Re: Installing Debian on an android device

[deloptes]

to...@tuxteam.de wrote:

> Most probably it is unintentional [1], but in the end: does it matter?
> A state-level actor (or equivalent) just has the resources to find
> those exploits first. Why go to the length of planting any, since
> there is such a rich "natural" source to harvest from? Given recent
> events (e.g. WannaCry and its spawn), this seems to be the preferred
> modus operandi these days.

But this is also valid for Linux and the free software around it - there
were numerous examples in the past.

regards

pop-up windows all the time in Firefox, Stretch

[Anil Duggirala]

hello,
Ever since I moved to Stretch I have had pop-up windows popping up all
the time (clicking on various items on various types of pages). I am
posting here, since this is only happening in my Debian installation.
Was anything changed in the default configuration of Firefox. It feels
like Windows with all of these pop-ups, this is the first time I
experience anything like this in a linux installation.
thanks,

Re: Debian 8: Postfix -> amavisd-new -> spamassassin -> Bayes : not scanning?

[soyeomul]

"Frantisek Rysanek"  께서 쓰시길,
 《記事 全文 <59629f76.25660.58659...@frantisek.rysanek.post.cz> 에서》:

> [...]
> I've just built a new mailserver based on Debian 8.8,
> with Postfix + Cyrus. I have a long history of using
> [..]
> Any help would be much appreciated.

Sorry man, this is off story. If i were you, i do not run email
servers. Because it is very hard work always. 

So just now i'm using free email hosting service like as 
Google Apps, Zoho, etc.

Sincerely,

-- 
^고맙습니다 _地平天成_ 감사합니다_^))//

Re: stop your mail

[Ángel]

On 2017-07-09 at 07:32 +, Andy Smith wrote:
> The spammers' motivation is to use an address that is not associated
> with them but is a real address so cannot be easily blocked on the
> basis of from address alone.

Not just a real address, but an address belonging to a popular mailing
list. If eg. gmail started seeing lots of spammy emails with an email of
j...@example.com, that email address itself could become a spam
indicator (even if that was a real email). However, it receives enough
legitimate debian-user traffic to dwarf it. And even if moved the
classification of messages with this address into spam, actual
subscribers would vote in the opposite direction.
So this seems a pretty smart move, unless the recipient spam filters
also take into account that only the spammy ones don't come from
bendel.debian.org



PS: Why don't {lists.,}debian.org have spf records?


Kind regards

Re: metamail now misbehaving

[Ángel]

On 2017-07-09 at 14:12 -0400, Steve Kleene wrote:
> I run Wheezy with fvwm (window manager).  I prefer to use the command line
> when possible, and for mail I have bsd-mailx with sendmail.  To read e-mails
> sent as HTML or base64, I use metamail (which was last distributed with Etch,
> I think), as follows:
> 
>   1. I save the e-mail to a file "mailfile".
>   2. I call "metamail mailfile".
>   3. Metamail silently extracts the HTML and saves it as, let's say, 
> /tmp/Mu6MRTf.
>   4. It calls "/usr/bin/iceweasel /tmp/MD7U6wY", which then displays the HTML.
> 
> Coincindent with my upgrade to firefox-esr 52, metamail no longer quite
> works.  If no firefox window is up, it does succeed.  But if (as usual) a
> firefox window already exists, it opens a new firefox tab with the error
> "Firefox can't find the file at /tmp/Mu6MRTf".  And there is in fact no such
> tmp file.

I suspect metamail launches the browser and, after the launched program
is closed, automatically deletes the temporary file.
The problem is that when a window already exists, control is transfered
to that window, and the original program is closed, thus leading to a
race condition between the deletion of the temporary file and its
loading by the firefox process.

First option would be looking for a way not to have metamail remove the
file, leaving the file to be cleaned up later (you may want to dedicate
a subfolder for metamail temp files).

Another option would be to replace the call to /usr/bin/iceweasel with a
wrapper that launches iceweasel and waits a few seconds, which would
hopefully make the browser win the race. It's not a particularly elegant
solution (the race is still there, after all), but is probably good
enough for you.

Re: mplayer won't play audio CD

[Wellington Terumi Uemura]

Yes, I use source from HDtracks, ProStudio Masters, 7studio, Bowers & 
Wilkins Society of Sound, Primephonic, DSD, along Hi-Res 24-bit/192kHz 
capable equipment.


I'm not a big fan of downloading mp3, I rather like to convert my own 
stuff to hear it in FLAC or AAC. Music in general this days are crap, 
the ones that play in the main media in special, not to say the quality, 
most of then are over saturated, over compressed (loudness war).


Checking some with Audacity you can see a red block from start to finish 
of the song.


Not big fan of vinyl and tube/valve amps. ;-)

On 08-07-2017 14:35, deloptes wrote:

So you must know that the source should be coded this way otherwise it makes
no sense. In todays world of mp3 crippled audio, I am not sure you find
high quality coded stuff that easy.

You better grab a some vinil from your grandma ;-)

Re: How to gain control over the system?

[Joel Rees]

On Mon, Jul 10, 2017 at 7:11 AM, Kaj Persson  wrote:
> Hi Jimmy,
> Well, I did not follow your suggestion exactly, but as people has said, the
> root account is already and always  there, even it has not been assigned a
> password. So, against my real whish, not to activate the root account, I
> gave the command sudo passwd root, and entered a password. And now I suppose
> I have burned my ships and have no way back...

Of course you have a way back.

   man vipw

   man 5 passwd

   man 5 shadow

and note the -s option.

   man nologin

   man false

Then

   sudo vipw

and change the line for root (should be the very first line) to give it
either /bin/false or /sbin/nologin as the default shell for root.

(That's the last field.)

   cat /etc/passwd

after you're done, to make sure you saved it. Then,

   sudo vipw -s

and replace the encrypted password (second ffield) there with '*'.

 > But! Nothing has changed. I can still not enter program icons to the panel,
> and not define keyboard shortcuts. If I sort the icons on the desktop they
> still, after a cold start, come back in a completely other order, dispite I
> had marked "Keep ajusted" (right click on desktop).
>
> So...?
> /Kaj

Have you checked group ownership and  permissions?

Also, have you checked your mount parameters?

And have you checked whether you have established SELinux or acl
permissions or anything of that ilk?

(BTW, do you keep a backup of your /home partition? I usually find
myself using cp -p or tar to copy the files from the old /home to the
new one, instead of keeping an old /home around.)

-- 
Joel Rees

One of these days I'll get someone to pay me
to design a language that combines the best of Forth and C.
Then I'll be able to leap wide instruction sets with a single #ifdef,
run faster than a speeding infinite loop with a #define,
and stop all integer size bugs with my bare cast.
http://defining-computers.blogspot.com/2017/06/reinventing-computers.html

More of my delusions:
http://reiisi.blogspot.com/2017/05/do-not-pay-modern-danegeld-ransomware.html
http://reiisi.blogspot.jp/p/novels-i-am-writing.html

Re: Installing Debian on an android device

[Joel Rees]

On Mon, Jul 10, 2017 at 12:00 AM, deloptes  wrote:
> [...]
> As for some conspiracy chips with embedded rom  if you have basic
> engineering knowledge you could easily identify all of it and to my
> knowledge it is not trivial to embed such a chip into a mass product,
> especially a mobile phone.

Have you read Ken Thompson's On Trusting Trust?

If it is true of software, it is true of hardware.

> There were servers in the past, where NSA plugged in special chips before
> those machines were shipped to china, but it did not last long and the
> chineese found out.

Either that was in the days when the NSA didn't really have a lot of skilled
engineers, or they wanted the special chips to be found.

I'd tend to guess at the latter, because I know how easy it would be to
bundle a custom soc with an extra processor and private memory with
any standard bit of circuit, package it in a standard-looking package,
and label it with the name and package numbering of any company
of choice. This has been easy for a long time.

> So keep your eyes open and think twice before you buy something and use it
-
> this is my advise

-- 
Joel Rees

One of these days I'll get someone to pay me
to design a language that combines the best of Forth and C.
Then I'll be able to leap wide instruction sets with a single #ifdef,
run faster than a speeding infinite loop with a #define,
and stop all integer size bugs with my bare cast.
http://defining-computers.blogspot.com/2017/06/reinventing-computers.html

More of my delusions:
http://reiisi.blogspot.com/2017/05/do-not-pay-modern-danegeld-ransomware.html
http://reiisi.blogspot.jp/p/novels-i-am-writing.html

Re: How to gain control over the system?

[Felix Miata]

Kaj Persson composed on 2017-07-09 14:54 (UTC+0200):

> * Regarding access to my user directory: During my search I did in fact 
> find some files and directories owned by user root or group root. These 
> are changed to be owned by my user id and group id, but this did not 
> help. By the way, On this computer I have always had just one user, 
> mine, and hence got the user id 1000 and group id 1000. This is the case 
> now too.
Are you 100% sure you found and corrected 100% of bad ones? Does 1000:1000 own
$HOME? X session settings not saved is virtually always bad file permissions or
errant ownership. Anything that got stolen by root:root via errant sudo or su
will almost certainly have to be fixed as root, exception being via a
superwizard who would unlikely ever have gotten into this trouble in the first
place.

You really don't need to hunt for any that are bad unless you care to know which
are causing the trouble. Simply do as root:

chown -R 1000:1000 /home/kaj/

using whatever your actual username is rather than kaj.
-- 
"The wise are known for their understanding, and pleasant
words are persuasive." Proverbs 16:21 (New Living Translation)

 Team OS/2 ** Reg. Linux User #211409 ** a11y rocks!

Felix Miata  ***  http://fm.no-ip.com/

Re: Driver/firmware for Realtek RTL8814U WiFi USB Adapter?

[Larry Dighera]

On Fri, 7 Jul 2017 20:39:41 -0400, you wrote:

>Hi Larry,
>
>Sorry for sending you down a rabbit hole.  The reason the DKMS steps
>didn't work is that the git repository for the rtl8814au lacks the
>configuration file(s) for DKMS.  Specifically, if you check your logs,
>you'll see that if failed to locate DKMS.conf.  I thought it would work
>because the rtl8814au driver appears to be based off the driver here:
>https://github.com/gnab/rtl8812au.  That driver does have the
>configuration files to support DKMS (Makefile.dkms and dkms.conf).  I
>don't know enough about DKMS to modify the configuration files in the
>above repository to make it work with the rtl8814au git repository.
>
>Fortunately, you can still compile the package for your existing
>kernel.  The only downside of this step is that you will need to
>re-compile the drivers if you install a new kernel which is not ABI
>compatible.  For example, the current Stretch kernel for AMD64 is
>linux-image-4.9.0-3-amd64 (4.9.30-2+deb9u2).  Thus, it should work with
>any future kernel starting with linux-image-4.9.0-3, but if you see
>4.9.0-4, you would likely have to recompile.  I haven't actually tested
>this, but it's what I've read.
>
>In any case, since you've already installed the build dependencies, you
>just need to do the following:
>
>#Clone the git repository (again) - Might as well work from a fresh
>directory
>git clone https://github.com/astsam/rtl8812au.git
>cd rtl8812au
>
>#Compile driver for your hardware
>make RTL8814=1
>
>#Install Module
>make install
>
>#With Wifi adapter connected, load Module  (If this fails, reboot and it
>should load the correct module.)
>modprobe 8812au
>
>Regards,
>
>Jason
>

Hello Jason,

After spending way too much time attempting to install the Realtek
RTL8814 driver module with DKMS, I took your advice and successfully
built and loaded it with the commands you kindly provided above. 

My AMD_X86 system has an Intel 3168NGWG WiFi and BlueTooth PCIe card
installed, so I have been using it.  After loading the 8812au module,
WiFi will no longer connect while in CommandLine mode, but when
running in X11 mode, WiFi still works fine with the Intel adapter.  I
haven't tried removing the Intel iwiwfi module, as lsmod reported
three items associated with it, and I'm unfamiliar with that sort of
configuration.  I suspect removing the Intel iwiwfi module and loading
the 8812au module may overcome that issue.

The new device naming conventions are driving me mad.  I can no longer
'ls -l /dev/w*' to list the wireless devices, and don't know where to
find them anymore, although 'find' does help.  Unfortunately 'find'
didn't find a second (consecutively numbered) WiFi device, nor did
'ip' nor 'iwconfig'.  Of course the new 8812au USB adapter is still
listed in the 'lsusb' output as before loading the new module.  

So currently, while I now have the 8812au driver module active, I'm
still unable to use the new Comfast CF-917AC WiFi USB adapter
hardware, and without a device name for it, I'm at a loss to diagnose
the issue further.

Thank you for submitting the Feature Request to have the driver
included in the Debian package repository, and all your very detailed
and assistance.  

I'll attach a notes text file (kali_driver.txt) of related information
in the hope you may find it of interest.

Best regards,
Larry

http://git.kali.org/gitweb/?p=packages/realtek-rtl88xxau-dkms.git;a=summary

git clone git://git.kali.org/packages/realtek-rtl88xxau-dkms.git

Cloning into 'realtek-rtl88xxau-dkms'...
remote: Counting objects: 538, done.
remote: Compressing objects: 100% (332/332), done.
remote: Total 538 (delta 196), reused 536 (delta 196)
Receiving objects: 100% (538/538), 2.44 MiB | 1.56 MiB/s, done.
Resolving deltas: 100% (196/196), done.
warning: remote HEAD refers to nonexistent ref, unable to checkout.
---

See also: 
http://git.kali.org/gitweb/?p=packages/realtek-rtl88xxau-dkms.git;a=commit;h=becf0914a1def4ea55a475aa7325c60c64450ac1

http://git.kali.org/gitweb/?p=packages/realtek-rtl88xxau-dkms.git;a=blob;f=debian/realtek-rtl88xxau-dkms.dkms;h=0bf2e4bfdf3472da1fa915587fda4201ac0632b3;hb=becf0914a1def4ea55a475aa7325c60c64450ac1

dkms.conf 
PACKAGE_NAME="realtek-rtl88xxau"
PACKAGE_VERSION="#MODULE_VERSION#"
CLEAN="make clean"
BUILT_MODULE_NAME[0]=8812au
DEST_MODULE_LOCATION[0]="/updates"
MAKE[0]="'make' && 'make' RTL8814=1"
BUILT_MODULE_NAME[1]=8814au
DEST_MODULE_LOCATION[1]="/updates"
AUTOINSTALL="yes"


debian/rules
http://git.kali.org/gitweb/?p=packages/realtek-rtl88xxau-dkms.git;a=blob;f=debian/rules;h=62cd0ee2e90cd5777cfb9a100632ef8539f9d695;hb=becf0914a1def4ea55a475aa7325c60c64450ac1

   1 #!/usr/bin/make -f
   2 
   3 VERSION=4.3.21~20170330
   4 
   5 %:
   6 dh $@ --with dkms
   7 
   8 override_dh_dkms:
   9 dh_dkms -V $(VERSION)
  10 
  11 override_dh_fixperms:
  12 dh_fixperms
  13 find debian/realtek-rtl88xxau-dkms/usr/src -type f -exec chmod -x 
{} \;
 

Re: How to gain control over the system?

[Jimmy Johnson]

On 07/09/2017 03:11 PM, Kaj Persson wrote:

Hi Jimmy,
Well, I did not follow your suggestion exactly, but as people has said,
the root account is already and always  there, even it has not been
assigned a password. So, against my real whish, not to activate the root
account, I gave the command sudo passwd root, and entered a password.
And now I suppose I have burned my ships and have no way back...

But! Nothing has changed. I can still not enter program icons to the
panel, and not define keyboard shortcuts. If I sort the icons on the
desktop they still, after a cold start, come back in a completely other
order, dispite I had marked "Keep ajusted" (right click on desktop).

So...?
/Kaj


I don't do sudo nor do I top post.  Maybe you should start over and this 
time use the net install, you will be given the option to install task mate.


Good luck.
--
Jimmy Johnson

Debian Buster - KDE Plasma 5.8.7 - Intel G3220 - EXT4 at sda14
Registered Linux User #380263

Re: How to gain control over the system?

[Kaj Persson]

Hi Jimmy,
Well, I did not follow your suggestion exactly, but as people has said, 
the root account is already and always  there, even it has not been 
assigned a password. So, against my real whish, not to activate the root 
account, I gave the command sudo passwd root, and entered a password. 
And now I suppose I have burned my ships and have no way back...


