Re: firewall rules for NAT

[Igor Cicimov]

On 1 Jul 2017 7:13 am, "Pascal Hambourg"  wrote:

Le 30/06/2017 à 15:09, Igor Cicimov a écrit :

> On Fri, Jun 30, 2017 at 3:50 PM, Pascal Hambourg 
> wrote:
>
>>
>> Stateful NAT requires symmetric routing, i.e. reply packets go through the
>> router that did the NAT operations on original packets and keeps the state
>> for these NAT operations.
>>
>> With the host as gateway and without the SNAT rule, routing is asymmetric
>> :
>> client -> router VM (DNAT) -> server VM
>> server VM -> host -> client
>>
>> Reply trafic cannot be un-DNATed and communication fails.
>>
>
> I completely agree with that and that's what I would expect to happen.
> However, as per OP's initial email (I cite):
>
> "*It works like a charm*, but there is one problem: my mail server receives
>
> all the connections from the router, which has its own private IP address
> (10.7.33.100), so the mail server can't enforce SPF policies nor DNS RBL
> rules on incoming mail connections."
>
> his setup was working "like a charm" and the only problem was that the
> source IP the email server was seeing was the one from the router vm and
> not the client one, nothing about failing connections.
>

In his second mail, after admitting that the problem was caused by the SNAT
rule, the OP also wrote :


"The problem is that without that rule things do not work at all
(connections time out)."

This of course rang a bell. As we all know, NAT is most often used to work
around routing flaws. But, as we can see again, it also brings its own
flaws.

You know what, i just checked the iptables rules the op sent again and
realized this:

-A POSTROUTING -d 10.7.33.109/32 -p tcp -m tcp --dport 25 -j SNAT
--to-source 10.7.33.100

is NOT how you would do SNAT with DNAT, you normally would need:

A POSTROUTING -s 10.7.33.109/32 -p tcp -m tcp - -j SNAT --to-source
10.7.33.100

*sigh* sorry for the noise

Re: Process kill on logout

[davidson]

On 26 Jun 2017, Alan wrote:


I have just upgraded from Jessie to Stretch and my arrangement where
I logout and then mythtv shuts my computer down and sets a wakeup
time just before the next recording time has stopped working.


I have no help to offer regarding mythtv, or your shutdown/wakeup
scheme.

I'm interested in your GNU screen problems, though:


In the past when that happens I have set up "screen", and entered an
used "sleep 1m && who -u" to find out why its not detecting me as
logged out.  I set that command running, detach from screen, logout,
ensure the minute is up, log back in and re-enter my screen session
to see what it made of things.

That no longer works.


So, just to be sure we are on the same page, you do all of the above
as userjoe and then, after waiting 60 seconds and logging back in
again as userjoe,

 $ screen -ls

tells you that there are no sockets in /run/screen/S-userjoe ?


It appears that systemd now kills off all processess associated with
the user - or rather I found a bug report that said that had
happened about a year ago as the default had changed.


You are refering to one of these bug reports, I guess, which were
marked fixed in version systemd/230-2 ?

 #825941 - screen is killed by systemd when the user logs out
 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=825941

 #825394 - systemd kill background processes after user logs out
 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=825394

I have upgraded a minimal jessie install to stretch, and installed GNU
screen after the upgrade, and I am unable to replicate the breakage. I
log out, and my detached screen sessions survive.

It would be interesting to know what makes the difference.

What output do you get for the following four commands? (I include
output from my own system here for comparison.)

 $ systemd --version
 systemd 232
 +PAM +AUDIT +SELINUX +IMA +APPARMOR +SMACK +SYSVINIT +UTMP
 +LIBCRYPTSETUP +GCRYPT +GNUTLS +ACL +XZ +LZ4 +SECCOMP +BLKID
 +ELFUTILS +KMOD +IDN

 $ screen -v
 Screen version 4.05.00 (GNU) 10-Dec-16

 $ uname -a
 Linux magicbucket 4.9.0-3-amd64 #1 SMP Debian 4.9.30-2+deb9u2 (2017-06-26) 
x86_64 GNU/Linux

 $ grep '^[^#]' /etc/apt/sources.list{,.d/*}

 /etc/apt/sources.list:deb http://debian.univ-lorraine.fr/debian/ stretch main
 /etc/apt/sources.list:deb-src http://debian.univ-lorraine.fr/debian/ stretch 
main
 /etc/apt/sources.list:deb http://security.debian.org/ stretch/updates main
 /etc/apt/sources.list:deb-src http://security.debian.org/ stretch/updates main
 /etc/apt/sources.list:deb http://debian.univ-lorraine.fr/debian/ 
stable-updates main
 /etc/apt/sources.list:deb-src http://debian.univ-lorraine.fr/debian/ 
stable-updates main
 grep: /etc/apt/sources.list.d/*: No such file or directory

Wheezy to Stretch without to much problem.

[Jimmy Johnson]

 I started in synaptic, first upgrading Debian tools and the kernel, 
that blew out synaptic with dpkg errors and I went to the console and 
ran apt-get -f install and then dpkg --configure -a, back in business, I 
had to do that a few times and then able to switch to using the new apt 
and clean up with upgrade-system, it took sometime but here I am with a 
clean, upgraded and configured system.


Cheers,
--
Jimmy Johnson

Debian Stretch - KDE Plasma 5.8.6 - Intel G3220 - EXT4 at sda7
Registered Linux User #380263

Re: descarcar dependencias de paquetes

[Juan Lavieri]

  
  
Hola Juan Carlos.


El 29-06-2017 a las 01:01 p.m., juan
  carlos escribió:

buenas
  me gustaia saber como podria descargar las dependencias de un
  paquete, osea hago por ejemplo sudo apt-get download firefox y se
  me baja solo el paquete firefox pero no sus dependencias, no se si
  se me entiende
  
  


En realidad no he probado si para hacer solo download sirve;  lo que
si se es que si deseas instalar un paque con todas sus dependencias
es preferible usar:

#aptitude install firefox

Está documentado en la debian reference que es el método preferido
para ese tipo de tareas.

De hecho yo uso 

#aptitude 

y una vez que abre la interfaz busco el paque te que necesito (con /
firerox) y desde allí controlo lo que se instala y lo que no.  

Saludos.
-- 
Juan M Lavieri

Errar es de humanos, pero es mas humano culpar a los demás.
  

Re: [Stretch] apt-get has no updates?

[Jimmy Johnson]

On 06/30/2017 06:56 AM, RavenLX wrote:

I think I might have a problem. I do the sudo apt-get update and then
sudo apt-get dist-upgrade and ever since I have installed Debian 9
(after the official release) I have not seen any updates. Yet in Ubuntu
14.04 server there were updates to the kernel and to Apache. I've been
watching Debian-Security and noticed there are some updates coming up.
But I haven't seen any when I go to do the update.


How did you get sudo? Users do not have sudo rights by default.

Also, if you used the live dvd it's screwing up apt gpg-keys and you 
will not see updates until the keys are fixed.  Or maybe you have some 
other kind problems.

--
Jimmy Johnson

Debian Stretch - KDE Plasma 5.8.6 - Intel G3220 - EXT4 at sda7
Registered Linux User #380263

Re: [Stretch] apt-get has no updates?

[Joel Rees]

(Not looking for answers, just using the list to remind myself of
something in the future.)

On Sat, Jul 1, 2017 at 5:05 AM, Dejan Jocic  wrote:
> On 30-06-17, Greg Wooledge wrote:
>> On Fri, Jun 30, 2017 at 06:34:49PM +0200, Dejan Jocic wrote:
>> > If you want to
>> > prevent automatic upgrades and disable them, because you want to do it
>> > manually like you are used to, you should edit file
>> > /etc/apt/apt.conf.d/20auto-upgrades and change it from this:
>> >
>> > APT::Periodic::Update-Package-Lists "1";
>> > APT::Periodic::Unattended-Upgrade "1";
>> >
>> > to this:
>> >
>> > APT::Periodic::Update-Package-Lists "0";
>> > APT::Periodic::Unattended-Upgrade "0";
>>
>> Or you can just remove the unattended-upgrades package, right?
>>
>
> Sure, if you want to.

[mark (reiisi): python-dependencies ]

> On gnome, it is pulled in because of
> gnome-packagekit which recommends software-properties-gtk which depends
> on python3-software-properties which recommends unattended-upgrades.

[end-mark]

> Personally would leave it on, because I like to have it in case that I
> become lazy with my daily routine and because I like to look at various
> things and understand how they work. But if OP does not need it, it is
> safe to remove/purge it.
>
>
>



-- 
Joel Rees

One of these days I'll get someone to pay me
to design a language that combines the best of Forth and C.
Then I'll be able to leap wide instruction sets with a single #ifdef,
run faster than a speeding infinite loop with a #define,
and stop all integer size bugs with my bare cast.
http://defining-computers.blogspot.com/2017/06/reinventing-computers.html

More of my delusions:
http://reiisi.blogspot.com/2017/05/do-not-pay-modern-danegeld-ransomware.html
http://reiisi.blogspot.jp/p/novels-i-am-writing.html

Re: mplayer won't play audio CD

[Rodolfo Medina]

Brian  writes:

> On Fri 30 Jun 2017 at 12:27:18 +0100, Rodolfo Medina wrote:
>
>> "Thomas Schmitt"  writes:
>> 
>> > Curt wrote:
>> >>  mplayer -cdrom-device /dev/hdb cdda://1
>> >> or wherever the device exists on your machine.
>> >
>> > Unless on very old systems, i'd expect /dev/sr0, /dev/sr1, ...
>> 
>> `mplayer -cdrom-device /dev/sr0 cdda://1' gives the same error output as
>> `mplayer cdda://'.
>
> How about
>
>   vlc cdda:// ?

Yes, vlc works!


> You have "solved" this problem previously:
>
>   https://lists.debian.org/debian-user/2017/02/msg01080.html

Yes, but that time mplayer won't play files either.  Now instead mplayer works
with mp3, audio files...  but fails only with audio CDs.  That time the problem
was solved installing alsaplayer-alsa and pulseaudio.  Now I already have those
packages in my system...

Rodolfo

Tracing Hard Lockup

[Mini Trader]

I've installed Debian 9/Stetch and am having issues with what looks to be a
java application.

When connecting to the app from certain devices the entire system will
lockup inside an ESXi VM.

There doesn't appear to be any errors.  The system just locks up, no more
IP nothing works.  The ESXi host is good as it runs everything else fine
and has so for a long time.

Additionally, I've run this application on other systems (kernel 4.4/ubuntu
16 LTS) and have no issues at all.  How can I track this down?  Nothing is
in syslog or kernlog.

Thanks!

Nettoyage du spam : juin 2017

[jean-pierre giraud]

Bonjour,
Comme nous sommes en juillet, il est désormais possible de
traiter les archives du mois de juin 2017 des listes francophones.

N'oubliez bien sûr pas d'ajouter votre nom à la liste des relecteurs
pour que nous sachions où nous en sommes.

Détails du processus de nettoyage du spam sur :

https://wiki.debian.org/I18n/FrenchSpamClean

Re: Votre expérience :: Imprimante laser

[Haricophile]

Le Fri, 30 Jun 2017 21:46:27 +0200,
"Jacques Lav!gnotte."  a écrit :

> >  sous Linux
> >  hp-setup  
> 
> Merci, Jacques

Pour le clicodrome,  moi j'aime bien hplip-gui qui fournit hp-toolbox
mais chacun fait ce qu'il veut.

-- 
haricoph...@aranha.fr 

Re: firewall rules for NAT

[Pascal Hambourg]

Le 30/06/2017 à 15:09, Igor Cicimov a écrit :

On Fri, Jun 30, 2017 at 3:50 PM, Pascal Hambourg 
wrote:


Stateful NAT requires symmetric routing, i.e. reply packets go through the
router that did the NAT operations on original packets and keeps the state
for these NAT operations.

With the host as gateway and without the SNAT rule, routing is asymmetric :
client -> router VM (DNAT) -> server VM
server VM -> host -> client

Reply trafic cannot be un-DNATed and communication fails.


I completely agree with that and that's what I would expect to happen.
However, as per OP's initial email (I cite):

"*It works like a charm*, but there is one problem: my mail server receives
all the connections from the router, which has its own private IP address
(10.7.33.100), so the mail server can't enforce SPF policies nor DNS RBL
rules on incoming mail connections."

his setup was working "like a charm" and the only problem was that the
source IP the email server was seeing was the one from the router vm and
not the client one, nothing about failing connections.


In his second mail, after admitting that the problem was caused by the 
SNAT rule, the OP also wrote :


"The problem is that without that rule things do not work at all 
(connections time out)."


