Warning: Debian/testing full-upgrade removes security packages!

[Hans]

Hi folks,

be warned: Wheh you do apt full-upgrade, then most security tools, we rely on, 
are deinstallesd. These are rkhunter, chrootkit, autopsy, tripwire, 
needrestart and tiger. Also forensics-full and forensics-all are deinstalled 
(however, this might have other reasons).

This is no good behaviour, and it looks for me like the preparation for a 
global attack on debian. 

Maybe it is wanted by the maintainers, but to remove suddenly almost all of 
the most effective tools looks very, very fishy to me!

Keep your eyes open, the NSA is everywhere.

Best regards

Hans

Re: Thunderbird always launching 2 copies.

[Gene Heskett]

On Sunday 15 July 2018 00:54:33 Octopus Octopus wrote:

> Heyo,
>
>
> I'm having this confusing bug where I launch thunderbird and it
> instead launches 2 copies of it, I originally had an extra .desktop
> file for the thunderbird-beta deleting it had no effect.

This is possibly not a bug, does it happen with any other app?  If so, 
its a sign the mouse may be dying due to a bad solder joint under a 
switch.  Try a new mouse?


-- 
Cheers, Gene Heskett
--
"There are four boxes to be used in defense of liberty:
 soap, ballot, jury, and ammo. Please use in that order."
-Ed Howdershelt (Author)
Genes Web page 

Thunderbird always launching 2 copies.

[Octopus Octopus]

Heyo,


I'm having this confusing bug where I launch thunderbird and it instead
launches 2 copies of it, I originally had an extra .desktop file for the
thunderbird-beta deleting it had no effect.

Re: Wrapping lines, was Re: BTRFS and debian

[Zenaan Harkness]

On Sat, Jul 14, 2018 at 10:10:01PM -0500, David Wright wrote:
> On Sat 14 Jul 2018 at 19:50:03 (+1000), Zenaan Harkness wrote:
> > On Fri, Jul 13, 2018 at 05:59:58PM -0700, David Christensen wrote:
> > > On 07/13/18 16:36, Zenaan Harkness wrote:
> > > > On Thu, Jul 12, 2018 at 07:53:01PM -0700, David Christensen wrote:
> > > > > While a brutal analogy, it makes a point that can be applied to all
> > > > > computers -- devise strategies, invest in resources, and implement
> > > > > procedures that facilitate system roll-out, migration, and disaster
> > > > > recovery.  This is a goal I have pursued over the years.
> > > > 
> > > > zfs send (and of course filesystem snaphotting) ftw!
> > > > (I'm just learning about zfs btw, intending a home rollout in the
> > > > coming weeks.)
> > > 
> > > ZFS is killer technology.  zfs-fuse is sawed off.  ZOL rocks, but the 
> > > license keeps it out of Debian.  We'll see if
> > > and when btrfs catches up.
> > 
> > (Do you know why your mail client (or perhaps server) wraps at 115
> > chars? 72 or 69 or even 80 would be much better...)
> 
> Your own mail client is doing this. You need to find out how to set
> the wrapping value. In mutt, you might add the line
> 
> set   reflow_wrap=80

Sweet!

Very informative. Daŋkə schön :)


> to your configuration file. (Seems unlikely though, as your client
> appears not to report itself, as mutt would do.)
> 
> What's actually contained in David's email is:
> 
> "ZFS is killer technology.  zfs-fuse is sawed off.  ZOL rocks, but the "
> "license keeps it out of Debian.  We'll see if and when btrfs catches up."
> 
> (I put the quotation marks round each line.) Note the space at the end
> of the first line, which indicates that the next line is a continuation
> of this one.
> 
> Why is this happening? Because David's email header contains:
> 
> Content-Type: text/plain; charset=utf-8; format=flowed
> 
> It's the format=flowed that's making *your* email client reflow
> the text as required, but unfortunately to ~115 character lines
> rather than what you would prefer.
> 
> Cheers,
> David.
> 

Wrapping lines, was Re: BTRFS and debian

[David Wright]

On Sat 14 Jul 2018 at 19:50:03 (+1000), Zenaan Harkness wrote:
> On Fri, Jul 13, 2018 at 05:59:58PM -0700, David Christensen wrote:
> > On 07/13/18 16:36, Zenaan Harkness wrote:
> > > On Thu, Jul 12, 2018 at 07:53:01PM -0700, David Christensen wrote:
> > > > While a brutal analogy, it makes a point that can be applied to all
> > > > computers -- devise strategies, invest in resources, and implement
> > > > procedures that facilitate system roll-out, migration, and disaster
> > > > recovery.  This is a goal I have pursued over the years.
> > > 
> > > zfs send (and of course filesystem snaphotting) ftw!
> > > (I'm just learning about zfs btw, intending a home rollout in the
> > > coming weeks.)
> > 
> > ZFS is killer technology.  zfs-fuse is sawed off.  ZOL rocks, but the 
> > license keeps it out of Debian.  We'll see if
> > and when btrfs catches up.
> 
> (Do you know why your mail client (or perhaps server) wraps at 115
> chars? 72 or 69 or even 80 would be much better...)

Your own mail client is doing this. You need to find out how to set
the wrapping value. In mutt, you might add the line

set reflow_wrap=80

to your configuration file. (Seems unlikely though, as your client
appears not to report itself, as mutt would do.)

What's actually contained in David's email is:

"ZFS is killer technology.  zfs-fuse is sawed off.  ZOL rocks, but the "
"license keeps it out of Debian.  We'll see if and when btrfs catches up."

(I put the quotation marks round each line.) Note the space at the end
of the first line, which indicates that the next line is a continuation
of this one.

Why is this happening? Because David's email header contains:

Content-Type: text/plain; charset=utf-8; format=flowed

It's the format=flowed that's making *your* email client reflow
the text as required, but unfortunately to ~115 character lines
rather than what you would prefer.

Cheers,
David.

Re: version control systems [was BTRFS and debian]

[Zenaan Harkness]

On Sat, Jul 14, 2018 at 08:15:01PM -0400, Roberto C. Sánchez wrote:
> After a couple of years I was so blown away by how much [git] had
> made my experience as a software engineer better

Ack.

After CVS, I first learned bk and then TLA around 2003.  bk left me
pining, and when they shut down access arbitrarily, I dedicated my
efforts to TLA.

Early git was pretty rough, but the design was simply superior to
everything before it.

Then for a few years I did no development and was stuck on Windows
XP. I eventually got cygwin and a shared git server happening on
that, before falling thankfully back into the arms of Debian.

Git's power, from its design, made the learning curve a pittance of a
price to pay.

Some folks say it evolved rather than "was designed", but that's
simply not true - from the earliest days Linus implemented something
fundamentally new, and better - managed content or an "object
database", objects indexed by their hash, and the index or "staging
area" or [dir] cache.

