Re: Predictable network device names [was: Please help me identify package so I can report an important bug

[Kamil Jońca]

to...@tuxteam.de writes:

> On Thu, Jun 13, 2024 at 06:30:27AM +0200, to...@tuxteam.de wrote:
>
> [following up on myself, bad style, I know]
>
>> For my laptop, I very much prefer to say "sudo ifup eth0" than to
>> say "sudo ifup en0ps&&@*#!☠" thankyouverymuch :)
>
> and of course, if you are using a desktop environment and NetworkManager
> or systemd-networkd, it's probably better to go with the flow and let
> them do.

About year ago none of them was able to handle my config.
(Some interfaces used by vms , and proper snat for them.)


KJ

-- 
http://wolnelektury.pl/wesprzyj/teraz/

Predictable network device names [was: Please help me identify package so I can report an important bug

[tomas]

On Thu, Jun 13, 2024 at 06:30:27AM +0200, to...@tuxteam.de wrote:

[following up on myself, bad style, I know]

> For my laptop, I very much prefer to say "sudo ifup eth0" than to
> say "sudo ifup en0ps&&@*#!☠" thankyouverymuch :)

and of course, if you are using a desktop environment and NetworkManager
or systemd-networkd, it's probably better to go with the flow and let
them do.

Cheers
-- 
t


signature.asc
Description: PGP signature

Re: Please help me identify package so I can report an important bug

[tomas]

On Wed, Jun 12, 2024 at 03:16:41PM -0400, Greg Wooledge wrote:
> On Wed, Jun 12, 2024 at 09:01:44PM +0200, to...@tuxteam.de wrote:

[...]

> > Mine loks like this:
> > 
> >   GRUB_CMDLINE_LINUX_DEFAULT="quiet net.ifnames=0"
> 
> People who are thinking of doing this should take a moment to consider
> whether it will be better or worse than the default.

Absolutely. I did, and I decided that in my case, this is the better
choice...

> For a machine that has exactly one ethernet interface, this is a vast
> improvement over the default.  Your interface will always be named
> "eth0" no matter what crazy things happen on the PCI bus.

...but it's not always, as you say.

> For a machine with multiple interfaces, however, the original problem
> that "predictable interface names" were supposed to solve is still an
> issue.  The kernel may not assign the names in the same order every
> time you boot.  In that situation, "net.ifnames=0" is not likely to
> be an improvement.  You'd be better off using systemd.link(5) files to
> customize your interface names according to your own specific needs.

I think PCI is not the worst offender. The worst is if you have a bunch
of adapters hanging off an USB tree. Then, as they say, God does play
dice :-)

Back Then (TM) (I think it was a Debian 3.x aka Sarge), a bunch of
us cobbled a "router thingy" together on some off-the-shelf hardware.
It had four Ethernets hanging off whatever PC bus was fashionable
back then (too lazy to look it up).

Not many of those were sold, luckily :-)

One was for "the bad Internet", the other three for "the inside".
Our big fear was that, after a BIOS upgrade the interfaces would
come up in a mangled order. That would have been a good application
of this scheme (provided it works at all: I'm somewhat sceptic.
Hardware and firmware are known to do... things).

We ended up going by the card's MAC addresses, at the price of
having a set up step on assembly. But then, if you change one
Ethernet card...

Alas, you can't do it right.

For my laptop, I very much prefer to say "sudo ifup eth0" than to
say "sudo ifup en0ps&&@*#!☠" thankyouverymuch :)

Cheers
-- 
t


signature.asc
Description: PGP signature

Re: Copy from xterm to text editor........

[Charles Curley]

On Thu, 13 Jun 2024 12:16:00 +1000
Charlie  wrote:

> I[s] there is a
> way to do it at all?

Yes. Use Mouse-1 (typically the left-hand mouse button) to swipe the
text you want to copy from the xterm. Go to the recipient program, and
use Mouse-2 (typically the middle button on the mouse) to paste.

Note that this is very temporary storage. It will not put the text in
the clipboard, nor will a clipboard stack program like clipman see it.

Ctl-c, ctl-v, etc. (CUA shortcuts) are Microsoft/IBM isms and not native
to Unix or Linux, so older programs like xterm may or may not support
them.

-- 
Does anybody read signatures any more?

https://charlescurley.com
https://charlescurley.com/blog/

Re: Copy from xterm to text editor........

[Aleix Piulachs]

I believe you can to change the options of xterm editor and set up others..

El El jue, 13 jun 2024 a las 4:56, Greg Wooledge 
escribió:

> On Thu, Jun 13, 2024 at 12:16:00PM +1000, Charlie wrote:
> > Cannot recall what version of Debian stopped copying text in xterm by
> > Ctrl + C or Shift + Ctrl + C  So don't know how to copy from xterm
>
> xterm is a terminal emulator.  Pressing Ctrl-C in a terminal emulator
> simply passes a byte (0x03) to the application running inside the
> terminal, which is usually a shell.  But they're interpreted by the
> terminal driver layer first.  The stty command allows you to see or
> change the bindings of control characters by the terminal driver.
>
> Ctrl-C is usually bound to the 'intr' facility in the terminal driver.
> Pressing it in a terminal sends the interrupt signal (SIGINT) to all
> running foreground processes.  It does not copy text.  That's a Windows
> thing, and you are not in Windows.
>
> > Unable to paste  from xterm into a text editor using Ctrl + V or Shift
> > + Ctrl + V
>
> Pressing Ctrl-V in a terminal emulator sends a byte (0x16) to the
> application.  At the terminal driver layer, Ctrl-V is usually bound
> to the 'lnext' facility (literal next).  It's like an escape sequence
> for keys.  The next key you press *after* Ctrl-V will lose its special
> meaning, and will just be passed along verbatim.
>
> For example, if you press Ctrl-V Ctrl-C, it won't interrupt foreground
> processes.  Instead, it will simply pass the literal 0x03 byte to the
> application.  It becomes data.
>
> hobbit:~$ printf ^C | hd
>   03|.|
> 0001
>
> The ^C there is where I pressed Ctrl-V Ctrl-C.
>
> Now, all of that is just background information.
>
> What you wanted to know, I guess, is "how to copy text between terminals".
>
> The first step is to highlight the text with the left mouse button.  Drag
> the mouse over the text while holding the left button.  This creates
> a "selection" containing the text you've selected.
>
> Next, click on the window that you want to paste the text *into*.  You
> need this window to have "focus".  Depending on your window manager,
> clicking may not actually be needed.  Some WMs use "focus follows mouse",
> which means the mouse pointer simply has to be inside the window.  Others
> use "click to focus" which means you have to click.
>
> Once you've focused on the receiving window, press the middle mouse
> button to paste the selection into the second window.
>
> (X11 uses three-button mice.  Everything is designed around this.)
>
> If your mouse is too new or too Microsoft-tainted to have three buttons,
> then things get tricky.
>
> If your mouse is literally an old PS/2 style two-button mouse from the
> 1980s, you might be in real trouble.  There are hacks to try to mimic
> the middle button in other ways, but you'll have to read documentation
> to learn how to invoke them.
>
> Let's assume that's not the case.
>
> If your mouse has two buttons plus a scroll wheel, you might be able to
> press the scroll wheel to act as the middle button.  Doing this without
> also *turning* the scroll wheel takes practice.  It can be done, at
> least sometimes.
>
> So, that's how you copy and paste text between windows in X11.  You
> select with the left button, and paste with the middle button.
>
> Obviously the world can't be that simple.  While X11 was developing
> this interface around three-button mice, Microsoft was building a
> different interface around two-button mice.
>
> In the Microsoft paradigm, you copy by highlighting the text you want
> to copy, and then performing a second step.  That step might be
> right-clicking a menu and selecting "Copy".  Or it might be pressing
> Ctrl-C (but not in a terminal emulator).  Once you've performed this
> copy operation, the text is in a "clipboard", which is separate from
> the "selection".
>
> Pasting text from the clipboard into a new window under the Microsoft
> paradigm is done by pressing Shift-Insert.  (Or by right-clicking a
> menu and selecting Paste, or by pressing Ctrl-V in some programs, but
> not in terminal emulators.)
>
> Some programs that you run on Debian may use the Windows paradigm and
> put data into the clipboard instead of the selection.  For those
> things, you can try Shift-Insert instead of the middle button.  It's
> just another thing you might need to know/use.
>
> Good luck.
>
>

Re: Copy from xterm to text editor........

[Greg Wooledge]

On Thu, Jun 13, 2024 at 12:16:00PM +1000, Charlie wrote:
> Cannot recall what version of Debian stopped copying text in xterm by
> Ctrl + C or Shift + Ctrl + C  So don't know how to copy from xterm

xterm is a terminal emulator.  Pressing Ctrl-C in a terminal emulator
simply passes a byte (0x03) to the application running inside the
terminal, which is usually a shell.  But they're interpreted by the
terminal driver layer first.  The stty command allows you to see or
change the bindings of control characters by the terminal driver.

Ctrl-C is usually bound to the 'intr' facility in the terminal driver.
Pressing it in a terminal sends the interrupt signal (SIGINT) to all
running foreground processes.  It does not copy text.  That's a Windows
thing, and you are not in Windows.

> Unable to paste  from xterm into a text editor using Ctrl + V or Shift
> + Ctrl + V

Pressing Ctrl-V in a terminal emulator sends a byte (0x16) to the
application.  At the terminal driver layer, Ctrl-V is usually bound
to the 'lnext' facility (literal next).  It's like an escape sequence
for keys.  The next key you press *after* Ctrl-V will lose its special
meaning, and will just be passed along verbatim.

For example, if you press Ctrl-V Ctrl-C, it won't interrupt foreground
processes.  Instead, it will simply pass the literal 0x03 byte to the
application.  It becomes data.

hobbit:~$ printf ^C | hd
  03|.|
0001

The ^C there is where I pressed Ctrl-V Ctrl-C.

Now, all of that is just background information.

What you wanted to know, I guess, is "how to copy text between terminals".

The first step is to highlight the text with the left mouse button.  Drag
the mouse over the text while holding the left button.  This creates
a "selection" containing the text you've selected.

Next, click on the window that you want to paste the text *into*.  You
need this window to have "focus".  Depending on your window manager,
clicking may not actually be needed.  Some WMs use "focus follows mouse",
which means the mouse pointer simply has to be inside the window.  Others
use "click to focus" which means you have to click.

Once you've focused on the receiving window, press the middle mouse
button to paste the selection into the second window.

(X11 uses three-button mice.  Everything is designed around this.)

If your mouse is too new or too Microsoft-tainted to have three buttons,
then things get tricky.

If your mouse is literally an old PS/2 style two-button mouse from the
1980s, you might be in real trouble.  There are hacks to try to mimic
the middle button in other ways, but you'll have to read documentation
to learn how to invoke them.

Let's assume that's not the case.

If your mouse has two buttons plus a scroll wheel, you might be able to
press the scroll wheel to act as the middle button.  Doing this without
also *turning* the scroll wheel takes practice.  It can be done, at
least sometimes.

So, that's how you copy and paste text between windows in X11.  You
select with the left button, and paste with the middle button.

Obviously the world can't be that simple.  While X11 was developing
this interface around three-button mice, Microsoft was building a
different interface around two-button mice.

In the Microsoft paradigm, you copy by highlighting the text you want
to copy, and then performing a second step.  That step might be
right-clicking a menu and selecting "Copy".  Or it might be pressing
Ctrl-C (but not in a terminal emulator).  Once you've performed this
copy operation, the text is in a "clipboard", which is separate from
the "selection".