But! Nothing has changed. I can still not enter program icons to the 
panel, and not define keyboard shortcuts. If I sort the icons on the 
desktop they still, after a cold start, come back in a completely other 
order, dispite I had marked "Keep ajusted" (right click on desktop).


So...?
/Kaj

Den 2017-07-09 kl. 22:28, skrev Jimmy Johnson:

On 07/08/2017 02:57 PM, Kaj Persson wrote:

Hi all,

So can someone help me get the command back, or do I have to make a new
reinstall, hoping for better luck. Possibly setting a password on the
Admin, hence activating that account, which I would prefer not having 
to.


Thank you in advance
Kaj


Hi,

Start the Stretch install cd/dvd in repair mode and when you get to 
where you can start a shell in the install at the prompt type:# passwd 
root and then enter the new root passwd and then reboot.

Re: How to gain control over the system?

[Kaj Persson]

Yes, a good try, but ...
Owner and group for /home is root resp. root,
and for /home/cookoo (to use your example) is the correct user name 
resp. group.
I have also looked one level further, hence /home/cookoo/subdir/, and 
all directories on this level have the same ownership (=user name - group).


Thank you for your efforts to help.
/Kaj


On 2017-07-09 at 19:21, Fungi4All wrote:

I am interested in the owner of the file structure of /home/user
Let's say your username is cookoo  Is the owner of
and its subdirectories and contents also cookoo?
With your filemanager r-click properties and permissions to see owner
and file access rights.  If you see a number like 1008 instead of the
username that is the problem.


From: 70147pers...@telia.com
To: debian-user@lists.debian.org


Well, as I wrote my /home is an own partition, and so it has been for 
a long time. So it is not a new copy but a new mount. Certainly it 
therefore contains old config files that maybe ought to be removed. 
But on the other hand almost all of them are reused, since many  of 
them belong to applications which I want to install also in the new 
system.


Also, as I wrote, I did a test by moving all these config files into 
a new directory "hidden", itself not hidden despite the name, inside 
the home directory (and partition).

/Kaj


On 2017-07-09 at 15:38, Fungi4All wrote:

Again, did you copy your /home from a previous system or is it a new
configuration that locked your panels?


UTC Time: July 9, 2017 12:54 PM
From: 70147pers...@telia.com
To: debian-user@lists.debian.org

Thank you all for thoughts and viewpoints on what can be wrong in my
installation of Debian 9. I have looked through places I might expect
can contain some explanation, but so far I have not been able to 
exclaim

an "Ah, that"s it!". Here are some of my observations:

* First source of install: Well, I do know I wrote that used the live
image, but to be honest, for now I am not sure, I do not remember. 
I had

downloaded the live image as well as the install image, and most
probable choice would be the later. But I do not know. Anyway the
install process itself went without any problems.

* At the install I made it fully new from the bottom. The only 
directory

I kept unchanged was my home directory. This is situated on an own
partition. All the others were reformatted: /, /boot, /usr, /var and
/tmp. All these are on individual partitions while e.g. /etc is
contained in the root partition. At earlier installations I have 
noticed

that the home directory can contain wrong configuration files, so as a
test I moved all hidden files i.e. files starting with a dot to a new
created directory "hidden". This was however after the install. So 
at a

subsequent cold start the system had no configuration files there but
created new ones with default values. This however had no positive
impact on my problem.

* Configuring sudo? No I have not done that explicitly, not more than
what the install program did itself. I have looked at /etc/sudoers and
what I think the important lines are:

# User privilege specification
root ALL=(ALL:ALL) ALL

# Allow members of group sudo to execute any command
%sudo ALL=(ALL:ALL) ALL

#includedir /etc/sudoers.d

In /etc/sudoers.d there are no more files than README.

There is no /etc/sudo.conf file.

* Regarding access to my user directory: During my search I did in 
fact
find some files and directories owned by user root or group root. 
These

are changed to be owned by my user id and group id, but this did not
help. By the way, On this computer I have always had just one user,
mine, and hence got the user id 1000 and group id 1000. This is the 
case

now too.

uid 1000 is a member of the sudo group.

* As I wrote I have always used this method of not setting any 
password
to the root account, and this is for quite many years now. My Linux 
path

has gone via Ubuntu, well to be honest a couple of years after the
Microsoft era I ran in Suse, but was not fully satisfied. And when
Ubuntu and Canonical introduced Unity, I left that ship for Linux Mint
Debian edition (LMDE) until I took the last(?) step into Debian a 
couple

of years ago where the entrance point was jessie. The empty root
password has always worked fine until now. Possibly Ubuntu has patched
the sudologin but should LMDE? And jessie? I do not think so.


Hope someone can find something significant in this and give a hint on
what to do.

Kaj

Debian 8: Postfix -> amavisd-new -> spamassassin -> Bayes : not scanning?

[Frantisek Rysanek]

Dear polite people in the debian-users mailing list,

I would appreciate any help with the following setup.
For the record, I'm sending this same text to the 
SpamAssassin "users" mailing list - I'm not technically
cross-posting, as that would probably earn me a bad
reputation (or a kick).

I've just built a new mailserver based on Debian 8.8,
with Postfix + Cyrus. I have a long history of using
Amavis with SpamAssassin for SPAM filtering.
On the newly installed machine, there is 
SpamAssassin 3.4.0-6 = the current version for Jessie.

And within SpamAssassin, my previous server (based on
Debian Squeeze) was using the Bayesian filter.
Using 
  sa-learn --backup 
  sa-learn --restore=...
I have migrated the Bayes database to the new machine,
and after a few path tweaks and privilege adjustments,
I got sa-learn-cyrus to do its job.

Curiously to me, I don't see any BAYES scores
in the X-Spam-Status header. I suspect that the Bayes
plugin does not actually get called to evaluate
the messages passing through my server.

In /etc/spamassassin/local.cf, I have the following:
use_bayes 1
bayes_auto_learn 1
bayes_path /var/lib/spamassassin/.spamassassin/bayes
...a couple of whitelist_from rules, and 
add_header all Report _REPORT_


In /etc/amavis/conf.d/15-content_filter_mode, I have UNcommented 
this:

@bypass_spam_checks_maps = (
   \%bypass_spam_checks, \@bypass_spam_checks_acl, 
\$bypass_spam_checks_re);


In /etc/amavis/conf.d/50-user , I have the following:

$DO_SYSLOG = 0;
$LOGFILE = "/var/log/amavis.log";
$sa_tag_level_deflt = -; # always add spam info headers

$log_level = 1;
$sa_debug = 1;

I've also tried log_level = 2, which showed me a privilege problem,
where the SA's Bayes plugin couldn't create a lock file... so that's
handled too. I'm getting *some* notes about the Bayes plugin
in the amavis log:

Jul  9 21:25:54 mail.x.y.z /usr/sbin/amavisd-new[8868]: (08868-01) SA 
dbg: bayes: tie-ing to DB file R/O 
/var/lib/spamassassin/.spamassassin/bayes_toks
Jul  9 21:25:54 mail.x.y.z /usr/sbin/amavisd-new[8868]: (08868-01) SA 
dbg: bayes: tie-ing to DB file R/O 
/var/lib/spamassassin/.spamassassin/bayes_seen
Jul  9 21:25:54 mail.x.y.z /usr/sbin/amavisd-new[8868]: (08868-01) SA 
dbg: bayes: found bayes db version 3
Jul  9 21:25:55 mail /usr/sbin/amavisd-new[8868]: (08868-01) SA dbg: 
plugin: Mail::SpamAssassin::Plugin::Bayes=HASH(0x6bc65b0) implements 
'learn_message', priority 0
Jul  9 21:25:55 mail.x.y.z /usr/sbin/amavisd-new[8868]: (08868-01) SA 
dbg: locker: safe_lock: created 
/var/lib/spamassassin/.spamassassin/bayes.lock.mail.fccps.cz.8868
Jul  9 21:25:55 mail.x.y.z /usr/sbin/amavisd-new[8868]: (08868-01) SA 
dbg: locker: safe_lock: trying to get lock on 
/var/lib/spamassassin/.spamassassin/bayes with 0 retries
Jul  9 21:25:55 mail.x.y.z /usr/sbin/amavisd-new[8868]: (08868-01) SA 
dbg: locker: safe_lock: link to 
/var/lib/spamassassin/.spamassassin/bayes.lock: link ok
Jul  9 21:25:55 mail.x.y.z /usr/sbin/amavisd-new[8868]: (08868-01) SA 
dbg: bayes: tie-ing to DB file R/W 
/var/lib/spamassassin/.spamassassin/bayes_toks
Jul  9 21:25:55 mail.x.y.z /usr/sbin/amavisd-new[8868]: (08868-01) SA 
dbg: bayes: tie-ing to DB file R/W 
/var/lib/spamassassin/.spamassassin/bayes_seen
Jul  9 21:25:55 mail.x.y.z /usr/sbin/amavisd-new[8868]: (08868-01) SA 
dbg: bayes: found bayes db version 3
Jul  9 21:25:55 mail.x.y.z /usr/sbin/amavisd-new[8868]: (08868-01) SA 
dbg: bayes: learned 
'd963c4a7f11e91c3bd3317ea92408c2013c99dad@sa_generated', atime: 
1499628354
Jul  9 21:25:55 mail.x.y.z /usr/sbin/amavisd-new[8868]: (08868-01) SA 
dbg: bayes: untie-ing
Jul  9 21:25:55 mail.x.y.z /usr/sbin/amavisd-new[8868]: (08868-01) SA 
dbg: bayes: files locked, now unlocking lock
Jul  9 21:25:55 mail.x.y.z /usr/sbin/amavisd-new[8868]: (08868-01) SA 
dbg: locker: safe_unlock: unlink 
/var/lib/spamassassin/.spamassassin/bayes.lock


Makes me wonder if the "implements" messages can mean something (no 
"scan" operation?):


Jul  9 21:25:21 mail.x.y.z /usr/sbin/amavisd-new[8850]: SA dbg: 
plugin: Mail::SpamAssassin::Plugin::Bayes=HASH(0x6bc65b0) implements 
'learner_new', priority 0
Jul  9 21:25:21 mail.x.y.z /usr/sbin/amavisd-new[8850]: SA dbg: 
plugin: Mail::SpamAssassin::Plugin::Bayes=HASH(0x6bc65b0) implements 
'learner_is_scan_available', priority 0
Jul  9 21:25:22 mail.x.y.z /usr/sbin/amavisd-new[8850]: SA dbg: 
plugin: Mail::SpamAssassin::Plugin::Bayes=HASH(0x6bc65b0) implements 
'learner_close', priority 0
Jul  9 21:25:22 mail.x.y.z /usr/sbin/amavisd-new[8850]: SA dbg: 
plugin: Mail::SpamAssassin::Plugin::Bayes=HASH(0x6bc65b0) implements 
'prefork_init', priority 0
Jul  9 21:25:22 mail.x.y.z /usr/sbin/amavisd-new[8868]: SA dbg: 
plugin: Mail::SpamAssassin::Plugin::Bayes=HASH(0x6bc65b0) implements 
'spamd_child_init', priority 0
Jul  9 21:25:22 mail.x.y.z /usr/sbin/amavisd-new[8869]: SA dbg: 
plugin: Mail::SpamAssassin::Plugin::Bayes=HASH(0x6bc65b0) implements 
'spamd_child_init', priority 0
Jul  9 21:25:55 mail.x.y.z 

Re: Installing Debian on an android device

[tomas]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On Sun, Jul 09, 2017 at 10:46:34PM +0200, deloptes wrote:
> to...@tuxteam.de wrote:
> 
> > No need for the bad guys to shoehorn a spy processor on your machine.

[...]

> but it says there it is exploit - so was this intentionally placed there or
> not?

Most probably it is unintentional [1], but in the end: does it matter?
A state-level actor (or equivalent) just has the resources to find
those exploits first. Why go to the length of planting any, since
there is such a rich "natural" source to harvest from? Given recent
events (e.g. WannaCry and its spawn), this seems to be the preferred
modus operandi these days.

> we all know the best way to secure data is to work offline

That would be defaetism :-)

Cheers, anyway

[1] My hazy memory tells me that, æons ago, there was a mysterious
patch to the linux kernel (might well be before the Git era) which
contained a subtle bug. Nobody found out whether that was intentional
or not. Go figure.

- -- tomás
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.12 (GNU/Linux)

iEYEARECAAYFAllinNoACgkQBcgs9XrR2kbUugCfY8KdYcmd5JgaIxLIMB2QHqG1
L5MAn03EibhqixC1S91jBFg+6eX9sMsB
=JVtQ
-END PGP SIGNATURE-

Publicidad para quienes no lo conoscan

[Joaquin Sosa Garcia]

No se si se podria poner anuncios a quienes lo conoscan pero quisas seria
bueno. Muchas gracias por su noble atencion

Re: metamail now misbehaving

[David Wright]

On Sun 09 Jul 2017 at 14:12:07 (-0400), Steve Kleene wrote:
> I run Wheezy with fvwm (window manager).  I prefer to use the command line
> when possible, and for mail I have bsd-mailx with sendmail.  To read e-mails
> sent as HTML or base64, I use metamail (which was last distributed with Etch,
> I think), as follows:

[snip]

> I'd be interested in any ideas on how to get this working again.  At the same
> time, I expect that I will be advised give up on metamail.  I think
> heirloom-mailx might be closest to what I already have.  To install that,
> would I need to uninstall bsd-mailx first?  Can I assume that sendmail (and
> sendmail.cf, etc.) will be left undisturbed?  I gather that mailutils and
> mutt are other options.  I think mutt brings up its own window, and I'd
> prefer to just use the command line for all the plain text e-mails I get.  On
> the other hand, a better way to add attachments would be nice.  Currently I
> do a lot of manual labor with the headers for those.

I use mutt entirely in an xterm window. To read html emails, I have

text/html; /usr/bin/lynx -force-html -localhost -stdin

in ~/.mutt/mailcap and get to them through the attachments menu,
ie, type v, select the html attachment and press return.
The only "downside" is that banks etc aren't made aware of my
reading their emails because I don't download the secret 1-pixel
images they typically include.

I compose emails in the same xterm with emacs by having

set editor="emacs -nw -l $HOME/.emacs-email"

in ~/.mutt/muttrc, where my startup file sets textmode and linewrap.
Adding attachments is as simple as typing a and the name of the file
(with filename completion active) between closing the editor and
sending the email (or postponing it).

Cheers,
David.

Re: Installing Debian on an android device

[deloptes]

to...@tuxteam.de wrote:

> No need for the bad guys to shoehorn a spy processor on your machine.
> There are enough already in there (Intel's ME, disk controllers, what
> not) with enough vulnerabilities ready to do the NSA's bidding (or FSB,
> or whoever is your favourite enemy these days).

but it says there it is exploit - so was this intentionally placed there or
not?

we all know the best way to secure data is to work offline

regards

Re: Sei il vero centro dell'attenzione su questo sito Annalisa

[Magnitudo 8 . 2]

Ciao mi mandi un selfie... Un bacione 
--
Inviato da Libero Mail per Android giovedì, 06 luglio 2017, 11:48AM +02:00 da 
Annalisa Jakid  s678...@pchome.com.tw :

>Secondo me non vuoi nemmeno iniziare a parlare con me 

>http://bit.ly/2sP5gsS

Re: How to gain control over the system?

[Jimmy Johnson]

On 07/08/2017 02:57 PM, Kaj Persson wrote:

Hi all,

So can someone help me get the command back, or do I have to make a new
reinstall, hoping for better luck. Possibly setting a password on the
Admin, hence activating that account, which I would prefer not having to.

Thank you in advance
Kaj


Hi,

Start the Stretch install cd/dvd in repair mode and when you get to 
where you can start a shell in the install at the prompt type:# passwd 
root and then enter the new root passwd and then reboot.