That core is logically simple, and technically clean.

The rest of the porcelain that has come since then just makes it
sweet as bro, sweet as :)

My stumbling block with my particular cross-repo mirroring was two
things - I kept trying to avoid it but kept doing it, and really
learning fetch refspecs to allow me to do something quite neat.

Also, cross-local repo mirroring is actually more/better than backups
- it's a relatively complex thing, and it can be achieved with just a
few config lines, which is a testament to modern DVCSes.

Enjoy,

Stretch 9.5 amd64 kernel panic

[Chuck Zmudzinski]

Hello,

I just updated my Debian stretch system using apt-get dist-upgrade to 
stretch

9.5, which uses the new 4.9.0-7 kernel. On amd64, the kernel comes from the
linux-image-4.9.0-7-amd64_4.9.110-1_amd64.deb binary package. It was just
released about a week ago. The timestamp on the .deb file is July 6, 2018.

I am running stretch on a Haswell Intel 4590S processor and ASROCK B85M Pro4
motherboard as a Dom0 on the up-to-date Xen 4.8 hyervisor for stretch, or as
a DomU on the same machine and hypervisor for stretch. In both cases, with
the new 4.9.0-7 amd64 kernel, the system enters an endless cycle of kernel
panic -> reboot -> kernel panic -> reboot ...

I also have a Debian stretch 32-bit Xen DomU system and the new 4.9.0-7
i686-pae kernel boots the Debian 9.5 DomU normally on the same hardware.
Only the new amd64 kernel has the problem, not the new i686-pae kernel.

So to run the new Debian stretch 9.5 I need to set grub to boot the 
previously

working kernel, the up-to-date 4.9.0-6 version, for amd64. For i686-pae,
I can use the new 4.9.0-7 version of the kernel.

I captured a little bit of what was written to the xen console when the 
kernel

panics which is shown below.

Anyone else seen this?

Thanks,

Chuck

[    0.120071] dmi: Firmware registration failed.
[    1.176611] dmi-sysfs: dmi entry is absent.
[    1.189531] general protection fault:  [#1] SMP
[    1.189538] Modules linked in:
[    1.189543] CPU: 1 PID: 1 Comm: init Not tainted 4.9.0-7-amd64 #1 
Debian 4.9.110-1

[    1.189549] task: 8800bac08040 task.stack: c90040628000
[    1.189553] RIP: e030:[] [] 
ret_from_fork+0x2d/0x70

[    1.189562] RSP: e02b:c9004062bf50  EFLAGS: 00010006
[    1.189565] RAX: 0002dd603000 RBX: 816076d0 RCX: 
ea0002ebafdf
[    1.189570] RDX: 0002 RSI: 0002 RDI: 
c9004062bf58
[    1.189574] RBP:  R08:  R09: 
8800b7a76000
[    1.189579] R10: 8080808080808080 R11: fefefefefefefeff R12: 

[    1.189583] R13:  R14:  R15: 

[    1.189592] FS:  () GS:8800bbf0() 
knlGS:

[    1.189597] CS:  e033 DS:  ES:  CR0: 80050033
[    1.189601] CR2: 7fffb09bdb79 CR3: b5602000 CR4: 
00042660

[    1.189607] Stack:
[    1.189609]     

[    1.189617]     

[    1.189625]     


[    1.189635] Call Trace:
[    1.189640] Code: c7 e8 b8 fe a8 ff 48 85 db 75 2f 48 89 e7 e8 5b ed 
9e ff 50 90 0f 20 d8 65 48 0b 04 25 e0 02 01 00 78 08 65 88 04 25 e7 02 
01 00 <0f> 22 d8 58 66 0f 1f 44 00 00 e9 c1 07 00 00 4c 89 e7 eb 11 e8

[    1.189708] RIP  [] ret_from_fork+0x2d/0x70
[    1.189714]  RSP 
[    1.189719] ---[ end trace ddfc12432c0049a4 ]---
[    1.189798] Kernel panic - not syncing: Attempted to kill init! 
exitcode=0x000b

[    1.189798]
[    1.189811] Kernel Offset: disabled

Re: version control systems [was BTRFS and debian]

[Roberto C . Sánchez]

On Sat, Jul 14, 2018 at 12:46:23PM -0700, David Christensen wrote:
> On 07/14/18 02:37, Zenaan Harkness wrote:
> > I've completely replaced CVS with git these days - for all my
> > hacking of course, as well as parts of home/ - and I finally figured
> > out how to have a inter-system (or -drive) "git update" work
> > "properly" by which I mean: ...
> > This took me a few attempts, a coupla bungles and many googoyle
> > searches and man page readings, over a year and half, before I
> > finally got it right. ...
> 
> Yowza.  That looks like a lot of difficult Git tweaking.
> 
> 
> CVS meets my needs OOTB.
> 
> 
> MKS Source Integrity was my favorite version control system:
> 
> https://en.wikipedia.org/wiki/MKS_Inc.
> 
> Conceptually, it was very much like CVS, but with a top-level manifest
> ("project file"?) that listed all the member files and their version
> numbers.  The tools made it easy to diff, merge, etc., various versions of a
> project.
> 
> 
> Is there a FOSS version control system similar to MKS SI?
> 
I took a look at the Wikipedia article and nothing equivalent comes to
mind.

However, I will point out that since the tools was initially based on
RCS, it is unlikely to be feature competitive with modern (read:
distributed) version control systems.

I actually started learning about version control with CVS in college,
then when Subversion came out I was convinced that I would never need
another version control system.  I hung on to Subversion until long
after the rest of the world had gone to Git and Mercurial.  Eventually,
out of necessity I started to transition to Git and Mercurial (the F/OSS
projects I was working on all had moved to Git, and one of my clients
was a Mercurial shop).  Still, I operated Git and Mercurial exactly as I
had Subversion.  A point came where I could not hold out any longer and
I had to start learning about branching and merging (the main thing I
had avoided the whole time).  I eventually unlearned what I had learned
and really came to grasp the disrtibuted model and the way tools like
Git and Mercurial handle branching and merging (I know the mechanics are
different, but the concepts are the same).

In any event, I felt like had gone from using a hand saw to using a
chainsaw like a handsaw, moving it back and forth manually to cut (i.e.,
trying to use Git and Mercurial without branching and merging), to
finding out how to gas up and start the chainsaw to use it how it was
intended.

After a couple of years I was so blown away by how much it had made my
experience as a software engineer better, that I gave a couple of talks
about it at some Linux fests.

This is not really what you were asking, but I thought it might be
helpful for you and/or others to hear from someone who held out on old
school centralized version control for far too long.

Regards,

-Roberto
-- 
Roberto C. Sánchez

Re: BTRFS and debian

[Pascal Hambourg]

Le 14/07/2018 à 21:29, David Christensen a écrit :

On 07/14/18 02:04, Pascal Hambourg wrote:

Yet another reason to not use logical partitions and prefer GPT if you 
need more than 4 partitions.


