINDOW=913 RES=0x00 ACK PSH URGP=0·
[ 3082.358973] BASIC INPUT IN=eth1 SRC=172.31.100.144  
DST=172.31.0.1 LEN=52 TOS=0x00 PREC=0x00 TTL=64 ID=60956 DF  
PROTO=TCP SPT=58402 DPT=80 WINDOW=980 RES=0x00 ACK URGP=0·
[ 3082.358980] STATE INPUT IN=eth1 SRC=172.31.100.144  
DST=172.31.0.1 LEN=52 TOS=0x00 PREC=0x00 TTL=64 ID=60956 DF  
PROTO=TCP SPT=58402 DPT=80 WINDOW=980 RES=0x00 ACK URGP=0·
[ 3087.360441] BASIC INPUT IN=eth1 SRC=172.31.100.144  
DST=172.31.0.1 LEN=52 TOS=0x00 PREC=0x00 TTL=64 ID=60957 DF  
PROTO=TCP SPT=58402 DPT=80 WINDOW=980 RES=0x00 ACK FIN URGP=0·
[ 3087.360448] STATE INPUT IN=eth1 SRC=172.31.100.144  
DST=172.31.0.1 LEN=52 TOS=0x00 PREC=0x00 TTL=64 ID=60957 DF  
PROTO=TCP SPT=58402 DPT=80 WINDOW=980 RES=0x00 ACK FIN URGP=0·
[

Re: [IPTABLES] Comment lister les paquets rejet és ?


Le 8 juin 14 à 11:47, Jean-Michel OLTRA a écrit :



Bonjour,

Sinon, j'ai bien mes journaux dans /var/log/messages (c'est  
Debian, ça °0°)


Perso, j'utilise rsyslogd avec ses possibilités de filtrage pour  
envoyer
mes chaines préfixées avec --log-prefix dans /var/log/firewall.log  
(qui

fait l'objet d'une rotation journalière via une entrée dans
/etc/logrotate.d)


C'est un peu ça que j'aimerais arriver à faire chez moi :
Lister les IP qui envoient une requête Get wp-login.php
Selon la fréquence de ces requêtes dans le temps, ACCEPT ou DROP.


--
jm

--
Lisez la FAQ de la liste avant de poser une question :
http://wiki.debian.org/fr/FrenchLists

Pour vous DESABONNER, envoyez un message avec comme objet  
unsubscribe

vers debian-user-french-requ...@lists.debian.org
En cas de soucis, contactez EN ANGLAIS listmas...@lists.debian.org
Archive: https://lists.debian.org/20140608094711.GA6890@espinasse



--
Lisez la FAQ de la liste avant de poser une question :
http://wiki.debian.org/fr/FrenchLists

Pour vous DESABONNER, envoyez un message avec comme objet unsubscribe
vers debian-user-french-requ...@lists.debian.org
En cas de soucis, contactez EN ANGLAIS listmas...@lists.debian.org
Archive: 
https://lists.debian.org/6598e822-87e3-451f-b535-a029399c1...@worldonline.fr

Re: [Wheezy] installation sur un Acer Aspire One A0751h

2014-06-08 Thread maderios


On 06/08/2014 01:08 PM, Gaëtan PERRIER wrote:


Non plus. Lors du boot quand il détecte le contrôleur graphique il
switch de mode et tout se bloque.


Pistes
Vérifier si la machine marche avec un livecd comme celui-ci qui 
fonctionne bien

http://www.sysresccd.org/Download
Chrooter le système avec un livecd, mettre grub en verbose, installer 
bootlogd

Rebooter et aller voir les logs de debug

--
Maderios


--
Lisez la FAQ de la liste avant de poser une question :
http://wiki.debian.org/fr/FrenchLists

Pour vous DESABONNER, envoyez un message avec comme objet unsubscribe
vers debian-user-french-requ...@lists.debian.org
En cas de soucis, contactez EN ANGLAIS listmas...@lists.debian.org
Archive: https://lists.debian.org/5394619a.5010...@gmail.com

Re: [IPTABLES] Comment lister les paquets rejet és ?

2014-06-08 Thread Denis Mugnier


Bonjour,

Le 08/06/2014 14:02, Philippe Gras a écrit :

Le 8 juin 14 à 11:47, Jean-Michel OLTRA a écrit :






C'est un peu ça que j'aimerais arriver à faire chez moi :
Lister les IP qui envoient une requête Get wp-login.php
Selon la fréquence de ces requêtes dans le temps, ACCEPT ou DROP.


--
Je pense que pour avoir des regles en fonction de la fréquence, il faut 
regarder du coté du module limit d'iptables


A+

Denis

--
Lisez la FAQ de la liste avant de poser une question :
http://wiki.debian.org/fr/FrenchLists

Pour vous DESABONNER, envoyez un message avec comme objet unsubscribe
vers debian-user-french-requ...@lists.debian.org
En cas de soucis, contactez EN ANGLAIS listmas...@lists.debian.org
Archive: https://lists.debian.org/53946adb.6010...@orange.fr

Re: [IPTABLES] Comment lister les paquets rejetés ?

2014-06-08 Thread Francois Lafont

Le 08/06/2014 13:58, Philippe Gras a écrit :

 OK, ce n'est pas Debian, mais Iptables. Mais on peut l'installer sur une 
 Debian.
 
 Je n'ai pas vu de forum ou de liste dédiée à Iptables, alors je pose ma 
 question
 ici même.

Personnellement, ça ne me dérange absolument que le sujet
soit abordé ici.

 OK pour cette démonstration, mais le cas que j'ai évoqué est différent, dans 
 la
 mesure où j'ai dû établir ma règle pendant l'attaque, je ne l'ai pas écrite 
 avant.

Certes, mais très honnêtement je pense que ça ne change rien
au fait qu'avec les règles que tu indiquais :

1. iptables -A INPUT -p tcp --dport 80 -s 72.44.248.136 -j DROP
2. iptables -A INPUT -p tcp --dport 80 -s 66.23.229.10 -j DROP
3. iptables -A INPUT -m state --state RELATED,ESTABLISHED -p tcp --dport 80 -s 
72.44.248.136 -j DROP
4. iptables -A INPUT -m state --state RELATED,ESTABLISHED -p tcp --dport 80 -s 
66.23.229.10 -j DROP 

les règles 3 et 4 sont inutiles car si un paquet matche la 3, de
toute façon il matchera la 1 avant et sera « dropé » et si un
paquet matche la 4 il sera « dropé » de toute façon par la 2 avant.
Mais au final, ce n'est pas très grave, il y a juste une sorte
de redondance. Rien de bien méchant donc.

 Je crois qu'il y a une explication à cet état de choses ici :
 http://www.bortzmeyer.org/rate-limiting-dos.html
 =
 Ici, on met les adresses IP dans une table nommée Web. On peut afficher son 
 contenu avec cat /proc/net/xt_recent/Web pour surveiller le bon 
 fonctionnement. On ne teste que les paquets TCP de type SYN, ceux envoyés 
 pour créer une nouvelle connexion (on aurait pu remplacer --tcp-flags SYN SYN 
 par -m state --state NEW mais cette commande est à état, ce qui est toujours 
 déconseillé face à une DoS).
 =

Merci bien Philippe pour ce lien qui est très intéressant. Perso,
j'y est appris pas mal de trucs. En revanche, je n'y ai pas trop
vu le rapport avec la question soulevée ici.

 Il existe apparemment une différence dans le traitement des paquets par 
 iptables
 selon leur état.

Vraiment je ne crois pas. Si, dans la définition d'une règle via
iptables, tu ne précises rien quant à l'état de la connexion tcp,
alors la règle ne dépendra pas de cet état, tout simplement.

Dans le lien précédent en l'occurrence, les règles indiquées dépendent
explicitement de l'état de la connexion car l'auteur cherche à attraper
les paquets IP qui contiennent des segments tcp qui correspondent à des
demandes de connexion d'où l'option « --tcp-flags SYN SYN » clairement
spécifiée quasiment à chaque fois.

-- 
François Lafont

-- 
Lisez la FAQ de la liste avant de poser une question :
http://wiki.debian.org/fr/FrenchLists

Pour vous DESABONNER, envoyez un message avec comme objet unsubscribe
vers debian-user-french-requ...@lists.debian.org
En cas de soucis, contactez EN ANGLAIS listmas...@lists.debian.org
Archive: https://lists.debian.org/539477fb.8070...@free.fr

[TECH] Créer un serveur SMS avec un GSM relié par USB

2014-06-08 Thread David Pinson


Bonjour à tous,

Avant de vous écrire ce message, j'ai regardé via gogolepointefere des 
solutions avec l'utilisation des outils
tels que smstools, kannel, gnokkii, wvdial, etc... Il y a pas mal de 
solutions avec tutos mais je serai bien content de lire vos avis

si vous avez déjà fait ce projet sur serveur Debian.
Et qu'il y aurait aussi d'autres solutions que je n'aurai pas vu... 
Histoire de voir plus loin.


Les envois de SMS se ferait par le web en php, par telnet(local)/ssh 
(distance) et par mail.

Les réceptions seraient lus soit par reception mail et/ou flux RSS.
Pour ces derniers, je n'ai pas encore regardé.

Merci pour vos lumières,
Linuxement vôtre,
David P.

--
Lisez la FAQ de la liste avant de poser une question :
http://wiki.debian.org/fr/FrenchLists

Pour vous DESABONNER, envoyez un message avec comme objet unsubscribe
vers debian-user-french-requ...@lists.debian.org
En cas de soucis, contactez EN ANGLAIS listmas...@lists.debian.org
Archive: https://lists.debian.org/5394818b.1010...@free.fr

Re: [IPTABLES] Comment lister les paquets rejetés ?

2014-06-08 Thread Francois Lafont

Juste pour conclure, je voulais ajouter ceci. Juste après un :

iptables -A INPUT -p tcp --dport 80 -s 72.44.248.136 -j DROP
iptables -A INPUT -p tcp --dport 80 -s 66.23.229.10 -j DROP

*pendant* l'attaque, il est tout à fait possible que ton serveur
apache soit encore dans les choux. En effet, avant la mise en
place des règles ci-dessus, des requêtes http étaient sûrement
en cours et celles-là ton apache souhaite les honorer. Du coup,
ton apache envoie tant bien que mal ses réponses aux méchants
hôtes 72.44.248.136 et 66.23.229.10. Normalement, les 2 méchants
sont censés envoyer un paquet d'acquittement comme quoi ils ont
bien reçu la réponse du serveur. Mais ces paquets d'acquittement
ne peuvent plus arriver car les 2 règles ci-dessus l'empêchent.
Du coup, apache2 cherche à renvoyer à nouveau ses réponses etc.
Et du coup, il continue à être dans les choux pendant un certain
temps.

En revanche, avec un truc du genre :

1. invoke-rc.d apache2 stop # on arrête toutes les connexions en cours.

2.
iptables -A INPUT -p tcp --dport 80 -s 72.44.248.136 -j DROP
iptables -A INPUT -p tcp --dport 80 -s 66.23.229.10 -j DROP

3.
invoke-rc.d apache2 start

il me semble que ton apache2 est serein aussitôt après et
les 2 méchants hôtes ne peuvent plus l'embêter.

-- 
François Lafont

-- 
Lisez la FAQ de la liste avant de poser une question :
http://wiki.debian.org/fr/FrenchLists

Pour vous DESABONNER, envoyez un message avec comme objet unsubscribe
vers debian-user-french-requ...@lists.debian.org
En cas de soucis, contactez EN ANGLAIS listmas...@lists.debian.org
Archive: https://lists.debian.org/539487e8.80...@free.fr

Re: [IPTABLES] Comment lister les paquets rejetés ?


Le 8 juin 14 à 17:57, Francois Lafont a écrit :


Juste pour conclure, je voulais ajouter ceci. Juste après un :

iptables -A INPUT -p tcp --dport 80 -s 72.44.248.136 -j DROP
iptables -A INPUT -p tcp --dport 80 -s 66.23.229.10 -j DROP

*pendant* l'attaque, il est tout à fait possible que ton serveur
apache soit encore dans les choux. En effet, avant la mise en
place des règles ci-dessus, des requêtes http étaient sûrement
en cours et celles-là ton apache souhaite les honorer. Du coup,
ton apache envoie tant bien que mal ses réponses aux méchants
hôtes 72.44.248.136 et 66.23.229.10. Normalement, les 2 méchants
sont censés envoyer un paquet d'acquittement comme quoi ils ont
bien reçu la réponse du serveur. Mais ces paquets d'acquittement
ne peuvent plus arriver car les 2 règles ci-dessus l'empêchent.
Du coup, apache2 cherche à renvoyer à nouveau ses réponses etc.
Et du coup, il continue à être dans les choux pendant un certain
temps.


Oui, c'est très possible. J'ai pensé à autre chose aussi, par rapport  
à ce
que François réfute, c'est que j'ai aussi une règle dans mon firewall  
qui

empêche les connexions établies d'être cassées. Il serait possible que
je sois obligé de demander expressément de casser celles-là, et l'une
après l'autre. Car l'attaquant n'en utilisait qu'une seule à la fois.


En revanche, avec un truc du genre :

1. invoke-rc.d apache2 stop # on arrête toutes les connexions en  
cours.


Oui, mais je marche avec NginX d'une part, et comme j'étais dessus  
aussi,

je n'avais pas envie de me bannir moi-même.

Ceci dit, j'avais installé précédemment un module limiteur qui existe  
sur le

serveur NginX, mais ça n'a pas vraiment gêné le mec pour attaquer.

2.
iptables -A INPUT -p tcp --dport 80 -s 72.44.248.136 -j DROP
iptables -A INPUT -p tcp --dport 80 -s 66.23.229.10 -j DROP

3.
invoke-rc.d apache2 start

il me semble que ton apache2 est serein aussitôt après et
les 2 méchants hôtes ne peuvent plus l'embêter.


J'ai l'impression qu'on était tous les 2 chacun de notre côté à  
contrer l'autre,
et après que je l'ai eu droppé une première fois, il est revenu avec  
l'autre IP.


