Re: kmail and encrypted mails

[John Hasler]

rhkramer writes:
> Well, it could have been "based" (or inspired, or similar) based on
> PGP even if it was newly written code.  (And my guess / recollection
> from that time is that it was so "based" / inspired / whatever -- very
> similar functionality.)

It was inspired by PGP and designed to be compatible.  It could not have
been based on PGP because the latter was not Open Source.  There is no
common code.
-- 
John Hasler 
jhas...@newsguy.com
Elmwood, WI USA

No mic from combo jack.

[Paul Johnson]

Debian Testing with the stock PulseAudio install.  Combo jack
headphones/microphone.  Can't hear microphone except briefly when mute
switch clicks either direction, or earbuds that came with my phone except
when mute button is held down.  Lenovo N586.  Played around with alsatools
and pavucontrol but couldn't get mic to do more than click on headset, and
mic with same combo plug on earbuds only worked with button pushed in.  Not
quite sure what to do from here,

Re: kmail and encrypted mails

[Carl Fink]

On 12/25/18 7:12 PM, Gene Heskett wrote:

After reading thru the *available* info, starting with Wikipedia, one
thing stands out, and perhaps explains your insistence that it never
happened, and thats the 4+ years of total silence on the subject from
its initial release in 1991, to 1996 when the announcement that the
case had been dropped was made. Not a single dot over an i is
recorded and visible during that time frame. This obviously is why
you won't accept the evidence otherwise from the now truly ancient
Amiga mailing lists (if they even exist as an archive today, I don't
know and don't have a quarter to call anyone else who might care)
where many megabytes of information about the case was recorded,
as was his arrest and jailing. Another possible source of
contradicting info was that a couple of the Amiga magazines of the
day covered it quite well from the editors desks, but 25 yo copies of
that, which may be moldering away yet in some enthusiasts basement,
and very few of those are available to me since my Amiga user days
ended forever in 2004 a couple years after I retired. I basicly
switched to linux with Red-Hat-5.0 in 1998. Never, except for buying
a road computer, a lappy with xp on it that got wiped and Mandrake
installed a couple weeks later, have I owned a winderz box. You
forget John, that the old, unwritten law about only the winners get
to write the history books is still a basic truism, same as TANSTAAFL,
it cannot be repealed. And Phil is a winner. What I see since I lived
thru it, is that the unpleasant parts of that time period have now
been scrubbed from the internets more accessable places. So be it.
But at the time, he was incarcerated, and I made a small, $100,
contribution to his defense fund, in 92 IIRC. I was at the time,
fairly newly married, and had just made the final payment to the IRS,
cleaning up the 5.5 digit mess my 2nd left me with when she left in
'85. You, John and Thomas, can believe what you read on Wikipedia,
I can't stop you, but I was also there, and I remember it
differently. Cheers, Gene Heskett


Human memory is notably bad.

Note also that Mr. Zimmerman himself remembers it differently:
https://philzimmermann.com/EN/background/index.html

He refers to a three-year *investigation*, not three years of
incarceration.
--
Carl Fink  c...@finknetwork.com
Thinking and logic and stuff at Reasonably Literate
http://reasonablyliterate.com

Re: kmail and encrypted mails

[rhkramer]

On Tuesday, December 25, 2018 04:58:23 PM Nicolas George wrote:
> Gene Heskett (2018-12-25):
> > As for gpg not being pgp, you are likely correct, but what was gpg based
> > on originally if not pgp?
> 
> Original code.

Well, it could have been "based" (or inspired, or similar) based on PGP even 
if it was newly written code.  (And my guess / recollection from that time is 
that it was so "based" / inspired / whatever -- very similar functionality.)

Re: un ban me

[mick crane]

On 2018-12-25 21:33, Trep wrote:

channel #debian is where i got banned... of course...

Boza


Policy on IRC might be to do a port scan and you can get banned if 
you've not got a firewall, probably nothing personal.


mick

--
Key ID4BFEBB31

Re: kmail and encrypted mails

[Gene Heskett]

On Tuesday 25 December 2018 16:25:58 John Hasler wrote:

> Gene writes:
> > [Phil Zimmermann] spent 3 years in the federal pen...
>
> Citation, please (not an old Amiga mailing list).

After reading thru the *available* info, starting with Wikipedia, one 
thing stands out, and perhaps explains your insistence that it never 
happened, and thats the 4+ years of total silence on the subject from 
its initial release in 1991, to 1996 when the announcement that the case 
had been dropped was made. Not a single dot over an i is recorded and 
visible during that time frame. This obviously is why you won't accept 
the evidence otherwise from the now truly ancient Amiga mailing lists 
(if they even exist as an archive today, I don't know and don't have a 
quarter to call anyone else who might care) where many megabytes of 
information about the case was recorded, as was his arrest and jailing. 
Another possible source of contradicting info was that a couple of the 
Amiga magazines of the day covered it quite well from the editors desks, 
but 25 yo copies of that, which may be moldering away yet in some 
enthusiasts basement, and very few of those are available to me since my 
Amiga user days ended forever in 2004 a couple years after I retired. I 
basicly switched to linux with Red-Hat-5.0 in 1998. Never, except for 
buying a road computer, a lappy with xp on it that got wiped and 
Mandrake installed a couple weeks later, have I owned a winderz box.

