Re: eagle-lin64-7.5.0.run, won't

[Gene Heskett]

On Friday 15 January 2016 23:35:53 Chris Bannister wrote:

> On Thu, Jan 14, 2016 at 06:37:49PM -0500, Gene Heskett wrote:
> > Greetings all;
> >
> > Since the gEDA kit in the repo's seems to be rather broken, I
> > thought I'd give eagle another chance, so I downloaded, from the
> > cadsoft site, the latest 64 bit linux installer, but can't find a
> > help file, and obviously I am not training my monkeys correctly.
> >
> > Has anyone else had any luck, running it after convincing the
> > installer where you wanted it installed?
> >
> > I have cd'd to its base directory, and exported EAGLEDIR=`pwd' so it
>
>   ^^
> Is that verbatim? I'd put an actual absolute path there. The second
> 'tic' is not a backtick.
>
Probably a typu Chris.  Ancient fingers & all that. It does show 
correctly in an env query.

> Do backsticks actually work in this case?

Sure!

> > shows in that shells env report, but it can't find its executable
> > with both hands, prefering to give me a
> > gene@coyote:~/eagle-7.5.0$ bin/eagle
> > bash: bin/eagle: No such file or directory
> >
> > Clues? I'm confused enough without this.
>
> You could try and use the find command to see where it actually is.
> I use a locate variant e.g.

Whats the matter with "ls -laR", its right there where I said it was.  
Even has exec perms.

> # apt-cache show mlocate

Point being, I gave up on eagle.  gEDA to the rescue, and I already have 
some very nearly working gcode from gEDA/pcb. Some fine tuning to do 
like 10x bigger solder pads for the outside world connections, and 
potentially about a 50% shrink as I want to make several of these by 
step & repeat. I need 3 instantly, and there may be a potential market 
for a few.

Cheers, Gene Heskett
-- 
"There are four boxes to be used in defense of liberty:
 soap, ballot, jury, and ammo. Please use in that order."
-Ed Howdershelt (Author)
Genes Web page 

Re: DenyHosts

[Steve Matzura]

Reco:

All of this is an excellent learning opportunity for me. Please bear
with me just a bit as I ask the following:

On Sat, 16 Jan 2016 01:55:38 +0300, you wrote:

>A simple solution:
>
>iptables -I INPUT -p dcp -s 59.46.71.0/24 -j DROP

`-p dcp'? manpages says:

   [!] -p, --protocol protocol
  The protocol of the rule or of the packet to check.  The
specified protocol can be one of tcp, udp, udplite, icmp, icmpv6,esp,
  ah, sctp, mh or the special  keyword  "all",  or  it can
be  a numeric  value, representing one of these protocols or a
different one.  A protocol name from /etc/protocols is  also  allowed.
...

>A complex one:
>
>iptables -I INPUT -p tcp --dport 22 -m conntrack --ctstate NEW \
>   -m hashlimit --hashlimit 1/hour --hashlimit-burst 16 \
>   --hashlimit-mode srcip --hashlimit-name ssh \
>   --hashlimit-htable-expire 6 -j ACCEPT

   -m, --match match
  Specifies  a  match  to  use,  that is, an extension
module that tests for a specific property. The set of matches  make up
the condition under which a target is invoked. Matches are evaluated
first to last as specified on  the  command  line  and  work in
short-circuit fashion, i.e. if one extension yields false, evaluation
will stop.

If I understand the above, in this command you are doing something
with two rule `conntrack' and `hashlimit'. But what? Adding them?
Setting rule behavior?

>iptables -I INPUT -p tcp --dport 22 --tcp-flags SYN,RST,ACK SYN \
>   -j DROP

   -j, --jump target
  This specifies the target of the rule; i.e., what to do
if  the packet  matches  it.   The  target  can  be a user-defined
chain (other than the one this rule is in), one of the special builtin
  targets  which  decide the fate of the packet
immediately, or an extension (see EXTENSIONS below).  If this option
is omitted  in a rule (and -g is not used), then matching the rule
will have no effect on the packet's fate, but the counters on the rule
will be incremented.

So if the inbound packet has some property which matches any of those
specified in the `--tcp-flags' list, drop it?

Questions:

How do these commands function to lock out specific addresses or
address ranges?

In the `--tcp-flags' list, why is `SYN' mentioned twice?

Re: DenyHosts

[David]

On 16 January 2016 at 15:48, Steve Matzura  wrote:
> On Sat, 16 Jan 2016 01:55:38 +0300, Reco wrote:
>
>>A simple solution:
>>
>>iptables -I INPUT -p dcp -s 59.46.71.0/24 -j DROP
>
> iptables v1.4.21: unknown protocol "dcp" specified
> Try `iptables -h' or 'iptables --help' for more information.
>
> Should I try the complex solution, or find out what went wrong with
> the simple one first?

There's a typo in the command Reco gave you.

The dcp should be tcp, like the others. In full it should be:

iptables -I INPUT -p tcp -s 59.46.71.0/24 -j DROP

Re: DenyHosts

[Steve Matzura]

On Sat, 16 Jan 2016 01:55:38 +0300, Reco wrote:

>A complex one:
>
>iptables -I INPUT -p tcp --dport 22 -m conntrack --ctstate NEW \
>   -m hashlimit --hashlimit 1/hour --hashlimit-burst 16 \
>   --hashlimit-mode srcip --hashlimit-name ssh \
>   --hashlimit-htable-expire 6 -j ACCEPT
>
>iptables -I INPUT -p tcp --dport 22 --tcp-flags SYN,RST,ACK SYN \
>   -j DROP

Thank you. Since the simple solution didn't work, I took a chance and
used the second more complex one. The two commands were accepted
without error, and with no other status or output messages. I will now
use manpages and figure out what it is I just did.

Re: DenyHosts

[Steve Matzura]

On Sat, 16 Jan 2016 01:55:38 +0300, Reco wrote:

>A simple solution:
>
>iptables -I INPUT -p dcp -s 59.46.71.0/24 -j DROP

iptables v1.4.21: unknown protocol "dcp" specified
Try `iptables -h' or 'iptables --help' for more information.

Should I try the complex solution, or find out what went wrong with
the simple one first?

Re: eagle-lin64-7.5.0.run, won't

[Chris Bannister]

On Thu, Jan 14, 2016 at 06:37:49PM -0500, Gene Heskett wrote:
> Greetings all;
> 
> Since the gEDA kit in the repo's seems to be rather broken, I thought I'd 
> give eagle another chance, so I downloaded, from the cadsoft site, the 
> latest 64 bit linux installer, but can't find a help file, and obviously 
> I am not training my monkeys correctly.
> 
> Has anyone else had any luck, running it after convincing the installer 
> where you wanted it installed?
> 
> I have cd'd to its base directory, and exported EAGLEDIR=`pwd' so it 
  ^^
Is that verbatim? I'd put an actual absolute path there. The second
'tic' is not a backtick.

Do backsticks actually work in this case?

> shows in that shells env report, but it can't find its executable with 
> both hands, prefering to give me a 
> gene@coyote:~/eagle-7.5.0$ bin/eagle
> bash: bin/eagle: No such file or directory
> 
> Clues? I'm confused enough without this.

You could try and use the find command to see where it actually is.
I use a locate variant e.g.

# apt-cache show mlocate

-- 
"If you're not careful, the newspapers will have you hating the people
who are being oppressed, and loving the people who are doing the 
oppressing." --- Malcolm X

[HITB-Announce] #HITB2016AMS Capture the Flag: Culinary Tour de Force - Registration now open

[Hafez Kamal]

This year's CTF will be held May 26-27 2016, on location at Hack in the Box 
Amsterdam. Contestants can register in teams of up to 3 individuals by sending 
an email to c...@hitb.nl.

Registrations will be limited to 12 teams for the on-site event.

CTF Teaser date: To be announced

___

The Culinary Tour de Force - or CTF - is a pressure test of skills and 
ingenuity, where aspiring Chefs are challenged to prepare a series of exotic 
dishes within a short time frame. Contestants have 48 hours to analyze the 
recipes, find all the necessary ingredients and assemble them to complete their 
dish. Previous years have included such delicacies as

· Cuckoo with Stack Canary Paté
· Lattice Salade with C-Shells
· Pickled Python with a side of Perl oysters

As even just gathering ingredients will prove to be a challenge, contestants 
will be awarded points both for the collection of individual ingredients and 
the successful completion of a recipe.

More details: http://conference.hitb.org/hitbsecconf2016ams/capture-the-flag/

Regards,
Hafez Kamal
Hack in The Box (M) Sdn. Bhd
36th Floor, Menara Maxis
Kuala Lumpur City Centre
50088 Kuala Lumpur, Malaysia
Tel: +603-26157299
Fax: +603-26150088

Re: IMPORTEND squid3 stable needs update

[Carsten Schoenert]

Hello startrekfan,

please don't do top posting.