--
François Lafont

--
Lisez la FAQ de la liste avant de poser une question :
http://wiki.debian.org/fr/FrenchLists

Pour vous DESABONNER, envoyez un message avec comme objet  
unsubscribe

vers debian-user-french-requ...@lists.debian.org
En cas de soucis, contactez EN ANGLAIS listmas...@lists.debian.org
Archive: https://lists.debian.org/539487e8.80...@free.fr



--
Lisez la FAQ de la liste avant de poser une question :
http://wiki.debian.org/fr/FrenchLists

Pour vous DESABONNER, envoyez un message avec comme objet unsubscribe
vers debian-user-french-requ...@lists.debian.org
En cas de soucis, contactez EN ANGLAIS listmas...@lists.debian.org
Archive: 
https://lists.debian.org/cba8d913-c375-4617-9eeb-e524dfbc2...@worldonline.fr

Re: [IPTABLES] Comment lister les paquets rejet és ?


Le 8 juin 14 à 15:53, Denis Mugnier a écrit :


Bonjour,

Le 08/06/2014 14:02, Philippe Gras a écrit :

Le 8 juin 14 à 11:47, Jean-Michel OLTRA a écrit :






C'est un peu ça que j'aimerais arriver à faire chez moi :
Lister les IP qui envoient une requête Get wp-login.php
Selon la fréquence de ces requêtes dans le temps, ACCEPT ou DROP.


--
Je pense que pour avoir des regles en fonction de la fréquence, il  
faut regarder du coté du module limit d'iptables



Ce n'est pas ce que j'ai lu ici:
http://www.bortzmeyer.org/rate-limiting-dos.html

Malheureusement, il ne semble pas que le module recent permette  
d'utiliser des préfixes (par exemple de longueur 26 ou 28) mais  
seulement des adresses IP


Mais c'est effectivement ce que je souhaitais faire au départ…


A+

Denis

--
Lisez la FAQ de la liste avant de poser une question :
http://wiki.debian.org/fr/FrenchLists

Pour vous DESABONNER, envoyez un message avec comme objet  
unsubscribe

vers debian-user-french-requ...@lists.debian.org
En cas de soucis, contactez EN ANGLAIS listmas...@lists.debian.org
Archive: https://lists.debian.org/53946adb.6010...@orange.fr

Re: [IPTABLES] Comment lister les paquets rejet és ?


Je m'ai trompé de ligne :
Le 8 juin 14 à 18:33, Philippe Gras a écrit :


Le 8 juin 14 à 15:53, Denis Mugnier a écrit :


Bonjour,

Le 08/06/2014 14:02, Philippe Gras a écrit :

Le 8 juin 14 à 11:47, Jean-Michel OLTRA a écrit :






C'est un peu ça que j'aimerais arriver à faire chez moi :
Lister les IP qui envoient une requête Get wp-login.php
Selon la fréquence de ces requêtes dans le temps, ACCEPT ou DROP.


--
Je pense que pour avoir des regles en fonction de la fréquence, il  
faut regarder du coté du module limit d'iptables



Ce n'est pas ce que j'ai lu ici:
http://www.bortzmeyer.org/rate-limiting-dos.html

Malheureusement, il ne semble pas que le module recent permette  
d'utiliser des préfixes (par exemple de longueur 26 ou 28) mais  
seulement des adresses IP

[…]
Ce module est très simple. Mais le module limit, comme recent, ne  
permet pas de travailler par préfixe IP.





Mais c'est effectivement ce que je souhaitais faire au départ…


A+

Denis

--
Lisez la FAQ de la liste avant de poser une question :
http://wiki.debian.org/fr/FrenchLists

Pour vous DESABONNER, envoyez un message avec comme objet  
unsubscribe

vers debian-user-french-requ...@lists.debian.org
En cas de soucis, contactez EN ANGLAIS listmas...@lists.debian.org
Archive: https://lists.debian.org/53946adb.6010...@orange.fr

Re: [XFCE] gestion du matériel devenue impossible

2014-06-08 Thread Francois Mescam

Je viens d'avoir un problème similaire sur une machine en testing, xfce
et systemd le tout à jour.

Lorsque j'insère une clef USB ou un disque USB le montage automatique ne
se fait pas et un double clic sur l'icone correspondante provoque une
fenêtre d'erreur impossible de monter le volume ... Not authorized to
perform operation

Après bien des recherches et comparaison avec une autre machine en même
niveau de logiciel et où le montage fonctionne correctement j'ai enfin
trouvé le coupable qui est l'absence de pam_ck_connector.so in
/etc/pam.d/common-session comme indiqué dans
/usr/share/doc/xfce4-session/README.Debian (paquet xfce4-session). En
fait j'avais tous les fichiers common-... qui étaient trop anciens, j'ai
pris ceux de la machine sur laquelle ça marche et maintenant ça roule.

On 20/05/2014 13:28, luc schimpf wrote:
 Effectivement, un downgrade résout le problème des périphériques usb,
 merci.

 Néanmoins, si je peu à nouveau choisir la mise en veille/hibernation
 dans le menu de déconnexion de kde, la machine ne se réveille pas et
 fait un démarrage normal...
 Il doit encore y avoir quelque chose qui manque, mais les logs de
 pm-suspend ne sont pas très loquaces, ou du-moins ils m'indiquent que
 la mise en veille se fait bien, pour autant, la machine ne semble pas
 en être informée..

 Luc Schimpf
 www.au-ptit-bon-air.eu




-- 
 Francois Mescam

-- 
Lisez la FAQ de la liste avant de poser une question :
http://wiki.debian.org/fr/FrenchLists

Pour vous DESABONNER, envoyez un message avec comme objet unsubscribe
vers debian-user-french-requ...@lists.debian.org
En cas de soucis, contactez EN ANGLAIS listmas...@lists.debian.org
Archive: https://lists.debian.org/5394c16d.4090...@mescam.org

Re: [IPTABLES] Comment lister les paquets rejet és ?

2014-06-08 Thread Jean-Michel OLTRA


Bonjour,


Le dimanche 08 juin 2014, Philippe Gras a écrit...


 C'est un peu ça que j'aimerais arriver à faire chez moi :
 Lister les IP qui envoient une requête Get wp-login.php
 Selon la fréquence de ces requêtes dans le temps, ACCEPT ou DROP.

Un hids comme Ossec te permet de créer une règle perso, pour extraire ce
genre de schéma, et y appliquer le remède que tu choisis (drop,
bannissement) dans le cadre de sa réponse active. Ossec utilise un
paramètre timeframe qui donne à l'administrateur toute latitude pour
définir le nombre de correspondances autorisées dans un laps de temps
donné.

www.ossec.net

-- 
jm

-- 
Lisez la FAQ de la liste avant de poser une question :
http://wiki.debian.org/fr/FrenchLists

Pour vous DESABONNER, envoyez un message avec comme objet unsubscribe
vers debian-user-french-requ...@lists.debian.org
En cas de soucis, contactez EN ANGLAIS listmas...@lists.debian.org
Archive: https://lists.debian.org/20140608232026.GC6890@espinasse

Re: Exim4

2014-06-08 Thread latinfo

 -Original Message-
 From: lati...@vcn.bc.ca
 To: debian-user-spanish@lists.debian.org
 Sent: sÃ¡b, 07 jun 2014 19:36
 Subject: Exim4

 Hola lista:

 No tengo ningun problema enviando correos; pero al responder no encuentra
 el dominio. Responde a: nombre_de_maquina.dominio.org

 Tengo configurado el servidor con dpkg-reconfigure asi:

 Nombre: dominio.org
 dominios para los que se recibe correo: dominio.org.

 Esto ha funcionado correctamente por varios anos!
 Agregue en el archivo hosts:

 192.168.5.50dominio.org

 Tenia solamente:
 127.0.0.1   localhost
 192.168.5.50nombre_de_maquina.dominio.org  nombre_de_maquina

 Alguno sabe por donde buscar, por favor?

 Gracias.

 latinfo.

Es mejor si respondes, abajo del texto; lo corrijo; es mejor para cuando
lo lea otra persona. Y por favor responde solo a la lista. He recibido 2
mensajes tuyos!

Gracias por responder, no mencione que es una Estable y quizas no fui
claro. Es, cuando otra persona responde; no tengo acceso a sus log.
gracias por tu atencion.

-- 
To UNSUBSCRIBE, email to debian-user-spanish-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: 
https://lists.debian.org/0569d98611c96afe8939eac4ee1b43c4.squir...@mail.vcn.bc.ca

Re: Exim4

2014-06-08 Thread JulHer




El 08/06/14 02:36, lati...@vcn.bc.ca escribió:

Hola lista:

No tengo ningun problema enviando correos; pero al responder no encuentra
el dominio. Responde a: nombre_de_maquina.dominio.org

Tengo configurado el servidor con dpkg-reconfigure asi:

Nombre: dominio.org
dominios para los que se recibe correo: dominio.org.

Esto ha funcionado correctamente por varios anos!
Agregue en el archivo hosts:

192.168.5.50dominio.org

Tenia solamente:
127.0.0.1   localhost
192.168.5.50nombre_de_maquina.dominio.org  nombre_de_maquina

Alguno sabe por donde buscar, por favor?

Gracias.

latinfo.




Entiendo que el problema es cuando alguien intenta responder a un correo 
tuyo. Si eso es así creo que tienes dos soluciones:


1.- Configurar el DNS de tu dominio para  que haya un registro MX para 
nombre_de_maquina.dominio.org


2.- Configurar exim para que use únicamente el dominio detrás de la @ y 
así cuando te respondan funcione correctamente.


Si quieres algo rápido para salir del problema, en el archivo 
/etc/exim4/email-addresses puedes poner algo como:


usuario: direcc...@dominio.org

y de esa manera los correos que se creen desde usuario saldrán con esa 
dirección de correo.


Un saludo

JulHer


--
To UNSUBSCRIBE, email to debian-user-spanish-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/53941e56.9060...@escomposlinux.org

Re: Exim4

2014-06-08 Thread latinfo



 El 08/06/14 02:36, lati...@vcn.bc.ca escribió:
 Hola lista:

 No tengo ningun problema enviando correos; pero al responder no
 encuentra
 el dominio. Responde a: nombre_de_maquina.dominio.org

 Tengo configurado el servidor con dpkg-reconfigure asi:

 Nombre: dominio.org
 dominios para los que se recibe correo: dominio.org.

 Esto ha funcionado correctamente por varios anos!
 Agregue en el archivo hosts:

 192.168.5.50dominio.org

 Tenia solamente:
 127.0.0.1   localhost
 192.168.5.50nombre_de_maquina.dominio.org  nombre_de_maquina

 Alguno sabe por donde buscar, por favor?

 Gracias.

 latinfo.



 Entiendo que el problema es cuando alguien intenta responder a un correo
 tuyo. Si eso es así creo que tienes dos soluciones:

Gracias por responder JulHer, eso es exactamente.


 1.- Configurar el DNS de tu dominio para  que haya un registro MX para
 nombre_de_maquina.dominio.org

Esto es de dominio.org:
;dominio.org.   IN  MX
;dominio.org.   IN  A

Como se hace, para nombre.dominio.org? sub-dominio?


 2.- Configurar exim para que use únicamente el dominio detrás de la @ y
 así cuando te respondan funcione correctamente.

Agregue nombre.dominio.org;dominio.org en dpkg-reconfigure y nada.
Es de otra forma?


 Si quieres algo rápido para salir del problema, en el archivo
 /etc/exim4/email-addresses puedes poner algo como:

No encontre el archivo, uso carpetas separadas, y encontre:
-config-address-replay:
address_reply:
  debug_print = T: autoreply for $local_part@$domain
  driver = autoreply

Segun veo, indica dominio.org!


 usuario: direcc...@dominio.org

 y de esa manera los correos que se creen desde usuario saldrán con esa
 dirección de correo.

 Un saludo

 JulHer

Agradezco tu atencion.

PD:
Sabes que cambio ha habido? el error, aparecio de pronto y en los
dist-upgrade, nunca se menciono exim4? Tengo temor con OpenSSL!

Gracias.




-- 
To UNSUBSCRIBE, email to debian-user-spanish-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: 
https://lists.debian.org/a812afb4fc684588edbbb2b2bfbeda25.squir...@mail.vcn.bc.ca

Re: Exim4

2014-06-08 Thread JulHer




El 08/06/14 11:50, lati...@vcn.bc.ca escribió:


Si quieres algo rápido para salir del problema, en el archivo
/etc/exim4/email-addresses puedes poner algo como:

No encontre el archivo, uso carpetas separadas, y encontre:
-config-address-replay:
address_reply:
   debug_print = T: autoreply for $local_part@$domain
   driver = autoreply

Segun veo, indica dominio.org!



Hola,

Vamos a ir por partes.

Quizás el archivo esté en /etc/email-addresses en vez de donde te 
comenté yo (culpa mía). Mira a ver si está ahí. Forma parte del paquete 
Debian de exim, así que tiene que estar en algún sitio. Si no lo 
encuentras búscalo con


$ locate email-addresses

También es importante que el cliente de correo que uses tenga bien 
configurada la dirección de correo, para que cuando alguien reciba un 
correo y le de al botón de contestar, pues se conteste a la dirección 
adecuada. Eso en los clientes de correo se puede hacer configurarndo 
tanto el From como el Reply-To.


Un saludo

JulHer


--
To UNSUBSCRIBE, email to debian-user-spanish-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/53943ba2.8050...@escomposlinux.org

RE: OT: Instalar multiples distros en un HDD

2014-06-08 Thread Eugenio Sáenz Munárriz

Estimado Carlos, seguramente existirán 1001 formas de realizar lo que tú 
quieres. Yo te voy a explicar como lo hago yo.

Antes de nada con Gparted, desde un CD o USB live, construyo la tabla de 
particiones del HD. Si vas a instalar windows hazlo el primero y en una 
partición primaria, las de linux hazlo en partición lógica, asi no ocupas las 4 
particiones primarias que como máximo te de deja un HD.

El grub y grub2 te dara la opción de elegir con que S.O. arrancar, ten en 
cuenta que el 1º S.O. de la lista será la ultima distribución que instales, 
esto luego se puede cambiar.

Comparto /home para todas las distribuciones linux, cada distribución con su 
usuario y contraseña (se crea una carpeta en /home por cada uno), así no se 
mezclan datos ni configuraciones, no la formatees (la /home) al instalar una 
nueva xdd. Si quieres pasar datos de una a otra, entras como root y ya .
Cada distribución en una / individual. Una única swap para todas.
Todo en ext4 las linux.