--
Jimmy Johnson

Debian Buster - KDE Plasma 5.8.7 - Intel G3220 - EXT4 at sda14
Registered Linux User #380263

Re: debian wiki

[tomas]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On Sun, Jul 09, 2017 at 07:19:24PM +0100, Brian wrote:
> On Sun 09 Jul 2017 at 17:32:29 +0200, to...@tuxteam.de wrote:
> 
> > Perhaps that's something to communicate to the debian-www administrators,
> > as detailed in https://wiki.debian.org/DebianWiki/Contact#content-admins
> > or in https://wiki.debian.org/DebianWiki/Contact#wiki-sys-admins, not
> > sure which (I'd try content-admins first).
> 
> https://lists.debian.org/debian-www/2017/07/msg00019.html

Thanks, that clears the IP thing (we came to the same conclusion here),
the inconsistency in the top menu (browser  language setting vs. URL)
still remains.

Cheers
- -- tomás
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.12 (GNU/Linux)

iEYEARECAAYFAllij7UACgkQBcgs9XrR2kYNPQCffwMep0Cd9CiUtcSH6wq1y9O4
oHcAnRiXRF0cA9O6pN0Y9fNj9h86cq+D
=ojWi
-END PGP SIGNATURE-

Re: Réglages réseau sur Debian Stretch

[Pascal Hambourg]

Le 09/07/2017 à 22:00, Pascal Hambourg a écrit :


Par contre quand on déplace une carte réseau d'un slot à l'autre, le 
nommage prévisible lui donne un nom différent alors que le nommage par 
adresse MAC lui donnerait le même nom. Même chose en cas de remplacement 
de la carte mère par un modèle.


Je voulais dire par un modèle différent, concernant une carte réseau 
additionnelle.

Re: Réglages réseau sur Debian Stretch

[Pascal Hambourg]

(A propos de /etc/udev/rules.d/70-persistent-net.rules)

Le 09/07/2017 à 20:59, Gaëtan PERRIER a écrit :


Sur une stretch nouvellement installée en partant de zéro ce fichier n'est pas
présent effectivement. Les nouvelles règles de nommages des interfaces
permettent de s'en affranchir si j'ai bien suivi.


Oui, en théorie. Le nouveau nommage "prévisible" se base sur la position 
"physique" de l'interface réseau (type de bus, numéros de bus, de 
composant/port/slot, de fonction...)


Dans certains cas, ça marche mieux que les règles de nommage basées sur 
l'adresse MAC. Dans d'autres cas, ça marche moins bien.


Quand on remplace une carte réseau par une autre dans le même slot, le 
nommage prévisible lui donne le même nom alors que par défaut le nommage 
par adresse MAC lui donnerait un autre nom. Idem pour une interface 
réseau intégrée à la carte mère si on remplace cette dernière par une 
autre du même modèle.


Par contre quand on déplace une carte réseau d'un slot à l'autre, le 
nommage prévisible lui donne un nom différent alors que le nommage par 
adresse MAC lui donnerait le même nom. Même chose en cas de remplacement 
de la carte mère par un modèle.


J'ai entendu parler du cas d'une carte mère dont les numéros de bus PCI 
variaient en fonction des cartes PCI présentes. Dans ce cas le nommage 
"prévisible" serait mis en échec contrairement au nommage par adresse MAC.


Deux situations où le nommage par adresse MAC ne s'en sort pas bien du 
tout (et pour cause) et où le nommage prévisible devrait mieux s'en 
tirer sont les machines où toutes les interfaces ethernet ont la même 
adresse MAC (exemple : interfaces sunhme des stations Sun SPARC) ou bien 
dont les interfaces n'ont pas d'adresse MAC fixe (pas de NVRAM pour 
l'enregistrer, ou NVRAM contenant une adresse invalide qui doit être 
remplacée par une adresse générée aléatoirement).

Re: Réglages réseau sur Debian Stretch

[maderios]

On 07/09/2017 08:59 PM, Gaëtan PERRIER wrote:


Sur une stretch nouvellement installée en partant de zéro ce fichier n'est pas
présent effectivement. Les nouvelles règles de nommages des interfaces
permettent de s'en affranchir si j'ai bien suivi.



Lu quelque part : udev utilise la nouvelle nomenclature ifname , basée 
sur les caractéristiques du matériel et non plus sur l'adresse MAC


--
Maderios

Re: Réglages réseau sur Debian Stretch

[Gaëtan PERRIER]

Le Sun, 9 Jul 2017 20:54:36 +0200
jérémy prego  a écrit:

> 
> 
> Le 09/07/2017 à 20:22, maderios a écrit :
> >
> >
> > Sur n'importe quelle debian
> 
> sauf sur Stretch, il n'existait pas chez moi non plus, j'ai du le créer.
> 
> jerem

Sur une stretch nouvellement installée en partant de zéro ce fichier n'est pas
présent effectivement. Les nouvelles règles de nommages des interfaces
permettent de s'en affranchir si j'ai bien suivi.


pgp_6jc00nvkh.pgp
Description: PGP signature

Re: Réglages réseau sur Debian Stretch

[jérémy prego]

Le 09/07/2017 à 20:22, maderios a écrit :



Sur n'importe quelle debian


sauf sur Stretch, il n'existait pas chez moi non plus, j'ai du le créer.

jerem

Re: PulseAudio (Some users get sound, orthers do not)

[Wilko Fokken]

On Sat, Jul 08, 2017 at 11:35:42PM -0700, Marc Shapiro wrote:
> This morning, I went to my wife's login and ran:
> 
> pulseaudio --kill
> 
> rm ~/.config/pulse
> 
> pulseaudio --start
> 
> And that worked.
> 
> When I tried to do the same thing under my daughter's login, however, I get
> the warnings about the cookie file and ~/.config/pulse is NOT recreated, so
> still no sound anywhere.  I have checked the permissions of my daughter's
> ~/.config/pulse directory and it is 644 with her user as owner and group.
> That matches ~/.config in my home directory and my wife's.
> 
> 
> So why does pulseaudio not create the files it needs, like it did for me and
> my wife?  Is there something else that I am missing? Any help will be
> appreciated.
> 
> Marc


Moin Marc,


my /etc/passwd:
- - - - - - - -
pulse:x:113:121:PulseAudio daemon,,,:/var/run/pulse:/bin/false

my /etc/group:
- - - - - - - -
audio:x:29:pulse,my_userid
pulse:x:121:my_userid
pulse-access:x:122:my_userid


my pulseaudio refresh (if no sound):
- - - - - - - - - - - 
pulseaudio --kill && alsamixer -c0

make sure 'pulseaudio' is loaded only once
(check with 'ps ax | grep pulseaudio')


Wilko

metamail now misbehaving

[Steve Kleene]

I run Wheezy with fvwm (window manager).  I prefer to use the command line
when possible, and for mail I have bsd-mailx with sendmail.  To read e-mails
sent as HTML or base64, I use metamail (which was last distributed with Etch,
I think), as follows:

  1. I save the e-mail to a file "mailfile".
  2. I call "metamail mailfile".
  3. Metamail silently extracts the HTML and saves it as, let's say, 
/tmp/Mu6MRTf.
  4. It calls "/usr/bin/iceweasel /tmp/MD7U6wY", which then displays the HTML.

Coincindent with my upgrade to firefox-esr 52, metamail no longer quite
works.  If no firefox window is up, it does succeed.  But if (as usual) a
firefox window already exists, it opens a new firefox tab with the error
"Firefox can't find the file at /tmp/Mu6MRTf".  And there is in fact no such
tmp file.

If I call "metamail -w mailfile", it offers to create /tmp/Mu6MRTf.  If I
approve that, I can then call "firefox-esr /tmp/Mu6MRTf" and see the HTML.  I
checked my backups, and updating firefox-esr caused no changes to
/etc/mailcap, ~/.mailcap, or the various redirects and alternatives for
firefox/iceweasel.

I'd be interested in any ideas on how to get this working again.  At the same
time, I expect that I will be advised give up on metamail.  I think
heirloom-mailx might be closest to what I already have.  To install that,
would I need to uninstall bsd-mailx first?  Can I assume that sendmail (and
sendmail.cf, etc.) will be left undisturbed?  I gather that mailutils and
mutt are other options.  I think mutt brings up its own window, and I'd
prefer to just use the command line for all the plain text e-mails I get.  On
the other hand, a better way to add attachments would be nice.  Currently I
do a lot of manual labor with the headers for those.

Thanks.

Re: Réglages réseau sur Debian Stretch

[maderios]

On 07/09/2017 06:45 PM, Nicolas FRANCOIS wrote:

Le Sun, 9 Jul 2017 18:05:10 +0200,
maderios  a écrit :


Pourquoi tourner autour du pot? La solution que j'ai indiquée
précédemment sur ce fil résoud ton problème en 5 secondes.


Pas de fichier /etc/udev/rules.d/* dans mon répertoire...


Heu...il ne s'agit pas de ton répertoire d'utilisateur mais de /etc

Sur n'importe quelle debian
ls /etc/udev/rules.d/
donne:
70-persistent-net.rules

ensuite
cat /etc/udev/rules.d/70-persistent-net.rules

donne chez moi (j'ai modifié les données sensibles):

SUBSYSTEM=="net", ACTION=="add", DRIVERS=="?*", 
ATTR{address}=="xx:xx:xx:xx:xx:xx", ATTR{dev_id}=="0x0", 
ATTR{type}=="1", KERNEL=="eth*", NAME="eth0"


Pour retrouver ton eth0, il te faut éditer le fichier 
'70-persistent-net.rules'

en remettant NAME="eth0"

Et tu redémarres le système.
--
Maderios

Re: debian wiki

[Brian]

On Sun 09 Jul 2017 at 17:32:29 +0200, to...@tuxteam.de wrote:

> Perhaps that's something to communicate to the debian-www administrators,
> as detailed in https://wiki.debian.org/DebianWiki/Contact#content-admins
> or in https://wiki.debian.org/DebianWiki/Contact#wiki-sys-admins, not
> sure which (I'd try content-admins first).

https://lists.debian.org/debian-www/2017/07/msg00019.html

Re: Réglages réseau sur Debian Stretch

[Pascal Hambourg]

Le 09/07/2017 à 19:19, Gaëtan PERRIER a écrit :

Le Sun, 9 Jul 2017 19:06:35 +0200
Pascal Hambourg  a écrit:


Donc l'interface eth0 était gérée par ifupdown avec ce fichier, et
NetworkManager n'aurait pas dû s'en occuper, la marquant "non gérée".


Attention il faut que NetworkManager soit bien configuré pour cela. C'est le
comportement par défaut il me semble


Oui.


mais ça vaut le coup de jeter un oeil dans
/etc/NetworkManager/NetwrokManager.conf pour vérifier qu'il n'y aurait une
section

[ifupdown]
managed=true

Si tel est le cas NM prend la main sur ce qui est dans /etc/network/interfaces


Autrement dit : NM ne tient pas compte du contenu du fichier interfaces. 
Ça ne veut pas dire que ifupdown ne configure plus les interfaces 
présentes dans ce fichier. D'ailleurs il fait avant que NM démarre.

Re: Réglages réseau sur Debian Stretch

[Gaëtan PERRIER]

Le Sun, 9 Jul 2017 19:06:35 +0200
Pascal Hambourg  a écrit:

> Le 09/07/2017 à 18:50, Nicolas FRANCOIS a écrit :
> > Le Sun, 9 Jul 2017 17:59:39 +0200,
> > Pascal Hambourg  a écrit :
> >> Le 09/07/2017 à 17:27, Nicolas FRANCOIS a écrit :
> >>>
> >>> Avant, je gérais l'unique connexion filaire vers mon firewall
> >>> (IPFire) par l'applet network-manager de mon bureau. Et je
> >>> rajoutais quelques trucs dans /etc/network/interfaces.
> >>
> >> Je serais curieux de voir le contenu de ce fichier interfaces.
> > 
> > Il y avait ça :
> > 
> > # This file describes the network interfaces available on your system
> > # and how to activate them. For more information, see interfaces(5).
> > 
> > # The loopback network interface
> > auto lo
> > iface lo inet loopback
> > 
> > # The primary network interface
> > allow-hotplug eth0
> > iface eth0 inet static
> (...)
> 
> Donc l'interface eth0 était gérée par ifupdown avec ce fichier, et 
> NetworkManager n'aurait pas dû s'en occuper, la marquant "non gérée".

Attention il faut que NetworkManager soit bien configuré pour cela. C'est le
comportement par défaut il me semble mais ça vaut le coup de jeter un oeil dans
/etc/NetworkManager/NetwrokManager.conf pour vérifier qu'il n'y aurait une
section

[ifupdown]
managed=true

Si tel est le cas NM prend la main sur ce qui est dans /etc/network/interfaces

A+

Gaëtan


pgpnP5fscqyBQ.pgp
Description: PGP signature

Re: How to gain control over the system?

[Kaj Persson]

Well, as I wrote my /home is an own partition, and so it has been for a 
long time. So it is not a new copy but a new mount. Certainly it 
therefore contains old config files that maybe ought to be removed. But 
on the other hand almost all of them are reused, since many  of them 
belong to applications which I want to install also in the new system.


Also, as I wrote, I did a test by moving all these config files into a 
new directory "hidden", itself not hidden despite the name, inside the 
home directory (and partition).

/Kaj


On 2017-07-09 at 15:38, Fungi4All wrote:

Again, did you copy your /home from a previous system or is it a new
configuration that locked your panels?


UTC Time: July 9, 2017 12:54 PM
From: 70147pers...@telia.com
To: debian-user@lists.debian.org

Thank you all for thoughts and viewpoints on what can be wrong in my
installation of Debian 9. I have looked through places I might expect
can contain some explanation, but so far I have not been able to exclaim
an "Ah, that"s it!". Here are some of my observations:

* First source of install: Well, I do know I wrote that used the live
image, but to be honest, for now I am not sure, I do not remember. I had
downloaded the live image as well as the install image, and most
probable choice would be the later. But I do not know. Anyway the
install process itself went without any problems.

* At the install I made it fully new from the bottom. The only directory
I kept unchanged was my home directory. This is situated on an own
partition. All the others were reformatted: /, /boot, /usr, /var and
/tmp. All these are on individual partitions while e.g. /etc is
contained in the root partition. At earlier installations I have noticed
that the home directory can contain wrong configuration files, so as a
test I moved all hidden files i.e. files starting with a dot to a new
created directory "hidden". This was however after the install. So at a
subsequent cold start the system had no configuration files there but
created new ones with default values. This however had no positive
impact on my problem.

* Configuring sudo? No I have not done that explicitly, not more than
what the install program did itself. I have looked at /etc/sudoers and
what I think the important lines are:

# User privilege specification
root ALL=(ALL:ALL) ALL

# Allow members of group sudo to execute any command
%sudo ALL=(ALL:ALL) ALL

#includedir /etc/sudoers.d

In /etc/sudoers.d there are no more files than README.

There is no /etc/sudo.conf file.

* Regarding access to my user directory: During my search I did in fact
find some files and directories owned by user root or group root. These
are changed to be owned by my user id and group id, but this did not
help. By the way, On this computer I have always had just one user,
mine, and hence got the user id 1000 and group id 1000. This is the case
now too.

uid 1000 is a member of the sudo group.

* As I wrote I have always used this method of not setting any password
to the root account, and this is for quite many years now. My Linux path
has gone via Ubuntu, well to be honest a couple of years after the
Microsoft era I ran in Suse, but was not fully satisfied. And when
Ubuntu and Canonical introduced Unity, I left that ship for Linux Mint
Debian edition (LMDE) until I took the last(?) step into Debian a couple
of years ago where the entrance point was jessie. The empty root
password has always worked fine until now. Possibly Ubuntu has patched
the sudologin but should LMDE? And jessie? I do not think so.


Hope someone can find something significant in this and give a hint on
what to do.

Kaj

Re: Réglages réseau sur Debian Stretch

[Pascal Hambourg]

Le 09/07/2017 à 18:50, Nicolas FRANCOIS a écrit :

Le Sun, 9 Jul 2017 17:59:39 +0200,
Pascal Hambourg  a écrit :

Le 09/07/2017 à 17:27, Nicolas FRANCOIS a écrit :


Avant, je gérais l'unique connexion filaire vers mon firewall
(IPFire) par l'applet network-manager de mon bureau. Et je
rajoutais quelques trucs dans /etc/network/interfaces.


Je serais curieux de voir le contenu de ce fichier interfaces.


Il y avait ça :

# This file describes the network interfaces available on your system
# and how to activate them. For more information, see interfaces(5).

# The loopback network interface
auto lo
iface lo inet loopback

# The primary network interface
allow-hotplug eth0
iface eth0 inet static

(...)

