Re: Cleanup in a bash script
On Sat, Sep 28, 2024 at 10:13:59AM -0400, Greg Wooledge wrote: > On Sat, Sep 28, 2024 at 14:53:10 +0100, Tim Woodall wrote: > > Is there a way in bash to guarantee that a trap gets called for cleanup > > in a script? > > #!/bin/bash > trap cleanup EXIT > cleanup() { > ... > } > > This works in bash -- i.e., it calls the cleanup function regardless > of whether the shell exits by calling "exit", or by falling off the > end of the script, or by receiving a fatal signal. It does NOT work in > /bin/sh (dash, or any other implementation). You have been warned. *ALL* scripts MUST start with a #! line as you have given above. Anyone who does not do that deserves what they get. -- Alain Williams Linux/GNU Consultant - Mail systems, Web sites, Networking, Programmer, IT Lecturer. +44 (0) 787 668 0256 https://www.phcomp.co.uk/ Parliament Hill Computers. Registration Information: https://www.phcomp.co.uk/Contact.html #include
Re: Need advice on a usable, inexpensive laptop for Debian
On Wed, Sep 04, 2024 at 05:04:33PM -0500, Tom Browder wrote: > I'm trying to propose a computer lab for young wannabe coders, and I want > to use a Linux box (I prefer Debian, but I get the feeling Ubuntu is more > familiar with school systems and other institutions). I suggest an HP stream. I got myself an 11" one for £210 about 2 years ago. I get 12+ hours from the battery. 11" screen is great for me to carry around in my ruck sack, for a student maybe a 14" one: https://www.argos.co.uk/product/3419636 Other models, I do not know the difference, dig deep in the specs: https://www.argos.co.uk/product/7085891 I live in the UK so prices in £ (pounds). I wiped it completely and installed Linux Mint. Works well, the only thing that needed fiddling was to get it to hibernate when I shut the lid. > All the cheap laptops in local Best Buys and other local stores have > Windows installed, and, to be fair, that's all most adults and young people > have been exposed to. Just wipe it install Linux. A few years ago I bought 2 identical laptops. At the same time I switched both on and on one let MS Windows set itself up. The other I installed Linux. The Linux one was installed & ready to work while the other was still wallying around - which I did not let it finish. I would suggest that any machine you are thinking of buying you go to the shop and boot it from a memory stick‡‡ to check that it all works under Linux. The most important thing that you might have problems with is the WiFi card. ‡‡ Booting from memory stick will not change the hard disk, ie is safe to do. -- Alain Williams Linux/GNU Consultant - Mail systems, Web sites, Networking, Programmer, IT Lecturer. +44 (0) 787 668 0256 https://www.phcomp.co.uk/ Parliament Hill Computers. Registration Information: https://www.phcomp.co.uk/Contact.html #include
Re: wait until swapoff is *actually* finished (it returns too early)?
On Wed, Aug 21, 2024 at 07:38:29AM -0400, Greg Wooledge wrote: > Even if that's true, running them all in the same command as Roberto > shows would not give you any benefit. In early Unix sync *did* return immediately after scheduling a buffer flush. > You'd need to physically *type* the command and press Enter three times > to get any "protection". And even then, it's really just the extra > time that it takes to type those commands out. This is exactly what I was taught to do in the 1980s and the reason was to cause delay before typing ^p. > You'd get the same "protection" by simply waiting 10 seconds (or whatever's > appropriate) after running sync once. Remembering to wait is much harder than remembering to type sync on 3 lines - especially late at night. -- Alain Williams Linux/GNU Consultant - Mail systems, Web sites, Networking, Programmer, IT Lecturer. +44 (0) 787 668 0256 https://www.phcomp.co.uk/ Parliament Hill Computers. Registration Information: https://www.phcomp.co.uk/Contact.html #include
Re: wait until swapoff is *actually* finished (it returns too early)?
On Wed, Aug 21, 2024 at 08:39:37AM +0200, Erwan David wrote: > On Wed, Aug 21, 2024 at 02:18:44AM CEST, Greg Wooledge > said: > > On Tue, Aug 20, 2024 at 20:04:11 -0400, Roberto C. Sánchez wrote: > > > sync && sync && sync && swapoff > > > > > > I couldn't tell why I have sync 3 times, but I know that it's how I've > > > called swapoff since as far back as I can remember. > > > > Cargo cult. It was never useful to the best of my knowledge. > > Once upon a time, the sync command would return before the actual > syscall where completed. Doing 3 times sync gave you a very high > probability that the first one indeed completed all its writes. I do remember one smart alec typing the following, he did not realise that typing on separate lines was to slow him down: sync;sync;sync ^P H ^P on a PDP-11 console made it enter console state and 'H' then halted the processor. -- Alain Williams Linux/GNU Consultant - Mail systems, Web sites, Networking, Programmer, IT Lecturer. +44 (0) 787 668 0256 https://www.phcomp.co.uk/ Parliament Hill Computers. Registration Information: https://www.phcomp.co.uk/Contact.html #include
Re: nginx or apache for php?
On Thu, Aug 01, 2024 at 08:39:11AM -0400, Dan Ritter wrote: > Do you have a performance problem? If not, don't change. More to the point - what does the application do, where does its time go ? Eg if you have complex database selects then the web server overhead prolly only takes a small part of total time -- so changing it will gain you little. You need to profile & understand first. > If you do have a performance problem: how much have you > optimized already? What methods have you used? Can you define > the gap between what you have and what you need? -- Alain Williams Linux/GNU Consultant - Mail systems, Web sites, Networking, Programmer, IT Lecturer. +44 (0) 787 668 0256 https://www.phcomp.co.uk/ Parliament Hill Computers. Registration Information: https://www.phcomp.co.uk/Contact.html #include
Re: combine two commands via pipe
On Fri, Jul 26, 2024 at 07:29:10AM +0800, cor...@free.fr wrote: > this could work indeed. but it requires me to input a long path. so I am > asking for a easier way. Try this: $ sudo find /tmp -user apache2 -- Alain Williams Linux/GNU Consultant - Mail systems, Web sites, Networking, Programmer, IT Lecturer. +44 (0) 787 668 0256 https://www.phcomp.co.uk/ Parliament Hill Computers. Registration Information: https://www.phcomp.co.uk/Contact.html #include
Re: why reliable linux hasn't gained more market share?
On Sun, Jul 21, 2024 at 05:18:46PM +0200, Nicolas George wrote: > And it does not matter, because on a personal computer the root account > is not what matters, what matters is the user account where you can > install a key logger and get banking credentials or encrypt all the data > and ask for a ransom. Which is one of the big problems with MS Windows -- telemetry - which can do that. Also things like Recall (which only lasted a few weeks recently - thankfully, but I fear will reappear in some form). But web browsers are a big problem: Chrome logs all sort of stuff to Google (but not keystrokes I think), MS Edge does likewise - which is why I stick to Firefox. But if you have root access it is easy, I did it on a Unix system V machine in the late 1980s, a few minutes work. I only needed root as it was for another user. -- Alain Williams Linux/GNU Consultant - Mail systems, Web sites, Networking, Programmer, IT Lecturer. +44 (0) 787 668 0256 https://www.phcomp.co.uk/ Parliament Hill Computers. Registration Information: https://www.phcomp.co.uk/Contact.html #include
Re: CrowdStrike and drivers (was Re: why reliable linux hasn't gained more market share?)
On Sun, Jul 21, 2024 at 08:17:54AM +0800, jeremy ardley wrote: > The CrowdStrike outage emulated the very thing it is alleged to protect > against - a zero day exploit. It was also a demonstration of a huge vulnerability. If $EvilActor were to get an agent employed at CrowdStrike/whoever then they could take down a lot of important infrastructure world wide. This could give them a great advantage if done, for instance, just before they invade another country or something. In a cynical moment on Friday I did wonder if this was a dry run. Unfortunately I suspect that the lesson will not be learned and that most will largely forget this before too long. :-( -- Alain Williams Linux/GNU Consultant - Mail systems, Web sites, Networking, Programmer, IT Lecturer. +44 (0) 787 668 0256 https://www.phcomp.co.uk/ Parliament Hill Computers. Registration Information: https://www.phcomp.co.uk/Contact.html #include
Re: why reliable linux hasn't gained more market share?
On Sun, Jul 21, 2024 at 08:46:24AM +0800, jeremy ardley wrote: > A plug for SELinux. It's been around for a long time. It was invented by the > NSA for use by Government agencies but they kindly open sourced it and it's > available on many Distros including Debian. > > SELinux is a real pain to get right but when it finally works it's a > tremendous security boost for internet facing systems. +1 I use SELinux. The documentation is awful - there are many different labels that are not documented as to how they should be used. When there is an issue ausearch will tell you what to do but not why, I have sometimes found that the recommendation is wrong and that enabling something else is a better solution. -- Alain Williams Linux/GNU Consultant - Mail systems, Web sites, Networking, Programmer, IT Lecturer. +44 (0) 787 668 0256 https://www.phcomp.co.uk/ Parliament Hill Computers. Registration Information: https://www.phcomp.co.uk/Contact.html #include
Re: web site displays blank page
On Thu, Jul 18, 2024 at 06:06:05AM +, Russell L. Harris wrote: > When I try to visit www.chewy.com a blank page. This is a major pet > supply web site. Other web sites display as usual without problems. > I phoned CHEWY and they say their system is on-line. > > I have tried two different computers and both Firefox and Chromium. I > updated Debian-12. I emptied the browser cache. No change. > > A week or two ago, chewy.com displayed perfectly. > > My ISP is RTA. I am in a rural area near Austinn, Texas, and have a > 10/1 microwave link. Could the problem be with RTA? > > Would someone kindly verify that chewy.com is accessible? HTTP code 429 means "Too Many Requests (RFC 6585)" $ curl --head https://www.chewy.com/ HTTP/2 429 content-type: text/html; charset=utf-8 x-kpsdk-ct: 03Vhg1rHHEmv7VMgvAv2tLEGyrlWwedwtTXLLwhV37Jqel51VNOL8UHcFw5fHbuRuG2METLn8zJJb148AhDbEh1FSN7hCRLDWawPK8L1uHJj8A9JeCMSXTtSIy90qNGEuT0trYKzEveuIVapXLCtN0TwqGJbR7ZMKBQX1ix0o7j6tvAI21Fous access-control-expose-headers: x-kpsdk-ct,x-kpsdk-r,x-kpsdk-c p3p: CP="This site does not specify a policy in the P3P header" expires: Thu, 18 Jul 2024 06:12:55 GMT cache-control: max-age=0, no-cache, no-store pragma: no-cache date: Thu, 18 Jul 2024 06:12:55 GMT set-cookie: KP_UIDz-ssn=03Vhg1rHHEmv7VMgvAv2tLEGyrlWwedwtTXLLwhV37Jqel51VNOL8UHcFw5fHbuRuG2METLn8zJJb148AhDbEh1FSN7hCRLDWawPK8L1uHJj8A9JeCMSXTtSIy90qNGEuT0trYKzEveuIVapXLCtN0TwqGJbR7ZMKBQX1ix0o7j6tvAI21Fous; Max-Age=86400; Path=/; Expires=Fri, 19 Jul 2024 06:12:55 GMT; HttpOnly; Secure; SameSite=None set-cookie: KP_UIDz=03Vhg1rHHEmv7VMgvAv2tLEGyrlWwedwtTXLLwhV37Jqel51VNOL8UHcFw5fHbuRuG2METLn8zJJb148AhDbEh1FSN7hCRLDWawPK8L1uHJj8A9JeCMSXTtSIy90qNGEuT0trYKzEveuIVapXLCtN0TwqGJbR7ZMKBQX1ix0o7j6tvAI21Fous; Max-Age=86400; Path=/; Expires=Fri, 19 Jul 2024 06:12:55 GMT; HttpOnly set-cookie: device-id=366803eb-cfb8-4564-8805-770df06107bc; expires=Wed, 09-Jul-2025 06:12:55 GMT; path=/; domain=.chewy.com; secure alt-svc: h3=":443"; ma=93600 x-content-type-options: nosniff strict-transport-security: max-age=86400 ; preload edge-cache-tag: homepage-not-loggedin x-request-id: 35f11fa set-cookie: akavpau_defaultvp=1721283475~id=cd67f1b621214ab4606205c4eaec74e4; Path=/; HttpOnly; Secure; SameSite=None set-cookie: akaalb_chewy_ALB=1721283775~op=prd_kasada:prd-kasada-haproxy-use2|~rv=39~m=prd-kasada-haproxy-use2:0|~os=43a06daff4514d805d02d3b6b5e79808~id=498bb70aac1e50701a980f57c3e5b82a; path=/; Expires=Thu, 18 Jul 2024 06:22:55 GMT; HttpOnly; Secure; SameSite=None akamai-grn: 0.24f61002.1721283175.35f11fa set-cookie: _abck=258D45B94A93D168BD6B94CB00DE2B77~-1~YAAQJPYQAlIoFMKQAQAA/OR4xAx1C/6M1x48v/FrONZhoz10KvKWEQLffLEqHQ4gUg9CJeYvBx9F4HKbn/oYVXqRWU8By+3DnOqZH+T5cEXMwzIZm4T+qm+SGM21/9et+X2dEp/qCXRxxFEapLDzoUo4Z+toWuIOHy+5Tlfdy/5qxyawc/UsoqIE8N0q+Bt44wmGLWEU7E/GB6X0om3nj2ZW/+eXdmw+dXA7HTKOQOZvPgirfx9KUXTE8rCvg8U59qRm0mssp5KVg3dkFO+RQKb4GBk05hLorC9/r2ab9pWjd++jwTW6DxvIUpmKW9P9dgHOjojFoJbnsVR2Sap65GvGeqFQzKKhyHKZuDSDLIhA6l1/Av1X9w==~-1~-1~-1; Domain=.chewy.com; Path=/; Expires=Fri, 18 Jul 2025 06:12:55 GMT; Max-Age=31536000; Secure set-cookie: bm_sz=303CEEFC20F8A4A1A27DCF68B25ED773~YAAQJPYQAlMoFMKQAQAA/OR4xBiVVtG8Gq9Jf1J1QX/rZ8vNzdMTBCTK0BboTlg+6Qu5nWA6Lxh7P0LonjJWnz6BPEIvPuQkDTnJTtW+gIbC3Jj8Hy6UjA5/uUQ71EyRMYBaw17wN4BQn7l3l7+xuSGmgVuZhVv9pngUmZH+vTLZhD7R5+g55IImAU7G5p3kAn/zLEvhVPoNu9WCra/s2Zxhrcib2CXHmU5vLsKJBCwZiA2lpJKpzTM+dSp1ZlN9XSfY0j7nhLZXC8OmYGuI8R4mRCZRKs2T2d/iUdXO6CdjL5BzXS8WSfEq5YoXlN9zxXNR+9ujPrUhSHVRU5O04pcDTAXtUs/xUkCVaPXJxj8yid37dP6Ngrvt2xsBVGPHHw==~3159105~3420471; Domain=.chewy.com; Path=/; Expires=Thu, 18 Jul 2024 10:12:55 GMT; Max-Age=14400 server-timing: ak_p; desc="1721283175160_34666020_56562170_23218_76689_28_206_15";dur=1 -- Alain Williams Linux/GNU Consultant - Mail systems, Web sites, Networking, Programmer, IT Lecturer. +44 (0) 787 668 0256 https://www.phcomp.co.uk/ Parliament Hill Computers. Registration Information: https://www.phcomp.co.uk/Contact.html #include
Re: Suspicious "invoice" email?