Pasting text from the clipboard into a new window under the Microsoft
paradigm is done by pressing Shift-Insert.  (Or by right-clicking a
menu and selecting Paste, or by pressing Ctrl-V in some programs, but
not in terminal emulators.)

Some programs that you run on Debian may use the Windows paradigm and
put data into the clipboard instead of the selection.  For those
things, you can try Shift-Insert instead of the middle button.  It's
just another thing you might need to know/use.

Good luck.

Copy from xterm to text editor........

[Charlie]

Using Debian bookworm updated and upgraded.

Cannot recall what version of Debian stopped copying text in xterm by
Ctrl + C or Shift + Ctrl + C  So don't know how to copy from xterm

Unable to paste  from xterm into a text editor using Ctrl + V or Shift
+ Ctrl + V

After a few years, am finally sick of attempting to discover how to do
it using all manner of keystrokes. Obviously not the right combination.
So would appreciate any help for something that works. If there is a
way to do it at all?

TIA
-- 
Registered Linux User:- 329524
***

Prejudice is opinion without judgement. -Voltaire

***

Debian GNU/Linux - just the best way to create magic

-

Re: systemctl vs service

[Greg Wooledge]

On Thu, Jun 13, 2024 at 07:50:45AM +0800, Jeff Peng wrote:
> I was a bit confused, systemctl and service both are used for service
> control (start|stop|reload etc). what's the suggested way for using them?

The "service" command originated with Red Hat's implementation of sysv-rc
and is maintained under Debian for compatibility or convenience.  Use it
if you like it.

The "systemctl" command originated with systemd, and offers more features
(subcommands and options).

If all you want to do is stop and restart a service, they're both fine.
If you want more features, it's worth learning systemctl.

Re: can't connect to server from outside LAN

[Tim Woodall]

On Wed, 12 Jun 2024, Greg Marks wrote:


I'm running a Debian server from my home with a static IP address,
with ssh configured to use key-based authentication rather than
password-based.  As of a couple weeks ago, I have been unable to ssh to
my server from external locations.  When I ssh from a laptop connected
to the wireless network on the same router as my home server, I do
successfully connect to the server.  But when I ssh from an external
location, I get this error:




The problem began a couple weeks ago; previously (and for many years)
I had been able to ssh to my server without issue.  The first time it
failed, I was using free wireless at an airport; I was able to ssh to my
server from the hotel that morning, and maybe, the first time I tried,
from the airport, but then subsequent ssh attempts from the airport
failed to connect.  I mention this only because nothing had changed in
my server's configuration when this problem began.

This is a real problem for me, as a lot of my work involves sending
files via scp between work and home.  Any suggestions about how to
troubleshoot and hopefully fix the problem will be greatly appreciated.



Run tcptraceroute to ports 22 and 80 to see ehere it's being blocked.

(or 443)

Depending on where it's blocked and why, possibly run sshd on a
different port. (or fix the firewall if it's controlled by you)

You can also run openvpn on 443 without breaking the webserver, which is
another workaround.

Re: descargar versiones anteriores

[Francisco Cid]

El mié., 12 jun. 2024 14:02, Juan Carlos Rebate 
escribió:

>
> El 12/6/24 a las 6:48, Camaleón escribió:
> > El 2024-06-12 a las 03:36 +0200, Juaan Carrlos Rebate escribió:
> >
> >> Disculpad por el HTML, envío el correo desde Windows y no hay forma de
> >> eliminar el formato.
> > ¿?
> >
> > Se llama «formato texto plano», todos los clientes lo tienen, hasta los
> > malogrados webmail.
> >
> >> Fernando, gracias por tu respuesta pero te comento
> >> que ni jigdo-file ni lite están en los repos
> > (...)
> >
> > El paquete estar, está:
> >
> > https://packages.debian.org/bullseye/jigdo-file
> > https://tracker.debian.org/pkg/jigdo
> >
> > sm01@stt008:~$ apt-cache search jigdo-file
> > jigdo-file - Download Debian CD/DVD/USB images from any Debian mirror
> >
> > sm01@stt008:~$ uname -a
> > Linux stt008 5.10.0-30-amd64 #1 SMP Debian 5.10.218-1 (2024-06-01)
> x86_64 GNU/Linux
> >
> > Revisa tu configuración y repositorios.
> >
> > Saludos,
> >
> he cambiado a thunderbird. si, sé como se llama, pero en windows no uso
> webmail, sino la app outlook, y no tiene opciones para eliminar el
> formato (o las tiene desactivadas como muchas de word). pues ni idea, en
> los repos no parece estar o no parece localizarlos, pero bajamdo las
> fuentes funciona. ya pude bajar los tres primeros DVD
>
Hola amigo, el error que tienes es porque debes tener activados solamente
los repositorios a disco dvd, que es lo por defecto en una instalación. Te
recomiendo chequearlos en /etc/apt/source.list.

systemctl vs service

[Jeff Peng]

Hello

I was a bit confused, systemctl and service both are used for service 
control (start|stop|reload etc). what's the suggested way for using 
them?


thanks & regards.

Re: can't connect to server from outside LAN

[David Christensen]

On 6/12/24 15:54, Greg Marks wrote:

I'm running a Debian server from my home with a static IP address,
with ssh configured to use key-based authentication rather than
password-based.  As of a couple weeks ago, I have been unable to ssh to
my server from external locations.  When I ssh from a laptop connected
to the wireless network on the same router as my home server, I do
successfully connect to the server.  But when I ssh from an external
location, I get this error:

OpenSSH_8.4p1 Debian-5+deb11u3, OpenSSL 1.1.1w  11 Sep 2023
debug1: Reading configuration data /etc/ssh/ssh_config
debug1: /etc/ssh/ssh_config line 19: include /etc/ssh/ssh_config.d/*.conf 
matched no files
debug1: /etc/ssh/ssh_config line 21: Applying options for *
debug2: resolve_canonicalize: hostname xxx.xxx.xxx.xxx is address
debug3: expanded UserKnownHostsFile '~/.ssh/known_hosts' -> 
'/home/user/.ssh/known_hosts'
debug3: expanded UserKnownHostsFile '~/.ssh/known_hosts2' -> 
'/home/user/.ssh/known_hosts2'
debug2: ssh_connect_direct
debug1: Connecting to xxx.xxx.xxx.xxx [xxx.xxx.xxx.xxx] port 22.
debug1: Connection established.
debug1: identity file /home/user/.ssh/id_rsa type -1
debug1: identity file /home/user/.ssh/id_rsa-cert type -1
debug1: identity file /home/user/.ssh/id_dsa type -1
debug1: identity file /home/user/.ssh/id_dsa-cert type -1
debug1: identity file /home/user/.ssh/id_ecdsa type -1
debug1: identity file /home/user/.ssh/id_ecdsa-cert type -1
debug1: identity file /home/user/.ssh/id_ecdsa_sk type -1
debug1: identity file /home/user/.ssh/id_ecdsa_sk-cert type -1
debug1: identity file /home/user/.ssh/id_ed25519 type -1
debug1: identity file /home/user/.ssh/id_ed25519-cert type -1
debug1: identity file /home/user/.ssh/id_ed25519_sk type -1
debug1: identity file /home/user/.ssh/id_ed25519_sk-cert type -1
debug1: identity file /home/user/.ssh/id_xmss type -1
debug1: identity file /home/user/.ssh/id_xmss-cert type -1
debug1: Local version string SSH-2.0-OpenSSH_8.4p1 Debian-5+deb11u3
kex_exchange_identification: read: Connection timed out
banner exchange: Connection to xxx.xxx.xxx.xxx port 22: Connection timed out

When I ping the server from external locations, I get 100% packet loss;
whereas when I ping the server from my local wireless network, there
is 0% packet loss.  (I do have nftables set to drop connections from
numerous IP addresses that have attempted hacks in the past; however,
the problem persists after flushing nftables, and at any rate, using
check-host.net and www.site24x7.com to ping my server from various
worldwide locations also results in 100% packet loss.)  Port 22 is open.
The package ufw is not installed on my server.

The apache2 Web server running on my home server is correctly hosting
my Web pages: from external locations, my Web page gmarks.org will
open in a Web browser (even though "ping -c 10 gmarks.org" shows 100%
packet loss).  Running "traceroute xxx.xxx.xxx.xxx" from external
locations reported four successful steps, not reaching my server IP,
followed by a series of "* * *" lines.

Running "sudo service sshd status" on my server shows ssh.service
is active and running.  Running "ip address show" on my server shows
nothing unusual.  I've restarted my router, and I've restarted my server;
neither helped.

The problem began a couple weeks ago; previously (and for many years)
I had been able to ssh to my server without issue.  The first time it
failed, I was using free wireless at an airport; I was able to ssh to my
server from the hotel that morning, and maybe, the first time I tried,
from the airport, but then subsequent ssh attempts from the airport
failed to connect.  I mention this only because nothing had changed in
my server's configuration when this problem began.

This is a real problem for me, as a lot of my work involves sending
files via scp between work and home.  Any suggestions about how to
troubleshoot and hopefully fix the problem will be greatly appreciated.

Best regards,
Greg Marks



Ping:

2024-06-12 16:19:25 dpchrist@laalaa ~
$ ping -c 1 -v gmarks.org
PING gmarks.org (76.235.90.201) 56(84) bytes of data.

--- gmarks.org ping statistics ---
1 packets transmitted, 0 received, 100% packet loss, time 0ms


HTTPS works:

https://gmarks.org/

Greg Marks
Office: 313 Ritter Hall
Phone: (314)977-7206
E-mail address:  local-part consists of surname, domain name identical 
to that of the present Web page

PGP encryption public key ID: 0x53F269E8

Postal Address:
Department of Mathematics and Statistics
St. Louis University
221 N. Grand Blvd.
St. Louis, MO 63103-2006
U.S.A.

Resources for students

Resources for mathematicians

Research papers


It appears that someone who controls one or more of the routers between 
the Internet and your router has blocked ICMP echo requests, ICMP echo 
replies, and TCP port 22 (SSH).



I suggest that you 

Re: systemrescuecd -- a bit off Debian topics

[eben]

On 6/12/24 18:27, Van Snyder wrote:

On Wed, 2024-06-12 at 18:19 -0400, e...@gmx.us wrote:

On 6/12/24 18:14, Van Snyder wrote:

Does anybody know how to contact systemrescuece developers? Their
webpage https://www.system-rescue.org/ doesn't have a "contact" or
"forum"button.
I haven't found a way to make the toolbar largewhen I boot
systemrescuecd. I think the window manager is xfce. Can thetool bar
be made larger?

...
In XFCE, if you right-click anywhere on the toolbar and go to Panel
-> PanelPreferences, you can change the size under "Row Size"..  But
no, I don'tknow how to contact them.


Maybe I was wrong about systemrescuecd using XFCE. Right click on the
toolbar offers a "properties" selection -- that doesn't include a "row
size" property.


It does (see the mouse on the desktop? That's XFCE's mascot.), just maybe it
uses a different version than I have.  I'll boot from it on Saturday to back
up, so if you haven't got an answer by then I'll report back.