You forget John, that the old, unwritten law about only the winners get 
to write the history books is still a basic truism, same as TANSTAAFL, 
it cannot be repealed. And Phil is a winner. What I see since I lived 
thru it, is that the unpleasant parts of that time period have now been 
scrubbed from the internets more accessable places. So be it. But at the 
time, he was incarcerated, and I made a small, $100, contribution to his 
defense fund, in 92 IIRC. I was at the time, fairly newly married, and 
had just made the final payment to the IRS, cleaning up the 5.5 digit 
mess my 2nd left me with when she left in '85.

You, John and Thomas, can believe what you read on Wikipedia, I can't 
stop you, but I was also there, and I remember it differently.

Cheers, Gene Heskett
-- 
"There are four boxes to be used in defense of liberty:
 soap, ballot, jury, and ammo. Please use in that order."
-Ed Howdershelt (Author)
Genes Web page 

Re: kmail and encrypted mails

[Nicolas George]

Gene Heskett (2018-12-25):
> As for gpg not being pgp, you are likely correct, but what was gpg based 
> on originally if not pgp?

Original code.

Regards,

-- 
  Nicolas George


signature.asc
Description: Digital signature

un ban me

[Trep]

channel #debian is where i got banned... of course...

Boza

please un ban me

[Trep]

Hi... I got registered in irc.oftc (nick Boza) to post a question about
debian installation issues 
I cant finish installation due efi/grub problem caused by the firmware
of my laptop... I got all the summary... for being able to ask...
Im connecting trogh tor, so maybe is because that i got banned...

But please, un ban me... I would like to see if someone can help me..
I have already registered (when i got banned, i didnt knew about
registration)... 
Nick boza

thank you... and hope to be able to ask..

Boza Trepp  

Re: kmail and encrypted mails

[John Hasler]

Gene writes:
> [Phil Zimmermann] spent 3 years in the federal pen...

Citation, please (not an old Amiga mailing list).
-- 
John Hasler 
jhas...@newsguy.com
Elmwood, WI USA

Re: File ownership problem using removeable media

[Felix Miata]

Richard Owlett composed on 2018-12-23 06:51 (UTC-0600):
...
Not a substitute for gaining and utilizing understanding of chown, chmod, 
chacl, sticky bits and
the rest of file access and permissions, but a way to lessen the pain in the 
meantime:

Put the files to be transferred into an archive (.zip, .tgz, etc), and put the 
archive on the RM,
then extract from the archive onto the destination. This can be facilitated by 
an OFM[1] that
simplifies transfers into and out of archives. For the purpose of facilitated 
archive creation the
one I usually use can be had from http://silk.apana.org.au/fc.html but 
extraction can also be done
with MC from a shell (and any number of apps in other OSes as well as Linux) as 
well as an archiver
directly.

[1] http://www.softpanorama.org/OFM/Paradigm/ https://en.wikipedia.org/wiki/OFM
-- 
Evolution as taught in public schools is religion, not science.

 Team OS/2 ** Reg. Linux User #211409 ** a11y rocks!

Felix Miata  ***  http://fm.no-ip.com/

Re: File ownership problem using removeable media

[Martin]

Am 23.12.18 um 13:51 schrieb Richard Owlett:
> I use USB drives to transfer files between systems (sneakernet).
> All systems have only one user(richard). It was created during installation.
> 
> The drives are either ext2 or ext4 formatted.
> All files were in /user/richard on source machine

Are you sure, that USB device is also in an ext format?
What does the 'mount' command report for that USB device?

 
> They _often_ [but not always] are seen as owned by 'root', not 'richard', by 
> the destination system.
> 
> Why? I assume it is me in some manner.

What are the numerical UID's for that user?

> What do I have to do to guarantee absolutely that any file/directory from 
> /home/richard is seen by destination system as owned by 'richard'?
> 
> What should I have read?
> 
> TIA
> 
> 

Re: File ownership problem using removeable media

[David Christensen]

On 12/25/18 8:06 AM, Richard Owlett wrote:

On 12/24/2018 05:50 AM, Richard Owlett wrote:

...

The discussion so far has caused me to wonder if I have been 
conflating symptoms. I think I've an idea of how to test for that -- 
more later.


Preliminary tests indicate that is likely.
I will have to get some new flash drives to track my tests.
Linux intrinsically assumes one machine has multiple users.
In *MY* case, one user has multiple machines.