On Fri, May 17, 2024 at 03:28:35PM -0400, PMA wrote: > I received the following today from (Jerry Henley at) Ella White > . > > I suspect fraud here, so have not opened the invoice he/she attached. > > Can you possibly tell me whether the message is legitimate? I did not spend much time on it. Some, ill informed or naive people would have just paid it, or it could have been an attempt to infect a (MS Windows) PC, or it could have been an attempt to get bank a/c details. Anyway: things like that I forward to the address below and they are looked at by people in GCHQ or similar -- you can help them to combat these reprobates by forwarding suspicious emails: rep...@phishing.gov.uk -- Alain Williams Linux/GNU Consultant - Mail systems, Web sites, Networking, Programmer, IT Lecturer. +44 (0) 787 668 0256 https://www.phcomp.co.uk/ Parliament Hill Computers. Registration Information: https://www.phcomp.co.uk/Contact.html #include
Re: Dovecot correct ownership for logs
On Tue, May 14, 2024 at 03:11:16PM +0200, Richard wrote: >"Top posting" (writing the answer above the text that's being replied >to) is literally industry standard behavior. Many do top post, but many do not. Places where it is often frowned on are technical mail lists such as this one. This is because only quoting to the parts of the mail that you reply to and putting you comment underneath can greatly help understanding. Read the Netiquette Guidelines (1995): https://www.ietf.org/rfc/rfc1855.txt Other discussions here: https://idallen.com/topposting.html https://www.caliburn.nl/topposting.html PS: check the dictionary definition of "literally". -- Alain Williams Linux/GNU Consultant - Mail systems, Web sites, Networking, Programmer, IT Lecturer. +44 (0) 787 668 0256 https://www.phcomp.co.uk/ Parliament Hill Computers. Registration Information: https://www.phcomp.co.uk/Contact.html #include
Re: Inclusive terminology (instead of master/slave) for network bonding/LACP
On Fri, Mar 15, 2024 at 01:42:25AM +0100, Emanuel Berg wrote: > Mike Castle wrote: > > >> It is "fixing" an issue for today's English speakers. > >> Should we scour our systems looking for similar issues in > >> other languages? Then in, say, 20 years time when different > >> words will then be considered offensive, by some, do this > >> all again? > > > > Yes. > > Remember, there are A LOT of words and expressions we don't > use anymore, and that's good, as they are offensive and > disrespectful. But once they were perfectly normal. Still, one > by one, they have disappeared from active use. That is the big difference. Not use words *currently* deemed offensive in *new* publications (books, newspaper articles, ...) - this is not hard to do. What we are faced with is something very different: a call to locate and modify use in programs that might have been written a long time ago. The effort needed to do this is large and will doubtless cause failures in systems that have been working well for years. It is not just a matter of modifying Debian (+ RedHat + ...) sources but the sources on private systems. We seem to be told that this must be done by those who will not be doing the work. -- Alain Williams Linux/GNU Consultant - Mail systems, Web sites, Networking, Programmer, IT Lecturer. +44 (0) 787 668 0256 https://www.phcomp.co.uk/ Parliament Hill Computers. Registration Information: https://www.phcomp.co.uk/Contact.html #include
Re: Postel's Law (Was Re: Inclusive terminology (instead of master/slave) for network bonding/LACP)
On Sat, Feb 24, 2024 at 07:44:44PM -0500, Jeffrey Walton wrote: > On Sat, Feb 24, 2024 at 7:37 PM Andy Smith wrote: > > > > [...] > > Turning back more to protocol design, we have spent decades walking > > back Postel's Law as we find more and more ways that being liberal > > in what our software accepts is untenable in the face of a hostile > > Internet. > > ++. Postel's Law is a disaster nowadays. It was fine back in the > 1980's, but it is dangerous in the toxic environments of today. > > Here's what we teach our developers: Look for any reason you can to > reject the data. If you can't find a reason, then begrudgingly perform > the processing or transformation. There is a difference between not doing validation (eg a field being numeric) and flexibility (eg a line length being 100 bytes which is more than the specified 80 bytes). This is what Postel is talking about. Otherwise I completely agree: validate, validate, validate - if I accept your bad data then it becomes my problem, if I reject it then you have to fix it. Unfortunately people will complain if you do this "everyone accepts the data", to which I reply "please tell me exactly what it means" - which should shut them up. -- Alain Williams Linux/GNU Consultant - Mail systems, Web sites, Networking, Programmer, IT Lecturer. +44 (0) 787 668 0256 https://www.phcomp.co.uk/ Parliament Hill Computers. Registration Information: https://www.phcomp.co.uk/Contact.html #include
Re: Inclusive terminology (instead of master/slave) for network bonding/LACP
On Sat, Feb 24, 2024 at 09:03:45AM -0500, The Wanderer wrote: > > It was a BLM thing, not sure if it matters the etymology of such > > words. > > The etymology certainly *should* matter, insofar as that is the origin > of the *meaning* of the word(s). +1 However that is not the way that the world works, or prolly more accurately how some people think. They see a word/phrase that they have decided that they "own" or somehow relates to them and so view it entirely from their perspective; they make no attempt to understand how the speaker/writer viewed the word/phrase as they *know* what the only meaning can be - everything else is a wrong interpretation. There is little point in trying to argue against someone who has decided to think this way, arguing will just confirm, to them, that you are racist/xxxist and are against them. I sometimes think that something similar to Postel's Law but applied to human interactions would be useful. However that is wishful thinking https://devopedia.org/postel-s-law -- Alain Williams Linux/GNU Consultant - Mail systems, Web sites, Networking, Programmer, IT Lecturer. +44 (0) 787 668 0256 https://www.phcomp.co.uk/ Parliament Hill Computers. Registration Information: https://www.phcomp.co.uk/Contact.html #include
Re: Inclusive terminology (instead of master/slave) for network bonding/LACP
On Fri, Feb 23, 2024 at 10:33:08AM +0100, Mariusz Gronczewski wrote: > On 22.02.2024 11:19, Ralph Aichinger wrote: > > Hello! > > > > I know this is a loaded topic. I really don't want to discuss the > > political aspects of the "why", but just want to know the facts, i.e. > > how far this has been progressed in Debian. > > There is no good reason *why*. It's entirely US political feel-good activism > that doesn't change anything but wastes people's time. Do you actually think > pressing on brake pedal oppresses anybody ? Because it also has master and > slave > cylinder. > > All it does is wastes tens of thousands of people's time once the have to fix > every script, tool and doc piece related to it, for absolutely no benefit > aside from making some twitter activist happy "they did something". > It would *literally* break every single script that checks the status > of bonding config in system, as it is all just plain text. +1 It is "fixing" an issue for today's English speakers. Should we scour our systems looking for similar issues in other languages ? Then in, say, 20 years time when different words will then be considered offensive, by some, do this all again ? -- Alain Williams Linux/GNU Consultant - Mail systems, Web sites, Networking, Programmer, IT Lecturer. +44 (0) 787 668 0256 https://www.phcomp.co.uk/ Parliament Hill Computers. Registration Information: https://www.phcomp.co.uk/Contact.html #include
Re: hexchat being discontinued?
On Sun, Feb 11, 2024 at 07:42:24PM +, Richmond wrote: > You could try Pidgin. It's in the Debian repo. It has various protocols > of which irc is just one. It's a bit confusing because you have to go to > the 'buddy' menu to join an irc channel. Yes: Pidgin UI is dreadful. Lots that is non intuitive. -- Alain Williams Linux/GNU Consultant - Mail systems, Web sites, Networking, Programmer, IT Lecturer. +44 (0) 787 668 0256 https://www.phcomp.co.uk/ Parliament Hill Computers. Registration Information: https://www.phcomp.co.uk/Contact.html #include
Re: Resizing LVM partitions
On Mon, Jan 22, 2024 at 10:29:55AM -0500, Stefan Monnier wrote: > > lvextend --size +1G --resizefs /dev/mapper/localhost-home > > > > Ie get lvextend to do the maths & work it out for me. > > > > Those who are cleverer than me might be able to tell you how to get it right > > first time! > > lvreduce --size -50G --resizefs /dev/mapper/localhost-home Oh, even better. It is a long time since I looked at than man page. Does this still need to be done with the file system unmounted or can it be done with an active file system these days ? -- Alain Williams Linux/GNU Consultant - Mail systems, Web sites, Networking, Programmer, IT Lecturer. +44 (0) 787 668 0256 https://www.phcomp.co.uk/ Parliament Hill Computers. Registration Information: https://www.phcomp.co.uk/Contact.html #include
Re: Resizing LVM partitions
On Mon, Jan 22, 2024 at 03:32:30PM +0100, sko...@uns.ac.rs wrote: > I am getting the following message at any boot: > > "The volume "Filesystem root" has only 221.1 MB disk space remaining." > > df -h says: > > Filesystem Size Used Avail Use% Mounted on > udev1.5G 0 1.5G 0% /dev > tmpfs 297M 9.0M 288M 4% /run > /dev/mapper/localhost-root 5.2G 4.7G 211M 96% / > /dev/mapper/localhost-usr14G 12G 948M 93% /usr > tmpfs 1.5G 0 1.5G 0% /dev/shm > tmpfs 5.0M 4.0K 5.0M 1% /run/lock > tmpfs 1.5G 0 1.5G 0% /sys/fs/cgroup > /dev/sda1 228M 133M 84M 62% /boot > /dev/mapper/localhost-tmp 2.3G 57K 2.2G 1% /tmp > /dev/mapper/localhost-var 2.7G 2.5G 55M 98% /var > /dev/mapper/localhost-home 257G 73G 172G 30% /home > tmpfs 297M 40K 297M 1% /run/user/1000 > > As my system has encrypted LVM, I suppose that I shall reduce some space > used for /home, and then use it to extend /, /usr, and /var logical > partitions. I think I did (or tried to do) something similar several years > ago, but forgot the proper procedure. Any link for a good tutorial is > welcomed. Thanks. The shrinking of /home is the hard part. You MUST first unmount /home, then resize the file system, then resize the logical volume. umount /home Find out how big it is: resize2fs /dev/mapper/localhost-home Change the filesystem size: resize2fs /dev/mapper/localhost-home NEW-SIZE Change the partition size: lvextend --size 200G /dev/mapper/localhost-home The hard bit is working out what NEW-SIZE should be and having it such that you use all of the partition but without making the file system size greater than the partition size - ie getting the last few megabytes right. What I do is make NEW-SIZE 2GB smaller than I want (assuming that it still fits), the size I give to lvextend 1GB smaller - so it all works, but there is wasted space & it is not quite big enough. I then do: lvextend --size +1G --resizefs /dev/mapper/localhost-home Ie get lvextend to do the maths & work it out for me. Those who are cleverer than me might be able to tell you how to get it right first time! mount /home Extending the others is easy and can be done when the system is running & active, something like: lvextend --size +1G --resizefs /dev/mapper/localhost-var Finally: ensure that you have a good backup of /home before you start. -- Alain Williams Linux/GNU Consultant - Mail systems, Web sites, Networking, Programmer, IT Lecturer. +44 (0) 787 668 0256 https://www.phcomp.co.uk/ Parliament Hill Computers. Registration Information: https://www.phcomp.co.uk/Contact.html #include
Re: Help: network abuse
On Thu, Dec 21, 2023 at 11:39:40AM -0500, Pocket wrote: > > On 12/21/23 10:50, Alain D D Williams wrote: > > It is NOT a firewall issue. > > > If I am correct you don't want any thing from the outside to hit your web > server? The words "web server" is ambiguous. It can mean my machine, ie can me the Apache process. The packets are hitting the machine (evidence tcpdump) but not the process (as the TCP startup does not complete). > If so your firewall is not configured correctly. You have failed to understand what is happening. I shall stop after this. -- Alain Williams Linux/GNU Consultant - Mail systems, Web sites, Networking, Programmer, IT Lecturer. +44 (0) 787 668 0256 https://www.phcomp.co.uk/ Parliament Hill Computers. Registration Information: https://www.phcomp.co.uk/Contact.html #include