This of course rang a bell. As we all know, NAT is most often used to 
work around routing flaws. But, as we can see again, it also brings its 
own flaws.

Re: [Stretch] apt-get has no updates?

[Dejan Jocic]

On 30-06-17, David Wright wrote:
> 
> I'm not sure what this is all about; unattended-upgrades appears
> to have been maintained by the same person since the days of etch,
> a decade ago. What constitutes an advertisement, and how is the
> question posed as to whether updates are automatic or not?
> 
> Cheers,
> David.
> 

Probably because unattended-upgrades were not pulled in before
automatically on install of Debian. In Stretch, through some added
recommends, they are installed by default on at least Gnome and KDE
tasks.

Re: [Stretch] apt-get has no updates?

[David Wright]

On Fri 30 Jun 2017 at 15:43:45 (-0400), Fungi4All wrote:
> > From: wool...@eeg.ccf.org
> > To: debian-user@lists.debian.org
> > On Fri, Jun 30, 2017 at 06:34:49PM +0200, Dejan Jocic wrote:
> >> If you want to
> >> prevent automatic upgrades and disable them, because you want to do it
> >> manually like you are used to, you should edit file
> >> /etc/apt/apt.conf.d/20auto-upgrades and change it from this:
> >>
> >> APT::Periodic::Update-Package-Lists "1";
> >> APT::Periodic::Unattended-Upgrade "1";
> >>
> >> to this:
> >>
> >> APT::Periodic::Update-Package-Lists "0";
> >> APT::Periodic::Unattended-Upgrade "0";
> > Or you can just remove the unattended-upgrades package, right?
> 
> If someone installed Stretch from scratch last week got the 
> unattended-upgrades
> package but those who were running stretch for a while before it became
> stable did not get it and have to install it. Would this be correct, because
> I've had several updated packages since then.
> I'm writing this from a different system so I can not go back and actually
> check but I am wondering how it works security wise. I assume it runs
> as a timed service through systemd and has admin privileges.
> The question that sticks to mind, if the above assumptions are correct,
> is how did this got to stable without really being advertised properly
> through those running testing. I was under the impression that for
> anything other than security-bug-fixes everything goes through the
> unstable and testing first. This seems as something that appeared
> behind us. An update of apt/synaptics/aptitude could have included
> the option to consciously choose between auto or manual updates.

I'm not sure what this is all about; unattended-upgrades appears
to have been maintained by the same person since the days of etch,
a decade ago. What constitutes an advertisement, and how is the
question posed as to whether updates are automatic or not?

Cheers,
David.

Re: [Stretch] apt-get has no updates?

[RavenLX]

On 06/30/2017 10:30 AM, Greg Wooledge wrote:

On Fri, Jun 30, 2017 at 10:24:15AM -0400, RavenLX wrote:

Here's what's on the system:

ravenlx@hpg7:~$ uname -r
4.9.0-3-amd64


That only tells you the package name, not the version.  Use "uname -a"
to get the actual running version,


ravenlx@hpg7:~$ uname -a
Linux hpg7 4.9.0-3-amd64 #1 SMP Debian 4.9.30-2+deb9u2 (2017-06-26) 
x86_64 GNU/Linux



or "dpkg -l linux-image\* | cat"
to get the installed kernel versions.


ravenlx@hpg7:~$ dpkg -l linux-image\* | cat
Desired=Unknown/Install/Remove/Purge/Hold
| 
Status=Not/Inst/Conf-files/Unpacked/halF-conf/Half-inst/trig-aWait/Trig-pend

|/ Err?=(none)/Reinst-required (Status,Err: uppercase=bad)
||/ Name  Version Architecture Description
+++-=-===--===
un  linux-image(no 
description available)
ii  linux-image-4.9.0-3-amd64 4.9.30-2+deb9u2 amd64Linux 4.9 for 
64-bit PCs
ii  linux-image-amd64 4.9+80  amd64Linux for 
64-bit PCs (meta-package)



Someone else mentioned unattended upgrades, which is a thing I have
never used, and which is also a thing I would disable if I ever found
it running.  But that's just me.


I would like to do that but don't know how. Anyone caring to enlighten 
me without me having to bother poor old Mr. Google yet again - it would 
be appreciated. :)

Re: [Stretch] apt-get has no updates?

[Dejan Jocic]

On 30-06-17, Greg Wooledge wrote:
> On Fri, Jun 30, 2017 at 06:34:49PM +0200, Dejan Jocic wrote:
> > If you want to
> > prevent automatic upgrades and disable them, because you want to do it
> > manually like you are used to, you should edit file
> > /etc/apt/apt.conf.d/20auto-upgrades and change it from this:
> > 
> > APT::Periodic::Update-Package-Lists "1";
> > APT::Periodic::Unattended-Upgrade "1";
> > 
> > to this:
> > 
> > APT::Periodic::Update-Package-Lists "0";
> > APT::Periodic::Unattended-Upgrade "0";
> 
> Or you can just remove the unattended-upgrades package, right?
> 

Sure, if you want to. On gnome, it is pulled in because of
gnome-packagekit which recommends software-properties-gtk which depends
on python3-software-properties which recommends unattended-upgrades.
Personally would leave it on, because I like to have it in case that I
become lazy with my daily routine and because I like to look at various
things and understand how they work. But if OP does not need it, it is
safe to remove/purge it.

Re: Votre expérience :: Imprimante laser

[Jacques Lav!gnotte.]

Le 30/06/2017 à 21:26, MERLIN Philippe a écrit :
> Le vendredi 30 juin 2017, 21:02:15 CEST Jacques Lav!gnotte. a écrit :

>> Associée à une Livebox ça va se passer comment ?

>  sous Linux
>  hp-setup

Merci, Jacques

-- 
GnuPg : 0x156520BBC8F5B1E3
WeUsePGP Because privacy matters http://weusepgp.info/

Re: [Stretch] apt-get has no updates?

[Fungi4All]

> From: wool...@eeg.ccf.org
> To: debian-user@lists.debian.org
> On Fri, Jun 30, 2017 at 06:34:49PM +0200, Dejan Jocic wrote:
>> If you want to
>> prevent automatic upgrades and disable them, because you want to do it
>> manually like you are used to, you should edit file
>> /etc/apt/apt.conf.d/20auto-upgrades and change it from this:
>>
>> APT::Periodic::Update-Package-Lists "1";
>> APT::Periodic::Unattended-Upgrade "1";
>>
>> to this:
>>
>> APT::Periodic::Update-Package-Lists "0";
>> APT::Periodic::Unattended-Upgrade "0";
> Or you can just remove the unattended-upgrades package, right?

If someone installed Stretch from scratch last week got the unattended-upgrades
package but those who were running stretch for a while before it became
stable did not get it and have to install it. Would this be correct, because
I've had several updated packages since then.
I'm writing this from a different system so I can not go back and actually
check but I am wondering how it works security wise. I assume it runs
as a timed service through systemd and has admin privileges.
The question that sticks to mind, if the above assumptions are correct,
is how did this got to stable without really being advertised properly
through those running testing. I was under the impression that for
anything other than security-bug-fixes everything goes through the
unstable and testing first. This seems as something that appeared
behind us. An update of apt/synaptics/aptitude could have included
the option to consciously choose between auto or manual updates.

Re: Votre expérience :: Imprimante laser

[MERLIN Philippe]

Le vendredi 30 juin 2017, 21:02:15 CEST Jacques Lav!gnotte. a écrit :
> Le 30/06/2017 à 19:51, MERLIN Philippe a écrit :
> > Wifi ?
> 
> Au pire. Idéalement ethernet/RJ45 par atavisme :)
> 
> > HP Laserjet Pro M12W pour Wif
> 
> Elle est chez Boulanger.
> 
> 
> 
> Pour le wifi j'ajoute une question :
> 
> Associée à une Livebox ça va se passer comment ?
> 
> 
> Merci Philippe, Jacques
Je ne sais pas pour une Livebox mais pour une freebox c'est très simple , 
configurer l'imprimante avec un PC sous Windows CD fournis ou sous Linux
 hp-setup répondre aux questions voir la( doc hplip ubuntu) et normalement 
cela marche sans problème.
Philippe Merlin

Re: Votre expérience :: Imprimante laser

[Jacques Lav!gnotte.]

Le 30/06/2017 à 19:51, MERLIN Philippe a écrit :

> Wifi ?

Au pire. Idéalement ethernet/RJ45 par atavisme :)


> HP Laserjet Pro M12W pour Wif

Elle est chez Boulanger.



Pour le wifi j'ajoute une question :

Associée à une Livebox ça va se passer comment ?


Merci Philippe, Jacques

-- 
GnuPg : 0x156520BBC8F5B1E3
WeUsePGP Because privacy matters http://weusepgp.info/

Re: Debian v9 and auto logoff

[tony mollica]

Concerning this issue, I removed the mate-screensaver and installed 
xscreensaver and while it certainly doesn't have as polished an 
appearance as the mate version, it works.
It does the same thing, locks the screen and does not drop back to the 
lightdm greeter logon and doesn't suspend in-progress apps, namely, my 
3D printing apps.


I'll try and contact the author or package management folks to see if 
anything can be re-configged in mate-screensaver to eliminate the 
original problem.


Tony

On 06/30/2017 08:35 AM, tony mollica wrote:

This bug report sounds familiar but I find no evidence of anything that
appears to be related to this in any of the logs.

The only screensaver loaded is the mate-screensaver.  If I disable the
screensaver via the idle time and lock options and then lock the screen
manually, it stays at the mate-screensaver lock normally and never falls
back to the lightdm logon screen.

Even so, it's odd that if the screensaver idle time and lock options are
chosen,  and the screen is locked after the timeout, or locked manually
then the screensaver activates like it should but after a time it falls
back to the lightdm greeter screen.  BUT, the programs that were running
at the time are not killed but just appear to be suspended so when the
logon takes place the programs start processing again.  I would think
that if the system drops back to the lightdm greeter that it would kill
all the processes for the user but that doesn't happen.

I can't find the documentation for the mate-screensaver configuration
anywhere.

tony

On 06/29/2017 12:27 PM, to...@tuxteam.de wrote:

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On Thu, Jun 29, 2017 at 08:43:26AM -0700, tony mollica wrote:

Hello, yet again, and dropping the html.

Here's the problem.  I use this computer, previously v8, now v9, for
3D printing.  The old system worked perfectly in that the
screensaver did it's job BUT kept me logged in forever.  The new
system doesn't do this.  The screensaver set off and after some
period of time I get logged off automatically.  The BIG problem is
that when this happens printing stops but the extruder and build
plate stay at operating temperature, which is good to restart but
not good if I'm not there to catch it.  Basically, if I can't
prevent the auto logout this system is useless for 3D printing.

How do I do it, disable the auto logoff?  Searched a lot yesterday
but none of that appears to be in effect here.


Difficult to say. Your desktop environment is Gnome? After such a
forced logout, can you spot anything in the X server log (typically
in your home directory, somewhere in .local/share/xorg, unless you
have an uncommon setup, and then you would know ;-)

Perhaps in /var/log/daemon.log?

Here is an old bug where a crashing screensaver would force an X
server restart:

  https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=569933

Any similarities?

Does it happen when you disable the lock screen feature in the
screen saver? When you disable the screen saver altogether?

Hope there's a useful hint in there.

Cheers
- -- tomás
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.12 (GNU/Linux)

iEYEARECAAYFAllVVLwACgkQBcgs9XrR2kaUfACfUOwtEq5UOEug1JuJ4fydFz6v
disAni9622kcKbcX6NCCCU6DxWD7tMhE
=ApJD
-END PGP SIGNATURE-

Re: Votre expérience :: Imprimante laser

[MERLIN Philippe]

Le vendredi 30 juin 2017, 19:25:55 CEST Jacques Lav!gnotte. a écrit :
> Bonjour,
> 
> J'ai besoin du retour d'expérience de propriétaires d'imprimante
> 
> ° laser
> ° mono-fonction
> ° mono-chrome
> ° non usb
> ° bien supportée par **Nux
> ° moins de 200€
> 
> A votre écoute.
> 
> Jacques
Wifi ?
HP Laserjet Pro 1102w pour Wifi env 80€ 
HP Laserjet Pro M12W pour Wifi même prix il semble que cela soit celle qui 
succède à la 1102 w
marche bien avec linux et Cups testé seulement dans un environnement 
personnel.
Philippe MERLIN

Votre expérience :: Imprimante laser

[Jacques Lav!gnotte.]

Bonjour,

J'ai besoin du retour d'expérience de propriétaires d'imprimante

° laser
° mono-fonction
° mono-chrome
° non usb
° bien supportée par **Nux
° moins de 200€

A votre écoute.