Am 15.01.2016 um 23:19 schrieb startrekfan:
> squid3 3.4.8 has some security issues(risks)/bugs so an upgrade to 3.5 is
> actually only a fix of this bugs/security issues.

Which issues do you refer? What bugs in detail? Have you looked into the
links Ben was providing? If you are talking about CVE-2015-5400 you will
it is fixed and there are no other open issues, but Ben was already
talking about that.

> There is no patch for 3.4.8 because it's outdated.

But it's not impossible to do such a patch, isn't it? And that's what
maintainer of Debian packages do on their own if upstream isn't very
helpful. This work ends in security updates. You use this feature in
your sources list to get them via apt?

> Debian Jessie is the current active release. So why not fixing squid3
> in Debian Jessie with an stable 3.5 update?>

Because this isn't needed if you can patch such issues and will probably
break other packages if you do such updates without further testing.
Please remind there are over 40.000 packages in the release which need
time to test all such side effects.
Of course not all other packages within Debian depending on squid but
there are enough. Try out yourself 'apt-cache rdepends squid3'.

-- 
Regards
Carsten Schoenert

Re: DenyHosts

[Reco]

Hi.

On Fri, 15 Jan 2016 16:37:48 -0500
Steve Matzura  wrote:

> My new fledgling server is being slammed, and I mean slammed like
> Sandy slammed New York, by root login attacks from 59.46.71.36,
> ShenYang, China. Of course, I don't allow root logins except from the
> console or via ssh key pair, so I presume I'm safe that way, but I'd
> sure like to cut down on the log churning of /var/log/auth.log,
> particularly since it makes it harder to read that log to get the
> stuff I need to know out of it. My router (Fios Quantum gateway) is
> useless at blocking anything from the outside, so I've got to do it
> internally. What are folks' favorite deny-hosts applications? I tried
> installing DenyHosts, but it must be from a private repo because
> whatever I have in sources couldn't find it.

Why bother with userspace when you can force a kernel to do the job?

A simple solution:

iptables -I INPUT -p dcp -s 59.46.71.0/24 -j DROP

A complex one:

iptables -I INPUT -p tcp --dport 22 -m conntrack --ctstate NEW \
-m hashlimit --hashlimit 1/hour --hashlimit-burst 16 \
--hashlimit-mode srcip --hashlimit-name ssh \
--hashlimit-htable-expire 6 -j ACCEPT

iptables -I INPUT -p tcp --dport 22 --tcp-flags SYN,RST,ACK SYN \
-j DROP

Reco

Re: IMPORTEND squid3 stable needs update

[startrekfan]

squid3 3.4.8 has some security issues(risks)/bugs so an upgrade to 3.5 is
actually only a fix of this bugs/security issues. There is no patch for
3.4.8 because it's outdated. Debian Jessie is the current active release.
So why not fixing squid3 in Debian Jessie with an stable 3.5 update?

Ben Hutchings  schrieb am Fr., 15. Jan. 2016 um
21:26 Uhr:

> On Fri, 2016-01-15 at 19:47 +, startrekfan wrote:
> > Hello,
> >
> > I'm not sure which mailing list I should chose. So I'll try my luck here.
> >
> > I didn't subscribed to the mailing list. So* please put my mail address
> > into cc*. thanks.
> >
> > *squid3 Version 3.4.8* is deployed in the Jessie stable repository.* This
> > version is outdated and has some security risks!!*. Version 3.5 is more
> > secure but unfortunately it's only marked as unstable
>
> You seem a bit confused about how Debian releases work.  Within any
> stable release, we apply bug fixes only - unless it's impossible for us
> to provide security support for the old upstream version.
>
> Our package of squid 3.4.8 does have a security fix on top of the
> upstream version: https://tracker.debian.org/news/702659
>
> So far as we know, there are no important security issues still
> affecting the version in jessie:
> https://security-tracker.debian.org/tracker/source-package/squid3
>
> Do you know otherwise?
>
> Ben.
>
> > So I'd like to request to mark Version 3.5 as stable.(But Version 3.5 in
> > stable state)
> >
> > thank you
> --
> Ben Hutchings
> The program is absolutely right; therefore, the computer must be wrong.

Re: DenyHosts

[Cláudio E. Elicker]

On Fri, 15 Jan 2016 16:37:48 -0500
Steve Matzura  wrote:

> My new fledgling server is being slammed, and I mean slammed like
> Sandy slammed New York, by root login attacks from 59.46.71.36,
> ShenYang, China. Of course, I don't allow root logins except from the
> console or via ssh key pair, so I presume I'm safe that way, but I'd
> sure like to cut down on the log churning of /var/log/auth.log,
> particularly since it makes it harder to read that log to get the
> stuff I need to know out of it. My router (Fios Quantum gateway) is
> useless at blocking anything from the outside, so I've got to do it
> internally. What are folks' favorite deny-hosts applications? I tried
> installing DenyHosts, but it must be from a private repo because
> whatever I have in sources couldn't find it.
> 
> Thanks in advance.
> 


As an emergency fix, add the offending(s) ip(s) to your /etc/hosts.deny
file.


-- 
EMACS is my operating system; Linux is my device driver.

Re: DenyHosts

[Sven Arvidsson]

On Fri, 2016-01-15 at 16:37 -0500, Steve Matzura wrote:
> My new fledgling server is being slammed, and I mean slammed like
> Sandy slammed New York, by root login attacks from 59.46.71.36,
> ShenYang, China. Of course, I don't allow root logins except from the
> console or via ssh key pair, so I presume I'm safe that way, but I'd
> sure like to cut down on the log churning of /var/log/auth.log,
> particularly since it makes it harder to read that log to get the
> stuff I need to know out of it. My router (Fios Quantum gateway) is
> useless at blocking anything from the outside, so I've got to do it
> internally. What are folks' favorite deny-hosts applications? I tried
> installing DenyHosts, but it must be from a private repo because
> whatever I have in sources couldn't find it.
> 
> Thanks in advance.

denyhosts only exists in oldoldstable, oldstable and unstable, so I
guess it was dropped and then reintroduced?

You could try fail2ban, it should be available in stable and testing as
well.

-- 
Cheers,
Sven Arvidsson
http://www.whiz.se
PGP Key ID 6FAB5CD5





signature.asc
Description: This is a digitally signed message part

Re: OT - gap -Re: Using bind mount

[Steve Matzura]

On Fri, 15 Jan 2016 14:36:24 +, you wrote:

>:-)  O.K. Please, no group "hugs" among friends I haven't met yet.  ;-)  Let's 
>wait until we know each other better. ;-)

My arms are at my sides where they belong. :-)

DenyHosts

[Steve Matzura]

My new fledgling server is being slammed, and I mean slammed like
Sandy slammed New York, by root login attacks from 59.46.71.36,
ShenYang, China. Of course, I don't allow root logins except from the
console or via ssh key pair, so I presume I'm safe that way, but I'd
sure like to cut down on the log churning of /var/log/auth.log,
particularly since it makes it harder to read that log to get the
stuff I need to know out of it. My router (Fios Quantum gateway) is
useless at blocking anything from the outside, so I've got to do it
internally. What are folks' favorite deny-hosts applications? I tried
installing DenyHosts, but it must be from a private repo because
whatever I have in sources couldn't find it.

Thanks in advance.

Re: Is anybody Running Debian on Acer Aspire E5-571G

[Brian]

On Fri 15 Jan 2016 at 15:45:18 -0500, Jude DaShiell wrote:

> Thanks much, looks like we have a repeat of Infocom's Bureaucracy game
> running.

Nope.

Explain your problem and it can be dealt with.

Re: Is anybody Running Debian on Acer Aspire E5-571G

[Jude DaShiell]

Thanks much, looks like we have a repeat of Infocom's Bureaucracy game 
running.


On Fri, 15 Jan 2016, Renaud OLGIATI wrote:


Date: Fri, 15 Jan 2016 10:47:05
From: Renaud OLGIATI 
To: debian-user@lists.debian.org
Subject: Re: Is anybody Running Debian on Acer Aspire E5-571G
Resent-Date: Fri, 15 Jan 2016 15:47:29 + (UTC)
Resent-From: debian-user@lists.debian.org

On Fri, 15 Jan 2016 14:27:54 +
Brian  wrote:


On Fri 15 Jan 2016 at 08:53:46 -0500, Jude DaShiell wrote:


I ran a netinst installation so no didn't have the nonfree rt2800 package
earlier.  Anyone know which debian dvd that package lives on?  I may be able
to install debian with the first dvd and whatever number that other dvd is
in future.


The DVDs contain free software only.


In other words, you are buggered, since you need the non-free driver to connect 
to the internet through which you will be able to download the non-free 
driver...

Cheers,

Ron.



