Re: terminator freezes desktop

[davidson]

On Sun, 5 Jul 2020 0...@caiway.net wrote:

Hi,

terminator, after years of superb stability, started to freeze my
desktop sometimes.


I have never used it.


This behavior started some 3 months ago.

Freeze happens sometimes when I start another window with
terminator.


Does it look like anything here?

 Debian Bug report logs: Bugs in package terminator
 https://bugs.debian.org/cgi-bin/pkgreport.cgi?pkg=terminator


The only solution is to change to another desktop and from a xterm
'killall terminator', closing all windows with terminator.

checking the logs didn't help.


Not sure what that might mean. Which log files did you examine?

Have you tried to start terminator from a different terminal. Say,
from a VT, like tty3 or something?

 [do Ctl + Alt + F3]
 Debian GNU/Linux 10 yourhostnamehere tty3

 yourhostnamehere login: [log in with username/passwd]

 $ env DISPLAY=:0 terminator --debug # or whatever DISPLAY has your desktop

Maybe you can get some informative output this way.


Otherwise, the system is rock solid.

system:

debian stable, daily updated
fluxbox


There is a version (1.92-1~bpo10+1) in buster-backports. If you aren't
using it already, you could install the backport and see if it has the
same problem. Collect them all.


any hints on how to solve this issue are more than welcome!


Good luck.

--
What do you want to take off? [hrzF or ?*] F
You were wearing a +0 robe.  The frost giant turns to flee.

Re: key "cdrom" not found in map source(s).

[Andrei POPESCU]

On Lu, 06 iul 20, 07:49:09, Reiner Buehl wrote:
> Hello,
> 
> I keep getting messages from syslog "key "cdrom" not found in map
> source(s)." on the console of my Debian Stretch system but I don't even
> have a cd rom installed in this system.
> 
> I already checked /etc/fstab, /etc/samba/smb.conf, /etc/autofs.conf and all
> the /etc/auto.* files as this message normally points to wrong NFS or other
> file system exports. I also checked the output of exportfs and did reboot
> many times but I can't get rid of these messages.
> 
> Do you have any idea what else could cause them?

Please post the entire log / dmesg entry (copy-paste).

Kind regards,
Andrei
-- 
http://wiki.debian.org/FAQsFromDebianUser


signature.asc
Description: PGP signature

Re: Fwd: How do I troubleshoot wireless network dropping?

[Andrei POPESCU]

On Lu, 06 iul 20, 00:23:17, Borden Rhodes wrote:
> 
> For the purposes of these log entries, "WiFiNetwork" is the SSID of my
> network, but the log literally shows "MyNetwork" in the next line when
> it's trying to associate. I have no idea what this network is and I
> can't find it configured anywhere. So is it possible that someone's
> trying to MAC-jack my laptop?
 
Do you have any other network management tool installed, like Network 
Manager? If yes, try stopping it

systemctl stop network-manager


Kind regards,
Andrei
-- 
http://wiki.debian.org/FAQsFromDebianUser


signature.asc
Description: PGP signature

Re: why is zfs taking 6 seconds to unmount each filesystem, to export pool?

[Andrei POPESCU]

On Lu, 06 iul 20, 14:20:05, Zenaan Harkness wrote:
> Does anyone here at d-u (sid) know why zpool export is doing its umounts 
> __really__ slowly?

Is unmounting faster if you do a 'sync' before?

Kind regards,
Andrei
-- 
http://wiki.debian.org/FAQsFromDebianUser


signature.asc
Description: PGP signature

Re: sources.list for security

[Andrei POPESCU]

On Du, 05 iul 20, 19:31:54, songbird wrote:
> 
>   i want the line that goes into the /etc/apt/sources.list
> file for testing security updates.

'testing' receives security updates via 'unstable', there is no separate 
repository.

https://www.debian.org/security/faq#testing

Kind regards,
Andrei
-- 
http://wiki.debian.org/FAQsFromDebianUser


signature.asc
Description: PGP signature

key "cdrom" not found in map source(s).

[Reiner Buehl]

Hello,

I keep getting messages from syslog "key "cdrom" not found in map
source(s)." on the console of my Debian Stretch system but I don't even
have a cd rom installed in this system.

I already checked /etc/fstab, /etc/samba/smb.conf, /etc/autofs.conf and all
the /etc/auto.* files as this message normally points to wrong NFS or other
file system exports. I also checked the output of exportfs and did reboot
many times but I can't get rid of these messages.

Do you have any idea what else could cause them?

Best regards,
Reiner

Using .XCompose

[Ajith R]

Hi,
I am new to Linux and Debian.I am trying to build a custom layout for my mother 
tongue Malayalam (India, Kerala).
The problem I am trying to tackle:
One of the Malayalam letters, ങ (U+0D19), is used much more commonly in its 
geminate form which is composed of three unicode charcters ങ ് ങ (U+0D19 U+0D4D 
U+0D19)  which will yield the geminate form ങ്ങ So, when I type, I want the ങ 
to be replaced with ങ്ങ.The keyboard layout is working fine as far as I can 
see. It does yield the correct letters. What doesn't seem to work is the 
.XCompose mechanism. Please tell me what I am missing.
Relevant part of my layout file /usr/share/X11/xkb/symbols/in
---
partial alphanumeric_keys
xkb_symbols "mal_puthuniraA" {
 name[Group1] = "Malayalam (Puthu Nira Aarambham)";
 key.type="FOUR_LEVEL";
 key    { [   U0D41, U0D19, U0D4E, U0D71] }; //  ു MALAYALAM VOWEL SIGN 
U, ങ്ങ MALAYALAM LETTER NGA geminate form,  ൎMALAYALAM LETTER DOT REPH,  ൱ 
MALAYALAM NUMBER ONE HUNDRED include "level3(ralt_switch)"
};--
My .XCompose file in my home directory is-include "%L" 
  : "ങ്ങ"
 : "ങ്ങ"
ങ : "ങ്ങ"-
I found the name XK_Shift_L in keysymdef.h file. I tried the unicode character 
and its code as well to identify the keypress. I tried with only one of the 
lines as well. XCompose(3) — libx11-doc — Debian buster — Debian Manpages was 
consulted. I have tried restarting after making changes which didn't help. 
Am I referring to the keypress correctly? What am I missing?
Thanks for your help,ajith


| 
| 
| 
|  |  |

 |

 |
| 
|  | 
XCompose(3) — libx11-doc — Debian buster — Debian Manpages


 |

 |

 |

Fwd: How do I troubleshoot wireless network dropping?

[Borden Rhodes]

> Use ps x to see how many copies of wpa_supplicant are running. If you have
> multiple copies started from the command line the wifi won't stay connected.
> I had the same problem.

Thank you for the suggestion. I checked when it started dropping and, not only
was there one instance of wpa_supplicant running, it was the same instance
(judging from its PID)

> Keep off the Intel card when you use the USB dongle, maybe one interfere with
> the other

Another good suggestion. I've tried disabling it from ifconfig. The interfaces
use consistent device naming, so the names shouldn't be getting mixed up.