Jacques

-- 
GnuPg : 0x156520BBC8F5B1E3
WeUsePGP Because privacy matters http://weusepgp.info/

Votre expérience :: Imprimante laser

[Jacques Lav!gnotte.]

Bonjour,

J'ai besoin du retour d'expérience de propriétaires d'imprimante

° laser
° mono-fonction
° mono-chrome
° non usb
° bien supportée par **Nux
° moins de 200€

A votre écoute.

Jacques

-- 
GnuPg : 0x156520BBC8F5B1E3
WeUsePGP Because privacy matters http://weusepgp.info/

Re: [Stretch] apt-get has no updates?

[Greg Wooledge]

On Fri, Jun 30, 2017 at 06:34:49PM +0200, Dejan Jocic wrote:
> If you want to
> prevent automatic upgrades and disable them, because you want to do it
> manually like you are used to, you should edit file
> /etc/apt/apt.conf.d/20auto-upgrades and change it from this:
> 
> APT::Periodic::Update-Package-Lists "1";
> APT::Periodic::Unattended-Upgrade "1";
> 
> to this:
> 
> APT::Periodic::Update-Package-Lists "0";
> APT::Periodic::Unattended-Upgrade "0";

Or you can just remove the unattended-upgrades package, right?

Re: [Stretch] apt-get has no updates?

[Dejan Jocic]

On 30-06-17, RavenLX wrote:
> 
> > If you have unattended-upgrades package installed and it is configured
> > to fetch and install security updates only ( which is default ), that is
> > place to look for upgraded packages. You can also configure
> > unattended-upgrades to mail you where there was updates/upgrades and all
> > that jazz.
> 
> How do I go about upgrading then? I don't know of how to do it any other way
> than via apt-get. Also I don't want to have it email me anything. I usually
> go to the command line, do a series of commands and upgrade the system. I
> would like to continue to do things that way. I do this once a week (usually
> Thurs. but now I'm switching to Fridays).
> 

Well, as you could see from your log, unattended-upgrades did it job and
upgraded security packages. If you want to keep those auto
updates/upgrades for security packages ( not that you will get much more
updates than those now that stretch is stable ), you do not have to do
anything. Security updates will be done automatically. If you want to
prevent automatic upgrades and disable them, because you want to do it
manually like you are used to, you should edit file
/etc/apt/apt.conf.d/20auto-upgrades and change it from this:

APT::Periodic::Update-Package-Lists "1";
APT::Periodic::Unattended-Upgrade "1";

to this:

APT::Periodic::Update-Package-Lists "0";
APT::Periodic::Unattended-Upgrade "0";

If you want to keep those unattended upgrades working, settings are in
/etc/apt/apt.conf.d/50unattended-upgrades. For further reading and
explanation look here:

https://wiki.debian.org/UnattendedUpgrades 

https://linux-audit.com/using-unattended-upgrades-on-debian-and-ubuntu/

or just duckgogo/google it, there are few nice explanations.

Re: kmail gmail integration

[Matthew Crews]

I second this. Under your google settings, there is a way to generate App
passwords under the "Sign-in & Security" section. Use the app password
instead of your normal password, and it will bypass your 2FA.

On Thu, Jun 29, 2017 at 11:59 PM David Baron  wrote:

> On יום חמישי, 29 ביוני 2017 22:38:27 IDT T. P. Van Dae wrote:
> > I’m trying to transition myself back to Linux (been a long time though…
> > sorry!) and am working on phasing myself off of Windows. Is it possible
> to
> > integrate gmail (currently using 2-step verification) with kmail?  Google
> > says “enable less secure apps”, but it’s a NO with 2 STEP ON. Is there or
> > will there be a work around for this or is “DISABLE” 2 Step Verification
> > the answer?
>
> One can get Google/gmail to generated a single-app 16-character password.
> Cut
> and paste that into kmail. Then it will work.
>
>

Re: mplayer won't play audio CD

[Brian]

On Fri 30 Jun 2017 at 12:27:18 +0100, Rodolfo Medina wrote:

> "Thomas Schmitt"  writes:
> 
> > Curt wrote:
> >>  mplayer -cdrom-device /dev/hdb cdda://1
> >> or wherever the device exists on your machine.
> >
> > Unless on very old systems, i'd expect /dev/sr0, /dev/sr1, ...
> 
> `mplayer -cdrom-device /dev/sr0 cdda://1' gives the same error output as
> `mplayer cdda://'.

How about

  vlc cdda:// ?

You have "solved" this problem previously:

  https://lists.debian.org/debian-user/2017/02/msg01080.html

-- 
Brian.

Re: Jessie --> Stretch upgrade, apt question

[David Wright]

On Thu 29 Jun 2017 at 07:31:35 (+), Curt wrote:
> On 2017-06-28, David Wright  wrote:
> >
> >> 'apt-get install ' will tell you why a package is being held
> >> back (or, as discussed in another thread, will ask your permission to
> >> install an extra package--or packages--in order to meet its dependencies).
> >
> > It's less risky to add the -s switch and just be a user, thus:
> 
> I wasn't aware of that.
> 
> > $ apt-get -s install 
> 
> However:
> 
> curty@einstein:~$ apt-get -s install bzflag
> NOTE: This is only a simulation!
>   apt-get needs root privileges for real execution.
>   Keep also in mind that locking is deactivated,
>   so don't depend on the relevance to the real current
>   situation!
> 
> I suppose 'locking is deactivated, so don't depend on the relevance to the
> real current situation!" might mean on a multi-user system on which the
> administrator is fiddling with a package manager concurrently, the
> output of your command might or might not reflect reality.

Yes, that's the meaning of the disclaimer, but I've always assumed
that almost everyone here is an administrator for their system(s).
However, some are very timorous when it comes to running the apt*
package managers, particularly as root.

>  [Re: apt-get upgrade problem] >>> What?
> 
> > Attached…
> 
> So you were facetiously applying my query to the Woolf signature quote
> (which I don't see and didn't think anybody was seeing and assumed was
> being snipped by the list master along with all the other conformingly
> formatted signatures).

I can't see the point of using a signature that can't be seen.
My mutt client displays them (coloured when conforming), both
when composing messages (which allows for tweaking) and when
reading them. I also see them in the list archives.

Cheers,
David.

Re: Debian v9 and auto logoff

[tony mollica]

This bug report sounds familiar but I find no evidence of anything that 
appears to be related to this in any of the logs.


The only screensaver loaded is the mate-screensaver.  If I disable the 
screensaver via the idle time and lock options and then lock the screen 
manually, it stays at the mate-screensaver lock normally and never falls 
back to the lightdm logon screen.


Even so, it's odd that if the screensaver idle time and lock options are 
chosen,  and the screen is locked after the timeout, or locked manually 
then the screensaver activates like it should but after a time it falls 
back to the lightdm greeter screen.  BUT, the programs that were running 
at the time are not killed but just appear to be suspended so when the 
logon takes place the programs start processing again.  I would think 
that if the system drops back to the lightdm greeter that it would kill 
all the processes for the user but that doesn't happen.


I can't find the documentation for the mate-screensaver configuration 
anywhere.


tony

On 06/29/2017 12:27 PM, to...@tuxteam.de wrote:

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On Thu, Jun 29, 2017 at 08:43:26AM -0700, tony mollica wrote:

Hello, yet again, and dropping the html.

Here's the problem.  I use this computer, previously v8, now v9, for
3D printing.  The old system worked perfectly in that the
screensaver did it's job BUT kept me logged in forever.  The new
system doesn't do this.  The screensaver set off and after some
period of time I get logged off automatically.  The BIG problem is
that when this happens printing stops but the extruder and build
plate stay at operating temperature, which is good to restart but
not good if I'm not there to catch it.  Basically, if I can't
prevent the auto logout this system is useless for 3D printing.

How do I do it, disable the auto logoff?  Searched a lot yesterday
but none of that appears to be in effect here.


Difficult to say. Your desktop environment is Gnome? After such a
forced logout, can you spot anything in the X server log (typically
in your home directory, somewhere in .local/share/xorg, unless you
have an uncommon setup, and then you would know ;-)

Perhaps in /var/log/daemon.log?

Here is an old bug where a crashing screensaver would force an X
server restart:

  https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=569933

Any similarities?

Does it happen when you disable the lock screen feature in the
screen saver? When you disable the screen saver altogether?

Hope there's a useful hint in there.

Cheers
- -- tomás
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.12 (GNU/Linux)

iEYEARECAAYFAllVVLwACgkQBcgs9XrR2kaUfACfUOwtEq5UOEug1JuJ4fydFz6v
disAni9622kcKbcX6NCCCU6DxWD7tMhE
=ApJD
-END PGP SIGNATURE-

Re: stretch, vim, cut and paste broken (and fix)

[Nicolas George]

Le duodi 12 messidor, an CCXXV, Dan Ritter a écrit :
> Clearly the problem can still arise with a ~/.vimrc in place.

But probably not the way you diagnosed.

Regards,

-- 
  Nicolas George


signature.asc
Description: Digital signature

Re: stretch, vim, cut and paste broken (and fix)

[Dan Ritter]

On Fri, Jun 30, 2017 at 10:46:27AM -0400, Greg Wooledge wrote:
> On Fri, Jun 30, 2017 at 10:36:52AM -0400, Dan Ritter wrote:
> > - move over to some other text input field and
> >   paste with button 3
> 
> You mean button 2.
> 
> > except, vim stopped allowing the paste.
> > 
> > Here's the change:
> > 
> > /usr/share/vim/vim80/defaults.vim 
> 
> Generally speaking, yeah, that OS level defaults file can cause problems.
> Lots of changes have occurred there.  The good news is that it's ignored
> if you have your own ~/.vimrc file.
> 
> So, just create a ~/.vimrc file with something in it, and you should be
> all set.
> 

I've had that for years. Last week I changed tabstops from 8 to
4. 

Clearly the problem can still arise with a ~/.vimrc in place.

-dsr-

Re: Welke SSH key?

[Wouter Verhelst]

On Thu, Jun 15, 2017 at 01:17:06PM +0200, Paul van der Vlis wrote:
> Hallo,
> 
> Ik gebruik al lange tijd een DSA key,

Oei!

DSA heeft een random waarde nodig die verschillend *moet* zijn *voor
elke signature*. Als je twee handtekeningen zet met dezelfde random
waarde, dan is het "game over": je key is compromised.

Dat, gecombineerd met de oude OpenSSL random number generator in Debian,
maakt dat het sinds jaren al beter is om geen DSA-keys te gebruiken. RSA
werkt ook, en heeft dat probleem niet.

> deze zit ingebakken in vele
> computers van mijzelf en klanten. Tot mijn schrik werkt de key niet op
> computers met Debian 9.
> Het beste lijkt me nu om een nieuwe key te gaan gebruiken.
> 
> Welk type raden jullie aan?

RSA, 2048 bits of meer.

> Ik neem aan dat de ssh-client nog wel om kan gaan met dsa-keys, of
> moet ik nu plots overal die keys gaan vervangen?
> 
> Is een DSA key niet erg veilig meer?

Nope.

> Functioneert zo'n modern type key ook op oude systemen?

RSA werkt al sinds de originele SSH.

Er zijn ook wat moderne elliptische curves waar je een wat modernere
versie van ssh voor nodig hebt, maar ik dacht (not sure) dat jessie dat
ook al ondersteunt.

> Ik heb een script wat eenmalig vraagt om een paswoord, en dan vele
> machines gaat benaderen. Het doet zoiets:
> eval `ssh-agent`
> ssh-add
> Is zoiets ook te doen voor meerdere keys?

ssh-agent ondersteunt meerdere keys, ja:

wouter@gangtai:~$ ssh-add -l
2048 SHA256:Zrvengc1bhZJ4IUerONE+n0dOovfiV/pn/RkuAsuI5o 
/usr/lib/x86_64-linux-gnu/libbeidpkcs11.so.0.0.0 (RSA)
2048 SHA256:D/n8VN45DH0ETxcO58MjwynsgKwBau1sRECRtTRn7GY 
/usr/lib/x86_64-linux-gnu/libbeidpkcs11.so.0.0.0 (RSA)
4096 SHA256:0s3ELGJ0ox7vKl+g6oSD68EL2WJXMn5Sq+S+4UaDjzg 
/usr/lib/x86_64-linux-gnu/libbeidpkcs11.so.0.0.0 (RSA)
4096 SHA256:RxeXZrEa+GYVGqsb5S+wJrwYe+UBWFlzSOCZ9IrDLy0 
/usr/lib/x86_64-linux-gnu/libbeidpkcs11.so.0.0.0 (RSA)

(deze komen van mijn eID; alleen de eerste werkt, maar OpenSSH vindt
vier publieke sleutels en biedt ze dus alle vier aan...)

-- 
Could you people please use IRC like normal people?!?