--

Re: IMPORTEND squid3 stable needs update

[Ben Hutchings]

On Fri, 2016-01-15 at 19:47 +, startrekfan wrote:
> Hello,
> 
> I'm not sure which mailing list I should chose. So I'll try my luck here.
> 
> I didn't subscribed to the mailing list. So* please put my mail address
> into cc*. thanks.
> 
> *squid3 Version 3.4.8* is deployed in the Jessie stable repository.* This
> version is outdated and has some security risks!!*. Version 3.5 is more
> secure but unfortunately it's only marked as unstable

You seem a bit confused about how Debian releases work.  Within any
stable release, we apply bug fixes only - unless it's impossible for us
to provide security support for the old upstream version.

Our package of squid 3.4.8 does have a security fix on top of the
upstream version: https://tracker.debian.org/news/702659

So far as we know, there are no important security issues still
affecting the version in jessie:
https://security-tracker.debian.org/tracker/source-package/squid3

Do you know otherwise?

Ben.

> So I'd like to request to mark Version 3.5 as stable.(But Version 3.5 in
> stable state)
> 
> thank you
-- 
Ben Hutchings
The program is absolutely right; therefore, the computer must be wrong.

signature.asc
Description: This is a digitally signed message part

IMPORTEND squid3 stable needs update

[startrekfan]

Hello,

I'm not sure which mailing list I should chose. So I'll try my luck here.

I didn't subscribed to the mailing list. So* please put my mail address
into cc*. thanks.

*squid3 Version 3.4.8* is deployed in the Jessie stable repository.* This
version is outdated and has some security risks!!*. Version 3.5 is more
secure but unfortunately it's only marked as unstable

So I'd like to request to mark Version 3.5 as stable.(But Version 3.5 in
stable state)

thank you

Re: Problem with apt-get and sources.list

[Brian]

On Fri 15 Jan 2016 at 09:54:30 +0300, Adam Wilson wrote:

> On Thu, 14 Jan 2016 19:08:53 +
> Brian  wrote:
> 
> > http.debian.net/debian/
> > 
> > is exactly the same as
> > 
> > httpredir.debian.org/debian/
> > 
> > The .org indicates it is an official, supported mirror but it makes no
> > difference when updating and downloading. The former gets you to the
> > latter.
> > 
> 
> I am aware of this. I used to use httpredir.debian.org in my
> sources.list, but switched to http.debian.net because honestly it just
> looks better.

Looks do not matter. Either works for now and, for most users, it saves
them agonising about which mirror to use.

> Btw, what exactly is the purpose of '-proposed-updates'? I
> always enable it for completeness' sake, but is this good practice?

https://wiki.debian.org/StableProposedUpdates

I've never used it and have no plans to do so. 

Re: Problem with apt-get and sources.list

[Chris Bannister]

On Thu, Jan 14, 2016 at 06:18:09PM +0300, Adam Wilson wrote:
> On Wed, 13 Jan 2016 20:31:18 +0200
> Amr Saber  wrote:
> 
> > Hi there,
> > While I was configuring some thing in the sources.list file as apt-get
> > couldn't get any package I wanted or asked for (I double checked the
> > spelling for each package) and it just said package not found ...
> > any way, The problem is that the sources.list file was accidentally
> > deleted and I can't find any version of it online and ofcourse the
> > apt-get is no longer working at all
> 
> Assuming you're running stable,
> 
> deb http://http.debian.net/debian/ stable main
> deb http://http.debian.net/debian/ stable-updates main
> deb http://http.debian.net/debian/ stable-proposed-updates main
> deb http://http.debian.net/debian/ stable-backports main
> deb http://security.debian.org/ stable/updates main
> 
> is the complete setup. 

It's not complete, it's missing contrib and non-free.

-- 
"If you're not careful, the newspapers will have you hating the people
who are being oppressed, and loving the people who are doing the 
oppressing." --- Malcolm X

Re: Is anybody Running Debian on Acer Aspire E5-571G

[Patrick Bartek]

On Fri, 15 Jan 2016, Jude DaShiell wrote:

> I ran a netinst installation so no didn't have the nonfree rt2800 
> package earlier.  Anyone know which debian dvd that package lives
> on?  I may be able to install debian with the first dvd and whatever
> number that other dvd is in future.

You're probably going to have to install using a wired Ethernet
connection, then set up wireless.  This is what I had to do a few years
ago to install Debian on a Thinkpad 240X that had NO wireless at all,
only dialup and Ethernet.

I used the first install CD (not the Netinstall one) to do a basic
terminal only install, then configured the apt sources.list to install
everything else including what was needed for the external PCMCIA
wireless card. I had to compile the driver from source.

FWIW, I always use wired Ethernet when installing on a laptop whether it
has wireless or not. Less problematical.

B

 
> On Fri, 15 Jan 2016, Selim T. Erdo?an wrote:
> 
> > Date: Thu, 14 Jan 2016 18:08:56
> > From: Selim T. Erdo?an 
> > To: debian-user@lists.debian.org
> > Subject: Re: Is anybody Running Debian on Acer Aspire E5-571G
> > Resent-Date: Thu, 14 Jan 2016 23:09:21 + (UTC)
> > Resent-From: debian-user@lists.debian.org
> > 
> > On Tue, Jan 12, 2016 at 09:40:53PM -0500, Jude DaShiell wrote:
> >> I tried running it on an acer aspire 5003 notebook and it worked
> >> okay until trying to configure my network with my rt2800usb wifi
> >> adapter.  If I get a wifi extender I can plug ethernet into I'll
> >> try again it may work then.
> >
> > For rt2800usb, was the firmware-ralink package installed (from
> > non-free)?
> >
> >
> 

Re: Is anybody Running Debian on Acer Aspire E5-571G

[Lisi Reisz]

On Friday 15 January 2016 15:47:05 Renaud  OLGIATI wrote:
> On Fri, 15 Jan 2016 14:27:54 +
>
> Brian  wrote:
> > On Fri 15 Jan 2016 at 08:53:46 -0500, Jude DaShiell wrote:
> > > I ran a netinst installation so no didn't have the nonfree rt2800
> > > package earlier.  Anyone know which debian dvd that package lives on? 
> > > I may be able to install debian with the first dvd and whatever number
> > > that other dvd is in future.
> >
> > The DVDs contain free software only.
>
> In other words, you are buggered, since you need the non-free driver to
> connect to the internet through which you will be able to download the
> non-free driver...
>
> Cheers,
>
> Ron.

Or you can use the official "non-official" net-install CD.

See the yellow box half way down the page:

https://www.debian.org/releases/stable/debian-installer/

Lisi

Re: Libre graphics could become the standard if we push right now

[Alberto Salvia Novella]

Zlatan Todoric:
> Now you are defending them why they have closed source things that we
> need if we want to properly use their hardware?

What I am saying is microcode is more on the hardware side.

Moreover what I am interested in is to set a tendency, rather than on 
things to change overnight.



Zlatan Todoric:
> I don't get the last sentence but ok.

Firmware is a common concern because it can be overwritten by malware, 
have malicious functionalities, or have back-doors.


That has never been the case with microcode. It just declares the 
instruction set, but is not an executable.





smime.p7s
Description: S/MIME Cryptographic Signature

Re: Is anybody Running Debian on Acer Aspire E5-571G

[Brian]

On Fri 15 Jan 2016 at 12:47:05 -0300, Renaud OLGIATI wrote:

> On Fri, 15 Jan 2016 14:27:54 +
> Brian  wrote:
> 
> > On Fri 15 Jan 2016 at 08:53:46 -0500, Jude DaShiell wrote:
> > 
> > > I ran a netinst installation so no didn't have the nonfree rt2800 package
> > > earlier.  Anyone know which debian dvd that package lives on?  I may be 
> > > able
> > > to install debian with the first dvd and whatever number that other dvd is
> > > in future.
> > 
> > The DVDs contain free software only.
> 
> In other words, you are buggered, since you need the non-free driver
> to connect to the internet through which you will be able to download
> the non-free driver...

Ethernet?

Re: Libre graphics could become the standard if we push right now

[Zlatan Todoric]

On 01/15/2016 04:35 PM, Alberto Salvia Novella wrote:
> Zlatan Todoric:
>> Why just not open source it an be done with it.
> 
> Because they need to support old machines that require an unchanged kernel.
> 
> 
> Zlatan Todoric:
>> It currently needs closed source firmware to run 3D.
> 
> Not firmware, but microcode. It is just how the instruction set is
> handled in the processor, and it is kept confidential because that would
> reveal the hardware design that otherwise would be hard wired.
> 
> Even when it would be better libre it cannot restrict how you use your
> computer, be infected by malware, or have a back-door.
> 
> 

So you started this thread with that subject and now you are defending
them why they have closed source things that we need if we want to
properly use their hardware? And I don't get the last sentence but ok.