Re: Help: network abuse
On Thu, Dec 21, 2023 at 10:31:06AM -0500, Pocket wrote: > All you should be seeing is scans which you can not prevent. I am looking at incoming packets with tcpdump. This sees packets *before* they are filtered by iptables. > What are you using for a firewall? Something hand rolled. Reasonably complicated (over 300 rules) as it deals with: internet, VPN, DMZ, internal network for virtual machines. It is NOT a firewall issue. > It is my belief that your firewall is NOT setup correctly and that is why > you are seeing the traffic. My firewall *cannot* deal with packets before they hit my machine. They only hit my machine after they have arrived over broadband. The only thing that I might be able to do is to somehow prevent discovery that my machine is listening on port 80 -- that would mean somehow distinguishing between a genuine visitor and one that is mapping the Internet to later pass that map somewhere else which generates the unwanted traffic that I see. > Amazon AWS system. should not be able to hit your http server, unless you > want it to. How do I distinguish between wanted & unwanted connections. The only thing that I can think of is to DROP incoming packets if the source port is 80 or 443 - which would disrupt the mapping process. However: if the mapping process uses normal TCP (ie high/random port number) this would do little. -- Alain Williams Linux/GNU Consultant - Mail systems, Web sites, Networking, Programmer, IT Lecturer. +44 (0) 787 668 0256 https://www.phcomp.co.uk/ Parliament Hill Computers. Registration Information: https://www.phcomp.co.uk/Contact.html #include
Re: Help: network abuse
On Thu, Dec 21, 2023 at 10:11:08AM -0500, Pocket wrote: > Use a firewall and set it up correctly. That I have done. The issue is broadband usage - ie before it hits the firewall. > Assuming a residential environment. > > Firewall the router and server(s) as well as all the client machines. > > I have nginx, dovecot and exim4 and other daemons running on my network > servers. > > Most, (includes many of the ones here) don't have a firewall properly > configured. Nor do they understand how to properly configure a firewall. > > You will still get scanned but there is little you can do about that. > > -- > > Hindi madali ang maging ako > -- Alain Williams Linux/GNU Consultant - Mail systems, Web sites, Networking, Programmer, IT Lecturer. +44 (0) 787 668 0256 https://www.phcomp.co.uk/ Parliament Hill Computers. Registration Information: https://www.phcomp.co.uk/Contact.html #include
Re: Help: network abuse
On Thu, Dec 21, 2023 at 01:39:53PM +, Andy Smith wrote: > Okay well 30KiB/s is only about 78GiB/month which isn't really a > lot. I think we're both in UK and it's been hard to find a domestic > Internet connection that you'd run a web server on that can't cope > with 78G/mo. So ignoring it seems okay. I have been with my ISP for 14 years (moved to get IPv6), for various reasons I cannot change to a tariff that will give me anything like that (their support has also fallen through the floor) - I need to change (& the landline) and then I prolly would not care. Andrews & Arnold and Zen seem recommended. > You say these never complete a TCP handshake even though you do run > Apache on port 80? If so, it does make me wonder what they are > trying to do. They might be trying to hijack an existing TCP connection or, even simpler, cause my machine problems by having many, many 1/2 set up TCP connections (which uses memory until they expire). -- Alain Williams Linux/GNU Consultant - Mail systems, Web sites, Networking, Programmer, IT Lecturer. +44 (0) 787 668 0256 https://www.phcomp.co.uk/ Parliament Hill Computers. Registration Information: https://www.phcomp.co.uk/Contact.html #include
Re: Help: network abuse
On Thu, Dec 21, 2023 at 07:50:42AM -0500, Greg Wooledge wrote: > If your home Internet service has an "allowance", you probably shouldn't > run a web server on it. Yes: I do run a web server at home, but there is only a little/personal stuff, it does not receive much real traffic, I do not want it to. Most of my web presence is hosted elsewhere. -- Alain Williams Linux/GNU Consultant - Mail systems, Web sites, Networking, Programmer, IT Lecturer. +44 (0) 787 668 0256 https://www.phcomp.co.uk/ Parliament Hill Computers. Registration Information: https://www.phcomp.co.uk/Contact.html #include
Help: network abuse
My home PC is receiving, for hours at a time, 12-30 kB/s input traffic. This is unsolicited. I do not know what it is trying to achieve but suspect no good. It is also eating my broadband allowance. This does not show up in the Apache log files - the TCP connection does not succeed. Sometimes my machine does send a packet in reply, there are 2 examples at the foot of this email. Questions: • What is going on ? • What can I do about it ? I do manually add some of the IPs to the f2b chain which will stop replies but that is about it. My ISP refuses to do anything about it - I admit that I cannot see what they could do, maybe filter packets with a source port of 80 or 443. I also get attempts to break into ssh (port 22) - I am not worried about that. I append a few lines of output of "tcpdump -n -i enp3s0" done today. 192.168.108.2 is the address of my desktop PC. The connecting IPs below all belong to Amazon but this changes with time, China is another common source of similar packets. 11:08:56.354303 IP 34.217.144.104.80 > 192.168.108.2.80: Flags [S], seq 19070976, win 51894, options [mss 1401,sackOK,TS val 1182532729 ecr 0,nop,wscale 7], length 0 11:08:56.354700 IP 34.217.144.104.80 > 192.168.108.2.80: Flags [S], seq 3665362944, win 51894, options [mss 1402,sackOK,TS val 4179952761 ecr 0,nop,wscale 7], length 0 11:08:56.360527 IP 52.195.179.12.80 > 192.168.108.2.80: Flags [S], seq 479395840, win 51894, options [mss 1412,sackOK,TS val 3391683448 ecr 0,nop,wscale 7], length 0 11:08:56.360696 IP 52.195.179.12.80 > 192.168.108.2.80: Flags [S], seq 1622147072, win 51894, options [mss 1410,sackOK,TS val 2887711608 ecr 0,nop,wscale 7], length 0 11:08:56.360950 IP 54.184.78.87.80 > 192.168.108.2.80: Flags [S], seq 3168796672, win 51894, options [mss 1404,sackOK,TS val 535364985 ecr 0,nop,wscale 7], length 0 11:08:56.364565 IP 52.195.179.12.80 > 192.168.108.2.80: Flags [S], seq 132317184, win 51894, options [mss 1407,sackOK,TS val 2350122105 ecr 0,nop,wscale 7], length 0 11:08:56.364708 IP 34.217.144.104.80 > 192.168.108.2.80: Flags [S], seq 1098776576, win 51894, options [mss 1405,sackOK,TS val 3426157689 ecr 0,nop,wscale 7], length 0 11:08:56.367975 IP 13.231.232.88.80 > 192.168.108.2.80: Flags [S], seq 3272540160, win 51894, options [mss 1413,sackOK,TS val 979961209 ecr 0,nop,wscale 7], length 0 2 days ago a similar capture. Note that the source port is 443 not 80: 09:47:31.416452 IP 5.45.73.147.443 > 192.168.108.2.80: Flags [S], seq 2724200448, win 51894, options [mss 1401,sackOK,TS val 862439534 ecr 0,nop,wscale 7], length 0 09:47:31.417861 IP 27.124.10.200.443 > 192.168.108.2.80: Flags [S], seq 925237248, win 51894, options [mss 1407,sackOK,TS val 756418658 ecr 0,nop,wscale 7], length 0 09:47:31.440892 IP 27.124.10.197.443 > 192.168.108.2.80: Flags [S], seq 3474063360, win 51894, options [mss 1404,sackOK,TS val 3970828642 ecr 0,nop,wscale 7], length 0 09:47:31.449393 IP 27.124.10.200.443 > 192.168.108.2.80: Flags [S], seq 2844721152, win 51894, options [mss 1407,sackOK,TS val 1831471202 ecr 0,nop,wscale 7], length 0 09:47:31.451430 IP 154.39.104.67.443 > 192.168.108.2.80: Flags [S], seq 2336358400, win 51894, options [mss 1415,sackOK,TS val 395513698 ecr 0,nop,wscale 7], length 0 09:47:31.451610 IP 27.124.10.225.443 > 192.168.108.2.80: Flags [S], seq 808976384, win 51894, options [mss 1414,sackOK,TS val 1960250978 ecr 0,nop,wscale 7], length 0 09:47:31.453372 IP 143.92.60.30.443 > 192.168.108.2.80: Flags [S], seq 3177512960, win 51894, options [mss 1408,sackOK,TS val 4033677410 ecr 0,nop,wscale 7], length 0 09:47:31.456937 IP 27.124.10.225.443 > 192.168.108.2.80: Flags [S], seq 1042087936, win 51894, options [mss 1415,sackOK,TS val 2011106914 ecr 0,nop,wscale 7], length 0 09:47:31.461961 IP 27.124.10.226.443 > 192.168.108.2.80: Flags [S], seq 3200516096, win 51894, options [mss 1403,sackOK,TS val 2314013026 ecr 0,nop,wscale 7], length 0 Examples where my machine sends a reply: 09:47:31.658790 IP 27.124.10.225.443 > 192.168.108.2.80: Flags [S], seq 612564992, win 51894, options [mss 1415,sackOK,TS val 2011106914 ecr 0,nop,wscale 7], length 0 09:47:31.659442 IP 192.168.108.2.80 > 154.39.104.67.443: Flags [S.], seq 3770299450, ack 1858732033, win 65160, options [mss 1460,sackOK,TS val 164888251 ecr 395513698,nop,wscale 7], length 0 09:47:31.756220 IP 5.45.73.147.443 > 192.168.108.2.80: Flags [S], seq 2992898048, win 51894, options [mss 1401,sackOK,TS val 862439534 ecr 0,nop,wscale 7], length 0 09:47:31.756272 IP 192.168.108.2.80 > 5.45.73.147.443: Flags [.], ack 1226309633, win 509, options [nop,nop,TS val 2085784149 ecr 994101358], length 0 -- Alain Williams Linux/GNU Consultant - Mail systems, Web sites, Networking, Programmer, IT Lecturer. +44 (0) 787 668 0256 https://www.phcomp.co.uk/ Parliament Hill Computers. Registration Information: https://www.phcomp.co.uk/Contact.html #include
Re: Trojan
On Sun, Aug 27, 2023 at 10:23:06AM +0100, Brad Rogers wrote: > On Sun, 27 Aug 2023 09:36:02 +0100 > Alain D D Williams wrote: > > Hello Alain, > > >They will look at it and do something - or so they claim, > > Most likely that 'something' will be to compile statistics about > phishing attacks. Maybe produce a leaflet, or update the advice given > on a web page somewhere. Sorry if I came across as overly cynical. It would be nice if they also went after the perps/crims behind phishing emails‡‡ - which I think they have done a bit of, but could do much more to protect the gullible. Still: it is worth reporting to them, which I do several times/week. ‡‡ and similar 'phone calls. -- Alain Williams Linux/GNU Consultant - Mail systems, Web sites, Networking, Programmer, IT Lecturer. +44 (0) 787 668 0256 https://www.phcomp.co.uk/ Parliament Hill Computers. Registration Information: https://www.phcomp.co.uk/Contact.html #include
Re: Trojan
On Sun, Aug 27, 2023 at 10:31:55AM +0200, to...@tuxteam.de wrote: > If you feel like you'd like to learn a bit, study the mail > headers. Ponder about which ones the sender could have faked > and which ones not. Things like that. If you live in the UK you can forward it to here: rep...@phishing.gov.uk They will look at it and do something - or so they claim, this is part of government! -- Alain Williams Linux/GNU Consultant - Mail systems, Web sites, Networking, Programmer, IT Lecturer. +44 (0) 787 668 0256 https://www.phcomp.co.uk/ Parliament Hill Computers. Registration Information: https://www.phcomp.co.uk/Contact.html #include
Re: Using the bash shell: determine if the root user used 'sudo -i'
On Sat, Aug 26, 2023 at 09:25:10AM -0500, Tom Browder wrote: > In a previous thread it was shown how to detect a SUDO_USER in a bash shell. > > Is there a way to distinguish whether 'sudo -i' was used or not? I have not tested this but if bash was interactive you will find a .bash_history file in their $HOME. That assumes that they have not logged in - ie only ever sudo. > Thanks. > > -Tom -- Alain Williams Linux/GNU Consultant - Mail systems, Web sites, Networking, Programmer, IT Lecturer. +44 (0) 787 668 0256 https://www.phcomp.co.uk/ Parliament Hill Computers. Registration Information: https://www.phcomp.co.uk/Contact.html #include
bash $MAIL bug in Bookworm
I have recently upgraded to Bookworm. I have set: MAIL=/var/spool/mail/addw MAILCHECK=60 I find that when doing filename expansion, by pressing TAB, that the 'You have mail' message appears when it should not. In the example below I pressed TAB after the letter 'T' (which gave me expansion 'TODO'). I am running bash. $ me TYou have mail in /var/spool/mail/addw ODO Should I report this elsewhere ? Regards -- Alain Williams Linux/GNU Consultant - Mail systems, Web sites, Networking, Programmer, IT Lecturer. +44 (0) 787 668 0256 https://www.phcomp.co.uk/ Parliament Hill Computers. Registration Information: https://www.phcomp.co.uk/Contact.html #include
Re: How do I remotely access the computer in the next room?