  -- Amaya Rodrigo Sastre, trying to quiet down the buzz in the DebConf 2008
 Hacklab

Re: [Stretch] apt-get has no updates?

[songbird]

RavenLX wrote:

> I think I might have a problem. I do the sudo apt-get update and then 
> sudo apt-get dist-upgrade and ever since I have installed Debian 9 
> (after the official release) I have not seen any updates. Yet in Ubuntu 
> 14.04 server there were updates to the kernel and to Apache. I've been 
> watching Debian-Security and noticed there are some updates coming up. 
> But I haven't seen any when I go to do the update.
>
> More info:
...

  um, stretch is stable?  :)

  i'm not sure how often you should see
updates to packages other than through the
security process and then after each point
release.

  by contrast, today in testing was fairly
busy with about 70 packages for my system
being changed.


  songbird

Re: stretch, vim, cut and paste broken (and fix)

[Nicolas George]

Le duodi 12 messidor, an CCXXV, Greg Wooledge a écrit :
>  all kinds of rubbish that I would never, ever want.

Well, obviously somebody wanted that "rubbish", enough to work and
implement it as Libre software. A little respect for other people's
work, maybe?

Regards,

-- 
  Nicolas George


signature.asc
Description: Digital signature

Re: stretch, vim, cut and paste broken (and fix)

[Nicolas George]

Le duodi 12 messidor, an CCXXV, Dan Ritter a écrit :
> except, vim stopped allowing the paste.

Correction: vim started handling the paste itself instead of relying on
the terminal emulator. Of course, it behave slightly differently. Each
has advantages and drawbacks.

> set mouse=""
> 
> does not work.

For me it works. In fact, just having a .vimrc in the way is enough to
prevent reading defaults.vim. You probably made a mistake testing.

Regards,

-- 
  Nicolas George


signature.asc
Description: Digital signature

Re: stretch, vim, cut and paste broken (and fix)

[Greg Wooledge]

On Fri, Jun 30, 2017 at 10:36:52AM -0400, Dan Ritter wrote:
> - move over to some other text input field and
>   paste with button 3

You mean button 2.

> except, vim stopped allowing the paste.
> 
> Here's the change:
> 
> /usr/share/vim/vim80/defaults.vim 

Generally speaking, yeah, that OS level defaults file can cause problems.
Lots of changes have occurred there.  The good news is that it's ignored
if you have your own ~/.vimrc file.

So, just create a ~/.vimrc file with something in it, and you should be
all set.

> That's nice. It doesn't actually work for the X cut and paste
> mechanism that I rely on, and it turns out that adding this
> to my .vimrc:
> 
> set mouse=off
> 
> or
> 
> set mouse=""
> 
> does not work.
> 
> Instead you need to go to that defaults file and comment out
> the offending stanza. Use " as your beginning of line comment
> character.

This has not been my experience at all.  When I have a ~/.vimrc file,
vim doesn't read the system level default file, and copy/pasting is
working normally for me.

If I move my ~/.vimrc file aside, then I get colorized file contents,
and pasting where the mouse cursor is instead of where the terminal's
cursor is... all kinds of rubbish that I would never, ever want.

Re: Présence par défaut d'Aptitude sur Stretch

[Haricophile]

Le Thu, 29 Jun 2017 06:38:36 +0200,
"Pierre L."  a écrit :

> apt-get install XXX m'a toujours installé XXX pour qu'il fonctionne,
> et c'est ce que je lui demande !

MDR, c'est parce que tu es trop jeune pour avoir connu Aptitude par
défaut, ou deselect °<:o)*

> Pourquoi changer de lave-vaisselle quand ton lave-vaisselle fait son
> boulot correctement ?

Je n'utilise plus dselect certes, mais encore aptitude, donc je suis
bien d'accord avec toi sur ce point.

-- 
haricoph...@aranha.fr 

stretch, vim, cut and paste broken (and fix)

[Dan Ritter]

Imagine my surprise when the usual X selection and clipboard 
techniques disappeared.

Normal behavior:

- X11
- xterm or urxvt or gnome-terminal or whatever
- copy text by selecting with mouse button 1
- move over to some other text input field and
  paste with button 3

except, vim stopped allowing the paste.

Here's the change:

/usr/share/vim/vim80/defaults.vim 

now contains:

" In many terminal emulators the mouse works just fine.  By
enabling it you
" can position the cursor, Visually select and scroll with the
mouse.
if has('mouse')
  set mouse=a
endif

That's nice. It doesn't actually work for the X cut and paste
mechanism that I rely on, and it turns out that adding this
to my .vimrc:

set mouse=off

or

set mouse=""

does not work.

Instead you need to go to that defaults file and comment out
the offending stanza. Use " as your beginning of line comment
character.

-dsr-

Re: [Stretch] apt-get has no updates?

[Greg Wooledge]

On Fri, Jun 30, 2017 at 10:24:15AM -0400, RavenLX wrote:
> Here's what's on the system:
> 
> ravenlx@hpg7:~$ uname -r
> 4.9.0-3-amd64

That only tells you the package name, not the version.  Use "uname -a"
to get the actual running version, or "dpkg -l linux-image\* | cat"
to get the installed kernel versions.

Someone else mentioned unattended upgrades, which is a thing I have
never used, and which is also a thing I would disable if I ever found
it running.  But that's just me.

Re: [Stretch] apt-get has no updates?

[RavenLX]

On 06/30/2017 10:06 AM, Dejan Jocic wrote:

On 30-06-17, RavenLX wrote:

I think I might have a problem. I do the sudo apt-get update and then sudo
apt-get dist-upgrade and ever since I have installed Debian 9 (after the
official release) I have not seen any updates. Yet in Ubuntu 14.04 server
there were updates to the kernel and to Apache. I've been watching
Debian-Security and noticed there are some updates coming up. But I haven't
seen any when I go to do the update.


[snipped info I already gave]


Start with dpkg -s unattended-upgrades

If that is installed, check as root/with sudo:

# cat /var/log/unattended-upgrades/unattended-upgrades.log


Here's what I got:

ravenlx@hpg7:~$ sudo dpkg -s unattended-upgrades
Package: unattended-upgrades
Status: install ok installed
Priority: optional
Section: admin
Installed-Size: 246
Maintainer: Michael Vogt 
Architecture: all
Version: 0.93.1+nmu1
Depends: debconf (>= 0.5) | debconf-2.0, init-system-helpers (>= 1.18~), 
debconf, python3, python3-apt, apt-utils, apt, ucf, lsb-release, 
lsb-base (>= 3.2-14), xz-utils

Recommends: cron | cron-daemon | anacron
Suggests: bsd-mailx, mail-transport-agent, needrestart
Conffiles:
 /etc/init.d/unattended-upgrades 290829a5efc55b7c435de0bb769f217b
 /etc/kernel/postinst.d/unattended-upgrades 
b74a4f1a1fe2e350aec97f472c25e0bb

 /etc/logrotate.d/unattended-upgrades e45049ee847f069a99e3e6ec39155d4a
 /etc/pm/sleep.d/10_unattended-upgrades-hibernate 
d4ebdc2a2fdfeea33e6cd39812a85c3a

Description: automatic installation of security upgrades
 This package can download and install security upgrades automatically
 and unattended, taking care to only install packages from the
 configured APT source, and checking for dpkg prompts about
 configuration file changes.
 .
 This script is the backend for the APT::Periodic::Unattended-Upgrade
 option.

ravenlx@hpg7:~$ sudo cat 
/var/log/unattended-upgrades/unattended-upgrades.log

2017-06-26 10:44:53,533 INFO Initial blacklisted packages:
2017-06-26 10:44:53,533 INFO Initial whitelisted packages:
2017-06-26 10:44:53,534 INFO Starting unattended upgrades script
2017-06-26 10:44:53,534 INFO Allowed origins are: 
['origin=Debian,codename=stretch,label=Debian-Security']
2017-06-26 10:44:59,045 INFO No packages found that can be upgraded 
unattended and no pending auto-removals

2017-06-27 08:25:02,089 INFO Initial blacklisted packages:
2017-06-27 08:25:02,101 INFO Initial whitelisted packages:
2017-06-27 08:25:02,102 INFO Starting unattended upgrades script
2017-06-27 08:25:02,102 INFO Allowed origins are: 
['origin=Debian,codename=stretch,label=Debian-Security']
2017-06-27 08:25:07,323 INFO No packages found that can be upgraded 
unattended and no pending auto-removals

2017-06-28 06:34:25,955 INFO Initial blacklisted packages:
2017-06-28 06:34:25,967 INFO Initial whitelisted packages:
2017-06-28 06:34:25,968 INFO Starting unattended upgrades script
2017-06-28 06:34:25,968 INFO Allowed origins are: 
['origin=Debian,codename=stretch,label=Debian-Security']
2017-06-28 06:37:31,352 INFO Packages that will be upgraded: 
linux-compiler-gcc-6-x86 linux-headers-4.9.0-3-amd64 
linux-headers-4.9.0-3-common linux-image-4.9.0-3-amd64 linux-kbuild-4.9 
linux-libc-dev
2017-06-28 06:37:31,353 INFO Writing dpkg log to 
'/var/log/unattended-upgrades/unattended-upgrades-dpkg.log'

2017-06-28 06:38:50,686 INFO All upgrades installed
2017-06-29 08:57:46,133 INFO Initial blacklisted packages:
2017-06-29 08:57:46,146 INFO Initial whitelisted packages:
2017-06-29 08:57:46,146 INFO Starting unattended upgrades script
2017-06-29 08:57:46,147 INFO Allowed origins are: 
['origin=Debian,codename=stretch,label=Debian-Security']
2017-06-29 08:57:51,337 INFO No packages found that can be upgraded 
unattended and no pending auto-removals

2017-06-30 08:12:38,490 INFO Initial blacklisted packages:
2017-06-30 08:12:38,503 INFO Initial whitelisted packages:
2017-06-30 08:12:38,503 INFO Starting unattended upgrades script
2017-06-30 08:12:38,504 INFO Allowed origins are: 
['origin=Debian,codename=stretch,label=Debian-Security']
2017-06-30 08:12:43,802 INFO No packages found that can be upgraded 
unattended and no pending auto-removals



If you have unattended-upgrades package installed and it is configured
to fetch and install security updates only ( which is default ), that is
place to look for upgraded packages. You can also configure
unattended-upgrades to mail you where there was updates/upgrades and all
that jazz.


How do I go about upgrading then? I don't know of how to do it any other 
way than via apt-get. Also I don't want to have it email me anything. I 
usually go to the command line, do a series of commands and upgrade the 
system. I would like to continue to do things that way. I do this once a 
week (usually Thurs. but now I'm switching to Fridays).

Re: [Stretch] apt-get has no updates?

[RavenLX]

On 06/30/2017 10:04 AM, Greg Wooledge wrote:

On Fri, Jun 30, 2017 at 09:56:16AM -0400, RavenLX wrote:

I think I might have a problem. I do the sudo apt-get update and then sudo
apt-get dist-upgrade and ever since I have installed Debian 9 (after the
official release) I have not seen any updates.



Here is my sources.list:

# Security
deb http://security.debian.org/ stretch/updates main contrib non-free
deb-src http://security.debian.org/ stretch/updates main contrib non-free

# Main
deb http://deb.debian.org/debian/ stretch main contrib non-free
deb-src http://deb.debian.org/debian/ stretch main contrib non-free


Hmm.  Well, that looks correct.


Am I really missing any updates?


Probably the easiest to check is the kernel.  If you're on amd64, and
if you're truly up to date on stretch fixes, then you should have:

linux-image-4.9.0-3-amd64  4.9.30-2+deb9u2


Here's what's on the system:

ravenlx@hpg7:~$ uname -r
4.9.0-3-amd64


Note that +deb9u1 and +deb9u2 were quite close together.  +deb9u2
reverted the "stack guard gap" fix from +deb9u1 and replaced it with a
different fix that didn't cause regressions.

If you really aren't getting updates when you run "apt-get update", and
there are no errors, then I'm not sure how to diagnose this.


Me neither. No errors at all:

ravenlx@hpg7:~$ sudo apt-get update
[sudo] password for ravenlx:
Ign:1 http://deb.debian.org/debian stretch InRelease
Hit:2 http://deb.debian.org/debian stretch-updates InRelease 

Ign:3 http://dl.google.com/linux/chrome/deb stable InRelease 

Hit:4 http://dl.google.com/linux/chrome/deb stable Release 

Hit:5 http://deb.debian.org/debian stretch-backports InRelease 

Hit:6 http://download.virtualbox.org/virtualbox/debian stretch InRelease 

Hit:7 http://deb.debian.org/debian stretch Release 

Hit:8 http://security.debian.org stretch/updates InRelease 

Hit:9 https://repo.skype.com/deb stable InRelease 


Reading package lists... Done

All looks good.