Re: Is anybody Running Debian on Acer Aspire E5-571G

[Ron]

On Fri, 15 Jan 2016 14:27:54 +
Brian  wrote:

> On Fri 15 Jan 2016 at 08:53:46 -0500, Jude DaShiell wrote:
> 
> > I ran a netinst installation so no didn't have the nonfree rt2800 package
> > earlier.  Anyone know which debian dvd that package lives on?  I may be able
> > to install debian with the first dvd and whatever number that other dvd is
> > in future.
> 
> The DVDs contain free software only.

In other words, you are buggered, since you need the non-free driver to connect 
to the internet through which you will be able to download the non-free 
driver...
 
Cheers,
 
Ron.
-- 
Which is worse: ignorance or apathy ?
   Who knows ? Who cares ?

   -- http://www.olgiati-in-paraguay.org --
 

Re: Libre graphics could become the standard if we push right now

[Alberto Salvia Novella]

Zlatan Todoric:
> Why just not open source it an be done with it.

Because they need to support old machines that require an unchanged kernel.


Zlatan Todoric:
> It currently needs closed source firmware to run 3D.

Not firmware, but microcode. It is just how the instruction set is 
handled in the processor, and it is kept confidential because that would 
reveal the hardware design that otherwise would be hard wired.


Even when it would be better libre it cannot restrict how you use your 
computer, be infected by malware, or have a back-door.





smime.p7s
Description: S/MIME Cryptographic Signature

Re: wheezy, message log being spammed by segfaults from apt_check.py

[Lisi Reisz]

On Friday 15 January 2016 13:26:09 Charlie Kravetz wrote:
> On Thu, 14 Jan 2016 22:44:07 -0600
>
> David Wright  wrote:
> >On Thu 14 Jan 2016 at 20:33:45 (-0700), Charlie Kravetz wrote:
> >> On Thu, 14 Jan 2016 21:37:49 -0500 Gene Heskett  
wrote:
> >> >On Thursday 14 January 2016 21:04:32 Charlie Kravetz wrote:
> >> >> On Fri, 15 Jan 2016 00:27:19 + Lisi Reisz  
wrote:
> >> >> >On Thursday 14 January 2016 23:49:03 Gene Heskett wrote:
> >> >> >> On Thursday 14 January 2016 17:39:59 Johann Klammer wrote:
> >> >> >> > On 01/14/2016 10:50 PM, Gene Heskett wrote:
> >> >> >> > > On Thursday 14 January 2016 16:18:08 Johann Klammer wrote:
> >> >> >> > >> Synaptic runs on your box?
> >> >> >> > >> Years ago, when I tried it, it would always crash right on
> >> >> >> > >> startup use aptitude. It seems a lot more stable...
> >> >> >> > >
> >> >> >> > > Back on list where it belongs.
> >> >> >> > >
> >> >> >> > > I just ran it, and its obvious it doesn't reference the same
> >> >> >> > > database of installed files that apt and synaptic use.  It
> >> >> >> > > just now wanted
> >> >> >> >
> >> >> >> > AFAIK, It does use the same database. Your system seems hosed...
> >> >> >> > Are you running it on the box that the OS is installed on, or on
> >> >> >> > some (boot... ,whatever) client?
> >> >> >>
> >> >> >> Directly on the os and box connected to this keyboard, no vpn's or
> >> >> >> anything else involved.
> >> >> >>
> >> >> >> > > to "upgrade" or sidegrade, 292 packages.  Refreshing the list
> >> >> >> > > didn't help but it reminded me of the 4 color screens we had
> >> >> >> > > on the amiga's back in the amigados-1.3 days.  Positively an
> >> >> >> > > assault on the eyeballs.
> >> >> >> >
> >> >> >> > press u to update.
> >> >> >>
> >> >> >> I did, didn't affect its faulty judgement a bit. It still wanted
> >> >> >> to update nearly 300 packages.
> >> >> >>
> >> >> >> > > But when an uptodate system is said to have 292 old or
> >> >> >> > > defective packages on it, I'm not sure I want it mucking
> >> >> >> > > around in MY used car lot.
> >> >> >> >
> >> >> >> > what kind of defective? broken? that means the dependencies are
> >> >> >> > not met... Press e to start the interactive resolver.
> >> >> >> > a and r to accept or reject.
> >> >> >>
> >> >> >> I'd have no clue what its doing in the background when I do that.
> >> >> >> FWIW, I had it hose the system on my laptop about 4 years ago with
> >> >> >> exactly this sort of a starting point. I'll pass as its 99.99%
> >> >> >> working right now.
> >> >> >>
> >> >> >> > > For what its worth, as root, an apt-get update, followed by an
> >> >> >> > > apt-get upgrade reports 0 package to upgrade.
> >> >>
> >> >> The answer may be in the above sentence. What does apt-get update,
> >> >> followed by apt-get dist-upgrade show? upgrade on its own does not
> >> >> upgrade all packages. It skips kernel and some other stuff. Perhaps
> >> >> that accounts for the differences?
> >> >
> >> >Will that not update me to Jessie?  I'd rather not take that step until
> >> > a fresh spin is available from linuxcnc.org, not too long after 16.04
> >> > LTS is out.
> >>
> >> It will only upgrade if you add or change the /etc/apt/sources.list to
> >> include jessie or stable. As long as the sources.list is referring to
> >> wheezy only, it will simply upgrade all the packages to the highest
> >> level in wheezy. Without it, a bunch of packages will not upgrade, ever.
> >>
> >> Let's see if anyone else can shed more light on this. I have always
> >> used dist-upgrade, because I always wanted all the packages up-to-date.
> >> If it is never used, running debian, the kernel has never upgraded and
> >> could cause another batch of monkeys running really bad.
> >
> >Is it worth quoting what Gene has already written in
> >https://lists.debian.org/debian-user/2016/01/msg00625.html
> >
> >"... all 4 machines were installed from
> >the same hybride-iso image you can get from linuxcnc.org.  Its based on
> >debian wheezy, but with a pinned kernel on the other 3 machines, the
> >kernels haveing been patched with the RTAI kit for realtime usage. All
> >4 machines are running a 3.4-9-rtai-686-pae kernel, which unfortunately
> >for this machine, pae doesn't work after the rtai patch, but this is the
> >only machine with sufficient (8Gb) memory to make use of the pae.
> >
> >There is a 3.16-something or other kernel that it wants me to update to,
> >and which is installed, but its a 64 bit kernel and linuxcnc will not run
> >on a 64 bit kernel for realtime stuff.  So I always reboot to the one I
> >know works..."
> >
> >> >> >> > > From that it would appear aptitude is confused at best, broken
> >> >> >> > > at worst.
> >> >> >>
> >> >> >> No comment?  Seems like the above report does warrant some sort of
> >> >> >> a reply.
> >> >> >
> >> >> >Gene, it isn't worthy of a response, so Johann wisely ignored it.
> >> >> > Johann - Gene has wheezy-backports fully enabled in his
> >> >> > source

Re: Libre graphics could become the standard if we push right now

[Zlatan Todoric]

Removing debian-devel@ from CC (not relevant list for this discussion)

On 01/15/2016 03:05 PM, Stefan Monnier wrote:
>>> So I think it is very important that we support AMD right now on what we
>>> can, and ask manufacturers to include AMD graphics in those products.
>> You do realize that AMD graphics need proprietary firmware to have
>> proper 3D acceleration without which you probably couldn't run any game
>> at all - so goodbye Libre graphics.
> 
> That's still much better than the situation with Nvidia.
> But your point is well taken: we should put most pressure on Nvidia
> while keeping the pressure on AMD.
> 

Or imho, we should push AMD even more because they are actually very
close to be true open (source/hardware) company. Nvidia will either
follow or fall out from our scope.



signature.asc
Description: OpenPGP digital signature

Re: OT - gap -Re: Using bind mount

[Lisi Reisz]

On Friday 15 January 2016 11:47:32 Chris Bannister wrote:
> On Thu, Jan 14, 2016 at 04:50:04PM +, Lisi Reisz wrote:
> > ;-)
> >
> > And please, no group "hugs" among strangers. ;-)
>
> I remember a 'poster' I had years ago which read "There are no strangers
> here, only friends we haven't met."  ;-)

:-)  O.K. Please, no group "hugs" among friends I haven't met yet.  ;-)  Let's 
wait until we know each other better. ;-)

Lisi

Re: Is anybody Running Debian on Acer Aspire E5-571G

[Brian]

On Fri 15 Jan 2016 at 08:53:46 -0500, Jude DaShiell wrote:

> I ran a netinst installation so no didn't have the nonfree rt2800 package
> earlier.  Anyone know which debian dvd that package lives on?  I may be able
> to install debian with the first dvd and whatever number that other dvd is
> in future.

The DVDs contain free software only.