Te pongo un ejemplo de como lo tengo yo actualmente:

/dev/sda1     win7 - 40 GB     
   ntfs
/dev/sda2     intercambio entre linux y win -- 4 GB           ntfs
/dev/sda3     extendida o lógica - 111 GB     ext4
     /dev/sda5     /home  57 GB    
   ext4
     /dev/sda9     libre para futuras instalaciones  30 GB       ext4
                               
                               
           n                   n
     /dev/sda6     Ubuntu -- 10 GB     
   ext4
     /dev/sda8     Debian --- 10 GB    
    ext4
     /dev/sda7     linux-swap - 2 GB

Eugenio Sáenz Munárriz
Linux, software libre


 Date: Fri, 6 Jun 2014 20:17:40 +0200
 Subject: Re: OT: Instalar multiples distros en un HDD
 From: altairli...@gmail.com
 CC: debian-user-spanish@lists.debian.org
 To: debian-user-spanish@lists.debian.org
 
 Me parece mala idea, cada distribución suele tener sus detalles
 propios y podrías tener problemas incluso de acceso.
 
 Una posibilidad que no se si has pensado: usar virtualbox, o algún
 otro software similar, para tener cada distribución de forma
 independiente.
 
 El día 6 de junio de 2014, 1:55, Carlos Carcamo eazyd...@gmail.com escribió:
 Saludos lista, me pregunto si me pueden orientar un poco con un par de
 dudas que tengo.

 Lo que quiero hacer es instalar varias distros en mi disco duro,
 Debia, Centos, Manjaro, Kali.

 He creado una tabla de particiones GPT , y un par de particiones para
 instalar debian, pero me han surgido un par de dudas, en otra pc e
 compartido la carpeta /home entre dos distros sin problemas (dicen que
 no es buena idea eso..), por otro lado me pregunto como hacer con las
 particiones /boot y la swap?

 Según he leído en los foros, se puede compartir la swap pero si doy
 hibernar en un SO, no podre correr otro, que me sugieren ustedes?

 Con la partición /boot es donde tengo la mayor de mis dudas, dado
 que crearia para cada distro su respectiva partición / que sucede
 con la partición /boot? como debería manejar esto? compartirla no
 suena muy bien que digamos pero no tengo idea. Si al crear particiones
 /boot para cada sistema, cuando cargue el grub tendré problemas? o
 igual me reconocerá todos los sistemas instalados?

 Recalcar que he buscado en internet pero decidí preguntar a la lista
 dado que lo que en los foros hay info poco fiable.

 De antemano gracias por sus comentarios...

 --
 El desarrollo no es material es un estado de conciencia metal


 --
 To UNSUBSCRIBE, email to debian-user-spanish-requ...@lists.debian.org
 with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
 Archive: 
 https://lists.debian.org/CADpTsTbAM5Vz1MqGa9:keivfsybz_0soy45e5wo96q4ts...@mail.gmail.com

 
 
 -- 
 To UNSUBSCRIBE, email to debian-user-spanish-requ...@lists.debian.org
 with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
 Archive: 
 https://lists.debian.org/CA+HdPf+VdmH3n650Gn5TpEZhbjESY=HFP2j7wJ-6Ls=f...@mail.gmail.com
 
  

--
To UNSUBSCRIBE, email to debian-user-spanish-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/dub112-w1196e225aba22594b62819edd...@phx.gbl

Problemas de audio Debian Wheezy

2014-06-08 Thread Carlos Carcamo

Saludos lista.

Recientemente acabo de instalar debian en una asus r510c, todo va
excelente excepto por un pequeño problema que no encuentro como
solucionar.

El problema es que si conecto unos speakers a mi laptop no da sonido,
si funcionan los speakers incorporados de mi laoptop mas no cuando
conecto unos en el puerto de sonido, alguna idea de que podría estar
pasando?

de antemano muchas gracias.
-- 
El desarrollo no es material es un estado de conciencia metal


--
To UNSUBSCRIBE, email to debian-user-spanish-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: 
https://lists.debian.org/cadptstauovhsoywcoh+rfijwcc-eqhftlsp-demp8j0bzof...@mail.gmail.com

Re: OT: Instalar multiples distros en un HDD

2014-06-08 Thread Carlos Carcamo

El día 8 de junio de 2014, 11:49, Eugenio Sáenz Munárriz
esmunar...@hotmail.com escribió:
Estimado Carlos, seguramente existirán 1001 formas de realizar lo que tú
quieres. Yo te voy a explicar como lo hago yo.

Antes de nada con Gparted, desde un CD o USB live, construyo la tabla de
particiones del HD. Si vas a instalar windows hazlo el primero y en una
partición primaria, las de linux hazlo en partición lógica, asi no ocupas las
4 particiones primarias que como máximo te de deja un HD.

El grub y grub2 te dara la opción de elegir con que S.O. arrancar, ten en
cuenta que el 1º S.O. de la lista será la ultima distribución que instales,
esto luego se puede cambiar.

Comparto /home para todas las distribuciones linux, cada distribución con
su usuario y contraseña (se crea una carpeta en /home por cada uno), así no
se mezclan datos ni configuraciones, no la formatees (la /home) al instalar
una nueva xdd. Si quieres pasar datos de una a otra, entras como root y ya .
Cada distribución en una / individual. Una única swap para todas.
Todo en ext4 las linux.

Te pongo un ejemplo de como lo tengo yo actualmente:

/dev/sda1 win7 - 40 GB
ntfs
/dev/sda2 intercambio entre linux y win -- 4 GB ntfs
/dev/sda3 extendida o lógica - 111 GB
ext4
/dev/sda5 /home 57 GB
ext4
/dev/sda9 libre para futuras instalaciones 30 GB ext4

n n
/dev/sda6 Ubuntu -- 10 GB
ext4
/dev/sda8 Debian --- 10 GB
ext4
/dev/sda7 linux-swap - 2 GB

Eugenio Sáenz Munárriz
Linux, software libre

Date: Fri, 6 Jun 2014 20:17:40 +0200
Subject: Re: OT: Instalar multiples distros en un HDD
From: altairli...@gmail.com
CC: debian-user-spanish@lists.debian.org
To: debian-user-spanish@lists.debian.org

Me parece mala idea, cada distribución suele tener sus detalles
propios y podrías tener problemas incluso de acceso.

Una posibilidad que no se si has pensado: usar virtualbox, o algún
otro software similar, para tener cada distribución de forma
independiente.

El día 6 de junio de 2014, 1:55, Carlos Carcamo eazyd...@gmail.com
escribió:
Saludos lista, me pregunto si me pueden orientar un poco con un par de
dudas que tengo.

Lo que quiero hacer es instalar varias distros en mi disco duro,
Debia, Centos, Manjaro, Kali.

He creado una tabla de particiones GPT , y un par de particiones para
instalar debian, pero me han surgido un par de dudas, en otra pc e
compartido la carpeta /home entre dos distros sin problemas (dicen que
no es buena idea eso..), por otro lado me pregunto como hacer con las
particiones /boot y la swap?

Según he leído en los foros, se puede compartir la swap pero si doy
hibernar en un SO, no podre correr otro, que me sugieren ustedes?

Con la partición /boot es donde tengo la mayor de mis dudas, dado
que crearia para cada distro su respectiva partición / que sucede
con la partición /boot? como debería manejar esto? compartirla no
suena muy bien que digamos pero no tengo idea. Si al crear particiones
/boot para cada sistema, cuando cargue el grub tendré problemas? o
igual me reconocerá todos los sistemas instalados?

Recalcar que he buscado en internet pero decidí preguntar a la lista
dado que lo que en los foros hay info poco fiable.

De antemano gracias por sus comentarios...

Gracias a todos por responder, ya he instalado correctamente debian, y
pues ya cree la partición para EFI que me solicitaba la instalación de
debian, lo hice durante la instalación de debian y todo me funciona
bien, por el momento tengo la siguiente tabla de particiones GPT:

/boot/efi
/ -- para debian
/home
swap

y he dejado espacio libre para instalar otros SO posteriormente, en
caso de windows no creo necesitar instalarlo en mi pc, de ser
necesario usare vitrualbox para ello, me sugieren arriba que porque no
uso virtualbox para instalar varias distros a eso respondo nada más
que no me gusta usar mucho virtualbox, prefiero correr los sistemas
sin virtualbox, en caso de windows es diferente, simplemente no quiero
winbugs en mi pc jajaja

Gracias de nuevo a todos los que se tomaron el tiempo de responder y
aclarar mis dudas...

--
El desarrollo no es material es un estado de conciencia metal

--
To UNSUBSCRIBE, email to debian-user-spanish-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive:
https://lists.debian.org/cadptstb_2o5qjhx5kjzx6yp+464ocs8yaufxcbzs6zgqrh6...@mail.gmail.com

Re: Problemas de audio Debian Wheezy

2014-06-08 Thread alexlikerock-Gmail





Recientemente acabo de instalar debian en una asus r510c, todo va
excelente excepto por un pequeño problema que no encuentro como
solucionar.

El problema es que si conecto unos speakers a mi laptop no da sonido,
si funcionan los speakers incorporados de mi laoptop mas no cuando
conecto unos en el puerto de sonido, alguna idea de que podría estar
pasando?

de antemano muchas gracias.




instala  qasconfig  ese programita  te da un alto sentido de control 
de los  puertos de salida de audio.

 un saludote

--
**
software libre no significa gratis: richard m. stallman
http://wiki.debian.org/es/NormasLista#resumen
http://wiki.debian.org/es/NormasLista/Gmail
http://es.wikipedia.org/wiki/Top-posting


--
To UNSUBSCRIBE, email to debian-user-spanish-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/5394e054.8010...@gmail.com

(OFF) Cobol x Java

2014-06-08 Thread Rubens Junior

Prezados,

Onde eu trabalho estao migrando os programas de COBOL pra JAVA e assim
reduzir os custos do aluguel do mainframe. Eu sinceramente sou contra, mas
como sou PEAO e os executivos decidiram, a area de TI tem q obedecer. Boa
parte dos programas foram traduzidos manualmente, agora os executivos
estao querendo traduzir automaticamente os programas restantes depois q
verificaram no mercado q existem sistemas pra isso (fonte:
http://abr.ai/1rYofzd)

Uma empresa ja foi no escritorio demonstrar essa traducao para os
peixes-grandes, e eles ficaram com aquela cara de assustados oh
Eu nao assisti a demonstracao, entao nao posso falar a respeito.

Pergunto aqui na comunidade se alguem trabalha ou conhece uma empresa q
presta esse tipo de servico/suporte q traduz programas em COBOL para JAVA.
Se tiverem, peco q me enviem os contatos (nome, email, telefone, site,
empresa, etc) e assim eu encaminharei para os responsaveis q com certeza
irao procurar esse contato e quem sabe agendar uma demonstracao tbm.

Nao sou programador COBOL e nem JAVA, na empresa eu trabalho numa area de
severinon, suporte aos usuarios de determinados sistemas, homologar,
requisitos, relacionamento entre a empresa e alguns terceirizados, etc.

OBS: Tenho uma leve nocao de programacao COBOL85, nas pesquisas q eu fiz,
vi q pra linux nao existe um compilador nativo. Existe o OpenCobol q
primeiramente traduz o codigo pra C e depois compila. Fiquei imaginando se
esses caras nao pegaram um programa desse tipo e em vez de gerar em C
fizeram uma adequacao pra gerar em JAVA e assim ganhar dinheiro com
isso.

-- 
Atenciosamente,
Rubens S. O. Jr

Como ligar internet sem Fn+F3? Como identificar o pendrive?

2014-06-08 Thread Thiago Zoroastro

 
Pessoal,
 
Um amigo meu tem um netbook da Philco que originalmente vinha com Linux dizendo "Tem coisas que só a Philco faz pra você", que estava com Windows 7. O netbook dele, diz ele já estava a ns 2 ou 3 anos desligado com o teclado estragado e ele perdido o carregador. Ele faz teatro na UFSJ, enfim, ele não utiliza muito computadores.
 
Daí ele não conseguiu trocar o teclado e o colega de república dele emprestou o teclado da Macintosh dos ANOS 90 RSRSRS. E instalei para ele o juntaDados ontem. Daí não temos a tecla Fn+F3 que ativa a internet no Philco e não consegui ativar a internet, parece que o botão da rede wireless estava TRAVADO em off, parecendo que somente o Fn+F3 ativaria...
 
Tem as entradas USB, do netbook Philco e do teclado Apple, que nenhuma delas encontra os pendrives ou ao menos algo como sdb(x) ou sdc(x) no /dev/ ; o teclado da Apple conectado ao Philco tem DUAS entradas USB que também não conectam os pendrives.
 
Instrução?
 
. Isto funciona?
$ rfkill unblock all
Fonte: http://ubuntuforum-br.org/index.php?topic=102160.0
 
Realmente desbloqueia as redes, mas ainda falta testá-lo com o teclado montado em um lugar que tenha internet junto com ele.
 
 +1 Experiência
 
Thiago Zoroastro
 http://blogoosfero.cc/profile/thiagozoroastro

URL em php para troca de senha de usuarios no AD

2014-06-08 Thread Marcio Rufino

Boa noite pessoal,

preciso implementar uma url que permita a troca de senhas de usuarios no
active directory 2008.
Vi algumas coisas em PHP no google.
Alguem tem isso funcionando para trocarmos um ideia?

Obrigado.

Configurar multiplos gerenciadores de janela no xdm

2014-06-08 Thread Xande Pìna

Boa noite a todos,
Prezados, instalei o debian 7 wheezy no meu notebook e sou adepto do
clássico, sendo assim instalei os seguintes pacotes:

jwm, lxde e o xdm para gerenciar.

Porém me deparei com o seguinte problema, o XDM quando eu efetuo o login me
direciona direto pro LXDE sem a opção de utilizar o jwm, gostaria de saber
como eu habilito a opção de listar os 2 window manager.
Procurei, procurei e não encontrei nada na internet.


Muito obrigado
[], Alexandre Pina

Re: Como ligar internet sem Fn+F3? Como identificar o pendrive?

2014-06-08 Thread Listeiro 037



Já procuraram no Mercado Livre por um teclado compatível prá substituir?