I also have multiple instances of Debian installed on a physical 
machine. I routinely want something from another partition - Debian 
requires root access for that. I'm wondering if some of my 
chaos/confusion stems from copying data from that partition to a flash 
drive.


I have had multiple x86 computers since ~1995, each running various 
operating systems (via multiple-boot, multiple OS drives, and/or 
virtualization).  I also suffered with sneaker-net for many years.



I put my machines on a LAN around ~1997 and added Samba sometime thereafter.


I discovered CVS around ~2001 and set up one one machine as a CVS 
server.  CVS allows me to check-in files on one machine with one 
operating system as one user, check-out those same files on other 
machine(s) with whatever operating system as whatever user, and then 
check-in any updates back to the server.  CVS takes care of three-way 
merges, EOL translation, permissions, user and group ownership, etc.. 
The key is to do a 'cvs update' before I make the first change and a 
'cvs commit' after I make the last.



Between networking, Samba, and CVS, I have solved almost all of my 
sneaker-net use-cases with simple and robust operations.  What remains 
is contrib/ non-free firmware for Debian installs and transfers to/ from 
non-networked machines.



David

Re: kmail and encrypted mails

[Gene Heskett]

On Tuesday 25 December 2018 12:48:16 John Hasler wrote:

> Gene writes:
> > I haven't played with pgp since they jailed P.Z., and I've always
> > looked at anything newer than 2.62 as possibly equipt with a back
> > door of some sort, one of the unstated conditions for allowing his
> > release.
>
> I'd like to see some evidence that Zimmermann was jailed.  I was
> paying attention to such things at the time and I recall no mention of
> an arrest.  There was a criminal investigation but no charges were
> ever filed and eventually both the 6th and the 9th courts ruled that
> cryptographic software source code is protected speech.
>
> In any case gpg is not pgp.

Go read the history of that again, John, if you can find it, old Amiga 
mailing list archives from the early '90's might be a good place to 
start.

PGP was considered to be munitions, subject to ITAR which Phil was well 
aware of when he published it, the disks crossed our border to get to a 
locale where publishing it was legal. That intentional border crossing 
with the disks in his luggage was what he was prosecuted for, not the 
code itself. He spent 3 years in the federal pen before they decided the 
cat was well and truly out of the bag and his further incarceration 
served no further usefull punitive service. Not to mention that lots of 
Senators heard from lots of constituents about the asininity of the 
whole thing. My own then Senator Jay Rock., a good man I had the 
pleasure of meeting in person several times, (tv chief engineers get 
more than the average bears opportunities because we are the media that 
helps get the pols re-elected) all but the first time very cordial 
because the first time they were exploring ways to get the feds out of a 
ponzi scheme called social security, he got told in plain language that 
I had been forced to contribute to it against my will since the late 
1940's, and if it wasn't there when I retired, well, I was a hunter, a 
good shot, and might just go hunting for whoever screwed me out of it. 
He also got msgs from me about Phil's incarceration.

As for gpg not being pgp, you are likely correct, but what was gpg based 
on originally if not pgp?

Cheers, Gene Heskett
-- 
"There are four boxes to be used in defense of liberty:
 soap, ballot, jury, and ammo. Please use in that order."
-Ed Howdershelt (Author)
Genes Web page 

Re: kmail and encrypted mails

[John Hasler]

tomas writes:
> That corresponds to my memories of that time (including the workaround
> for the export ban which involved sending books around and scanning
> them at the other side of the pond).

And the t-shirts with the source code printed on them to be worn while
leaving the USA.  
-- 
John Hasler 
jhas...@newsguy.com
Elmwood, WI USA

Re: kmail and encrypted mails

[tomas]

On Tue, Dec 25, 2018 at 11:48:16AM -0600, John Hasler wrote:
> Gene writes:
> > I haven't played with pgp since they jailed P.Z., and I've always
> > looked at anything newer than 2.62 as possibly equipt with a back door
> > of some sort, one of the unstated conditions for allowing his release.
> 
> I'd like to see some evidence that Zimmermann was jailed.  I was paying
> attention to such things at the time and I recall no mention of an
> arrest.  There was a criminal investigation but no charges were ever
> filed and eventually both the 6th and the 9th courts ruled that
> cryptographic software source code is protected speech.

That corresponds to my memories of that time (including the workaround
for the export ban which involved sending books around and scanning
them at the other side of the pond).

> In any case gpg is not pgp.

Most definitely not. It is explicitly designed to be interoperable with
PGP (and since PGP was first, it set the standards), so it could be seen
as being a close relative, but it is an independent implementation.

Cheers
-- tomás


signature.asc
Description: Digital signature

Re: kmail and encrypted mails

[John Hasler]

Gene writes:
> I haven't played with pgp since they jailed P.Z., and I've always
> looked at anything newer than 2.62 as possibly equipt with a back door
> of some sort, one of the unstated conditions for allowing his release.