On Sun, Jul 02, 2023 at 06:49:07PM -0400, hobie of RMN wrote: > Hi, All - > > I need the best way currently available to operate my brother's computer > in the next room through my computer. I think we're both running Debian > 11, the stable version for me, the testing version for him. I've tried > ssh -X. It does work but only for a short time, then the connection > crumbles - his computer has often locked up on him and we have no idea > why, so the 'short time' aspect of the -X approach may relate to that. > > The point is, he's been away from home for awhile now and we're not sure > when he'll return. Chiefly I'm looking for the most convenient way to keep > an eye on his incoming e-mail for him. Mostly I use Mutt; he uses > claws-mail exclusively, so I'll need to remotely launch claws-mail and > have it retrieve latest e-mails. Claws-mail stores mail in the MH mailbox format. Mutt can handle MH mailboxes. Why not use mutt via ssh on his machine, for most messages you do not need to use X (ie graphics), this might mean that the connection is more robust. You would only use graphics for displaying some attachments, eg images. > Thanks in advance for any help on this. > > --hobie > -- Alain Williams Linux/GNU Consultant - Mail systems, Web sites, Networking, Programmer, IT Lecturer. +44 (0) 787 668 0256 https://www.phcomp.co.uk/ Parliament Hill Computers. Registration Information: https://www.phcomp.co.uk/Contact.html #include
Re: Qemu Numeric Lock problem
On Wed, Jun 21, 2023 at 05:42:30PM +0100, Alain Williams wrote: > I have an issue with virtual machines under qemu. Caps Lock is also affected the same way. > Sequence as follows: > > I press Numeric Lock (or Num Lock) so that the keyboard indicator lights up. > > I then switch to the workspace that contains a running virtual machine. The > virtualised OS does not seem to be important, this happens with Debian and > Rocky Linux. > > When I press keys on the numeric keypad I do not get numbers. What gets sent > are the sequences that do Home, Page Up, ... > > I press Num Lock so that the keyboard indicator goes out. > > I press keys on the numeric keypad and get numbers. > > So: it seems that the state of the Num Lock key is not picked up by qemu. > > > Is this is qemu bug or can I tweak the configuration ? > > Thanks in advance. > > > I am running Debian 10 - Buster. I use the Mate desktop. > > -- > Alain Williams > Linux/GNU Consultant - Mail systems, Web sites, Networking, Programmer, IT > Lecturer. > +44 (0) 787 668 0256 https://www.phcomp.co.uk/ > Parliament Hill Computers. Registration Information: > https://www.phcomp.co.uk/Contact.html > #include > -- Alain Williams Linux/GNU Consultant - Mail systems, Web sites, Networking, Programmer, IT Lecturer. +44 (0) 787 668 0256 https://www.phcomp.co.uk/ Parliament Hill Computers. Registration Information: https://www.phcomp.co.uk/Contact.html #include
Qemu Numeric Lock problem
I have an issue with virtual machines under qemu. Sequence as follows: I press Numeric Lock (or Num Lock) so that the keyboard indicator lights up. I then switch to the workspace that contains a running virtual machine. The virtualised OS does not seem to be important, this happens with Debian and Rocky Linux. When I press keys on the numeric keypad I do not get numbers. What gets sent are the sequences that do Home, Page Up, ... I press Num Lock so that the keyboard indicator goes out. I press keys on the numeric keypad and get numbers. So: it seems that the state of the Num Lock key is not picked up by qemu. Is this is qemu bug or can I tweak the configuration ? Thanks in advance. I am running Debian 10 - Buster. I use the Mate desktop. -- Alain Williams Linux/GNU Consultant - Mail systems, Web sites, Networking, Programmer, IT Lecturer. +44 (0) 787 668 0256 https://www.phcomp.co.uk/ Parliament Hill Computers. Registration Information: https://www.phcomp.co.uk/Contact.html #include
Re: Apt sources.list
On Sat, Apr 15, 2023 at 11:00:52AM -0400, pa...@quillandmouse.com wrote: > Okay. Let's open this can of worms. The ONLY reason https is used on > most sites is because Google *mandated* it years ago. ("Mandate" means > we'll downgrade your search ranking if you don't use https.) There is > otherwise no earthly reason to have an encrypted connection to a web > server unless there is some exchange of private information between you > and the server. Where I live (England) I do not care if "the authorities" see what I have installed on my machine. If I lived in a totalitarian state†† there are some packages that might raise my profile on some "radar". †† There are several - I will not mention names as I wish to keep politics out of this list. > Reading through all of Google's explanations, I've never seen a > satisfactory explanation for this change. With that in mind, I believe > the Debian gods did the right thing in leaving their web connections > "insecure". Though, in truth, the integrity of Debian server contents > wouldn't be changed in the slightest whether the connection was > encrypted or not. -- Alain Williams Linux/GNU Consultant - Mail systems, Web sites, Networking, Programmer, IT Lecturer. +44 (0) 787 668 0256 https://www.phcomp.co.uk/ Parliament Hill Computers Ltd. Registration Information: https://www.phcomp.co.uk/Contact.html #include
Re: Apt sources.list
On Sat, Apr 15, 2023 at 03:48:31PM +0200, to...@tuxteam.de wrote: > On Sat, Apr 15, 2023 at 02:01:27PM +0100, Alain D D Williams wrote: > > [...] > > > While we are talking about this, is there any reason why all the http: > > should > > not be https: ? > > It's just unnecessary CPU on the server, that's all. That used to be the case many years ago. Modern CPUs have instructions that make it much quicker. "On our production frontend machines, SSL/TLS accounts for less than 1% of the CPU load, less than 10 KB of memory per connection and less than 2% of network overhead." https://istlsfastyet.com/ -- Alain Williams Linux/GNU Consultant - Mail systems, Web sites, Networking, Programmer, IT Lecturer. +44 (0) 787 668 0256 https://www.phcomp.co.uk/ Parliament Hill Computers Ltd. Registration Information: https://www.phcomp.co.uk/Contact.html #include
Re: Apt sources.list
On Sat, Apr 15, 2023 at 08:52:06AM -0400, Greg Wooledge wrote: > On Sat, Apr 15, 2023 at 01:23:05PM +0100, Brian wrote: > > On Sat 15 Apr 2023 at 08:11:17 -0400, pa...@quillandmouse.com wrote: > > > --- > > > > > > deb http://debian.uchicago.edu/debian/ bookworm main contrib non-free > > > deb-src http://debian.uchicago.edu/debian/ bookworm main contrib non-free > > > > > > deb http://security.debian.org/debian-security bookworm-security main > > > contrib non-free deb-src http://security.debian.org/debian-security > > > bookworm-security main contrib non-free > > > > > > --- While we are talking about this, is there any reason why all the http: should not be https: ? I have done this on my own machine without ill effect. -- Alain Williams Linux/GNU Consultant - Mail systems, Web sites, Networking, Programmer, IT Lecturer. +44 (0) 787 668 0256 https://www.phcomp.co.uk/ Parliament Hill Computers Ltd. Registration Information: https://www.phcomp.co.uk/Contact.html #include
Re: No /
On Tue, Mar 07, 2023 at 05:33:45PM +0100, Michael Lee wrote: > Is it possible to reinstall the system and still retain the settings, > logins, etc.? This is what backups are for. I assume that you have something. > Michael Lee -- Alain Williams Linux/GNU Consultant - Mail systems, Web sites, Networking, Programmer, IT Lecturer. +44 (0) 787 668 0256 https://www.phcomp.co.uk/ Parliament Hill Computers Ltd. Registration Information: https://www.phcomp.co.uk/Contact.html #include
Re: GPG problems
On Sun, Dec 04, 2022 at 04:28:00PM +0200, Teemu Likonen wrote: > * 2022-12-04 12:05:56+0000, Alain D. D. Williams wrote: > > > Part of the problem is the hopeless message "Server indicated a > > failure" which says little. Any idea how I could get something more > > informative ? > > You can change debug logging level. Edit ~/.gnupg/dirmngr.conf file and > write something like this: > > debug-level expert #or: guru > log-file /tmp/dirmngr-log.txt > > Then kill dirmngr > > $ gpgconf --kill dirmngr > > and try key servers again. See the log file mentioned above. Thanks ... it does not really help (I attach it). The message is: command 'KS_PUT' failed: Server indicated a failure I ran it with debugging on the Debian 11 machine where it works. I put the PIv4 address for keys.openpgp.org into /etc/hosts - the Debian 10 machine has IPv6 that works, the Debian 11 machine is IPv4 only. No change. -- Alain Williams Linux/GNU Consultant - Mail systems, Web sites, Networking, Programmer, IT Lecturer. +44 (0) 787 668 0256 https://www.phcomp.co.uk/ Parliament Hill Computers Ltd. Registration Information: https://www.phcomp.co.uk/Contact.html #include 2022-12-04 17:44:27 dirmngr[18851.0] permanently loaded certificates: 138 2022-12-04 17:44:27 dirmngr[18851.0] runtime cached certificates: 0 2022-12-04 17:44:27 dirmngr[18851.0]trusted certificates: 138 (137,0,0,1) 2022-12-04 17:44:27 dirmngr[18851.6] handler for fd 6 started 2022-12-04 17:44:27 dirmngr[18851.6] DBG: chan_6 -> # Home: /home/addw/.gnupg 2022-12-04 17:44:27 dirmngr[18851.6] DBG: chan_6 -> # Config: /home/addw/.gnupg/dirmngr.conf 2022-12-04 17:44:27 dirmngr[18851.6] DBG: chan_6 -> OK Dirmngr 2.2.27 at your service 2022-12-04 17:44:27 dirmngr[18851.6] connection from process 18850 (1000:1000) 2022-12-04 17:44:27 dirmngr[18851.6] DBG: chan_6 <- GETINFO version 2022-12-04 17:44:27 dirmngr[18851.6] DBG: chan_6 -> D 2.2.27 2022-12-04 17:44:27 dirmngr[18851.6] DBG: chan_6 -> OK 2022-12-04 17:44:27 dirmngr[18851.6] DBG: chan_6 <- KEYSERVER 2022-12-04 17:44:27 dirmngr[18851.6] DBG: chan_6 -> S KEYSERVER hkps://keys.openpgp.org 2022-12-04 17:44:27 dirmngr[18851.6] DBG: chan_6 -> OK 2022-12-04 17:44:27 dirmngr[18851.6] DBG: chan_6 <- KS_PUT 2022-12-04 17:44:27 dirmngr[18851.6] DBG: chan_6 -> INQUIRE KEYBLOCK 2022-12-04 17:44:27 dirmngr[18851.6] DBG: chan_6 <- [ 44 20 98 33 04 60 ec 50 1f 16 09 2b 06 01 04 01 ...(626 byte(s) skipped) ] 2022-12-04 17:44:27 dirmngr[18851.6] DBG: chan_6 <- END 2022-12-04 17:44:27 dirmngr[18851.6] DBG: chan_6 -> INQUIRE KEYBLOCK_INFO 2022-12-04 17:44:27 dirmngr[18851.6] DBG: chan_6 <- D pub::256:22:BA366B977C06BAF7:1626099743:::%0Afpr:::::4D48D5BAF3736D50214AFC3FBA366B977C06BAF7:%0Auid:1626099743Alain D D Williams :::%0Auid:1670002234Alain D D Williams :::%0Asub::256:18:0315E84A964E21C9:1626099743:::%0Afpr:75F7570849B82972171A762C0315E84A964E21C9:%0A 2022-12-04 17:44:27 dirmngr[18851.6] DBG: chan_6 <- END 2022-12-04 17:44:27 dirmngr[18851.6] command 'KS_PUT' failed: Server indicated a failure 2022-12-04 17:44:27 dirmngr[18851.6] DBG: chan_6 -> ERR 219 Server indicated a failure 2022-12-04 17:44:27 dirmngr[18851.6] DBG: chan_6 <- BYE 2022-12-04 17:44:27 dirmngr[18851.6] DBG: chan_6 -> OK closing connection 2022-12-04 17:44:27 dirmngr[18851.6] handler for fd 6 terminated 2022-12-04 17:55:27 dirmngr[18851.0] running scheduled tasks 2022-12-04 18:05:28 dirmngr[18851.0] running scheduled tasks 2022-12-04 18:15:28 dirmngr[18851.0] running scheduled tasks 2022-12-04 18:25:29 dirmngr[18851.0] running scheduled tasks 2022-12-04 18:33:58 dirmngr[18851.6] handler for fd 6 started 2022-12-04 18:33:58 dirmngr[18851.6] DBG: chan_6 -> # Home: /home/addw/.gnupg 2022-12-04 18:33:58 dirmngr[18851.6] DBG: chan_6 -> # Config: /home/addw/.gnupg/dirmngr.conf 2022-12-04 18:33:58 dirmngr[18851.6] DBG: chan_6 -> OK Dirmngr 2.2.27 at your service 2022-12-04 18:33:58 dirmngr[18851.6] connection from process 22347 (1000:1000) 2022-12-04 18:33:58 dirmngr[18851.6] DBG: chan_6 <- KILLDIRMNGR 2022-12-04 18:33:58 dirmngr[18851.6] DBG: chan_6 -> OK closing connection 2022-12-04 18:36:18 dirmngr[22361.0] permanently loaded certificates: 138 2022-12-04 18:36:18 dirmngr[22361.0] runtime cached certificates: 0 2022-12-04 18:36:18 dirmngr[22361.0]trusted certificates: 138 (137,0,0,1) 2022-12-04 18:36:18 dirmngr[22361.6] handler for fd 6 started 2022-12-04 18:36:18 dirmngr[22361.6] DBG: chan_6 -> # Home: /home/addw/.gnupg 2022-12-04 18:36:18 dirmngr[22361.6] DBG: chan_6 -> # Config: /home/addw/.gnupg/dirmngr.conf 2022-12-04 18:36:18 dirmngr[22361.6] DBG: chan_6 -> OK Dirmngr 2.2.27 at your service 2022-12-04 18:36:18 dirmngr[22361.6] connection from process 22360 (1000
Re: GPG problems
On Sat, Dec 03, 2022 at 02:59:41PM -0500, Jeffrey Walton wrote: > keys.openpgp.org should be operational. It responds to ping. > > Also have a look at > https://lists.gnupg.org/pipermail/gnupg-users/2021-June/065261.html . No, that is not the issue. It works on Debian 11 but not Debian 10, both attempts within a few minutes of each other, both connect to hkps://keys.openpgp.org Both run the same version of gpg (GnuPG) 2.2.27 (I installed from backports on Debian 10) gpg reports the version of libgcrypt On Debian 10 it is 1.8.4 on Debian 11 it is 1.8.8 Could that be an issue ? I am reluctant to speculatively upgrade for fear of breaking something else. Part of the problem is the hopeless message "Server indicated a failure" which says little. Any idea how I could get something more informative ? -- Alain Williams Linux/GNU Consultant - Mail systems, Web sites, Networking, Programmer, IT Lecturer. +44 (0) 787 668 0256 https://www.phcomp.co.uk/ Parliament Hill Computers Ltd. Registration Information: https://www.phcomp.co.uk/Contact.html #include
GPG problems
I am running Debian 10 (buster). I generated a new key that I wanted to upload, but it fails: $ gpg --send-keys 0xBA366B977C06BAF7 gpg: sending key 0xBA366B977C06BAF7 to hkps://keys.openpgp.org gpg: keyserver send failed: Server indicated a failure gpg: keyserver send failed: Server indicated a failure I copied my ~/.gnupg to a Debian 11 (bullesys) machine, it works: $ gpg --send-keys 0xBA366B977C06BAF7 gpg: sending key 0xBA366B977C06BAF7 to hkps://keys.openpgp.org $ Back on buster I grabbed the latest version: /etc/apt/sources.list: deb http://deb.debian.org/debian/ buster-backports main contrib non-free # apt -V -t=buster-backports install gpg I killed the dirmngr daemon: # killall dirmngr I tried the send-keys again and got the same result, ie failure. Please: what should I do to fix this. Thanks in advance -- Alain Williams Linux/GNU Consultant - Mail systems, Web sites, Networking, Programmer, IT Lecturer. +44 (0) 787 668 0256 https://www.phcomp.co.uk/ Parliament Hill Computers Ltd. Registration Information: https://www.phcomp.co.uk/Contact.html #include
Re: just saying
On Thu, Nov 24, 2022 at 10:43:19PM +, Peter von Kaehne wrote: > > > > > Even if you have it can be very hard to find carefully constructed back > > doors. > > Shrug.. as opposed to installing closed source programmes where you know you > are spied upon ? Which may of course have back doors but thanks tk being > closed you I’ll not even learn about? OK - I agree with you. FLOSS is much better from that point of view; my point was that FLOSS is not a guarantee. The OP was talking about spooks, these guys are well funded and capable of producing hard to detect back doors. FLOSS is also more resistant to a government bribing or strong arming a closed source company to include a spook produced back door. "much better" != "perfect" - ie vigilance is still needed. > > Some code has been carefully looked at but most has not. > > > >>> On Thu, Nov 24, 2022 at 4:03 PM mick.crane wrote: > >>> > >>> I love open source, more than you might think, but I have a niggling > >>> feeling it's been infiltrated to make user control difficult. > >>> If I was a spook it's what I'd do. > >>> Please prove me wrong. > >>> mick -- Alain Williams Linux/GNU Consultant - Mail systems, Web sites, Networking, Programmer, IT Lecturer. +44 (0) 787 668 0256 https://www.phcomp.co.uk/ Parliament Hill Computers Ltd. Registration Information: https://www.phcomp.co.uk/Contact.html #include
Re: just saying
On Thu, Nov 24, 2022 at 04:05:31PM -0500, Jeremy Hendricks wrote: > I have no idea what you mean. It’s open source and you can analyze the code > line by line. Very true ... but how much code have you analyzed line by line ? Even if you have it can be very hard to find carefully constructed back doors. Some code has been carefully looked at but most has not. > On Thu, Nov 24, 2022 at 4:03 PM mick.crane wrote: > > > I love open source, more than you might think, but I have a niggling > > feeling it's been infiltrated to make user control difficult. > > If I was a spook it's what I'd do. > > Please prove me wrong. > > mick > > > > -- Alain Williams Linux/GNU Consultant - Mail systems, Web sites, Networking, Programmer, IT Lecturer. +44 (0) 787 668 0256 https://www.phcomp.co.uk/ Parliament Hill Computers Ltd. Registration Information: https://www.phcomp.co.uk/Contact.html #include
How to use hw vendor EFI diagnostics ?