--
 Actually, we have scientifically determined
that Heisenberg did indeed sleep exactly here.
However, we have no idea whatsoever just how fast asleep he was.
-- Dave Aronson on ASR

can't connect to server from outside LAN

[Greg Marks]

I'm running a Debian server from my home with a static IP address,
with ssh configured to use key-based authentication rather than
password-based.  As of a couple weeks ago, I have been unable to ssh to
my server from external locations.  When I ssh from a laptop connected
to the wireless network on the same router as my home server, I do
successfully connect to the server.  But when I ssh from an external
location, I get this error:

   OpenSSH_8.4p1 Debian-5+deb11u3, OpenSSL 1.1.1w  11 Sep 2023
   debug1: Reading configuration data /etc/ssh/ssh_config
   debug1: /etc/ssh/ssh_config line 19: include /etc/ssh/ssh_config.d/*.conf 
matched no files
   debug1: /etc/ssh/ssh_config line 21: Applying options for *
   debug2: resolve_canonicalize: hostname xxx.xxx.xxx.xxx is address
   debug3: expanded UserKnownHostsFile '~/.ssh/known_hosts' -> 
'/home/user/.ssh/known_hosts'
   debug3: expanded UserKnownHostsFile '~/.ssh/known_hosts2' -> 
'/home/user/.ssh/known_hosts2'
   debug2: ssh_connect_direct
   debug1: Connecting to xxx.xxx.xxx.xxx [xxx.xxx.xxx.xxx] port 22.
   debug1: Connection established.
   debug1: identity file /home/user/.ssh/id_rsa type -1
   debug1: identity file /home/user/.ssh/id_rsa-cert type -1
   debug1: identity file /home/user/.ssh/id_dsa type -1
   debug1: identity file /home/user/.ssh/id_dsa-cert type -1
   debug1: identity file /home/user/.ssh/id_ecdsa type -1
   debug1: identity file /home/user/.ssh/id_ecdsa-cert type -1
   debug1: identity file /home/user/.ssh/id_ecdsa_sk type -1
   debug1: identity file /home/user/.ssh/id_ecdsa_sk-cert type -1
   debug1: identity file /home/user/.ssh/id_ed25519 type -1
   debug1: identity file /home/user/.ssh/id_ed25519-cert type -1
   debug1: identity file /home/user/.ssh/id_ed25519_sk type -1
   debug1: identity file /home/user/.ssh/id_ed25519_sk-cert type -1
   debug1: identity file /home/user/.ssh/id_xmss type -1
   debug1: identity file /home/user/.ssh/id_xmss-cert type -1
   debug1: Local version string SSH-2.0-OpenSSH_8.4p1 Debian-5+deb11u3
   kex_exchange_identification: read: Connection timed out
   banner exchange: Connection to xxx.xxx.xxx.xxx port 22: Connection timed out

When I ping the server from external locations, I get 100% packet loss;
whereas when I ping the server from my local wireless network, there
is 0% packet loss.  (I do have nftables set to drop connections from
numerous IP addresses that have attempted hacks in the past; however,
the problem persists after flushing nftables, and at any rate, using
check-host.net and www.site24x7.com to ping my server from various
worldwide locations also results in 100% packet loss.)  Port 22 is open.
The package ufw is not installed on my server.

The apache2 Web server running on my home server is correctly hosting
my Web pages: from external locations, my Web page gmarks.org will
open in a Web browser (even though "ping -c 10 gmarks.org" shows 100%
packet loss).  Running "traceroute xxx.xxx.xxx.xxx" from external
locations reported four successful steps, not reaching my server IP,
followed by a series of "* * *" lines.

Running "sudo service sshd status" on my server shows ssh.service
is active and running.  Running "ip address show" on my server shows
nothing unusual.  I've restarted my router, and I've restarted my server;
neither helped.

The problem began a couple weeks ago; previously (and for many years)
I had been able to ssh to my server without issue.  The first time it
failed, I was using free wireless at an airport; I was able to ssh to my
server from the hotel that morning, and maybe, the first time I tried,
from the airport, but then subsequent ssh attempts from the airport
failed to connect.  I mention this only because nothing had changed in
my server's configuration when this problem began.

This is a real problem for me, as a lot of my work involves sending
files via scp between work and home.  Any suggestions about how to
troubleshoot and hopefully fix the problem will be greatly appreciated.

Best regards,
Greg Marks


signature.asc
Description: PGP signature

Re: systemrescuecd -- a bit off Debian topics

[Van Snyder]

On Wed, 2024-06-12 at 18:19 -0400, e...@gmx.us wrote:
> On 6/12/24 18:14, Van Snyder wrote:
> > Does anybody know how to contact systemrescuece developers? Their
> > webpage https://www.system-rescue.org/ doesn't have a "contact" or
> > "forum"button.
> > I haven't found a way to make the toolbar largewhen I boot
> > systemrescuecd. I think the window manager is xfce. Can thetool bar
> > be made larger?
> ...
> In XFCE, if you right-click anywhere on the toolbar and go to Panel
> -> PanelPreferences, you can change the size under "Row Size"..  But
> no, I don'tknow how to contact them.

Maybe I was wrong about systemrescuecd using XFCE. Right click on the
toolbar offers a "properties" selection -- that doesn't include a "row
size" property.

Re: systemrescuecd -- a bit off Debian topics

[eben]

On 6/12/24 18:14, Van Snyder wrote:

Does anybody know how to contact systemrescuece developers? Their web
page https://www.system-rescue.org/ doesn't have a "contact" or "forum"
button.

I haven't found a way to make the toolbar large
when I boot systemrescuecd. I think the window manager is xfce. Can the
tool bar be made larger?

...

In XFCE, if you right-click anywhere on the toolbar and go to Panel -> Panel
Preferences, you can change the size under "Row Size"..  But no, I don't
know how to contact them.

systemrescuecd -- a bit off Debian topics

[Van Snyder]

Does anybody know how to contact systemrescuece developers? Their web
page https://www.system-rescue.org/ doesn't have a "contact" or "forum"
button.

My brother has impaired vision. He uses KDE Plasma because he can make
the tool bar large. But I haven't found a way to make the toolbar large
when I boot systemrescuecd. I think the window manager is xfce. Can the
tool bar be made larger? If not, and you have contact with the
systemrescuecd developers, please aske them to provide a way to make
the toolbar and icons larger, for vision-impaired users.

Van Snyder

Re: Please help me identify package so I can report an important bug

[debian-user]

Richard  wrote:
> Good catch. With the title of this thread and not seeing any proper
> description of what's actually wrong on GitHub, I figured the change
> of the adapter name was meant. Yes, with MAC randomization, that's
> what you'll get. But it's nothing Debian defaults to. So question is,
> can this be disabled on Proxmox? But with this hint, it should be
> easy enough to figure out if this can be deactivated on the affected
> systems, and if not the bug reports must be against these issues, as
> Debian itself doesn't do such things. If it is an issue with Debian
> preventing the disablement, the devs need to talk to each other.
> 
> Richard
> 
> Am Mi., 12. Juni 2024 um 17:10 Uhr schrieb Jeffrey Walton <
> noloa...@gmail.com>:  
> 
> > The random MAC address discussed in the bug report (with mention of
> > Network Manager) could be
> > <
> > https://blogs.gnome.org/thaller/2016/08/26/mac-address-spoofing-in-networkmanager-1-4-0/
> >   
> > >.  
> >
> > Jeff

I think before anybody else suggests anything, they should read
https://lore.kernel.org/netdev/20240326092459.gg403...@kernel.org/T/

Re: Please help me identify package so I can report an important bug

[Greg Wooledge]

On Wed, Jun 12, 2024 at 09:01:44PM +0200, to...@tuxteam.de wrote:
> No need. You can have your traditional names (I do). Just add
> "net.ifnames=0" (if necessry separated by a space, should
> other stuff be already there) to your GRUB_CMDLINE_LINUX_DEFAULT
> in your /etc/default/grub, then ru update-grub.
> 
> Mine loks like this:
> 
>   GRUB_CMDLINE_LINUX_DEFAULT="quiet net.ifnames=0"

People who are thinking of doing this should take a moment to consider
whether it will be better or worse than the default.

For a machine that has exactly one ethernet interface, this is a vast
improvement over the default.  Your interface will always be named
"eth0" no matter what crazy things happen on the PCI bus.

For a machine with multiple interfaces, however, the original problem
that "predictable interface names" were supposed to solve is still an
issue.  The kernel may not assign the names in the same order every
time you boot.  In that situation, "net.ifnames=0" is not likely to
be an improvement.  You'd be better off using systemd.link(5) files to
customize your interface names according to your own specific needs.

> > > https://wiki.debian.org/NetworkInterfaceNames

Re: Please help me identify package so I can report an important bug

[tomas]

On Wed, Jun 12, 2024 at 02:30:40PM -0400, Roy J. Tellason, Sr. wrote:
> On Wednesday 12 June 2024 06:54:54 am Richard wrote:
> > But also, just
> > searching the web for this topic, you should have come across this
> > answering your questions: https://wiki.debian.org/NetworkInterfaceNames
> > 
> 
> Wow.  Just wow...
> 
> That sort of thing just drives me crazy!  :-)
> 
> I can see sticking with older versions of some things.

No need. You can have your traditional names (I do). Just add
"net.ifnames=0" (if necessry separated by a space, should
other stuff be already there) to your GRUB_CMDLINE_LINUX_DEFAULT
in your /etc/default/grub, then ru update-grub.

Mine loks like this:

  GRUB_CMDLINE_LINUX_DEFAULT="quiet net.ifnames=0"

Cheers
-- 
t


signature.asc
Description: PGP signature

Re: Please help me identify package so I can report an important bug

[Roy J. Tellason, Sr.]

On Wednesday 12 June 2024 06:54:54 am Richard wrote:
> But also, just
> searching the web for this topic, you should have come across this
> answering your questions: https://wiki.debian.org/NetworkInterfaceNames
> 

Wow.  Just wow...

That sort of thing just drives me crazy!  :-)

I can see sticking with older versions of some things.

-- 
Member of the toughest, meanest, deadliest, most unrelenting -- and
ablest -- form of life in this section of space,  a critter that can
be killed but can't be tamed.  --Robert A. Heinlein, "The Puppet Masters"
-
Information is more dangerous than cannon to a society ruled by lies. --James 
M Dakin

Re: descargar versiones anteriores

[Juan Carlos Rebate]

El 12/6/24 a las 6:48, Camaleón escribió:

El 2024-06-12 a las 03:36 +0200, Juaan Carrlos Rebate escribió:


Disculpad por el HTML, envío el correo desde Windows y no hay forma de
eliminar el formato.

¿?

Se llama «formato texto plano», todos los clientes lo tienen, hasta los
malogrados webmail.


Fernando, gracias por tu respuesta pero te comento
que ni jigdo-file ni lite están en los repos

(...)

El paquete estar, está:

https://packages.debian.org/bullseye/jigdo-file
https://tracker.debian.org/pkg/jigdo

sm01@stt008:~$ apt-cache search jigdo-file
jigdo-file - Download Debian CD/DVD/USB images from any Debian mirror

sm01@stt008:~$ uname -a
Linux stt008 5.10.0-30-amd64 #1 SMP Debian 5.10.218-1 (2024-06-01) x86_64 
GNU/Linux

Revisa tu configuración y repositorios.

Saludos,

he cambiado a thunderbird. si, sé como se llama, pero en windows no uso 
webmail, sino la app outlook, y no tiene opciones para eliminar el 
formato (o las tiene desactivadas como muchas de word). pues ni idea, en 
los repos no parece estar o no parece localizarlos, pero bajamdo las 
fuentes funciona. ya pude bajar los tres primeros DVD

Re: "Repeaters", etc.