GPT is nice; I use it when I want a 2+ TB partition (such as my backup/ 
archive/ image drives).  But I have several older computers, so I prefer 
solutions that work with BIOS/MBR.


GPT works on all my old BIOS computers, such as the one from 2005 I am 
using to write this. I use GPT by default on any disk unless I have a 
strong reason no to. The only trick I need to use sometimes is to set 
the boot flag in the protective MBR, when a broken BIOS requires this 
flag to be set.

Re: ifconfig/ ifupdown/ ip -

[deloptes]

john doe wrote:

> I would use mapping stanza instead:
> 
> http://manpages.ubuntu.com/manpages/trusty/man5/interfaces.5.html

+1

ZFS [was BTRFS and debian]

[David Christensen]

On 07/14/18 02:50, Zenaan Harkness wrote:
> On Fri, Jul 13, 2018 at 05:59:58PM -0700, David Christensen wrote:
>> ZFS is killer technology.  zfs-fuse is sawed off.  ZOL rocks, but 
the license keeps it out of Debian.  We'll see if

>> and when btrfs catches up.
>
> (Do you know why your mail client (or perhaps server) wraps at 115
> chars? 72 or 69 or even 80 would be much better...)

I use the package "thunderbird" on Debian 9.4, configured OOTB.


> In stretch I see:
>
> zfs-dracut zfs-dkms zfs-initramfs zfsutils-linux
>
> however they're all in "contrib" rather than main.

Once installed, do they provide the same level of integration as all the 
other Debian file systems?  The last time I tried ZOL on Debian (6?), it 
was a source tarball from LLNL.  I needed to write startup and shutdown 
scripts.  This was somewhat complicated by layering ZOL on top of LUKS.



> Can someone explain if there's an -actual- non-free dependency that
> these packages have, or if it is just the somewhat-incompatibility
> between ZFS CDDL and Linux GPL?

AFAIK, the latter is the deal-breaker -- the GPL and CDDL prevent Linux 
distributors, such as Debian, from integrating ZOL into the Linux kernel 
OOTB.  The end user must go the last mile.



> Since at least zfs-fuse dispels the "is bound to Linux kernel" part.

The last time I tried zfs-fuse, it was a couple ZFS versions old, was 
lacking some features I wanted (compression, dedup?), and was a fraction 
the speed of ZOL.



David

version control systems [was BTRFS and debian]

[David Christensen]

On 07/14/18 02:37, Zenaan Harkness wrote:
> I've completely replaced CVS with git these days - for all my
> hacking of course, as well as parts of home/ - and I finally figured
> out how to have a inter-system (or -drive) "git update" work
> "properly" by which I mean: ...
> This took me a few attempts, a coupla bungles and many googoyle
> searches and man page readings, over a year and half, before I
> finally got it right. ...

Yowza.  That looks like a lot of difficult Git tweaking.


CVS meets my needs OOTB.


MKS Source Integrity was my favorite version control system:

https://en.wikipedia.org/wiki/MKS_Inc.

Conceptually, it was very much like CVS, but with a top-level manifest 
("project file"?) that listed all the member files and their version 
numbers.  The tools made it easy to diff, merge, etc., various versions 
of a project.



Is there a FOSS version control system similar to MKS SI?


David

Re: BTRFS and debian

[David Christensen]

On 07/14/18 02:04, Pascal Hambourg wrote:

Le 14/07/2018 à 02:49, David Christensen a écrit :

# file -s /dev/sda1
/dev/sda1: BTRFS Filesystem label "po_boot", sectorsize 4096, nodesize 
16384, leafsize 16384, UUID=6ff0dd1d-8d46-454b-bb35-a09afc47145a, 
65490944/999292928 bytes used, 1 devices


2018-07-13 17:39:51 root@po ~
# file -s /dev/sda2
/dev/sda2: data

2018-07-13 17:39:59 root@po ~
# file -s /dev/sda3
/dev/sda3: LUKS encrypted file, ver 1 [aes, xts-plain64, sha256] UUID: 
0152d2e2-4cfb-42c4-a121-6fb832962e47


The output for /dev/sda2 is not very informative (e.g. clues that it 
has dm-crypt, random key, and swap).


As expected. /dev/sda2 contains raw encrypted data which appear as 
random data. It is the purpose of encryption that one cannot see the 
real contents.


Okay.


Beware that unlike a UUID or LABEL, a PARTUUID or PARTLABEL is stored 
in the partition table, not in the partition data.
Also note that a DOS partition table entry does not contain a UUID 
nor LABEL, and the PARTUUID is artificially built by combining the 
32-bit "disk identifier" field in the MBR and the partition number. 
So if the partition number or the disk identifier changes, the 
PARTUUID changes.


In short :
- if you move the disk contents (including the partition table) to 
another disk, the PARTUUID is preserved ;
- if you move the partition contents to another partition, the 
PARTUUID is not preserved.


Thanks for the warning.  My typical use-case is to move the entire 
system drive image between various 16+ GB devices, so PARTUUID should 
work.


I forgot to mention another case, although you are not concerned :

- logical partitions numbers and synthetic PARTUUIDs may change when 
creating or deleting another logical partition on the same disk. 


Fortunately, I only need 3 partitions on my system drives.  I have 
always used primary partitions.



Yet 
another reason to not use logical partitions and prefer GPT if you need 
more than 4 partitions.


GPT is nice; I use it when I want a 2+ TB partition (such as my backup/ 
archive/ image drives).  But I have several older computers, so I prefer 
solutions that work with BIOS/MBR.


David

Re: Unix.Trojan.Vali-6606621-0 FOUND

[tomas]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On Sat, Jul 14, 2018 at 05:50:19PM +0200, Hubert Hauser wrote:
> Hello!
> 
> Here's my /etc/apt/sources.list:

[...]

> I don't download anything outside from above lists.

Then debsum's your friend (if you trust Debian, that is).

Cheers
- -- tomás
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.12 (GNU/Linux)

iEYEARECAAYFAltKR9UACgkQBcgs9XrR2kY8VgCfUQJfCSTXfzSJOVpneUu2nMn+
84QAniVJ/YNdjbfYVVciP1wqDhMB0wS1
=TVsG
-END PGP SIGNATURE-

Re: Unix.Trojan.Vali-6606621-0 FOUND

[Ric Moore]

On 07/14/2018 11:50 AM, Hubert Hauser wrote:

Hello!


Please don't top post. Ric


--
My father, Victor Moore (Vic) used to say:
"There are two Great Sins in the world...
..the Sin of Ignorance, and the Sin of Stupidity.
Only the former may be overcome." R.I.P. Dad.
http://linuxcounter.net/user/44256.html

HP ProLiant ML350p Gen8 Hot Plug 6 LFF - Is Jessie or Stretch ok?