I've isolated, what I think are, the journal lines from when my connection
dropped today:

wpa_supplicant[1555]: wlp10s0: CTRL-EVENT-DISCONNECTED bssid=a0:##:##:##:##:0a
  reason=4 locally_generated=1
wpa_supplicant[1555]: dbus: wpa_dbus_property_changed: no property
  SessionLength in object /fi/w1/wpa_supplicant1/Interfaces/0
wpa_supplicant[1555]: wlp10s0: CTRL-EVENT-REGDOM-CHANGE init=CORE type=WORLD
wpa_supplicant[1555]: wlp10s0: SME: Trying to authenticate with
  a0:##:##:##:##:0a (SSID='WiFiNetwork' freq=2462 MHz)
wpa_supplicant[1555]: wlp10s0: Trying to associate with a0:##:##:##:##:0a
  (SSID='MyNetwork' freq=2462 MHz)
wpa_supplicant[1555]: wlp10s0: Associated with a0:##:##:##:##:0a
wpa_supplicant[1555]: wlp10s0: CTRL-EVENT-SUBNET-STATUS-UPDATE status=0
wpa_supplicant[1555]: wlp10s0: CTRL-EVENT-REGDOM-CHANGE init=COUNTRY_IE
  type=COUNTRY alpha2=CA
wpa_supplicant[1555]: wlp10s0: WPA: Key negotiation completed with
  a0:##:##:##:##:0a [PTK=CCMP GTK=CCMP]
wpa_supplicant[1555]: wlp10s0: CTRL-EVENT-CONNECTED - Connection to
  a0:##:##:##:##:0a completed [id=0 id_str=]

For the purposes of these log entries, "WiFiNetwork" is the SSID of my
network, but the log literally shows "MyNetwork" in the next line when
it's trying to associate. I have no idea what this network is and I
can't find it configured anywhere. So is it possible that someone's
trying to MAC-jack my laptop?

Re: why is zfs taking 6 seconds to unmount each filesystem, to export pool?

[Zenaan Harkness]

Does anyone here at d-u (sid) know why zpool export is doing its umounts 
__really__ slowly?


(btw, anyone wanting to dip their toes in the clear zfs waters might want a 
little tutorial recently written for a few basic zfs steps:
  ZFS Cheatsheet + Backups tutorial
  https://github.com/zenaan/quick-fixes-ftfw/blob/master/zfs/zfs.md
)



- Forwarded message from Ivan Volosyuk  -

From: Ivan Volosyuk 
To: Discuss 
Reply-To: Discuss 
Date: Sun, 5 Jul 2020 22:49:19 +1000
Subject: Re: [zfs-discuss] why is zfs taking 6 seconds to unmount each 
filesystem, to export pool?
List-Id: "Discuss" 

Looks like bad interaction with systemd. I don't delegate to systemd
for mounting datasets and the operation is pretty much instant. I
didn't try systemd zfs mount generator.

On Sun, Jul 5, 2020 at 7:24 PM Zenaan Harkness  wrote:
>
> Why does zfs take about 6 seconds per filesystem, to unmount each, just to 
> export a single disk pool, when that pool had only just been imported and had 
> no activity?
>
> Since the pool has about 60 filesystems, this means ~6 minutes of unmounts 
> before I can "safely" unplug this disk, which is user un-friendly.
>
> (The disk was attached via USB3.)
>
> This is repeatable.
>
>
> Command:
>
> # zpool export L-zen-setups
> --->> 20200705@19:08:44 <<---
> ≡ 1  root@eye 20200705@19:15:52 ~
> 
> (We can see this cmd took ~7 minutes to run.)
> 
> Sample syslog:
> Jul 05 19:08:44 eye systemd[2111]: 
> Library-Lpools-zen-p1\x2dsetups_misc-video.mount: Succeeded.
> Jul 05 19:08:44 eye systemd[1260]: 
> Library-Lpools-zen-p1\x2dsetups_misc-video.mount: Succeeded.
> Jul 05 19:08:44 eye systemd[1]: 
> Library-Lpools-zen-p1\x2dsetups_misc-video.mount: Succeeded.
> Jul 05 19:08:47 eye systemd[2111]: 
> Library-Lpools-zen-p1\x2dsetups_misc-src.mount: Succeeded.
> Jul 05 19:08:47 eye systemd[1260]: 
> Library-Lpools-zen-p1\x2dsetups_misc-src.mount: Succeeded.
> Jul 05 19:08:47 eye systemd[1]: 
> Library-Lpools-zen-p1\x2dsetups_misc-src.mount: Succeeded.
> 
> ...
> Jul 05 19:15:39 eye systemd[1]: 
> Library-Lpools-zen-p1\x2dsetups_misc-backups.mount: Succeeded.
> Jul 05 19:15:39 eye systemd[1260]: 
> Library-Lpools-zen-p1\x2dsetups_misc-backups.mount: Succeeded.
> Jul 05 19:15:45 eye systemd[2111]: 
> Library-Lpools-zen-p1\x2dsetups_misc.mount: Succeeded.
> Jul 05 19:15:45 eye systemd[1]: Library-Lpools-zen-p1\x2dsetups_misc.mount: 
> Succeeded.
> Jul 05 19:15:45 eye systemd[1260]: 
> Library-Lpools-zen-p1\x2dsetups_misc.mount: Succeeded.
> Jul 05 19:15:52 eye zed[2123304]: eid=2224 class=pool_export 
> pool_guid=0x012FC06FFAFBEE35
> Jul 05 19:15:52 eye zed[2123307]: eid=2225 class=config_sync 
> pool_guid=0x012FC06FFAFBEE35
> 
> ??

--
zfsonlinux: Discuss
Permalink: 
https://zfsonlinux.topicbox.com/groups/zfs-discuss/Td41fab558f16b0b1-Mf6356af931ab71ebb10cd2c8
Delivery options: 
https://zfsonlinux.topicbox.com/groups/zfs-discuss/subscription

- End forwarded message -

Re: terminator freezes desktop

[Cindy Sue Causey]

On 7/5/20, 0...@caiway.net <0...@caiway.net> wrote:
>
> terminator, after years of superb stability, started to freeze my
> desktop sometimes.
> This behavior started some 3 months ago.
>
> Freeze happens sometimes when I start another window with terminator.
>
> The only solution is to change to another desktop
> and from a xterm 'killall terminator', closing all windows with
> terminator.
>
> checking the logs didn't help.
>
> Otherwise, the system is rock solid.


Just thinking out loud while you wait for others. How's the
temperature where you're at? Is there any chance e.g. the CPU(s)
is/are overheating? Fan kicking on a lot is a handy hint there.

Just asking as a checklist point "for the archives" because it's
exactly what I'm experiencing right now. It has been occurring
probably within the same time span, too.