[gene heskett]

On 6/12/24 10:07, mick.crane wrote:

On 2024-05-29 16:08, gene heskett wrote:


Except at the service. Properly wired, the neutral and static grounds
are bonded ONLY in the service box. I am constantly amazed at the
people who call themselves electricians, who think the static ground
and the neutral are interchangeable just because they are bonded at
the service.

AIUI the distribution neutral is hammered into the ground at the 
substation/generator.
Some electricians say you don't need the earth, another explained it is 
necessary to locally drive a conductor into the ground and attach the 
earth to that in case something happens to the distribution neutral the 
electric has somewhere to go to trip a relay in the house.

mick
.
And here in the USA, the NEC demands two ground rods separated by enough 
distance it actually is two good grounds. I have had zero problems since 
making it so in 2008 as I was building a garage on the end of the house 
and upgrading the service from a 60 amp pushmatic to a 200 amp SQD. The 
house is still a 60 but is a subcircuit now.


Cheers, Gene Heskett, CET.
--
"There are four boxes to be used in defense of liberty:
 soap, ballot, jury, and ammo. Please use in that order."
-Ed Howdershelt (Author, 1940)
If we desire respect for the law, we must first make the law respectable.
 - Louis D. Brandeis

Re: Having ten thousands of mount bind causes various processes to go into loops

[Richard]

Best question probably is: what exactly are you needing 14.000 mounts for?
Even snaps shouldn't be that ridiculous. So what's your use case? Maybe
there's a better solution to what you are doing. If it's just about having
a place that is rw only without execution permissions, just crate a
separate partition, mount it somewhere - e.g. /home/test/mounts and tell
mount/fstab to use the option noexec. No need for for your script. Or if
it's a more advanced file system like btrfs you may be able to simply
create a subvolume with the same capabilities, no need to tinker around
with partitions.

It's true this issue should be looked into, but it doesn't look urgent as
long as there are alternatives.

Richard

Am Mi., 12. Juni 2024 um 16:33 Uhr schrieb Julien Petit :

> Dear,
>
> Not sure i should report a bug so here is a report first. For more
> than 10 years now, we've been using mount binds to create shares rw or
> ro. It's been working perfectly under older Debian. A few months ago,
> we migrated to Ubuntu Jammy and started having processes running 100%
> non stop. While examining the processes in question, we could see the
> same thing: it seemed to be reading all the mounts indefinitely.
> It started with the phpsessionclean.service. We managed to fix it
> editing /lib/systemd/system/phpsessionclean.service and disabling
> sandboxing entries. But then it started to happen with other
> processes.
> Anything related to systemd seems affected in a way. For instance, we
> cannot start haproxy if the mounts are mounted.
> We tested with the last Debian and it is affected too.
>
> We understand that 14 000 mounts is a lot. So maybe our usage will be
> questioned. But this has been working for ages so why not now?
>
> The problem can be very easily reproduced:
>
> 1. Launch the latest Debian stable
> 2. Execute the following script to create mounts:
> #!/bin/bash
> mkdir /home/test/directories
> mkdir /home/test/mounts
>
> for i in {1..14000}
> do
>echo "Mounting dir $i"
>mkdir "/home/test/directories/dir_$i"
>mkdir "/home/test/mounts/dir_$i"
>mount --bind -o rw "/home/test/directories/dir_$i"
> "/home/test/mounts/dir_$i"
> done
>
> After that, the "top" command will show processes getting stuck using
> 100% of CPU never ending.
>
> Has anyone a clue if this is fixable? Should i report a bug?
> Thanks for your help.
>
>

Re: Please help me identify package so I can report an important bug

[Richard]

Good catch. With the title of this thread and not seeing any proper
description of what's actually wrong on GitHub, I figured the change of the
adapter name was meant. Yes, with MAC randomization, that's what you'll
get. But it's nothing Debian defaults to. So question is, can this be
disabled on Proxmox? But with this hint, it should be easy enough to figure
out if this can be deactivated on the affected systems, and if not the bug
reports must be against these issues, as Debian itself doesn't do such
things. If it is an issue with Debian preventing the disablement, the devs
need to talk to each other.

Richard

Am Mi., 12. Juni 2024 um 17:10 Uhr schrieb Jeffrey Walton <
noloa...@gmail.com>:

> The random MAC address discussed in the bug report (with mention of
> Network Manager) could be
> <
> https://blogs.gnome.org/thaller/2016/08/26/mac-address-spoofing-in-networkmanager-1-4-0/
> >.
>
> Jeff
>

Re: Having ten thousands of mount bind causes various processes to go into loops

[Max Nikulin]

On 12/06/2024 17:02, Julien Petit wrote:

for i in {1..14000}
do
echo "Mounting dir $i"
mkdir "/home/test/directories/dir_$i"
mkdir "/home/test/mounts/dir_$i"
mount --bind -o rw "/home/test/directories/dir_$i" 
"/home/test/mounts/dir_$i"
done

After that, the "top" command will show processes getting stuck using
100% of CPU never ending.


What processes are CPU hungry?


Has anyone a clue if this is fixable? Should i report a bug?


Perhaps it is not a Debian-specific bug, just more active usage of 
sandboxing in systemd. If some applications have troubles parsing 
/proc/mounts then bugs should be filed against them.


However do you need shared subtrees? It may cause exponential growth of 
number of moutpoints, see

https://docs.kernel.org/filesystems/sharedsubtree.html
https://manpages.debian.org/bookworm/mount/mount.8.en.html#Shared_subtree_operations

Re: info vs. man

[Max Nikulin]

On 12/06/2024 01:00, Greg Wooledge wrote:

On 11/06/2024 06:45, Greg Wooledge wrote:

Should you ever feel a need to read the longer version of the
documentation, it's in GNU info pages.  So you would need to type
the command "info coreutils date" to get to it.  And then you'd need
to figure out the user interface of the "info" program, which is not
intuitive unless you happen to be an emacs power user already.

[...]

I also provided a reference to the info page, and a command that would
bring that up, should the need ever arise.  More importantly, I revealed
that info pages *exist* and *are a thing* that they need to know about.
It's planting a seed for the future.


I misunderstood your intention and I am sorry for that. I found your 
words quite discouraging in respect to "info", perhaps it is just 
language barrier.


Info is quite important. While e.g. "man bash" and "info bash" documents 
are quite similar, there is no man equivalent for "info grub".


Your variant of info command is quite specific. I like that "info" 
allows partial match of node name and it may be a separate argument. 
Unfortunately tkinfo and the Emacs function require another style (info 
"(coreutils) date invocation"). Every coreutils man page has it in the 
"SEE ALSO" section.


I do not mind that users almost certainly familiar with basic pager UI 
and using of "info" requires some knowledge. In this particular case UI 
does not differ


- info "(coreutils) date invocation"
- /week [Enter]

P.S. Perhaps Emacs developers teach users how to fish as well. From my 
point of view the following path described in "emacs --help" is 
unnecessary long:



Run M-x info RET m emacs RET m emacs invocation RET inside Emacs to
read the main documentation for these command-line arguments.

Re: App Banco Itau

[luigui]

Acesso pela maquina virtual e' boa recomendacao do Atenagoras.

O software Warsaw precisa estar sempre atualizado, mesmo pela GAS tecno_ 
pois adiciona uma camada ao OS e sabemos que uma das premissas em 
seguranca e' a de que quanto menos aplicativos e servicos instalados 
melhor a higiene contra vulnerabilidades.


Qualquer instalacao desencadeia um desdobro aos riscos a seguranca. Como 
linguagem do software utilizada, sua logica de programacao, em suma um 
codigo conciso para melhor desempenho e resistencia a ataques.


Confiar em codigos proprietarios e' outro topico a ser discutido.

Uso o Warsaw pelo BB mas em um computador especifico para administracao 
contabil, aonde procuro deixa-lo o mais enxuto possivel.



On 12/06/2024 10:12, Atenágoras Silva wrote:
Não sou cliente do banco, mas é possível que o acesso à sua conta no 
computador seja possível apenas através do navegador.
Para isso, muito provavelmente, será necessário instalar um software 
chamado "warsaw", de uma empresa chamada "GAS tecnologia".
Os procedimentos para isso devem ser feitos junto ao suporte do banco 
(O Banco do Brasil tem um suporte para isso).
Mas eu recomendo que, se usar o computador, instale o warsaw em uma 
máquina virtual e acesse o banco a partir dela, pois este software 
roda como um daemon com permissões de root o tempo todo, mesmo que 
você não esteja acessando o banco.


Em qua., 12 de jun. de 2024 às 09:08, Vitor Hugo 
 escreveu:


Bom dia,

Gostaria de saber se é possível utilizar o banco Itau no Debian?

Se alguém aqui na lista utiliza e se funciona bem.

Estou utilizando o APP do Itau e alguma coisas só funcionam la.

Existem versão para Linux ou teria como utilizar um emulador para
utiliza-la?

Obrigado;
null

virt-manager: Cannot recv data: Connection reset by peer

[Ceppo]

Context: I am on sid, so random breakage is expected. This time it happened
somewhere between virt-manager and KVM, and I got stuck as I don't know much
about KVM and emulation general.

I have been using virt-manager to manage virtual machine with QEMU/KVM user
session for some months without any issue. From monday the session is "Not
Connected" and when I try to connect I get the following message:

Unable to connect to libvirt qemu:///session.

Cannot recv data: Connection reset by peer

and Details:

Unable to connect to libvirt qemu:///session.

Cannot recv data: Connection reset by peer

Libvirt URI is: qemu:///session

Traceback (most recent call last):
  File "/usr/share/virt-manager/virtManager/connection.py", line 923, 
in _do_open
self._backend.open(cb, data)
  File "/usr/share/virt-manager/virtinst/connection.py", line 171, in 
open
conn = libvirt.openAuth(self._open_uri,
   
  File "/usr/lib/python3/dist-packages/libvirt.py", line 147, in 
openAuth
raise libvirtError('virConnectOpenAuth() failed')
libvirt.libvirtError: Cannot recv data: Connection reset by peer

I supposed something happened when I upgraded my (host) machine with aptitude
full-upgrade, and in fact aptitude logs include the following:

[UPGRADE] libvirt-daemon-driver-qemu:amd64 10.3.0-3 -> 10.4.0-1
[UPGRADE] python3-libvirt:amd64 10.3.0-1 -> 10.4.0-1
[UPGRADE] qemu-block-extra:amd64 1:8.2.4+ds-1 -> 1:8.2.4+ds-2
[UPGRADE] qemu-system-common:amd64 1:8.2.4+ds-1 -> 1:8.2.4+ds-2
[UPGRADE] qemu-system-data:amd64 1:8.2.4+ds-1 -> 1:8.2.4+ds-2
[UPGRADE] qemu-system-gui:amd64 1:8.2.4+ds-1 -> 1:8.2.4+ds-2
[UPGRADE] qemu-system-modules-opengl:amd64 1:8.2.4+ds-1 -> 1:8.2.4+ds-2
[UPGRADE] qemu-system-modules-spice:amd64 1:8.2.4+ds-1 -> 1:8.2.4+ds-2
[UPGRADE] qemu-system-x86:amd64 1:8.2.4+ds-1 -> 1:8.2.4+ds-2
[UPGRADE] qemu-utils:amd64 1:8.2.4+ds-1 -> 1:8.2.4+ds-2

But I couldn't find anything interesting in their changelogs.
The usual online forums digging suggested to make sure that libvirtd is active
[1] - and it does. I also experimented with solutions proposed for similar but
different issues, to no avail. Here I got stuck.
Someone can help me investigate or resolve the issue?