Donc l'interface eth0 était gérée par ifupdown avec ce fichier, et 
NetworkManager n'aurait pas dû s'en occuper, la marquant "non gérée".


Je ne vois pas trop pourquoi tu ne pourrais pas continuer à faire pareil 
avec Stretch. Il suffit d'ajuster le nom de l'interface dans le fichier.



Je ne pige pas trop ce que fait Network Manager (le démon lancé par
systemd ???), et je ne sais pas comment le configurer (par exemple,
configurer des routes statiques,


Via l'applet NetworkManager du bureau.


Oui, mais je ne sais pas rajouter des routes : j'ai essayé, par
l'intermédiaire de l'onglet IPV4,


C'est le bon endroit. Ceci dit je n'ai jamais essayé.


et la connexion ne voulait plus se lancer...


Que veux-tu dire exactement ?


NetworkManager n'a rien à voir avec systemd. Il est aussi bien lancé
par sysvinit que par systemd ou autre init.
  
Et quelle est la différence avec systemd.network ? L'un exclut-il

l'autre ?


Ce sont deux gestionnaires de connexions réseau différents, comme 
ifupdown. D'après ce que j'ai lu, dans Jessie systemd-networkd n'était 
pas "prêt pour la production". J'ignore ce qu'il en est dans Stretch.
Ils ne s'excluent pas forcément les uns les autres (NetworkManager 
arrive bien à cohabiter avec ifupdown) à condition qu'ils ne s'occupent 
pas des mêmes interfaces.



Une approche est-elle préférable, sachant que j'aime bien
faire les choses moi-même (adressage statique...) plutôt que de les
confier à une interface dont je ne connais pas la méthode de
configuration ?


Pour du statique, je dirais que le plus simple est d'utiliser ifupdown 
avec le fichier interfaces. NetworkManager c'est très bien pour du DHCP 
nomade ou du wifi.

Re: [HS] erreurs BTRFS [gravité(?)]

[Alexandre Hoïde]

On Sun, Jul 09, 2017 at 04:47:21PM +0200, maderios wrote:
> On 07/09/2017 01:47 PM, Alexandre Hoïde wrote:
> 
> >Je suppose qu'il faudra que j'en passe par le SAV Lenovo… en espérant
> > que les messages d'erreur du noyau leur suffiront.
> > 
> 
> Salut
> Je ne connais pas toute l'histoire et donc, je me trompe peut-être.
> Avant d'envisager le SAV, pourquoi ne pas formater avec un système de
> fichier éprouvé comme ext4 et réinstaller? BTRFS est encore bien jeune donc
> question fiabilité, ce n'est pas le top...
> 

  Salut Madeiros, merci pour ta suggestion.

  Les premiers messages (…ata4.00…), avant ceux qui mentionnent BTRFS,
me suggèrent (peut-être à tort) que ce qui déclenche le problème est à
un plus bas niveau que celui du système de fichier… mais, en l'absence
de certitude, ton idée se défent ! J'vais p'têtre lui faire ça, à ma
partoche.

  Meilleures salutations,

-- 
 ___
| $ post_tenebras ↲ | waouh!
| GNU\ /|\
|  -- * --  | o
| $ who ↲/ \|_-- ~_|
| Alexandre Hoïde   |  _/| |
 ---

Re: How to gain control over the system?

[Fungi4All]

Again, did you copy your /home from a previous system or is it a new
configuration that locked your panels?

> UTC Time: July 9, 2017 12:54 PM
> From: 70147pers...@telia.com
> To: debian-user@lists.debian.org
> Thank you all for thoughts and viewpoints on what can be wrong in my
> installation of Debian 9. I have looked through places I might expect
> can contain some explanation, but so far I have not been able to exclaim
> an "Ah, that"s it!". Here are some of my observations:
> * First source of install: Well, I do know I wrote that used the live
> image, but to be honest, for now I am not sure, I do not remember. I had
> downloaded the live image as well as the install image, and most
> probable choice would be the later. But I do not know. Anyway the
> install process itself went without any problems.
> * At the install I made it fully new from the bottom. The only directory
> I kept unchanged was my home directory. This is situated on an own
> partition. All the others were reformatted: /, /boot, /usr, /var and
> /tmp. All these are on individual partitions while e.g. /etc is
> contained in the root partition. At earlier installations I have noticed
> that the home directory can contain wrong configuration files, so as a
> test I moved all hidden files i.e. files starting with a dot to a new
> created directory "hidden". This was however after the install. So at a
> subsequent cold start the system had no configuration files there but
> created new ones with default values. This however had no positive
> impact on my problem.
> * Configuring sudo? No I have not done that explicitly, not more than
> what the install program did itself. I have looked at /etc/sudoers and
> what I think the important lines are:
> # User privilege specification
> root ALL=(ALL:ALL) ALL
> # Allow members of group sudo to execute any command
> %sudo ALL=(ALL:ALL) ALL
> #includedir /etc/sudoers.d
> In /etc/sudoers.d there are no more files than README.
> There is no /etc/sudo.conf file.
> * Regarding access to my user directory: During my search I did in fact
> find some files and directories owned by user root or group root. These
> are changed to be owned by my user id and group id, but this did not
> help. By the way, On this computer I have always had just one user,
> mine, and hence got the user id 1000 and group id 1000. This is the case
> now too.
> uid 1000 is a member of the sudo group.
> * As I wrote I have always used this method of not setting any password
> to the root account, and this is for quite many years now. My Linux path
> has gone via Ubuntu, well to be honest a couple of years after the
> Microsoft era I ran in Suse, but was not fully satisfied. And when
> Ubuntu and Canonical introduced Unity, I left that ship for Linux Mint
> Debian edition (LMDE) until I took the last(?) step into Debian a couple
> of years ago where the entrance point was jessie. The empty root
> password has always worked fine until now. Possibly Ubuntu has patched
> the sudologin but should LMDE? And jessie? I do not think so.
> Hope someone can find something significant in this and give a hint on
> what to do.
> Kaj

Re: Réglages réseau sur Debian Stretch

[Nicolas FRANCOIS]

Le Sun, 9 Jul 2017 17:59:39 +0200,
Pascal Hambourg  a écrit :

> Le 09/07/2017 à 17:27, Nicolas FRANCOIS a écrit :
> > 
> > Avant, je gérais l'unique connexion filaire vers mon firewall
> > (IPFire) par l'applet network-manager de mon bureau. Et je
> > rajoutais quelques trucs dans /etc/network/interfaces.  
> 
> Je serais curieux de voir le contenu de ce fichier interfaces.

Il y avait ça :

# This file describes the network interfaces available on your system
# and how to activate them. For more information, see interfaces(5).

# The loopback network interface
auto lo
iface lo inet loopback

# The primary network interface
allow-hotplug eth0
iface eth0 inet static
address 192.168.10.8
netmask 255.255.255.0
network 192.168.10.0
broadcast 192.168.10.255
gateway 192.168.10.1
# dns-* options are implemented by the resolvconf package, if installed
dns-nameservers 192.168.10.1
dns-search baronie.vez
post-up ip route add 212.27.48.4 via 192.168.10.1
post-up ip route add 212.27.60.37 via 192.168.10.1
post-up ip route add 212.27.60.38 via 192.168.10.1
post-up ip route add 212.27.60.39 via 192.168.10.1
post-up ip route add 212.27.60.40 via 192.168.10.1
pre-down ip route add 212.27.48.4 via 192.168.10.1
pre-down ip route add 212.27.60.37 via 192.168.10.1
pre-down ip route add 212.27.60.38 via 192.168.10.1
pre-down ip route add 212.27.60.39 via 192.168.10.1
pre-down ip route add 212.27.60.40 via 192.168.10.1

> > Je ne pige pas trop ce que fait Network Manager (le démon lancé par
> > systemd ???), et je ne sais pas comment le configurer (par exemple,
> > configurer des routes statiques,  
> 
> Via l'applet NetworkManager du bureau.
> 

Oui, mais je ne sais pas rajouter des routes : j'ai essayé, par
l'intermédiaire de l'onglet IPV4, et la connexion ne voulait plus se
lancer...

> > ou demander que la connexion aux trois
> > répertoires réseau nfs et smb ne se fasse pas avant que le réseau
> > soit "up").  
> 
> Ça par contre, je ne sais pas comment faire. Il y a l'option de
> montage _netdev dans /etc/fstab pour les système de fichiers
> nécessitant le réseau.

Je crois avoir lu des docs sur systemd expliquant comment faire, mais
je n'ai pas encore le "vocabulaire" nécessaire pour les comprendre.
Mais je ne désespère pas !

> > D'où mes demandes. Je n'ai rien contre systemd, mais je suis né
> > avec SysV  
> 
> NetworkManager n'a rien à voir avec systemd. Il est aussi bien lancé
> par sysvinit que par systemd ou autre init.
 
Et quelle est la différence avec systemd.network ? L'un exclut-il
l'autre ? Une approche est-elle préférable, sachant que j'aime bien
faire les choses moi-même (adressage statique...) plutôt que de les
confier à une interface dont je ne connais pas la méthode de
configuration ?

Tant de question :-)

En tout cas, merci pour votre patience, je sais que ça énerve beaucoup,
mes questions débiles :-(

\bye

-- 

Nicolas FRANCOIS  |  /\ 
http://nicolas.francois.free.fr   | |__|
  X--/\\
We are the Micro$oft.   _\_V
Resistance is futile.   
You will be assimilated. darthvader penguin


pgpzUe1y9XuBT.pgp
Description: Signature digitale OpenPGP

Re: Réglages réseau sur Debian Stretch

[Nicolas FRANCOIS]

Le Sun, 9 Jul 2017 18:05:10 +0200,
maderios  a écrit :

> Pourquoi tourner autour du pot? La solution que j'ai indiquée 
> précédemment sur ce fil résoud ton problème en 5 secondes.

Pas de fichier /etc/udev/rules.d/* dans mon répertoire... 

\bye

-- 

Nicolas FRANCOIS  |  /\ 
http://nicolas.francois.free.fr   | |__|
  X--/\\
We are the Micro$oft.   _\_V
Resistance is futile.   
You will be assimilated. darthvader penguin


pgpxAS2smL7tv.pgp
Description: Signature digitale OpenPGP

Fwd: Wow, non mi sarei mai aspettata di dirlo ad un ragazzo appena incontrato. Lucrezia

[Roberto Capobianchi]

-- Messaggio inoltrato --
Da: Lucrezia Rochvitz 
Date: 9 luglio 2017 10:46
Oggetto: Wow, non mi sarei mai aspettata di dirlo ad un ragazzo appena
incontrato. Lucrezia
A: debian-user@lists.debian.org


Hai cambiato il mio modo di essere.
http://bit.ly/2t1lleO


NON GIRARMI NOTIFICHE O E-MAIL NON SONO GRADITE!!!

Re: Réglages réseau sur Debian Stretch

[maderios]

On 07/09/2017 05:27 PM, Nicolas FRANCOIS wrote:

Le Sun, 9 Jul 2017 15:11:50 +0200,
Nicolas FRANCOIS  a écrit :


Salut.


Bon, à la demande de tous les merveilleux colistiers, je précise
quelques points.
  

Je suis en pleine migration Jessie->Stretch... et j'en ch... comme un
baudet :-P


Il s'agit d'une nouvelle installation. J'avais fait un upgrade de Deb7
vers Deb8, et j'avais rencontré quelques petits soucis, donc j'ai
voulu faire un "fresh start", en reconfigurant mes petites affaires
pas à pas.
  

Exemple de soucis : l'interface réseau par défaut a changé, passant de
eth0 (c'était trop compliqué !) à epn3s0. Bon, soit. Sauf que
maintenant, je ne peux pas activer mon VPN (HMA) et changer quelques
routes, par exemple celle vers le serveur SMTP de mon porvider, parce
que je ne trouve rien qui me permette de faire cela.

Sous Jessie, je rajoutais les routes statiques
dans /etc/network/interfaces, et ça passait au poil. Maintenant, faire
la même chose avec le nouveau nom d'interface empêche carrément
Network-Manager de se connecter...


Bon, j'ai visiblement quelques soucis pour m'expliquer clairement.
Avant, je gérais l'unique connexion filaire vers mon firewall (IPFire)
par l'applet network-manager de mon bureau. Et je rajoutais quelques
trucs dans /etc/network/interfaces.

Je ne pige pas trop ce que fait Network Manager (le démon lancé par
systemd ???), et je ne sais pas comment le configurer (par exemple,
configurer des routes statiques, ou demander que la connexion aux trois
répertoires réseau nfs et smb ne se fasse pas avant que le réseau soit
"up"). D'où mes demandes. Je n'ai rien contre systemd, mais je suis né
avec SysV, donc il faut un peu de temps pour que je m'adapte. J'ai déjà
eu un peu de mal avec udev, donc je m'attends à apprendre des choses :-)


Bon, vous me direz, je n'ai qu'à
lire les docs ! Oui, bin c'est ce que je fais depuis deux jours, et
j'y comprends pas grand chose. Quelques unes parlent des anciens
réglages, d'autres du nouveau systemd, mais je n'en ai pas trouvé
faisant le lien entre tout ça.

Si quelque bonne âme pouvait apporter ses lumières au neuneu que je
suis, je lui en serais éternellement (enfin, beaucoup beaucoup)
reconnaissant.

\bye



Voilà, j'espère que ça précise des choses pour me faire aider plus :-)



Pourquoi tourner autour du pot? La solution que j'ai indiquée 
précédemment sur ce fil résoud ton problème en 5 secondes.


--
Maderios

Re: Réglages réseau sur Debian Stretch

[Pascal Hambourg]

Le 09/07/2017 à 17:27, Nicolas FRANCOIS a écrit :


Avant, je gérais l'unique connexion filaire vers mon firewall (IPFire)
par l'applet network-manager de mon bureau. Et je rajoutais quelques
trucs dans /etc/network/interfaces.


Je serais curieux de voir le contenu de ce fichier interfaces.


Je ne pige pas trop ce que fait Network Manager (le démon lancé par
systemd ???), et je ne sais pas comment le configurer (par exemple,
configurer des routes statiques,


Via l'applet NetworkManager du bureau.


ou demander que la connexion aux trois
répertoires réseau nfs et smb ne se fasse pas avant que le réseau soit
"up").


Ça par contre, je ne sais pas comment faire. Il y a l'option de montage 
_netdev dans /etc/fstab pour les système de fichiers nécessitant le réseau.



D'où mes demandes. Je n'ai rien contre systemd, mais je suis né
avec SysV


NetworkManager n'a rien à voir avec systemd. Il est aussi bien lancé par 
sysvinit que par systemd ou autre init.

Re: Connexion Actioncam wifi et linux

[C. Mourad Jaber]

Le 08/07/2017 à 19:17, judith a écrit :

On sam., 2017-07-08 at 16:44 +0200, C. Mourad Jaber wrote:

Bonjour,

Je cherche un logiciel pour pouvoir contrôler une "Action Cam" (genre
clone de GoPro) à
partir d'un laptop sous debian, voir même de capturer le flux vidéo
directement ?

J'ai trouvé des applications sur Android (et testé avec succés), et
l'API de communication
semble assez standardisée... Mais pas de chance sous linux ou bien
des logiciels payants...

Une idée ?

++

Mourad

exemple

timelapse Kdenlive

http://www.gopro-forum.com/t6293-timelapse-avec-kdenlive-sous-linux
Merci pour cette réponse mais elle concerne la post production et non le pilotage de la 
caméra via wifi (ce que je cherche)...


++

Mourad

Re: Installing Debian on an android device

[tomas]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On Sun, Jul 09, 2017 at 05:00:26PM +0200, deloptes wrote:

[...]

> As for some conspiracy chips with embedded rom  if you have basic
> engineering knowledge you could easily identify all of it and to my
> knowledge it is not trivial to embed such a chip into a mass product,
> especially a mobile phone.

If you want some fascinating reading, see [1] [2]: a researcher from
Google's Zero Day project found out bugs in the firmware of a widespread
Broadcomm SoC (used in many well-known smartphones). Specifically some
buffer overflows in the WiFi subsystem (a processor on its own, with
its own firmware, but sharing the main processor's RAM, it seems).