Em Sun, 08 Jun 2014 14:57:58 -0300
Thiago Zoroastro thiago.zoroas...@bol.com.br escreveu:

  
 Pessoal,
  
 Um amigo meu tem um netbook da Philco que originalmente vinha com
 Linux dizendo Tem coisas que só a Philco faz pra você, que estava
 com Windows 7. O netbook dele, diz ele já estava a ns 2 ou 3 anos
 desligado com o teclado estragado e ele perdido o carregador. Ele faz
 teatro na UFSJ, enfim, ele não utiliza muito computadores. Daí ele
 não conseguiu trocar o teclado e o colega de república dele emprestou
 o teclado da Macintosh dos ANOS 90 RSRSRS. E instalei para ele o
 juntaDados ontem. Daí não temos a tecla Fn+F3 que ativa a internet no
 Philco e não consegui ativar a internet, parece que o botão da rede
 wireless estava TRAVADO em off, parecendo que somente o Fn+F3
 ativaria... Tem as entradas USB, do netbook Philco e do teclado
 Apple, que nenhuma delas encontra os pendrives ou ao menos algo como
 sdb(x) ou sdc(x) no /dev/ ; o teclado da Apple conectado ao Philco
 tem DUAS entradas USB que também não conectam os pendrives.
 Instrução? . Isto funciona? $ rfkill unblock all Fonte:
 http://ubuntuforum-br.org/index.php?topic=102160.0 Realmente
 desbloqueia as redes, mas ainda falta testá-lo com o teclado montado
 em um lugar que tenha internet junto com ele. +1 Experiência Thiago
 Zoroastro http://blogoosfero.cc/profile/thiagozoroastro


-- 
Encryption works. Properly implemented strong crypto systems are one of
the few things that you can rely on. Unfortunately, endpoint security
is so terrifically weak that NSA can frequently find ways around it. —
Edward Snowden


--
To UNSUBSCRIBE, email to debian-user-portuguese-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/350465.73184...@smtp110.mail.ne1.yahoo.com

Re: URL em php para troca de senha de usuarios no AD

2014-06-08 Thread Geowany Alves

Em 8 de junho de 2014 17:31, Marcio Rufino marciorufin...@gmail.com
escreveu:

 Boa noite pessoal,

 preciso implementar uma url que permita a troca de senhas de usuarios no
 active directory 2008.
 Vi algumas coisas em PHP no google.
 Alguem tem isso funcionando para trocarmos um ideia?

 Obrigado.



Boa noite, Marcio!

Acredito que uma solução seria usar o LDAP Tool Box - Self Service Password
que também é feito em PHP. Recentemente escrevi uma dica no site Viva o
Linux sobre a instalação do SSP para OpenLDAP. Se você olhar o arquivo de
configuração, verá que também existe opção para uso no AD mas nesse caso
terá que gerar um certificado do servidor AD e instalá-lo no servidor web.
Existem algumas formas de redefinição de senha como através de email,
pergunta/resposta secreta e até envio de SMS (não testei).


Segue o link:
http://www.vivaolinux.com.br/dica/LDAP-Tool-Box-Project-Self-Service-Password


Att,


*Geowany Galdino Alves*
*Assistente em Tecnologia da Informação - NTI/UFAC*
*Acadêmico em Licenciatura Plena - HISTÓRIA/UFAC*

Re: Should I install chkrootkit?

2014-06-08 Thread Charles Kroeger

On Fri, 06 Jun 2014 09:40:02 +0200
David Guyot david.gu...@europecamions-interactive.com wrote:

 I would suggest you to reinstall sysvinit

Thanks I'll do that and thanks for the explanation regarding the binary file

If that doesn't work, that result could be a false positive

That could be the case. I just installed also rkhunter and ran that and it found
no Suckit rootkit so that was encouraging. There were however a couple of 
warnings
from rkhunter: 

Warning: Hidden directory found: '/etc/.java'
Warning: Hidden file found: /etc/.fstab: ASCII text

How does one reveal a hidden file and directory?

-- 
CK


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/bvidbnf4r3...@mid.individual.net

Re: Package system totaly a complete mess

2014-06-08 Thread Thierry de Coulon

On Sunday 08 June 2014 00.10:02 Lisi Reisz wrote:
 On Saturday 07 June 2014 21:41:17 Slavko wrote:
  apt-get is quicker than aptitude and has (by the release note)

 The release notes have not been consistent about which they recommend for a
 particular upgrade.  Both have been recommended on occasion.

 I prefer aptitude because I know what I am doing with it (sort of) and
 because I don't have such a plethora of commands: apt-get, apt-cache,
 apt-file etc. to remember.  But I use apt-x on occasion since it is no
 longer recommended that you should stick rigidly with only one of them.  I
 strongly dislike Synaptic for almost every job.  Each to his own. :-) 
 That's one of the things I love about Debian and Linux.

 Lisi


WIth apt-get you must know what to type, this is not easy if you don't use it 
frequently.

Having looked nearer at aptitude, I will sure play with it on some 
seconcondary machine before typing g g on my main machine because if it 
removes over 700 packages and I overlooked something, I'd better have a 
backup (which I do have, actually :).

Synaptic is easy to use and it does usually a good job at adding/removing 
stuff provided with the distribution, but it easily creates broken or 
problematic situation.

My problem, as far as I can track it down, comes from a mix of (personnal) 
problems:

- this was a clean wheezy install
- I upgraded my machine to a haswell board, so I had to istall a backport  
kernel
- I also wanted to try different database solutions that required newer libc6 
versions, that I had to get from testing

I guess no Debian package manager likes this mix of origins. I took a look at 
pinning, but there is no simple solution there either.

Upgrading to a full Jessie might be a solution, but I use (and love, and am 
not about to change) Trinity Desktop as my DE, and there is no jessie support 
yet (I could not get the nightly builds to install compeletly).

So the problem ultimately comes from a typical Debian problem, which is also 
one of Debian's plus points (I'm not ranting, it's a fact): Wheezy is a 
little more than one year old, but developpers didn't stop in 2013. Stable 
kernel is at 3.12 (longterm), new hardware is being build in our computers. 
Wether software requires the lastest libraries or the developper just used 
them I don't know (sometimes just linking the new libname to an an older lib 
works...).

So what I discovered is: don't believe those that say just add this 
repository and pull that stuff from testing/unstable. While  it *may* work, 
it ends up putting your system in a dead end.

This being said, pure wheezy simply can't work on my machine (no graphics, 
no network, not even a hard disc...) so the only other choice is another 
distribution until Jessie becomes stable.

I can't stand Ubuntu(s), but openSuSE ssems OK (even if i had a hell of a time 
getting gscan2pdf to work). Zypper and Yast have their problems too, 
anyway...

Life would be boring if there where not the computers :))

Thierry


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/201406080840.05963.tcou...@decoulon.ch

Re: Killfiling: was Should I install chkrootkit?

As we can see now, killfiling Horatio or banning him from the list is
impossible, he simply will use another email address.

Jerry, did you notice that there also was sent a mail to the Debian
off-topic list, most likely from  Horatio, using the
j.stuc...@outlook.com address?


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/1402210116.849.17.camel@archlinux

Re: Package system totaly a complete mess

Thierry de Coulon tcou...@decoulon.ch writes:

Hello Thierry.

 This being said, pure wheezy simply can't work on my machine (no graphics, 
 no network, not even a hard disc...) so the only other choice is another 
 distribution until Jessie becomes stable.

 I can't stand Ubuntu(s), but openSuSE ssems OK (even if i had a hell
 of a time getting gscan2pdf to work). Zypper and Yast have their
 problems too, anyway...

I did start with SuSE in '99, then used Gentoo 5yrs and moved to Arch
(5yrs), played a bit with Frugal and in the meantime did bunch of
Ubuntu installations. Also had short affair with Free/PC-BSD. However,
now I've settled on Debian (Sid) and must say that it brings me quite
fresh software and is way more stable than all other distributions which
I used in the past. (I do not perform 'apt-get upgrade' every day).


As far as DEs are concerned I have some parts of Xfce installed (mostly
to have Thunar for other family members), but, otherwise, i3 wm
(http://i3wm.org/) with its multiple workspaces, statusbar, ability to
launch specific apps on specific workspaces etc. is all I need
desktop-wise.

Disclaimer: Never used Trinity and KDE-0.9.x was last time when I played
with KDE. ;)


Sincerely,
Gour

-- 
A person is said to be elevated in yoga when, having renounced 
all material desires, he neither acts for sense gratification 
nor engages in fruitive activities.


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/87zjhn7tfm@atmarama.net

Auto-emptying of trash.

2014-06-08 Thread Sharon Kimble

Revisiting a question that I asked in March last year about how to
auto-empty a trash bin.

This has worked very well until today, when on one of my drives it
also deleted the trash bin as well, so my follow-on script to give
me the size of my trash bin failed as there wasn’t a trash bin to
evaluate!

Here is the script lines -
--8---cut here---start-8---
find /media/boudiccas/back2/.Trash-1000 -type f -mtime +$days -delete;
find /media/boudiccas/back2/.Trash-1000 -depth -type d -exec rmdir 
--ignore-fail-on-non-empty {} +;
--8---cut here---end---8---

and this is the evaulation script line -
--8---cut here---start-8---
echo 'Back2' - $(du -sh /media/boudiccas/back2/.Trash-1000 | cut -f1)
--8---cut here---end---8---

How can I get it such that it empties the trash bin but does not
delete the bin itself please?

Thanks
Sharon.
-- 
A taste of linux = http://www.sharons.org.uk
my git repo = https://bitbucket.org/boudiccas/dots
TGmeds = http://www.tgmeds.org.uk
Debian testing, fluxbox 1.3.5, emacs 24.3.91.1


signature.asc
Description: PGP signature

Re: Auto-emptying of trash.

That's strange, since rmdir --ignore-fail-on-non-empty seemingly
shouldn't remove the directory. I wasn't aware about this, so I tested
it, resp. compared it to rm -r [1].

Perhaps you should post the complete script, the culprit seems not to be
rmdir.

[1]
[rocketmouse@archlinux ~]$ touch ~/Desktop/test ~/Desktop/.test
[rocketmouse@archlinux ~]$ ls -hAl Desktop
total 0
-rw-r--r-- 1 rocketmouse rocketmouse 0 Jun  8 10:33 test
-rw-r--r-- 1 rocketmouse rocketmouse 0 Jun  8 10:33 .test
[rocketmouse@archlinux ~]$ rm -r ~/Desktop
[rocketmouse@archlinux ~]$ ls -hAld Desktop
ls: cannot access Desktop: No such file or directory
[rocketmouse@archlinux ~]$ mkdir Desktop ; touch ~/Desktop/test ~/Desktop/.test
[rocketmouse@archlinux ~]$ ls -hAl Desktop
total 0
-rw-r--r-- 1 rocketmouse rocketmouse 0 Jun  8 10:34 test
-rw-r--r-- 1 rocketmouse rocketmouse 0 Jun  8 10:34 .test
[rocketmouse@archlinux ~]$ rmdir --ignore-fail-on-non-empty ~/Desktop
[rocketmouse@archlinux ~]$ ls -hAld Desktop
drwxr-xr-x 2 rocketmouse rocketmouse 4.0K Jun  8 10:34 Desktop


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/1402216816.810.11.camel@archlinux

Re: Auto-emptying of trash.

On Sun, 2014-06-08 at 10:40 +0200, Ralf Mardorf wrote:
 That's strange, since rmdir --ignore-fail-on-non-empty seemingly
 shouldn't remove the directory. I wasn't aware about this, so I tested
 it, resp. compared it to rm -r [1].
 
 Perhaps you should post the complete script, the culprit seems not to be
 rmdir.
 
 [1]
 [rocketmouse@archlinux ~]$ touch ~/Desktop/test ~/Desktop/.test
 [rocketmouse@archlinux ~]$ ls -hAl Desktop
 total 0
 -rw-r--r-- 1 rocketmouse rocketmouse 0 Jun  8 10:33 test
 -rw-r--r-- 1 rocketmouse rocketmouse 0 Jun  8 10:33 .test
 [rocketmouse@archlinux ~]$ rm -r ~/Desktop
 [rocketmouse@archlinux ~]$ ls -hAld Desktop
 ls: cannot access Desktop: No such file or directory
 [rocketmouse@archlinux ~]$ mkdir Desktop ; touch ~/Desktop/test 
 ~/Desktop/.test
 [rocketmouse@archlinux ~]$ ls -hAl Desktop
 total 0
 -rw-r--r-- 1 rocketmouse rocketmouse 0 Jun  8 10:34 test
 -rw-r--r-- 1 rocketmouse rocketmouse 0 Jun  8 10:34 .test
 [rocketmouse@archlinux ~]$ rmdir --ignore-fail-on-non-empty ~/Desktop
 [rocketmouse@archlinux ~]$ ls -hAld Desktop
 drwxr-xr-x 2 rocketmouse rocketmouse 4.0K Jun  8 10:34 Desktop

PS:

But rmdir doesn't remove empty the directory ;).

[rocketmouse@archlinux ~]$ rmdir --ignore-fail-on-non-empty ~/Desktop
[rocketmouse@archlinux ~]$ ls -hAl ~/Desktop
total 0
-rw-r--r-- 1 rocketmouse rocketmouse 0 Jun  8 10:34 test
-rw-r--r-- 1 rocketmouse rocketmouse 0 Jun  8 10:34 .test



-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/1402217056.810.12.camel@archlinux

Re: Auto-emptying of trash.

On Sun, 2014-06-08 at 10:44 +0200, Ralf Mardorf wrote:
 On Sun, 2014-06-08 at 10:40 +0200, Ralf Mardorf wrote:
  That's strange, since rmdir --ignore-fail-on-non-empty seemingly
  shouldn't remove the directory. I wasn't aware about this, so I tested
  it, resp. compared it to rm -r [1].
  
  Perhaps you should post the complete script, the culprit seems not to be
  rmdir.
  