Firefox-ESR is my problem child. I have to shut it down approximately
every hour or so. Can't remember having to do that at all during the
wintertime.

Have had to go the CTRL+ALT+F2 (or F3 OR..) route myself a couple
times... OR... the laptop's power on/off hardware button during
extreme instances.

Now I'm finally consciously paying attention to where I can USUALLY
get to the terminal to killall before the system gets too bogged down
to flip through the widows to be able to type in that same killall
command.

No reboot is necessary, just relaunch and off we go... until the next
approximate hour or so passes away in time.

Afterthought: No, my problem's mostly not limited (computer) memory.
There will still be more than 1GB unused when my lockdowns occur. In
days gone by, "free -m" has shown 60+ for "Mem" and 90+ for Swap, and
it will still be almost working. :)

Cindy :).
-- 
Cindy-Sue Causey
Talking Rock, Pickens County, Georgia, USA

* runs with birdseed *

Re: sources.list for security

[Keith bainbridge]

On 6/7/20 9:31 am, songbird wrote:

   some time ago there was a change made to the sources
list names for security and i never saw the one for
testing come by (i may have missed it) so i'm asking...:)



Good afternoon


This is what my sources.list looked like when I first installed testing 
early 2019 - with # added to some lines



There is a security line included which may help you.


deb http://deb.debian.org/debian bullseye  main contrib non-free
#deb-src http://deb.debian.org/debian buster main contrib non-free

#deb http://deb.debian.org/debian buster-updates main contrib non-free
#deb-src http://deb.debian.org/debian buster-updates main contrib non-free

#deb http://security.debian.org/debian-security/ buster/updates main 
contrib non-free
#deb-src http://security.debian.org/debian-security/ buster/updates main 
contrib non-free

#deb http://ftp.debian.org/debian buster-backports main



deb http://security.debian.org/debian-security bullseye-security main 
contrib non-free
#deb-src http://security.debian.org/debian-security bullseye-security 
main contrib non-free


#deb http://deb.debian.org/debian/ sid main contrib non-free
#deb http://deb.debian.org/debian/ experimental main contrib non-free


Sorry - I just remembered I could have saved the original file.




--

Keith Bainbridge

keithr...@gmail.com

0447 667468

Re: sources.list for security

[songbird]

Dan Ritter wrote:
> songbird wrote: 
>> Andrei POPESCU wrote:
...
>> >>   wishlist for an alias to testing so nobody who=20
>> >> follows testing will need to keep changing their
>> >> sources.list every time there is a release.
>> >
>> > What more than the 'testing' alias are you looking for?
>> 
>>   the one i should use...
>
> What problem have you observed that you want to fix?

  i want the line that goes into the /etc/apt/sources.list
file for testing security updates.


...
> Does that help?

  no, i understand all that, i've been using Debian since
around potato.

  some time ago there was a change made to the sources 
list names for security and i never saw the one for 
testing come by (i may have missed it) so i'm asking...  :)


  songbird

Re: sources.list for security

[Dan Ritter]

songbird wrote: 
> Andrei POPESCU wrote:
> > On Du, 05 iul 20, 09:38:05, songbird wrote:
> >> Andrei POPESCU wrote:
> >> > On Du, 05 iul 20, 09:52:25, Salvatore Bonaccorso wrote:
> >> >>=3D20
> >> >> https://bugs.debian.org/931785
> >> >
> >> > Oups, completely forgot about that, even though I'm subscribed to -doc.
> >>=20
> >>   wishlist for an alias to testing so nobody who=20
> >> follows testing will need to keep changing their
> >> sources.list every time there is a release.
> >
> > What more than the 'testing' alias are you looking for?
> 
>   the one i should use...

What problem have you observed that you want to fix?

Testing is, like stable and unstable, a label for a repository
with a specific policy. 

If you use stable as your repo, you will get automatically
transitioned to the new stable when that is deployed. If you
don't want that to happen, you pick the specific stable version
name, like "jessie" or "buster".

If you use testing as your repo, you will get new
partially-broken packages all the time as they pass the test of
being in unstable for ten days without new RC bugs. Technically,
the testing repo is also available under the name of the next
stable major release, so you could use the name "bullseye" right
now and you would eventually end up with a stable bullseye
system. But if you use "testing", it will always be testing.

Does that help?

-dsr- 

Re: sources.list for security

[songbird]

Andrei POPESCU wrote:
> On Du, 05 iul 20, 09:38:05, songbird wrote:
>> Andrei POPESCU wrote:
>> > On Du, 05 iul 20, 09:52:25, Salvatore Bonaccorso wrote:
>> >>=3D20
>> >> https://bugs.debian.org/931785
>> >
>> > Oups, completely forgot about that, even though I'm subscribed to -doc.
>>=20
>>   wishlist for an alias to testing so nobody who=20
>> follows testing will need to keep changing their
>> sources.list every time there is a release.
>
> What more than the 'testing' alias are you looking for?

  the one i should use...


  songbird

Re: Very old hardware...

[Thomas Schmitt]

Hi,

David Wright wrote:
> > > My 650MHz Pentium III (Coppermine) [...]
> consumes ~50mA idling, ~300mA when busy. [...] at 220V

11 to 66 Watt. That's unusual for a full size PC of that time.
I knew some which issued 10 Watts already by noise power and could
heat a small sized office room in winter.

Google ...
  https://en.wikipedia.org/wiki/Pentium_III
22.41 Watt of TDP. That's about the same as with one 3.5 GHz Xeon core.
But i'd say the Xeon core is about 20 times more powerful (64 vs. 32 bit,
factor 5 of frequency, two hyperthreads).

I am still astonished about the ratio of 1 : 6 of idle : busy.
Some other component besides the CPU must be very good in saving power
when idle. And the idle situation must be really boring ...


Have a nice day :)

Thomas

Re: Override default post-install starting of services [was Return a Debian system to a pristine state]

[David Wright]

On Sun 05 Jul 2020 at 20:12:36 (+), davidson wrote:
> On Mon, 1 Jun 2020 David Wright wrote:
> > On Sun 31 May 2020 at 16:28:34 (+0700), Victor Sudakov wrote:
> > > David Wright wrote:
> > > > On Fri 29 May 2020 at 21:57:06 (+0700), Victor Sudakov wrote:
> 
> [big snip]
> 
> > > > > I, too, was surprised by some Debian features like its tendency
> > > > > to start daemons with a vanilla configuration right after
> > > > > installation. Still can't say I like this decision.
> > > > 
> > > > This has been discussed in the past.
> 
> Idly curious for links, in case anyone has them at hand. (Not asking
> anyone to search for me, but not curious enough to search for everyone
> else.)

https://lists.debian.org/debian-user/2019/09/msg00895.html
for example. The policy hasn't troubled me in the past.

Cheers,
David.