He could produce a proof-of-concept exploit in which prepared WiFi
packets could first take over the WiFi processor, then from there the
main processor. No user interaction needed: just the WiFi has to be
listening.

No need for the bad guys to shoehorn a spy processor on your machine.
There are enough already in there (Intel's ME, disk controllers, what
not) with enough vulnerabilities ready to do the NSA's bidding (or FSB,
or whoever is your favourite enemy these days).

Cheers, indeed :-)

[1] 
https://googleprojectzero.blogspot.com/2017/04/over-air-exploiting-broadcoms-wi-fi_4.html
[2] 
https://googleprojectzero.blogspot.de/2017/04/over-air-exploiting-broadcoms-wi-fi_11.html
- -- t
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.12 (GNU/Linux)

iEYEARECAAYFAlliTzYACgkQBcgs9XrR2kYb9wCbBSmZr1cZHcrC0abG34LjDcvr
qcQAn0LeCfpNuRNsAiBW2JckR/i6bws/
=6oWQ
-END PGP SIGNATURE-

Re: debian wiki

[tomas]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On Sun, Jul 09, 2017 at 10:55:06AM -0400, Fungi4All wrote:
> > From: to...@tuxteam.de

[...]

> > @Fungi4All: if you are interested in constructive discussions and not
> > just in ranting off, please describe what you are seeing, at least
> > with an URL for people to try to reproduce what you are seeing.

Hm. Was a bit confrontative, sorry for that.

> I thought I did, wiki.debian.org but here is a specific one 
> https://wiki.debian.org/fr/QuickInstall
> Is the top menu in English or French. On my instance the content was english 
> but the menus were not

Hm. There seem to be two levels:

 - the wiki URL: if I choose https://wiki.debian.org/fr/QuickInstall
   and my (browser) language preference is set to English, I get the
   French wiki content with an English top menu.

 - the lang preference: if I set my (browser) language preference
   to french, I can aim directly at https://wiki.debian.org/QuickInstall
   and get the French wiki content and a French top menu.

So I think the top menu only reacts to the preferred language set in
the browser. The wiki content itself obeys both the URL (i.e. the
intercalated /fr/ element) and to the browser preference.

Does this correspond with your findings?

Perhaps that's something to communicate to the debian-www administrators,
as detailed in https://wiki.debian.org/DebianWiki/Contact#content-admins
or in https://wiki.debian.org/DebianWiki/Contact#wiki-sys-admins, not
sure which (I'd try content-admins first).

Cheers
- -- tomás
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.12 (GNU/Linux)

iEYEARECAAYFAlliTI0ACgkQBcgs9XrR2kapEACbB8uQcsvAlNW8k+hxzHla6rNb
HrMAniNIzzurtbazhmwz0QbsYD2wCI6x
=eAiA
-END PGP SIGNATURE-

Re: Réglages réseau sur Debian Stretch

[Nicolas FRANCOIS]

Le Sun, 9 Jul 2017 15:11:50 +0200,
Nicolas FRANCOIS  a écrit :

> Salut.

Bon, à la demande de tous les merveilleux colistiers, je précise
quelques points.
 
> Je suis en pleine migration Jessie->Stretch... et j'en ch... comme un
> baudet :-P

Il s'agit d'une nouvelle installation. J'avais fait un upgrade de Deb7
vers Deb8, et j'avais rencontré quelques petits soucis, donc j'ai
voulu faire un "fresh start", en reconfigurant mes petites affaires
pas à pas.
 
> Exemple de soucis : l'interface réseau par défaut a changé, passant de
> eth0 (c'était trop compliqué !) à epn3s0. Bon, soit. Sauf que
> maintenant, je ne peux pas activer mon VPN (HMA) et changer quelques
> routes, par exemple celle vers le serveur SMTP de mon porvider, parce
> que je ne trouve rien qui me permette de faire cela.
> 
> Sous Jessie, je rajoutais les routes statiques
> dans /etc/network/interfaces, et ça passait au poil. Maintenant, faire
> la même chose avec le nouveau nom d'interface empêche carrément
> Network-Manager de se connecter...

Bon, j'ai visiblement quelques soucis pour m'expliquer clairement.
Avant, je gérais l'unique connexion filaire vers mon firewall (IPFire)
par l'applet network-manager de mon bureau. Et je rajoutais quelques
trucs dans /etc/network/interfaces.

Je ne pige pas trop ce que fait Network Manager (le démon lancé par
systemd ???), et je ne sais pas comment le configurer (par exemple,
configurer des routes statiques, ou demander que la connexion aux trois
répertoires réseau nfs et smb ne se fasse pas avant que le réseau soit
"up"). D'où mes demandes. Je n'ai rien contre systemd, mais je suis né
avec SysV, donc il faut un peu de temps pour que je m'adapte. J'ai déjà
eu un peu de mal avec udev, donc je m'attends à apprendre des choses :-)

> Bon, vous me direz, je n'ai qu'à
> lire les docs ! Oui, bin c'est ce que je fais depuis deux jours, et
> j'y comprends pas grand chose. Quelques unes parlent des anciens
> réglages, d'autres du nouveau systemd, mais je n'en ai pas trouvé
> faisant le lien entre tout ça.
> 
> Si quelque bonne âme pouvait apporter ses lumières au neuneu que je
> suis, je lui en serais éternellement (enfin, beaucoup beaucoup)
> reconnaissant.
> 
> \bye
> 

Voilà, j'espère que ça précise des choses pour me faire aider plus :-)

\bye

-- 

Nicolas FRANCOIS  |  /\ 
http://nicolas.francois.free.fr   | |__|
  X--/\\
We are the Micro$oft.   _\_V
Resistance is futile.   
You will be assimilated. darthvader penguin


pgpLAONJcTf0z.pgp
Description: Signature digitale OpenPGP

Re: Installing Debian on an android device

[deloptes]

Fungi4All wrote:

> After meshing around a bit more with this pseudo debian environment
> I am convinced that it is not worth my time and effort to deal with this.
> I am taping it on top of my guitar amp to play mp3s as backing/practice
> tracks and I think that it is the best it is good for

I've gone the way already (at least in theory). This is why I advise, if you
want a device like tablet or phone to be fully in your control, then go for
Jolla/Sailfish.. At the moment there is no alternative in my opinion.

As for some conspiracy chips with embedded rom  if you have basic
engineering knowledge you could easily identify all of it and to my
knowledge it is not trivial to embed such a chip into a mass product,
especially a mobile phone.

There were servers in the past, where NSA plugged in special chips before
those machines were shipped to china, but it did not last long and the
chineese found out.

So keep your eyes open and think twice before you buy something and use it -
this is my advise

regards

Re: debian wiki

[Fungi4All]

> From: to...@tuxteam.de
>> It"s probably based not on your IP, but on headers sent by your browser
>> (Accept-Language or something like that). There should be somewhere in
>> the settings where you can change that. At least on Firefox there is.
> I can confirm that (tested on https://wiki.debian.org). Depending on
> the language preferences set on my browser (en resp. fr), I stay on
> the default, English or get redirected to the French version, /fr/.

It is not consistent though, with scripts-off if you pick french from the main
page the content will become french but the top menus stay EN. If you
pick a link (installation rapide) the headers stay in EN. If you try the same
with DE then all of it is German. This is with a French IP. So it is not the IP
but some language cookie that throws it off? I guess if you use a lesser
browser than mozilla weird things happen, I accept that the IP speculation
was unsubstantiated.
But the inconsistency remains.

> So I don"t see any IP based language choice on wiki.debian.org, just
> one based on HTTP content negotiation (and thus on client choice), as
> it Should Be (TM).

> DISCLAIMER: I only tested without Javascript. I (mostly) browse with
> Javascript disabled.
> @Fungi4All: if you are interested in constructive discussions and not
> just in ranting off, please describe what you are seeing, at least
> with an URL for people to try to reproduce what you are seeing.

I thought I did, wiki.debian.org but here is a specific one 
https://wiki.debian.org/fr/QuickInstall
Is the top menu in English or French. On my instance the content was english 
but the menus were not

Re: Réglages réseau sur Debian Stretch

[Pascal Hambourg]

Le 09/07/2017 à 16:14, maderios a écrit :

On 07/09/2017 03:11 PM, Nicolas FRANCOIS wrote:

Salut.

Je suis en pleine migration Jessie->Stretch... et j'en ch... comme un
baudet :-P

Exemple de soucis : l'interface réseau par défaut a changé, passant de
eth0 (c'était trop compliqué !) à epn3s0. Bon, soit. Sauf que


Après une mise à niveau ou une réinstallation ?
Comme d'autres l'ont écrit, la mise à niveau depuis Jessie ne devrait 
pas modifier le nom des interfaces réseau existantes.



maintenant, je ne peux pas activer mon VPN (HMA) et changer quelques
routes, par exemple celle vers le serveur SMTP de mon porvider, parce
que je ne trouve rien qui me permette de faire cela.

Sous Jessie, je rajoutais les routes statiques
dans /etc/network/interfaces, et ça passait au poil. Maintenant, faire
la même chose avec le nouveau nom d'interface empêche carrément
Network-Manager de se connecter...


Comment ça, "empêche NetworkManager de se connecter" ? Se connecter à quoi ?

Si une interface est configurée dans le fichier 
/etct/network/interfaces, par défaut NetworkManager ne s'en occupe pas. 
Si on a modifié le réglage qui fait que NetworkManager s'en occupe quand 
même et qu'on a des ennuis, on n'a que ce qu'on mérite.


Si une interface est gérée par NetworkManager, il vaut mieux ajouter les 
routes statique dans la configuration de NetworkManager pour cette 
interface et non dans le fichier /etc/network/interfaces.


On peut  modifier le nom en éditant ce fichier et ensuite redémarrer. Il 
n'y a qu'un mot à changer: eth0

/etc/udev/rules.d/70-persistent-net-rules.


Ce fichier n'est plus créé automatiquement dans une installation fraîche 
de Stretch puisque par défaut udev utilise un nommage "prévisible" à la 
place du nommage persistant. Il y a une option net.ifnames=0 à passer à 
la ligne de commande du noyau pour ne pas appliquer le nommage prévisible.

Re: [HS] erreurs BTRFS [gravité(?)]

[maderios]

On 07/09/2017 01:47 PM, Alexandre Hoïde wrote:


   Je suppose qu'il faudra que j'en passe par le SAV Lenovo… en espérant
que les messages d'erreur du noyau leur suffiront.



Salut
Je ne connais pas toute l'histoire et donc, je me trompe peut-être.
Avant d'envisager le SAV, pourquoi ne pas formater avec un système de 
fichier éprouvé comme ext4 et réinstaller? BTRFS est encore bien jeune 
donc question fiabilité, ce n'est pas le top...


--
Maderios

Re: Réglages réseau sur Debian Stretch

[bernard . schoenacker]

- Mail original -
> De: "maderios" 
> À: debian-user-french@lists.debian.org
> Envoyé: Dimanche 9 Juillet 2017 16:14:19
> Objet: Re: Réglages réseau sur Debian Stretch
> 
> On 07/09/2017 03:11 PM, Nicolas FRANCOIS wrote:
> > Salut.
> > 
> > Je suis en pleine migration Jessie->Stretch... et j'en ch... comme
> > un
> > baudet :-P
> > 
> > Exemple de soucis : l'interface réseau par défaut a changé, passant
> > de
> > eth0 (c'était trop compliqué !) à epn3s0. Bon, soit. Sauf que
> > maintenant, je ne peux pas activer mon VPN (HMA) et changer
> > quelques
> > routes, par exemple celle vers le serveur SMTP de mon porvider,
> > parce
> > que je ne trouve rien qui me permette de faire cela.
> > 
> > Sous Jessie, je rajoutais les routes statiques
> > dans /etc/network/interfaces, et ça passait au poil. Maintenant,
> > faire
> > la même chose avec le nouveau nom d'interface empêche carrément
> > Network-Manager de se connecter... Bon, vous me direz, je n'ai qu'à
> > lire les docs ! Oui, bin c'est ce que je fais depuis deux jours, et
> > j'y
> > comprends pas grand chose. Quelques unes parlent des anciens
> > réglages,
> > d'autres du nouveau systemd, mais je n'en ai pas trouvé faisant le
> > lien
> > entre tout ça.
> > 
> > Si quelque bonne âme pouvait apporter ses lumières au neuneu que je
> > suis, je lui en serais éternellement (enfin, beaucoup beaucoup)
> > reconnaissant.
> > 
> 
> Bonjour
> On peut  modifier le nom en éditant ce fichier et ensuite redémarrer.
> Il
> n'y a qu'un mot à changer: eth0
> /etc/udev/rules.d/70-persistent-net-rules.
> 
> --
> Maderios
> 
> 
bonjour,

petit correctif : 

/etc/udev/rules.d/70-persistent-net.rules 

slt
bernard

Re: Réglages réseau sur Debian Stretch

[maderios]

On 07/09/2017 03:35 PM, Gaëtan PERRIER wrote:

Le Sun, 9 Jul 2017 15:11:50 +0200
Nicolas FRANCOIS  a écrit:


Salut.

Je suis en pleine migration Jessie->Stretch... et j'en ch... comme un
baudet :-P

Exemple de soucis : l'interface réseau par défaut a changé, passant de
eth0 (c'était trop compliqué !) à epn3s0.


Salut,

Tu as fait un upgrade ou tu as réinstallé ?
Parce que si tu as fait un upgrade normalement les noms d'interfaces ne
changent pas. C'est indiqué dans la doc et c'est ce qui s'est passé pour moi
quand j'ai upgradé de jessie vers stretch.



Bonjour
Idem pour moi, j'ai récemment upgradé une jessie -> stretch, les noms 
des interfaces n'ont pas changé.

A part des bricoles cosmétiques, ça roule.

--
Maderios

Re: Réglages réseau sur Debian Stretch

[Jean-Michel OLTRA]

Bonjour,


Le dimanche 09 juillet 2017, Nicolas FRANCOIS a écrit...


> Je suis en pleine migration Jessie->Stretch... et j'en ch... comme un
> baudet :-P

> Exemple de soucis : l'interface réseau par défaut a changé, passant de
> eth0 (c'était trop compliqué !) à epn3s0. Bon, soit. Sauf que
> maintenant, je ne peux pas activer mon VPN (HMA) et changer quelques
> routes, par exemple celle vers le serveur SMTP de mon porvider, parce
> que je ne trouve rien qui me permette de faire cela.

J'ai fait un post il y a pile une semaine concernant ce problème sur une
migration sur un vps OVH.

Le souci était sur le noyau 3.16 (moi, c'était ens3, le nouveau nom). Le
reboot sur le noyau 4 a résolu toute l'affaire, et eth0 est revenue.

J'ai effectué  hier une mise à jour d'un autre vps OVH. Prévenu, j'ai booté
sur le noyau 4 d'autorité après la mise à jour (bon, je triche un peu, car,
dans ce dernier cas, le bootloader était Grub et c'était configuré pour
rebooter sur le noyau 4, contrairement à syslinux).

Donc, première question : sur quelle version de noyau es tu ?

Sinon, j'arrivais à monter l'interface ens3 avec systemd-networkd, mais
c'est une autre affaire dont nous pourrons éventuellement reparler, en
fonction de ta réponse à la question ci-dessus.

-- 
jm

Re: Réglages réseau sur Debian Stretch

[maderios]

On 07/09/2017 03:11 PM, Nicolas FRANCOIS wrote:

Salut.

Je suis en pleine migration Jessie->Stretch... et j'en ch... comme un
baudet :-P

Exemple de soucis : l'interface réseau par défaut a changé, passant de
eth0 (c'était trop compliqué !) à epn3s0. Bon, soit. Sauf que
maintenant, je ne peux pas activer mon VPN (HMA) et changer quelques
routes, par exemple celle vers le serveur SMTP de mon porvider, parce
que je ne trouve rien qui me permette de faire cela.

Sous Jessie, je rajoutais les routes statiques
dans /etc/network/interfaces, et ça passait au poil. Maintenant, faire
la même chose avec le nouveau nom d'interface empêche carrément
Network-Manager de se connecter... Bon, vous me direz, je n'ai qu'à
lire les docs ! Oui, bin c'est ce que je fais depuis deux jours, et j'y
comprends pas grand chose. Quelques unes parlent des anciens réglages,
d'autres du nouveau systemd, mais je n'en ai pas trouvé faisant le lien
entre tout ça.