[1]: https://bbs.archlinux.org/viewtopic.php?id=289546z



--
Ceppo

Re: Please help me identify package so I can report an important bug

[Jeffrey Walton]

On Wed, Jun 12, 2024 at 10:33 AM Richard  wrote:
>
> Question is, does it make that much sense to report it to Debian directly? 
> Are you encountering this issue on Debian itself or 
> Armbian/Raspbian/whatever? You reported this to the Raspberry Pi GitHub, so 
> I'd expect them to take this up with the upstream devs themselves, so by the 
> time Trixie is being released, it may already be included.
>
> But besides that, what you describe in the first link sounds to me not like a 
> bug, but as a well thought-through decision. Network adapter names like eth0 
> have been dropped with Debian 11 (I think, maybe even 10). So don't get your 
> hopes up too high to ever see this coming back. But also, just searching the 
> web for this topic, you should have come across this answering your 
> questions: https://wiki.debian.org/NetworkInterfaceNames

The random MAC address discussed in the bug report (with mention of
Network Manager) could be
.

Jeff

Re: OFF-TOPIC - cyberseguranca

[Yuri Musachio]

Então Vitor, você tem que lembrar que tudo é "rede", com outras formas de 
comunicação, outros protocolos... Mas continua sendo rede. E outra, já tem 
tempo que as chamdas telefônicas utilizam parte da rede de internet para 
trafegar... Claro, ali rola uma separação das comunicações.
Entretante, todos esses problemas que o amigo informou (que não sei se são 
possíveis, mas não dúvido) são problemas relacionados a própria tecnologia da 
telefonia em si.
Há uns anos atras, papo de quase 10 (acho que foi quando rolou aquela parada do 
WikiLeaks falando do NSA com a Dilma), recordo vagamento de ter rolado uma 
matérias sobre as vulnerabilidades da rede de telefonia, e que futuramente 
modificariam a maneira como a rede de telefonia funcionava (nível 
internacional).
Pelo visto isso ainda não foi pra frente, ou ao menos não é algo que tenhamos 
visto no momento.

Best,
On Jun 12 2024, at 10:05 am, luigui  wrote:
> Bom dia Vitor,
>
> nao sei se classificaria completamente como OFF-TOPIC
> Visto que configuracoes em nossas distros Debian poderao oportunamente serem 
> criadas sobre programas que venham a auxiliar no reconhecimento de chamadas.
> Nao estendendo, mas ja sao criadas antenas domesticas por agressores que 
> conseguem contornar os protocolos de comunicacao e seguranca das operadoras 
> estabelecendo conexoes mal intencionadas.
> Mas presumo que razao possa lhe assistir.
> Grato pelo retorno.
>
>
> On 12/06/2024 07:41, Vitor Hugo wrote:
> > Bom dia,
> >
> > Isto é um OFF-TOPIC.
> > Desconheço esse tipo de ataque, mas teoricamente se para isto funcionar 
> > deveria ser feito por uma chamada pela internet, acredito que somente por 
> > voz sem internet isso não seja possível.
> > Porem sei que aqui na lista possuem pessoas muito informadas e esclarecidas 
> > com conhecimentos técnicos de primeira linha que possam lhe ajudar mais.
> >
> > Em 11/06/2024 23:03, luiz gil escreveu:
> > > Boa noite aos amigos!
> > > Peco que retornem alguma experiencia ou mesmo uma ciencia de qualquer 
> > > natureza do abaixo enunciado como, leitura, conversas com experts ou 
> > > afins.
> > > Desculpem pelo topico ser talvez de baixa correlacao desta lista.
> > >
> > >
> > > E' possível que apenas ao receber uma chamada sem dizer uma palavra ao 
> > > agressor, você possa ter seu telefone infectado. Esse tipo de ataque é 
> > > conhecido como ataque de "chamada perdida" ou "chamada silenciosa". Nesse 
> > > cenário, os hackers exploram vulnerabilidades nos sistemas de comunicação 
> > > dos dispositivos para enviar uma chamada aparentemente inofensiva, mas 
> > > que na verdade contém códigos maliciosos.
> > > Quando você atende a chamada, mesmo sem falar nada, os códigos maliciosos 
> > > podem ser executados automaticamente no seu dispositivo, explorando 
> > > alguma vulnerabilidade do sistema operacional ou de um aplicativo. Esses 
> > > códigos podem instalar malware no seu telefone, roubar informações 
> > > pessoais, controlar remotamente o dispositivo, entre outras ações 
> > > prejudiciais.
> > > Portanto, é importante ter em mente que, mesmo sem interagir verbalmente 
> > > com o agressor durante uma chamada, seu telefone ainda pode estar em 
> > > risco se houver uma exploração de vulnerabilidade através dessa chamada. 
> > > Manter o software do seu dispositivo atualizado, evitar atender chamadas 
> > > de números desconhecidos e usar aplicativos de segurança confiáveis podem 
> > > ajudar a mitigar esses riscos.
> > > --
> > > Atenciosamente,
> > > Luiz Carlos Proenca Gil
> >
>

Re: App Banco Itau

[Paulo Ricardo Bruck]

Bom dia

Eu uso para pessoa física e jurídica, mas acesso somente via navegador (
chrome e firefox) funcionam, mais para isto vc deve baixar o
aplicativo warsaw que está disponível quando você acessar o itau pela url
itau.com.br

abraços

Em qua., 12 de jun. de 2024 às 09:08, Vitor Hugo 
escreveu:

> Bom dia,
>
> Gostaria de saber se é possível utilizar o banco Itau no Debian?
>
> Se alguém aqui na lista utiliza e se funciona bem.
>
> Estou utilizando o APP do Itau e alguma coisas só funcionam la.
>
> Existem versão para Linux ou teria como utilizar um emulador para
> utiliza-la?
>
> Obrigado;
>
>

-- 
Paulo Ricardo Bruck
011 98140-9184 (Whatsup/vivo)
011 94184-3433 (vivo)

Re: "Repeaters", etc.

[mick.crane]

On 2024-05-29 16:08, gene heskett wrote:


Except at the service. Properly wired, the neutral and static grounds
are bonded ONLY in the service box. I am constantly amazed at the
people who call themselves electricians, who think the static ground
and the neutral are interchangeable just because they are bonded at
the service.

AIUI the distribution neutral is hammered into the ground at the 
substation/generator.
Some electricians say you don't need the earth, another explained it is 
necessary to locally drive a conductor into the ground and attach the 
earth to that in case something happens to the distribution neutral the 
electric has somewhere to go to trip a relay in the house.

mick

Re: App Banco Itau

[Yuri Musachio]

Funciona sim…

> Em 12 de jun. de 2024, à(s) 10:18, Vitor Hugo  
> escreveu:
> 
> Bom dia,
> 
> Gostaria de saber se é possível utilizar o banco Itau no Debian?
> 
> Se alguém aqui na lista utiliza e se funciona bem.
> 
> Estou utilizando o APP do Itau e alguma coisas só funcionam la.
> 
> Existem versão para Linux ou teria como utilizar um emulador para utiliza-la?
> 
> Obrigado;
> 

Re: virt-manager (qemu/kvm) et virtiofs

[didier gaumet]

oups, désolé, mon copier/coller a merdé, c'est donc plutôt:


didier@hp-notebook14:~$ ps -axl | grep -i qemu
4   101   16834   1  20   0   9052  6352 -  S?  0:00 
/usr/bin/swtpm socket --ctrl 
type=unixio,path=/run/libvirt/qemu/swtpm/3-win11-swtpm.sock,mode=0600 
--tpmstate 
dir=/var/lib/libvirt/swtpm/81398816-982e-4234-9474-5f5f60c8876c/tpm2,mode=0600 
--log file=/var/log/swtpm/libvirt/qemu/win11-swtpm.log --terminate --tpm2
4 0   16840   1  20   0  79968  1748 -  Sl   ?  0:00 
/usr/lib/qemu/virtiofsd --fd=34 -o source=/home/didier/Programs/poco_f3
6 64055   16872   1  20   0 10668808 8580296 -  Sl   ?  7:14 
/usr/bin/qemu-system-x86_64 -name guest=win11,debug-threads=on -S 
-object 
{"qom-type":"secret","id":"masterKey0","format":"raw","file":"/var/lib/libvirt/qemu/domain-3-win11/master-key.aes"} 
-blockdev 
{"driver":"file","filename":"/usr/share/OVMF/OVMF_CODE_4M.secboot.fd","node-name":"libvirt-pflash0-storage","auto-read-only":true,"discard":"unmap"} 
-blockdev 
{"node-name":"libvirt-pflash0-format","read-only":true,"driver":"raw","file":"libvirt-pflash0-storage"} 
-blockdev 
{"driver":"file","filename":"/var/lib/libvirt/qemu/nvram/win11_VARS.fd","node-name":"libvirt-pflash1-storage","auto-read-only":true,"discard":"unmap"} 
-blockdev 
{"node-name":"libvirt-pflash1-format","read-only":false,"driver":"raw","file":"libvirt-pflash1-storage"} 
-machine 
pc-q35-7.2,usb=off,vmport=off,smm=on,dump-guest-core=off,memory-backend=pc.ram,pflash0=libvirt-pflash0-format,pflash1=libvirt-pflash1-format 
-accel kvm -cpu 
host,migratable=on,hv-time=on,hv-relaxed=on,hv-vapic=on,hv-spinlocks=0x1fff 
-global driver=cfi.pflash01,property=secure,value=on -m 8192 -object 
{"qom-type":"memory-backend-memfd","id":"pc.ram","share":true,"x-use-canonical-path-for-ramblock-id":false,"size":8589934592} 
-overcommit mem-lock=off -smp 4,sockets=4,cores=1,threads=1 -uuid 
81398816-982e-4234-9474-5f5f60c8876c -no-user-config -nodefaults 
-chardev socket,id=charmonitor,fd=33,server=on,wait=off -mon 
chardev=charmonitor,id=monitor,mode=control -rtc 
base=localtime,driftfix=slew -global kvm-pit.lost_tick_policy=delay 
-no-hpet -no-shutdown -global ICH9-LPC.disable_s3=1 -global 
ICH9-LPC.disable_s4=1 -boot strict=on -device 
{"driver":"pcie-root-port","port":16,"chassis":1,"id":"pci.1","bus":"pcie.0","multifunction":true,"addr":"0x2"} 
-device 
{"driver":"pcie-root-port","port":17,"chassis":2,"id":"pci.2","bus":"pcie.0","addr":"0x2.0x1"} 
-device 
{"driver":"pcie-root-port","port":18,"chassis":3,"id":"pci.3","bus":"pcie.0","addr":"0x2.0x2"} 
-device 
{"driver":"pcie-root-port","port":19,"chassis":4,"id":"pci.4","bus":"pcie.0","addr":"0x2.0x3"} 
-device 
{"driver":"pcie-root-port","port":20,"chassis":5,"id":"pci.5","bus":"pcie.0","addr":"0x2.0x4"} 
-device 
{"driver":"pcie-root-port","port":21,"chassis":6,"id":"pci.6","bus":"pcie.0","addr":"0x2.0x5"} 
-device 
{"driver":"pcie-root-port","port":22,"chassis":7,"id":"pci.7","bus":"pcie.0","addr":"0x2.0x6"} 
-device 
{"driver":"pcie-root-port","port":23,"chassis":8,"id":"pci.8","bus":"pcie.0","addr":"0x2.0x7"} 
-device 
{"driver":"pcie-root-port","port":24,"chassis":9,"id":"pci.9","bus":"pcie.0","multifunction":true,"addr":"0x3"} 
-device 
{"driver":"pcie-root-port","port":25,"chassis":10,"id":"pci.10","bus":"pcie.0","addr":"0x3.0x1"} 
-device 
{"driver":"pcie-root-port","port":26,"chassis":11,"id":"pci.11","bus":"pcie.0","addr":"0x3.0x2"} 
-device 
{"driver":"pcie-root-port","port":27,"chassis":12,"id":"pci.12","bus":"pcie.0","addr":"0x3.0x3"} 
-device 
{"driver":"pcie-root-port","port":28,"chassis":13,"id":"pci.13","bus":"pcie.0","addr":"0x3.0x4"} 
-device 
{"driver":"pcie-root-port","port":29,"chassis":14,"id":"pci.14","bus":"pcie.0","addr":"0x3.0x5"} 
-device 
{"driver":"qemu-xhci","p2":15,"p3":15,"id":"usb","bus":"pci.2","addr":"0x0"} 
-device 
{"driver":"virtio-serial-pci","id":"virtio-serial0","bus":"pci.3","addr":"0x0"} 
-blockdev 
{"driver":"file","filename":"/home/machines_virtuelles/win11.qcow2","node-name":"libvirt-3-storage","auto-read-only":true,"discard":"unmap"} 
-blockdev 
{"node-name":"libvirt-3-format","read-only":false,"driver":"qcow2","file":"libvirt-3-storage","backing":null} 
-device 
{"driver":"ide-hd","bus":"ide.0","drive":"libvirt-3-format","id":"sata0-0-0","bootindex":1} 
-blockdev 
{"driver":"file","filename":"/home/didier/Programs/Win11_23H2_French_x64.iso","node-name":"libvirt-2-storage","auto-read-only":true,"discard":"unmap"} 
-blockdev 
{"node-name":"libvirt-2-format","read-only":true,"driver":"raw","file":"libvirt-2-storage"} 
-device 
{"driver":"ide-cd","bus":"ide.1","drive":"libvirt-2-format","id":"sata0-0-1"} 
-blockdev 
{"driver":"file","filename":"/home/didier/Programs/virtio-win-0.1.240.iso","node-name":"libvirt-1-storage","auto-read-only":true,"discard":"unmap"} 
-blockdev 
{"node-name":"libvirt-1-format","read-only":true,"driver":"raw","file":"libvirt-1-storage"} 
-device 