  [1]
  [rocketmouse@archlinux ~]$ touch ~/Desktop/test ~/Desktop/.test
  [rocketmouse@archlinux ~]$ ls -hAl Desktop
  total 0
  -rw-r--r-- 1 rocketmouse rocketmouse 0 Jun  8 10:33 test
  -rw-r--r-- 1 rocketmouse rocketmouse 0 Jun  8 10:33 .test
  [rocketmouse@archlinux ~]$ rm -r ~/Desktop
  [rocketmouse@archlinux ~]$ ls -hAld Desktop
  ls: cannot access Desktop: No such file or directory
  [rocketmouse@archlinux ~]$ mkdir Desktop ; touch ~/Desktop/test 
  ~/Desktop/.test
  [rocketmouse@archlinux ~]$ ls -hAl Desktop
  total 0
  -rw-r--r-- 1 rocketmouse rocketmouse 0 Jun  8 10:34 test
  -rw-r--r-- 1 rocketmouse rocketmouse 0 Jun  8 10:34 .test
  [rocketmouse@archlinux ~]$ rmdir --ignore-fail-on-non-empty ~/Desktop
  [rocketmouse@archlinux ~]$ ls -hAld Desktop
  drwxr-xr-x 2 rocketmouse rocketmouse 4.0K Jun  8 10:34 Desktop
 
 PS:
 
 But rmdir doesn't remove empty the directory ;).
 
 [rocketmouse@archlinux ~]$ rmdir --ignore-fail-on-non-empty ~/Desktop
 [rocketmouse@archlinux ~]$ ls -hAl ~/Desktop
 total 0
 -rw-r--r-- 1 rocketmouse rocketmouse 0 Jun  8 10:34 test
 -rw-r--r-- 1 rocketmouse rocketmouse 0 Jun  8 10:34 .test

Oops, pardon you want to delete dirs inside the trash dir?!

It doesn't work either [2]. Is this something that should work in
combination with find?

[2]
[rocketmouse@archlinux ~]$ mkdir ~/Desktop/testdir ; touch 
~/Desktop/testdir/test ~/Desktop/testdir/.test
[rocketmouse@archlinux ~]$ ls -hAl ~/Desktop/testdir
total 0
-rw-r--r-- 1 rocketmouse rocketmouse 0 Jun  8 10:50 test
-rw-r--r-- 1 rocketmouse rocketmouse 0 Jun  8 10:50 .test
[rocketmouse@archlinux ~]$ rmdir --ignore-fail-on-non-empty ~/Desktop/testdir
[rocketmouse@archlinux ~]$ ls -hAl ~/Desktop/testdir
total 0
-rw-r--r-- 1 rocketmouse rocketmouse 0 Jun  8 10:50 test
-rw-r--r-- 1 rocketmouse rocketmouse 0 Jun  8 10:50 .test
[rocketmouse@archlinux ~]$ ls -hAld ~/Desktop/testdir
drwxr-xr-x 2 rocketmouse rocketmouse 4.0K Jun  8 10:50 
/home/rocketmouse/Desktop/testdir



-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/1402217660.810.15.camel@archlinux

Re: Killfiling: was Should I install chkrootkit?

On 8/06/2014 4:48 PM, Ralf Mardorf wrote:
 As we can see now, killfiling Horatio or banning him from the list is
 impossible, he simply will use another email address.
 
 Jerry, did you notice that there also was sent a mail to the Debian
 off-topic list, most likely from  Horatio, using the
 j.stuc...@outlook.com address?

I don't think there is much doubt whom it is from the posting style
is exactly like Horatio.

:(

A.


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/53942877.2000...@affinityvision.com.au

Re: Auto-emptying of trash.

2014-06-08 Thread Filip

Sharon Kimble boudic...@skimble.plus.com writes:

 Revisiting a question that I asked in March last year about how to
 auto-empty a trash bin.

 This has worked very well until today, when on one of my drives it
 also deleted the trash bin as well, so my follow-on script to give
 me the size of my trash bin failed as there wasn’t a trash bin to
 evaluate!

 Here is the script lines -
 find /media/boudiccas/back2/.Trash-1000 -type f -mtime +$days -delete;
 find /media/boudiccas/back2/.Trash-1000 -depth -type d -exec rmdir 
 --ignore-fail-on-non-empty {} +;

 and this is the evaulation script line -
 echo 'Back2' - $(du -sh /media/boudiccas/back2/.Trash-1000 | cut -f1)

 How can I get it such that it empties the trash bin but does not
 delete the bin itself please?

 Thanks
 Sharon.

Add '-mindepth 1' to the conditions, so the that actions actions in the
find command only apply to the directory levels below the starting
level.


--
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/877g4r69xt@orac.fil

Re: Gnome 2, 3.. And then 2 ?

2014-06-08 Thread Diogene Laerce


 Have you consulted the Debian Reference Manual before you posted your
 question here?

 Don't be another Horatio.

 
 Jerry S.
 
 Warning - faker here.  Check the email headers - this was NOT from my
 account.

Most of the time I don't even bother to respond to that kind of answer
anyway..

-- 
“One original thought is worth a thousand mindless quotings.”
“Le vrai n'est pas plus sûr que le probable.”

  Diogene Laerce



signature.asc
Description: OpenPGP digital signature

Re: Should I install chkrootkit?

2014-06-08 Thread Lisi Reisz

On Sunday 08 June 2014 00:05:10 lati...@vcn.bc.ca wrote:
 It is not racism, the meaning is: someone who wants to control the
 World.

That is not just racist, but extraordinarily offensive and laughably 
inaccurate.

Lisi


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/201406081058.29836.lisi.re...@gmail.com

Re: Auto-emptying of trash.

Ahoj,

Dňa Sun, 08 Jun 2014 09:03:48 +0100 Sharon Kimble
boudic...@skimble.plus.com napísal:

 Revisiting a question that I asked in March last year about how to
 auto-empty a trash bin.
 

I am created this for cca 2 years (sorry, comments in my language). It
takes mount points for block devices, check the Trash-* dirs and then
uses autotrash to take action:

#!/bin/bash
#
#  empty_trash.sh
#  
#  Copyright 2012 Slavko li...@slavino.sk
#  
#  This program is free software; you can redistribute it and/or modify
#  it under the terms of the GNU General Public License as published by
#  the Free Software Foundation; either version 2 of the License, or
#  (at your option) any later version.
#  
#  This program is distributed in the hope that it will be useful,
#  but WITHOUT ANY WARRANTY; without even the implied warranty of
#  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
#  GNU General Public License for more details.
#  
#  You should have received a copy of the GNU General Public License
#  along with this program; if not, write to the Free Software
#  Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston,
#  MA 02110-1301, USA.

usage() {
# malý pomocník
echo -e Použitie:
echo -e \t$(basename $0) [ -hrs ] [ -d dni ]
echo -e **
echo -e 
echo -e \t-r\t- reálne vyprázdnenie koša
echo -e \t-s\t- reálne vyprázdnenie koša so zobrazením štatistiky
echo -e \t-d dni\t- vymazať súbory staršie ako počet dní [predvoelne 
10]
echo -e \t-h\t- vypíše tohoto pomocníka a skončí
}

STARE=10
PARAMS=--dry-run --stat
VERBOSE=yes

# spracovanie parametrov vstupu
while getopts hrsd: OPT; do
  case $OPT in
  h) # pomocník
usage
exit 0
;;
  r) # realne vykonanie
PARAMS=
VERBOSE=no
;;
  s) # realne vykonanie so štatistikami
PARAMS=--stat
VERBOSE=yes
;;
  d) # počet dní veku položky na vymazanie
STARE=$OPTARG
[ $STARE -lt 1 ]  STARE=1
;;
  \?) # neznámy parameter
usage
exit 1
;;
   esac
done

shift $(expr $OPTIND - 1)

# hlavný kôš používateľa (XDG)
if [ -z $XDG_DATA_HOME ]; then
BASE_TRASH=$HOME/.local/share
else
BASE_TRASH=$XDG_DATA_HOME
fi

BASE_TRASH=$BASE_TRASH/Trash

if [ -d $BASE_TRASH/info ]; then
[ $VERBOSE != no ]  echo $BASE_TRASH:
autotrash --days $STARE --trash-path $BASE_TRASH $PARAMS
fi

# pre každý prípojný bod, ktorý je blokové zariadenie
for MOUNTPOINT in $(mount | egrep ^/dev | awk '{print $1 @ $3}'); do
DEVIC=${MOUNTPOINT/@*}
CESTA=${MOUNTPOINT#*@}
TRASH=${CESTA}/.Trash-${UID}
if [ -d ${TRASH}/info ]; then
[ $VERBOSE != no ]  echo
[ $VERBOSE != no ]  echo $TRASH
autotrash --days $STARE --trash-path $TRASH $PARAMS
fi
done

regards

-- 
Slavko
http://slavino.sk


signature.asc
Description: PGP signature

Re: Package system totaly a complete mess

Ahoj,

Dňa Sat, 7 Jun 2014 23:10:02 +0100 Lisi Reisz lisi.re...@gmail.com
napísal:

 I prefer aptitude because I know what I am doing with it (sort of)
 and because I don't have such a plethora of commands: apt-get,
 apt-cache, apt-file etc. to remember.  But I use apt-x on occasion
 since it is no longer recommended that you should stick rigidly with
 only one of them.  I strongly dislike Synaptic for almost every job.
 Each to his own. :-)  That's one of the things I love about Debian
 and Linux.

Sure, here is today example (it comes from my Raspbian with recompiled
packages from sid in my own repo):

LANG=C apt-get upgrade
Reading package lists... Done
Building dependency tree   
Reading state information... Done
The following packages have been kept back:
  uwsgi uwsgi-core
0 upgraded, 0 newly installed, 0 to remove and 2 not upgraded.

And now, why they are not upgraded?!

Then i run aptitude and after some keypress is see, that there is one
conflict with some co-package (cgi plugin) from old uwsgi version.

regards

-- 
Slavko
http://slavino.sk


signature.asc
Description: PGP signature

Re: Package system totaly a complete mess

Slavko li...@slavino.sk writes:

 Then i run aptitude and after some keypress is see, that there is one
 conflict with some co-package (cgi plugin) from old uwsgi version.

I must say that I'm still quite noobie when it comes to package
management on Debian mostly using apt-get/synaptic and I
read/heard somewhere that for Sid those are recommended over aptitude?

Do I miss something and/or what would be recommended procedure for
apt-get/synaptic -- synaptic migration?


Sincerely,
Gour

-- 
You have a right to perform your prescribed duty, but you
are not entitled to the fruits of action. Never consider 
yourself the cause of the results of your activities,
and never be attached to not doing your duty.


pgpfnnjOZKUY9.pgp
Description: PGP signature

Re: Package system totaly a complete mess

On Du, 08 iun 14, 12:27:04, Gour wrote:
 Slavko li...@slavino.sk writes:
 
  Then i run aptitude and after some keypress is see, that there is one
  conflict with some co-package (cgi plugin) from old uwsgi version.
 
 I must say that I'm still quite noobie when it comes to package
 management on Debian mostly using apt-get/synaptic and I
 read/heard somewhere that for Sid those are recommended over aptitude?

Especially on sid aptitude (in interactive mode) can be very useful, but 
beware of #570377.
 
 Do I miss something and/or what would be recommended procedure for
 apt-get/synaptic -- synaptic migration?

There is no procedure, just use which one you like/need/etc.

Kind regards,
Andrei
-- 
http://wiki.debian.org/FAQsFromDebianUser
Offtopic discussions among Debian users and developers:
http://lists.alioth.debian.org/mailman/listinfo/d-community-offtopic
http://nuvreauspam.ro/gpg-transition.txt


signature.asc
Description: Digital signature

Re: Package system totaly a complete mess

On Sb, 07 iun 14, 09:48:44, Thierry de Coulon wrote:
 Hello all,
 
 I've lived for years using synaptic and I am no so used to aptitude - and I 
 don't want to make mistakes...
 
 Possibly my installation is now in such a state that I should reinstall, but 
 everything *is* working. Anyway:
 
 - searching for broken packages gives 0 packages in synatiptic but 6 packages 
 in aptitude.
 
Please post the output of

aptitude search '?broken'

 - marking upgradable packages causes both to want to remove lots of things 
 (including parts of cups, Gimp, and of cours all my DE).
 
 - If I try to update with aptitude it gives me a liste of packages that 
 should 
 be removed because they are no more used, which is nonsense because most of 
 them ARE in current use.

Apt/itude's definition of 'unused' is automatically installed (i.e. as 
dependencies), nothing depends on them (anymore).

 I am thinking all this comes from the fact that I installed Wheezy with 
 Gnome, 
 installed another DE, then removed *parts* of gnome, and the system is 
 thinking because part of Gnome is missing, it should clean up and remove 
 anything that needs it (the list of removal is long, but does include 
 gftp and so).

Yep.

 Whats more, the system seems not logical, as it wants to remove Gimp 
 but complains that gimp-data (not to be removed) needs Gimp

 Any way to bring this mess in order?

If you're new with aptitude this may be easier to sort out with apt. Try 
this:

apt-get update # optional, but safe
apt-get upgrade # safe, doesn't ever remove packages
apt-get dist-upgrade # carefully check proposed removals

When running these apt-get will tell you that some packages are no 
longer used and you should use 'autoremove' to get rid of them. Don't do 
that (just yet). Instead use

apt-mark manual package

to mark as manually installed any package you know you actually need. 
Don't bother with libraries or -data packages, because these should be 
kept as dependencies. When you're done try

apt-get autoremove

If you're still not satisfied with the outcome mark some more packages.

Kind regards,
Andrei
-- 
http://wiki.debian.org/FAQsFromDebianUser
Offtopic discussions among Debian users and developers:
http://lists.alioth.debian.org/mailman/listinfo/d-community-offtopic
http://nuvreauspam.ro/gpg-transition.txt


signature.asc
Description: Digital signature

Re: Package system totaly a complete mess

Ahoj,

Dňa Sun, 08 Jun 2014 12:27:04 +0200 Gour g...@atmarama.net napísal:

 Slavko li...@slavino.sk writes:
 
  Then i run aptitude and after some keypress is see, that there is
  one conflict with some co-package (cgi plugin) from old uwsgi
  version.
 
 I must say that I'm still quite noobie when it comes to package
 management on Debian mostly using apt-get/synaptic and I
 read/heard somewhere that for Sid those are recommended over aptitude?

I mention sid only because the uwsgi package is now not in testing and
i recompiled it for Raspberry Pi with Rasbian stable, which is wheezy
based distro for this small one-board computer. You can simply ignore
the sid word in my post.

 Do I miss something and/or what would be recommended procedure for
 apt-get/synaptic -- synaptic migration?

Using Synaptic seems to be safe (in mean of the original problem in this
thread).

Migration from apt-get/aptitude to Synaptic must be safe. The problem
in opposite direction, i.e. from Synaptic to apt-get/aptitude, where
Synaptic lack some functionality about the marking/removing
the automatically installed packages.