Si quelque bonne âme pouvait apporter ses lumières au neuneu que je
suis, je lui en serais éternellement (enfin, beaucoup beaucoup)
reconnaissant.



Bonjour
On peut  modifier le nom en éditant ce fichier et ensuite redémarrer. Il 
n'y a qu'un mot à changer: eth0

/etc/udev/rules.d/70-persistent-net-rules.

--
Maderios

Re: How to gain control over the system? [a security-side-note]

[Dejan Jocic]

On 09-07-17, Eike Lantzsch wrote:
> On Sunday, 9 July 2017 14:54:02 -04 Kaj Persson wrote:
> > 
> > * Configuring sudo? No I have not done that explicitly, not more than
> > what the install program did itself. I have looked at /etc/sudoers and
> > what I think the important lines are:
> > 
> >  # User privilege specification
> >  rootALL=(ALL:ALL) ALL
> > 
> >  # Allow members of group sudo to execute any command
> >  %sudo   ALL=(ALL:ALL) ALL
> There the "security" went out of the building ...
> Please have a look here:
> https://blather.michaelwlucas.com/archives/2266

It does not matter really ( though it is really nice lecture about sudo
), because it is personal machine. Settings like that on personal
machine are really fine. 

> > 
> >  #includedir /etc/sudoers.d
> > 
> > In /etc/sudoers.d there are no more files than README.
> > 

Re: How to gain control over the system? [a security-side-note]

[Eike Lantzsch]

On Sunday, 9 July 2017 14:54:02 -04 Kaj Persson wrote:
> Thank you all for thoughts and viewpoints on what can be wrong in my
> installation of Debian 9. I have looked through places I might expect
> can contain some explanation, but so far I have not been able to exclaim
> an "Ah, that's it!". Here are some of my observations:
> 
> * First source of install: Well, I do know I wrote that used the live
> image, but to be honest, for now I am not sure, I do not remember. I had
> downloaded the live image as well as the install image, and most
> probable choice would be the later. But I do not know. Anyway the
> install process itself went without any problems.
> 
> * At the install I made it fully new from the bottom. The only directory
> I kept unchanged was my home directory. This is situated on an own
> partition. All the others were reformatted: /, /boot, /usr, /var and
> /tmp. All these are on individual partitions while e.g. /etc is
> contained in the root partition. At earlier installations I have noticed
> that the home directory can contain wrong configuration files, so as a
> test I moved all hidden files i.e. files starting with a dot to a new
> created directory "hidden". This was however after the install. So at a
> subsequent cold start the system had no configuration files there but
> created new ones with default values. This however had no positive
> impact on my problem.
> 
> * Configuring sudo? No I have not done that explicitly, not more than
> what the install program did itself. I have looked at /etc/sudoers and
> what I think the important lines are:
> 
>  # User privilege specification
>  rootALL=(ALL:ALL) ALL
> 
>  # Allow members of group sudo to execute any command
>  %sudo   ALL=(ALL:ALL) ALL
There the "security" went out of the building ...
Please have a look here:
https://blather.michaelwlucas.com/archives/2266
> 
>  #includedir /etc/sudoers.d
> 
> In /etc/sudoers.d there are no more files than README.
> 
> There is no /etc/sudo.conf file.
> 
> * Regarding access to my user directory: During my search I did in fact
> find some files and directories owned by user root or group root. These
> are changed to be owned by my user id and group id, but this did not
> help. By the way, On this computer I have always had just one user,
> mine, and hence got the user id 1000 and group id 1000. This is the case
> now too.
> 
> uid 1000 is a member of the sudo group.
> 
> * As I wrote I have always used this method of not setting any password
> to the root account, and this is for quite many years now. My Linux path
> has gone via Ubuntu, well to be honest a couple of years after the
> Microsoft era I ran in Suse, but was not fully satisfied. And when
> Ubuntu and Canonical introduced Unity, I left that ship for Linux Mint
> Debian edition (LMDE) until I took the last(?) step into Debian a couple
> of years ago where the entrance point was jessie. The empty root
> password has always worked fine until now. Possibly Ubuntu has patched
> the sudologin but should LMDE? And jessie? I do not think so.
> 
I didn't try this myself (didn't ever have to) but this might help for now:
https://unix.stackexchange.com/questions/205799/how-to-create-root-user-account-in-debian
> 
> Hope someone can find something significant in this and give a hint on
> what to do.
I'd first try to go through the installation with the netinstall and without 
reusing any home partition in a virtual machine. See if the problem is there 
too.
If yes: place a bug-report.
If not: take a snapshot for later
put back the home partition, see if the problem is there or not.
If yes: restore the snapshot. And start putting back the config files for LMDE.
...
gradually testing out what can be reused and what not.
...
on second thought: I wouldn't invest the time ...
If the install in the virtual machine is doing allright, I'd just do the exact 
same install on the real hardware and be happy.
Have a nice day
Eike

Re: Réglages réseau sur Debian Stretch

[Gaëtan PERRIER]

Le Sun, 9 Jul 2017 15:11:50 +0200
Nicolas FRANCOIS  a écrit:

> Salut.
> 
> Je suis en pleine migration Jessie->Stretch... et j'en ch... comme un
> baudet :-P
> 
> Exemple de soucis : l'interface réseau par défaut a changé, passant de
> eth0 (c'était trop compliqué !) à epn3s0. 

Salut,

Tu as fait un upgrade ou tu as réinstallé ?
Parce que si tu as fait un upgrade normalement les noms d'interfaces ne
changent pas. C'est indiqué dans la doc et c'est ce qui s'est passé pour moi
quand j'ai upgradé de jessie vers stretch.

Gaëtan


pgpybWAbejyw9.pgp
Description: PGP signature

Re: Replace systemd

[Thomas Schmitt]

Hi,

Rob van der Putten wrote:
> You need to modify your net install DVD too;
> http://without-systemd.org/wiki/index.php/How_to_remove_systemd_from_the_Netinst_CD

Guests may not discuss there. So here:

The genisoimage run in "update-cdrom.sh" only prepares for booting via
BIOS from CD/DVD. One would need to afterwards run
  isohybrid /div/test.iso
in order to make it ready for booting via BIOS from USB stick.

The promised UEFI capabilities by a run of
  isohybrid --uefi test.iso
cannot be achieved because the genisoimage run did not advertise file
/boot/grub/efi.img as El Torito boot image for EFI.
Upstream genisoimage cannot do this. Fedora has a modified one which knows
option -e. See
  http://www.syslinux.org/wiki/index.php?title=Isohybrid#UEFI

In debian-9.0.0-amd64-netinst.iso the file /.disk/mkisofs tells the
command that was used to create it. Cleaned from the Jigdo specific options,
peculiarities of the production machine, and some ineffective options,
that is:

  xorriso -as mkisofs \
-r \
-V 'Debian 9.0.0 amd64 n' \
-o test.iso \
-J -joliet-long \
-isohybrid-mbr "$isohybrid_MBR" \
-c isolinux/boot.cat \
-b isolinux/isolinux.bin \
  -boot-load-size 4 -boot-info-table -no-emul-boot \
-eltorito-alt-boot \
-e boot/grub/efi.img \
  -no-emul-boot -isohybrid-gpt-basdat \
./

where $isohybrid_MBR is a file with a copy of the first 432 bytes of the
original ISO. E.g made by:

  isohybrid_MBR=/tmp/debian9.mbr
  dd if=debian-9.0.0-amd64-netinst.iso bs=1 count=432 of="$isohybrid_MBR"

A run of isohybrid is not needed. The ISO will begin to boot from the
usual media on the usual firmwares. How far it gets depends on the
quality of the other manipulations, which i am not up to judge.


Have a nice day :)

Thomas

Réglages réseau sur Debian Stretch

[Nicolas FRANCOIS]

Salut.

Je suis en pleine migration Jessie->Stretch... et j'en ch... comme un
baudet :-P

Exemple de soucis : l'interface réseau par défaut a changé, passant de
eth0 (c'était trop compliqué !) à epn3s0. Bon, soit. Sauf que
maintenant, je ne peux pas activer mon VPN (HMA) et changer quelques
routes, par exemple celle vers le serveur SMTP de mon porvider, parce
que je ne trouve rien qui me permette de faire cela.

Sous Jessie, je rajoutais les routes statiques
dans /etc/network/interfaces, et ça passait au poil. Maintenant, faire
la même chose avec le nouveau nom d'interface empêche carrément
Network-Manager de se connecter... Bon, vous me direz, je n'ai qu'à
lire les docs ! Oui, bin c'est ce que je fais depuis deux jours, et j'y
comprends pas grand chose. Quelques unes parlent des anciens réglages,
d'autres du nouveau systemd, mais je n'en ai pas trouvé faisant le lien
entre tout ça.

Si quelque bonne âme pouvait apporter ses lumières au neuneu que je
suis, je lui en serais éternellement (enfin, beaucoup beaucoup)
reconnaissant.

\bye

-- 

Nicolas FRANCOIS  |  /\ 
http://nicolas.francois.free.fr   | |__|
  X--/\\
We are the Micro$oft.   _\_V
Resistance is futile.   
You will be assimilated. darthvader penguin


pgptOCXtmJIz2.pgp
Description: Signature digitale OpenPGP

Re: How to gain control over the system?

[Kaj Persson]

Thank you all for thoughts and viewpoints on what can be wrong in my 
installation of Debian 9. I have looked through places I might expect 
can contain some explanation, but so far I have not been able to exclaim 
an "Ah, that's it!". Here are some of my observations:


* First source of install: Well, I do know I wrote that used the live 
image, but to be honest, for now I am not sure, I do not remember. I had 
downloaded the live image as well as the install image, and most 
probable choice would be the later. But I do not know. Anyway the 
install process itself went without any problems.


* At the install I made it fully new from the bottom. The only directory 
I kept unchanged was my home directory. This is situated on an own 
partition. All the others were reformatted: /, /boot, /usr, /var and 
/tmp. All these are on individual partitions while e.g. /etc is 
contained in the root partition. At earlier installations I have noticed 
that the home directory can contain wrong configuration files, so as a 
test I moved all hidden files i.e. files starting with a dot to a new 
created directory "hidden". This was however after the install. So at a 
subsequent cold start the system had no configuration files there but 
created new ones with default values. This however had no positive 
impact on my problem.


* Configuring sudo? No I have not done that explicitly, not more than 
what the install program did itself. I have looked at /etc/sudoers and 
what I think the important lines are:


# User privilege specification
rootALL=(ALL:ALL) ALL

# Allow members of group sudo to execute any command
%sudo   ALL=(ALL:ALL) ALL

#includedir /etc/sudoers.d

In /etc/sudoers.d there are no more files than README.

There is no /etc/sudo.conf file.

* Regarding access to my user directory: During my search I did in fact 
find some files and directories owned by user root or group root. These 
are changed to be owned by my user id and group id, but this did not 
help. By the way, On this computer I have always had just one user, 
mine, and hence got the user id 1000 and group id 1000. This is the case 
now too.


uid 1000 is a member of the sudo group.

* As I wrote I have always used this method of not setting any password 
to the root account, and this is for quite many years now. My Linux path 
has gone via Ubuntu, well to be honest a couple of years after the 
Microsoft era I ran in Suse, but was not fully satisfied. And when 
Ubuntu and Canonical introduced Unity, I left that ship for Linux Mint 
Debian edition (LMDE) until I took the last(?) step into Debian a couple 
of years ago where the entrance point was jessie. The empty root 
password has always worked fine until now. Possibly Ubuntu has patched 
the sudologin but should LMDE? And jessie? I do not think so.



Hope someone can find something significant in this and give a hint on 
what to do.


Kaj

Re: PulseAudio (Some users get sound, orthers do not)

[Wellington Terumi Uemura]

Have you check your system log?
What dmesg tell you?

Em 9 de jul de 2017 03:36, "Marc Shapiro"  escreveu:

> At some point in the past I was having sound issues which I traced to
> pulseaudio.  I uninstalled pulseaudio and everything was fine.  Then
> Firefox decided to require pulseaudio and my sound (in Firefox) went away.
>
> I reinstalled pulseaudio and eventually got it working (I thought).  Well,
> it was working for me, but not for my wife and daughter, apparently.  Both
> of them have recently let me know that they have been without sound for an
> indeterminate period of time.
>
> This morning, I went to my wife's login and ran:
>
> pulseaudio --kill
>
> rm ~/.config/pulse
>
> pulseaudio --start
>
> And that worked.  There were some warnings about not being able to find
> the cookie file, which was understandable since I had just rm'd the
> configuration directory.  But pulseaudio recreated the directory and needed
> files and seems to be happy.  At least I am able to get sound from the
> command line, as well as from Firefox.
>
>
> When I tried to do the same thing under my daughter's login, however, I
> get the warnings about the cookie file and ~/.config/pulse is NOT
> recreated, so still no sound anywhere.  I have checked the permissions of
> my daughter's  ~/.config/pulse directory and it is 644 with her user as
> owner and group.  That matches ~/.config in my home directory and my wife's.
>
>
> So why does pulseaudio not create the files it needs, like it did for me
> and my wife?  Is there something else that I am missing? Any help will be
> appreciated.
>
>
> Marc
>
>

RE : Parler est comme jouer au tennis avec des réceptions et envois de la balle Laura

[cyril cyril]

Arrêté avec vos email



Envoyé depuis mon appareil mobile Samsung.


 Message d'origine 
De : Laura Basegmez 
Date : 08/07/2017 09:22 (GMT+00:00)
À : debian-user@lists.debian.org
Objet : Parler est comme jouer au tennis avec des réceptions et envois de la 
balle Laura


J’adore les balles. Tu veux qu’on parle?
http://bit.ly/2sXTsnZ

Re: Praten is net als tennis met het sturen en ontvangen van de bal Linda

[adri_perrone]

Aub geen mails meer bedankt 


Verzonden vanaf mijn Samsung Galaxy-smartphone.
 Oorspronkelijk bericht Van: Linda Ilemonan 
 Datum: 8/07/17  10:00  (GMT+01:00) Aan: 
debian-user@lists.debian.org Onderwerp: Praten is net als tennis met het sturen 
en ontvangen van de bal Linda 

Ik hou van ballen. Wil je praten? 

http://bit.ly/2sXpTTI
  

Brj enchanté Laurent

[Laurent Marcorelle]

Envoyé de mon iPhone

Re: [HS] erreurs BTRFS [gravité(?)]

[Alexandre Hoïde]

On Tue, Jun 27, 2017 at 12:49:06PM +0200, Alexandre Hoïde wrote:
>   Les premières erreurs sont :
> «
> jun 22 15:11:51 lenlap kernel: ata4.00: exception Emask 0x0 SAct 0x3f000 SErr 
> 0x5 action 0x6 frozen
> jun 22 15:11:51 lenlap kernel: ata4: SError: { PHYRdyChg CommWake }
> jun 22 15:11:51 lenlap kernel: ata4.00: failed command: WRITE FPDMA QUEUED
> jun 22 15:11:51 lenlap kernel: ata4.00: cmd 
> 61/00:60:c8:82:8c/02:00:10:00:00/40 tag 12 ncq dma 262144 out
> […] »
> 
>   Suivies par des dizaines de :
> «
> Jun 22 15:12:02 lenlap kernel: [ 4159.268019] BTRFS error (device sda4): bdev 
> /dev/sda4 errs: wr 1, rd 0, flush 0, corrupt 0, gen 0
> »

  Rebelote : 8 juillet, même enchaînement d'erreurs, sans conséquences
apparentes après redémarrage du système (bien que je n'aie pas encore
exécuté de test smartctl). Température extérieure, sur le moment, 32°C,
température processeur (« tlp-stat | grep temp ») 34°C -- qui m'a laissé
perplexe, étant donné qu'actuellement la température externe est de 28°C
et le processeur donné à 53°C… mais je ne me rappelle pas si je venais
de le sortir de veille).

  Défaillance matérielle, bug du micrologiciel, incompatibilité ou bug
avec le noyau… mystère !

  Je suppose qu'il faudra que j'en passe par le SAV Lenovo… en espérant
que les messages d'erreur du noyau leur suffiront.

  Je joins le nouveau log, pour référence.