[Bernie Elbourn]

Hi

I have one of these running Wheezy - been stable for years without issue. It also has original firmware etc. Yep - needs 
updating


Has anyone got one of these running Jessie, or Stretch OK ... Is/was there any 
pain?

Debian is actually safely on a sata ssd - the raid array holds all the data in 
logical volumes.

Thanks,

Bernie

Re: Unix.Trojan.Vali-6606621-0 FOUND

[Hubert Hauser]

Hi!

I would like to include results from VirusTotal:

https://www.virustotal.com/#/file/3a17685ad710bcec4cb19238a60cc48675f1af5526e3b254dc092e8404f33e4f/detection

https://www.virustotal.com/#/file/939f9091292841910b59ba626a17070c0d2b823b6915ae3fbdbfabdc12eb1f06/detection

Only ClamAV detects virus. It seems for me like false positive. Is
ClamAV enough good antivirus at the days?

--
Best wishes,
Hubert Hauser.

On 14/07/18 17:50, Hubert Hauser wrote:
> Hello!
>
> Here's my /etc/apt/sources.list:
>
> deb http://deb.debian.org/debian stable main
> deb-src http://deb.debian.org/debian stable main
> deb http://deb.debian.org/debian stable-updates main
> deb-src http://deb.debian.org/debian stable-updates main
> deb http://security.debian.org/ stable/updates main
> deb-src https://security.debian.org/ stable/updates main
>
> I don't download anything outside from above lists.
>
> --
> Best regards,
> Hubert Hauser.
>
> On 14/07/18 17:41, to...@tuxteam.de wrote:
>> On Sat, Jul 14, 2018 at 04:52:50PM +0200, Hubert Hauser wrote:
>> > Hello!
>>
>> > I have recently received a following mail from root
>> > :
>>
>> > Please see the log file attached.
>>
>> > clamav-2018-07-14.log
>>
>> > /usr/bin/messages.mailutils: Unix.Trojan.Vali-6606621-0 FOUND
>> > /usr/bin/systemd-mount: Unix.Trojan.Vali-6606621-0 FOUND
>>
>> Hm. Throwing that into a search engine of my trust (no, not Google)
>> turns up lots of strange-looking websites.
>>
>> If you have installed all your packages from a trusted source (what's
>> in your /etc/apt/sources.list?), you might want to double-check with
>> debsums whether those files mentioned by clamav have changed from the
>> original.
>>
>> With dpkg -S you can find out which package those files came with.
>>
>> Cheers
>> -- tomás
> >
>



signature.asc
Description: OpenPGP digital signature

Re: Unix.Trojan.Vali-6606621-0 FOUND

[Hubert Hauser]

Hello!

Here's my /etc/apt/sources.list:

deb http://deb.debian.org/debian stable main
deb-src http://deb.debian.org/debian stable main

deb http://deb.debian.org/debian stable-updates main
deb-src http://deb.debian.org/debian stable-updates main

deb http://security.debian.org/ stable/updates main
deb-src https://security.debian.org/ stable/updates main


I don't download anything outside from above lists.

--
Best regards,
Hubert Hauser.

On 14/07/18 17:41, to...@tuxteam.de wrote:
> On Sat, Jul 14, 2018 at 04:52:50PM +0200, Hubert Hauser wrote:
> > Hello!
>
> > I have recently received a following mail from root
> > :
>
> > Please see the log file attached.
>
> > clamav-2018-07-14.log
>
> > /usr/bin/messages.mailutils: Unix.Trojan.Vali-6606621-0 FOUND
> > /usr/bin/systemd-mount: Unix.Trojan.Vali-6606621-0 FOUND
>
> Hm. Throwing that into a search engine of my trust (no, not Google)
> turns up lots of strange-looking websites.
>
> If you have installed all your packages from a trusted source (what's
> in your /etc/apt/sources.list?), you might want to double-check with
> debsums whether those files mentioned by clamav have changed from the
> original.
>
> With dpkg -S you can find out which package those files came with.
>
> Cheers
> -- tomás
>



signature.asc
Description: OpenPGP digital signature

Re: Unix.Trojan.Vali-6606621-0 FOUND

[Ben Oliver]

On 18-07-14 16:52:50, Hubert Hauser wrote:

/usr/bin/messages.mailutils: Unix.Trojan.Vali-6606621-0 FOUND
/usr/bin/systemd-mount: Unix.Trojan.Vali-6606621-0 FOUND


For what it's worth, this has also come up on the Arch Mailing List.

I've also seen it on Gentoo [0] and Linux Questions [1]. The packages 
aren't the same but the flagged virus is.


[0] 
https://forums.gentoo.org/viewtopic-p-8240598.html?sid=cd126a3cc81b2c0c114ae7fcd962f1af


[1] 
https://www.linuxquestions.org/questions/showthread.php?p=5878457#post5878457


signature.asc
Description: PGP signature

Re: Unix.Trojan.Vali-6606621-0 FOUND

[tomas]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On Sat, Jul 14, 2018 at 04:52:50PM +0200, Hubert Hauser wrote:
> Hello!
> 
> I have recently received a following mail from root
> :
> 
> Please see the log file attached.
> 
> clamav-2018-07-14.log
> 
> /usr/bin/messages.mailutils: Unix.Trojan.Vali-6606621-0 FOUND
> /usr/bin/systemd-mount: Unix.Trojan.Vali-6606621-0 FOUND

Hm. Throwing that into a search engine of my trust (no, not Google)
turns up lots of strange-looking websites.

If you have installed all your packages from a trusted source (what's
in your /etc/apt/sources.list?), you might want to double-check with
debsums whether those files mentioned by clamav have changed from the
original.

With dpkg -S you can find out which package those files came with.

Cheers
- -- tomás
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.12 (GNU/Linux)

iEYEARECAAYFAltKGZsACgkQBcgs9XrR2kaSXACeMJ+hotD/FiTi+NjLdh3hg0St
1qkAmwUKucMNNi+QIlpb8R5KdWZ413OF
=yN+h
-END PGP SIGNATURE-

Re: Unix.Trojan.Vali-6606621-0 FOUND

[Hans]

Am Samstag, 14. Juli 2018, 16:52:50 CEST schrieb Hubert Hauser:
Hi Hubert,

it is not sure, this is really a virus. A virusscanner just looks at 
singantures, which look like 
a virus.

However, you may check for differences between the original package and your 
installed 
binaries. If there are none, you may check also the source code (if you are 
coder). If you 
are unsure, you may ask the debian security team for help (if you are using 
debian/stable).

The packages you are looking for are "mailutils" and "systemd".

apt-file search /usr/bin/messages.mailutils 

apt-file search /usr/bin/systemd-mount  

Hope this helps.