Re: Is anybody Running Debian on Acer Aspire E5-571G

[Jude DaShiell]

I ran a netinst installation so no didn't have the nonfree rt2800 
package earlier.  Anyone know which debian dvd that package lives on?  I 
may be able to install debian with the first dvd and whatever number 
that other dvd is in future.


On Fri, 15 Jan 2016, Selim T. Erdo?an wrote:


Date: Thu, 14 Jan 2016 18:08:56
From: Selim T. Erdo?an 
To: debian-user@lists.debian.org
Subject: Re: Is anybody Running Debian on Acer Aspire E5-571G
Resent-Date: Thu, 14 Jan 2016 23:09:21 + (UTC)
Resent-From: debian-user@lists.debian.org

On Tue, Jan 12, 2016 at 09:40:53PM -0500, Jude DaShiell wrote:

I tried running it on an acer aspire 5003 notebook and it worked okay until
trying to configure my network with my rt2800usb wifi adapter.  If I get a
wifi extender I can plug ethernet into I'll try again it may work then.


For rt2800usb, was the firmware-ralink package installed (from non-free)?




--

Re: wheezy, message log being spammed by segfaults from apt_check.py

[Charlie Kravetz]

On Thu, 14 Jan 2016 22:44:07 -0600
David Wright  wrote:

>On Thu 14 Jan 2016 at 20:33:45 (-0700), Charlie Kravetz wrote:
>> On Thu, 14 Jan 2016 21:37:49 -0500 Gene Heskett  
>> wrote:  
>> >On Thursday 14 January 2016 21:04:32 Charlie Kravetz wrote:  
>> >> On Fri, 15 Jan 2016 00:27:19 + Lisi Reisz  
>> >> wrote:
>> >> >On Thursday 14 January 2016 23:49:03 Gene Heskett wrote:
>> >> >> On Thursday 14 January 2016 17:39:59 Johann Klammer wrote:
>> >> >> > On 01/14/2016 10:50 PM, Gene Heskett wrote:
>> >> >> > > On Thursday 14 January 2016 16:18:08 Johann Klammer wrote:
>> >> >> > >> Synaptic runs on your box?
>> >> >> > >> Years ago, when I tried it, it would always crash right on
>> >> >> > >> startup use aptitude. It seems a lot more stable...
>> >> >> > >
>> >> >> > > Back on list where it belongs.
>> >> >> > >
>> >> >> > > I just ran it, and its obvious it doesn't reference the same
>> >> >> > > database of installed files that apt and synaptic use.  It just
>> >> >> > > now wanted
>> >> >> >
>> >> >> > AFAIK, It does use the same database. Your system seems hosed...
>> >> >> > Are you running it on the box that the OS is installed on, or on
>> >> >> > some (boot... ,whatever) client?
>> >> >>
>> >> >> Directly on the os and box connected to this keyboard, no vpn's or
>> >> >> anything else involved.
>> >> >>
>> >> >> > > to "upgrade" or sidegrade, 292 packages.  Refreshing the list
>> >> >> > > didn't help but it reminded me of the 4 color screens we had on
>> >> >> > > the amiga's back in the amigados-1.3 days.  Positively an
>> >> >> > > assault on the eyeballs.
>> >> >> >
>> >> >> > press u to update.
>> >> >>
>> >> >> I did, didn't affect its faulty judgement a bit. It still wanted to
>> >> >> update nearly 300 packages.
>> >> >>
>> >> >> > > But when an uptodate system is said to have 292 old or
>> >> >> > > defective packages on it, I'm not sure I want it mucking around
>> >> >> > > in MY used car lot.
>> >> >> >
>> >> >> > what kind of defective? broken? that means the dependencies are
>> >> >> > not met... Press e to start the interactive resolver.
>> >> >> > a and r to accept or reject.
>> >> >>
>> >> >> I'd have no clue what its doing in the background when I do that. 
>> >> >> FWIW, I had it hose the system on my laptop about 4 years ago with
>> >> >> exactly this sort of a starting point. I'll pass as its 99.99%
>> >> >> working right now.
>> >> >>
>> >> >> > > For what its worth, as root, an apt-get update, followed by an
>> >> >> > > apt-get upgrade reports 0 package to upgrade.
>> >>
>> >> The answer may be in the above sentence. What does apt-get update,
>> >> followed by apt-get dist-upgrade show? upgrade on its own does not
>> >> upgrade all packages. It skips kernel and some other stuff. Perhaps
>> >> that accounts for the differences?
>> >
>> >Will that not update me to Jessie?  I'd rather not take that step until a 
>> >fresh spin is available from linuxcnc.org, not too long after 16.04 LTS 
>> >is out.  
>> 
>> It will only upgrade if you add or change the /etc/apt/sources.list to
>> include jessie or stable. As long as the sources.list is referring to
>> wheezy only, it will simply upgrade all the packages to the highest
>> level in wheezy. Without it, a bunch of packages will not upgrade, ever.
>> 
>> Let's see if anyone else can shed more light on this. I have always
>> used dist-upgrade, because I always wanted all the packages up-to-date.
>> If it is never used, running debian, the kernel has never upgraded and
>> could cause another batch of monkeys running really bad.  
>
>Is it worth quoting what Gene has already written in
>https://lists.debian.org/debian-user/2016/01/msg00625.html
>
>"... all 4 machines were installed from 
>the same hybride-iso image you can get from linuxcnc.org.  Its based on 
>debian wheezy, but with a pinned kernel on the other 3 machines, the 
>kernels haveing been patched with the RTAI kit for realtime usage. All 
>4 machines are running a 3.4-9-rtai-686-pae kernel, which unfortunately 
>for this machine, pae doesn't work after the rtai patch, but this is the 
>only machine with sufficient (8Gb) memory to make use of the pae.
>
>There is a 3.16-something or other kernel that it wants me to update to,
>and which is installed, but its a 64 bit kernel and linuxcnc will not run 
>on a 64 bit kernel for realtime stuff.  So I always reboot to the one I 
>know works..."
>
>> >> >> > > From that it would appear aptitude is confused at best, broken
>> >> >> > > at worst.
>> >> >>
>> >> >> No comment?  Seems like the above report does warrant some sort of
>> >> >> a reply.
>> >> >
>> >> >Gene, it isn't worthy of a response, so Johann wisely ignored it. 
>> >> > Johann - Gene has wheezy-backports fully enabled in his
>> >> > sources.list, with, so far as I can tell, the same pinning as the
>> >> > other sources.  Synaptic used it to upgrade over 300 packages.  It
>> >> > is pr

Re: Projector, Debian, OS X, Windows, HDMI

[German]

On Fri, 15 Jan 2016 09:11:51 +
Joe  wrote:

> On Fri, 15 Jan 2016 03:54:10 -0500
> German  wrote:
> 
> > Hi list, 
> > 
> > First of all good news. I recently bought not expensive LCD
> > projector. So I hooked it up to my computer's HDMI output, plugged
> > the other end of HDMI cable to projector and voila, all of the
> > context of my monitor was mirrored on the wall. All programs,
> > icons, etc.. I opened up movie player and turned on cartoon and
> > enjoyed it on the screen. This set up running Debian 8.0.
> > 
> > 
> > Then I tried it to connect to Mac Book Air ( OS X) with the help of
> > mini display port to HDMI cable. For a while I got computer's
> > wallpaper on the wall ( but not the icons and other stuff which is
> > on Mac's display) and connection was lost ( projector displayed "no
> > input" icon. If this is not faulty mini display to HDMI cord, what
> > might me a problem?
> > 
> > 
> > The third time, Windows machine was connected to projector. By
> > HDMI-HDMI cable. Again, only wallpaper of computer was projected on
> > the wall. No browser and any other programs and icons which are
> > present on the screen of Windows machine.
> > 
> > 
> > Can anyone clue me in what happens? Does other OS's need to be
> > specifically adjust setting? What are the setting there might be?
> > Anyway, please share your thoughts. Thank you
> > 
> 
> Windows needs to know what you want to do with the second monitor: do
> you want it to be an extension of the first, giving you more desktop,
> or do you want it to be a copy, e.g. to run a projector while you
> still work from the laptop screen. It also wants to know whether you
> want a taskbar on one monitor or both, and which is the primary
> screen.
> 
> So what you're seeing on Windows is the default setting: you should
> find that if you move the mouse pointer off the edge of the main
> screen, it appears on the projector screen, though you'll have to
> experiment to find which edge to move from.
> 
> You need to right-click on an empty area of the desktop and I'm not
> sure where you go from there, but explore the menu until you find the
> multiple monitors setup.
> 
> I'd guess that Macs would have similar features, that's probably where
> MS copied theirs from, and almost certainly where the Linux randr
> multiple monitor setup came from as well.
> 

Thank you, i'll try to figure this out

Re: OT - gap -Re: Using bind mount

[Chris Bannister]

On Thu, Jan 14, 2016 at 04:50:04PM +, Lisi Reisz wrote:
> ;-)
> 
> And please, no group "hugs" among strangers. ;-)

I remember a 'poster' I had years ago which read "There are no strangers
here, only friends we haven't met."  ;-)

-- 
"If you're not careful, the newspapers will have you hating the people
who are being oppressed, and loving the people who are doing the 
oppressing." --- Malcolm X

Wine application window disappearing after switching desktops

[Siard]

Testing here, Fluxbox, amd64.
When running a program in wine, after switching to another desktop and
switching back to the wine program, the program window has disappeared
somewhere in the background. The shortcut for cycling through programs
in the same desktop brings it back.