Re: Override default post-install starting of services [was Return a Debian system to a pristine state]

[davidson]

On Mon, 1 Jun 2020 David Wright wrote:

On Sun 31 May 2020 at 16:28:34 (+0700), Victor Sudakov wrote:

David Wright wrote:

On Fri 29 May 2020 at 21:57:06 (+0700), Victor Sudakov wrote:


[big snip]


I, too, was surprised by some Debian features like its tendency
to start daemons with a vanilla configuration right after
installation. Still can't say I like this decision.


This has been discussed in the past.


Idly curious for links, in case anyone has them at hand. (Not asking
anyone to search for me, but not curious enough to search for everyone
else.)


[David Wright continued:]

Using the term "vanilla" suggests that an ordinary upstream
configuration is applied to the daemon, which is not true: the
Debian developers apply what they consider are sensible secure
defaults, designed to integrate with the distribution.  This work
is usually documented in changelog.Debian.gz or various READMEs.

[Victor Sudakov asked:]
Is the /usr/sbin/policy-rc.d method still the official supported
one of disabling this behavior when it is not desirable?


I have for a while assumed that this is what

 /etc/systemd/system-preset/*.preset

files are for (on systems with systemd).

Selective excerpts from systemd.preset(5):

  NAME
   systemd.preset - Service enablement presets

  SYNOPSIS
   /etc/systemd/system-preset/*.preset
   /run/systemd/system-preset/*.preset
   /lib/systemd/system-preset/*.preset
   /etc/systemd/user-preset/*.preset
   /run/systemd/user-preset/*.preset
   /usr/lib/systemd/user-preset/*.preset

  DESCRIPTION

   Preset files may be used to encode policy which units shall be
   enabled by default and which ones shall be disabled. They are read
   by "systemctl preset" (for more information see systemctl(1)) which
   uses this information to enable or disable a unit according to
   preset policy.  "systemctl preset" is used by the post install
   scriptlets of RPM packages (or other OS package formats), to
   enable/disable specific units by default on package installation,
   enforcing distribution, spin or administrator preset policy.

   [With respect to that last bit about the post install scriptlets of
   packages, see my note at bottom.]

   This allows choosing a certain set of units to be enabled/disabled
   even before installing the actual package.

   For more information on the preset logic please have a look at the
   Presets document [at
   https://www.freedesktop.org/wiki/Software/systemd/Preset/ ].

   [...]

  PRESET FILE FORMAT

   The preset files contain a list of directives consisting of either
   the word "enable" or "disable" followed by a space and a unit name
   (possibly with shell style wildcards), separated by newlines. [...]

   [...] Files in /etc/ override files with the same name in /usr/lib/
   and /run/.
   Files in /run/ override files with the same name in /lib/.
   Packages should install their preset files in /lib/. Files in /etc/
   are reserved for the local administrator, who may use this logic to
   override the preset files installed by vendor packages. [...]

  EXAMPLES

   Example 1. Default to off

 # /lib/systemd/system-preset/99-default.preset

 disable *

   This disables all units. Due to the filename prefix "99-", it will
   be read last and hence can easily be overridden by spin or
   administrator preset policy.

   [...]

   Example 3. Administrator policy

 # /etc/systemd/system-preset/00-lennart.preset

 enable httpd.service
 enable sshd.service
 enable postfix.service
 disable *

   This enables three specific services and disables all others. This
   is useful for administrators to specifically select the units to
   enable, and disable all others. Due to the filename prefix "00-" it
   will be read early and override all other preset policy files.


It's many years since I ran servers in what one might call "hostile"
environments,


(Myself I claim no experience whatsoever.)


so the current situation suits me, and I don't keep up with
discussions like those in
https://manpages.debian.org/experimental/policy-rcd-declarative/policy-rc.d-declarative.8.en.html

So others would have to comment here, after the discussion of
resetting Windows has subsided.


NOTE

Regarding,

  "systemctl preset" is used by the post install scriptlets of RPM
  packages (or other OS package formats), to enable/disable specific
  units by default on package installation, enforcing distribution,
  spin or administrator preset policy.

it seems we are not supposed to take that (weirdly
distro-inappropriate) language too literally:

  $ for deb in /var/cache/apt/archives/*.deb ; \
  > do dpkg-deb -I $deb preinst postinst 2>/dev/null ; \
  > done |
  > grep -i 'preset' ; \
  > if [ $? == 1 ] ; then echo SORRY BOSS ; fi
  SORRY BOSS

Nonetheless, doing like so before issuing "apt-get install privoxy"

  # echo disable privoxy.service >> 
/etc/systemd/system-preset/05-privoxy-test.preset

yields this installation message

  [...]
  Creating conf

Re: security.debian.org is slow

[Georgi Naplatanov]

On 7/5/20 10:00 PM, Sven Hartge wrote:
> Georgi Naplatanov  wrote:
> 
>> does anybody know why http://security.debian.org is so slow.
> 
>> Today and yesterday I downloaded security updates and download speed
>> was about 700-800 Kbytes/s.
> 
> security.debian.org is provided through the Fastly CDN, so the slowness
> really depends on the network you are on and the connection of it to the
> nearest Fastly location.
> 

Thank you Sven for the explanation.

Kind regards
Georgi

No "type=APPARMOR_ALLOWED/DENIED" logs

[l0f4r0]

Hi,

I'm under Debian 10 (kernel 5.4.8-1~bpo10+1) and I installed auditd some weeks 
ago.
Issue: I don't get any AppArmor logs like ALLOWED or DENIED in my 
/var/log/audit/audit.log while I'm sure I should have some (for example, 
aa-genprof seems unable to scan my logs and help me to generate an appropriate 
profile).

I thought AppArmor writes its logs directly in /var/log/audit/audit.log if 
auditd is already installed, otherwise they go to /var/log/syslog, 
/var/log/messages or /var/log/kern.log. I have nothing there neither...
Did I miss something please?

NB:
* the only AppArmor related logs I have are some apparmor="STATUS" regarding 
operation="profile_load" for the most part...
* apparmor.service is running and everything is OK with aa-status

Thanks in advance :)
Best regards,
l0f4r0

Re: security.debian.org is slow

[Sven Hartge]

Georgi Naplatanov  wrote:

> does anybody know why http://security.debian.org is so slow.

> Today and yesterday I downloaded security updates and download speed
> was about 700-800 Kbytes/s.

security.debian.org is provided through the Fastly CDN, so the slowness
really depends on the network you are on and the connection of it to the
nearest Fastly location.

S!

-- 
Sigmentation fault. Core dumped.

terminator freezes desktop

[0...@caiway.net]

Hi,

terminator, after years of superb stability, started to freeze my
desktop sometimes.
This behavior started some 3 months ago.

Freeze happens sometimes when I start another window with terminator.

The only solution is to change to another desktop
and from a xterm 'killall terminator', closing all windows with
terminator.

checking the logs didn't help.

Otherwise, the system is rock solid.

system:

debian stable, daily updated
fluxbox

any hints on how to solve this issue are more than welcome!

regards

Re: Thunderbird replacement suggestions?