I just got myself a new laptop - the old one broke. It is an HP stream, I wiped MS Windows and installed Linux Mint 21. The machine came with some nice hardware diagnostics, written by/for HP. These could be run without booting MS Windows. I would like to have the ability to run these as they know more about the laptop's hardware than what is installed from Mint -- just some generic memory test. I did copy the EFI before it was overwritten by the Linux installation. How do I integrate the HP diagnostics into the current EFI ? Thanks in advance. This is what there is now: /boot/efi/ /boot/efi/EFI /boot/efi/EFI/ubuntu /boot/efi/EFI/ubuntu/grubx64.efi /boot/efi/EFI/ubuntu/shimx64.efi /boot/efi/EFI/ubuntu/mmx64.efi /boot/efi/EFI/ubuntu/BOOTX64.CSV /boot/efi/EFI/ubuntu/grub.cfg /boot/efi/EFI/BOOT /boot/efi/EFI/BOOT/BOOTX64.EFI /boot/efi/EFI/BOOT/fbx64.efi /boot/efi/EFI/BOOT/mmx64.efi This is what I have preserved from before Linux install: System Volume Information EFI EFI/HP EFI/HP/BIOS EFI/HP/BIOS/Current EFI/HP/BIOS/Current/085B5.bin EFI/HP/BIOS/Current/085B5.s12 EFI/HP/BIOS/Current/085B5.sig EFI/HP/BIOS/Previous EFI/HP/BIOS/New EFI/HP/HP Support Framework EFI/HP/HP Support Framework/Logs EFI/HP/HP Support Framework/Logs/1275192963.xml EFI/HP/dip.zip EFI/HP/SystemDiags EFI/HP/SystemDiags/EADB.json EFI/HP/SystemDiags/SystemDiags.ini EFI/HP/SystemDiags/HpHwDiagsSnapshot.cee EFI/HP/SystemDiags/LICENCE.txt EFI/HP/SystemDiags/CryptRSA.efi EFI/HP/SystemDiags/SysDiags.s09 EFI/HP/SystemDiags/SystemDiags-5CD2301RGW.html EFI/HP/SystemDiags/SysDiags.efi EFI/HP/SystemDiags/TestCoverage.json EFI/HP/SystemDiags/SysDiags.s14 EFI/HP/SystemDiags/DI.efi EFI/HP/SystemDiags/SysDiags.s12 EFI/HP/SystemDiags/SystemDiags.log EFI/HP/SystemDiags/SystemDiagsCeeHistory.log EFI/HP/DI.efi EFI/HP/BIOSUpdate EFI/HP/BIOSUpdate/BiosMgmt.s12 EFI/HP/BIOSUpdate/CryptRSA.efi EFI/HP/BIOSUpdate/BiosMgmt.s14 EFI/HP/BIOSUpdate/BiosMgmt.efi EFI/HP/BIOSUpdate/BiosMgmt.s09 EFI/Boot EFI/Boot/bootx64.efi There is also some MS stuff (I'm just listing top level directories, 185 in total): EFI/Microsoft EFI/Microsoft/Recovery EFI/Microsoft/Boot -- Alain Williams Linux/GNU Consultant - Mail systems, Web sites, Networking, Programmer, IT Lecturer. +44 (0) 787 668 0256 https://www.phcomp.co.uk/ Parliament Hill Computers Ltd. Registration Information: https://www.phcomp.co.uk/Contact.html #include
Re: google account say it will no longer deliver email
On Sat, Jun 04, 2022 at 10:02:05PM +0200, sp...@caiway.net wrote: > Hi, > > My first mail provider (in Oslo) promised free mailadress for life. > > Then it was sold to a kapitalist and they started to ask money. > > I do not like that. > > I know it is possible to run a free host. > > By volunteers running the server for example. Oh - great ... please do us all a favour and set up a free host and give us free addresses for life. Thanks! -- Alain Williams Linux/GNU Consultant - Mail systems, Web sites, Networking, Programmer, IT Lecturer. +44 (0) 787 668 0256 https://www.phcomp.co.uk/ Parliament Hill Computers Ltd. Registration Information: https://www.phcomp.co.uk/Contact.html #include
Re: Firewall POSTROUTING problem
On Thu, Aug 12, 2021 at 01:28:57AM +0300, IL Ka wrote: > > > > > > > > > > iptables -A FORWARD -j ACCEPT > > > > Are you sure your packets are forwarded via netfilter? > Try to disable forwarding (with sysctl) or change rulte to -j DROP and > check traffic with sniffer (no packet should be forwarded from virt machine > to the Internet) It now works all of a sudden I am scratching my head to see what I have changed. The only thing is rebooting the virtual machine that I was testing from. I cannot see that that should have made a difference. I was changing the firewall ... Anyway: thanks for now, I am sorry if I have wasted anyone's time :-( -- Alain Williams Linux/GNU Consultant - Mail systems, Web sites, Networking, Programmer, IT Lecturer. +44 (0) 787 668 0256 https://www.phcomp.co.uk/ Parliament Hill Computers Ltd. Registration Information: https://www.phcomp.co.uk/Contact.html #include
Re: Firewall POSTROUTING problem
On Wed, Aug 11, 2021 at 11:50:30PM +0200, deloptes wrote: > Alain D D Williams wrote: > > > iptables -A FORWARD -j ACCEPT > > > > and the OUTPUT? OUTOUT is also ACCEPT, however this is not, I think, important as the packets come from 10.239.239.23 (via br0) and go to the Internet - thus FORWARD is what is important. Anyway: I see (on the modem) the packets with source 10.239.239.23 > > and this is not a problem ... evidence is outgoing packets with source > > address 10.239.239.23 > > ah, ok, I misinterpreted it. The important stuff from ifconfig is: br0: flags=4163 mtu 1500 inet 10.239.239.254 netmask 255.255.255.0 broadcast 10.239.239.255 inet6 fe80::7ca1:36ff:fe12:7402 prefixlen 64 scopeid 0x20 ether ee:3c:27:eb:c0:4f txqueuelen 1000 (Ethernet) RX packets 31632 bytes 2596968 (2.4 MiB) RX errors 0 dropped 0 overruns 0 frame 0 TX packets 2065 bytes 374487 (365.7 KiB) TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0 enp3s0: flags=4163 mtu 1500 inet 192.168.108.2 netmask 255.255.255.0 broadcast 192.168.108.255 inet6 2001:4d48:ad51:2f00::2:2 prefixlen 112 scopeid 0x0 inet6 fe80::922b:34ff:fe12:6470 prefixlen 64 scopeid 0x20 ether 90:2b:34:12:64:70 txqueuelen 1000 (Ethernet) RX packets 922014 bytes 240006341 (228.8 MiB) RX errors 0 dropped 0 overruns 0 frame 0 TX packets 562616 bytes 80027668 (76.3 MiB) TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0 -- Alain Williams Linux/GNU Consultant - Mail systems, Web sites, Networking, Programmer, IT Lecturer. +44 (0) 787 668 0256 https://www.phcomp.co.uk/ Parliament Hill Computers Ltd. Registration Information: https://www.phcomp.co.uk/Contact.html #include
Re: Firewall POSTROUTING problem
On Wed, Aug 11, 2021 at 11:32:51PM +0200, deloptes wrote: > I remember it was not only the POSTROUTING. May be I am wrong, but I think > FORWARD and OUTPUT is important. > I also wonder why you are mixing up the -s and --to-source. You should be > using the local address for -s and --to-source the translation (the > outgoing addresses 10.239.239.23) This says that anything with a source address 10.239.239.0/24 (ie virtual machine) will have the source address changed to 192.168.108.2; this is so that the BB modem does another NAT setting the source address to my external IP address. While I am debugging this, to avoid complication, I have set: iptables -A FORWARD -j ACCEPT and this is not a problem ... evidence is outgoing packets with source address 10.239.239.23 -- Alain Williams Linux/GNU Consultant - Mail systems, Web sites, Networking, Programmer, IT Lecturer. +44 (0) 787 668 0256 https://www.phcomp.co.uk/ Parliament Hill Computers Ltd. Registration Information: https://www.phcomp.co.uk/Contact.html #include
Firewall POSTROUTING problem
Hi, I have problems getting POSTROUTING to work on a Debian 10 box. Setup: INTERNET ... Broadband modem 192.168.108.1 Network internal to the Debian box for virtual machines 10.239.239.0/24 Debian has address 192.168.108.2 (interface enp3s0) and 10.239.239.254 (interface br0) Processes on Debian 10 can talk to the Internet Processes on virtual machines (eg 10.239.239.23) can talk to the Debian machine (ie 192.168.108.2) on which they are hosted. If on 10.239.239.23 I ping the BBC (212.58.249.145) and look with a packet sniffer on the BB modem I see outgoing addresses 10.239.239.23 This should not happen. I am running an iptables firewall that should fix this with the rule below: iptables -t nat -A POSTROUTING -s 10.239.239.0/24 -j SNAT --to-source 192.168.108.2 I have tried variations like: iptables -t nat -A POSTROUTING -o enp3s0 -j SNAT --to-source 192.168.108.2 It is as if the POSTROUTING rule is being ignored. This seems to be confirmed by the output below which shows that 0 packets have been through POSTROUTING. Can anyone shed any light on this ? Thanks in advance # iptables -L -n -t nat -v Chain PREROUTING (policy ACCEPT 0 packets, 0 bytes) pkts bytes target prot opt in out source destination Chain INPUT (policy ACCEPT 0 packets, 0 bytes) pkts bytes target prot opt in out source destination Chain POSTROUTING (policy ACCEPT 0 packets, 0 bytes) pkts bytes target prot opt in out source destination 0 0 SNAT all -- * * 10.239.239.0/24 0.0.0.0/0 to:192.168.108.2 Chain OUTPUT (policy ACCEPT 0 packets, 0 bytes) pkts bytes target prot opt in out source destination -- Alain Williams Linux/GNU Consultant - Mail systems, Web sites, Networking, Programmer, IT Lecturer. +44 (0) 787 668 0256 https://www.phcomp.co.uk/ Parliament Hill Computers Ltd. Registration Information: https://www.phcomp.co.uk/Contact.html #include
Re: How to view a troff formatted file?
On Mon, Feb 22, 2021 at 07:59:13AM -0800, Will Mengarini wrote: > Your groff command references $o but your script sets no value > for it, so $o is either empty or inherited from your environment. Oh, that comes from the ps_print script that I hacked this out of. $o was options, empty string for this script. Thanks, fixed. Also use of $0 which should have been $progname Me: just updated a script last changed 19 years ago. -- Alain Williams Linux/GNU Consultant - Mail systems, Web sites, Networking, Programmer, IT Lecturer. +44 (0) 787 668 0256 https://www.phcomp.co.uk/ Parliament Hill Computers Ltd. Registration Information: https://www.phcomp.co.uk/Contact.html #include
Re: How to view a troff formatted file?
On Mon, Feb 22, 2021 at 06:04:15AM -0600, Richard Owlett wrote: > I have downloaded a program with a man-page in troff format. > How do I view it? > I installed troffcvt but its man-page is non-informative. > TIA Feel free to use my script to do that, below. ps_print is another script that send to my printer. #!/bin/ksh # Format up a man page, the file name is the argument # ADDW, July 1999 progname=$0 Usage() { cat <<-! Process a file with the man macros. Usage: $0 [opts] [file] -p generate (Postscript) output to current printer -x eXplain ! exit $1 } Postscript=0 while getopts px arg do case "$arg" in p) Postscript=1;; x) Usage 0;; esac done shift $((OPTIND - 1)) if [ $# -eq 0 ] thenecho "Usage: $0 filename" >&2 exit 2 fi if [ $Postscript = 1 ] thengroff -man -etpsR -rO0.75i -rW6.5i -rL11i $o $1 | ps_print elsetbl $1 | nroff -man | col | less fi -- Alain Williams Linux/GNU Consultant - Mail systems, Web sites, Networking, Programmer, IT Lecturer. +44 (0) 787 668 0256 https://www.phcomp.co.uk/ Parliament Hill Computers Ltd. Registration Information: https://www.phcomp.co.uk/Contact.html #include
Re: Recommendation for a netbook
On Mon, Feb 08, 2021 at 12:47:41PM +0100, Hans wrote: > Am Montag, 8. Februar 2021, 12:29:25 CET schrieb Joe: > Hi, > > well IMHO it depends, what you are going to do with it. > > As you might know, those netbooks are not the fastest ones, but maybe boot > time is not so important, as you can use suspend-to-ram. I have had an HP stream for several years - works well for me. I run Linux Mint on it so it should run Debian. 11.6" screen, I can get 6+ hours out of a full charge. It only has 2 GB RAM that is not upgradable, pity: https://www.argos.co.uk/product/7463248 -- Alain Williams Linux/GNU Consultant - Mail systems, Web sites, Networking, Programmer, IT Lecturer. +44 (0) 787 668 0256 https://www.phcomp.co.uk/ Parliament Hill Computers Ltd. Registration Information: https://www.phcomp.co.uk/Contact.html #include
Re: Add a hard drive to existing system??