I'd like to see some evidence that Zimmermann was jailed.  I was paying
attention to such things at the time and I recall no mention of an
arrest.  There was a criminal investigation but no charges were ever
filed and eventually both the 6th and the 9th courts ruled that
cryptographic software source code is protected speech.

In any case gpg is not pgp.
-- 
John Hasler 
jhas...@newsguy.com
Elmwood, WI USA

Re: File ownership problem using removeable media

[tomas]

On Tue, Dec 25, 2018 at 10:06:04AM -0600, Richard Owlett wrote:
> On 12/24/2018 05:50 AM, Richard Owlett wrote:
> >...
> >
> >The discussion so far has caused me to wonder if I have been
> >conflating symptoms. I think I've an idea of how to test for that
> >-- more later.
> 
> Preliminary tests indicate that is likely.
> I will have to get some new flash drives to track my tests.
> Linux intrinsically assumes one machine has multiple users.

...and it is right in its assumption.

> In *MY* case, one user has multiple machines.

...and you're right in your assumption.

You won't make any progress unless you try to reconcile both.
It's *your* responsibility, since you are the sapient entity :)

> I also have multiple instances of Debian installed on a physical
> machine. I routinely want something from another partition - Debian
> requires root access for that.

You should be more precise: root access for what? There are several
distinct "stages" in that access. Mounting? Read access?

Mount is most definitely a root operation, and there are very strong
reasons for that (but things can be delegated). After mount, things
get very dependent on things (e.g. which file system, etc.)

> I'm wondering if some of my
> chaos/confusion stems from copying data from that partition to a
> flash drive.

If you did the copy as root, didn't specify to keep file owner and
group (as in cp -p or cp -a) then yes, the owner/group of your copies
ends up as root.

Cheers
-- t


signature.asc
Description: Digital signature

Re: How can reportbug sends an email witthout an MTA installed ?

[aprekates]

Thanks! Your answer get straight to the ... source of things :-)

I guess the python smptlib does the job in my case.


On 25/12/18 2:36 μ.μ., Thomas Schmitt wrote:

Hi,

aprekates wrote:

But reportbug can send emails to BTS .
How does it do that ?

In principle, i'd say by the SMTP internet protocol.
man 1 reportbug talks of /usr/bin/sendmail.

I guess the logic can be inspected at
   https://sources.debian.org/src/reportbug/7.5.1/reportbug/submit.py/#L202

In line 334 it starts an MTA and connects it by a pipe.
Alternatively, in line 353 it begins to talk SMTP to the host whose address
is in variable smtphost. This is done via a python class named "smtplib".

It should be possibile to distinguish the code paths used in your
local situation by the messages:
   ewrite("Sending message via %s...\n", mta)
   ewrite("Connecting to %s via SMTP...\n", smtphost)

Looking at
   https://packages.debian.org/unstable/reportbug
it may well be that it has found one of the suggested mail transport
agents.


Have a nice day :)

Thomas

Re: mpd cannot find default alsa soundcard; sudo -u mpd aplay -D default /Side_Right.wav results in desired audio output.

[toogley]

Hey,

> So, try this /etc/mpd.conf:
> 
> group "audio"
> 
> audio_output {
> type"alsa"
> name"ALSA sound card"
> }

thanks. I also added the audio group to the mpd line of /etc/passwd.

==> works now. Thank you!

Re: File ownership problem using removeable media

[Richard Owlett]

On 12/24/2018 05:50 AM, Richard Owlett wrote:

...

The discussion so far has caused me to wonder if I have been conflating 
symptoms. I think I've an idea of how to test for that -- more later.


Preliminary tests indicate that is likely.
I will have to get some new flash drives to track my tests.
Linux intrinsically assumes one machine has multiple users.
In *MY* case, one user has multiple machines.

I also have multiple instances of Debian installed on a physical 
machine. I routinely want something from another partition - Debian 
requires root access for that. I'm wondering if some of my 
chaos/confusion stems from copying data from that partition to a flash 
drive.

Re: apt-get upgrade problem on Jessie

[Patrick Bartek]

On Tue, 25 Dec 2018 09:21:39 -0500
rhkra...@gmail.com wrote:

> [snip]
> 
> But now I'm at this point:
> 
> root@s31:~# apt-get upgrade
> Reading package lists... Done
> Building dependency tree
> Reading state information... Done
> Calculating upgrade... Done
> The following packages have been kept back:
>   firmware-linux-nonfree
> 0 upgraded, 0 newly installed, 0 to remove and 1 not upgraded.
> root@s31:~#
> 
> I don't know that I'm worried about that, but if someone knows what I need
> to do, I'll try it.


apt-get dist-upgrade will install "held back" packages.

Also, routinely using apt-get autoclean (or clean) will clean out all
cached downloaded packages from previous upgrades.

B

Re: mpd cannot find default alsa soundcard; sudo -u mpd aplay -D default /Side_Right.wav results in desired audio output.