Best regards

Hans



> Hello!
> 
> I have recently received a following mail from root
> :
> 
> Please see the log file attached.
> 
> clamav-2018-07-14.log
> 
> /usr/bin/messages.mailutils: Unix.Trojan.Vali-6606621-0 FOUND
> /usr/bin/systemd-mount: Unix.Trojan.Vali-6606621-0 FOUND
> 
> --- SCAN SUMMARY ---
> 
> Known viruses: 9549712
> Engine version: 0.99.4
> Scanned directories: 22397
> Scanned files: 98762
> Infected files: 2
> Total errors: 18457
> Data scanned: 4463.86 MB
> Data read: 4123.41 MB (ratio 1.08:1)
> Time: 927.686 sec (15 m 27 s)
> 
> Which package can contain this virus? What should I do to remove it? Is
> it serious threat?

Re: Editor de jogos 2D e 3D

[Vinícius Moraes]

Recomendo:
löve - lua, 2d
libgdx - java, 2d e 3d
phaser - javascritp, 2d
Todos opensource.

-- 
Vinícius Moraes
Monitor de Introdução a Programação (if669) - 2018.1
Monitor de Infra-Estrutura de Comunicação (if678) - 2016.2 - 2017.2
Ciência da Computação - 2015.1 - UFPE - CIn
(82) 9 9925-9508

Unix.Trojan.Vali-6606621-0 FOUND

[Hubert Hauser]

Hello!

I have recently received a following mail from root
:

Please see the log file attached.

clamav-2018-07-14.log

/usr/bin/messages.mailutils: Unix.Trojan.Vali-6606621-0 FOUND
/usr/bin/systemd-mount: Unix.Trojan.Vali-6606621-0 FOUND

--- SCAN SUMMARY ---

Known viruses: 9549712
Engine version: 0.99.4
Scanned directories: 22397
Scanned files: 98762
Infected files: 2
Total errors: 18457
Data scanned: 4463.86 MB
Data read: 4123.41 MB (ratio 1.08:1)
Time: 927.686 sec (15 m 27 s)

Which package can contain this virus? What should I do to remove it? Is
it serious threat?


0x3C7DE8CE56189C2F.asc
Description: application/pgp-keys


signature.asc
Description: OpenPGP digital signature

Re: Editor de jogos 2D e 3D

[Carlos Donizete Froes]

Blz Leonardo,

Em sáb, 2018-07-14 às 10:32 -0300, Leonardo S. S. da Rocha escreveu:
> estou procurando editores de jogos 2D e 3D que sejam open source mas
> preferencialmente software livre e gratuito. Alguém saberia me indicar?

Conheço dois editores que são Blender[1] e o Löve[2] ambos no Debian.

[1] https://packages.debian.org/source/sid/blender

[2] https://packages.debian.org/source/sid/love

Ate mais!


-- 
⢀⣴⠾⠻⢶⣦⠀ Carlos Donizete Froes [a.k.a coringao]
⣾⠁⢠⠒⠀⣿⡁ - https://wiki.debian.org/coringao
⢿⡄⠘⠷⠚⠋⠀ GPG: 4096R/B638B780
⠈⠳⣄⠀⠀⠀   2157 630B D441 A775 BEFF  D35F FA63 ADA6 B638 B780

signature.asc
Description: This is a digitally signed message part

Editor de jogos 2D e 3D

[Leonardo S. S. da Rocha]

pessoal, bom dia!

estou procurando editores de jogos 2D e 3D que sejam open source mas
preferencialmente software livre e gratuito. Alguém saberia me indicar?

Se puder, seria bom ser multiplataforma também!

Encontrei programas como o Game Maker e o RPG Maker mas ambos são
proprietários.

Agradeço.

Re: BTRFS and debian

[Zenaan Harkness]

On Sat, Jul 14, 2018 at 01:19:39PM +0300, Reco wrote:
>   Hi.
> 
> On Sat, Jul 14, 2018 at 07:50:03PM +1000, Zenaan Harkness wrote:
> > Can someone explain if there's an -actual- non-free dependency that
> > these packages have, or if it is just the somewhat-incompatibility
> > between ZFS CDDL and Linux GPL?
> 
> Unless they manage to pull in some Oracle code (zfs encryption and
> dtrace probes come to mind), ZFS on Linux is a free (as in freedom)
> software.
> But, since Sun Microsystems deliberately designed CDDL to be
> incompatible with GPL2 (happened in 2004 IIRC), you can not ship ZFS
> binary modules with the Linux kernel, for instance ([1]).
> What you can do is to ship source code, and 'ask' the user to build such
> modules for themselves (hence the need of dkms or module-assistant).
> 
> [1] https://github.com/zfsonlinux/zfs/wiki/FAQ

Yes, zfs-dkms and zfs-initramfs is a little more work that plain
apt install.

This gives some of the details:
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=861263

which explains thusly:

 “> Forgive my ignorance, but why will it not happen?

  The legal status of ZFSonLinux was discussed by the FTP team and
  DPL over a long period, with input from legal counsel, resulting in
  a decision to put it in the 'contrib' section.  That decision is
  unlikely to be revisited soon.
 ”

and further from
https://blog.halon.org.uk/2016/01/on-zfs-in-debian/#comment-13678
:

 Martin (February 28, 2017 at 6:14 pm):
 > I understand the decision to distribute ZFS as source
 > only, but could you elaborate on why the package is
 > going into contrib rather than main?

 Neil McGovern (February 28, 2017 at 6:26 pm):
 > Sure – it’s about the promise that Debian makes to
 > the end user. Basically, by it being in main you’re
 > legally able to redistribute the end product (along with
 > source). With a CDDL module and a GPL2+ kernel,
 > that becomes – at best – unclear.


So, packages are even provided such as zfs-initramfs and zfs-dkms to
make the process largely painless, for which we be grateful.

Re: BTRFS and debian

[Reco]

Hi.

On Sat, Jul 14, 2018 at 07:50:03PM +1000, Zenaan Harkness wrote:
> Can someone explain if there's an -actual- non-free dependency that
> these packages have, or if it is just the somewhat-incompatibility
> between ZFS CDDL and Linux GPL?

Unless they manage to pull in some Oracle code (zfs encryption and
dtrace probes come to mind), ZFS on Linux is a free (as in freedom)
software.
But, since Sun Microsystems deliberately designed CDDL to be
incompatible with GPL2 (happened in 2004 IIRC), you can not ship ZFS
binary modules with the Linux kernel, for instance ([1]).
What you can do is to ship source code, and 'ask' the user to build such
modules for themselves (hence the need of dkms or module-assistant).

[1] https://github.com/zfsonlinux/zfs/wiki/FAQ

Re: Réseau qui tombe

[Pascal Hambourg]

Inutile de me mettre en copie.

Le 12/07/2018 à 23:01, roger.tar...@free.fr a écrit :

* le réseau n'est pas accessible = le réseau internet n'est pas accessible.