On Sun, Jan 17, 2021 at 01:52:06PM -0500, Jerry Mellon wrote: > Hello, > New to Debian, but have gotten Debian 10.7 loaded on to my system. I > have an ASUS gaming laptop(dont use it for gaming) with 12gb of memory > and intel corei7 and a 500gb hard drive. > > My question is what is the best(use dummy for linus statements please) > way to add a second hard drive with 2T of space. I wiil use this to > store photos and documents etc. It is often hard to change the hardware on a laptop. Probably the easiest way is to get an external disk with a USB interface, then plug the disk in when you need to get/put files to the disk. -- Alain Williams Linux/GNU Consultant - Mail systems, Web sites, Networking, Programmer, IT Lecturer. +44 (0) 787 668 0256 https://www.phcomp.co.uk/ Parliament Hill Computers Ltd. Registration Information: https://www.phcomp.co.uk/Contact.html #include
Re: How to restore BIOS-based backup on a UEFI machine
On Thu, Jan 14, 2021 at 04:41:50PM +0100, Jesper Dybdal wrote: > I backup my Buster server simply as a (compressed, encrypted) cpio archive. > > Restoring it to a BIOS-based machine is simple: boot a rescue cd, partition > the disk, restore all files, fix fstab if necessary, run update-grub and > grub-install in a chroot environment. That works. > > But if the machine should some day die and I can only find/buy a UEFI-only > machine to restore it to, how do I do that? And are there any precautions I > should take in advance (on the BIOS system, before creating backups that may > be needed on a future UEFI system) in order to make it easier to restore to > a UEFI machine? > > (My knowledge of UEFI is almost non-existent, and my knowledge of grub is > very limited.) If/when your machine dies I would suggest that the simplest thing is for you to do a completely fresh Debian install (which will get EUFI, etc, right) and then import your data from backups. So what you need to do now is to ensure that your backups make it easy for you to do that: * most of non system data is prob in /home So make that a separate cpio file * ditto for other places where you have files that do not come from .deb * keep a copy of /etc where it is easy to get hold of (maybe /home/etc.tar.gz) * ensure that you know what has been installed: dpkg --list > -- > Jesper Dybdal > https://www.dybdal.dk > -- Alain Williams Linux/GNU Consultant - Mail systems, Web sites, Networking, Programmer, IT Lecturer. +44 (0) 787 668 0256 https://www.phcomp.co.uk/ Parliament Hill Computers Ltd. Registration Information: https://www.phcomp.co.uk/Contact.html #include
Re: recommendations for supported, affordable hardware raid controller.
On Sat, Jan 02, 2021 at 09:23:02AM -0600, Nicholas Geovanis wrote: > Im afraid I have to agree with this advice. In the presence of software > like ZFS (from Sun) and LVM (from IBM's AIX), with easy availability of > NAS, SAN and cloud storage, the arguments in favor of hardware RAID local > to a server become much thinner. What drives that change is the evolution > of hardware and networking, not so much the software. Both ZFS and LVM are > now 20 years old, very mature software. If you have H/W raid and the controller breaks (it will do if you use it long enough) then you need to replace it by the same/similar controller. A few years down the line this might be hard and may take some time. When you use S/W raid then you do not have this problem. Replace the broken controller or move the disks to a new machine, do a bit of config and you are back in action. You sound like an individual: the compatible H/W controller might be a problem. If you were a business then keeping a few replacement controllers is affordable so the balance is different. My 2 pence. -- Alain Williams Linux/GNU Consultant - Mail systems, Web sites, Networking, Programmer, IT Lecturer. +44 (0) 787 668 0256 https://www.phcomp.co.uk/ Parliament Hill Computers Ltd. Registration Information: https://www.phcomp.co.uk/Contact.html #include
Help: br0 brings down ethernet
I'm upgrading my desktop from CentOS-6 to Debian -- CentOS-8 has Gnome 3 that I can't abide, Debian has Mate. Most of it works nicely; one problem is starting a network bridge takes down the ethernet connection. Can anyone please offer any clues: /etc/network/interfaces.d/br0 contains: iface br0 inet static bridge_ports enp3s0 address 10.239.239.254 broadcast 10.239.239.255 netmask 255.255.255.0 # Without this: when a VM starts the rest of the machine loses Internet connectivity - dunno why bridge_stp off bridge_maxwait 0 bridge_fd 0 /etc/network/interfaces.d/enp3s0 contains: auto enp3s0 iface enp3s0 inet static address 192.188.145.2 broadcast 192.188.145.255 netmask 255.255.255.0 gateway 192.188.145.1 (It is a wired [utp] ethernet) (Loopback is also defined somewhere) Note that br0 is NOT brought up automatically (although I will want that eventually.) I bring it all up and then: ifup br0 And some time later enp3s0 will stop. 'Some time' varies, I have seen 5 minutes and 45 minutes. Without br0 it has been stable - ie about a day. It failed just now (after I brought up br0), there was little network activity: a bit of web browsing; SMTP in/out; idle openvpn; a ping to news.bbc.co.uk Relevant lines from /var/log/messages: When I typed: ifup br0 Nov 14 12:30:51 mint kernel: [96153.146266] br0: port 1(enp3s0) entered blocking state Nov 14 12:30:51 mint kernel: [96153.146269] br0: port 1(enp3s0) entered disabled state Nov 14 12:30:51 mint kernel: [96153.146396] device enp3s0 entered promiscuous mode Nov 14 12:30:51 mint kernel: [96153.190042] br0: port 1(enp3s0) entered blocking state Nov 14 12:30:51 mint kernel: [96153.190046] br0: port 1(enp3s0) entered forwarding state Nov 14 12:30:51 mint kernel: [96153.190140] IPv6: ADDRCONF(NETDEV_UP): br0: link is not ready Nov 14 12:30:52 mint kernel: [96154.16] IPv6: ADDRCONF(NETDEV_CHANGE): br0: link becomes ready A few minutes after it failed when I typed: ifdown br0 ifdown enp3s0 ifup enp3s0 Nov 14 13:19:36 mint kernel: [99078.474136] br0: port 1(enp3s0) entered disabled state Nov 14 13:19:36 mint kernel: [99078.554460] device enp3s0 left promiscuous mode Nov 14 13:19:36 mint kernel: [99078.554492] br0: port 1(enp3s0) entered disabled state Nov 14 13:19:59 mint kernel: [99101.806231] RTL8211E Gigabit Ethernet r8169-300:00: attached PHY driver [RTL8211E Gigabit Ethernet] (mii_bus:phy_addr=r8169-300:00, irq=IGNORE) Nov 14 13:20:02 mint kernel: [99104.114206] r8169 :03:00.0 enp3s0: Link is Up - 1Gbps/Full - flow control off /var/log/syslog tells me that it failed a few minutes before I noticed: Nov 14 13:14:24 mint openvpn[3435]: TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity) Nov 14 13:14:24 mint openvpn[3435]: TLS Error: TLS handshake failed Why to I want br0 ? *** The reason that I want a bridge is so that virtual machines (under kvm) can connect to the host machine and to the Internet. This problem happens even if VMs are not running. My machine has: enp3s0 192.168.145.2 - connected to broadband router I want: br0 10.239.239.254 Virtual machines with addresses like 10.239.239.12 that they can see the outside world. -- Alain Williams Linux/GNU Consultant - Mail systems, Web sites, Networking, Programmer, IT Lecturer. +44 (0) 787 668 0256 https://www.phcomp.co.uk/ Parliament Hill Computers Ltd. Registration Information: https://www.phcomp.co.uk/Contact.html #include
Re: WINE in Squeeze taking associations of everything
Le 03/09/2010 à 05:28, GhostlyDeath a écrit : > > Hello, with the current WINE in Squeeze, all the file associations > change and this is very annoying and as such I cannot have WINE > installed, which means not testing my programs in a Windows-Like > environment. WINE ruins my desktop completely. > > What I mean by this is that: > > Any text file now open in notepad.exe instead of gEdit. It might as > well open up DosBox with FreeDos' version of EDIT.COM. > Any image file opens up in paint instead of eye of gnome or GIMP. > Any HTML file opens up in WineBrowser instead of epiphany. > > It's impossible to change single file associations because even if I > use the GNOME association stuff, alot of other things still use WINE > stuff regardless and cannot be changed. > > In lenny, none of this happened and everything worked great, however > that changed in Squeeze. Why do WINE associations take priority now > instead of in the past when they did not? > > I use Window Maker with gnome-terminal as my terminal, epiphany as my browser. > > Any suggestions would be very helpful. > Please fill a bug report against wine package :-) Alain -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/201009031038.16541.alain.baecker...@laposte.net
Re: Can't acquire dchp lease while Windows can
Le 31/08/2010 à 10:58, Andrei Popescu a écrit : > On Ma, 31 aug 10, 04:48:36, T o n g wrote: > > Hi, > > > > What might be the problem that my laptop can't acquire dchp lease from > > Linux while Windows can? > > > > Same spot, same line. Tried two different distros that had no problem > > acquiring dchp lease at my home, neither works. Wired network, not > > wireless, but wireless network works. > > > > What might be the reason? Might the network require IPX to acquire dchp > > lease or using wins services? -- just making wild guesses here. > > Is this a dual-boot machine? The DHCP server might ignore unknown MACs. > Are you sending a hostname? AFAIR dhclient is not sending one by default > and maybe the DHCP server is ignoring unknown hostnames as well. > or it can be the switch or At least you should provide us more elements (what does work, what does not) If it is at work, it is very likely that your are NOT allowed to do what you want on your computer and on the network, so you should really ask an admin (not to speak of the time spent, and the security rules you are probably infringing, and the disorder you can introduce in the networked with a ill configured machine) Alain -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/201008311210.19802.alain.baecker...@laposte.net
Re: Can't acquire dchp lease while Windows can
Le 31/08/2010 à 06:48, T o n g a écrit : > > Hi, > > What might be the problem that my laptop can't acquire dchp lease from > Linux while Windows can? > > Same spot, same line. Tried two different distros that had no problem > acquiring dchp lease at my home, neither works. Wired network, not > wireless, but wireless network works. > If you are at office you should ask to network admin. There may be security features on your network that prevent any unauthorised machine from accessing the network. Alain -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/201008310940.35663.alain.baecker...@laposte.net
Re: Backing up email
Le 30/08/2010 à 13:22, James Stuckey a écrit : > On Mon, Aug 30, 2010 at 12:28 PM, Lisi wrote: > > > On Sunday 29 August 2010 17:38:03 James Stuckey wrote: > > > I'm not subscribed to this list. Please reply directly to me. > > > > Read the archives? Temporarily subscribe? You have asked several > > questions > > recently, and you are missing some good replies. > > > > Lisi > > > > Hi, thanks. I've now subscribed to the list. Which good reply did I miss? > you can browse the archive by mail-thread : http://lists.debian.org/debian-user/2010/08/thrd4.html and there you l find your post and all the answers /Alain -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/201008301406.53869.alain.baecker...@laposte.net
Re: Get a list of obsoleted packages
Le 28/08/2010 à 02:49, T o n g a écrit : > > On Fri, 27 Aug 2010 14:04:15 -0600, Javier Vasquez wrote: > > >> . . . Aptitude call a > >> package > >> "obsolete" when it is installed/configured but it is no (longer) > >> available from any of your configured sources. > >> -- > >> Boyd Stephen Smith Jr. ,= ,-_-. =. > > > > Well, similar to the last definition is "orphan". I'm not sure if that > > is what's been looked for... In that case, I suggest "deborphan". > What is your problem here ? one the one hand you ask for advices for choosing tools like a newbie on the other hand you seems to know them rather well and need precise details, but you don't read the documentation. my advide is rtfm, and use your favorite search engine, and last ask on the list :-) Alain PS : i am not a english native speaker, i may lack subtle words. my intend here is to be clear, not rude. -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/201008281043.22026.alain.baecker...@laposte.net
Re: Get a list of obsoleted packages
Le 27/08/2010 à 17:04, T o n g a écrit : > > On Fri, 27 Aug 2010 16:48:58 +0200, Alain Baeckeroot wrote: > > >> I use to get the list of obsoleted packages using aptitude. . . > >> > > obsolete = not up to date = need to be upgraded > > who told you that? rtfm Alain -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/201008280122.50631.alain.baecker...@laposte.net
Re: Get a list of obsoleted packages
Le 27/08/2010 à 16:35, T o n g a écrit : > > Hi, > > I use to get the list of obsoleted packages using aptitude. Now that I'm > planning to remove aptitude, what are the alternatives? > obsolete = not up to date = need to be upgraded => apt-get update # update the package informations apt-get -s upgrade # will show the list of packages that would need to be upgraded but would do nothing Alain -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/201008271648.59327.alain.baecker...@laposte.net
Re: What is Recommend CLI Package Manager Tool for Newb?
Le 27/08/2010 à 14:23, Tom Browder a écrit : > > I have to say I'm getting confused. I'm in the middle of setting up > my first Debian server (which used to be Ubuntu). > > I will be administering it remotely and would like to use the best > tool for the job. > > Now I read conflicting opinions from experienced people about apt-*, > aptitude, and wajit. > > Is there a consensus? my consensus :-) = use whatever you like. I think aptitude is cool as it can be used like apt-get on one line command and with a gui interface when onvoke without arguments. I use both apt-get and aptitude and never had problem Alain -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/201008271445.49781.alain.baecker...@laposte.net
Re: Now lost boot dir
Le 26/08/2010 à 14:09, David Baron a écrit : > > Dead in the water. What to do keeping data in lvm partitions? Best reply off > list also. Thanks for any help! > > I just subscribe to the list and have only the abovz message, which is not enought for me to understand your problem :( Can you (re)explain ? Alain -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/201008261718.30227.alain.baecker...@laposte.net
Re: howto automatically install documentation
Le 25/08/2010 à 21:42, green a écrit : > Some of the -doc packages are recommended by their parent packages, so > installing recommends works for those. But there are some -doc packages that > are not recommended. yes, but names of doc packages are mostly "pkgname-doc", except several where it is like aptitude-doc-en > Should this go in policy somewhere? Or already is? > > And what about some of these new depends types I see like "Enhances"? > Including a "Documented-by" depends type would be interesting... Yes. I had a quick look at all packages: * there are more or less 1500 packageXYZ-doc * on my laptop 1200 installed packages ** 25 *-doc installed ** 250 pkg-doc corresponding to my installed base (quick dirty script to evaluate this) so i miss more than 200 documentation packages ! Alain -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/201008252201.18424.alain.baecker...@laposte.net
howto automatically install documentation
Hi I would like to have all documentation installed each time i add one package. Is there some apt/aptitude/dpkg configuration to automate this ? by documentation i mean all man/info/html/... available with the said package. Alain -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/201008251452.04058.alain.baecker...@laposte.net
Re: How to Retain an Existing Ext4 Partition with a Debian 5.0.5 DVD Installation?