Re: virt-manager (qemu/kvm) et virtiofs

[didier gaumet]

Le 12/06/2024 à 14:14, BERTRAND Joël a écrit :

didier gaumet a écrit :

[...]

- tu ne sembles pas avoir instancié le périphérique ("instantiate the
character device" dans la doc ci-dessus)?


L’instanciation est faite (sauf que la VM cherche à se connecter à une
socket créée par virtiofsd qui n'est jamais créée parce que virtiofsd
n'est jamais lancé...).


Ben c'est très possiblement moi qui ne comprend pas bien mais d'un autre 
côté je suis perplexe:
- tu sembles dire que virtiofsd dans ton contexte (création machine mar 
virtmanager mais lancement qemu à la main si je suis bien) doit être 
lancé automatiquement suite au démarrage de ta machine virtuelle lancée 
par la commande qemu avec les paramètres que tu as cités
- par contre l'exemple du lien précédent semble indiquer que virtiofsd 
doit être lancé préalablement au lancement de la commande qemu, commande 
qemu dont les paramètres doivent comporter les éléments nécessaires à 
l'instanciation du "character device for socket" (du style: -chardev 
socket,id=char0,path=/tmp/virtiofs_socket ) et à l'instanciation du 
"virtiofs PCI device" (du style: -device 
vhost-user-fs-pci,queue-size=1024,chardev=char0,tag=my_virtiofs).

Deux instanciations.
- le partage mémoire ("Memory Backing" dans le lien précité) semble 
indispensable


oui, désolé, dans mon message précédent je ne parlais que de 
l'instanciation pour le socket et pas pour le port PCI.


si virtiofsd n'est pas préalablement lancé et si les deux instanciations 
ne sont pas faites dans la commandes de lancement Qemu, ça résulte 
peut-être en ton message d'erreur (connexion socket refusée)?


Je viens de modifier dans virtmanager mon Win11 virtualisé pour lui 
ajouter un dossier d'échange commun Debian/Win11,


=> chez moi ça marche.

si ça peut te dépanner, je te file les procs qemu et virtiofs qui 
tournent, lancés par virtmanager, pour que tu voies les paramètres qui 
fonctionnent chez moi:


bus":"pcie.0","addr":"0x2.0x2"} -device 
{"driver":"pcie-root-port","port":19,"chassis":4,"id":"pci.4","bus":"pcie.0","addr":"0x2.0x3"} 
-device 
{"driver":"pcie-root-port","port":20,"chassis":5,"id":"pci.5","bus":"pcie.0","addr":"0x2.0x4"} 
-device 
{"driver":"pcie-root-port","port":21,"chassis":6,"id":"pci.6","bus":"pcie.0","addr":"0x2.0x5"} 
-device 
{"driver":"pcie-root-port","port":22,"chassis":7,"id":"pci.7","bus":"pcie.0","addr":"0x2.0x6"} 
-device 
{"driver":"pcie-root-port","port":23,"chassis":8,"id":"pci.8","bus":"pcie.0","addr":"0x2.0x7"} 
-device 
{"driver":"pcie-root-port","port":24,"chassis":9,"id":"pci.9","bus":"pcie.0","multifunction":true,"addr":"0x3"} 
-device 
{"driver":"pcie-root-port","port":25,"chassis":10,"id":"pci.10","bus":"pcie.0","addr":"0x3.0x1"} 
-device 
{"driver":"pcie-root-port","port":26,"chassis":11,"id":"pci.11","bus":"pcie.0","addr":"0x3.0x2"} 
-device 
{"driver":"pcie-root-port","port":27,"chassis":12,"id":"pci.12","bus":"pcie.0","addr":"0x3.0x3"} 
-device 
{"driver":"pcie-root-port","port":28,"chassis":13,"id":"pci.13","bus":"pcie.0","addr":"0x3.0x4"} 
-device 
{"driver":"pcie-root-port","port":29,"chassis":14,"id":"pci.14","bus":"pcie.0","addr":"0x3.0x5"} 
-device 
{"driver":"qemu-xhci","p2":15,"p3":15,"id":"usb","bus":"pci.2","addr":"0x0"} 
-device 
{"driver":"virtio-serial-pci","id":"virtio-serial0","bus":"pci.3","addr":"0x0"} 
-blockdev 
{"driver":"file","filename":"/home/machines_virtuelles/win11.qcow2","node-name":"libvirt-3-storage","auto-read-only":true,"discard":"unmap"} 
-blockdev 
{"node-name":"libvirt-3-format","read-only":false,"driver":"qcow2","file":"libvirt-3-storage","backing":null} 
-device 
{"driver":"ide-hd","bus":"ide.0","drive":"libvirt-3-format","id":"sata0-0-0","bootindex":1} 
-blockdev 
{"driver":"file","filename":"/home/didier/Programs/Win11_23H2_French_x64.iso","node-name":"libvirt-2-storage","auto-read-only":true,"discard":"unmap"} 
-blockdev 
{"node-name":"libvirt-2-format","read-only":true,"driver":"raw","file":"libvirt-2-storage"} 
-device 
{"driver":"ide-cd","bus":"ide.1","drive":"libvirt-2-format","id":"sata0-0-1"} 
-blockdev 
{"driver":"file","filename":"/home/didier/Programs/virtio-win-0.1.240.iso","node-name":"libvirt-1-storage","auto-read-only":true,"discard":"unmap"} 
-blockdev 
{"node-name":"libvirt-1-format","read-only":true,"driver":"raw","file":"libvirt-1-storage"} 
-device 
{"driver":"ide-cd","bus":"ide.2","drive":"libvirt-1-format","id":"sata0-0-2"} 
-chardev 
socket,id=chr-vu-fs0,path=/var/lib/libvirt/qemu/domain-3-win11/fs0-fs.sock 
-device 
{"driver":"vhost-user-fs-pci","id":"fs0","chardev":"chr-vu-fs0","tag":"C:\\coucou","bus":"pci.5","addr":"0x0"} 
-netdev {"type":"tap","fd":"34","id":"hostnet0"} -device 
{"driver":"e1000e","netdev":"hostnet0","id":"net0","mac":"52:54:00:e0:e1:33","bus":"pci.1","addr":"0x0"} 
-chardev pty,id=charserial0 -device 
{"driver":"isa-serial","chardev":"charserial0","id":"serial0","index":0} 
-chardev spicevmc,id=charchannel0,name=vdagent -device 

Re: App Banco Itau

[Atenágoras Silva]

Não sou cliente do banco, mas é possível que o acesso à sua conta no
computador seja possível apenas através do navegador.
Para isso, muito provavelmente, será necessário instalar um software
chamado "warsaw", de uma empresa chamada "GAS tecnologia".
Os procedimentos para isso devem ser feitos junto ao suporte do banco (O
Banco do Brasil tem um suporte para isso).
Mas eu recomendo que, se usar o computador, instale o warsaw em uma máquina
virtual e acesse o banco a partir dela, pois este software roda como um
daemon com permissões de root o tempo todo, mesmo que você não esteja
acessando o banco.

Em qua., 12 de jun. de 2024 às 09:08, Vitor Hugo 
escreveu:

> Bom dia,
>
> Gostaria de saber se é possível utilizar o banco Itau no Debian?
>
> Se alguém aqui na lista utiliza e se funciona bem.
>
> Estou utilizando o APP do Itau e alguma coisas só funcionam la.
>
> Existem versão para Linux ou teria como utilizar um emulador para
> utiliza-la?
>
> Obrigado;
>
>

Re: [OT] - Software para leer data loggers

[Jorge Abel Secreto]

El mié, 12 jun 2024 a la(s) 5:13 a.m., Camaleón (noela...@gmail.com) escribió:
>
> El 2024-06-11 a las 12:41 -0300, Jorge Abel Secreto escribió:
>
> > Hola!!
> > Disculpen que moleste con esto.
> > Estoy tratando de leer los registros de un data logger de temperaturas
> > TESTO 174T desde Debian 12.
> > El sistema lo ve asi:
> > usb 1-3: new full-speed USB device number 4 using xhci_hcd
> > usb 1-3: New USB device found, idVendor=128d, idProduct=0013, bcdDevice= 
> > 6.00
> > usb 1-3: New USB device strings: Mfr=1, Product=2, SerialNumber=0
> > usb 1-3: Product: testo 174-2010
> > usb 1-3: Manufacturer: Testo SE & Co. KGaA
> > El fabricante provee un programa para Windows pero me gustaría poder
> > hacerlo desde Linux.
>
> Pídeselo ;-)
>
> ***
> https://static.testo.com/image/upload/Instruction-manual-and-Software/Instruction-manuals/testo-comfort-software-basic-5-manual-de-instrucciones.pdf
>
> 3.2. Requisitos del sistema
>
> Sistema operativo
>
> El software funciona con los siguientes sistemas operativos:
>
> • Windows ® 10
> • Windows ® 11
> • Otros: a pedido
>   ^^^
> ***
>
> > Las busquedas por "linux data logger testo 174" me traen referencias a
> > la página oficial o a paginas de vendedores del aparato.
> > Buscando en Synaptic no encuentro nada que parezca servir.
> > ¿Estoy buscando mal?
> > ¿Alguno de ustedes usa algo que me pueda servir?
>
> Máquina virtual o emulador (Wine).
>
> Para estos casos no se me ocurre nada más, son aplicaciones
> propietarias desarrolladas para un producto concreto, propietario, así
> que mal asunto :-(
>
> Saludos,
>
> --
> Camaleón
>

Muchas gracias por las respuestas
Tendré que mantener un Win andando para leer este aparato.
No tengo la esperanza de que los de Testo me den el protocolo de
comunicación :-P
Encima tenemos un solo registrador, no justifica ningún desarrollo.
Como de costumbre siempre hay cosas mas urgentes :-/
Nuevamente muchas gracias por su atención,
Abrazos

-- 
Jorge A Secreto
Analista de Sistemas
MP 361

Re: OFF-TOPIC - cyberseguranca

[luigui]

Bom dia Vitor,

nao sei se classificaria completamente como OFF-TOPIC

Visto que configuracoes em nossas distros Debian poderao oportunamente 
serem criadas sobre programas que venham a auxiliar no reconhecimento de 
chamadas.