As far as I can find, it seems to be caused by a certain interaction
between wine and certain window managers, Fluxbox among them, and not
with all programs installed with wine.

It appears to be an old bug, which should have been fixed in wine 1.2.
But this is wine 1.8!
It is also mentioned here:
http://marc.info/?l=wine-devel&m=108758530429491&w=2
"Wine window disappears from virtual desktop!"
Not being an expert, I'm not sure how to apply this patch, and
moreover, this message, too, is very old (2004).

Anyone else having this, and is there a fix?

Re: isc-dhcp-server in squeeze-lst broken after update

[Mike Gabriel]

Hi Bonno,

On  Fr 15 Jan 2016 08:20:59 CET, Bonno Bloksma wrote:

Please fix the package in Squeeze-lts so I can have the dhcpd.conf  
file in its proper place.


I double checked yesterday's upload of isc-dhcp-server to squeeze-lts.  
The fix introduced there is very unrelated to file names and paths and  
such.


So please, could you report back from what version to what version of  
the $DHCP package you actually upgraded? Please investigate  
/var/log/dpkg.log for that.


Furthermore, it is possible to set the path to dhcpd.conf as an env  
variable. This, for example, could be done in  
/etc/default/isc-dhcp-server:


"""
PATH_DHCPD_CONF=/etc/dhcp/dhcpd.conf
"""

Please also note that isc-dhcp-server copies the conf file (in a nasty  
way, non-Debian-policy conform, it seems) from


  /etc/dhcp3/dhcpd.conf -> /etc/dhcp/dhcpd.conf

when upgrading from dhcp3-server.

Thanks+Greets,
Mike

PS: Attached is the .debdiff between isc-dhcp-4.1.1-P1-15+squeeze8 and  
isc-dhcp-4.1.1-P1-15+squeeze9.

--

DAS-NETZWERKTEAM
mike gabriel, herweg 7, 24357 fleckeby
fon: +49 (1520) 1976 148

GnuPG Key ID 0x25771B31
mail: mike.gabr...@das-netzwerkteam.de, http://das-netzwerkteam.de

freeBusy:
https://mail.das-netzwerkteam.de/mailxchange/kronolith/fb.php?u=m.gabriel%40das-netzwerkteam.de
diff -u isc-dhcp-4.1.1-P1/debian/changelog isc-dhcp-4.1.1-P1/debian/changelog
--- isc-dhcp-4.1.1-P1/debian/changelog
+++ isc-dhcp-4.1.1-P1/debian/changelog
@@ -1,3 +1,14 @@
+isc-dhcp (4.1.1-P1-15+squeeze9) squeeze-lts; urgency=medium
+
+  * Non-maintainer upload by the Debian LTS Team.
+  * debian/patches:
++ Add CVE-2015-8605.dpatch. Properly check UDP payload length
+  (CVE-2015-8605).
++ Add drop_unused_vars_from_ldap-c.dpatch. Fix FTBFS when gcc
+  option -Werror is used.
+
+ -- Mike Gabriel   Thu, 14 Jan 2016 10:14:47 +0100
+
 isc-dhcp (4.1.1-P1-15+squeeze8) squeeze-security; urgency=high
 
   * Non-maintainer upload.
diff -u isc-dhcp-4.1.1-P1/debian/patches/00list 
isc-dhcp-4.1.1-P1/debian/patches/00list
--- isc-dhcp-4.1.1-P1/debian/patches/00list
+++ isc-dhcp-4.1.1-P1/debian/patches/00list
@@ -26,0 +27,5 @@
+
+CVE-2015-8605
+
+# fix build when gcc option -Werror is used
+drop_unused_vars_from_ldap-c.dpatch
only in patch2:
unchanged:
--- isc-dhcp-4.1.1-P1.orig/debian/patches/drop_unused_vars_from_ldap-c.dpatch
+++ isc-dhcp-4.1.1-P1/debian/patches/drop_unused_vars_from_ldap-c.dpatch
@@ -0,0 +1,53 @@
+#! /bin/sh /usr/share/dpatch/dpatch-run
+## drop_unused_vars_from_ldap-c.dpatch by 
+##
+## All lines beginning with `## DP:' are a description of the patch.
+## DP: Fix build when gcc option -Werror is used.
+
+@DPATCH@
+--- a/server/ldap.c2016-01-14 21:39:38.0 +0100
 b/server/ldap.c2016-01-14 21:41:52.110259199 +0100
+@@ -1201,7 +1201,6 @@
+  Needs schema change.
+*/
+   LDAPMessage * newres, * newent;
+-  struct ldap_config_stack *ns;
+   char **tempstr;
+   int i, j, ret;
+ #if defined (DEBUG_LDAP)
+@@ -1437,7 +1436,7 @@
+   char **objectClass, *dn;
+   struct ldap_config_stack *entry;
+   LDAPMessage *ent, *res, *entfirst, *resfirst;
+-  int i, j, ignore, found;
++  int i, ignore, found;
+   int ret, parsedn = 1;
+ 
+   if (ld == NULL)
+@@ -1899,7 +1898,7 @@
+  int type, struct host_decl *host,
+  struct class **class)
+ {
+-  int i, declaration, lease_limit;
++  int declaration, lease_limit;
+   char option_buffer[8192];
+   enum dhcp_token token;
+   struct parse *cfile;
+@@ -2005,7 +2004,7 @@
+ find_haddr_in_ldap (struct host_decl **hp, int htype, unsigned hlen,
+ const unsigned char *haddr, const char *file, int line)
+ {
+-  char buf[128], *type_str, **tempstr, *addr_str;
++  char buf[128], *type_str;
+   LDAPMessage * res, *ent;
+   struct host_decl * host;
+   isc_result_t status;
+@@ -2193,7 +2192,7 @@
+struct data_string *data)
+ {
+   LDAPMessage * res, * ent;
+-  int i, ret, lease_limit;
++  int ret, lease_limit;
+   isc_result_t status;
+   ldap_dn_node *curr;
+   char buf[1024];
only in patch2:
unchanged:
--- isc-dhcp-4.1.1-P1.orig/debian/patches/CVE-2015-8605.dpatch
+++ isc-dhcp-4.1.1-P1/debian/patches/CVE-2015-8605.dpatch
@@ -0,0 +1,105 @@
+#! /bin/sh /usr/share/dpatch/dpatch-run
+## CVE-2015-8605.dpatch by 
+##
+## All lines beginning with `## DP:' are a description of the patch.
+## DP: No description.
+
+@DPATCH@
+--- a/common/packet.c  2016-01-09 22:06:01.167749929 +
 b/common/packet.c  2016-01-09 22:06:01.235749921 +
+@@ -205,7 +205,28 @@
+   return decode_ethernet_header (interface, buf, bufix, from);
+ }
+ 
+-/* UDP header and IP header decoded together for convenience. */
++/*!
++ *
++ * \brief UDP header and IP header decoded together for convenience.
++ *
++ * Attempt to decode the UDP and IP headers and, if necessary, checksum
++ * the packet.
++ *
++ * \param inteface - the interface on which the packet was recevied
++ * \param buf - a pointer to t

Re: Libre graphics could become the standard if we push right now

[Zlatan Todoric]

Dropping debian-devel@ from CC (not relevant for discussion, someone
should do the same checking for others)

On 01/15/2016 10:57 AM, shawn wilson wrote:
> On Jan 14, 2016 5:11 PM, "Zlatan Todoric"  wrote:
>>
>>
>>
>> On 01/14/2016 09:11 PM, Alberto Salvia Novella wrote:
>>> Nearly all compact Linux computers feasible for gaming are sold
>>> exclusively using NVIDIA graphics, and that company is hostile to libre
>>> software.
>>>
>>> So I think it is very important that we support AMD right now on what we
>>> can, and ask manufacturers to include AMD graphics in those products.
>>>
>>
>> You do realize that AMD graphics need proprietary firmware to have
>> proper 3D acceleration without which you probably couldn't run any game
>> at all - so goodbye Libre graphics.
>>
> 
> Besides that, AMD's fglrx require X to be running in order to run while
> nVidia does not (kinda sucks if you have a bunch of 8 card nodes using the
> cards for scientific applications). Also, in this setting, there were a lot
> more issues with AMD than nVidia (soft crashes, hard crashes, cards going
> offline until reboot).
> 
> I'm not a big gamer, so maybe there are less issues with AMD in this
> setting. And I'd be thrilled if either fglrx or nv were OSS (would weigh
> heavily on purchasing decisions). However, because AMD really pissed me off
> here, I had to say something here.
> 