Le 25/08/2010 à 14:31, Tom Browder a écrit : > > On Wed, Aug 25, 2010 at 07:20, Rodney D. Myers wrote: > > On 8/25/10 8:14 AM, Tom Browder wrote: > >> On Wed, Aug 25, 2010 at 06:52, Rodney D. Myers > >> wrote: > >>> On 8/25/10 7:49 AM, Tom Browder wrote: > >> ... > >>>> Can anyone say for sure what will happen during installation with an > >>>> existing ext4 partition to be retained? > > > When installing, and the "experts" will correct me if I'm wring ;-) , > > use the expert system when doing the drive formatting. In there, you can > > mark each partition as keep, ignore, format, etc. Also in there, you can > > assign each partition a mount point as well. > > That sounds good. So I shouldn't have any problems with 5.0.5 > supporting existing ext4 partitions. Lenny does not support ext4 for /boot (maybe / too), but it can manage ext4 for other partitions. https://ext4.wiki.kernel.org/index.php/Ext4_Howto#For_people_who_are_running_Debian http://wiki.debian.org/Ext4 For sure there is a backported kernel with ext4 support, it works flawlessly for me. http://backports.org/ http://packages.debian.org/lenny-backports/kernel/linux-image-2.6-686 Alain. -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/201008251444.05075.alain.baecker...@laposte.net
Re: color temperature of screens // dual screen
Le 25/08/2010 à 00:27, Jordon Bedwell a écrit : > > On 8/24/2010 4:40 PM, Alain Baeckeroot wrote: > > I have a laptop with warm colors (i guess near 5000 K) and an > > additional screen with 6300 K (or 9000 K) > > > > Is there a way to configure Xorg in order to see the same thing > > on both screen ? > > > You need to do that with your monitors. I cannot change anything in my laptop monitor (so temperature is unknown and warm), and my (cheap) external monitor proposes only 6300 or 9000. > You also need to be aware that > luminescence of the monitor plays a big part in it too so 5000K might > look off-ish on another monitor, ok > even with the same panel they can look > different as I have both an LG and a Dell with an LG panel and they look > way different. Considerably different. Thanks for advices. I guess i ll have to stay like this until i buy a new laptop ! Alain. -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20100825.22523.alain.baecker...@laposte.net
color temperature of screens // dual screen
Hi I have a laptop with warm colors (i guess near 5000 K) and an additional screen with 6300 K (or 9000 K) Is there a way to configure Xorg in order to see the same thing on both screen ? Thanks Alain -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/201008242340.02768.alain.baecker...@laposte.net
squeeze radeonhd and openGL
Hi I tested squeeze amd64 with an ATI HD3400 (R600) graphic card. 1/ It works with non-free firmware and driver (fglrx). glxinfo ok glxgears thousands fps extremetuxracer more than 100 fps 2/ i tried with radeonhd driver and miserably failed: glxinfo -> segfault anything with GL -> segfault i tested lincity-ng : * SDL only works * GL -> segfault i followed http://wiki.debian.org/AtiHowTo and now don't know what to do :-( any advice/url/... is welcome Alain. -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/201008101008.01025.alain.baecker...@laposte.net
Re: how to create a new partition for installing another os?
Le 10/08/2010 à 08:12, hadi motamedi a écrit : > Dear All > My Debian server shows three primary partitions and one extended partition > but when I try to add a new partition via fdisk for installing another os it > is returning as 'no free sectors available' . It seems that I have a vast > amount of free space on my disk so please let me know why I cannot add a > partition ? > Thank you > what is displayed with sfdisk -l or sfdisk -l /dev/yourdevice -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/201008100928.28861.alain.baecker...@laposte.net
Conserving permissions on samba share
Hi all, I have a shared folder (shared by samba on debian lenny), accessible from windows clients in which I have a folder example and his subfolders with the following : example drwxr-x--- proprio:users |-dossier1 drwxrwx--- proprio:group1 |-dossier2 drwxrwx--- proprio:group2 |-dossier3 drwxrwx--- proprio:group3 I want to duplicate (copy, paste and rename) this folder and want that the rights of the new folder (and his subfolders) are the same that the original folder. Actually if I copy past and rename, I have : newfolder drwxr-x--- proprio:users |-dossier1 drwxrwxr-x proprio:users |-dossier2 drwxrwxr-x proprio:users |-dossier3 drwxrwxr-x proprio:users How can I duplicate a folder (and his subfolders) without resetting the permissions (from windows client of course) ? Is it possible ? Thanks a lot for your help Alain (and sorry for my poor english)
KDM
Thanks, Debian-marketing 2 hours wasted for that!!! the basic user is stupid; the admnistrator thinks for him !!! By default, PLEASE peace to the normal user!! KDE has the right tools, debian brokes them. For what? KDM in Debian = This package comes with a copy of the KDM handbook in docbook format. To read it, run "khelpcenter help:/kdm" from a command-line or go to the URL "help:/kdm" in konqueror. By default, the use of special graphical themes with KDM is disabled. If you wish to use the 'Circles' theme that comes with the kdm package, or any other theme that you have installed, you should research the 'UseTheme' and 'Theme' fields in /etc/kde3/kdm/kdmrc. This can be done by browsing this URL in Konqueror: help:/kdm/kdm-files.html#kdmrc-greeter KDM Customization = We provide a way to override theme-related values normally set in the master configuration file (kdmrc): * USEBACKGROUND * BACKGROUNDCFG * USETHEME * THEME and background configuration file (backgroundrc): * WALLPAPER You just need to create a file with overridden value(s) and put it in kdm override directory (default is /etc/default/kdm.d). -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: etch installer hanging on packages
On Fri, 2007-03-02 at 11:13 -0500, Kevin Scott Sumner wrote: > Hi all, > > We've been using preseeds with etch since December for testing. Recently, > something has broken these installs. I suspect the recent key switch on the > repositories. I filed a bug report for this (Bug#412378), and a fix will be in etch within a few days. -- Alain Kalker -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Login on XDM/KDM/GDM doesn't work properly
Hello List, My problem is that when I try to log in using a desktop manager like XDM/KDM/GDM some keys won't work while some others work just fine. When starting X11 using "startx" the problem won't occur. I put the Xorg log file and my xorg.conf file on my server. If anyone finds problem, I'd be glad to hear about it. Greets, Alain M. Lafon Attachements: http://gefechtsdienst.de/preek/daten/Xorg.0.log http://gefechtsdienst.de/preek/daten/xorg.conf -- Alain M. Lafon Pfaffenwaldring 48G, 70569 Stuttgart ''_.._'' Tel.: +49711/9734074 ·|= =|· http://www.gefechtsdienst.de/preek \||/ signature.asc Description: Digital signature
Re: debian install withouth cdrom boot
Hey there, > i'm want to install debian on a very old system (pentium 1),but the bios does > not support cdrom boot. > how can i install debian ? Just search for Debian "Potato". This revision of Debian was stable before Woody(the predecessor to Sarge) came out. IIRC it was available on 7 FDDs or so. I once set up a dual P90 Homeserver-system. But please - when you write to this group again - use the regular conventions. I.e. put a newline after writing 80 characters in one row. Will you? Have fun with your computer, Alain M. Lafon -- Alain M. Lafon Pfaffenwaldring 48G, 70569 Stuttgart ''_.._'' Tel.: +49711/9734074 ·|ø ø|· http://www.gefechtsdienst.de/preek \||/ signature.asc Description: Digital signature
Re: Not debian specific, but please help me ....
You can set your "umask" to 002 instead of 022 (the default on most Unix setups). Just add the following line umask 002 in ~/.bashrc and/or ~/.bash_profile files, for yourself and other people belonging to the related group. Hope this helps. Alain Roberto a écrit : Hi all, I can't find how to set a defult and convenient attribute mask when file are created on linux. I need a whole group can write file created by anyone in the group. So I need the g=rw be the default permission at file creation. Actually I get g=r only by default Thank you very much Roberto -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Exim on Debian via ADSL line (no permanent IP address)
Thank you for the feedback. As you proposed I checked (and tried different set-up) with the smarthost but without any positive result. I agree that as I do not have a fixed ip address I am fitting the criteria for inclusion in the DUHL. But I still have one question: why can I send email from outlook express, running on my other pc but connecting the net via the same non fixed ip address? Alain -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Exim on Debian via ADSL line (no permanent IP address)
I have a Debian server at home running Exim as mailer program. I am connected via an ADSL line and do not have a permanent IP address. I am using my server and mailer to send result from forms submission to several external addresses. Recently several ISP have started to reject my email messages. Looking to the Exim main log, it seems two common reasons are: 'access denied; your IP is listed by rbl-plus.mail-abuse.org.' Or 'Your server 8.155-136-217.adsl.skynet.be [217.136.155.8] is liste d by the blacklist dul.dnsbl.sorbs.net. Please contact your Dial-Up/DSL/Network ISP Provider. (http://www.dnsbl.us.sorbs.net/DUL-FAQ .html)' I also have error messages specifying that my IP address is not a fixed one and due to that the message is rejected. I contacted my ISP to ask him to remove the block of ip addresses from the blacklist server but it does not seem to progress well. I suppose I should be able to resolve this issue by a proper Exim configuration. As I am able to send email messages from another PC using Outlook Express without having such a problem, I suppose it is 'only' a question to correctly configure the mailer on my server? Well, I hope someone will be able to help me. Alain http://www.aussieworld.com -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: make debian package of php 4.3.5 for debian woody
S.D.A. wrote: On Sat, Apr 03, 2004 at 06:46:55PM +0300 or thereabouts, Alain wrote: Hi, I would like to install php 4.3.5 on my debian woody, (which is not available from apt-get stable source->) for that it seems that I have to build my own package, but I am not sure how to do it right: I have used tar source of php-4.3.5, did apt-get build-dep package and then tried dpkg-buildpackage ... without success, getting same error 'unable to determine source package' Please somebody help me! I have PHP 4.2 installed on Woody from a backport. You might wish to check backports.org to see if there is a backport available for Woody (PHP 4.3.x). I doubt it though as 4.3 is relatively fresh. Wasn't it just released? yep, quite fresh, but.. got it installed! :) So, people with same kind of problem, one address: apt-get.org -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
make debian package of php 4.3.5 for debian woody
Hi, I would like to install php 4.3.5 on my debian woody, (which is not available from apt-get stable source->) for that it seems that I have to build my own package, but I am not sure how to do it right: I have used tar source of php-4.3.5, did apt-get build-dep package and then tried dpkg-buildpackage ... without success, getting same error 'unable to determine source package' Please somebody help me! -Alain- -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
gnomemeeting/kde madness
Greetings List, I'm using debian sarge, and am trying to install gnomemeeting using apt-get Apt-get however insists on deleting everything related to kde before it wants to install the necessary libs for gnomemeeting. What's this for madness then ? Can't i have both gnome and kde living happily side by side when running debian ? Surely there must be a way ! Did i not do something i should have, or is something other going on ??? This is what i get when attempting to install gnomemeeting: subzero:~# apt-get install gnomemeeting Reading Package Lists... Done Building Dependency Tree... Done The following extra packages will be installed: libbonoboui2-0 libbonoboui2-common libfam0c102 libgnome2-0 libgnomeui-0 libgnomevfs2-0 libgnomevfs2-common The following packages will be REMOVED: kate kchart kdebase-libs kdelibs3 kdelibs3-bin kformula kivio koffice koffice-libs kontour koshell kpresenter kspread kugar kword libfam0 libkonq3 The following NEW packages will be installed: gnomemeeting libbonoboui2-0 libbonoboui2-common libfam0c102 libgnome2-0 libgnomeui-0 libgnomevfs2-0 libgnomevfs2-common 0 packages upgraded, 8 newly installed, 17 to remove and 2 not upgraded. Need to get 978kB/2181kB of archives. After unpacking 51.5MB will be freed. Do you want to continue? [Y/n] n Abort. It seems pretty ridiculous to me that apt-get wants to remove all kde related files in order to install one gnome program. What's going on ??? Regards, Alain -- "I am too sexy for my code" Awk Sed Fred -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Riblio - VersaBar Barcode Sofware
Title: Hello Hello, re: Riblio - VersaBar Barcode Software We are actively seeking a locale distributor in your area. This offer is extended to you as a value added reseller of automated data collection products and services. We offer a low MSRP and a high gross profit margin. Riblio- VersaBar is the simplest barcode software but delivers a sophisticated, yet easy to use Graphical User Interface (GUI) for designing "out of the box" labeling systems with no programming required! Visit our site and try our demo found at www.riblio.com. We look forward to the privilege of becoming part of your company team by providing you with the newest and most up-to-date product in this exciting and constantly evolving industry. Let Riblio Software help you attain your business goals! Regards, Alain (Al) Gauthier 416-259-1642 230 Brown's Line Toronto, Ontario Canada, M8W-3T4 [EMAIL PROTECTED] www.riblio.com -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: update kernel 2.4
I am very new in the linux and Debian field but I am trying to learn and make errors Ihave attempted to upgrade from kernel 2.2.17 to to 2.4 using apt get deb http://people.debian.org/~bunk/debian potato main This fails, and I lost etho connection I go the following message running apt-get update or dselect, I get the following output : could not stat source package list.. /var/state/apt/lists/http..main _binary -i386_Package (2 No such file or directory) W: You may want to run apt-get update to correct the missing files E: some index files failed to download, they have been ignored, or old ones used instead I am stuck and help would be appreciated Alain Blanchetot
Unidentified subject!
unsubscribe
Problem with a 2 GB+ Fujitsu SCSI disk, model M2952SYU
Allô, I have a 2 GB+ Fujitsu SCSI disk, model M2952SYU, dated 1997, that I have "liberated" from a clumsy 9x system. Under that system and also when I used it with different Linux distrib thereafter it did not work properly. It would "tik" and then I would get a disk error message. This was a year ago, and I cant remember exactly the nature of the error messages. Something like "time-out" or "scsi reset complet" I think it also went on spinning and spinning. At one point I also though it had a bugged sector. I ran no 9x so I couldn't run an antivirus. Finally, it seems to heat up quite a bit over what I fealt was reasonnable. Now, I would like to make good use of it. I see I few pins where crushed in the center part of the disk male connector. I dont know if this was there before. Could it be the cause of all the problems? I didnt have a diagram for the 8 jumper settings and none where already there. Maybe I did not figured that out properly. Does someone have a diagram ? I am afraid that I will not succeed in installing that disk on my multi-Linux box without disrupting or, worse destroying my installed distribs. Can I connect it in the SCSI chain safely even it is not working properly to test it ? What about bugs, overheating... Thank you in advance for your comments and solutions, Alain
0x10 error; the /home of a MDK to appear "magically" in the /ect/fstab of a Debian ?