AFAIK, the functionality of the apt-get and aptitude is compatible in
these days, with only one difference - the ncurses interface in
aptitude.

regards

-- 
Slavko
http://slavino.sk


signature.asc
Description: PGP signature

Re: Auto-emptying of trash.

On 8/06/2014 6:03 PM, Sharon Kimble wrote:
 Revisiting a question that I asked in March last year about how to
 auto-empty a trash bin.
 
 This has worked very well until today, when on one of my drives it
 also deleted the trash bin as well, so my follow-on script to give
 me the size of my trash bin failed as there wasn’t a trash bin to
 evaluate!

I wonder if it is as simple as touching the .Trash folder itself so that
it cannot be considered old enough to remove?

Or you could do a find condition like this:
   -a ! -name .Trash-1000


Cheers
A.



signature.asc
Description: OpenPGP digital signature

Re: Package system totaly a complete mess

2014-06-08 Thread David Dušanić

08.06.2014, 12:27, Gour g...@atmarama.net:


 I must say that I'm still quite noobie when it comes to package
 management on Debian mostly using apt-get/synaptic and I
 read/heard somewhere that for Sid those are recommended over aptitude?

 Do I miss something and/or what would be recommended procedure for
 apt-get/synaptic -- synaptic migration?

I think you can also use aptitude on sid but I really prefer apt. I do not have 
synaptic nor aptitude installed on my system. It is personal preference and of 
course how good you are into both of them. I think running sid is just a matter 
of how good you can drive the Debian package manager, be it aptitude or apt. 
But I would never use something graphical (synaptic) to make my upgrades.
 
-- 
David Dusanic


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/2139941402229...@web13m.yandex.ru

Re: Killfiling: was Should I install chkrootkit?

2014-06-08 Thread Jerry Stuckle

On 6/8/2014 2:48 AM, Ralf Mardorf wrote:
 As we can see now, killfiling Horatio or banning him from the list is
 impossible, he simply will use another email address.
 
 Jerry, did you notice that there also was sent a mail to the Debian
 off-topic list, most likely from  Horatio, using the
 j.stuc...@outlook.com address?
 
 

Hi, Ralf,

No, I didn't - I don't follow that list.  But it doesn't surprise me.

Jerry


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/53945762.7040...@attglobal.net

Re: Package system totaly a complete mess

2014-06-08 Thread Lisi Reisz

On Sunday 08 June 2014 12:55:26 Slavko wrote:
 Migration from apt-get/aptitude to Synaptic must be safe. The problem
 in opposite direction, i.e. from Synaptic to apt-get/aptitude, where
 Synaptic lack some functionality about the marking/removing
 the automatically installed packages.

I have on occasion used Synaptic on the boxen I administrate for other people.  
I have then not infrequently switched into aptitude to sort out the problems 
that seemed to me to be an inevitable concomitant to  using Synaptic.  The 
one thing that I do like Synaptic for (though I would not install it 
specially for the purpose) is searching to see what software of a certain 
type is available.

Lisi


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/201406081333.28372.lisi.re...@gmail.com

Re: Package system totaly a complete mess

2014-06-08 Thread D.E. Bil

On Sun, Jun 08, 2014 at 01:55:26PM +0200, Slavko wrote:
 AFAIK, the functionality of the apt-get and aptitude is compatible in
 these days, with only one difference - the ncurses interface in
 aptitude.

And more human-readable logs in /var/log/aptitude.

-- 
debil
:wq


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/20140608123500.GA1248@canavanofcanmake.Noise

Re: Package system totaly a complete mess

Andrei POPESCU andreimpope...@gmail.com writes:

 Especially on sid aptitude (in interactive mode) can be very useful, but 
 beware of #570377.

Hmm..

 There is no procedure, just use which one you like/need/etc.

Iirc, one has to be careful when migrating from one tool to the other in
order not to end up with many uninstalled packages?

Otoh, I'm just investigating which tool is better handling dep chain,
especially on Sid.


Sincerely,
Gour

-- 
As a blazing fire turns firewood to ashes, O Arjuna, so does the 
fire of knowledge burn to ashes all reactions to material activities.


pgpIJIpCW9AKh.pgp
Description: PGP signature

Re: Package system totaly a complete mess

Slavko li...@slavino.sk writes:

 You can simply ignore the sid word in my post.

Ahh, OK. Good to know. ;)

 Using Synaptic seems to be safe (in mean of the original problem in this
 thread).

Maybe I shoud read the whole thread...

 AFAIK, the functionality of the apt-get and aptitude is compatible in
 these days, with only one difference - the ncurses interface in
 aptitude.

I do not mind the interface, just wondering which is more suitable for
Sid considering that the dynamic of admin work is a bit different than
when one uses stable distro?


Sincerely,
Gour

-- 
When your intelligence has passed out of the dense forest 
of delusion, you shall become indifferent to all that has 
been heard and all that is to be heard.


pgptfcVLoOU7x.pgp
Description: PGP signature

Re: Package system totaly a complete mess

David Dušanić ivanovne...@gmail.com writes:

 I think you can also use aptitude on sid but I really prefer apt. 

So, you believe aptitude is no better than apt in resolve package deps
(in Sid) ?


Sincerely,
Gour

-- 
In this endeavor there is no loss or diminution, 
and a little advancement on this path can protect 
one from the most dangerous type of fear.


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/87zjhnft2k@atmarama.net

Re: Package system totaly a complete mess

2014-06-08 Thread Bzzz

On Sun, 08 Jun 2014 15:04:17 +0200
Gour g...@atmarama.net wrote:

 I do not mind the interface, just wondering which is more suitable
 for Sid considering that the dynamic of admin work is a bit
 different than when one uses stable distro?

I use synaptic and sometimes dselect (much more on stable).

Synaptic manage conflicts very well, dselect doesn't.

-- 
Adeline The Christians religious book is Bible.
Axel Yeah, for Muslims it's Koran.
Adeline And for Asians ?
Axel Yellow Pages.


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/20140608151508.4fd52297@anubis.defcon1

Re: Package system totaly a complete mess

D.E. Bil kas...@gmail.com writes:

 And more human-readable logs in /var/log/aptitude.

That's a good point. Thanks.


Sincerely,
Gour

-- 


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/874mzvh7qi@atmarama.net

Which 'package' to choose for updating google chrome ?

2014-06-08 Thread Trudi

Hi
I am using an ASUS Transformer Book.
Not only are there no useful manuals but also no help from Asus either online 
OR by telephone, issues go unsolved. It's annoying since they are not cheap.
My issue is that the android/tablet part of the Asus Transformer keeps saying 
google chrome needs updating. 
It has a link to the google page BUT you have to choose a package. the problem 
is there are 4 different packages to chose from AND absolutely no help (even 
when i call their technical hotline). Which to choose?
The options are:

Please select your download package:

 32 bit .deb (For Debian/Ubuntu)
 64 bit .deb (For Debian/Ubuntu)
 32 bit .rpm (For Fedora/openSUSE)
 64 bit .rpm (For Fedora/openSUSE)

I'm assuming i need 64bit bt which one? Does it matter?
Thanks in advance
Trudi

Re: Package system totaly a complete mess

On Du, 08 iun 14, 15:00:58, Gour wrote:
 Andrei POPESCU andreimpope...@gmail.com writes:
 
  Especially on sid aptitude (in interactive mode) can be very useful, but 
  beware of #570377.
 
 Hmm..

I'm right now testing this in apt.conf

// tweak Aptitude to not suggest removals as first option
Aptitude::ProblemResolver::SolutionCost safety,removals;

  There is no procedure, just use which one you like/need/etc.
 
 Iirc, one has to be careful when migrating from one tool to the other in
 order not to end up with many uninstalled packages?

None of the tools will do something you don't specifically approve, so 
just be careful what you agree to ;)

Yes, there are probably still bugs when you switch between them, but 
mostly it should work fine.
 
 Otoh, I'm just investigating which tool is better handling dep chain,
 especially on Sid.

Could you elaborate on this? I'm not sure what you're worried about.

Kind regards,
Andrei
-- 
http://wiki.debian.org/FAQsFromDebianUser
Offtopic discussions among Debian users and developers:
http://lists.alioth.debian.org/mailman/listinfo/d-community-offtopic
http://nuvreauspam.ro/gpg-transition.txt


signature.asc
Description: Digital signature

Re: Package system totaly a complete mess

On Du, 08 iun 14, 15:07:31, Gour wrote:
 David Dušanić ivanovne...@gmail.com writes:
 
  I think you can also use aptitude on sid but I really prefer apt. 
 
 So, you believe aptitude is no better than apt in resolve package deps
 (in Sid) ?

aptitude and apt have different resolvers. At some point in time 
aptitude's resolver has been considered superior, especially for 
upgrades between releases, but apt has improved in the meantime and it 
seems to be more... predictable.

Specifically for sid I prefer aptitude in interactive mode (it's open 
all the time here in a screen session), because of the interactive 
resolver, the nice preview which you can interact with and the 
'forbid-version' action (Shift-f in interactive mode).

Also aptitude's search patterns are, as far as I can tell, unmatched in 
any of the other package managers.

Kind regards,
Andrei
-- 
http://wiki.debian.org/FAQsFromDebianUser
Offtopic discussions among Debian users and developers:
http://lists.alioth.debian.org/mailman/listinfo/d-community-offtopic
http://nuvreauspam.ro/gpg-transition.txt


signature.asc
Description: Digital signature

Re: Package system totaly a complete mess

On Du, 08 iun 14, 14:19:26, David Dušanić wrote:
 
 I think running sid is just a matter of how good you can drive the 
 Debian package manager, be it aptitude or apt.

That's a fairly good description in my opinion :)

 But I would never use something graphical (synaptic) to make my 
 upgrades.

While I'm always running aptitude under GNU screen[1] I just can't 
recall the last time (if ever) I had X terminate due to an upgrade.

[1] running apt or aptitude in a regular terminal emulator will not help 
if X terminates for some reason, you have to use a console or something 
like GNU screen.

Kind regards,
Andrei
-- 
http://wiki.debian.org/FAQsFromDebianUser
Offtopic discussions among Debian users and developers:
http://lists.alioth.debian.org/mailman/listinfo/d-community-offtopic
http://nuvreauspam.ro/gpg-transition.txt


signature.asc
Description: Digital signature

Re: Abusive, Insulting and Off Topic e-mails do not belong on debian-user or any other Debian Mailing list.

On 8/06/2014 10:58 AM, Don Armstrong wrote:
 In the past few days, there have been many insulting, abusive and off
 topic messages sent to this mailing list.

For the public record, I need to make it clear that posts made by an
aggrieved other user of this mailing list have no merit.

Such fraudulent posts have been made using both his/her own mail address
and what appears to be at least one /special fraudulent/ address created
expressly for the purpose of spreading misrepresentation about other
members of this list (myself included).

This matter is potentially very damaging to reputations and may lead to
legal actions at any point should they continue.

If any phantom email arises claiming to be myself or representing me in
any way, please ignore it.  Any and ALL posts to this list from myself
will be from this same email address that I am sending from right now.

Also, it is my intention to digitally sign each message using my public
GPG key, which has these details:

  pub   2048D/B7EFE2FB 2012-04-12
Key fingerprint =
   C902 8307 B42E 98C9 D2DF  8D43 A816 6BCB B7EF E2FB
  uid   Andrew McGlashan andrew.mcglas...@affinityvision.com.au
  uid   Andrew McGlashan amcglas...@gmail.com
  uid   [jpeg image of size 2732]
  sub   2048g/10921186 2012-04-12

Should I create a new key, then it will be signed by the above key.

If I fail to sign any genuine messages to this list going forward, then
it will be likely be accidental.  In the past I have usually only signed
emails to this list when they were replies to emails that were
themselves signed.

Kind Regards
Andrew McGlashan





signature.asc
Description: OpenPGP digital signature

Re: Which 'package' to choose for updating google chrome ?

On Du, 08 iun 14, 21:40:48, Trudi wrote:
 
 My issue is that the android/tablet part of the Asus Transformer keeps 
 saying google chrome needs updating. 

If your tablet is running Android then you have to update it using its 
usual mechanisms (whichever those might be, I'm not familiar with 
Android).

We can only help you if you installed the Debian operating system on it 
(and if so please mention which version).

Kind regards,
Andrei
-- 
http://wiki.debian.org/FAQsFromDebianUser
Offtopic discussions among Debian users and developers:
http://lists.alioth.debian.org/mailman/listinfo/d-community-offtopic
http://nuvreauspam.ro/gpg-transition.txt


signature.asc
Description: Digital signature

Re: Should I install chkrootkit?

On Du, 08 iun 14, 14:11:58, Richard Hector wrote:
 On 08/06/14 14:00, Jerry Stuckle wrote:
  Richard, this was NOT my post.  This is a fraud.  See the headers.
 
 Acknowledged. It's sad - do we need to start signing all mailing list
 posts?

Why not?

Kind regards,
Andrei
-- 
http://wiki.debian.org/FAQsFromDebianUser
Offtopic discussions among Debian users and developers:
http://lists.alioth.debian.org/mailman/listinfo/d-community-offtopic
http://nuvreauspam.ro/gpg-transition.txt


signature.asc
Description: Digital signature

Re: Jessie PowerPC installer doesn't see USB keyboard on PowerPC Mac machines

2014-06-08 Thread Stephen Allen

On Sun, Jun 08, 2014 at 12:14:56AM +0200, Ralf Mardorf wrote:
 On Sat, 2014-06-07 at 15:04 -0700, Rick Thomas wrote:
  Hmmm...
  
  I originally reported this back in November.
  
  After a while, it went away for me.  Downloading the latest (about January 
  time-frame) netinst image worked fine -- both Jessie and Wheezy.  I 
  haven't tried it recently, though.
  
  Possibly a regression?
  
  Rick
  
  PS: Jessie on a powerpc64 (Apple MacPro dual G5) crashes randomly upon 
  attempting to reboot.
  Anybody else noticing this?
 
 Mailing Lists
 The Debian PowerPC mailing list is the proper place for questions,
 suggestions for improvements, or just for chat concerning PowerPC
 systems running Debian. The debian-user list is also available for
 general Debian questions which are not specific to PowerPC.

Ralf - Rick has been using Debian email lists longer than you and he
knows about the PowerPC lists. There is probably a valid reason why he's
using the general Debian-Users list, and no it's not off topic here -
It's about Debian and he's a user!