So maybe these security updates are for the older versions??

Re: Problems with missing information in MATE's "help system"

[David Wright]

On Fri 30 Jun 2017 at 06:17:49 (-0500), Richard Owlett wrote:
> On 06/30/2017 05:00 AM, Liam O'Toole wrote:
> >On 2017-06-29, David Wright  wrote:
> >>On Tue 27 Jun 2017 at 08:26:47 (-0500), Richard Owlett wrote:
> >>>I am using the MATE desktop on Debian Stretch.
> >>>I wish to run a user specific script each time a specific user logs in.
> >>>The script is known to work because I manually run it each and every
> >>>time I login.
> >>>
> >>>The MATE help system lacks a usable index making finding a specific
> >>>option difficult.
> >>>
> >>>One eventually arrives at
> >>>Desktop User Guide » Desktop Sessions » Setting Programs to Start
> >>>Automatically When You Log In »
> >>>which has a section titled "Startup Programs Tab" which says "You
> >>>can use the Startup Programs tab to add, modify, and remove startup
> >>>programs."
> >>>
> >>>The previous screen had said "The Sessions preference tool allows
> >>>you to define which programs are started automatically when you log
> >>>in."
> >>>
> >>>*NOWHERE* does the "help system" give Debian applicable instructions
> >>>for getting to this "Sessions preference tool". Elsewhere in the
> >>>"help system" reference is made to something similar called "System
> >>>Manager". But nothing on how to access it either.
> >>>
> >>>Guidance from a MATE user would be appreciated.
> >>
> >>I don't understand. I can't believe a DE doesn't have a menu system.
> >>Does it not have an Edit Preferences or some such. Then look for
> >>Startup Programs in whatever Edit Preferences throws up, menu or
> >>dialog box.
> >>
> >>Cheers,
> >>David.
> >
> >If it's anything like GNOME 2 it will under System -> Preferences ->
> >Startup Applications from the top panel.
> >
> 
> In Mate 1.16.2 (Stretch):
>   System->Preferences->Personal->Startup Applications
> In Mate 1.8.1 (Jessie):
>   System->Preferences->Startup Applications
> 
> I think there were two problems:
>   The choices were not as expected it

I don't suppose we'll find out what your expectations were.
As a non-user of DEs (computers not powerful enough), my
expectations were based on not much more than Windows 95's
infamous Start button, and Netscape Navigator's menus, if
you remember them.

>   The help system presentation probably more in sync with Jessie

I don't see much difference in the examples quoted above…
but are you offering to rewrite?

Cheers,
David.

Re: Postfix/batch: configurer l'adresse d'émission et renvoyer des messages en arrivée vers un tiers

[Sébastien NOBILI]

Bonjour,

Sous réserve que j’aie bien compris ce que tu veux faire…

Le vendredi 30 juin 2017 à 13:54, Olivier a écrit :
> 1. Comment pouvoir émettre depuis un programme batch sur un serveur, en
> utilisant les identifiants de mon compte t...@exemple.fr ?

Chez moi je fais ça avec « canonical » [1].

1: http://www.postfix.org/canonical.5.html

Dans main.cf :

canonical_maps = hash:/etc/postfix/canonical

Dans « /etc/postfix/canonical » :

root t...@exemple.fr
r...@mamachine.dedibox.fr t...@exemple.fr

(Pas sûr que la deuxième ligne soit vraiment nécessaire…)

Puis :

postmap /etc/postfix/canonical

> 2. J'imagine possible de reconfigurer chez 1and1, ma boîte t...@exemple.fr
> de telle sorte que chaque email qu'elle recoive soit renvoyé vers une boîte
> tierce (p...@tagada.com) puis supprimé.
> Pour la beauté du geste, est-il possible et pas trop compliqué de
> configurer ce renvoi sur ma propre machine, en filtrant selon l'adresse
> d'émission.
> ("Si le courriel vient de @important.fr, renvoyer vers p...@tagada.com,
> sinon poubelle).

Quand tu parles de ta « propre machine », tu veux parler du serveur Postfix ?
Si oui, alors, tu dois pouvoir y arriver avec « sender_bcc » [2].

2: http://www.postfix.org/postconf.5.html#sender_bcc_maps

Dans « main.cf » :

sender_bcc_maps = hash:/etc/postfix/sender_bcc

Dans « /etc/postfix/sender_bcc » :

@important.fr p...@tagada.com

Puis :

postmap /etc/postfix/sender_bcc

Sébastien

Re: [Stretch] apt-get has no updates?

[Dejan Jocic]

On 30-06-17, RavenLX wrote:
> I think I might have a problem. I do the sudo apt-get update and then sudo
> apt-get dist-upgrade and ever since I have installed Debian 9 (after the
> official release) I have not seen any updates. Yet in Ubuntu 14.04 server
> there were updates to the kernel and to Apache. I've been watching
> Debian-Security and noticed there are some updates coming up. But I haven't
> seen any when I go to do the update.
> 
> More info:
> 
> I'm using KDE in Debian 9 (Stretch).
> I did NOT install the "KDE" desktop when installing Debian 9. Intead I
> installe the kde desktop package *only* via the command line after
> installing Debian 9. This way I minimized a lot of the bulk and didn't have
> to install application I don't use (like juk and okular, for example).
> 
> - I have removed plasma-discover and plasma-discover-common because I prefer
> to do things the old-fashioned way - via the command prompt.
> 
> Here is my sources.list:
> 
> # Security
> deb http://security.debian.org/ stretch/updates main contrib non-free
> deb-src http://security.debian.org/ stretch/updates main contrib non-free
> 
> # Main
> deb http://deb.debian.org/debian/ stretch main contrib non-free
> deb-src http://deb.debian.org/debian/ stretch main contrib non-free
> 
> # stretch-updates, previously known as 'volatile'
> deb http://deb.debian.org/debian/ stretch-updates main contrib non-free
> deb-src http://deb.debian.org/debian/ stretch-updates main contrib non-free
> 
> # Backports
> deb http://deb.debian.org/debian/ stretch-backports main contrib non-free
> deb-src http://deb.debian.org/debian/ stretch-backports main contrib
> non-free
> 
> Am I really missing any updates? Or is there something wrong in my system? I
> really hate to install that plasma updater widget just to get updates.
> 

Start with dpkg -s unattended-upgrades

If that is installed, check as root/with sudo:

# cat /var/log/unattended-upgrades/unattended-upgrades.log

If you have unattended-upgrades package installed and it is configured
to fetch and install security updates only ( which is default ), that is
place to look for upgraded packages. You can also configure
unattended-upgrades to mail you where there was updates/upgrades and all
that jazz.

Re: Upgrade Wheezy vers Jessie

[Hugues MORIN]

Salut


Oui je boote bien sur le disque dur

C'etait bien Grub qui ne charge pas le bon kernel
J'ai corrige la priorite a l'aide de ce tuto:
https://doc.ubuntu-fr.org/tutoriel/grub2_parametrage_manuel

Et uname me donne ce que je souhaitais:
root@:~# uname -a
Linux .ip-155-63-98.eu 3.16.0-4-amd64 #1 SMP Debian 3.16.43-2+deb8u2
(2017-06-26) x86_64 GNU/Linux


Je teste pendant une ou deux semaines que tout va bien et je m'attaque a
l'upgrade vers stretch


Merci pour votre aide

Cordialement
Hugues

Le 30 juin 2017 à 15:33, Hugues MORIN  a écrit :

> Re-salut
>
>
> Je viens d'installer le noyau linux-image-3.16.0-4-amd64
> Et j'ai redemarre le serveur .
>
> Et puis j'ai verifier:
> root@:~# uname -a
> Linux xx.ip-155.63.98.eu 3.14.32--grs-ipv6-64 #1 SMP Sat Feb 7
> 11:35:27 CET 2015 x86_64 GNU/Linux
>
> Ca n'a rien fait !!! O_o 
>
> J'ai ete verifie tout d'abord en /
> root@:/# ls -al
> total 417
> drwxr-xr-x  23 root root   4096 juin  30 14:00 .
> drwxr-xr-x  23 root root   4096 juin  30 14:00 ..
> drwxr-xr-x   2 root root   4096 juin  27 16:29 bin
> drwxr-xr-x   4 root root   1024 juin  30 14:00 boot
> drwxr-xr-x  16 root root  14640 juin  30 14:17 dev
> drwxr-xr-x  92 root root   4096 juin  27 18:08 etc
> drwxr-xr-x   6 root root   4096 juin  27 14:17 home
> lrwxrwxrwx   1 root root 31 juin  30 14:00 initrd.img ->
> /boot/initrd.img-3.16.0-4-amd64
> drwxr-xr-x  15 root root   4096 juin  30 14:00 lib
> []
> drwxr-xr-x  11 root root   4096 juin  27 16:30 usr
> drwxr-xr-x  13 root root   4096 mars   4  2015 var
> lrwxrwxrwx   1 root root 27 juin  30 14:00 vmlinuz ->
> boot/vmlinuz-3.16.0-4-amd64
>
> puis /boot:
> root@:/boot# ls -al
> total 23320
> drwxr-xr-x  4 root root1024 juin  30 14:00 .
> drwxr-xr-x 23 root root4096 juin  30 14:00 ..
> -rw-r--r--  1 root root 8506608 févr. 11  2015
> bzImage-3.14.32--grs-ipv6-64
> -rw-r--r--  1 root root  157786 juin  26 19:40 config-3.16.0-4-amd64
> drwxr-xr-x  5 root root6144 juin  30 14:00 grub
> -rw-r--r--  1 root root 6415169 juin  30 14:00 initrd.img-3.16.0-4-amd64
> drwx--  2 root root   12288 mars   4  2015 lost+found
> -rw-r--r--  1 root root 2962584 févr. 11  2015 System.map-3.14.32--grs-
> ipv6-64
> -rw-r--r--  1 root root 2681870 juin  26 19:40 System.map-3.16.0-4-amd64
> -rw-r--r--  1 root root 3128224 juin  26 19:38 vmlinuz-3.16.0-4-amd64
>
>
> ca a l'air correct pourtant le uname ne l'est pas !!!
>
>
> Je pense que ca vient du Grub qui ne charge pas le bon noyau.
> Il faudrait changer la priorite de chargement
>
>
> Cordialement
> Hugues
>
>
>
>
>
>
>
>
> Le 30 juin 2017 à 13:24, Hugues MORIN  a écrit :
>
>> Salut
>>
>>
>> Merci pour cette info
>> Je vais tenter l'operation vu qu'il semble y avoir peu de risque.
>>
>>
>>
>> Cordialement
>> Hugues
>>
>>
>> Le 30 juin 2017 à 10:27, Daniel Caillibaud  a écrit :
>>
>>> Le 30/06/17 à 08:09, Hugues MORIN  a écrit :
>>> HM> Il va vraiment falloir que je trouve plus d'info car je ne comprends
>>> pas
>>> HM> bien a quoi correspondent ces differents noyaux et je ne sais meme
>>> pas a
>>> HM> quoi il correspondent.
>>>
>>> Hormis quelques serveurs avec des cartes réseau très récentes (de
>>> mémoire c'est seulement les
>>> 10Gbps), tous les serveurs que j'ai eu chez ovh tournent très bien avec
>>> le noyau fourni par
>>> debian.
>>>
>>> Tu peux donc installer le noyau debian (linux-image* qui te plaît) et
>>> indiquer dans l'option
>>> netboot que tu boot sur le disque local.
>>>
>>> Si ça boot pas, tu seras bon pour remettre le netboot sur le noyau ovh
>>> qui marche et provoquer
>>> un reboot hard via le manager ovh.
>>>
>>> --
>>> Daniel
>>>
>>> Le doute me ronge. Et si tout n'était qu'illusion ? Si rien n'existait ?
>>> Dans ce cas, j'aurais payé ma moquette beaucoup trop cher.
>>> Woody Allen
>>>
>>>
>>
>

Re: [Stretch] apt-get has no updates?

[Greg Wooledge]

On Fri, Jun 30, 2017 at 09:56:16AM -0400, RavenLX wrote:
> I think I might have a problem. I do the sudo apt-get update and then sudo
> apt-get dist-upgrade and ever since I have installed Debian 9 (after the
> official release) I have not seen any updates.

> Here is my sources.list:
> 
> # Security
> deb http://security.debian.org/ stretch/updates main contrib non-free
> deb-src http://security.debian.org/ stretch/updates main contrib non-free
> 
> # Main
> deb http://deb.debian.org/debian/ stretch main contrib non-free
> deb-src http://deb.debian.org/debian/ stretch main contrib non-free

Hmm.  Well, that looks correct.