[Tom Dial]

On 7/4/20 16:43, Weaver wrote:
> On 05-07-2020 07:38, Tom Dial wrote:
>> Greetings.
>>
>> While trying to fix a broken Thunderbird/Enigmail installation on my
>> wife's Windows laptop, I found the cause to be a new feature in
>> Thunderbird 78, installed recently without notice: that it will not
>> support Enigmail. The new version also appears to have no obvious way to
>> import openpgp keys, and it appears the developers do not plan to
>> support that, at least for secret and signed public keys, nor any
>> intention to adhere to the "Web of Trust" infrastructure. I still have
>> TB 68 on the Debian machines, but expect that will go away by Bullseye
>> release, since Mozilla's support for it apparently will end late this year.
> 
> Interesting!
> I'm using 68.9.0 (64 bit) Thunderbird on SID and all those features work
> just fine, for now.
> Enigmail _is_ going, but will be replaced by OpenPGP, and S/MIME has
> always been available, and will continue to be.

I also am presently using 68.9.0 (on Buster) without issues. Windows 10
with current patches, a harbinger of things to come, is a rather
different matter; it now has Thunderbird 78, which fails with Enigmail.

>From what I could find - almost none of it younger than nine months,
Thunderbird is supposed to honor the OpenPGP protocol, (re)implemented
internally, with its own repository. It appears it will not provide for
import of public keys and that there are no plans to add that, and no
more than a hint of possible consideration of using public key servers.
It offers, in its current version, to accept instead a "certificate,"
presumably X.509, which I do not have or wish to obtain.

This seems to me a good deal short of replacing anything but the
cryptographic core and that, maybe, newly developed. It may happen that
the developers will remedy these defects, but that is at best a future goal.

Regards,
Tom Dial

security.debian.org is slow

[Georgi Naplatanov]

Hi list,

does anybody know why http://security.debian.org is so slow.

Today and yesterday I downloaded security updates and download speed was
about 700-800 Kbytes/s.

Kind regards
Georgi

Re: Very old hardware...

[James H. H. Lampert]

David Wright wrote:

Why do I keep mine? 1) Sentimentality, as it was the one on my work desk
when I retired. 2) Being a tower, it has room for up to 4 PATA drives.
The loaned Optiplex only holds one—after that, I'm down to an old PATA
caddy. 3) There's no WEEE here, so I'm not sure exactly how one gets
rid of it anyway.


Some years ago, I tried ordering a box from a local custom-builder. The 
fact that the BIOS and/or FDC on it would not accept dual floppy drives 
was an annoyance. The fact that Xerox Ventura Publisher (DOS/GEM 
Edition) would not run on it *at all* was the show-stopper. It went back 
about 24 hours after I took delivery.


I've since learned that there is at least one custom-builder that 
specializes in DOS boxes optimized for legacy apps, but with my "spare 
parts" dual-boot, I haven't had a pressing need to determine whether 
their boxes will run VPGEM (and they are not certain themselves).


--
JHHL

Re: Very old hardware...

[David Wright]

On Sun 05 Jul 2020 at 05:15:58 (+), Long Wind wrote:
> On Sunday, July 5, 2020, 12:59:02 PM GMT+8, David Wright 
>  wrote:  
> > Why do I keep mine? 1) Sentimentality, as it was the one on my work desk
> > when I retired. 2) Being a tower, it has room for up to 4 PATA drives.
> > The loaned Optiplex only holds one—after that, I'm down to an old PATA
> > caddy. 3) There's no WEEE here, so I'm not sure exactly how one gets
> > rid of it anyway.
> > 
> > BTW neither of these Pentiums looks like a museum piece to me, but
> > just so much junk, particulary if you upgrade it, or overwrite its
> > "authentic" OS. Unless you find a use for it, I guess the coucil
> > in your locality is obliged to dispose of it.
> 
>  such old pc is for fun, not for practical useyou can install old debian, 
> archive.debian.org
> actually i've just bought old pc for 199 yuan(one US dollar is about 7 yuan)
> it has 4G memory, intel E7500, 160G hard disk 
> it hasn't monitor/mouse/keyboard

Buy? I've yet to buy a computer. All my machines are castoffs.

> you can see how worthless such pc is

Certainly true, financially. Valueless—not so clear.

Cheers,
David.

Re: pciehp / pci express hot plug kernel module to longer included? (sid)

[Reco]

Hi.

On Sun, Jul 05, 2020 at 11:44:03PM +1000, Zenaan Harkness wrote:
> Is the pciehp / pci express hot plug kernel module to longer included with 
> Debian, or is it meant to be compiled in as static?

It's compiled in:

# grep -i HOTPLUG_PCI_PCIE /boot/config-4.19.0-9-amd64 
CONFIG_HOTPLUG_PCI_PCIE=y


> Debian sid here on an X220, trying to connect a "Transcend USB 3.0 
> ExpressCard Adapter" to get a USB3 port (2 ports actually).

As they tell at [1] - try adding "pciehp.pciehp_force=1" to the kernel's
commandline.

[1] https://help.ubuntu.com/community/ExpressCard

Reco 

Re: Very old hardware...

[David Wright]

On Sun 05 Jul 2020 at 12:06:12 (+0200), deloptes wrote:
> David Wright wrote:
> 
> > I was under the impression that i586 was a Debian invention for
> > kernels that had been termed i486, in order to prevent the impression
> > that they would run on 486 hardware (as they had done previously).
> > 
> > I would expect a 700MHz Pentium III to run a 686 kernel.
> > My 650MHz Pentium III (Coppermine) runs buster with the kernel in
> > linux-image-4.19.0-9-686-pae_4.19.118-2+deb10u1_i386.deb
> 
> I am not sure - this is what I am saying with those links.
> 
> In wheezy
> 
> Nearly all x86-based (IA-32) processors still in use in personal computers
> are supported, including all varieties of Intel's "Pentium" series. 
> https://www.debian.org/releases/wheezy/i386/ch02s01.html.en
> 
> But this statement is missing later (especially the last part regarding
> Pentium series)
> 
> How I know this - some years ago I had to start building kernel for Geode,
> because it is i586. And reading around noticed the notification that older
> models are not supported by default debian kernel.
> 
> This means that OP has to build kernel to run it. In such case I debootstrap
> debian and install the custom kernel.

The lone word "Pentium" can be confusing in this context, as it covers
many lines of processors stretching back 25 years. The OP wrote at the
start of the OP:

   "Good evening Debian User, I have found an old PC with these specs:
CPU: Pentium III 700 Mhz;"

The only Pentium III older than my own is the Katmai, and it could
only be cranked up to 600MHz. By the time jessie was released, my
Coppermine was the oldest processor I still ran, so I didn't check
whether Katmai, which had design compromises related to its Pentium II
heritage, fell below the bar.