On ne se comprend pas. Tu te doutes je vais inévitablement te demander 
de définir "le réseau internet n'est pas accessible", ce qui ne veux 
concrètement rien dire. Tu vas encore répondre à côté et on n'en sortira 
pas.



$ sudo apt-get update
renvoie une erreur, faute de connexion.


Seuls les messages d'erreur exacts et complets m'intéressent.


et Firefox renvoie le message "page inaccessible" typique d'une absence d'accès 
au réseau internet.


Les messages d'erreur des navigateurs sont rarement informatifs.


* je récupère mon réseau = je récupère mon accès au réseau internet


Cf. commentaire précédent. Je vais essayer en étant plus directif.
Peux-tu poster les sorties des commandes suivantes dans les deux 
situations, quand "le réseau est accessible" et quand "il tombe" ?


ip addr
ip route
ip -6 route
cat /etc/resolv.conf
brctl show

Re: libgnutls-deb0-28 missing from Debian repos - Re: git clone https://... fails, git://... succeeds — ?

[Zenaan Harkness]

On Sat, Jul 14, 2018 at 07:59:12PM +1000, Zenaan Harkness wrote:
> sound-theme-freedesktop spice-client-glib-usb-acl-helper tla tla-doc

Wow, tla - that's from either old-old-stable or old-old-old-stable :)

Shows how good Debian is at dist-upgrade. Dat's some dang fine
upgradin', bro!

Methinks it really is time to do a clean install :D

Re: Apparmor: 1 processes are unconfined but have a profile defined

[Reco]

Hi.

On Fri, Jul 13, 2018 at 11:59:00PM +0300, Ge wrote:
> > On Fri, Jul 13, 2018 at 11:09:19PM +0300, Ge wrote:
> >> Hi i couldn't figure out so i delete all Firefox profiles and i started
> >> again from the beginning
> > 
> > If you just deleted the files from /etc/apparmor.d - that won't be
> > enough as old profiles are still loaded into the running kernel.
> > See if it sticks after the reboot.
> > 
> > But,
> I also reboot my laptop
> > 
> >> My Firefox profile now seems to work.
> >>
> >>  sudo cat ./usr.lib.firefox-esr.firefox-esr
> > 
> > If your Apparmor profile is not world-readable then you're doing it
> > wrong (i.e. sudo should not be needed for this).
> > 
> Why?

You won't increase overall security by setting such files
non-world-readable, and requiring root just to read such files is wrong.

Reco

Re: libgnutls-deb0-28 missing from Debian repos - Re: git clone https://... fails, git://... succeeds — ?

[Zenaan Harkness]

On Fri, Jul 13, 2018 at 08:26:53AM -0400, Greg Wooledge wrote:
> > > that's what should be relevant here.  Having libgnutls-deb0-28 installed
> > > (or not installed) should not matter at all.
> > 
> > Well as I highlighted in another email above in this thread, when I
> > try to remove it, it wants to rip out over 100 packages and over 500
> > MiB's of Debian software.
> 
> (Such as...?)

$ sudo apt remove libgnutls-deb0-28
[sudo] password for justa:
Reading package lists... Done
Building dependency tree   
Reading state information... Done
The following packages were automatically installed and are no longer
required:
  automoc cvsps emacs freepats git-doc gstreamer1.0-libav iceweasel
  icoutils kate-data kde-runtime-data kdelibs5-data
  libalgorithm-c3-perl libattica0.4 libb-hooks-endofscope-perl
  libcgi-fast-perl libcgi-pm-perl libclass-c3-perl
  libclass-c3-xs-perl libclass-data-inheritable-perl
  libclass-factory-util-perl libclass-method-modifiers-perl
  libclass-singleton-perl libcommon-sense-perl libdata-optlist-perl
  libdatetime-format-builder-perl libdatetime-format-iso8601-perl
  libdatetime-format-strptime-perl libdatetime-locale-perl
  libdatetime-perl libdatetime-timezone-perl libdbd-sqlite3-perl
  libdbi-perl libdbusmenu-qt2 libde265-0 libdevel-caller-perl
  libdevel-lexalias-perl libdevel-stacktrace-perl libdlrestrictions1
  libemail-valid-perl liberror-perl libeval-closure-perl
  libexception-class-perl libexiv2-14 libfcgi-perl libfluidsynth1
  libgovirt-common libgovirt2 libgpgme++2v5 libgsoap10
  libhsqldb1.8.0-java libimlib2 libiodbc2 libjson-perl
  libjson-xs-perl libkactivities6 libkcmutils4 libkdeclarative5
  libkdecore5 libkdesu5 libkdeui5 libkdnssd4 libkidletime4 libkjsapi4
  libkjsembed4 libkntlm4 libkpty4 libkrosscore4 libkunitconversion4
  libmediawiki-api-perl libmjpegutils-2.1-0 libmms0
  libmodule-implementation-perl libmodule-runtime-perl
  libmpeg2encpp-2.1-0 libmplex2-2.1-0 libmro-compat-perl
  libnamespace-autoclean-perl libnamespace-clean-perl libnet-dns-perl
  libnet-domain-tld-perl libnet-ip-perl libntrack-qt4-1 libntrack0
  libofa0 libopencv-calib3d2.4v5 libopencv-features2d2.4v5
  libopencv-flann2.4v5 libopencv-highgui2.4-deb0
  libopencv-objdetect2.4v5 libopencv-video2.4v5
  libpackage-deprecationmanager-perl libpackage-stash-perl
  libpackage-stash-xs-perl libpadwalker-perl libpagemaker-0.0-0
  libparams-classify-perl libparams-util-perl libparams-validate-perl
  libparams-validationcompiler-perl libphodav-2.0-0
  libphodav-2.0-common libphonon-dev libpolkit-qt-1-1 libpostproc53
  libqca2 libqca2-plugins libqt4-declarative libqt4-designer
  libqt4-dev libqt4-dev-bin libqt4-help libqt4-network
  libqt4-qt3support libqt4-script libqt4-scripttools libqt4-sql
  libqt4-sql-mysql libqt4-svg libqt4-test libqt4-xmlpatterns
  libqt5multimedia5 libqt5multimediawidgets5 libqtwebkit4
  libquvi-scripts-0.9 libreoffice-l10n-en-gb librole-tiny-perl
  libsbc1 libscalar-list-utils-perl libsolid4 libspandsp2
  libspecio-perl libsrtp0 libsub-exporter-perl
  libsub-exporter-progressive-perl libsub-identify-perl
  libsub-install-perl libsub-name-perl libsvn-perl
  libterm-readkey-perl libtest-fatal-perl libthreadweaver4
  libtry-tiny-perl libtypes-serialiser-perl libusbredirhost1
  libvariable-magic-perl libvidstab1.0 libwildmidi-config
  libwildmidi2 libxslt1-dev libyajl-dev libyaml-libyaml-perl
  libyaml-perl libzbar0 lua-bitop lua-expat lua-json lua-lpeg
  lua-socket nocache ntrack-module-libnl-0 oxygen-icon-theme phonon
  python-bzrlib python-configobj python-debian python-httplib2
  python-keyring python-keyrings.alt python-launchpadlib
  python-lazr.restfulclient python-lazr.uri python-oauth
  python-secretstorage python-simplejson python-wadllib
  python3-httplib2 python3-pyqt5 python3-pyqt5.qtmultimedia
  python3-pyqt5.qtsvg python3-pyqt5.qtwebkit python3-qtpy
  qt4-linguist-tools qt4-qmake runit
sound-theme-freedesktop spice-client-glib-usb-acl-helper tla tla-doc
unixodbc xxdiff
Use 'sudo apt autoremove' to remove them.
The following packages will be REMOVED:
  curl easygit feh ffmpeg gir1.2-spice-client-glib-2.0
  gir1.2-spice-client-gtk-3.0 git git-all git-annex git-arch git-bzr
  git-cola git-cvs git-daemon-run git-el git-email git-extras
  git-flow git-ftp git-gui git-mediawiki git-remote-bzr
  git-remote-gcrypt git-remote-hg git-svn gitk gitpkg gitweb
  gstreamer1.0-plugins-bad katepart kde-runtime kdelibs-bin
  kdelibs5-dev kdelibs5-plugins kdoctools libavdevice56 libavfilter5
  libavformat56 libcmis-0.5-5v5 libcmis-dev libcurl3 libcurl3-gnutls
  libcurl4-gnutls-dev libgnutls-deb0-28 libkatepartinterfaces4
  libkde3support4 libkdewebkit5 libkemoticons4 libkfile4 libkhtml5
  libkimproxy4 libkio5 libkmediaplayer4 libknewstuff2-4
  libknewstuff3-4 libknotifyconfig4 libkparts4 libkprintutils4
  libkrossui4 libktexteditor4 libkutils4 libkxmlrpcclient4
  libnepomuk4 libnepomukquery4a libnepomukutils4 libplasma3
  libquvi-0.9-0.9.3 libraptor2-0 libraptor2-dev librasqal3