[Ric Moore]

On 12/25/18 9:40 AM, Reco wrote:

Hi.

On Tue, Dec 25, 2018 at 03:29:32PM +0100, toogley wrote:

==> any ideas?


This does not look right:


# groups mpd
mpd : audio


This means that mpd's primary group is not audio.


/etc/mpd.conf

audio_output {
 type"alsa"
 name"ALSA sound card"
}


An absence of 'group' stanza means, according to the configuration file:

# This setting specifies the group that MPD will run as. If not
# specified primary group of user specified with "user" setting will be
# used (if set).
# This is useful if MPD needs to be a member of group such as "audio" to
# have permission to use sound card.

My suspicion is that mpd simply discards membership of 'audio' group
then run as a daemon.

So, try this /etc/mpd.conf:

group "audio"

audio_output {
 type"alsa"
 name"ALSA sound card"
}


You might go over this step-by-step to see if everything is up to snuff. 
https://www.htpcguides.com/create-an-mpd-music-server-on-debian/

Re: apt-get upgrade problem on Jessie

[tomas]

On Tue, Dec 25, 2018 at 09:21:39AM -0500, rhkra...@gmail.com wrote:
> Thanks for the reply, it helped a lot -- I seem to have one problem remaining 
> (below).

[...]

> df told me that /var was at 100%, and /boot was at 98%.

"apt-get autoclean" or its more drastic sibling "apt-get clean" might be
of some help in those cases (the difference being that autoclean removes
just obsolete cached packages while clean removes also current packages).

They remove cached package files (for installed packages), i.e. you'll at
most incur the penalty of re-downloading a package file should you decide
to reinstall a package.

Cheers
-- tomás 


signature.asc
Description: Digital signature

Re: mpd cannot find default alsa soundcard; sudo -u mpd aplay -D default /Side_Right.wav results in desired audio output.

[Reco]

Hi.

On Tue, Dec 25, 2018 at 03:29:32PM +0100, toogley wrote:
> ==> any ideas?

This does not look right:

> # groups mpd
> mpd : audio

This means that mpd's primary group is not audio.

> /etc/mpd.conf
> 
> audio_output {
> type"alsa"
> name"ALSA sound card"
> }

An absence of 'group' stanza means, according to the configuration file:

# This setting specifies the group that MPD will run as. If not
# specified primary group of user specified with "user" setting will be
# used (if set).
# This is useful if MPD needs to be a member of group such as "audio" to
# have permission to use sound card.

My suspicion is that mpd simply discards membership of 'audio' group
then run as a daemon.

So, try this /etc/mpd.conf:

group "audio"

audio_output {
type"alsa"
name"ALSA sound card"
}

Reco

mpd cannot find default alsa soundcard; sudo -u mpd aplay -D default /Side_Right.wav results in desired audio output.

[toogley]

Hey,

* i run a updated debian stretch
* mpd cannot find the default alsa soundcard.
* sudo -u mpd aplay -D default /Side_Right.wav -> results in the desired audio 
output.
* also, https://bbs.archlinux.org/viewtopic.php?pid=1372042#p1372042 doesn't 
help
* switching to pulseaudio doesn't work, results in this bug: 
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=690530 - decided to debug 
alsa first, as its simpler.


==> any ideas?

/var/log/mpd.log

ALSA lib confmisc.c:767:(parse_card) cannot find card '0'
ALSA lib conf.c:4528:(_snd_config_evaluate) function snd_func_card_driver retu
rned error: No such file or directory
ALSA lib confmisc.c:392:(snd_func_concat) error evaluating strings
ALSA lib conf.c:4528:(_snd_config_evaluate) function snd_func_concat returned
error: No such file or directory
ALSA lib confmisc.c:1246:(snd_func_refer) error evaluating name
ALSA lib conf.c:4528:(_snd_config_evaluate) function snd_func_refer returned e
rror: No such file or directory
ALSA lib conf.c:5007:(snd_config_expand) Evaluate error: No such file or direc
tory
ALSA lib pcm.c:2495:(snd_pcm_open_noupdate) Unknown PCM default
Dec 25 15:11 : alsa_output: Failed to open "ALSA sound card" [alsa]: Failed to
 open ALSA device "default": No such file or directory
Dec 25 15:11 : output: Failed to open audio output
Dec 25 15:11 : player: problems opening audio device while playing "melodical/
Abel_Korzeniowski-Nocturnal_Animals/09.Mothers.ogg"


# groups mpd
mpd : audio

# aplay -l | head
 List of PLAYBACK Hardware Devices 
card 0: PCH [HDA Intel PCH], device 0: ALC255 Analog [ALC255 Analog]
  Subdevices: 0/1
  Subdevice #0: subdevice #0
card 0: PCH [HDA Intel PCH], device 3: HDMI 0 [HDMI 0]
  Subdevices: 1/1
  Subdevice #0: subdevice #0

