[DNG] "Common knowledge?"-question

2016-01-22 Thread Rainer Weikusat 
Can the effect of the following C function

static void print_start(char const *name, char const *what)
{
char *buf, *p;
unsigned name_len, what_len, total;

name_len = strlen(name);
what_len = strlen(what);
total = name_len + what_len + 3;

p = buf = alloca(total);
memcpy(p, name, name_len);
p += name_len;
*p++ = ' ';
memcpy(p, what, what_len);
p += what_len;
*p++ = ':';
*p = ' ';

*buf &= ~0x20;

Write(2, buf, total);
}

be considered obvious or should it rather get an explanation?

An ASCII lowercase letter can be turned into the corresponding uppercase
letter by clearing the sixth bit.
___
Dng mailing list
Dng@lists.dyne.org
https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng

Re: [DNG] Apparently Jessie has runit

2016-01-22 Thread Joel Roth 
Rainer Weikusat wrote:

> Joel wrote:

> > How complicated is it to port such scripts to runit? Exim4's
> > init.d script is 275 lines.
> 
> This depends on what you mean by "port", ie, do you just want the start
> command, as was suggested elsewhere, or do you want to keep some of the
> other features?

Well, some study is obviously needed, since I have no idea
what those features are! So it makes sense to start with 
simpler cases. .

Regards,

Joel

-- 
Joel Roth
  

___
Dng mailing list
Dng@lists.dyne.org
https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng

Re: [DNG] Does dunst require dbus?

2016-01-22 Thread Didier Kryn 

Le 22/01/2016 06:09, Steve Litt a écrit :

Yes! After the last time I did an rm -rf on my laptop, only to discover
it was in an ssh session to my main computer where I didn't want to
delete anything, I always use different color terminals for ssh
sessions and for root sessions. Roxterm's file based "profiles" make it
trivial to have as many of those as you want. Priceless!


Here is how I set prompt colors in .bashrc, depending on user:

For myself:
PS1='${debian_chroot:+($debian_chroot)}\[\033[01;32m\]\u@\h\[\033[00m\]:\[\033[01;34m\]\w\[\033[00m\]\$ 
'


For www-data:
PS1='${debian_chroot:+($debian_chroot)}\[\033[01;35m\]\u@\h\[\033[00m\]:\[\033[01;34m\]\w\[\033[00m\]\$ 
'


For root:
PS1='${debian_chroot:+($debian_chroot)}\[\033[01;31m\]\u@\h\[\033[00m\]:\[\033[01;34m\]\w\[\033[00m\]\$ 
'


Of course background colour can't be set by this simple way. But note 
that this colour setting is also available in xfce4-terminal and in 
gnome-terminal. BTW, I've read some of ROX's docs and they say many 
applications were forked from Gnome.


Didier

___
Dng mailing list
Dng@lists.dyne.org
https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng

Re: [DNG] Apparently Jessie has runit

2016-01-22 Thread Steve Litt 
On Thu, 21 Jan 2016 21:34:31 -1000
Joel Roth  wrote:

> Steve Litt wrote:
> > On Wed, 20 Jan 2016 21:20:26 -1000
> > Joel Roth  wrote:  
> > > 
> > > Hi Steve,
> > > 
> > > How complicated is it to port such scripts to runit? Exim4's
> > > init.d script is 275 lines.
> > > 
> > > Joel  
> > 
> > Hi Joel,
> > 
> > According to http://smarden.org/runit/runscripts.html#exim , Runit's
> > run script for Exim should be:
> > 
> > =
> > #!/bin/sh
> > exec /usr/local/sbin/exim -bdf -q30m
> > =  
>  
> > Because the preceding doesn't contain "exec 2>&1", I would guess
> > that Exim does its own logging and doesn't need Runit to provide a
> > log for the Exim daemon.
> >   
> Thanks. Yes I eventually stumbled on this. And as you say,
> it is possible to drill down through the init script to 
> get just a few essential lines and environment settings.
> 
> I guess the biggest problem is that I have 78 working init
> scripts, so it would be a gradual process to switch over to
> runit. I guess if I can start runit under sysvinit, I could
> move services one by one.

Exactly! I forgot to mention this, but you can use runit either as a
PID1 init to replace sysvinit, or as a daemontools-like process
supervisor that gets called from sysvinit's PID1. Instructions for
doing the latter are here:

http://smarden.org/runit/useinit.html

Joel, you were on the Debian-user list in the bad old days, so you
remember me saying that I always used djb's daemontools *in addition
to* sysvinit, and in fact regularly migrated S31_myservice type service
instantiation to daemontools for two reasons:

1) MUCH easier to understand what the heck is going on
2) Respawning

My point is that, even if one has no intention of ever using Runit as
PID1, a sysvinit/Runit hybrid is a very nice thing.