You and your off-topic posts shouldn't be pointing fingers at people!
Use some common sense!


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/20140608144624.GA7599@Jessie

Re: Abusive, Insulting and Off Topic e-mails do not belong on debian-user or any other Debian Mailing list.

2014-06-08 Thread Lisi Reisz

On Sunday 08 June 2014 15:32:20 Andrew McGlashan wrote:
 Such fraudulent posts have been made using both his/her own mail address
 and what appears to be at least one /special fraudulent/ address created
 expressly for the purpose of spreading misrepresentation about other
 members of this list (myself included).

I have identified at least two special fraudulent addresses, clearly used 
maliciously to sow further dissent and to malign people.  The one insult 
aimed at me: that I am a coward, I'll readily admit to.  I am 5ft 2inches 
tall, frail and elderly and have poor sight.  I'd be a fool not to be a 
coward!  But some of what has been spewed out at you is both inaccurate and 
grossly insulting and I can see why you are taking protective measures.

In case this draws down wrath on me, I have no current plans to change my 
email address.

The law, sadly, is likely to be difficult for you Andrew.  It is likely to be 
problematic to identify the real world identity and jurisdiction of the 
perpetrator.

Lisi


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/201406081547.06296.lisi.re...@gmail.com

Re: Package system totaly a complete mess

2014-06-08 Thread Stephen Allen

On Sat, Jun 07, 2014 at 09:57:39PM +0200, Jochen Spieker wrote:
 Thierry de Coulon:
  
  I've lived for years using synaptic and I am no so used to aptitude - and I 
  don't want to make mistakes...
 
 In addition to the good advice regarding automatically installed
 packages that has already been given I have one question: why do you
 want to use aptitude? I used aptitude for a few years but switched back
 to apt-get after the Release Notes of a release recommended to use
 apt-get for distribution upgrades, not aptitude. I have a lot less
 trouble now.

Actually 'apt-get' is recommended for major upgrades as in distro
upgrades, but for day to day package mgmt, aptitude is still the
recommended tool.

FWIW I use both, aptitude has more options. Never used ncurses aptitude
though, can't stand it.

For someone just starting out with aptitude, I'd recommend they install
the aptitude-doc package relevant to their language.


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/20140608150328.GB7599@Jessie

Re: Package system totaly a complete mess

2014-06-08 Thread The Wanderer

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

On 06/08/2014 11:03 AM, Stephen Allen wrote:

 On Sat, Jun 07, 2014 at 09:57:39PM +0200, Jochen Spieker wrote:
 
 Thierry de Coulon:
 
 I've lived for years using synaptic and I am no so used to
 aptitude - and I don't want to make mistakes...
 
 In addition to the good advice regarding automatically installed
 packages that has already been given I have one question: why do
 you want to use aptitude? I used aptitude for a few years but
 switched back to apt-get after the Release Notes of a release
 recommended to use apt-get for distribution upgrades, not aptitude.
 I have a lot less trouble now.
 
 Actually 'apt-get' is recommended for major upgrades as in distro
 upgrades, but for day to day package mgmt, aptitude is still the
 recommended tool.
 
 FWIW I use both, aptitude has more options. Never used ncurses
 aptitude though, can't stand it.

Likewise FWIW, I invariably use apt-get, because aptitude routinely
recommends dependency-resolution solutions which involve not doing
anything like what I requested - and indeed often involve removing the
very package I requested to be installed - whereas I've never seen any
such thing with apt-get.

apt-get may be less controllable and less smart than aptitude, but it
still seems to get things right on the first try most of the time,
whereas in my experience aptitude rarely seems to get things right even
by the 20th try - or, in the few cases where I've bothered to keep
saying no, try to come up with some other solution that far, the
200th.

Maybe my experience with aptitude is atypical - but it's been consistent
across three computers now, over the course of something like a decade,
give or take. If anything, it's gotten worse in more recent years.

Maybeit's possible to configure aptitude so that it doesn't do that...
but if so, I would think that configuration should be the default,
because as things stand it seems almost worse than useless for anything
but the simplest operations.

- --
   The Wanderer

Secrecy is the beginning of tyranny.

A government exists to serve its citizens, not to control them.
-BEGIN PGP SIGNATURE-
Version: GnuPG v1
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
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=J51P
-END PGP SIGNATURE-


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/53947cf9.1000...@fastmail.fm

Re: Should I install chkrootkit?

On Sb, 07 iun 14, 22:23:12, Jerry Stuckle wrote:
 
 I agree signing would help - but you're right, I don't know who many
 people's public keys are - either here or anywhere else.

Joining Debian's Web of Trust would be a very good starting point, 
especially since we are using Debian ;)

$ gpg --list-sigs EF22341C
pub   4096R/EF22341C 2013-07-28
uid  Andrei Mircea POPESCU andreimpope...@gmail.com
sig 3EF22341C 2013-07-28  Andrei Mircea POPESCU 
andreimpope...@gmail.com
sig  DEA22DE9 2013-07-28  Andrei Popescu andreimpope...@gmail.com
sig 3EF22341C 2013-07-28  Andrei Mircea POPESCU 
andreimpope...@gmail.com
sig  2BEF0A33 2013-08-23  Didier Raboud did...@raboud.com
sig 2151DFFDC 2013-08-24  Bernhard R. Link b...@mail.brlink.eu
sig  AC583520 2013-08-31  Holger Levsen hol...@layer-acht.org
sig  069AAA1C 2013-08-31  Holger Levsen hol...@layer-acht.org
sub   4096R/5D7DFF29 2013-07-28
sig  EF22341C 2013-07-28  Andrei Mircea POPESCU 
andreimpope...@gmail.com


If one is living in the USA or western Europe getting one's key signed 
shouldn't be too difficult.

https://wiki.debian.org/Keysigning
https://wiki.debian.org/Keysigning/Coordination
https://wiki.debian.org/Keysigning/Offers

Nice side effect: you can verify the authenticity of Debian Installer 
images, since those are signed by a Debian Member.

http://www.debian.org/CD/verify

Kind regards,
Andrei
-- 
http://wiki.debian.org/FAQsFromDebianUser
Offtopic discussions among Debian users and developers:
http://lists.alioth.debian.org/mailman/listinfo/d-community-offtopic
http://nuvreauspam.ro/gpg-transition.txt


signature.asc
Description: Digital signature

GPG Keys..... was Re: Should I install chkrootkit?

On 9/06/2014 1:16 AM, Andrei POPESCU wrote:
 $ gpg --list-sigs EF22341C
 pub   4096R/EF22341C 2013-07-28
 uid  Andrei Mircea POPESCU andreimpope...@gmail.com
 sig 3EF22341C 2013-07-28  Andrei Mircea POPESCU 
 andreimpope...@gmail.com
 sig  DEA22DE9 2013-07-28  Andrei Popescu andreimpope...@gmail.com
 sig 3EF22341C 2013-07-28  Andrei Mircea POPESCU 
 andreimpope...@gmail.com
 sig  2BEF0A33 2013-08-23  Didier Raboud did...@raboud.com
 sig 2151DFFDC 2013-08-24  Bernhard R. Link b...@mail.brlink.eu
 sig  AC583520 2013-08-31  Holger Levsen hol...@layer-acht.org
 sig  069AAA1C 2013-08-31  Holger Levsen hol...@layer-acht.org
 sub   4096R/5D7DFF29 2013-07-28
 sig  EF22341C 2013-07-28  Andrei Mircea POPESCU 
 andreimpope...@gmail.com

And the fingerprint?

 If one is living in the USA or western Europe getting one's key signed 
 shouldn't be too difficult.

How about Australia?  I think I could find someone that I know fairly
easily though.

 https://wiki.debian.org/Keysigning
 https://wiki.debian.org/Keysigning/Coordination
 https://wiki.debian.org/Keysigning/Offers
 
 Nice side effect: you can verify the authenticity of Debian Installer 
 images, since those are signed by a Debian Member.
 
 http://www.debian.org/CD/verify

It is my intention to digitally sign each message to Debian list using
my public GPG key, which has these details:

  pub   2048D/B7EFE2FB 2012-04-12
Key fingerprint =
   C902 8307 B42E 98C9 D2DF  8D43 A816 6BCB B7EF E2FB
  uid   Andrew McGlashan andrew.mcglas...@affinityvision.com.au
  uid   Andrew McGlashan amcglas...@gmail.com
  uid   [jpeg image of size 2732]
  sub   2048g/10921186 2012-04-12

Should I create a new key, then it will be signed by the above key.

If I fail to sign any genuine messages to this list going forward, then
it will be likely be accidental.  In the past I have usually only signed
emails to this list when they were replies to emails that were
themselves signed.



Kind Regards
AndrewM



signature.asc
Description: OpenPGP digital signature

Re: GPG Keys..... was Re: Should I install chkrootkit?

2014-06-08 Thread Bzzz

On Mon, 09 Jun 2014 01:43:28 +1000
Andrew McGlashan andrew.mcglas...@affinityvision.com.au wrote:

  If one is living in the USA or western Europe getting one's key
  signed shouldn't be too difficult.
 
 How about Australia?

Not allowed: if you sign your e-mails, they'll blacklist
you, you'll suffer a kangaroo invasion in your kitchen,
your kids' hamster will die from plague, they'll list 
you as a potential terrorist and all your sites will 
join the dentist one in the big-filter. You have been 
warned.

-- 
* ShootingStar has joined the chan.
* ShootingStar has quit the chan.
Teng Make a wish
Aka \o/


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/20140608175328.4b79f5f8@anubis.defcon1

Re: GPG Keys..... was Re: Should I install chkrootkit?

On Lu, 09 iun 14, 01:43:28, Andrew McGlashan wrote:
 
 And the fingerprint?

$ gpg --fingerprint EF22341C
pub   4096R/EF22341C 2013-07-28
  Key fingerprint = E44E B88C E21B 858E 3639  7AA4 FFC7 8544 EF22 341C
uid  Andrei Mircea POPESCU andreimpope...@gmail.com
sub   4096R/5D7DFF29 2013-07-28

 I wrote:
  If one is living in the USA or western Europe getting one's key 
  signed shouldn't be too difficult.
 
 How about Australia?  I think I could find someone that I know fairly
 easily though.

https://wiki.debian.org/Keysigning/Offers#AU

Kind regards,
Andrei
-- 
http://wiki.debian.org/FAQsFromDebianUser
Offtopic discussions among Debian users and developers:
http://lists.alioth.debian.org/mailman/listinfo/d-community-offtopic
http://nuvreauspam.ro/gpg-transition.txt


signature.asc
Description: Digital signature

Re: GPG Keys..... was Re: Should I install chkrootkit?

On 9/06/2014 1:56 AM, Andrei POPESCU wrote:
 On Lu, 09 iun 14, 01:43:28, Andrew McGlashan wrote:

 And the fingerprint?
 
 $ gpg --fingerprint EF22341C
 pub   4096R/EF22341C 2013-07-28
   Key fingerprint = E44E B88C E21B 858E 3639  7AA4 FFC7 8544 EF22 341C
 uid  Andrei Mircea POPESCU andreimpope...@gmail.com
 sub   4096R/5D7DFF29 2013-07-28

Thanks.

 I wrote:
 If one is living in the USA or western Europe getting one's key 
 signed shouldn't be too difficult.

 How about Australia?  I think I could find someone that I know fairly
 easily though.
 
 https://wiki.debian.org/Keysigning/Offers#AU

Okay, not many people listed; I thought there would be many more.  I
don't know any of them personally.

Thanks again
AndrewM



signature.asc
Description: OpenPGP digital signature

Re: GPG Keys..... was Re: Should I install chkrootkit?

On Lu, 09 iun 14, 02:07:46, Andrew McGlashan wrote:
 On 9/06/2014 1:56 AM, Andrei POPESCU wrote:
  
  https://wiki.debian.org/Keysigning/Offers#AU
 
 Okay, not many people listed; I thought there would be many more.  I
 don't know any of them personally.

That's not necessary, the point of that listing is that those people 
have offered to meet others just for key signing.

Kind regards,
Andrei
-- 
http://wiki.debian.org/FAQsFromDebianUser
Offtopic discussions among Debian users and developers:
http://lists.alioth.debian.org/mailman/listinfo/d-community-offtopic
http://nuvreauspam.ro/gpg-transition.txt


signature.asc
Description: Digital signature

Re: GPG Keys..... was Re: Should I install chkrootkit?

2014-06-08 Thread Brad Rogers

On Mon, 09 Jun 2014 02:07:46 +1000
Andrew McGlashan andrew.mcglas...@affinityvision.com.au wrote:

Hello Andrew,

Okay, not many people listed; I thought there would be many more.  I
don't know any of them personally.

You don't have to.  So long as there's one close enough to you for it to
be convenient to arrange a meeting those people are happy to oblige.

-- 
 Regards  _
 / )   The blindingly obvious is
/ _)radnever immediately apparent
Watching the people get lairy
I Predict A Riot - Kaiser Chiefs


signature.asc
Description: PGP signature

Re: Abusive, Insulting and Off Topic e-mails do not belong on debian-user or any other Debian Mailing list.

2014-06-08 Thread Ralph Katz

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 06/07/2014 08:58 PM, Don Armstrong wrote:
 
 In the past few days, there have been many insulting, abusive and
 off topic messages sent to this mailing list.
 
 This is not acceptable, and conflicts with both our code of
 conduct[1], and the mailing list specific code of conduct[2].
 
 In particularly egregious or continuing cases of violation, the
 ability of specific individuals to post to debian-user (and other
 Debian mailing lists) will be restricted.[3]
 
 While I personally am subscribed to debian-user, I cannot possibly
 read every single message which is posted here (or in the dozens of
 other mailing lists that Debian has). If you feel that a particular
 message or individual is being abusive or disrespectful, please
 e-mail listmas...@lists.debian.org with appropriate message-ids so
 that we are aware of the issue.
 
 As a final note, someone being disrespectful or abusive does not
 give others the right to be abusive back to them. Assume good
 faith; they may not know what they are doing.
 
 
 1: https://www.debian.org/code_of_conduct 2:
 https://www.debian.org/MailingLists/#codeofconduct 3: The
 individual will be informed, and Debian Developers will also be 
 informed when this occurs.
 

Don, thank you.  It's important for the Debian community to stand
firmly against the childish abuse and ignorance we've seen here this week.