Nao estendendo, mas ja sao criadas antenas domesticas por agressores que 
conseguem contornar os protocolos de comunicacao e seguranca das 
operadoras estabelecendo conexoes mal intencionadas.


Mas presumo que razao possa lhe assistir.

Grato pelo retorno.


On 12/06/2024 07:41, Vitor Hugo wrote:

Bom dia,

Isto é um OFF-TOPIC.

Desconheço esse tipo de ataque, mas teoricamente se para isto 
funcionar deveria ser feito por uma chamada pela internet, acredito 
que somente por voz sem internet isso não seja possível.


Porem sei que aqui na lista possuem pessoas muito informadas e 
esclarecidas com conhecimentos técnicos de primeira linha que possam 
lhe ajudar mais.



Em 11/06/2024 23:03, luiz gil escreveu:

Boa noite aos amigos!
Peco que retornem alguma experiencia ou mesmo uma ciencia de qualquer 
natureza do abaixo enunciado como, leitura, conversas com experts ou 
afins.

Desculpem pelo topico ser talvez de baixa correlacao desta lista.


E' possível que apenas ao receber uma chamada sem dizer uma palavra 
ao agressor, você possa ter seu telefone infectado. Esse tipo de 
ataque é conhecido como ataque de "chamada perdida" ou "chamada 
silenciosa". Nesse cenário, os hackers exploram vulnerabilidades nos 
sistemas de comunicação dos dispositivos para enviar uma chamada 
aparentemente inofensiva, mas que na verdade contém códigos maliciosos.


Quando você atende a chamada, mesmo sem falar nada, os códigos 
maliciosos podem ser executados automaticamente no seu dispositivo, 
explorando alguma vulnerabilidade do sistema operacional ou de um 
aplicativo. Esses códigos podem instalar malware no seu telefone, 
roubar informações pessoais, controlar remotamente o dispositivo, 
entre outras ações prejudiciais.


Portanto, é importante ter em mente que, mesmo sem interagir 
verbalmente com o agressor durante uma chamada, seu telefone ainda 
pode estar em risco se houver uma exploração de vulnerabilidade 
através dessa chamada. Manter o software do seu dispositivo 
atualizado, evitar atender chamadas de números desconhecidos e usar 
aplicativos de segurança confiáveis podem ajudar a mitigar esses riscos.


--
Atenciosamente,
Luiz Carlos Proenca Gil
null

Re: virt-manager (qemu/kvm) et virtiofs

[BERTRAND Joël]

didier gaumet a écrit :
> Le 12/06/2024 à 10:31, BERTRAND Joël a écrit :
>> Bonjour à tous,
>>
>> Je dois faire quelques tests avec une imprimante 3D et un logiciel ne
>> fonctionnant que sous Windows. J'ai donc installé W10 dans une machine
>> virtuelle (virtmanager). Le réseau fonctionne bien. J'aimerais
>> maintenant pouvoir partager un disque réseau avec virtiofs (virtio-9P ne
>> semble pas fonctionner).
>>
>> Je me prends l'erreur suivante :
>>
>> Erreur lors du démarrage du domaine: internal error: process exited
>> while connecting to monitor: 2024-06-12T08:29:18.308752Z
>> qemu-system-x86_64: -chardev
>> socket,id=chr-vu-fs0,path=/home/bertrand/.config/libvirt/qemu/lib/domain-11-win10/fs0-fs.sock:
>>
>> Failed to connect to
>> '/home/bertrand/.config/libvirt/qemu/lib/domain-11-win10/fs0-fs.sock':
>> Connection refused
>>
>> Très bien. Sauf que /usr/lib/qemu/virtiofsd est bien présent (avec un
>> lien sur /usr/libexec/virtiofsd). Je ne peux pas lancer le daemon à la
>> main, le répertoire de la socket changeant à chaque fois.
>>
>> Dans le fichier XML de définition des disques, j'ai bien la chose
>> suivante :
>>
>> 
>>    
>>    
>>    
>>    
>>    > function="0x0"/>
>> 
>>
>> Ma question est donc simple (et je viens de googliser durant
>> plusieurs
>> heures sans trouver de solution) : comment faire démarrer virtiofsd lors
>> du démarrage de la machine virtuelle ?
>>
>> Merci de vos lumières,
>>
>> JB
>>
> 
> Bonjour,
> 
> il y a un mode opératoire ici:
> https://github.com/virtio-win/kvm-guest-drivers-windows/wiki/Virtiofs:-Shared-file-system
> 
> 
> si je comprends correctement (c'est pas sûr):
> - il te manque peut-être les éléments WinFSP et VirtioWin dans l'invité
> Windows?

Non, mais de toute façon, c'est hors de propos puisque la machine
virtuelle refuse de démarrer.

> - tu ne sembles pas avoir instancié le périphérique ("instantiate the
> character device" dans la doc ci-dessus)?

L’instanciation est faite (sauf que la VM cherche à se connecter à une
socket créée par virtiofsd qui n'est jamais créée parce que virtiofsd
n'est jamais lancé...).

Bien cordialement,

JB



signature.asc
Description: OpenPGP digital signature

Re: [OT] Re: LibreOffice - Thunderbird - Windows 10 - [SOLUCIONADO]

[Javier ArgentinaBBAR]

El mar, 11 jun 2024 a las 14:23, Camaleón () escribió:
>
> El 2024-06-11 a las 08:50 -0300, Javier ArgentinaBBAR escribió:
>
> (corrijo el top-posting)
>
> > El mié, 29 may 2024 a las 14:23, Camaleón () escribió:
> > >
> > > El 2024-05-29 a las 09:45 -0300, Javier ArgentinaBBAR escribió:
> > >
> > > (...)
> > >
> > > > Me explico:
> > > > Creo un documento en LibreOffice Calc o Writer, y cuando pico Archivo,
> > > > Enviar, Enviar documento por correo, el maldito abre Outlook y no
> > > > Thunderbird.
> > >
> > > (...)
> > >
> > > Preguntonta...
> > >
> > > ¿Has probado a definir manualmente la ruta al ejecutable de la aplicación
> > > (Thunderbird)?
> > >
> > > 
> > > https://help.libreoffice.org/24.2/en-US/text/shared/guide/email.html
> > >
> > > Sending Documents as Email
> > >
> > > Working in LibreOffice, you can send the current document as an email
> > > attachment.
> > >
> > > Choose File - Send - Email Document.
> > >
> > > LibreOffice opens your default email program. If you want to send
> > > the current document with another email program, you can select the
> > > program to use with Internet - Email in the Options dialog box.
> > >
> > > In your email program, enter the recipient, subject and any text
> > > you want to add, then send the email.
> > >
> > > 
> > >
> > > Nota: a veces, volver a instalar la aplicación (Thunderbird) soluciona
> > > el problema «mágicamente» debido a que, al ser la última que registra
> > > el SO (y más concretamete en Windows), la «predetermina», por así decir.
> > >
> > > Saludos,
>
> > Buen día.
> >
> > Vuelvo a la carga.
> > En un Debian, tengo exactamente la misma versión de LibreOffice que en
> > Windows, 24.2.3.2.
> > En Debian, en "Opciones", "Internet", entre "Proxy" y "Media wiki" hay
> > una opción "Correo electrónico", que en la versión Windows, brilla por
> > su ausencia.
> > En la guía de Libre Office
> > https://documentation.libreoffice.org/assets/Uploads/Documentation/es/GS62/PDF/GS6202-ConfigurarLibreOffice.pdf
> > página 31, figura 29 se puede ver.
> > A continuación dice " En Windows se usa el programa predeterminado
> > para el envío de correo electrónico del sistema operativo."
> > Lo cual, a todas luces, no funciona.
> >
> > Si alguien tiene alguna idea de dónde escarbar en el registro, que es
> > donde huelo que está el problema, se agradece la ayuda.
>
> Si en Windows LO depende de la aplicación predeterminada en el sistema,
> sólo se me ocurre que Outlook esté fagocitando a Thundebird respecto a
> la configuración del soporte MAPI, de ahí que LO le dé preferencia.
>
> Revisa esta KB por si te diera alguna pista:
>
> MAPI Support
> http://kb.mozillazine.org/MAPI_Support
>
> Saludos,
>
> --
> Camaleón
>

Buen día.

Camaleón, gracias una vez más.
Revolviendo el sistema basándome en lo que enviaste, la solución fue
"muy a lo Windows".

Esto es válido para Windows 10:
1 - Desinstalar Thundebird. No preocuparse, no borra los datos del
usuario, sólo desinstala el programa.
2 - Desinstalar Office 365 Pro 2021.
3 - Reiniciar sistema.
4 - Desde fuera del sistema, con SystemRescueCD, renombrar
c:\Windows\System32\mapi32.dll
5 - Iniciar Windows 10, y ejecutar c:\Windows\System32\fixmapi.exe
6 - Reiniciar Windows 10.
7 - Instalar Office 365 Pro 2021.
8 - Instalar Thunderbird.
9 - Ejecutar "Inicio", "Aplicaciones predeterminadas".
10 - Picar en "Establecer valores predeterminados por aplicación".
11 - Buscar los tres "Thunderbird", picarlos y seleccionar "Administrar".
12 - Seleccionar y asociar TODO a Thunderbird.
13 - NO EJECUTAR THUNDERBIRD hasta reiniciar.
14 - Reiniciar Windows.

Por fin funciona la opción "Archivo", "Enviar documento por correo" de
Libre Office Writer y Calc.
Si bien no lo probé, ESTIMO que no se debe instalar Office 365 después
de Thunderbird, porque al ser un paquete generalista, que incluye
Outlook y no permite seleccionar qué programas instalar y cuáles no,
tengo la impresión que pisa todo.

Saludos y gracias a todos.

JAP

Re: OFF-TOPIC - cyberseguranca

[Vitor Hugo]

Bom dia,

Isto é um OFF-TOPIC.

Desconheço esse tipo de ataque, mas teoricamente se para isto funcionar 
deveria ser feito por uma chamada pela internet, acredito que somente 
por voz sem internet isso não seja possível.


Porem sei que aqui na lista possuem pessoas muito informadas e 
esclarecidas com conhecimentos técnicos de primeira linha que possam lhe 
ajudar mais.