PS ce message me sert de suivi. À moins que ces logs ne vous parlent et
que vous soyez désireux de me les traduire, vous prenez pas la tête ;-)

-- 
 ___
| $ post_tenebras ↲ | waouh!
| GNU\ /|\
|  -- * --  | o
| $ who ↲/ \|_-- ~_|
| Alexandre Hoïde   |  _/| |
 ---
-- Logs begin at Wed 2017-06-14 17:58:54 CEST, end at Sun 2017-07-09 13:05:20 
CEST. --
jui 08 13:59:29 lenlap kernel: ata4.00: exception Emask 0x0 SAct 0xc0 SErr 
0x5 action 0x6 frozen
jui 08 13:59:29 lenlap kernel: ata4: SError: { PHYRdyChg CommWake }
jui 08 13:59:29 lenlap kernel: ata4.00: failed command: WRITE FPDMA QUEUED
jui 08 13:59:29 lenlap kernel: ata4.00: cmd 61/18:30:70:57:86/00:00:10:00:00/40 
tag 6 ncq dma 12288 out
res 40/00:80:00:00:00/00:00:00:00:00/40 
Emask 0x4 (timeout)
jui 08 13:59:29 lenlap kernel: ata4.00: status: { DRDY }
jui 08 13:59:29 lenlap kernel: ata4.00: failed command: WRITE FPDMA QUEUED
jui 08 13:59:29 lenlap kernel: ata4.00: cmd 61/08:38:a8:cd:93/00:00:09:00:00/40 
tag 7 ncq dma 4096 out
res 40/00:00:00:00:00/00:00:00:00:00/40 
Emask 0x4 (timeout)
jui 08 13:59:29 lenlap kernel: ata4.00: status: { DRDY }
jui 08 13:59:39 lenlap kernel: ata4: COMRESET failed (errno=-16)
jui 08 13:59:49 lenlap kernel: ata4: COMRESET failed (errno=-16)
jui 08 14:00:24 lenlap kernel: ata4: COMRESET failed (errno=-16)
jui 08 14:00:29 lenlap kernel: ata4: COMRESET failed (errno=-16)
jui 08 14:00:29 lenlap kernel: ata4: reset failed, giving up
jui 08 14:00:29 lenlap kernel: blk_update_request: I/O error, dev sda, sector 
160681384
jui 08 14:00:29 lenlap kernel: BTRFS error (device sda4): bdev /dev/sda4 errs: 
wr 1, rd 0, flush 0, corrupt 0, gen 0
jui 08 14:00:29 lenlap kernel: blk_update_request: I/O error, dev sda, sector 
277239664
jui 08 14:00:29 lenlap kernel: BTRFS error (device sda4): bdev /dev/sda4 errs: 
wr 2, rd 0, flush 0, corrupt 0, gen 0
jui 08 14:00:29 lenlap kernel: blk_update_request: I/O error, dev sda, sector 
277338032
jui 08 14:00:29 lenlap kernel: BTRFS error (device sda4): bdev /dev/sda4 errs: 
wr 3, rd 0, flush 0, corrupt 0, gen 0
jui 08 14:00:29 lenlap kernel: blk_update_request: I/O error, dev sda, sector 
277354120
jui 08 14:00:29 lenlap kernel: BTRFS error (device sda4): bdev /dev/sda4 errs: 
wr 4, rd 0, flush 0, corrupt 0, gen 0
jui 08 14:00:29 lenlap kernel: blk_update_request: I/O error, dev sda, sector 
276799584
jui 08 14:00:29 lenlap kernel: BTRFS error (device sda4): bdev /dev/sda4 errs: 
wr 5, rd 0, flush 0, corrupt 0, gen 0
jui 08 14:00:29 lenlap kernel: blk_update_request: I/O error, dev sda, sector 
277170896
jui 08 14:00:29 lenlap kernel: BTRFS error (device sda4): bdev /dev/sda4 errs: 
wr 6, rd 0, flush 0, corrupt 0, gen 0
jui 08 14:00:29 lenlap kernel: blk_update_request: I/O error, dev sda, sector 
277173920
jui 08 14:00:29 lenlap kernel: BTRFS error (device sda4): bdev /dev/sda4 errs: 
wr 7, rd 0, flush 0, corrupt 0, gen 0
jui 08 14:00:29 lenlap kernel: blk_update_request: I/O error, dev sda, sector 
277198496
jui 08 14:00:29 lenlap kernel: BTRFS error (device sda4): bdev /dev/sda4 errs: 
wr 8, rd 0, flush 0, corrupt 0, gen 0
jui 08 14:00:29 lenlap kernel: blk_update_request: I/O error, dev sda, sector 
277210136
jui 08 14:00:29 lenlap kernel: BTRFS error (device sda4): bdev /dev/sda4 errs: 
wr 9, rd 0, flush 0, corrupt 0, gen 0
jui 08 14:00:29 lenlap kernel: blk_update_request: I/O error, dev sda, sector 
277225192
jui 08 14:00:29 lenlap kernel: BTRFS error (device sda4): bdev /dev/sda4 errs: 

Re: How to gain control over the system?

[Richard Owlett]

On 07/09/2017 05:08 AM, Fungi4All wrote:

From: david...@freevolt.org
To: debian-user@lists.debian.org
As they say[1],[2],[3], do not use a live image for installs.
1. https://lists.debian.org/debian-user/2017/06/msg00723.html
2. https://lists.debian.org/debian-user/2017/06/msg00740.html
3. https://lists.debian.org/debian-user/2017/06/msg00755.html


My experience with live images is that they include the installer and
a live image. The gui within the live system most usually runs into
errors, while the installer from the initial grub-like menu works just like the
netinstall system. I suspect the installer without booting the live
system has maximum resources available, while the live system
even as idle requires 15-20% of resources to run the installation
gui.



I see you can't be bothered reading relevant info before posting.
There *WAS* a bug in the live version of 9.0.
It was fixed in a 9.01 release of the live edition.

Re: Replace systemd

[Rob van der Putten]

Hi there


On 05/07/17 17:27, Don Armstrong wrote:


It already exists:

https://lists.debian.org/debian-user/2017/04/msg00097.html

«
You can just append:

preseed/late_command="in-target apt-get install -y sysvinit-core"

to the installer command line.

Or you can roll your own install media with its own syslinux.cfg which
adds that or something more complicated in a preseed file.

You don't need to fork the installer, or submit any patches upstream.

If you want something more complicated, like not installing systemd at
all, you'll have to pass --include and --exclude options to debootstrap
using the base-installer/includes and base-installer/excludes preseed
options; something like:

base-installer/includes=sysvinit-core base-installer/excludes=systemd-sysv

but that's totally untested.
»


You need to modify your net install DVD too;
http://without-systemd.org/wiki/index.php/How_to_remove_systemd_from_the_Netinst_CD


Regards,
Rob

Re: shadow spam (was Re: stop your mail)

[Joel Rees]

On Sun, Jul 9, 2017 at 7:53 PM, Thomas Schmitt  wrote:
> Hi,
>
[...]
>
> Joel Rees wrote:
>> (1) These messages may be a sort of generator for phishing targets.
>
> You mean that those who hit the "Smack Sender" button of their mail
> app show up as flotsam here and can be harvested without reveiling
> the harvester's mail address ?
> (This theory would imply that the reflector senders are real people
>  or their watchdog apps.)
>
> Eek. That would mean we would really have to take measures to not
> let appear most of the messages in subscriber mailboxes and archive.
> If we let this continue then we create a commercial incentive to
> flood us.

Of course, if the hypothetical "they" are looking for a commercially viable
way to harvest addresses from this list and are doing this, they've missed
something much more obvious.

And?

>> they might be setting up a noise
>> background against which to send steganographically encoded messages.
>
> That's a good one.
> We are testing ground for a novel low-bandwidth method to control
> bot nets or remote spies.

Not likely a testing ground.

> Ten hops over iPads, Galaxies, or WinPhones would be nearly as
> effective in hiding the sender as a Tor onion would be.
>
>
> Have a nice day :)
>
> Thomas
>

Did I say something about onions?

-- 
Joel Rees

One of these days I'll get someone to pay me
to design a language that combines the best of Forth and C.
Then I'll be able to leap wide instruction sets with a single #ifdef,
run faster than a speeding infinite loop with a #define,
and stop all integer size bugs with my bare cast.
http://defining-computers.blogspot.com/2017/06/reinventing-computers.html

More of my delusions:
http://reiisi.blogspot.com/2017/05/do-not-pay-modern-danegeld-ransomware.html
http://reiisi.blogspot.jp/p/novels-i-am-writing.html

Re: shadow spam (was Re: stop your mail)

[Fungi4All]

> From: scdbac...@gmx.net
> To: debian-user@lists.debian.org
>> this conversation has gone viral itself.
> It is technically interesting to see what people think how stupid we
> are. I wonder if there is any other purpose than to make me wonder ?

Politically, the motive may be by some who will need the ground to push
an agenda. First you document a threat, you allow a crisis, then play the
card of the protector. Like an antivirus agency spreading a virus. So I
would be really cautious of any who would volunteer as moderators or
those who would promote a forum, like debian.uk is, where they have
to get copies of birth certificates 3 generations back to allow a member.

> Have a nice day :)
> Thomas

Have a great night
(AK)

Re: Installing Debian on an android device

[Fungi4All]

> From: delop...@gmail.com
> Fungi4All wrote:
>>> The hardware can not track your activities - it is the software
>>
>> I know that, but it can include capabilities for specific sw to take
>> advantage of.
>>
> To what extent it is different from your PC, which also can include those
> capabilities.

Just blind metaphysical faith that within the linux superfamily there would
be enough whistle blowers of the secrets shared with hw engineers that
it would become public knowledge. But, to support your statement, I got
a chill and cold sweat reading some of the publicized specs from Intel/Amd
processors. I mean the advertised capabilities :)

>>> Haha - this is a good one - I am just wondering when americans will raise
>>> up - you need a change over there - big change
>>
>> Don"t laugh so hard, your reality is not that far off no matter where you
>> are.
>>
> No but at least I am aware of it :)

10-4, the vast majority have chosen the facebook pill, brain numb by choice.
So, why blame poor innocent americans when no-one is better?

>> No, but it is designed specifically for android use. Whether something
>> else will also run or not is irrelevant. Whether whatever else will know
>> to take advantage of its capabilities in full or not is. Whether a door is
>> opened in networking to have external software exploit its hidden
>> capabilities is. All you can do is study the packets in/out.
> This is incorrect. It is not designed for specific OS, rather the OEM works
> close with the OS developer and shares information about the device, so the
> OS developer does not have to guess. IT is also the OS that keeps the doors
> open and not the hardware - you need to shift your view.

Well, I may not be fully capabable of understanding the details, but isn't there
some form of "soft"ware within its subsystem of hardware? What a chip will
respond to a circuit trigger is based on internal code of communication. I think
the key is in providing IDs of stuff, of writing, storing, and responding IDs.
The rest can be compiled externally. If among a crowd I ask for a doctor
and you say I MedLicense#939827164950 am a doctor I get suspicious!

 For scientific field work android seems very poor, while in idiotic
 gadgets and games they are unbelievably wealthy. So even a
 jailed vm of debian being able to run apps on the run maybe just
 what it may be good for. The only reason it ended up in my hands
 is that someone was really fed up with stalled applications after
 a year that the 4core system with 1/2Meg Ram had 0 value.
>>> hehe - android can not execute processes in parallel
>>
>> It is a clone of some unix. It had the capability and lost it. As far as
>> we know. Can we know?
> It is sh*t OS, this is what it is.

After meshing around a bit more with this pseudo debian environment
I am convinced that it is not worth my time and effort to deal with this.
I am taping it on top of my guitar amp to play mp3s as backing/practice
tracks and I think that it is the best it is good for.

> regards

Re: shadow spam (was Re: stop your mail)

[Thomas Schmitt]

Hi,

Fungi4All wrote:
> I remember 2 months ago I had received a response from what appeared
> as a list member responding to some spam that was sent by me to the list.

The first thing i checked on the current spam was that it is really
distributed by the list and not sent to me directly.
"Received:" headers like this one can be trusted if no other such headers
were added by my provider gmx.net:

  Received: from bendel.debian.org ([82.195.75.100]) by mx-ha.gmx.net
(mxgmx016 [212.227.15.9]) [...] for ;
Sun, 09 Jul 2017 11:51:20 +0200

(Of course anybody could add such a header to the mail when it gets
 sent. But then gmx.net would still add its own "Received:" header,)


> this conversation has gone viral itself.

It is technically interesting to see what people think how stupid we
are. I wonder if there is any other purpose than to make me wonder ?

Maybe it's Happy Recursion Week ? GNU is Not Unix !
Or it's a Fnord, meant to trigger a sleeping brain worm.


Joel Rees wrote:
> (1) These messages may be a sort of generator for phishing targets.

You mean that those who hit the "Smack Sender" button of their mail
app show up as flotsam here and can be harvested without reveiling
the harvester's mail address ?
(This theory would imply that the reflector senders are real people
 or their watchdog apps.)

Eek. That would mean we would really have to take measures to not
let appear most of the messages in subscriber mailboxes and archive.
If we let this continue then we create a commercial incentive to
flood us.


> they might be setting up a noise
> background against which to send steganographically encoded messages.

That's a good one.
We are testing ground for a novel low-bandwidth method to control
bot nets or remote spies.
Ten hops over iPads, Galaxies, or WinPhones would be nearly as
effective in hiding the sender as a Tor onion would be.


Have a nice day :)

Thomas

Re: Advice on Debian installation

[Sebastian Luna Valero]

Thanks All,

I am glad to report that Debian 9 was successfully installed on my laptop!

Removing Ubuntu at the partitioning stage and installing GRUB on the MBR
actually worked.

Best regards,
Sebastian

shadow spam (was Re: stop your mail)

[Joel Rees]

Can I suggest two possibilities not apparently being considered?

(1) These messages may be a sort of generator for phishing targets.
(This is not currently a likely scenario, but you want to consider it.)

(2) These might be either the body of a message sent by a spatter
steganography technique, or they might be setting up a noise
background against which to send steganographically encoded
messages.

I'd suggest a third, which is true tin-foil-hat stuff, but you who are into
conspiracy theories can work that out yourselves.

Whenever I see a sudden rise in odd-looking spam, I tend to
assume something like the second possibility.

https://en.wikipedia.org/wiki/Steganography

-- 
Joel Rees

One of these days I'll get someone to pay me
to design a language that combines the best of Forth and C.
Then I'll be able to leap wide instruction sets with a single #ifdef,
run faster than a speeding infinite loop with a #define,
and stop all integer size bugs with my bare cast.
http://defining-computers.blogspot.com/2017/06/reinventing-computers.html

More of my delusions:
http://reiisi.blogspot.com/2017/05/do-not-pay-modern-danegeld-ransomware.html
http://reiisi.blogspot.jp/p/novels-i-am-writing.html

Re: Installing Debian on an android device

[deloptes]

Fungi4All wrote:

>> The hardware can not track your activities - it is the software
> 
> I know that, but it can include capabilities for specific sw to take
> advantage of.
> 

To what extent it is different from your PC, which also can include those
capabilities.

>>> The latest interpretation of the bill of rights states that: you have
>>> the right to free speech as long as we know who is exercising the right
>>> and where we may find him/her in case we need to extract information at
>>> homeland.s basement, somewhere in nowhereland.
>> Haha - this is a good one - I am just wondering when americans will raise
>> up - you need a change over there - big change
> 
> Don't laugh so hard, your reality is not that far off no matter where you
> are.
> 

No but at least I am aware of it :)

>>> There have been leaks by android hardware engineers that there is so
>>> many backdoors engineered within these systems that it is virtually
>>> impossible to ever make it secure (orbot developers have admitted to
>>> this but not given up entirely). The goal of a portable pocket
>>> size open architecture open source system seems to be possible but
>>> it comes with a cost. Just a display for one of those Berkeley open
>>> boards costs as much as a late model android tablet. Getting up to
>>> i-phone cost with something that will end up being 4 times as big and
>>> heavy is a sport for the affluent.
>> Again mixing up hardware with software - the software is android - not
>> the hardware
> 
> No, but it is designed specifically for android use. Whether something
> else will also run or not is irrelevant. Whether whatever else will know
> to take advantage of its capabilities in full or not is. Whether a door is
> opened in networking to have external software exploit its hidden
> capabilities is. All you can do is study the packets in/out.
> 

This is incorrect. It is not designed for specific OS, rather the OEM works
close with the OS developer and shares information about the device, so the
OS developer does not have to guess. IT is also the OS that keeps the doors
open and not the hardware - you need to shift your view.