Allo, CONTEXT I work with a Debian which takes half the partitions of a disk, and my daughters surf along with a Mandrake that takes the other half of the partitions on the same disk. I boot normally from hard drive with /dev/sda2 mounted as /. They were, up to a few days ago, booting from floppy with /dev/sda1 mounted as /. We shared some partitions, that is : /dev/sda3-ext2 mounted as /espace on that same hard disk, and /dev/sdb2-ext2 mounted as /ziplinux and /dev/sdb4-fat mounted as /zipdos on a zip drive. I recently transfered a lot of stuff between our respective partitions using those shared partitions. I have also copied a lot on floppies. At one point, the Mandrake requested fsck on the zip and maybe other partitions, and I answered yes to all question asked by this utility program. I dont know if it is related, but I cannot boot the Mandrake from the floppy no more. At boot, just after loading of the linux label or rescue label, I get an 0x10 error message (I have also seen 0x80 at one point. QUESTIONS Question 1 : is it fatal ? Question 2 : What matters most are the documents of my daughters. How then can I have the partition /dev/sda11 which is the /home of their Mandrake distrib appear "magically" in the /etc/fstab of my Debian ? Question 3 : If I reinstall either my Debian or their Mandrake, can I still recover my old or their old /home, /usr/local... ? Thanks for your precisious help. At this point, I feel "broken" because I can't find a solution in my readings and I am wearing out. Alain
Re: X on a 486 (Debian can serve the purpose of recycling)
> Is there window manager which is low on system resources so I could set up X > on this 486? Allô, It is a shame that olvwm has not evolved to be more competitive on the wm's list. I have set up a 486DX2-66, with 16MB RAM and low mem Trident VLB video card, on top of which I run olvwm. Works clean and fast for a relatively small resources footprint. I believe the original question should be restated, something like: what wm part of the Debian distributions is better suited for the equipment we usually find inside 486's? The main obstacle to running GNU/Linux systems and their wm on a 486 is not processing power itself but rather poor RAM, poor HD, and, of course, poor video display device. Right ??? If so, considering upgrading the hardware - at very low cost that is to say - would appear to be a valid solution to running window managers on a 486. Thus, add 4 extra mb of ram, find a 1 MB video card, add a second or third small IDE drive... AR
RE: corel uninstallable
Le lun, 22 mai 2000, Dominic Blythe a écrit : > -Original Message- >> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] >> after 1/2 seconds "error 0x10" appear beneath previous message, cdrom spins >> again, same msg again and again and again Hi, Have you tried that same installation CD on another computer ? AR
Re: Stuck...
Le sam, 20 mai 2000, w trillich a écrit : > > Hazelwood wrote: > I have typed in numerous characters and numbers to no avail. > > Trillich answered : > if you say 'to no avail' to mean 'nothing happens' > then maybe your keyboard isn't configured correctly...? > try 'help' or 'man ls' or 'startx'... I always also suggest to try 'mc' (assuming MidNight Commander is installed) because it is always a good feeling for a new user to go as far as a file manager of some sort -in this case a very good one. Nothing means more when you begin than knowing you have something like a copy, edit, delete control over the beast. ! And If you go that far, please use the 'see' command of MC to look at files in /etc. You will immediatly feel you have just successfully made a first step in the new world of freedom. Good luck ! AR > -- > Unsubscribe? mail -s unsubscribe [EMAIL PROTECTED] < /dev/null
Howto re-configure an already configured package ?
Hi, Howto to re-configure an existing package ? and howto to force interactive mode when configuring with dselect? I would like to re-configure dpkg-ftp package due to a proxy... other scripts than dselect ? Thanks -- Alain Papazoglou
Debian ISDN connection configuration prob
Hi, Can someone help get out of my ISDN potato configuration problems? I made the following changes device.ippp0: LOCALMSN= 4 last number of the caller REMOTEMSN= ISP phone number LEADINGZERO='' I have entries in chap-secrets et pap-secrets, these entries were created with pppconfig. The resolv.conf files is ok, the ethernet inferface is properly configured. What i do not understand is when i try to connect, i m being disconnected after the timeout. How do i tell ipppd which provider to use? Do i have to connect with '/etc/init.d/isdnutils start'? Thanks for your help. Remark: * it's working under NT, so the hardware and cabling are ok
Problem with SCSI controller DPT PM2654U2
Hello, I've got some problems when installing Debian GNU/Linux on a COMPAQ Proliant 1600R (2x cpu 550MHz - 655 Mb RAM - 4x 9Gb Ultra 2 SCSI). I want to have a RAID 5 array with a DPT PM2654U2 SCSI controller. I need to compile a linux kernel supporting this controller. So i used the source code provided on the DPT web site. The new kernel is copied on the rescue floppy (from slink or the more recent rescues floppy in the frozen distrib.). I made tests using DPT code source and linux kernel 2.2.(5|13|14). During the boot process, the DPT hardware is well probed and i can see one 26 Gb SCSI hard drive. The partition process is ok. Problems occurs when mke2fs is launched on a 1GB partition. The mke2fs is very very very slow. Sometimes there are error messages (time out error messages). If a test on a 500 Mb partition, mke2fs is very slow too. DPT said to me that the problem is caused by a error in the SCSI termination. I check this and it's ok. To test/check i've installed NT 4 and i/o are very fast on the RAID 5 array. Then DPT said to me that only RedHat is supported... I don't know if i'm wrong but linux kernel is the same for all distributions ! Thought it is, RedHat 6.1 works very well on this server (sic). The linux kernel in this distribution is 2.2.12. I used the floppy provided by DPT and containing the compiled driver. I don't understant why all is ok with RedHat and not with Debian. Any idea ? Regards, -- Alain FORCIOLI ``Who belong to the Dream Starting 5 ?'' --- RISC Technology http://www.risc.fr/ [EMAIL PROTECTED] APRIL http://www.april.org/ [EMAIL PROTECTED] Debian GNU/Linuxhttp://www.debian.org/ --- "Resistance is futile. Open your source code and prepare for assimilation."
Booting problem with AMD Athlon
Hi, I recently bought Debian 2.1 and I tried to install it on my brand new PC. However I was not capable to make it to the installer. When I start from the CD-ROM, I see the boot: prompt, I hit return and then it starts loading stuff, like a normal boot does. However, when it arrives at the line NCR53c406a: no available ports found it hangs there. The cursors waits at the beginning of the next line. Here is my transcription of the log: ... VP_IDE: IDE controller on PCI bus 00 dev 39 VP_IDE: not 100% native mode: will probe irqs later ide0: BM-DMA at 0xffa0-0xffa7, BIOS settings: hda:DMA, hdb:pio ide1: BM-DMA at 0xffa8-0xffaf, BIOS settings: hda:DMA, hdb:pio hda: JUBITSU MPE3136AT, ATA DISK drive hdc: ATAPI CD-ROM DRIVER 40X MAXIMUM, ATAPI CDROM drive ide0 at 0x1f0-0x1f7, 0x3f6 on irq 14 ide1 at 0x170-0x177, 0x376 on irq 15 hda: FUJITSU MPE3136AT, 13031MB w/512kB Cache, CHS=1661/255/63 hdc: ATAPI 40X CD-ROM drive, 128 kB Cache Uniform CDROM driver Revision: 2.55 Floppy drive(s): fd0 is 1.44M FDC 0 is a post-1991 82077 md driver 0.36.6 MAX_MD_DEV=4, MAX_REAL=8 NCR53c406a: no available ports found _ (hangs here) I looked in the Learning Debian book for boot arguments, and I found NCR53c406a corresponded to NCR 53c406a-based SCSI host adapters: I have NO SCSI device on my computer, I only have an IDE HD. Therefore I find rather normal that it cannot find 'ports' for it since there are none. I tried using max-scsi-luns=0 (and =1) arguments to prevent it to scan for SCSI device...it still hangs at the same point. I tried using ncr53c406a=0 to disable interrupts and it didn't work too I also tried disabling several BIOS options that could have lead to trouble...no luck. But, when I gave boot arg pci=off, I got 2 extra lines before hangs: NCR53c406a: no available ports found eata_dma: No BIOS32 extensions present. This driver release still depends on it. o Skipping can for PCI HBAs. Some people told me that, because of my Athlon processor, I should try boot floppies with potato. I made the floppies and was able to boot from the rescue floppy. It asked me for the root disk and I put it in. It loads the the ramdisk, free some memory, then freezes. here is the log: VFS: Insert root floppy disk to be loaded into RAM disk and press ENTER RAMDISK: Compressed image found at block 0 VFS: Mounted root (ext2 filesystem) readonly. Freeing unused kernel memory: 140k freed _ Here is the list of my hardware: AMD Athlon 550 Mgz 1 IDE hard-disk: 13 gig 128 meg of RAM Nothing SCSI FUJITSU motherboard (AMI BIOS ) Sceptre Monitor 17 inch (VGA comptible) S3 Trio3D/2X cheap graphic card Ethernet card: StarTech Do you have any idea of what could be wrong? Thanks, -Laurent Birtz <[EMAIL PROTECTED]> Alain Birtz Qc, Canada Internet: [EMAIL PROTECTED], [EMAIL PROTECTED]
Lilo : invalid partition table
Hi all ! Thank for your job ! I have some problem to boot Linux I've install on a Pentium Pro. It has two SCSI disk : /dev/sda : First is win98.->2GB /dev/sdb : Second for Linux ->400Mo I success to boot Linux via floppy disk but I want install Lilo on the hard drive. When I try, lilo say : device 0x0800 Invalid partition table 1st entry 3D Adress 1/1/0 (32) Linear Adress 32/1/0 (63) mmm ... So I take fdisk on /dev/sda : (Message about Lilo and disk >1Go ... but I success to install it on IDE hard drive with 3Go and no problem so ?) Partition /dev/sda1 * 1 1 2032 2080386 3 DOS 16 bit=>32M Partition 1 does not end on cylinder boundary : phys(258,254,63) should be (258,63,32) So there is a problem with the hard drive with win (...). I try a fdisk /mbr under dos. No effect. Partition /dev/sda1 is active. I try to pass param disk,bios,secteur,heads,cylinders with param of fdisk.No effect. You have idee ?
Re: What DO you lose with Linux ???
On Sun, Mar 28, 1999 at 12:49:27PM -, [EMAIL PROTECTED] wrote: > Today' London "Sunday Times" feature "Innovation" (pp 10-11 of "News > Review", http://www.sunday-times.co.uk ) has an article by David Hewson > (of "Linux, the Program from Hell" fame) entitled "Linux wins backing of > computing giants". I did not see that article but have read his stuff before. He is a M$ fan, I very much get the impression that he doesn't have a wide computer experience, in such people the attitude is often ``although the system that I use may have warts, it is better than everything else''. > However, he states: > > "Behind the hype there is precious little sign of Linux becoming >a serious, versatile desktop OS. If all you need is a browser >to get through the day, it's fine. But if I boot the PC I am >using right now into any kind of Unix the list of stuff I lose >-- music composition, accounting and personal finance to name >but a few -- is endless because the applications just aren't >there. On top of that, Linux is difficult to set up, fails to >understand the difference between a desktop PC and a notebook, >and lacks any kind of plug and play facility." > > I'm sure the last sentence is simply wrong in point of fact. I have been running Linux on me Gateway laptop for 3 years, very few problems (except some hardware ones). One of the great things is that it does understand suspend/resume, so it goes for weeks between reboots, often changing IP address several times in a day as I move around to/from customers. I was inflicted with NT on a notebook last year, it could not handle suspend/resume & a reboot was forced if I tried to change IP address. I used my personal Linux box so that I could get some work done -- the main problem was weight, carting 2 laptops + papers around get heavy. Finance: I use cbb (tcl/tk program) to handle by cheque books, it isn't really personal finance but I would find it very difficult to go back to doing it on bits of paper. GNUMoney is under development, but not complete; there are a couple of other finance projects out there. I think that many of us have misunderstood the question and have understood ``can we do XXX under Linux''. Well, the answer is probably ``yes - but you may need to pay for it (and use a SCO/IBCS application)''. But the answers that we have proposed have all been Open Source applications, because this is what we *understand* Linux is, and so look for Open Source applications. It must be agreed that in terms of real ``dumb blonde'' personal productivity there are holes in what Open Source apps are available and nicely integrated. But that is changing rapidly. The other problem that faces someone peeping over the hedge from M$ Windows land is ``where to find the applications''. There aren't so many magazines reviewing Linux apps as there are reviewing M$ apps. If you walk into your local high street computer store you will probably see a few boxes of RedHat/Suse/..., and hundreds of boxes of M$ games, finance apps, music composition, ... This means that if you want these apps you need to know where to look and you really need an internet connection. Hewson is lazy, he hasn't really put in the research/investigatory work that most people would assume is behind the article - but it can be easy to get started. I would suggest that one of us (Ted ?) collect the information and mail it to him - not all of us. Many people are (quite reasonably) not interested in: finding, downloading, compiling these Linux apps. I think that it also shows a great market opportunity for someone to put out CDs of collections these Linux apps, The problem is that many of them are still changing rapidly. It will come. Enough words. Cheers -- Alain Williams
Re: XDM
> Assuming that you have hamm installed. It's not the case in slink. > Sasha. it's not xfree86,it's a commercial one (doesn't remember it though). Alain T.
absolute beginner again
Thanks to all for your answers I am ok with .gz files now ! But it appears I started the wrong way ! each time I want to read email or access to the web I have to reboot and goes back to windows, then go back to linux try etc.. So first thing is to get connected under linux. I tried to configure a PPP connection at the install but it does not seems to work. I dont even know if Linux knows I have a modem. So what do I have to do to have a ppp connection, get my mail, and browse the web (...h by the way ftp will not be bad as well) Alain Cadenat [EMAIL PROTECTED] http://www.agoratec.com
absolute beginner !
Hy all, I am an absolute beginner in linux and Debian I have just download and (successfully) installed the base debian linux. It runs properly on the same hard disk of windows 95 ! (hmmm not too bad for a beginner no ?) But now.. I dont even know how to read the .gz files in /usr/doc I wish also to install an X11 interface. Where can I find one and how to install it ??? Thanks for weloming me in the linux community Alain Cadenat [EMAIL PROTECTED] http://www.agoratec.com
Re: SuperDisk Drive
they're supported in development kernel (at least in 2.1.103 and upper),i don't know for stables kernel. Alain > Hi, > > I would like to know if the SuperDisk Drive is supported, and how to use it ? > > It's a parallel port drive using 120 Mo floppy. It can be put on the printer > port drive. It's also backward compatible with 3.5inches floppies (720Ko and > 1.44Mo). > > Thanx, Max > > > -- > To UNSUBSCRIBE, email to [EMAIL PROTECTED] > with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED] > > > -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: How do I setup /dev/cdrom ?
i have the same problem,my cdrom is no more accessible (though it's not a indrance for now),i have a pioneer ATAPI CD drive,a regular ide card and the drive is properly configured as slave (my Hard Drive is master),i did not have the problem before when i was having Ontrack Disk Manager but i have removed it knowing linux can work with big drive,but since then,the CD drive stopped working,here's my lilo.conf: boot=/dev/hda2 root=/dev/hda2 compact install=/boot/boot.b map=/boot/map vga=normal delay=20 image=/vmlinuz label=Linux read-only do you know if adding the linear parameter would help ??? Thanks a lot. Alain -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]