> Am I really missing any updates?

Probably the easiest to check is the kernel.  If you're on amd64, and
if you're truly up to date on stretch fixes, then you should have:

linux-image-4.9.0-3-amd64  4.9.30-2+deb9u2

Note that +deb9u1 and +deb9u2 were quite close together.  +deb9u2
reverted the "stack guard gap" fix from +deb9u1 and replaced it with a
different fix that didn't cause regressions.

If you really aren't getting updates when you run "apt-get update", and
there are no errors, then I'm not sure how to diagnose this.

Re: Upgrade Wheezy vers Jessie

[jérémy prego]

bonjour,

avez vous bien mis le netboot sur disque dure ?

jerem

Le 30/06/2017 à 15:33, Hugues MORIN a écrit :

Re-salut


Je viens d'installer le noyau linux-image-3.16.0-4-amd64
Et j'ai redemarre le serveur .

Et puis j'ai verifier:
root@:~# uname -a
Linux xx.ip-155.63.98.eu  
3.14.32--grs-ipv6-64 #1 SMP Sat Feb 7 11:35:27 CET 2015 x86_64 
GNU/Linux


Ca n'a rien fait !!! O_o 

J'ai ete verifie tout d'abord en /
root@:/# ls -al
total 417
drwxr-xr-x  23 root root   4096 juin  30 14:00 .
drwxr-xr-x  23 root root   4096 juin  30 14:00 ..
drwxr-xr-x   2 root root   4096 juin  27 16:29 bin
drwxr-xr-x   4 root root   1024 juin  30 14:00 boot
drwxr-xr-x  16 root root  14640 juin  30 14:17 dev
drwxr-xr-x  92 root root   4096 juin  27 18:08 etc
drwxr-xr-x   6 root root   4096 juin  27 14:17 home
lrwxrwxrwx   1 root root 31 juin  30 14:00 initrd.img -> 
/boot/initrd.img-3.16.0-4-amd64

drwxr-xr-x  15 root root   4096 juin  30 14:00 lib
[]
drwxr-xr-x  11 root root   4096 juin  27 16:30 usr
drwxr-xr-x  13 root root   4096 mars   4  2015 var
lrwxrwxrwx   1 root root 27 juin  30 14:00 vmlinuz -> 
boot/vmlinuz-3.16.0-4-amd64


puis /boot:
root@:/boot# ls -al
total 23320
drwxr-xr-x  4 root root1024 juin  30 14:00 .
drwxr-xr-x 23 root root4096 juin  30 14:00 ..
-rw-r--r--  1 root root 8506608 févr. 11  2015 
bzImage-3.14.32--grs-ipv6-64

-rw-r--r--  1 root root  157786 juin  26 19:40 config-3.16.0-4-amd64
drwxr-xr-x  5 root root6144 juin  30 14:00 grub
-rw-r--r--  1 root root 6415169 juin  30 14:00 initrd.img-3.16.0-4-amd64
drwx--  2 root root   12288 mars   4  2015 lost+found
-rw-r--r--  1 root root 2962584 févr. 11  2015 
System.map-3.14.32--grs-ipv6-64

-rw-r--r--  1 root root 2681870 juin  26 19:40 System.map-3.16.0-4-amd64
-rw-r--r--  1 root root 3128224 juin  26 19:38 vmlinuz-3.16.0-4-amd64


ca a l'air correct pourtant le uname ne l'est pas !!!


Je pense que ca vient du Grub qui ne charge pas le bon noyau.
Il faudrait changer la priorite de chargement


Cordialement
Hugues








Le 30 juin 2017 à 13:24, Hugues MORIN > a écrit :


Salut


Merci pour cette info
Je vais tenter l'operation vu qu'il semble y avoir peu de risque.



Cordialement
Hugues


Le 30 juin 2017 à 10:27, Daniel Caillibaud > a écrit :

Le 30/06/17 à 08:09, Hugues MORIN > a écrit :
HM> Il va vraiment falloir que je trouve plus d'info car je ne
comprends pas
HM> bien a quoi correspondent ces differents noyaux et je ne
sais meme pas a
HM> quoi il correspondent.

Hormis quelques serveurs avec des cartes réseau très récentes
(de mémoire c'est seulement les
10Gbps), tous les serveurs que j'ai eu chez ovh tournent très
bien avec le noyau fourni par
debian.

Tu peux donc installer le noyau debian (linux-image* qui te
plaît) et indiquer dans l'option
netboot que tu boot sur le disque local.

Si ça boot pas, tu seras bon pour remettre le netboot sur le
noyau ovh qui marche et provoquer
un reboot hard via le manager ovh.

--
Daniel

Le doute me ronge. Et si tout n'était qu'illusion ? Si rien
n'existait ?
Dans ce cas, j'aurais payé ma moquette beaucoup trop cher.
Woody Allen

Re: [Stretch] apt-get has no updates?

[Herb Garcia]

On Fri, 30 Jun 2017 09:56:16 -0400
RavenLX  wrote:

> I think I might have a problem. I do the sudo apt-get update and then 
> sudo apt-get dist-upgrade and ever since I have installed Debian 9 
> (after the official release) I have not seen any updates. Yet in
> Ubuntu 14.04 server there were updates to the kernel and to Apache.
> I've been watching Debian-Security and noticed there are some updates
> coming up. But I haven't seen any when I go to do the update.
> 
> More info:
> 
> I'm using KDE in Debian 9 (Stretch).
> I did NOT install the "KDE" desktop when installing Debian 9. Intead
> I installe the kde desktop package *only* via the command line after 
> installing Debian 9. This way I minimized a lot of the bulk and
> didn't have to install application I don't use (like juk and okular,
> for example).
> 
> - I have removed plasma-discover and plasma-discover-common because I 
> prefer to do things the old-fashioned way - via the command prompt.
> 
> Here is my sources.list:
> 
> # Security
> deb http://security.debian.org/ stretch/updates main contrib non-free
> deb-src http://security.debian.org/ stretch/updates main contrib
> non-free
> 
> # Main
> deb http://deb.debian.org/debian/ stretch main contrib non-free
> deb-src http://deb.debian.org/debian/ stretch main contrib non-free
> 
> # stretch-updates, previously known as 'volatile'
> deb http://deb.debian.org/debian/ stretch-updates main contrib
> non-free deb-src http://deb.debian.org/debian/ stretch-updates main
> contrib non-free
> 
> # Backports
> deb http://deb.debian.org/debian/ stretch-backports main contrib
> non-free deb-src http://deb.debian.org/debian/ stretch-backports main
> contrib non-free
> 
> Am I really missing any updates? Or is there something wrong in my 
> system? I really hate to install that plasma updater widget just to
> get updates.
> 

I'm wondering the same thing as well.

HP Garcia

[Stretch] apt-get has no updates?

[RavenLX]

I think I might have a problem. I do the sudo apt-get update and then 
sudo apt-get dist-upgrade and ever since I have installed Debian 9 
(after the official release) I have not seen any updates. Yet in Ubuntu 
14.04 server there were updates to the kernel and to Apache. I've been 
watching Debian-Security and noticed there are some updates coming up. 
But I haven't seen any when I go to do the update.


More info:

I'm using KDE in Debian 9 (Stretch).
I did NOT install the "KDE" desktop when installing Debian 9. Intead I 
installe the kde desktop package *only* via the command line after 
installing Debian 9. This way I minimized a lot of the bulk and didn't 
have to install application I don't use (like juk and okular, for example).


- I have removed plasma-discover and plasma-discover-common because I 
prefer to do things the old-fashioned way - via the command prompt.


Here is my sources.list:

# Security
deb http://security.debian.org/ stretch/updates main contrib non-free
deb-src http://security.debian.org/ stretch/updates main contrib non-free

# Main
deb http://deb.debian.org/debian/ stretch main contrib non-free
deb-src http://deb.debian.org/debian/ stretch main contrib non-free

# stretch-updates, previously known as 'volatile'
deb http://deb.debian.org/debian/ stretch-updates main contrib non-free
deb-src http://deb.debian.org/debian/ stretch-updates main contrib non-free

# Backports
deb http://deb.debian.org/debian/ stretch-backports main contrib non-free
deb-src http://deb.debian.org/debian/ stretch-backports main contrib 
non-free


Am I really missing any updates? Or is there something wrong in my 
system? I really hate to install that plasma updater widget just to get 
updates.

Re: Stretch, pulseaudio and bluetooth headphones

[Ric Moore]

On 06/29/2017 09:58 AM, Mark Fletcher wrote:

Hello the list!

Quite a while ago I bought a pair of Bang & Olufsen bluetooth headphones
and have been using them from Jessie.

The list may remember I had a little bit of a struggle getting them to
work with Jessie, which eventually turned out to be because I
unknowingly had 2 instances of Pulse running...

After that all has been working great, until I upgraded to Stretch.

After the upgrade, I was getting only mono sound.

I followed the instructions I found here -->
https://bbs.archlinux.org/viewtopic.php?id=197482https://bbs.archlinux.org/viewtopic.php?id=197482

and moving the command to load module-bluetooth-discover so it isn't run
until X starts as described there fixed it. But I am not very
comfortable with the solution -- it feels like it is likely to get
undone in the future by an unsuspecting package upgrade.

Anyone else seen this? Are there better solutions to be had? (Solutions
that aren't likely to fall apart after I've forgotten what I did)


Make sure that pavucontrol is installed and that you use it to set up 
your headphones. Click on the "Configuration" tab and select stereo from 
the drop down list. Should work just fine as long as lsusb shows the 
device. Ric



--
My father, Victor Moore (Vic) used to say:
"There are two Great Sins in the world...
..the Sin of Ignorance, and the Sin of Stupidity.
Only the former may be overcome." R.I.P. Dad.
http://linuxcounter.net/user/44256.html

Re: Upgrade Wheezy vers Jessie

[Hugues MORIN]

Re-salut


Je viens d'installer le noyau linux-image-3.16.0-4-amd64
Et j'ai redemarre le serveur .

Et puis j'ai verifier:
root@:~# uname -a
Linux xx.ip-155.63.98.eu 3.14.32--grs-ipv6-64 #1 SMP Sat Feb 7
11:35:27 CET 2015 x86_64 GNU/Linux

Ca n'a rien fait !!! O_o 

J'ai ete verifie tout d'abord en /
root@:/# ls -al
total 417
drwxr-xr-x  23 root root   4096 juin  30 14:00 .
drwxr-xr-x  23 root root   4096 juin  30 14:00 ..
drwxr-xr-x   2 root root   4096 juin  27 16:29 bin
drwxr-xr-x   4 root root   1024 juin  30 14:00 boot
drwxr-xr-x  16 root root  14640 juin  30 14:17 dev
drwxr-xr-x  92 root root   4096 juin  27 18:08 etc
drwxr-xr-x   6 root root   4096 juin  27 14:17 home
lrwxrwxrwx   1 root root 31 juin  30 14:00 initrd.img ->
/boot/initrd.img-3.16.0-4-amd64
drwxr-xr-x  15 root root   4096 juin  30 14:00 lib
[]
drwxr-xr-x  11 root root   4096 juin  27 16:30 usr
drwxr-xr-x  13 root root   4096 mars   4  2015 var
lrwxrwxrwx   1 root root 27 juin  30 14:00 vmlinuz ->
boot/vmlinuz-3.16.0-4-amd64

puis /boot:
root@:/boot# ls -al
total 23320
drwxr-xr-x  4 root root1024 juin  30 14:00 .
drwxr-xr-x 23 root root4096 juin  30 14:00 ..
-rw-r--r--  1 root root 8506608 févr. 11  2015
bzImage-3.14.32--grs-ipv6-64
-rw-r--r--  1 root root  157786 juin  26 19:40 config-3.16.0-4-amd64
drwxr-xr-x  5 root root6144 juin  30 14:00 grub
-rw-r--r--  1 root root 6415169 juin  30 14:00 initrd.img-3.16.0-4-amd64
drwx--  2 root root   12288 mars   4  2015 lost+found
-rw-r--r--  1 root root 2962584 févr. 11  2015
System.map-3.14.32--grs-ipv6-64
-rw-r--r--  1 root root 2681870 juin  26 19:40 System.map-3.16.0-4-amd64
-rw-r--r--  1 root root 3128224 juin  26 19:38 vmlinuz-3.16.0-4-amd64


ca a l'air correct pourtant le uname ne l'est pas !!!