Em 11/06/2024 23:03, luiz gil escreveu:

Boa noite aos amigos!
Peco que retornem alguma experiencia ou mesmo uma ciencia de qualquer 
natureza do abaixo enunciado como, leitura, conversas com experts ou 
afins.

Desculpem pelo topico ser talvez de baixa correlacao desta lista.


E' possível que apenas ao receber uma chamada sem dizer uma palavra ao 
agressor, você possa ter seu telefone infectado. Esse tipo de ataque é 
conhecido como ataque de "chamada perdida" ou "chamada silenciosa". 
Nesse cenário, os hackers exploram vulnerabilidades nos sistemas de 
comunicação dos dispositivos para enviar uma chamada aparentemente 
inofensiva, mas que na verdade contém códigos maliciosos.


Quando você atende a chamada, mesmo sem falar nada, os códigos 
maliciosos podem ser executados automaticamente no seu dispositivo, 
explorando alguma vulnerabilidade do sistema operacional ou de um 
aplicativo. Esses códigos podem instalar malware no seu telefone, 
roubar informações pessoais, controlar remotamente o dispositivo, 
entre outras ações prejudiciais.


Portanto, é importante ter em mente que, mesmo sem interagir 
verbalmente com o agressor durante uma chamada, seu telefone ainda 
pode estar em risco se houver uma exploração de vulnerabilidade 
através dessa chamada. Manter o software do seu dispositivo 
atualizado, evitar atender chamadas de números desconhecidos e usar 
aplicativos de segurança confiáveis podem ajudar a mitigar esses riscos.


--
Atenciosamente,
Luiz Carlos Proenca Gil

Re: Please help me identify package so I can report an important bug

[Richard]

Question is, does it make that much sense to report it to Debian directly?
Are you encountering this issue on Debian itself or
Armbian/Raspbian/whatever? You reported this to the Raspberry Pi GitHub, so
I'd expect them to take this up with the upstream devs themselves, so by
the time Trixie is being released, it may already be included.

But besides that, what you describe in the first link sounds to me not like
a bug, but as a well thought-through decision. Network adapter names like
eth0 have been dropped with Debian 11 (I think, maybe even 10). So don't
get your hopes up too high to ever see this coming back. But also, just
searching the web for this topic, you should have come across this
answering your questions: https://wiki.debian.org/NetworkInterfaceNames

Richard

Am Mi., 12. Juni 2024 um 12:43 Uhr schrieb Peter Goodall <
pjgood...@gmail.com>:

> Hello,
>
> This  bug, or a close relative, has already been reported in
> https://github.com/raspberrypi/bookworm-feedback/issues/239
> as 'Predictable network names broken for ASIX USB ethernet in kernel
> 6.6.20'
>
> I added a comment reporting my experience in Proxmox here:
>
> https://github.com/raspberrypi/bookworm-feedback/issues/239#issuecomment-2162166863
>
> Because it happens in proxmox and rpi I assume its Debian or higher. I
> have not reported a Debian bug before...
>
> Thanks,
> --Peter G
>

App Banco Itau

[Vitor Hugo]

Bom dia,

Gostaria de saber se é possível utilizar o banco Itau no Debian?

Se alguém aqui na lista utiliza e se funciona bem.

Estou utilizando o APP do Itau e alguma coisas só funcionam la.

Existem versão para Linux ou teria como utilizar um emulador para 
utiliza-la?


Obrigado;

Having ten thousands of mount bind causes various processes to go into loops

[Julien Petit]

Dear,

Not sure i should report a bug so here is a report first. For more
than 10 years now, we've been using mount binds to create shares rw or
ro. It's been working perfectly under older Debian. A few months ago,
we migrated to Ubuntu Jammy and started having processes running 100%
non stop. While examining the processes in question, we could see the
same thing: it seemed to be reading all the mounts indefinitely.
It started with the phpsessionclean.service. We managed to fix it
editing /lib/systemd/system/phpsessionclean.service and disabling
sandboxing entries. But then it started to happen with other
processes.
Anything related to systemd seems affected in a way. For instance, we
cannot start haproxy if the mounts are mounted.
We tested with the last Debian and it is affected too.

We understand that 14 000 mounts is a lot. So maybe our usage will be
questioned. But this has been working for ages so why not now?

The problem can be very easily reproduced:

1. Launch the latest Debian stable
2. Execute the following script to create mounts:
#!/bin/bash
mkdir /home/test/directories
mkdir /home/test/mounts

for i in {1..14000}
do
   echo "Mounting dir $i"
   mkdir "/home/test/directories/dir_$i"
   mkdir "/home/test/mounts/dir_$i"
   mount --bind -o rw "/home/test/directories/dir_$i" "/home/test/mounts/dir_$i"
done

After that, the "top" command will show processes getting stuck using
100% of CPU never ending.

Has anyone a clue if this is fixable? Should i report a bug?
Thanks for your help.

Re: virt-manager (qemu/kvm) et virtiofs

[didier gaumet]

Le 12/06/2024 à 10:31, BERTRAND Joël a écrit :

Bonjour à tous,

Je dois faire quelques tests avec une imprimante 3D et un logiciel ne
fonctionnant que sous Windows. J'ai donc installé W10 dans une machine
virtuelle (virtmanager). Le réseau fonctionne bien. J'aimerais
maintenant pouvoir partager un disque réseau avec virtiofs (virtio-9P ne
semble pas fonctionner).

Je me prends l'erreur suivante :

Erreur lors du démarrage du domaine: internal error: process exited
while connecting to monitor: 2024-06-12T08:29:18.308752Z
qemu-system-x86_64: -chardev
socket,id=chr-vu-fs0,path=/home/bertrand/.config/libvirt/qemu/lib/domain-11-win10/fs0-fs.sock:
Failed to connect to
'/home/bertrand/.config/libvirt/qemu/lib/domain-11-win10/fs0-fs.sock':
Connection refused

Très bien. Sauf que /usr/lib/qemu/virtiofsd est bien présent (avec un
lien sur /usr/libexec/virtiofsd). Je ne peux pas lancer le daemon à la
main, le répertoire de la socket changeant à chaque fois.

Dans le fichier XML de définition des disques, j'ai bien la chose
suivante :


   
   
   
   
   


Ma question est donc simple (et je viens de googliser durant plusieurs
heures sans trouver de solution) : comment faire démarrer virtiofsd lors
du démarrage de la machine virtuelle ?

Merci de vos lumières,

JB



Bonjour,

il y a un mode opératoire ici:
https://github.com/virtio-win/kvm-guest-drivers-windows/wiki/Virtiofs:-Shared-file-system

si je comprends correctement (c'est pas sûr):
- il te manque peut-être les éléments WinFSP et VirtioWin dans l'invité 
Windows?
- tu ne sembles pas avoir instancié le périphérique ("instantiate the 
character device" dans la doc ci-dessus)?

virt-manager (qemu/kvm) et virtiofs

[BERTRAND Joël]

Bonjour à tous,

Je dois faire quelques tests avec une imprimante 3D et un logiciel ne
fonctionnant que sous Windows. J'ai donc installé W10 dans une machine
virtuelle (virtmanager). Le réseau fonctionne bien. J'aimerais
maintenant pouvoir partager un disque réseau avec virtiofs (virtio-9P ne
semble pas fonctionner).

Je me prends l'erreur suivante :

Erreur lors du démarrage du domaine: internal error: process exited
while connecting to monitor: 2024-06-12T08:29:18.308752Z
qemu-system-x86_64: -chardev
socket,id=chr-vu-fs0,path=/home/bertrand/.config/libvirt/qemu/lib/domain-11-win10/fs0-fs.sock:
Failed to connect to
'/home/bertrand/.config/libvirt/qemu/lib/domain-11-win10/fs0-fs.sock':
Connection refused

Très bien. Sauf que /usr/lib/qemu/virtiofsd est bien présent (avec un
lien sur /usr/libexec/virtiofsd). Je ne peux pas lancer le daemon à la
main, le répertoire de la socket changeant à chaque fois.

Dans le fichier XML de définition des disques, j'ai bien la chose
suivante :


  
  
  
  
  


Ma question est donc simple (et je viens de googliser durant plusieurs
heures sans trouver de solution) : comment faire démarrer virtiofsd lors
du démarrage de la machine virtuelle ?

Merci de vos lumières,

JB



signature.asc
Description: OpenPGP digital signature

Re: [OT] - Software para leer data loggers

[Camaleón]

El 2024-06-11 a las 12:41 -0300, Jorge Abel Secreto escribió:

> Hola!!
> Disculpen que moleste con esto.
> Estoy tratando de leer los registros de un data logger de temperaturas
> TESTO 174T desde Debian 12.
> El sistema lo ve asi:
> usb 1-3: new full-speed USB device number 4 using xhci_hcd
> usb 1-3: New USB device found, idVendor=128d, idProduct=0013, bcdDevice= 6.00
> usb 1-3: New USB device strings: Mfr=1, Product=2, SerialNumber=0
> usb 1-3: Product: testo 174-2010
> usb 1-3: Manufacturer: Testo SE & Co. KGaA
> El fabricante provee un programa para Windows pero me gustaría poder
> hacerlo desde Linux.

Pídeselo ;-)

***
https://static.testo.com/image/upload/Instruction-manual-and-Software/Instruction-manuals/testo-comfort-software-basic-5-manual-de-instrucciones.pdf

3.2. Requisitos del sistema

Sistema operativo

El software funciona con los siguientes sistemas operativos:

• Windows ® 10
• Windows ® 11
• Otros: a pedido
  ^^^
***

> Las busquedas por "linux data logger testo 174" me traen referencias a
> la página oficial o a paginas de vendedores del aparato.
> Buscando en Synaptic no encuentro nada que parezca servir.
> ¿Estoy buscando mal?
> ¿Alguno de ustedes usa algo que me pueda servir?

Máquina virtual o emulador (Wine).

Para estos casos no se me ocurre nada más, son aplicaciones 
propietarias desarrolladas para un producto concreto, propietario, así 
que mal asunto :-(

Saludos,

-- 
Camaleón 

Re: descargar versiones anteriores

[Camaleón]

El 2024-06-12 a las 03:36 +0200, Juaan Carrlos Rebate escribió:

> Disculpad por el HTML, envío el correo desde Windows y no hay forma de 
> eliminar el formato. 

¿?

Se llama «formato texto plano», todos los clientes lo tienen, hasta los 
malogrados webmail.

> Fernando, gracias por tu respuesta pero te comento 
> que ni jigdo-file ni lite están en los repos

(...)

El paquete estar, está:

https://packages.debian.org/bullseye/jigdo-file
https://tracker.debian.org/pkg/jigdo

sm01@stt008:~$ apt-cache search jigdo-file
jigdo-file - Download Debian CD/DVD/USB images from any Debian mirror

sm01@stt008:~$ uname -a
Linux stt008 5.10.0-30-amd64 #1 SMP Debian 5.10.218-1 (2024-06-01) x86_64 
GNU/Linux

Revisa tu configuración y repositorios.

Saludos,

-- 
Camaleón 

Please help me identify package so I can report an important bug

[Peter Goodall]

Hello,

This  bug, or a close relative, has already been reported in
https://github.com/raspberrypi/bookworm-feedback/issues/239
as 'Predictable network names broken for ASIX USB ethernet in kernel 6.6.20'

I added a comment reporting my experience in Proxmox here:
https://github.com/raspberrypi/bookworm-feedback/issues/239#issuecomment-2162166863

Because it happens in proxmox and rpi I assume its Debian or higher. I have
not reported a Debian bug before...

Thanks,
--Peter G