Re: BTRFS and debian

[Zenaan Harkness]

On Fri, Jul 13, 2018 at 05:59:58PM -0700, David Christensen wrote:
> On 07/13/18 16:36, Zenaan Harkness wrote:
> > On Thu, Jul 12, 2018 at 07:53:01PM -0700, David Christensen wrote:
> > > While a brutal analogy, it makes a point that can be applied to all
> > > computers -- devise strategies, invest in resources, and implement
> > > procedures that facilitate system roll-out, migration, and disaster
> > > recovery.  This is a goal I have pursued over the years.
> > 
> > zfs send (and of course filesystem snaphotting) ftw!
> > (I'm just learning about zfs btw, intending a home rollout in the
> > coming weeks.)
> 
> ZFS is killer technology.  zfs-fuse is sawed off.  ZOL rocks, but the license 
> keeps it out of Debian.  We'll see if
> and when btrfs catches up.

(Do you know why your mail client (or perhaps server) wraps at 115
chars? 72 or 69 or even 80 would be much better...)

In stretch I see:

zfs-dracut zfs-dkms zfs-initramfs zfsutils-linux

however they're all in "contrib" rather than main.

Can someone explain if there's an -actual- non-free dependency that
these packages have, or if it is just the somewhat-incompatibility
between ZFS CDDL and Linux GPL?

Since at least zfs-fuse dispels the "is bound to Linux kernel" part.

TIA,

Re: BTRFS and debian

[Zenaan Harkness]

On Thu, Jul 12, 2018 at 07:53:01PM -0700, David Christensen wrote:
> On 07/12/18 10:52, David Wright wrote:
> > On Mon 09 Jul 2018 at 20:33:00 (-0700), David Christensen wrote:
> > > On 07/09/18 11:17, Ge wrote:
> > > > Should i make a different partition for /home/ ?
> > > 
> > > I don't -- I put my bulk data on a file server, including all e-mail
> > > attachments.  My home directory is ~1 GB.
> > > 
> > > 
> > > (If/when I want to travel with my laptop, I will need to figure out
> > > how to set up a VPN to my file server.)
> > 
> > I would find that rather risky, so I have a "proper" separate,
> > encrypted /home that ranges from 50GiB (laptop) to ~400GiB
> > (desktops)—basically, the rest of the drive, though one laptop
> > gives a fair amount of space over to a W10 installation.
> 
> First, I will need to test how the applications I use react to VPN 
> connections going up and down.
> 
> 
> My file server is also a CVS server.  This makes it easy to keep the same 
> files on multiple computers, and to
> synchronize changes.  (CVS can solve the three-way merge problem for text 
> files.  I need to be mindful when editing
> binary files.)

I've completely replaced CVS with git these days - for all my
hacking of course, as well as parts of home/ - and I finally figured
out how to have a inter-system (or -drive) "git update" work
"properly" by which I mean:

 - some repos I am interested in, I grab into home/setups-local with
   a quick
   git clone git://repo... repo.gits

 - Everything ultimately gets backed up onto a file server, on which
   when I'm working I grab a repo with
   git clone --mirror git://repo... repo.gitm

 - The repo.git[ms]/.git/configs need to do the following:

 a) in whichever repo I am in/ updating (by script or otherwise), I
 want a "git fetch" or "git pull" to Do The Right Thing (TM)(C)(R),
 which means:

 b) it MUST first get all possible updates from the "other" instance
 that I maintain of that repo, including my own personal branches etc

 c) only THEN must it download remaining updates from the net

and so to achieve this, the .git/config files look somewhat like
this:


# ~/setups-local/postgresql.gits/.git/config :

[core]
  repositoryformatversion = 0
  filemode = true
  bare = false
  logallrefupdates = true
[remote "setups"]
  # fetch from "setups"
  url = /setups/p/postgresql/postgresql.gitm
  fetch = +refs/remotes/origin/*:refs/remotes/setups/*
[remote "origin"]
  url = git://github.com/trevorbernard/disruptor-examples.git
  fetch = +refs/*:refs/remotes/origin/*
  fetch = +refs/heads/*:refs/heads/*
  fetch = +refs/tags/*:refs/tags/*
[branch "master"]
  remote = origin
  merge = refs/heads/master