# aplay --list-pcm | head
null
Discard all samples (playback) or generate zero samples (capture)
default:CARD=PCH
HDA Intel PCH, ALC255 Analog
Default Audio Device
sysdefault:CARD=PCH
HDA Intel PCH, ALC255 Analog
Default Audio Device
front:CARD=PCH,DEV=0
HDA Intel PCH, ALC255 Analog


/etc/asound.conf

defaults.pcm.device 0 
defaults.ctl.card 0 
defaults.pcm.card 0
defaults.timer.card 

/etc/mpd.conf

audio_output {
type"alsa"
name"ALSA sound card"
}

Re: apt-get upgrade problem on Jessie

[rhkramer]

Thanks for the reply, it helped a lot -- I seem to have one problem remaining 
(below).

On Monday, December 24, 2018 06:22:58 PM Elimar Riesebieter wrote:
> You need to
> # apt install firmware-realtek

Ok, I did the apt-get install firmware-realtek and that got rid of the
complaints about the 8168.

> 
> > gzip: stdout: No space left on device
> 
> It seems that there is some space missing on your hard drive. What
> tells:
> 
> $ df -h

df told me that /var was at 100%, and /boot was at 98%.

I did some drastic deletions in /var, and then tried upgrade again and it
became apparent that I had deleted some essential directories and files,
but the error messages told me what they were so I recreated them.

Aside: I should increase the size of /var and maybe /boot -- they both (of 
similar size) seem very adequate in my Wheezy system (still in service).

And then, ran apt-get upgrade again and the problems and that got rid of the 
problems with: 

 linux-image-3.16.0-7-amd64
 linux-image-amd64
 initramfs-tools

(I feel much better now that the linux images are installed.)

But now I'm at this point:

root@s31:~# apt-get upgrade
Reading package lists... Done
Building dependency tree
Reading state information... Done
Calculating upgrade... Done
The following packages have been kept back:
  firmware-linux-nonfree
0 upgraded, 0 newly installed, 0 to remove and 1 not upgraded.
root@s31:~#

I don't know that I'm worried about that, but if someone knows what I need
to do, I'll try it.

Re: kmail and encrypted mails

[Gene Heskett]

On Tuesday 25 December 2018 05:24:13 Hans wrote:

> Hi folks,
>
> merry christmas!
>
> Yesterday I stumbled over a small understanding problem.  I wanted to
> send an encrypted mail to a friend. Of course I got his public key.
>
> But when I want to create the mail, I got stuck. Problem: I have
> activated, that all encrypted mails shall also be encrypted by my own
> key, but the system says, I have no own key.
>
> Ok, I could create one, but in fact, I already have a key (this mail
> is signed with it), Here is my problem:
>
> When there is already a gpg-key crerated, why do I need another key
> for self encrypted mails? And do I need really 2 keys ( = 2 key
> pairs)?
>
> IMHO kmail could use the already existent key from me, but kmail does
> it only accept as a "signing key". That looks strange and is not
> logically in my mind.
>
> Maybe someone can tell me, what I am thinking wrong.
>
> Thanks in andvance and have a happy xmas!
>
Thank you, I would point out that kmail says theres not enough info to 
validate your key. OTOH, I've never attempted to set this stuff up, 
since I switched from Amigados to Linux in 1998, so I have no clue if 
its my setup error, or yours. I'd assume you've put your public key on a 
keyserver someplace, but even my understanding of exactly how that works 
is likely faulty. I haven't played with pgp since they jailed P.Z., and 
I've always looked at anything newer than 2.62 as possibly equipt with a 
back door of some sort, one of the unstated conditions for allowing his 
release. Conspiracy theory? Probably. Shrug. I supposedly have a public 
key out there, but don't have enough historical data left after 25 years 
to even issue a cancellation. So I'll do an Andy Capp and shaddup.
> Best
>
> Hans


Cheers, Gene Heskett
-- 
"There are four boxes to be used in defense of liberty:
 soap, ballot, jury, and ammo. Please use in that order."
-Ed Howdershelt (Author)
Genes Web page 

Re: kmail and encrypted mails

[Teemu Likonen]

Hans [2018-12-25 13:11:34+01] wrote:

> The old key can only be changed either for enryption or for signing,
> but not both.

Your old key can do both if you want to. Your master key already can
sign [S]. You just need create a new subkey for encryption [E] OR modify
the expiration date of your existing encryptien subkey.

Obviously it is up to you what you actually want to do. I am just
talking about techical options.

-- 
/// Teemu Likonen   - .-..    //
// PGP: 4E10 55DC 84E9 DFF6 13D7 8557 719D 69D3 2453 9450 ///


signature.asc
Description: PGP signature

Re: How can reportbug sends an email witthout an MTA installed ?

[Thomas Schmitt]

Hi,

aprekates wrote:
> But reportbug can send emails to BTS .
> How does it do that ?