>>> For scientific field work android seems very poor, while in idiotic
>>> gadgets and games they are unbelievably wealthy. So even a
>>> jailed vm of debian being able to run apps on the run maybe just
>>> what it may be good for. The only reason it ended up in my hands
>>> is that someone was really fed up with stalled applications after
>>> a year that the 4core system with 1/2Meg Ram had 0 value.
>> hehe - android can not execute processes in parallel
> 
> It is a clone of some unix. It had the capability and lost it. As far as
> we know. Can we know?

It is sh*t OS, this is what it is.

regards

Re: How to gain control over the system?

[Fungi4All]

> From: david...@freevolt.org
> To: debian-user@lists.debian.org
> As they say[1],[2],[3], do not use a live image for installs.
> 1. https://lists.debian.org/debian-user/2017/06/msg00723.html
> 2. https://lists.debian.org/debian-user/2017/06/msg00740.html
> 3. https://lists.debian.org/debian-user/2017/06/msg00755.html

My experience with live images is that they include the installer and
a live image. The gui within the live system most usually runs into
errors, while the installer from the initial grub-like menu works just like the
netinstall system. I suspect the installer without booting the live
system has maximum resources available, while the live system
even as idle requires 15-20% of resources to run the installation
gui.

Re: stop your mail

[Fungi4All]

> UTC Time: July 9, 2017 9:41 AM
> From: scdbac...@gmx.net
> To: debian-user@lists.debian.org
> Hi,
> Andy Smith wrote:
>> I don"t think they care who receives the blowback.
> Just for sports i bet on the intention to annoy us and possibly the
> reflector mailers.
> (I am still undecided whether the reflectors are real.)
> I am subscribed to several lists. Among them only debian-user gets
> this special kind of spam. Do we have a dedicated enemy ?
> Damn. So close and still not enough:
> X-Spam-Status: No, score=3.8 required=4.0 tests=FREEMAIL_FROM,GENDER,
> HTML_MESSAGE,RCVD_IN_DNSWL_LOW,
> THREADTOPIC autolearn=no autolearn_force=no
> version=3.4.0
> ...
> Date: Sun, 9 Jul 2017 11:12:43 +0200 (CEST)
> I wonder how many of these got caught with scores above 4.0 already.
> Have a nice day :)
> Thomas

I remember 2 months ago I had received a response from what appeared
as a list member responding to some spam that was sent by me to the list.
The response was something like
>
>
what?
So I fell for it and responded to this and the list telling everyone I had not
sent such email, or it didn't really come from my system. People were
asking me for headers where all I got was a message of the fake response
with minimal headers.
Maybe at the time they were fishing for how the mailist worked. But this
conversation has gone viral itself.

Re: stop your mail

[tomas]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On Sun, Jul 09, 2017 at 11:41:29AM +0200, Thomas Schmitt wrote:
> Hi,
> 
> Andy Smith wrote:
> > I don't think they care who receives the blowback.
> 
> Just for sports i bet on the intention to annoy us and possibly the
> reflector mailers.
> (I am still undecided whether the reflectors are real.)
> 
> I am subscribed to several lists. Among them only debian-user gets
> this special kind of spam. Do we have a dedicated enemy ?
> 
> 
> Damn. So close and still not enough:
> 
>   X-Spam-Status: No, score=3.8 required=4.0 tests=FREEMAIL_FROM,GENDER,
>   HTML_MESSAGE,RCVD_IN_DNSWL_LOW,
>   THREADTOPIC autolearn=no autolearn_force=no
>   version=3.4.0
>   ...
>   Date: Sun, 9 Jul 2017 11:12:43 +0200 (CEST)
> 
> I wonder how many of these got caught with scores above 4.0 already.

I regularly bounce those to report-lists...@lists.debian.org. Perhaps
the filters get trained on those...

Cheers
- -- tomás
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.12 (GNU/Linux)

iEYEARECAAYFAllh/qUACgkQBcgs9XrR2kan8QCfVreWcWnqBbYIzJwOrK/oa5jF
0asAnA9LE5biwftk6/0cvU9CSfbaufbj
=uckk
-END PGP SIGNATURE-

Re: How to gain control over the system?

[Dejan Jocic]

On 09-07-17, Anders Andersson wrote:
> On Sun, Jul 9, 2017 at 12:51 AM, Fungi4All  wrote:
> 
> > On Sat, 2017-07-08 at 23:57 +0200, Kaj Persson wrote:
> >
> > > But now I discovered an issue, I cannot manage my desktop. I have
> > > always at the previous installations, and they are quite many now, been
> > > advised to, for security reason, leave the root password unset, which
> > causes
> > > the root account go passive, and for all tasks where I need root
> > > authority I  go via su/sudo.
> >
> >
> > It is a bad idea despite of what security gurus may advise.  You may lose
> > your system
> > and never get it back.
> >
> 
> 
> It's an even worse idea to listen to people on the internet who ignore
> "security gurus" based on rumours. You can easily restore or change the
> root password if it's lost or unset.

Leaving root password unassigned for "security" reasons is silly.
Heaving, or not heaving root account assigned does not make your system
any more secure. For some things you do need root account. Those systems
that use sudo only approach ( read Ubuntu and derivates ) have sulogin
patched to allow single user mode, for example. And it is made so on
Ubuntu out of fear that new users attracted to Linux will mess up things
more if they have access to root account. Not that it stopped people to
be people and to mess things up equally successful with sudo account. As
for those "security gurus", who are they? Real gurus? Or just people
repeating what they've read somewhere with little to no understanding
what they've read?

Re: Wow, non mi sarei mai aspettata di dirlo ad un ragazzo appena incontrato. Samantha

[Antonio]

Dire cosa? 

Il 9 Luglio 2017 11:11:48 CEST, Samantha Madcash  ha 
scritto:
>
>Hai cambiato il mio modo di essere. 
>http://bit.ly/2t0Va8a

-- 
Inviato dall'app Tiscali.it.

Re: How to gain root control?

[Fungi4All]

> From: pipat...@gmail.com
> To: Debian users mailing list 
>
> On Sun, Jul 9, 2017 at 12:51 AM, Fungi4All  wrote:
>
>> On Sat, 2017-07-08 at 23:57 +0200, Kaj Persson wrote:
>>
 But now I discovered an issue, I cannot manage my desktop. I have
 always at the previous installations, and they are quite many now, been
 advised to, for security reason, leave the root password unset, which 
 causes
 the root account go passive, and for all tasks where I need root
 authority I go via su/sudo.
>>
>> It is a bad idea despite of what security gurus may advise. You may lose 
>> your system
>> and never get it back.
>
> It's an even worse idea to listen to people on the internet who ignore 
> "security gurus" based on rumours. You can easily restore or change the root 
> password if it's lost or unset.

The last few times I remember here people saying they were running a single 
sudo user and no-root they
had change their mind about this choice for the hustle of doing what you say it 
is done "easily".
I don't recall you providing them with a procedure of how to do it, so why 
don't you do it now?
You are not allowed to use the term "it depends" in your explanation :)

Re: stop your mail

[Thomas Schmitt]

Hi,

Andy Smith wrote:
> I don't think they care who receives the blowback.

Just for sports i bet on the intention to annoy us and possibly the
reflector mailers.
(I am still undecided whether the reflectors are real.)

I am subscribed to several lists. Among them only debian-user gets
this special kind of spam. Do we have a dedicated enemy ?


Damn. So close and still not enough:

  X-Spam-Status: No, score=3.8 required=4.0 tests=FREEMAIL_FROM,GENDER,
  HTML_MESSAGE,RCVD_IN_DNSWL_LOW,
  THREADTOPIC autolearn=no autolearn_force=no
  version=3.4.0
  ...
  Date: Sun, 9 Jul 2017 11:12:43 +0200 (CEST)

I wonder how many of these got caught with scores above 4.0 already.


Have a nice day :)

Thomas

Re: debian wiki

[tomas]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On Sat, Jul 08, 2017 at 09:18:25PM -0300, Eduardo M KALINOWSKI wrote:
> On 8 de julho de 2017 17:16, Fungi4All wrote:
> > I thought only sites for idiots like gloogloo pick on their own the 
> > language of
> > the menus based on locale/ip even though the language is nowhere used on
> > this pc.  But debian-wiki will pick and not reverse the choice?  Even though
> > I choose english the drop boxes and menus are an another language based
> > on IP.  This makes life hard for traveling users.
> 
> It's probably based not on your IP, but on headers sent by your browser
> (Accept-Language or something like that). There should be somewhere in
> the settings where you can change that. At least on Firefox there is. 

I can confirm that (tested on https://wiki.debian.org). Depending on
the language preferences set on my browser (en resp. fr), I stay on
the default, English or get redirected to the French version, /fr/.

So I don't see any IP based language choice on wiki.debian.org, just
one based on HTTP content negotiation (and thus on client choice), as
it Should Be (TM).

DISCLAIMER: I only tested without Javascript. I (mostly) browse with
Javascript disabled.

@Fungi4All: if you are interested in constructive discussions and not
just in ranting off, please describe what you are seeing, at least
with an URL for people to try to reproduce what you are seeing.

Regards
- -- tomás
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.12 (GNU/Linux)

iEYEARECAAYFAllh+TsACgkQBcgs9XrR2kalrQCcCEgBkzpBp4nGK0yoNF1SJpXi
9OwAnRMr3KTj3hRgKjjJy0AQtGTCyCdO
=Lm6B
-END PGP SIGNATURE-

Re: Wow, ik verwacht nooit tegen een man te zeggen dat ik hem leuk vindt op het eerste gezicht. Emma

[peter . borgers]

Van: "Emma Budusanu"  
Aan: debian-user@lists.debian.org 
Verzonden: Zondag 9 juli 2017 10:06:29 
Onderwerp: Wow, ik verwacht nooit tegen een man te zeggen dat ik hem leuk vindt 
op het eerste gezicht. Emma 



Je hebt dit verandert in me. 
[ http://bit.ly/2t0DY2O | http://bit.ly/2t0DY2O ] 

Re: Wow, ik verwacht nooit tegen een man te zeggen dat ik hem leuk vindt op het eerste gezicht. Emma

[peter . borgers]

Van: "Emma Budusanu"  
Aan: debian-user@lists.debian.org 
Verzonden: Zondag 9 juli 2017 10:06:29 
Onderwerp: Wow, ik verwacht nooit tegen een man te zeggen dat ik hem leuk vindt 
op het eerste gezicht. Emma 



Je hebt dit verandert in me. 
[ http://bit.ly/2t0DY2O | http://bit.ly/2t0DY2O ] 

Re: How to gain control over the system?

[Anders Andersson]

On Sun, Jul 9, 2017 at 12:51 AM, Fungi4All  wrote:

> On Sat, 2017-07-08 at 23:57 +0200, Kaj Persson wrote:
>
> > But now I discovered an issue, I cannot manage my desktop. I have
> > always at the previous installations, and they are quite many now, been
> > advised to, for security reason, leave the root password unset, which
> causes
> > the root account go passive, and for all tasks where I need root
> > authority I  go via su/sudo.
>
>
> It is a bad idea despite of what security gurus may advise.  You may lose
> your system
> and never get it back.
>


It's an even worse idea to listen to people on the internet who ignore
"security gurus" based on rumours. You can easily restore or change the
root password if it's lost or unset.

Re: Installing Debian on an android device

[Fungi4All]

> From: delop...@gmail.com
> Fungi4All wrote:
>> On a previous question of why I hate such devices I think Joe has
>> answered for me in most counts. I really believe they were designed
>> from scratch to monitor every minute of anyone"s life. Just in case
>> at any point in the future some authority may want to back track the
>> live profile of a certain state or corporate enemy. Which is
>> understandable for industry to be exchanging favors and gifts, as this is
>> the nature of the modern reverse welfare state.
> The hardware can not track your activities - it is the software

I know that, but it can include capabilities for specific sw to take advantage 
of.

>> The latest interpretation of the bill of rights states that: you have the
>> right to free speech as long as we know who is exercising the right and
>> where we may find him/her in case we need to extract information at
>> homeland.s basement, somewhere in nowhereland.
> Haha - this is a good one - I am just wondering when americans will raise
> up - you need a change over there - big change

Don't laugh so hard, your reality is not that far off no matter where you are.

>> There have been leaks by android hardware engineers that there is so
>> many backdoors engineered within these systems that it is virtually
>> impossible to ever make it secure (orbot developers have admitted to
>> this but not given up entirely). The goal of a portable pocket
>> size open architecture open source system seems to be possible but
>> it comes with a cost. Just a display for one of those Berkeley open
>> boards costs as much as a late model android tablet. Getting up to
>> i-phone cost with something that will end up being 4 times as big and
>> heavy is a sport for the affluent.
> Again mixing up hardware with software - the software is android - not the
> hardware

No, but it is designed specifically for android use. Whether something else
will also run or not is irrelevant. Whether whatever else will know to take
advantage of its capabilities in full or not is. Whether a door is opened
in networking to have external software exploit its hidden capabilities is.
All you can do is study the packets in/out.

>> For scientific field work android seems very poor, while in idiotic
>> gadgets and games they are unbelievably wealthy. So even a
>> jailed vm of debian being able to run apps on the run maybe just
>> what it may be good for. The only reason it ended up in my hands
>> is that someone was really fed up with stalled applications after
>> a year that the 4core system with 1/2Meg Ram had 0 value.
> hehe - android can not execute processes in parallel

It is a clone of some unix. It had the capability and lost it. As far as we 
know.
Can we know?

Re: stop your mail

[Andy Smith]

Hello,

On Sat, Jul 08, 2017 at 07:50:38PM +0200, Nicolas George wrote:
> These messages are the spam, themselves. The pretend "leave me
> alone" prologue is just to disguise that status and attract your
> attention until you read the quoted text.

I think it is far more likely that these people are responding to
spam that has been sent to them with the list's address as the from
address. The recipients do not know or care that the from address of
an email is not trustworthy¹, nor that they should not respond to
spam, so they just reply to express their anger.

I further hypothesise that this is not actually targeted behaviour
to inconvenience the mailing list specifically. I suspect that
massive lists of real email addresses have been harvested from
public mailing list archives and compromised address books etc and
these are used as from addresses on a random basis. Though it would
have to be one address per spam run rather than a different address
for each individual email, as these seem to come in bursts.

The spammers' motivation is to use an address that is not associated
with them but is a real address so cannot be easily blocked on the
basis of from address alone.

I don't think they care who receives the blowback.

Cheers,
Andy

¹ barring any of the other trusted identity schemes like SPF, DKIM,
  DMARC or crypto signed email.

-- 
https://bitfolk.com/ -- No-nonsense VPS hosting

Please consider the environment before reading this e-mail.
 — John Levine

PulseAudio (Some users get sound, orthers do not)

[Marc Shapiro]

At some point in the past I was having sound issues which I traced to 
pulseaudio.  I uninstalled pulseaudio and everything was fine.  Then 
Firefox decided to require pulseaudio and my sound (in Firefox) went away.


I reinstalled pulseaudio and eventually got it working (I thought).  
Well, it was working for me, but not for my wife and daughter, 
apparently.  Both of them have recently let me know that they have been 
without sound for an indeterminate period of time.


This morning, I went to my wife's login and ran:

pulseaudio --kill

rm ~/.config/pulse

pulseaudio --start

And that worked.  There were some warnings about not being able to find 
the cookie file, which was understandable since I had just rm'd the 
configuration directory.  But pulseaudio recreated the directory and 
needed files and seems to be happy.  At least I am able to get sound 
from the command line, as well as from Firefox.



When I tried to do the same thing under my daughter's login, however, I 
get the warnings about the cookie file and ~/.config/pulse is NOT 
recreated, so still no sound anywhere.  I have checked the permissions 
of my daughter's  ~/.config/pulse directory and it is 644 with her user 
as owner and group.  That matches ~/.config in my home directory and my 
wife's.



So why does pulseaudio not create the files it needs, like it did for me 
and my wife?  Is there something else that I am missing? Any help will 
be appreciated.



Marc