I don't know whether all III models, particularly the mobiles,
support pae, but there are still non-pae kernels in Debian.
My worry is not the processor but the amount of memory. It might
be easy to pick up more via the web.

> As people suggested it is not worth the power it consumes. For 35-50$ you
> have a low power device with more computing power, but of course you decide
> what to do with your hardware and electricity bills. 

I can't speak for the OP. My own PC consumes ~50mA idling, ~300mA
when busy. That's without the monitor, which is normally switched off
(hard switch) because I use ssh. (Those were measured at 220V.)

Most of the time in summer the PC too is switched off (hard),
with 80s ambient temperature. In winter, I leave it on more,
as any warmth is appreciated. (OK, I'll grant you, it's consuming
electricity rather than gas, increasing the financial cost.)

As for buying more computing power, what would I use it for—I already
have a laptop and desktop (both i5, 4 processors) that provide ample.

Cheers,
David.

Re: Very old hardware...

[James H. H. Lampert]

My DOS/Linux dual-boot at home was constructed from spare parts, 
including a cast-off Dell motherboard from work that is old enough to 
support two physical floppy drives (it has a 360k and a 1.44M).


It runs IBM PC-DOS 2000 (lightning fast), with DOSSHELL, WordPerfect 
5.1, Quattro, and Xerox Ventura Publisher (DOS/GEM Edition).


And it runs Ubuntu Hardy Heron, with a fairly old version of Gnome. 
Perhaps if I were configuring the Linux side of it today, I might have 
used Debian, and consulted this List for guidance.


It does NOT run WinDoze, and neither does my PC-DOS 2000 notebook (a 
486). I don't allow WinDoze in the house.


And as to computer museums, I highly recommend the CHM, in Mountain 
View, CA. The only real fault I've ever found with it is that they did 
not see fit to include an IBM Merlin (neither a drive, nor even a pack) 
in their early removable-pack hard drive exhibit.


--
James H. H. Lampert

Re: pciehp / pci express hot plug kernel module to longer included? (sid)

[Andrei POPESCU]

On Du, 05 iul 20, 23:44:03, Zenaan Harkness wrote:
> Is the pciehp / pci express hot plug kernel module to longer included 
> with Debian, or is it meant to be compiled in as static?
> 
> Debian sid here on an X220, trying to connect a "Transcend USB 3.0 
> ExpressCard Adapter" to get a USB3 port (2 ports actually).

ExpressCard is not necessarily PCI Express as far as I understand from

https://en.wikipedia.org/wiki/ExpressCard

> There are possible hints that a module may need to be compiled - how 
> would I check whether it's built in static, or whether the module is 
> no longer shipped with debian kernels?

If you know the name of the module try

grep -i module_name /boot/config-$(uname -r)

Mind the underscore, even if dashes are (also) used in other contexts.

Kind regards,
Andrei
-- 
http://wiki.debian.org/FAQsFromDebianUser


signature.asc
Description: PGP signature

Re: sources.list for security

[Andrei POPESCU]

On Du, 05 iul 20, 09:38:05, songbird wrote:
> Andrei POPESCU wrote:
> > On Du, 05 iul 20, 09:52:25, Salvatore Bonaccorso wrote:
> >>=20
> >> https://bugs.debian.org/931785
> >
> > Oups, completely forgot about that, even though I'm subscribed to -doc.
> 
>   wishlist for an alias to testing so nobody who 
> follows testing will need to keep changing their
> sources.list every time there is a release.

What more than the 'testing' alias are you looking for?

Kind regards,
Andrei
-- 
http://wiki.debian.org/FAQsFromDebianUser


signature.asc
Description: PGP signature

Re: Very old hardware...

[Tixy]

On Sun, 2020-07-05 at 12:06 +0200, deloptes wrote:
> David Wright wrote:
> 
> > I was under the impression that i586 was a Debian invention for
> > kernels that had been termed i486, in order to prevent the impression
> > that they would run on 486 hardware (as they had done previously).
> > 
> > I would expect a 700MHz Pentium III to run a 686 kernel.
> > My 650MHz Pentium III (Coppermine) runs buster with the kernel in
> > linux-image-4.19.0-9-686-pae_4.19.118-2+deb10u1_i386.deb
> > 
> 
> I am not sure - this is what I am saying with those links.
> 
> In wheezy
> 
> Nearly all x86-based (IA-32) processors still in use in personal computers
> are supported, including all varieties of Intel's "Pentium" series. 
> https://www.debian.org/releases/wheezy/i386/ch02s01.html.en
> 
> But this statement is missing later (especially the last part regarding
> Pentium series)
> 
> How I know this - some years ago I had to start building kernel for Geode,
> because it is i586. And reading around noticed the notification that older
> models are not supported by default debian kernel.
> 
> This means that OP has to build kernel to run it.

Except that in David's post you quoted, he said he's running a Buster
kernel on his Pentium III (same CPU series as the OP said he had).

Also, the release notes for Buster mention in section 5.1.10. that
WebKit2GTK required SSE2 support so will crash on Pentium III or Geode.
It also says 'The first update of webkit2gtk in buster is expected to
restore support for these systems'

So it's obvious that Buster in general works on Pentium III, and the OP
can expect it to install and work if they want to try. No custom
kernels needed.

-- 
Tixy

Re: sources.list for security

[songbird]

Andrei POPESCU wrote:
> On Du, 05 iul 20, 09:52:25, Salvatore Bonaccorso wrote:
>>=20
>> https://bugs.debian.org/931785
>
> Oups, completely forgot about that, even though I'm subscribed to -doc.
>
> Kind regards,
> Andrei

  wishlist for an alias to testing so nobody who 
follows testing will need to keep changing their
sources.list every time there is a release.


  songbird

Re: Remove undesired entries in MATE "Applications" sub-menus

[songbird]

Richard Owlett wrote:
> On 07/04/2020 07:38 AM, n...@dismail.de wrote:
>> On Sat, Jul 04, 2020 at 06:53:56 -0500, Richard Owlett wrote:
>>> I'm using Debian10 with the MATE desktop.
>>> The Debian installer defaults to installing a mess of applications I rarely
>>> want. They end up with entries on MATE's Applications sub-menus.
>>>
>>> Without deleting the offending applications from the system, how can I
>>> delete those menu entries and replace them with links to suitable
>>> applications.
>> 
>> MATE has graphical editor for this. If not already installed, the package
>> is named "mozo" as is the tool itself.
>
> How would one discover that? I've silently been grumbling about the 
> problem since Debian first had MATE as a default option.

  reading the website, following links:

  https://mate-desktop.org/
  https://github.com/mate-desktop/


> When today's web search turned up nothing I was both frustrated enough 
> and in enough need to post.
>
>> Otherwise you could try to edit the relevant .desktop files manually.
>
> Where are they? How would I even know they existed?
> I installed "mozo" and the "go to system, preferences, look and feel, 
> main menu" to which Peter Ehlert referred magically appeared.

  usually reading source code can give some information.
also looking at the list of files a package installs can
be interesting.


apt-file list mozo


  songbird

pciehp / pci express hot plug kernel module to longer included? (sid)

[Zenaan Harkness]

Is the pciehp / pci express hot plug kernel module to longer included with 
Debian, or is it meant to be compiled in as static?