In principle, i'd say by the SMTP internet protocol.
man 1 reportbug talks of /usr/bin/sendmail.

I guess the logic can be inspected at
  https://sources.debian.org/src/reportbug/7.5.1/reportbug/submit.py/#L202

In line 334 it starts an MTA and connects it by a pipe.
Alternatively, in line 353 it begins to talk SMTP to the host whose address
is in variable smtphost. This is done via a python class named "smtplib".

It should be possibile to distinguish the code paths used in your
local situation by the messages:
  ewrite("Sending message via %s...\n", mta)
  ewrite("Connecting to %s via SMTP...\n", smtphost)

Looking at
  https://packages.debian.org/unstable/reportbug
it may well be that it has found one of the suggested mail transport
agents.


Have a nice day :)

Thomas

Re: kmail and encrypted mails

[Hans]

Hi Teemu,

thank you for the fast and good informations. I learned, that my
key is not capable to encrypt, but to sign mails.

This was a long time good enough for me, as no one wanted encrypted mails from 
me. 

I also learned, that I made a mistake in 2007, when I created the keys, that I 
created the wrong form (DSA and ElGamal). At that time, I did not know better.

So, today I created a new keypair (with RSA4096 and a loong Mantra), which 
I will use in the future, too. The old key will be used as a signing key for a 
while. 

The old key can only be changed either for enryption or for signing, but not 
both. So, the easiest solution was to create a new one.

In the last hours I learned a lot and read a lot and I believe, I now better 
understand how it works.

Here I can now only say: Thank you (and all the other guys) for your great 
help and your hints.

Best regards

Hans
> Let's look at your key:
> 
> 
> $ gpg --list-options show-unusable-subkeys,no-show-uid-validity \
> --list-keys Ullrich
> 
> pub   dsa1024 2007-12-05 [SC]
>   984893FB397A9E4E4834898FE27C63AA5F093FF8
> uid  Hans-J. Ullrich [...]
> uid  Ullrich-IT-Consult [...]
> sub   elg2048 2007-12-05 [E] [expired: 2008-12-04]
> 
> 
> It tells us that your master key (dsa1024) has [SC] capabilities, which
> means that it can create message signatures [S] and certificates [C].
> The key also has a subkey (elg2048) with encryption [E] capabilities but
> the subkey has expired in 2008-12-04 so it is not used anymore.
> 
> You can create a new encryption subkey if you want to add an encryption
> capability: --edit-key + addkey. You can also modify the expiration date
> of your existing subkey: --edit-key + key 1 + expire.

Re: kmail and encrypted mails

[Teemu Likonen]

Hans [2018-12-25 11:24:13+01] wrote:

> But when I want to create the mail, I got stuck. Problem: I have
> activated, that all encrypted mails shall also be encrypted by my own
> key, but the system says, I have no own key.
>
> Ok, I could create one, but in fact, I already have a key (this mail
> is signed with it), Here is my problem:


Let's look at your key:


$ gpg --list-options show-unusable-subkeys,no-show-uid-validity \
--list-keys Ullrich

pub   dsa1024 2007-12-05 [SC]
  984893FB397A9E4E4834898FE27C63AA5F093FF8
uid  Hans-J. Ullrich [...]
uid  Ullrich-IT-Consult [...]
sub   elg2048 2007-12-05 [E] [expired: 2008-12-04]


It tells us that your master key (dsa1024) has [SC] capabilities, which
means that it can create message signatures [S] and certificates [C].
The key also has a subkey (elg2048) with encryption [E] capabilities but
the subkey has expired in 2008-12-04 so it is not used anymore.

You can create a new encryption subkey if you want to add an encryption
capability: --edit-key + addkey. You can also modify the expiration date
of your existing subkey: --edit-key + key 1 + expire.

-- 
/// Teemu Likonen   - .-..    //
// PGP: 4E10 55DC 84E9 DFF6 13D7 8557 719D 69D3 2453 9450 ///


signature.asc
Description: PGP signature

How can reportbug sends an email witthout an MTA installed ?

[aprekates]

I dont find any email MTA in my system  , and dont

recall ever using or configuring one.

I use only thunderbird for my emails.


But reportbug can send emails to BTS .

How does it do that ?


Alexandros

Re: Running lighttpd as different user: /run/lighttpd still gets created with www-data user and group

[Manuel Wagesreither]

Hello Sven,

thanks for your immediate reply! I did not have opportunity to see if it works, 
but I would be very astonished if it wouldn't! It seems like a perfect fit. 
Interesting, I did not not about this part of systemd before.