Je pense que ca vient du Grub qui ne charge pas le bon noyau.
Il faudrait changer la priorite de chargement


Cordialement
Hugues








Le 30 juin 2017 à 13:24, Hugues MORIN  a écrit :

> Salut
>
>
> Merci pour cette info
> Je vais tenter l'operation vu qu'il semble y avoir peu de risque.
>
>
>
> Cordialement
> Hugues
>
>
> Le 30 juin 2017 à 10:27, Daniel Caillibaud  a écrit :
>
>> Le 30/06/17 à 08:09, Hugues MORIN  a écrit :
>> HM> Il va vraiment falloir que je trouve plus d'info car je ne comprends
>> pas
>> HM> bien a quoi correspondent ces differents noyaux et je ne sais meme
>> pas a
>> HM> quoi il correspondent.
>>
>> Hormis quelques serveurs avec des cartes réseau très récentes (de mémoire
>> c'est seulement les
>> 10Gbps), tous les serveurs que j'ai eu chez ovh tournent très bien avec
>> le noyau fourni par
>> debian.
>>
>> Tu peux donc installer le noyau debian (linux-image* qui te plaît) et
>> indiquer dans l'option
>> netboot que tu boot sur le disque local.
>>
>> Si ça boot pas, tu seras bon pour remettre le netboot sur le noyau ovh
>> qui marche et provoquer
>> un reboot hard via le manager ovh.
>>
>> --
>> Daniel
>>
>> Le doute me ronge. Et si tout n'était qu'illusion ? Si rien n'existait ?
>> Dans ce cas, j'aurais payé ma moquette beaucoup trop cher.
>> Woody Allen
>>
>>
>

Re: firewall rules for NAT

[Igor Cicimov]

On Fri, Jun 30, 2017 at 3:50 PM, Pascal Hambourg 
wrote:

> Le 30/06/2017 à 00:38, Igor Cicimov a écrit :
>
>> On 29 Jun 2017 6:32 pm, "Lucio Crusca"  wrote:
>>
>>>
>>> Il 27/06/2017 23:35, Pascal Hambourg ha scritto:
>>>
>>> Le 27/06/2017 à 13:29, Lucio Crusca a écrit :

 -A POSTROUTING -d 10.7.33.109/32 -p tcp -m tcp --dport 25 -j SNAT
> --to-source 10.7.33.100
>
> If this rule is required, then your routing setup is wrong.

>>>
>>> Thank you very much, that was the problem. My VMs were using the host
>>> system as gateway instead of the router VM.
>>>
>>
>> Ok, not sure though how does that change anything. As you said the email
>> vm
>> was receiving traffic with the ip of the router vm as source and since
>> they
>> are both on the same lan and connected to the same bridge I dont see how
>> the default gateway can make any difference? The return traffic was
>> already
>> going through the router vm hence the need of the SNAT rule on it.
>>
>
> Stateful NAT requires symmetric routing, i.e. reply packets go through the
> router that did the NAT operations on original packets and keeps the state
> for these NAT operations.
>
> With the host as gateway and without the SNAT rule, routing is asymmetric :
> client -> router VM (DNAT) -> server VM
> server VM -> host -> client
>
> Reply trafic cannot be un-DNATed and communication fails.
>

I completely agree with that and that's what I would expect to happen.
However, as per OP's initial email (I cite):

"*It works like a charm*, but there is one problem: my mail server receives
all the connections from the router, which has its own private IP address
(10.7.33.100), so the mail server can't enforce SPF policies nor DNS RBL
rules on incoming mail connections."

his setup was working "like a charm" and the only problem was that the
source IP the email server was seeing was the one from the router vm and
not the client one, nothing about failing connections. As if there was
maybe a routing rule on the host like:

10.7.33.0/24 dev virbr10 scope host src 10.7.33.100

Something does not add up ...

The SNAT rule is a way to force reply traffic through the router VM, making
> the routing symmetric :
> client -> router VM (DNAT+SNAT) -> server VM
> server VM -> router VM (un-DNAT+un-SNAT) -> client
>
> Making the router VM the default gateway for the server VM also makes
> routing symmetric without the need of SNAT :
> client -> router VM (DNAT) -> server VM
> server VM -> router VM (un-DNAT) -> client
>
>

Re: LXQT - Anyone using it?

[Greg Wooledge]

On Thu, Jun 29, 2017 at 09:06:54PM -0400, Anonymous wrote:
> Is anyone using LXQT?

http://popcon.debian.org/source/by_vote

http://popcon.debian.org/

Postfix/batch: configurer l'adresse d'émission et renvoyer des messages en arrivée vers un tiers

[Olivier]

Bonjour,

Je télé-administre quelques serveurs sous Debian.
Celles-ci doivent de temps en temps émettre des courriels quand certains
traitements se terminent.

Pour cela, j'ai historiquement utilisé Postfix et un compte GMail commun à
toutes mes machines.
Pourquoi GMail ? Par ce que c'est le fournisseur de service le plus souvent
cité dans les exemples de configuration.

J'ai un nouveau besoin: je dois désormais contrôler mon adresse d'émission
ie au lieu d'émettre avec p...@gmail.com, je dois désormais émettre avec
t...@exemple.fr.
Ceci bouleverse mes connaissances extrêmement superficielles de la
messagerie électronique.

L'ISP chez qui mon domaine exemple.fr est enregistré est 1and1chez qui j'ai
crée une boîte mail t...@exemple.fr standard.
Via le client Evolution de mon PC portable Stretch, j'arrive à me
"connecter" à cette boîte t...@exemple.fr : je peux émettre et recevoir.

Depuis un serveur sous Jessie, si je ne me suis pas trompé dans mes tests,
j'arrive à émettre avec le compte 1and1 mais l'adresse d'émission n'est
celle que j'espère (j'ai ).
Pour émettre depuis mon serveur, j'utilise une commande interactive du type:

$ mail -s Essai15 mondestinataire.fr
le corps de mon message
CC:

Dans ce cas, j'observe dans /var/log/syslog que Postfix n'émets pas avec la
bonne adresse :
Jun 30 13:41:35 mamachine postfix/qmgr[23481]: 59D953160331: from=<
r...@mamachine.dedibox.fr>, size=379, nrcpt=1 (queue active)



Mes questions sont:
1. Comment pouvoir émettre depuis un programme batch sur un serveur, en
utilisant les identifiants de mon compte t...@exemple.fr ?

2. J'imagine possible de reconfigurer chez 1and1, ma boîte t...@exemple.fr
de telle sorte que chaque email qu'elle recoive soit renvoyé vers une boîte
tierce (p...@tagada.com) puis supprimé.
Pour la beauté du geste, est-il possible et pas trop compliqué de
configurer ce renvoi sur ma propre machine, en filtrant selon l'adresse
d'émission.
("Si le courriel vient de @important.fr, renvoyer vers p...@tagada.com,
sinon poubelle).

Slts

Re: mplayer won't play audio CD

[Rodolfo Medina]

"Thomas Schmitt"  writes:

> Curt wrote:
>>  mplayer -cdrom-device /dev/hdb cdda://1
>> or wherever the device exists on your machine.
>
> Unless on very old systems, i'd expect /dev/sr0, /dev/sr1, ...

`mplayer -cdrom-device /dev/sr0 cdda://1' gives the same error output as
`mplayer cdda://'.


> Brian wrote:
>> It is worth noting that local access to the /dev/sr* device does
>> not depend on being a member of the cdrom group, Using 'ls -l':
>>  brw-rw+ root cdrom 11, 0 June 30 11:15 /dev/sr0
>> The "+" is a result of 70-uaccess.rules in /lib/udev/rules.d. It
>> indicates an Access Control List (ACL).
>
> ... which can be inquired by
>
>   $ getfacl /dev/sr0
>   ...
>   user:thomas:rw-
>   ...
>
> So my desktop user got an extra permission to read and write, regardless
> of group membership or "others" permission.


Same output for me.

Rodolfo

Fwd: installer mastodon ( problème ruby gem)

[bernard . schoenacker]

- Mail transféré -
> De: "bernard schoenacker" 
> À: "G2PC" 
> Envoyé: Vendredi 30 Juin 2017 13:22:11
> Objet: Re: installer mastodon ( problème ruby gem)
> 
> 
> 
> - Mail original -
> > De: "G2PC" 
> > À: debian-user-french@lists.debian.org
> > Envoyé: Vendredi 30 Juin 2017 11:36:06
> > Objet: Re: installer mastodon ( problème ruby gem)
> > 
> > Le 29/06/2017 à 18:26, bernard.schoenac...@free.fr a écrit :
> > >
> > > - Mail original -
> > >> De: "bernard schoenacker" 
> > >> À: "Debian-user-french" 
> > >> Envoyé: Jeudi 29 Juin 2017 09:41:00
> > >> Objet: installer mastodon ( problème ruby gem)
> > >>
> > >> bonjour,
> > >>
> > >> j'ai quelques soucis pour mettre en place mastodon :
> > >>
> > >> bundle exec rake secret
> > >> rake aborted!
> > >> No Rakefile found (looking for: rakefile, Rakefile, rakefile.rb,
> > >> Rakefile.rb)
> > >>
> > >> (See full trace by running task with --trace)
> > >>
> > >>
> > >> source principale :
> > >>
> > >> https://angristan.fr/installer-instance-mastodon-debian-8/
> > >>
> > >>
> > >> merci pour le coup de pouce
> > >>
> > >>
> > >> slt
> > >> bernard
> > >>
> > >>
> > > bonjour,
> > >
> > > j'ai tout repris et j'ai maintenant qu'une seule erreur :
> > >
> > >  bundle exec rake secret
> > >
> > > Could not locate Gemfile or .bundle/ directory
> > >
> > >
> > > ls -al
> > >
> > > drwxr-xr-x  3 mastodon mastodon4096 juin  29 17:22 .bundle
> > > drwxr-xr-x  4 mastodon mastodon4096 juin  29 17:54 .gem
> > >
> > > bref si quelqu'un peut me donner une idée, je suis preneur
> > >
> > >
> > > slt
> > > bernard
> > 
> > Aucune idée mais si tu arrives à régler ça avec la communauté et
> > que
> > tu
> > fais un script d'installation complet , je prend.
> > 
> > 
> 
> bonjour,
> 
> j'ai fait un cd live et tout est rentré dans l'ordre pour cette
> erreur ...
> 
> néanmoins maintenant j'ai un coredump des paques installés lorsque je
> lance
> cette instruction :  bundle exec rake secret
> 
> donc je bute sur la même instruction
> 
> slt
> bernard

Re: Upgrade Wheezy vers Jessie

[Hugues MORIN]

Salut


Merci pour cette info
Je vais tenter l'operation vu qu'il semble y avoir peu de risque.



Cordialement
Hugues


Le 30 juin 2017 à 10:27, Daniel Caillibaud  a écrit :

> Le 30/06/17 à 08:09, Hugues MORIN  a écrit :
> HM> Il va vraiment falloir que je trouve plus d'info car je ne comprends
> pas
> HM> bien a quoi correspondent ces differents noyaux et je ne sais meme pas
> a
> HM> quoi il correspondent.
>
> Hormis quelques serveurs avec des cartes réseau très récentes (de mémoire
> c'est seulement les
> 10Gbps), tous les serveurs que j'ai eu chez ovh tournent très bien avec le
> noyau fourni par
> debian.
>
> Tu peux donc installer le noyau debian (linux-image* qui te plaît) et
> indiquer dans l'option
> netboot que tu boot sur le disque local.
>
> Si ça boot pas, tu seras bon pour remettre le netboot sur le noyau ovh qui
> marche et provoquer
> un reboot hard via le manager ovh.
>
> --
> Daniel
>
> Le doute me ronge. Et si tout n'était qu'illusion ? Si rien n'existait ?
> Dans ce cas, j'aurais payé ma moquette beaucoup trop cher.
> Woody Allen
>
>

Re: mplayer won't play audio CD

[Curt]

On 2017-06-30, Thomas Schmitt  wrote:
> Hi,
>
> Curt wrote:
>>  mplayer -cdrom-device /dev/hdb cdda://1
>> or wherever the device exists on your machine.
>
> Unless on very old systems, i'd expect /dev/sr0, /dev/sr1, ...
>

Or wherever the device exists on your machine.

>> Maybe there's no audio cable between the cd drive and the sound card. 
>
> I doubt that mplayer would use the PLAY AUDIO command to let the drive
> send an analog signal to the sound card. I rather assume it uses READ CD
> to get the 16 bit digital audio data and then processes them like other
> input.
> So no audio cable from drive to sound card would be needed.
>

Oh, ok, ripping good.