New readers may also want to review
https://wiki.debian.org/FAQsFromDebianUser

Regards,
Ralph

-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.12 (GNU/Linux)
Comment: Using GnuPG with Icedove - http://www.enigmail.net/

iQEcBAEBAgAGBQJTlI/LAAoJECe2FpioHXO6xlYIAJh+heLnZIGhLUjX5+3w2TzE
W94oqMgZIWzzYKdcYzy6NDBrJLeuvDn7DxW/jarYiH3CeTjRJxIj9bufIypqo9bQ
TQGbf+ODPK3NGuaj+WbRnkFbDc02P4hU6h04cPCAK2TuBf35AkELGockeGucROyS
v/P/PUwN0FSigTkZB17Fbwuwk5OQQ4QsL0N7r/5lNApxgl0qC00sS/76YejC/kjU
SYO/lsJkRd+To71HUG6hSVN9DkEaMDMyLEz3l7LeRrr32f9DYmExNmC0gQWQIZn5
brnCplQZ9TTB0F2hviS4Wzbgq4vCab1VEDF6ExTmFx+x7iHPKQmkiL0kKotVYT8=
=iBxg
-END PGP SIGNATURE-


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/53948fea@rcn.com

Re: Should I install chkrootkit?

2014-06-08 Thread John Bleichert




On 06/08/2014 11:16 AM, Andrei POPESCU wrote:

On Sb, 07 iun 14, 22:23:12, Jerry Stuckle wrote:


I agree signing would help - but you're right, I don't know who many
people's public keys are - either here or anywhere else.


Joining Debian's Web of Trust would be a very good starting point,
especially since we are using Debian ;)



snippage

Andrei - thank you for this post - I appreciate the info!

John

--
---
John Bleichert-syb...@earthlink.net
The heat from below can burn your eyes out!


--
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org

Archive: https://lists.debian.org/539495c3.90...@earthlink.net

Re: GPG Keys..... was Re: Should I install chkrootkit?

Ahoj,

Dňa Sun, 8 Jun 2014 17:53:28 +0200 Bzzz lazyvi...@gmx.com napísal:

 On Mon, 09 Jun 2014 01:43:28 +1000
 Andrew McGlashan andrew.mcglas...@affinityvision.com.au wrote:
 
   If one is living in the USA or western Europe getting one's key
   signed shouldn't be too difficult.
  
  How about Australia?
 
 Not allowed: if you sign your e-mails, they'll blacklist
 you, you'll suffer a kangaroo invasion in your kitchen,
 your kids' hamster will die from plague, they'll list 
 you as a potential terrorist and all your sites will 
 join the dentist one in the big-filter. You have been 
 warned.

IMO bad yoke. No all are know about OpenPGP, especially about signing.

BTW, in our country AFAIK there is only one Debian man, which
can sign my key. And this one is from another end of my small country -
it is only cca 400 km, but my health doesn't allow me to travel into his
town.

regards

-- 
Slavko
http://slavino.sk


signature.asc
Description: PGP signature

Re: Abusive, Insulting and Off Topic e-mails do not belong on debian-user or any other Debian Mailing list.

2014-06-08 Thread Mike McGinn


On Sunday, June 08, 2014 10:32:20 Andrew McGlashan wrote:
 On 8/06/2014 10:58 AM, Don Armstrong wrote:
  In the past few days, there have been many insulting, abusive and off
  topic messages sent to this mailing list.
 
 For the public record, I need to make it clear that posts made by an
 aggrieved other user of this mailing list have no merit.
 
 Such fraudulent posts have been made using both his/her own mail address
 and what appears to be at least one /special fraudulent/ address created
 expressly for the purpose of spreading misrepresentation about other
 members of this list (myself included).
 
 This matter is potentially very damaging to reputations and may lead to
 legal actions at any point should they continue.
 
 If any phantom email arises claiming to be myself or representing me in
 any way, please ignore it.  Any and ALL posts to this list from myself
 will be from this same email address that I am sending from right now.
 
 Also, it is my intention to digitally sign each message using my public
 GPG key, which has these details:
 
   pub   2048D/B7EFE2FB 2012-04-12
 Key fingerprint =
C902 8307 B42E 98C9 D2DF  8D43 A816 6BCB B7EF E2FB
   uid   Andrew McGlashan andrew.mcglas...@affinityvision.com.au
   uid   Andrew McGlashan amcglas...@gmail.com
   uid   [jpeg image of size 2732]
   sub   2048g/10921186 2012-04-12
 
 Should I create a new key, then it will be signed by the above key.
 
 If I fail to sign any genuine messages to this list going forward, then
 it will be likely be accidental.  In the past I have usually only signed
 emails to this list when they were replies to emails that were
 themselves signed.
 
 Kind Regards
 Andrew McGlashan

Are we still in preschool? All about how aggrieved who, who insulted who, he 
took my truck ...

Get  over it.

You are ruining this for those of us who are adults.

-- 
Mike McGinn KD2CNU
Be happy that brainfarts don't smell.
No electrons were harmed in sending this message, some were inconvenienced.
** Registered Linux User 377849


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/201406081303.06664.mikemcg...@mcginnweb.net

Re: Should I install chkrootkit?

2014-06-08 Thread Lucius Rizzo

* Andrei POPESCU andreimpope...@gmail.com [2014-06-08 18:16]:
 On Sb, 07 iun 14, 22:23:12, Jerry Stuckle wrote:
  
  I agree signing would help - but you're right, I don't know who many
  people's public keys are - either here or anywhere else.
 
 Joining Debian's Web of Trust would be a very good starting point, 
 especially since we are using Debian ;)

off topic  - my apologies but I will keep it short

I think there needs to be a discussion about habits like this that seem to 
proliferate with users within the IT to be less considerate of others. The
added complexity that these are all just bits and bytes takes away sometimes
from the dehumanizing results of what happens. This happens daily in the OSS
realm especially. Come on to IRC on any channel, you will see this first hand. 
Other projects (*BSD also suffer the wrath of some devs who seem to lack taste).

Last week, someone on IRC sent something in spite as a prank to someone I know 
in real life. The nature of IRC being as it is, not only did this actions of 
their invade my privacy, it also harmed my reputation in real life. In an 
unfortunate series of events, this one line of email has caused a lot of harm
to many (incl. him loosing his position at work it seems).

I have seen a remarkable ego prevalent in IT. In fact, unlike other professions
within IT; you either know it or your don't. So it breeds this level of 
intellectual 
dick measuring contest. Its unfortunate, tedious and frankly childish. Yet, its 
acceptable because they are a genius say in one aspect of IT. I disagree. In 
2014,
when one can go to prison for saying incredibly hateful or disturbing things on 
say
Facebook or twitter, why is it that within IT circles -- with talented 
individuals
tolerate this person's hatred simply because they are talented.

In any case I found myself in very difficult place this week where my online 
life and real
life collided and caused harm that seems to affect many, including mine.

And it made me think - IT professionals, especially ones I know are incredibly
good at certain things. And yet, they can go to such extents that harm so much 
as shown in the
thread and recently with my experience. 

Yes being talented is always good. Being able to translate this talent and 
teach to others
is what made us human and advanced us. However hatred in any form especially 
when I am seeing
others on this list having to measures such as GPG keys to ensure their 
credibility only 
highlights the troubling and underlying issue of narcissism, bullying and 
ultimately attempts
to affect reputation. All to prove some dumb zealous point of some sort.



-- 

| _o_ |_)o_ _  _  
|_|_|(_||_|_ | \|/_/_(_) - Lucius.Tel
--
++  The important thing to remember about walking on eggs is not to hop. ++


pgpFxStAgxkGV.pgp
Description: PGP signature

Re: GPG Keys..... was Re: Should I install chkrootkit?

2014-06-08 Thread Chris Angelico

On Mon, Jun 9, 2014 at 2:22 AM, Andrei POPESCU andreimpope...@gmail.com wrote:
 On Lu, 09 iun 14, 02:07:46, Andrew McGlashan wrote:
 On 9/06/2014 1:56 AM, Andrei POPESCU wrote:
 
  https://wiki.debian.org/Keysigning/Offers#AU

 Okay, not many people listed; I thought there would be many more.  I
 don't know any of them personally.

 That's not necessary, the point of that listing is that those people
 have offered to meet others just for key signing.

I may have to do that some time. There are four offering in Melbourne.

But hopefully it won't ever come to the point of mattering. It really
is silly when people start trying to spoof other people's emails.

ChrisA


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: 
https://lists.debian.org/CAPTjJmrVzVEokhD9zdG7=gj8j-ut6nkrxogbnrjfhou7zdn...@mail.gmail.com

Re: Auto-emptying of trash.

2014-06-08 Thread Paul Johnson

On Jun 8, 2014 3:11 AM, Sharon Kimble boudic...@skimble.plus.com wrote:

 Revisiting a question that I asked in March last year about how to
 auto-empty a trash bin.

 This has worked very well until today, when on one of my drives it
 also deleted the trash bin as well, so my follow-on script to give
 me the size of my trash bin failed as there wasn’t a trash bin to
 evaluate!

Have you considered the tmpreaper package?  Seems like an off-label use of
that would be to tell it your trash directory is a temp directory...

Re: Should I install chkrootkit?

2014-06-08 Thread Bob Holtzman

On Sat, Jun 07, 2014 at 04:05:10PM -0700, lati...@vcn.bc.ca wrote:
  On Friday 06 June 2014 23:13:10 lati...@vcn.bc.ca wrote:
  And, Who are you Ralf? a Jew?
 
  This list is not moderated!
 
  And is sadly starting to become an unfriendly and unwelcoming place.  Is
  racism really necessary or relevant?
 
  Lisi
 
 
 Hello Lisi:
 
 It is not racism, the meaning is: someone who wants to control the
 World.If you know a proper word, please go ahead. I really do not know
 it!

Where did that definition com from? It definitely *is* racist and highly
insulting!

-- 
Bob Holtzman
A man is a man who will fight with a sword
or tackle Mt Everest in snow, but the bravest 
of all owns a '34 Ford and tries for 6000 in low.


signature.asc
Description: Digital signature

[OFF-TOPIC :)] Re: Should I install chkrootkit?

2014-06-08 Thread Diogene Laerce



On 06/08/2014 08:54 PM, Bob Holtzman wrote:
 On Sat, Jun 07, 2014 at 04:05:10PM -0700, lati...@vcn.bc.ca wrote:
 On Friday 06 June 2014 23:13:10 lati...@vcn.bc.ca wrote:
 And, Who are you Ralf? a Jew?

 This list is not moderated!

 And is sadly starting to become an unfriendly and unwelcoming place.  Is
 racism really necessary or relevant?

 Lisi


 Hello Lisi:

 It is not racism, the meaning is: someone who wants to control the
 World.If you know a proper word, please go ahead. I really do not know
 it!
 
 Where did that definition com from? It definitely *is* racist and highly
 insulting!

Well if this list is not moderated.. Maybe it should.

-- 
“One original thought is worth a thousand mindless quotings.”
“Le vrai n'est pas plus sûr que le probable.”

  Diogene Laerce



signature.asc
Description: OpenPGP digital signature

Re: Preseeded setting on openssh-server ignored

2014-06-08 Thread Brian

On Sat 07 Jun 2014 at 23:08:47 +0530, Murukesh Mohanan wrote:

 I'm trying to use preseeding to automate installation, and
 openssh-server is ignoring a selection
 openssh-server openssh-server/permit-root-login bool true 
 The sshd_config always contains 
 PermitRootLogin without-password 

This is what you get with a new install of 1:6.6p1-1. It is the
default. If is not to your liking you have to alter it afterwards.

 I gather that this is due to the fix of bug #298138. While the 
 OP's, and the patch submitter's rationale behind changing 
 PermitRootLogin to without-password is ok, doing so by totally 
 ignoring the debconf selection if not upgrading is *not*. If I 
 wish to automate new installs, with a reasonably secure root 
 password, unlike OP, I fail to see why my preseed debconf 
 selection should not work. It is, after all, an explicit user 

Yours is a new install.

 choice. There are plenty of such selections where the user is 
 not asked a question at all and the default selection is used, 
 so I fail to see why this question is being ignored (or not 
 asked, as maybe the case). I have no problems with the default 
 value being 'without-password'. But is ignoring the debconf 
 selection altogether the new intended behaviour, or has the 
 set of valid values for this selection changed?
 
 The bug has been archived, so I'm posting to the general list
 instead of to the bug itself. I have tested this out on jessie
 and Ubuntu 14.04.

You only see this question if openssh-server is being upgraded to
1:6.6p1-1. README.Debian has details of the change.


-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: 
https://lists.debian.org/08062014204806.3c7aa337b...@desktop.copernicus.demon.co.uk

Re: Jessie PowerPC installer doesn't see USB keyboard on PowerPC Mac machines

On Sun, 2014-06-08 at 10:46 -0400, Stephen Allen wrote:
 On Sun, Jun 08, 2014 at 12:14:56AM +0200, Ralf Mardorf wrote:
  On Sat, 2014-06-07 at 15:04 -0700, Rick Thomas wrote:
   Hmmm...
   
   I originally reported this back in November.
   
   After a while, it went away for me.  Downloading the latest (about 
   January time-frame) netinst image worked fine -- both Jessie and 
   Wheezy.  I haven't tried it recently, though.
   
   Possibly a regression?
   
   Rick
   
   PS: Jessie on a powerpc64 (Apple MacPro dual G5) crashes randomly upon 
   attempting to reboot.
   Anybody else noticing this?
  
  Mailing Lists
  The Debian PowerPC mailing list is the proper place for questions,
  suggestions for improvements, or just for chat concerning PowerPC
  systems running Debian. The debian-user list is also available for
  general Debian questions which are not specific to PowerPC.
 
 Ralf - Rick has been using Debian email lists longer than you and he
 knows about the PowerPC lists. There is probably a valid reason why he's
 using the general Debian-Users list, and no it's not off topic here -
 It's about Debian and he's a user!
 
 You and your off-topic posts shouldn't be pointing fingers at people!
 Use some common sense!

I didn't, I wanted to help, because I wasn't aware that he knows what he
did, when sending a reply to this list.
You shouldn't assume something bad.



-- 
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org 
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/1402257471.826.102.camel@archlinux

Re: GPG Keys..... was Re: Should I install chkrootkit?