# /setups/p/postgresql/postgresql.gitm/config :

[core]
  repositoryformatversion = 0
  filemode = true
  bare = true
[remote "setups-local"]
  # fetch from "setups-local"
  url = /home/me/setups-local/postgresql.gits
  fetch = +refs/remotes/origin/*:refs/remotes/setups-local/*
[remote "origin"]
  url = git://git.postgresql.org/git/postgresql.git
  fetch = +refs/*:refs/remotes/origin/*
  fetch = +refs/heads/*:refs/heads/*
  fetch = +refs/tags/*:refs/tags/*
# fetch = +refs/pull/*:refs/remotes/origin/pull/*
# fetch = +refs/pull/*:refs/rpull/origin/*
[remote "pgxc-sf"]
  url = git://postgres-xc.git.sourceforge.net/gitroot/postgres-xc/postgres-xc
  fetch = +refs/heads/*:refs/remotes/pgxc-sf/*
  fetch = +refs/tags/*:refs/rtags/pgxc-sf/*
[remote "pgxc"]
  url = git://github.com/postgres-x2/postgres-x2.git
  fetch = +refs/heads/*:refs/remotes/pgxc/*
  fetch = +refs/tags/*:refs/rtags/pgxc/*
[remote "pgxc-docs"]
  url = git://github.com/postgres-x2/implementationDocs.git
  fetch = +refs/heads/*:refs/remotes/pgxc-docs/*
  fetch = +refs/tags/*:refs/rtags/pgxc-docs/*
[remote "pgxc-webpage"]
  url = git://github.com/postgres-x2/webpage.git
  fetch = +refs/heads/*:refs/remotes/pgxc-webpage/*
  fetch = +refs/tags/*:refs/rtags/pgxc-webpage/*
[remote "pgxc-github.io"]
  url = git://github.com/postgres-x2/postgres-x2.github.io.git
  fetch = +refs/heads/*:refs/remotes/pgxc-github.io/*
  fetch = +refs/tags/*:refs/rtags/pgxc-github.io/*
[remote "pgxl"]
  url = git://git.code.sf.net/p/postgres-xl/postgres-xl
  fetch = +refs/heads/*:refs/remotes/pgxl/*
  fetch = +refs/tags/*:refs/rtags/pgxl/*
[remote "pgxl-tools"]
  url = git://git.code.sf.net/p/postgres-xl/tools
  fetch = +refs/heads/*:refs/remotes/pgxl-tools/*
  fetch = +refs/tags/*:refs/rtags/pgxl-tools/*



In this way, I can update one, then update the other, and I don't
download the updates twice. Yes, each holds an extra set of heads,
tags etc under remotes/setups/ and remotes/setups-local/
respectively, which not only is a very small "price" to pay, but has
actually been useful once or twice when I've messed around with tags
and heads, gotten befuddled and ultimately had to go check the
local "origin" duplicate refs in setups or setups-local, to fix
things up.

This took me a few attempts, a coupla bungles and many googoyle
searches 

Re: BTRFS and debian

[Pascal Hambourg]

Le 14/07/2018 à 02:49, David Christensen a écrit :

# file -s /dev/sda1
/dev/sda1: BTRFS Filesystem label "po_boot", sectorsize 4096, nodesize 
16384, leafsize 16384, UUID=6ff0dd1d-8d46-454b-bb35-a09afc47145a, 
65490944/999292928 bytes used, 1 devices


2018-07-13 17:39:51 root@po ~
# file -s /dev/sda2
/dev/sda2: data

2018-07-13 17:39:59 root@po ~
# file -s /dev/sda3
/dev/sda3: LUKS encrypted file, ver 1 [aes, xts-plain64, sha256] UUID: 
0152d2e2-4cfb-42c4-a121-6fb832962e47


The output for /dev/sda2 is not very informative (e.g. clues that it has 
dm-crypt, random key, and swap).


As expected. /dev/sda2 contains raw encrypted data which appear as 
random data. It is the purpose of encryption that one cannot see the 
real contents.


Beware that unlike a UUID or LABEL, a PARTUUID or PARTLABEL is stored 
in the partition table, not in the partition data.
Also note that a DOS partition table entry does not contain a UUID nor 
LABEL, and the PARTUUID is artificially built by combining the 32-bit 
"disk identifier" field in the MBR and the partition number. So if the 
partition number or the disk identifier changes, the PARTUUID changes.


In short :
- if you move the disk contents (including the partition table) to 
another disk, the PARTUUID is preserved ;
- if you move the partition contents to another partition, the 
PARTUUID is not preserved.


Thanks for the warning.  My typical use-case is to move the entire 
system drive image between various 16+ GB devices, so PARTUUID should work.


I forgot to mention another case, although you are not concerned :

- logical partitions numbers and synthetic PARTUUIDs may change when 
creating or deleting another logical partition on the same disk. Yet 
another reason to not use logical partitions and prefer GPT if you need 
more than 4 partitions.

Re: Réseau qui tombe

[winnt]

Bonjour,

Si la mechine est un peu ancienne, je vérifierais du côté de l'alimentation.
J'ai déjà eu un souci d'alimentation électrique des ports usb à cause
d'une aliementation vieillissante.

Winnt

Le 14/07/2018 à 08:10, Bernard Schoenacker a écrit :
> 
> 
> - Mail original -
>> De: "Jérémy PREGO" 
>> À: "Bernard Schoenacker" , "roger tarani" 
>> 
>> Cc: "Liste Debian" 
>> Envoyé: Samedi 14 Juillet 2018 04:14:42
>> Objet: Re: Réseau qui tombe
>>
>>
>>
>> Le 14/07/2018 à 01:45, Bernard Schoenacker a écrit :
>>> bonjour,
>>>
>>> il reste qu'à installer wvdial comme pour une clé usb 4g
>>
>> innutile, l'iphone n'en ferait rien. lui il donne au pc une liaison
>> ethernet, pas une liaison PPP
>>> slt
>>> bernard
>>
>> jerem
>>
>>
> bonjour,
> 
> c'est mal dit, car la liaison se fait par le port usb
> 
> merci
> 
> slt
> bernard
> 


-- 
Winnt

C'est en Linuxant qu'on devient  geek
Et c'est en LateXant qu'on devient flemmard ;-)

Ici un article de présentation de la distribution Gentoo
http://winnt.developpez.com/tutoriels/presentation-gentoo/

Re: Réseau qui tombe

[Bernard Schoenacker]

- Mail original -
> De: "Jérémy PREGO" 
> À: "Bernard Schoenacker" , "roger tarani" 
> 
> Cc: "Liste Debian" 
> Envoyé: Samedi 14 Juillet 2018 04:14:42
> Objet: Re: Réseau qui tombe
> 
> 
> 
> Le 14/07/2018 à 01:45, Bernard Schoenacker a écrit :
> > bonjour,
> >
> > il reste qu'à installer wvdial comme pour une clé usb 4g
> 
> innutile, l'iphone n'en ferait rien. lui il donne au pc une liaison
> ethernet, pas une liaison PPP
> > slt
> > bernard
> 
> jerem
> 
> 
bonjour,

c'est mal dit, car la liaison se fait par le port usb

merci

slt
bernard