Thanks again and best regards,
Manuel


Am Sa, 22. Dez 2018, um 16:29, schrieb Sven Joachim:
> On 2018-12-22 15:10 +0100, Manuel Wagesreither wrote:
> 
> > I'm running an minbase installation of Debian Stretch and have
> > configured lighttpd to run as a different, non-www-data user. However,
> > when booting, lighttpd does not start successfully, as /run/lighttpd
> > is still owned by www-data. Only when I'm chowning it to the different
> > user, lighttpd can be started successfully.
> >
> > The system is booting from a readonly image. /run does exist there, but it 
> > not populated with a lighttpd directory.
> > The readonly image gets created using debootstrap. After
> > debootstrapping, a few shell scripts run which change lighttpd to run
> > as a different user.
> >
> > In detail, the shell scripts are
> > * replacing occurences of www-data by the new username in 
> > /etc/lighttpd/lighttpd.conf and /etc/init.d/lighttpd, and
> > * chownign the webroot, /var/log/lighttpd, /var/cache/lighttpd/compress, 
> > /var/cache/lighttpd/uploads
> >
> > At which point does /run/lighttpd get created,
> 
> If you use systemd as init, the directory is created early by
> systemd-tmpfiles(8) as part of sysinit.target.
> 
> > and how can I control the owning user and group of this directory?
> 
> Copy /usr/lib/tmpfiles.d/lighttpd.tmpfile.conf to /etc/tmpfiles.d and
> replace the user and group there.  See tmpfiles.d(5).
> 
> Cheers,
>Sven
> 

Re: kmail and encrypted mails

[Nicolas George]

Katnip (2018-12-25):
> you could try using protonmail which has pgp, it's free to start with.

The problem is not the software, changing it will not help.

Regards,

-- 
  Nicolas George


signature.asc
Description: Digital signature

Re: kmail and encrypted mails

[Nicolas George]

Hans (2018-12-25):
> IMHO kmail could use the already existent key from me, but kmail does it only 
> accept as a "signing key". That looks strange and is not logically in my mind.

I get this from your mail:

# gpg: Signature made Tue Dec 25 11:24:13 2018 CET using DSA key ID 5F093FF8
# gpg: Can't check signature: public key not found

I did not manage to find your key on key servers, but there is enough
information here: DSA.

https://en.wikipedia.org/wiki/Digital_Signature_Algorithm

It cannot be used for encrypting, only for signing, that is because of
its mathematical design. On the contrary, for example, a RSA key can be
used for both signing and encrypting.

Regards,

-- 
  Nicolas George


signature.asc
Description: Digital signature

Re: kmail and encrypted mails

[Hans]

Hi Nicolas,

ok, thank you for the response. Important to know, that the behaviour of kmail 
is correct. I will inform me now, what to do. 

Thank you very much for the help. Your response was a great help, now I am no 
more stuck.

Happy days and a good 2019!

Best

Hans 

Re: kmail and encrypted mails

[Nicolas George]

Hans (2018-12-25):
> this is weired. You should be able to verify my key on www.cacert.org.

Are you sure about what you are doing? cacert.org does not look to be
related to PGP at all.

> However, what can I do? What should I do?

Start by not top-posting, it is not accepted on this list; if you do not
know what it means, look it up.

I cannot tell you what you should do about the key, because it depends
on your ultimate purpose. All I can tell you is: you cannot use the
5F093FF8 for encryption.

Regards,

-- 
  Nicolas George


signature.asc
Description: Digital signature

Re: kmail and encrypted mails

[Hans]

Hi, 

this is weired. You should be able to verify my key on www.cacert.org.

However, what can I do? What should I do?

Best 

Hans
> I get this from your mail:
> 
> # gpg: Signature made Tue Dec 25 11:24:13 2018 CET using DSA key ID 5F093FF8
> # gpg: Can't check signature: public key not found
> 
> I did not manage to find your key on key servers, but there is enough
> information here: DSA.
> 
> https://en.wikipedia.org/wiki/Digital_Signature_Algorithm
> 
> It cannot be used for encrypting, only for signing, that is because of
> its mathematical design. On the contrary, for example, a RSA key can be
> used for both signing and encrypting.
> 
> Regards,



signature.asc
Description: This is a digitally signed message part.

kmail and encrypted mails

[Hans]

Hi folks, 

merry christmas! 

Yesterday I stumbled over a small understanding problem.  I wanted to send an 
encrypted mail to a friend. Of course I got his public key. 

But when I want to create the mail, I got stuck. Problem: I have activated, 
that all encrypted mails shall also be encrypted by my own key, but the system 
says, I have no own key.

Ok, I could create one, but in fact, I already have a key (this mail is signed 
with it), Here is my problem:

When there is already a gpg-key crerated, why do I need another key for self 
encrypted mails? And do I need really 2 keys ( = 2 key pairs)?

IMHO kmail could use the already existent key from me, but kmail does it only 
accept as a "signing key". That looks strange and is not logically in my mind.

Maybe someone can tell me, what I am thinking wrong.

Thanks in andvance and have a happy xmas!

Best 

Hans
 

signature.asc
Description: This is a digitally signed message part.