I am pretty sure this discussion (and the OP) isn't thinking on fglrx
but Radeon open source driver (RadeonSI most probably). It currently
needs closed source firmware to run 3D, but if we stay blind on that,
RadeonSI driver is very capable at this moment.



signature.asc
Description: OpenPGP digital signature

Re: Libre graphics could become the standard if we push right now

[Zlatan Todoric]

Dropping debian-devel@ from CC (not relevant for discussion, don't know
for Ubuntu ones)

On 01/15/2016 02:28 AM, Michael Haney wrote:
> On Thu, Jan 14, 2016 at 4:10 PM, Zlatan Todoric  wrote:
> 
>>
>>
>> On 01/14/2016 09:11 PM, Alberto Salvia Novella wrote:
>>> Nearly all compact Linux computers feasible for gaming are sold
>>> exclusively using NVIDIA graphics, and that company is hostile to libre
>>> software.
>>>
>>> So I think it is very important that we support AMD right now on what we
>>> can, and ask manufacturers to include AMD graphics in those products.
>>>
>>
>> You do realize that AMD graphics need proprietary firmware to have
>> proper 3D acceleration without which you probably couldn't run any game
>> at all - so goodbye Libre graphics.
>>
>>> Because of that I have started campaigning for it:
>>> http://steamcommunity.com/discussions/forum/11/458606248621316073/
>>>
>>>
>>
> 
> Uh, excuse me...
> 
> https://en.wikipedia.org/wiki/GPUOpen
> http://arstechnica.com/information-technology/2015/12/amd-embraces-open-source-to-take-on-nvidias-gameworks/
> http://www.tomshardware.com/news/amd-gpuopen-open-source-development,30750.html
> 
> It's time we started promoting AMD rather than Nvidia for Linux graphics.
> 

So, you just proved what I said. AMD graphics are not free (if you want
a gameplay, for 2D I think you would be fine but...). They were never
free, aren't free and probably will not be free in near future. They
will still have the closed source driver, they said initially they will
be closed source evolving to open source (why evolving, why just not
open source it an be done with it - shady business...) so until that
happens and Radeon (AMDGPU or whatever they call it in the end) drivers
gets FLOSS, your points are not valid.



signature.asc
Description: OpenPGP digital signature

Re: isc-dhcp-server in squeeze-lst broken after update

[Mike Gabriel]

Hi,

On  Fr 15 Jan 2016 09:02:55 CET, deloptes wrote:


Bonno Bloksma wrote:


Please fix the package in Squeeze-lts so I can have the dhcpd.conf file in
its proper place.

Bonno Bloksma


This is like 5 years old. At least back then I noticed the same

so from within /etc/dhcp ln -s dhcpd.conf -> ../dhcpd.conf

and no issue since then. I think the reason was that dhcp-server is now
called isc-dhcp-server. But I do not recall why they renamed it.

What does the maintainer says - there must have been reason for doing so.


I did not meet that issue on my test rig. I will check the recently  
upload package and report back.


Greets,
Mike
--

DAS-NETZWERKTEAM
mike gabriel, herweg 7, 24357 fleckeby
fon: +49 (1520) 1976 148

GnuPG Key ID 0x25771B31
mail: mike.gabr...@das-netzwerkteam.de, http://das-netzwerkteam.de

freeBusy:
https://mail.das-netzwerkteam.de/mailxchange/kronolith/fb.php?u=m.gabriel%40das-netzwerkteam.de


pgpH9dViML3pE.pgp
Description: Digitale PGP-Signatur

Re: Proposal: Restore Nautilus search-as-you-type!

[err404]

this fonctionality still exist in Mate Desktop.

Re: Libre graphics could become the standard if we push right now

[Svante Signell]

On Fri, 2016-01-15 at 04:57 -0500, shawn wilson wrote:
> 
> On Jan 14, 2016 5:11 PM, "Zlatan Todoric"  wrote:
> 
> > > So I think it is very important that we support AMD right now on what we
> > > can, and ask manufacturers to include AMD graphics in those products.
> > >
> >
> > You do realize that AMD graphics need proprietary firmware to have
> > proper 3D acceleration without which you probably couldn't run any game
> > at all - so goodbye Libre graphics.
> >
> Besides that, AMD's fglrx require X to be running in order to run while nVidia
> does not (kinda sucks if you have a bunch of 8 card nodes using the cards for
> scientific applications). Also, in this setting, there were a lot more issues
> with AMD than nVidia (soft crashes, hard crashes, cards going offline until
> reboot).
> I'm not a big gamer, so maybe there are less issues with AMD in this setting.
> And I'd be thrilled if either fglrx or nv were OSS (would weigh heavily on
> purchasing decisions). However, because AMD really pissed me off here, I had
> to say something here.

Well, I don't think the issue is about the non-free driver fglrx, but the open
source radeon drivers. fglrx is as bad as the nVidia non-free ones. BTW: nv is
OSS (Open Source Software), however with limited performance due to lacking open
documentation of the nVidia graphics hardware. The closed firmware issue is
another story...

Proposal: Restore Nautilus search-as-you-type!

[/ vt]

Hello,

I am using Debian 8 Jessie and I am sick of the new way Nautilus searches
for files.
To be on the same page I will explain the new and the old behavior:

the old behavior:
In Debian 7 (Wheezy) when you start typing on the keyboard Nautilus selects
the file/directory which name matches what you are typing. It was blazing
fast to go through my file system (provided that I need a GUI).

In Debian 8 (Jessie) when you start typing on the keyboard, new text box
appears on the top and Nautilus performs "Search" and it is searching for
files and directories which name starts (or includes - I don't know) with
what you are typing in all sub-directories.

I just hate this so much. Who the hell would want to search for a file in
all sub-directories this way? Even the most stupid operating system ever
created (read Windows) gets this right. But no... Nautilus should innovate
- go to hell new Nautilus. Point the guy who made this change - he deserves
to use Windows for the rest of his life! It is so much more convenient to
just hit CTRL+F to start this stupid search and just use the old behavior
of Nautilus when you start typing. Instead of this, now I have to press
CTRL+S to go to select mode and then type in the name of the file/dir that
I want to select... WTF!?! Then what - I go one level deeper and I again
press CTRL+S to do the same thing - that's just crazy.

I tried to restore the old behavior of Nautilus unsuccessfully with this:
gsettings set org.gnome.nautilus.preferences enable-interactive-search true
gsettings set org.gnome.nautilus.preferences enable-interactive-search false

Both of these command return "No such key ...". I remember that I tried
several other stupid things in order to get the old behavior but no success.
I am using awesome wm not gnome.

Please restore this behavior for the new Debian release. I am sure lots of
people feel like me.

Sorry for the rant but this is driving me crazy - I don't see the point of
this change. It makes me a thousand times slower.

Thanks,
Vladimir

Re: Libre graphics could become the standard if we push right now

[shawn wilson]

On Jan 14, 2016 5:11 PM, "Zlatan Todoric"  wrote:
>
>
>
> On 01/14/2016 09:11 PM, Alberto Salvia Novella wrote:
> > Nearly all compact Linux computers feasible for gaming are sold
> > exclusively using NVIDIA graphics, and that company is hostile to libre
> > software.
> >
> > So I think it is very important that we support AMD right now on what we
> > can, and ask manufacturers to include AMD graphics in those products.
> >
>
> You do realize that AMD graphics need proprietary firmware to have
> proper 3D acceleration without which you probably couldn't run any game
> at all - so goodbye Libre graphics.
>

Besides that, AMD's fglrx require X to be running in order to run while
nVidia does not (kinda sucks if you have a bunch of 8 card nodes using the
cards for scientific applications). Also, in this setting, there were a lot
more issues with AMD than nVidia (soft crashes, hard crashes, cards going
offline until reboot).

I'm not a big gamer, so maybe there are less issues with AMD in this
setting. And I'd be thrilled if either fglrx or nv were OSS (would weigh
heavily on purchasing decisions). However, because AMD really pissed me off
here, I had to say something here.

> > Because of that I have started campaigning for it:
> > http://steamcommunity.com/discussions/forum/11/458606248621316073/
> >

Re: isc-dhcp-server in squeeze-lst broken after update

[Eike Lantzsch]

On Friday 15 January 2016 09:02:55 deloptes wrote:
> Bonno Bloksma wrote:
> > Please fix the package in Squeeze-lts so I can have the dhcpd.conf file in
> > its proper place.
> > 
> > Bonno Bloksma
> 
> This is like 5 years old. At least back then I noticed the same
> 
> so from within /etc/dhcp ln -s dhcpd.conf -> ../dhcpd.conf
> 
> and no issue since then. I think the reason was that dhcp-server is now
> called isc-dhcp-server. But I do not recall why they renamed it.
> 
> What does the maintainer says - there must have been reason for doing so.