> Brian wrote:
>> It is worth noting that local access to the /dev/sr* device does
>> not depend on being a member of the cdrom group, Using 'ls -l':
>>  brw-rw+ root cdrom 11, 0 June 30 11:15 /dev/sr0
>> The "+" is a result of 70-uaccess.rules in /lib/udev/rules.d. It
>> indicates an Access Control List (ACL).
>
> ... which can be inquired by
>
>   $ getfacl /dev/sr0
>   ...
>   user:thomas:rw-
>   ...
>
> So my desktop user got an extra permission to read and write, regardless
> of group membership or "others" permission.
>
>
> Have a nice day :)
>
> Thomas
>
>


-- 
“Yeah yeah.” --Sidney Morgenbesser's retort to a speaker who said that although
there are many cases in which two negatives make a positive, he knew of no case
in which two positives made a negative.

Re: Problems with missing information in MATE's "help system"

[Richard Owlett]

On 06/30/2017 05:00 AM, Liam O'Toole wrote:

On 2017-06-29, David Wright  wrote:

On Tue 27 Jun 2017 at 08:26:47 (-0500), Richard Owlett wrote:

I am using the MATE desktop on Debian Stretch.
I wish to run a user specific script each time a specific user logs in.
The script is known to work because I manually run it each and every
time I login.

The MATE help system lacks a usable index making finding a specific
option difficult.

One eventually arrives at
Desktop User Guide » Desktop Sessions » Setting Programs to Start
Automatically When You Log In »
which has a section titled "Startup Programs Tab" which says "You
can use the Startup Programs tab to add, modify, and remove startup
programs."

The previous screen had said "The Sessions preference tool allows
you to define which programs are started automatically when you log
in."

*NOWHERE* does the "help system" give Debian applicable instructions
for getting to this "Sessions preference tool". Elsewhere in the
"help system" reference is made to something similar called "System
Manager". But nothing on how to access it either.

Guidance from a MATE user would be appreciated.


I don't understand. I can't believe a DE doesn't have a menu system.
Does it not have an Edit Preferences or some such. Then look for
Startup Programs in whatever Edit Preferences throws up, menu or
dialog box.

Cheers,
David.


If it's anything like GNOME 2 it will under System -> Preferences ->
Startup Applications from the top panel.



In Mate 1.16.2 (Stretch):
  System->Preferences->Personal->Startup Applications
In Mate 1.8.1 (Jessie):
  System->Preferences->Startup Applications

I think there were two problems:
  The choices were not as expected it
  The help system presentation probably more in sync with Jessie

Re: mplayer won't play audio CD

[Thomas Schmitt]

Hi,

Curt wrote:
>  mplayer -cdrom-device /dev/hdb cdda://1
> or wherever the device exists on your machine.

Unless on very old systems, i'd expect /dev/sr0, /dev/sr1, ...


> Maybe there's no audio cable between the cd drive and the sound card. 

I doubt that mplayer would use the PLAY AUDIO command to let the drive
send an analog signal to the sound card. I rather assume it uses READ CD
to get the 16 bit digital audio data and then processes them like other
input.
So no audio cable from drive to sound card would be needed.


Brian wrote:
> It is worth noting that local access to the /dev/sr* device does
> not depend on being a member of the cdrom group, Using 'ls -l':
>  brw-rw+ root cdrom 11, 0 June 30 11:15 /dev/sr0
> The "+" is a result of 70-uaccess.rules in /lib/udev/rules.d. It
> indicates an Access Control List (ACL).

... which can be inquired by

  $ getfacl /dev/sr0
  ...
  user:thomas:rw-
  ...

So my desktop user got an extra permission to read and write, regardless
of group membership or "others" permission.


Have a nice day :)

Thomas

Re: mplayer won't play audio CD

[Brian]

On Fri 30 Jun 2017 at 07:52:21 +0200, deloptes wrote:

> Rodolfo Medina wrote:
> 
> > Please help...  mplayer works fine when playing files (mp3, wav, etc), but
> > fails in playing audio CDs.  When I launch it as a normal user I have:
> 
> check if you  are member of the cdrom group

It is worth noting that local access to the /dev/sr* device does
not depend on being a member of the cdrom group, Using 'ls -l':

 brw-rw+ root cdrom 11, 0 June 30 11:15 /dev/sr0

The "+" is a result of 70-uaccess.rules in /lib/udev/rules.d. It
indicates an Access Control List (ACL).

The installer has always  put the first user into the cdrom group. It
is questionable whether this is necessary any more.

-- 
Brian.

Re: Problems with missing information in MATE's "help system"

[Liam O'Toole]

On 2017-06-29, David Wright  wrote:
> On Tue 27 Jun 2017 at 08:26:47 (-0500), Richard Owlett wrote:
>> I am using the MATE desktop on Debian Stretch.
>> I wish to run a user specific script each time a specific user logs in.
>> The script is known to work because I manually run it each and every
>> time I login.
>> 
>> The MATE help system lacks a usable index making finding a specific
>> option difficult.
>> 
>> One eventually arrives at
>> Desktop User Guide » Desktop Sessions » Setting Programs to Start
>> Automatically When You Log In »
>> which has a section titled "Startup Programs Tab" which says "You
>> can use the Startup Programs tab to add, modify, and remove startup
>> programs."
>> 
>> The previous screen had said "The Sessions preference tool allows
>> you to define which programs are started automatically when you log
>> in."
>> 
>> *NOWHERE* does the "help system" give Debian applicable instructions
>> for getting to this "Sessions preference tool". Elsewhere in the
>> "help system" reference is made to something similar called "System
>> Manager". But nothing on how to access it either.
>> 
>> Guidance from a MATE user would be appreciated.
>
> I don't understand. I can't believe a DE doesn't have a menu system.
> Does it not have an Edit Preferences or some such. Then look for
> Startup Programs in whatever Edit Preferences throws up, menu or
> dialog box.
>
> Cheers,
> David.

If it's anything like GNOME 2 it will under System -> Preferences ->
Startup Applications from the top panel.

-- 

Liam

Re: installer mastodon ( problème ruby gem)

[G2PC]

Le 29/06/2017 à 18:26, bernard.schoenac...@free.fr a écrit :
>
> - Mail original -
>> De: "bernard schoenacker" 
>> À: "Debian-user-french" 
>> Envoyé: Jeudi 29 Juin 2017 09:41:00
>> Objet: installer mastodon ( problème ruby gem)
>>
>> bonjour,
>>
>> j'ai quelques soucis pour mettre en place mastodon :
>>
>> bundle exec rake secret
>> rake aborted!
>> No Rakefile found (looking for: rakefile, Rakefile, rakefile.rb,
>> Rakefile.rb)
>>
>> (See full trace by running task with --trace)
>>
>>
>> source principale :
>>
>> https://angristan.fr/installer-instance-mastodon-debian-8/
>>
>>
>> merci pour le coup de pouce
>>
>>
>> slt
>> bernard
>>
>>
> bonjour,
>
> j'ai tout repris et j'ai maintenant qu'une seule erreur :
>
>  bundle exec rake secret
>
> Could not locate Gemfile or .bundle/ directory
>
>
> ls -al 
>
> drwxr-xr-x  3 mastodon mastodon4096 juin  29 17:22 .bundle
> drwxr-xr-x  4 mastodon mastodon4096 juin  29 17:54 .gem
>
> bref si quelqu'un peut me donner une idée, je suis preneur
>
>
> slt
> bernard

Aucune idée mais si tu arrives à régler ça avec la communauté et que tu
fais un script d'installation complet , je prend.

Re: mplayer won't play audio CD

[Curt]

On 2017-06-29, Rodolfo Medina  wrote:
> Please help...  mplayer works fine when playing files (mp3, wav, etc), but
> fails in playing audio CDs.  When I launch it as a normal user I have:
>
> $ mplayer cdda://
> MPlayer 1.3.0 (Debian), built with gcc-6.3.0 (C) 2000-2016 MPlayer Team
> do_connect: could not connect to socket
> connect: No such file or directory
> Failed to open LIRC support. You will not be able to use your remote control.

How about giving it the full path:

 mplayer -cdrom-device /dev/media/cdrom cdda://1
 mplayer -cdrom-device /dev/hdb cdda://1

or wherever the device exists on your machine.

Also perhaps verify in a mixer program (alsamixer, e.g.) that cdrom audio output
isn't muted.

Maybe there's no audio cable between the cd drive and the sound card. 

;-)



-- 
“Yeah yeah.” --Sidney Morgenbesser's retort to a speaker who said that although
there are many cases in which two negatives make a positive, he knew of no case
in which two positives made a negative.

Re: Upgrade Wheezy vers Jessie

[Daniel Caillibaud]

Le 30/06/17 à 08:09, Hugues MORIN  a écrit :
HM> Il va vraiment falloir que je trouve plus d'info car je ne comprends pas
HM> bien a quoi correspondent ces differents noyaux et je ne sais meme pas a
HM> quoi il correspondent.

Hormis quelques serveurs avec des cartes réseau très récentes (de mémoire c'est 
seulement les
10Gbps), tous les serveurs que j'ai eu chez ovh tournent très bien avec le 
noyau fourni par
debian.

Tu peux donc installer le noyau debian (linux-image* qui te plaît) et indiquer 
dans l'option
netboot que tu boot sur le disque local.

Si ça boot pas, tu seras bon pour remettre le netboot sur le noyau ovh qui 
marche et provoquer
un reboot hard via le manager ovh.

-- 
Daniel

Le doute me ronge. Et si tout n'était qu'illusion ? Si rien n'existait ? 
Dans ce cas, j'aurais payé ma moquette beaucoup trop cher.
Woody Allen

Re: mplayer won't play audio CD

[Rodolfo Medina]

deloptes  writes:

> Rodolfo Medina wrote:
>
>> Please help...  mplayer works fine when playing files (mp3, wav, etc), but
>> fails in playing audio CDs.  When I launch it as a normal user I have:
>
> check if you  are member of the cdrom group

Yes, I am...

Rodolfo

Re: LXQT - Anyone using it?

[Fungi4All]

> From: anonym...@foto.nl1.torservers.net
> To: debian-user@lists.debian.org
> Is anyone using LXQT? What do you think about it?

I tried it for comparison to LXDE and found it to be a bit flaky and sluggish.
The aesthetics of it are nice, but functionally didn't seem much different.
Somehow menu action seems much more direct on LXDE than on LXQT,
like there is a middle man handling commands (QT?)
I installed it in a friend's pc and the only problem *e encountered was that
chromium once in a while freezes. I thought maybe updates weren't
done frequently but when I went to check it was all updated. Otherwise
it has been a happy experience for that user. I suspect something with
fb and flash gadgetry is what causes the whole system to freeze but I
don't think it is lxqt related. Even the mouse pointer freezes, nothing
works at that point other than the power button.

Re: kmail gmail integration

[David Baron]

On יום חמישי, 29 ביוני 2017 22:38:27 IDT T. P. Van Dae wrote:
> I’m trying to transition myself back to Linux (been a long time though…
> sorry!) and am working on phasing myself off of Windows. Is it possible to
> integrate gmail (currently using 2-step verification) with kmail?  Google
> says “enable less secure apps”, but it’s a NO with 2 STEP ON. Is there or
> will there be a work around for this or is “DISABLE” 2 Step Verification
> the answer?

One can get Google/gmail to generated a single-app 16-character password. Cut 
and paste that into kmail. Then it will work.

Re: Upgrade Wheezy vers Jessie

[Hugues MORIN]

Salut


J'ai trouve l'option dont tu me parles, le netboot
Par contre il va falloir que je me documente car au 1er abord j'ai un peu
de mal a comprendre.

Les kernels propose n'ont aucun rapport avec ce que je connais des noyaux
debian.
J'ai un kernel 3.14.32 qui est decline en 3 versions:
- Stable Kernel, Vanilla - 64bits. (Prise en charge de CPUFAMILY, SMP, &
IPv6)
- Stable Kernel, hz1000 - 64bits. (Prise en charge de CPUFAMILY, SMP, &
IPv6)
- Stable Kernel, with GRSec - 64bits. (Prise en charge de GRSec, CPUFAMILY,
SMP, & IPv6)

et 2 autres:
- 4.9.13 Experimental kernel vanilla
- 4.4.52 Testing kernel vanilla

O_O ..
Il va vraiment falloir que je trouve plus d'info car je ne comprends pas
bien a quoi correspondent ces differents noyaux et je ne sais meme pas a
quoi il correspondent.


Cordialement
Hugues


Le 29 juin 2017 à 19:34, daniel huhardeaux  a écrit :

> Le 29/06/2017 à 18:03, Hugues MORIN a écrit :
>
>> Bonjour a tous :D
>>
>
> Bonjour
>
>>
>>
>> J'ai un serveur dedie qui etait sous Debian Wheezy avec un kernel 3.14.
>>
>
> Ce n'est pas un kernel livré par Debian
>
> dh@chezmoi:~$ uname -a
> Linux pabx 3.2.0-4-amd64 #1 SMP Debian 3.2.89-1 x86_64 GNU/Linux
>
> [...]
>
> --
> Daniel
>
>