Debian sid here on an X220, trying to connect a "Transcend USB 3.0 ExpressCard 
Adapter" to get a USB3 port (2 ports actually).

There are possible hints that a module may need to be compiled - how would I 
check whether it's built in static, or whether the module is no longer shipped 
with debian kernels?


(
https://askubuntu.com/questions/812372/usb-3-0-express-card
https://help.ubuntu.com/community/ExpressCard
https://unix.stackexchange.com/questions/440741/install-usb-3-0-express-card-under-linux-arch-linux-tried-adding-kernel-param
https://lwn.net/Articles/767885/
)

Re: Thunderbird replacement suggestions?

[Celejar]

On Sun, 5 Jul 2020 11:54:41 +0200
 wrote:

> On Sat, Jul 04, 2020 at 10:44:09PM +, ghe2001 wrote:
> > -BEGIN PGP SIGNED MESSAGE-
> > Hash: SHA256
> > 
> > 
> > 
> > ‐‐‐ Original Message ‐‐‐
> > On Saturday, July 4, 2020 3:38 PM, Tom Dial  wrote:
> > 
> > > I would welcome suggested alternatives. An additional desired feature,
> > > if known, would be any capability to ingest old messages from Thunderbird.
> > 
> > Are you looking for free and PGP? Look at Protonmail. (.com)
> 
> Protonmail is a commercial service. The clients seem to be under
> a free license, though.
> 
> Whether it's a good idea to have the web browser playing the user's
> encryption bastion shall be left as an exercise to the reader.

As another post in this thread mentioned, they also provide a bridge,
i.e., an application that provides an interface between normal MUAs and
their service, and that bridge is now apparently open source:

https://protonmail.com/blog/bridge-open-source/

I have not used it, and I have no idea what the experience is like.

Celejar

Re: Thunderbird replacement suggestions?

[Celejar]

On Sun, 5 Jul 2020 09:58:04 +0300
Andrei POPESCU  wrote:

> On Sb, 04 iul 20, 21:24:27, Charles Curley wrote:
> > On Sat, 4 Jul 2020 15:38:38 -0600
> > Tom Dial  wrote:
> > 
> > > While trying to fix a broken Thunderbird/Enigmail installation on my
> > > wife's Windows laptop,...
> > 
> > Are you asking for advice for Windows or for Debian?
> > 
> > > I would welcome suggested alternatives. An additional desired feature,
> > > if known, would be any capability to ingest old messages from
> > > Thunderbird.
> > 
> > Claws-mail will do what you want, and then some. You may have to
> > configure the GPG connection, but such is life with Unix. It is
> > available for Windows, but that version usually lags the Linux version.
> 
> +1 for Claws-Mail.
> 
> It does lack support for composing HTML mails (on purpose), in case this 
> is needed.

And don't forget about Sylpheed (from which Claws was forked a long
time ago) - it's still going strong, has mature GPG support, and has
full mbox support (which another post in this thread mentioned is
Thunderbird's standard mail store). It also can't compose HTML mail,
though (also on purpose).-

Celejar

Re: Remove undesired entries in MATE "Applications" sub-menus

[tomas]

On Sat, Jul 04, 2020 at 10:42:59PM -0500, Richard Owlett wrote:
> On 07/04/2020 07:38 AM, n...@dismail.de wrote:

[...]

> >MATE has graphical editor for this. If not already installed, the package
> >is named "mozo" as is the tool itself.
> 
> How would one discover that? I've silently been grumbling about the
> problem since Debian first had MATE as a default option.

Asking in this list counts as an honorable option. Alternatively,
just try "apt search mate edit menu". I get seven hits, and mozo
is one of them. Way better SNR than the much hyped search engines
out there!

And don't get me started on the CO₂ footprint.

;-)

Cheers
-- t


signature.asc
Description: Digital signature

Re: Very old hardware...

[deloptes]

David Wright wrote:

> I was under the impression that i586 was a Debian invention for
> kernels that had been termed i486, in order to prevent the impression
> that they would run on 486 hardware (as they had done previously).
> 
> I would expect a 700MHz Pentium III to run a 686 kernel.
> My 650MHz Pentium III (Coppermine) runs buster with the kernel in
> linux-image-4.19.0-9-686-pae_4.19.118-2+deb10u1_i386.deb
> 

I am not sure - this is what I am saying with those links.

In wheezy

Nearly all x86-based (IA-32) processors still in use in personal computers
are supported, including all varieties of Intel's "Pentium" series. 
https://www.debian.org/releases/wheezy/i386/ch02s01.html.en

But this statement is missing later (especially the last part regarding
Pentium series)

How I know this - some years ago I had to start building kernel for Geode,
because it is i586. And reading around noticed the notification that older
models are not supported by default debian kernel.

This means that OP has to build kernel to run it. In such case I debootstrap
debian and install the custom kernel.

> My typical installation uses around 9GB, but that includes things like
> TeX and LibreOffice. No DE though. I don't think you'd be running
> anything like that, particularly with only 64MB memory (my video card
> has half that). The first thing I did when I acquired mine (in 2003)
> was to install 512MB of ECC and a bigger disk (30GB IIRC).
> Nowadays, it makes a satisfactory file server.
> 
> Why do I keep mine? 1) Sentimentality, as it was the one on my work desk
> when I retired. 2) Being a tower, it has room for up to 4 PATA drives.
> The loaned Optiplex only holds one—after that, I'm down to an old PATA
> caddy. 3) There's no WEEE here, so I'm not sure exactly how one gets
> rid of it anyway.
> 
> BTW neither of these Pentiums looks like a museum piece to me, but
> just so much junk, particulary if you upgrade it, or overwrite its
> "authentic" OS. Unless you find a use for it, I guess the coucil
> in your locality is obliged to dispose of it.

As people suggested it is not worth the power it consumes. For 35-50$ you
have a low power device with more computing power, but of course you decide
what to do with your hardware and electricity bills. 

regards

Re: Thunderbird replacement suggestions?

[tomas]

On Sat, Jul 04, 2020 at 10:44:09PM +, ghe2001 wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA256
> 
> 
> 
> ‐‐‐ Original Message ‐‐‐
> On Saturday, July 4, 2020 3:38 PM, Tom Dial  wrote:
> 
> > I would welcome suggested alternatives. An additional desired feature,
> > if known, would be any capability to ingest old messages from Thunderbird.
> 
> Are you looking for free and PGP? Look at Protonmail. (.com)

Protonmail is a commercial service. The clients seem to be under
a free license, though.

Whether it's a good idea to have the web browser playing the user's
encryption bastion shall be left as an exercise to the reader.