Or start isc-dhcp like this:

/usr/sbin/dhcpd -q -cf /etc/dhcp/dhcpd.conf -pf /var/run/dhcpd.pid

-- 
Eike Lantzsch ZP6CGE

Re: Projector, Debian, OS X, Windows, HDMI

[Joe]

On Fri, 15 Jan 2016 03:54:10 -0500
German  wrote:

> Hi list, 
> 
> First of all good news. I recently bought not expensive LCD projector.
> So I hooked it up to my computer's HDMI output, plugged the other end
> of HDMI cable to projector and voila, all of the context of my monitor
> was mirrored on the wall. All programs, icons, etc.. I opened up movie
> player and turned on cartoon and enjoyed it on the screen. This set up
> running Debian 8.0.
> 
> 
> Then I tried it to connect to Mac Book Air ( OS X) with the help of
> mini display port to HDMI cable. For a while I got computer's
> wallpaper on the wall ( but not the icons and other stuff which is on
> Mac's display) and connection was lost ( projector displayed "no
> input" icon. If this is not faulty mini display to HDMI cord, what
> might me a problem?
> 
> 
> The third time, Windows machine was connected to projector. By
> HDMI-HDMI cable. Again, only wallpaper of computer was projected on
> the wall. No browser and any other programs and icons which are
> present on the screen of Windows machine.
> 
> 
> Can anyone clue me in what happens? Does other OS's need to be
> specifically adjust setting? What are the setting there might be?
> Anyway, please share your thoughts. Thank you
> 

Windows needs to know what you want to do with the second monitor: do
you want it to be an extension of the first, giving you more desktop,
or do you want it to be a copy, e.g. to run a projector while you still
work from the laptop screen. It also wants to know whether you want a
taskbar on one monitor or both, and which is the primary screen.

So what you're seeing on Windows is the default setting: you should
find that if you move the mouse pointer off the edge of the main
screen, it appears on the projector screen, though you'll have to
experiment to find which edge to move from.

You need to right-click on an empty area of the desktop and I'm not
sure where you go from there, but explore the menu until you find the
multiple monitors setup.

I'd guess that Macs would have similar features, that's probably where
MS copied theirs from, and almost certainly where the Linux randr
multiple monitor setup came from as well.

-- 
Joe

Re: Problem with apt-get and sources.list

[Adam Wilson]

On Thu, 14 Jan 2016 19:08:53 +
Brian  wrote:

> On Thu 14 Jan 2016 at 18:18:09 +0300, Adam Wilson wrote:
> 
> > On Wed, 13 Jan 2016 20:31:18 +0200
> > Amr Saber  wrote:
> >   
> > > Hi there,
> > > While I was configuring some thing in the sources.list file as
> > > apt-get couldn't get any package I wanted or asked for (I double
> > > checked the spelling for each package) and it just said package
> > > not found ... any way, The problem is that the sources.list file
> > > was accidentally deleted and I can't find any version of it
> > > online and ofcourse the apt-get is no longer working at all  
> > 
> > Assuming you're running stable,
> > 
> > deb http://http.debian.net/debian/ stable main
> > deb http://http.debian.net/debian/ stable-updates main
> > deb http://http.debian.net/debian/ stable-proposed-updates main
> > deb http://http.debian.net/debian/ stable-backports main
> > deb http://security.debian.org/ stable/updates main
> > 
> > is the complete setup. For testing, just remove backports and
> > replace 'stable' with 'testing'.  
> 
> http.debian.net/debian/
> 
> is exactly the same as
> 
> httpredir.debian.org/debian/
> 
> The .org indicates it is an official, supported mirror but it makes no
> difference when updating and downloading. The former gets you to the
> latter.
> 

I am aware of this. I used to use httpredir.debian.org in my
sources.list, but switched to http.debian.net because honestly it just
looks better.

Btw, what exactly is the purpose of '-proposed-updates'? I
always enable it for completeness' sake, but is this good practice?

Projector, Debian, OS X, Windows, HDMI

[German]

Hi list, 

First of all good news. I recently bought not expensive LCD projector.
So I hooked it up to my computer's HDMI output, plugged the other end
of HDMI cable to projector and voila, all of the context of my monitor
was mirrored on the wall. All programs, icons, etc.. I opened up movie
player and turned on cartoon and enjoyed it on the screen. This set up
running Debian 8.0.


Then I tried it to connect to Mac Book Air ( OS X) with the help of
mini display port to HDMI cable. For a while I got computer's wallpaper
on the wall ( but not the icons and other stuff which is on Mac's
display) and connection was lost ( projector displayed "no input" icon.
If this is not faulty mini display to HDMI cord, what might me a
problem?


The third time, Windows machine was connected to projector. By
HDMI-HDMI cable. Again, only wallpaper of computer was projected on the
wall. No browser and any other programs and icons which are present on
the screen of Windows machine.


Can anyone clue me in what happens? Does other OS's need to be
specifically adjust setting? What are the setting there might be?
Anyway, please share your thoughts. Thank you

Re: updating ifupdown conflicts with systemd

[Alan Chandler]

On 13/01/16 12:31, Maciej Wołoszyn wrote:

Hi,


On my Stretch system updating ifupdown conflicts with systemd.
I removed ifupdown.
I got network problems (no loopback) so I wanted to reinstall ifupdown,
with no luck.

In my case, aptitude suggested removing ifupdown and replacing
it by ifupdown2 ('ifupdown rewritten in Python').
I did it, and lost networking after reboot (no loopback, no eth0).
However, 'ifup -a' started both lo and eth0.
(I have static IP defined for eth0 in /etc/network/interfaces, and
don't use network manager)

I'm curious if other people also experience such problems?
If yes, I'd like to file the bug, but at the moment I don't know if the
problem is with ifupdown2 or systemd.



I tried to remove systemd and did not fully succeed, now I get no
login after a reboot.

Booting in safe mode does not give me a login prompt either.
I guess I have to reinstall my system, this time it will be the stable
branch.

Sorry to hear this, I guess reinstall will be the quickest option.
I'm not quite sure if booting from CD or USB and trying to fix your system by
reinstalling removed packages would be easier, or possible at all, never tried
this.

Maciej


I've had the very same thing this morning.  I am running testing and 
last night ran aptitude update.  It told me it needed to remove ifupdown 
as it was being replaced with systemd.  I let it.


Started the machine this morning (after what appeared to be a kernel 
crash on shutdown* - not sure if its related or not and might be a red 
herring) and had no networking.  Its a bit hard to figure out what to do 
when you can't connect to the internet to google.


Actually in the end I managed to find out with my mobile phone, that I 
could do


ip addr add 192.160.0.12 dev eth0 (where 192.168.0.12 is the address my 
dhcp erver always gives my machine) and the network was suddenly available.


Of course I went back to aptitude and tried to re-install ifupdown, but 
I can't without it removing my entire system, so I worry I might have to 
do this manual starting for the next few days.


I did find I could install net-tools, which I am sure I used to have, 
but must have removed at some point.  ifconfig command is in that and it 
helps (ip address show does something similar, which was what I was 
forced to use to find out what was wrong)


*I don't shutdown directly but log out.  I have mythtv backend also 
running on this machine, and I have to let it shutdown automatically 
when it knows there is no one logged in and it hasn't anything to record 
for a while as it is able to set a wakeup time.


--
Alan Chandler
http://www.chandlerfamily.org.uk

Re: Libre graphics could become the standard if we push right now

[Paul Johnson]

On Thu, Jan 14, 2016 at 2:11 PM, Alberto Salvia Novella <
es204904...@gmail.com> wrote:

> Nearly all compact Linux computers feasible for gaming are sold
> exclusively using NVIDIA graphics, and that company is hostile to libre
> software.
>
> So I think it is very important that we support AMD right now on what we
> can, and ask manufacturers to include AMD graphics in those products.
>

Intel's already well ahead of AMD on this...

Re: isc-dhcp-server in squeeze-lst broken after update

[deloptes]

Bonno Bloksma wrote:

> Please fix the package in Squeeze-lts so I can have the dhcpd.conf file in
> its proper place.
> 
> Bonno Bloksma

This is like 5 years old. At least back then I noticed the same

so from within /etc/dhcp ln -s dhcpd.conf -> ../dhcpd.conf

and no issue since then. I think the reason was that dhcp-server is now
called isc-dhcp-server. But I do not recall why they renamed it.

What does the maintainer says - there must have been reason for doing so.