Cheers
-- t


signature.asc
Description: Digital signature

Re: Remove undesired entries in MATE "Applications" sub-menus

[Richard Owlett]

On 07/05/2020 01:52 AM, Andrei POPESCU wrote:

On Sb, 04 iul 20, 22:42:59, Richard Owlett wrote:

On 07/04/2020 07:38 AM, n...@dismail.de wrote:

On Sat, Jul 04, 2020 at 06:53:56 -0500, Richard Owlett wrote:

I'm using Debian10 with the MATE desktop.
The Debian installer defaults to installing a mess of applications I rarely
want. They end up with entries on MATE's Applications sub-menus.

Without deleting the offending applications from the system, how can I
delete those menu entries and replace them with links to suitable
applications.


MATE has graphical editor for this. If not already installed, the package
is named "mozo" as is the tool itself.


How would one discover that?


The package 'mozo' is recommended by 'mate-desktop-environment-extras',
which is (only) suggested by 'mate-desktop-environment'.


I've silently been grumbling about the problem
since Debian first had MATE as a default option.


Do you mean as an alternative installation image? Debian's default
desktop is still Gnome as far as I know.



I should not post when half asleep.
I have been using MATE since it was first offered as a choice on the 
Select and Install menu. I skipped whatever release that had Gnome3 
instead of Gnome2. I have always aimed at a somewhat minimalist install 
and the presence of LibreOffice and Firefox on the default menu has been 
annoying. Neither offers any features I find desirable. I've done 
multiple web searches for how to tweak the Applications menu [MATE's 
help system being its major weak point].

Re: Very old hardware...

[David]

On Sun, 2020-07-05 at 16:33 +1000, Keith bainbridge wrote:
> On 4/7/20 12:08 pm, Kenneth Parker wrote:
> > 
> > 
> > On Fri, Jul 3, 2020 at 1:49 PM Jude DaShiell  > > wrote:
> > 
> > Debian with xfce or mate or cinnamon may install and run well. 
> > I don't
> > recommend gnome.
> > 
> > 
> > +1
> 
> +1 more
> 
> 
> I'm just note sure that 64M ram is going to cut it.
> 
> 
> I saw that you have a DVD, so try a couple of live .iso and see how
> they go.
> 
> 
Morning List,

I'd try Devuan on this old hardware, works well for me on old thin
clients.

David.

Re: sources.list for security

[Andrei POPESCU]

On Du, 05 iul 20, 09:52:25, Salvatore Bonaccorso wrote:
> 
> https://bugs.debian.org/931785

Oups, completely forgot about that, even though I'm subscribed to -doc.

Kind regards,
Andrei
-- 
http://wiki.debian.org/FAQsFromDebianUser


signature.asc
Description: PGP signature

Re: sources.list for security

[Salvatore Bonaccorso]

hi,

On Sun, Jul 05, 2020 at 10:34:30AM +0300, Andrei POPESCU wrote:
> On Du, 05 iul 20, 08:14:28, Pierre Frenkiel wrote:
> > hi,
> > 
> > I found several proposals for thre security entry
> > 
> > deb http://security.debian.org/ buster/updates main contrib non-free
> > deb http://security.debian.org/debian-security buster/updates main contrib 
> > non-free
> 
> [fixed wrapping]
> 
> > deb http://deb.debian.org/debian-security/ buster/updates main
> >
> > which one must be chosen?
> 
> According to https://security.debian.org (redirects to 
> https://www.debian.org/security) the second entry is correct.
> 
> The first one seems to point to the same place as far as I can tell 
> (didn't look very deep though).
> 
> The third entry appears to be an alternate distribution channel and also 
> supports https (in case it matters to you).
> 
> I'm using the third, mostly for consistency with the other entries.  
> Updated packages have been available as soon as the DSA was sent to 
> debian-security-announce.
> 
> The 'component' part ('main', etc.) should always match your other 
> repositories.
> 
> [Rant]
> It's confusing that Debian has several schemes for URLs and suites, e.g.  
> compare:
> 
> http://security.debian.org/ buster/updates main
> 
> with
> 
> http://deb.debian.org/debian buster-updates main
> 
> 
> It would be less confusing if all repositories had the same URL and used 
> only the 'suite' part to distinguish them ('stable', 'stable-security', 
> etc.).
> 
> Hopping this will be fixed for 'bullseye'...

Please see

https://lists.debian.org/debian-security/2019/06/msg00015.html

and

https://bugs.debian.org/931785

Regards,
Salvatore

Re: sources.list for security

[Andrei POPESCU]

On Du, 05 iul 20, 08:14:28, Pierre Frenkiel wrote:
> hi,
> 
> I found several proposals for thre security entry
> 
> deb http://security.debian.org/ buster/updates main contrib non-free
> deb http://security.debian.org/debian-security buster/updates main contrib 
> non-free

[fixed wrapping]

> deb http://deb.debian.org/debian-security/ buster/updates main
>
> which one must be chosen?

According to https://security.debian.org (redirects to 
https://www.debian.org/security) the second entry is correct.

The first one seems to point to the same place as far as I can tell 
(didn't look very deep though).

The third entry appears to be an alternate distribution channel and also 
supports https (in case it matters to you).

I'm using the third, mostly for consistency with the other entries.  
Updated packages have been available as soon as the DSA was sent to 
debian-security-announce.

The 'component' part ('main', etc.) should always match your other 
repositories.

[Rant]
It's confusing that Debian has several schemes for URLs and suites, e.g.  
compare:

http://security.debian.org/ buster/updates main

with

http://deb.debian.org/debian buster-updates main


It would be less confusing if all repositories had the same URL and used 
only the 'suite' part to distinguish them ('stable', 'stable-security', 
etc.).

Hopping this will be fixed for 'bullseye'...

(this message is BCCd to Security and FTPMaster teams)

Kind regards,
Andrei
-- 
http://wiki.debian.org/FAQsFromDebianUser


signature.asc
Description: PGP signature

Re: Remove undesired entries in MATE "Applications" sub-menus

[Keith bainbridge]

On 4/7/20 11:10 pm, Peter Ehlert wrote:


On 7/4/20 4:53 AM, Richard Owlett wrote:

I'm using Debian10 with the MATE desktop.
The Debian installer defaults to installing a mess of applications I 
rarely want. They end up with entries on MATE's Applications sub-menus.


Without deleting the offending applications from the system, how can I 
delete those menu entries and replace them with links to suitable 
applications.


go to system, preferences, look and feel, main menu

uncheck the apps you do not want to see.

there is an option to create new menus, and another to create new items

select the Help button for additional guidance



Web search had lousy signal to noise ratio ;<

TIA







It's been a while, but I recall right clicking on the menu brought up 
this editor.


Alternatively, switch to Cinnamon which has almost as much 
customisation, AND I am finding to simply works better - subjective 
comment, of course.  Right clicking its menu allows editing.


--

Keith Bainbridge

keithr...@gmail.com

0447 667468