And of course, if you *do* intend to switch over to a full Runit init,
once you have all 78 or your services runitized, making the cutover is
a matter of making sure your /etc/runit/1 2 files are ready to
start early one-shot processes, and file 3 is ready to cleanly shut
down the computer. Then you just change the init= in your bootloader
from the sysvinit executable to the runit executable.

> 
> Like you, I don't expect to run heavy-weight GUI
> environment, so I think a lot of fat could be cut away. Just
> that it's also running code ;-)
> 
> I hope I can find time to fiddle with this.

Start by using Runit as a process supervisor started by sysvinit. I
predict you'll love it.

SteveT

Steve Litt 
January 2016 featured book: Twenty Eight Tales of Troubleshooting
http://www.troubleshooters.com/28


___
Dng mailing list
Dng@lists.dyne.org
https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng

Re: [DNG] what is sssd?

2016-01-22 Thread Rowland Penny 

On 22/01/16 17:38, Rob Owens wrote:

- Original Message -

From: "Rowland Penny" 
On 22/01/16 16:02, Rob Owens wrote:

One thing it can be used for is offline authentication for LDAP users.  I am
currently using sssd on a Funtoo laptop for this purpose.  When I have no
network access (no access to the LDAP server), my users can still log in.


As I said, I cannot think of anything that sssd can do that winbind
doesn't, or to put it it another way, you can do that with winbind. See
here: https://wiki.samba.org/index.php/PAM_Offline_Authentication


It looks like I'd need to have a Windows domain (could be via Samba) to
make that work.  Is that correct?  I've got Linux-only LDAP authentication,
so I'm not using a domain.




Whilst it does work with an AD domain, I am sure it will work with a 
samba ldap system. If you look at the bottom of the page I linked to, it 
was last updated in 2007 and Samba 4 didn't exist then :-)


Rowland

___
Dng mailing list
Dng@lists.dyne.org
https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng

Re: [DNG] "Common knowledge?"-question

2016-01-22 Thread KatolaZ 
On Fri, Jan 22, 2016 at 09:34:28PM +, Rainer Weikusat wrote:
> Can the effect of the following C function
> 
> static void print_start(char const *name, char const *what)
> {

[cut]

> be considered obvious or should it rather get an explanation?
> 


katolaZ said:

Well, it will depend on the audience. It's a pretty basic example and
if one has got some expeience of writing C code would get it at the
first read (even without your explanation at the end, I guess). If the
audience is a freshman module in programming, I wouldn't use it as a
first example ;)

KatolaZ said

-- 
[ Enzo Nicosia aka KatolaZ --- GLUG Catania -- Freaknet Medialab ]
[ me [at] katolaz.homeunix.net -- http://katolaz.homeunix.net -- ]
[ GNU/Linux User:#325780/ICQ UIN: #258332181/GPG key ID 0B5F062F ]
[ Fingerprint: 8E59 D6AA 445E FDB4 A153 3D5A 5F20 B3AE 0B5F 062F ]
___
Dng mailing list
Dng@lists.dyne.org
https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng

Re: [DNG] "Common knowledge?"-question

2016-01-22 Thread Dr. Nikolaus Klepp 
Am Freitag, 22. Januar 2016 schrieb Rainer Weikusat:
> Can the effect of the following C function
> 
> static void print_start(char const *name, char const *what)
> {
> char *buf, *p;
> unsigned name_len, what_len, total;
> 
> name_len = strlen(name);
> what_len = strlen(what);
> total = name_len + what_len + 3;
> 
> p = buf = alloca(total);
> memcpy(p, name, name_len);
> p += name_len;
> *p++ = ' ';
> memcpy(p, what, what_len);
> p += what_len;
> *p++ = ':';
> *p = ' ';
> 
> *buf &= ~0x20;
> 
> Write(2, buf, total);
> }
> 
> be considered obvious or should it rather get an explanation?

just out of couriosity: why don't you use "strcat"?


-- 
Please do not email me anything that you are not comfortable also sharing with 
the NSA.
___
Dng mailing list
Dng@lists.dyne.org
https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng

Re: [DNG] git.devuan.org upgrade

2016-01-22 Thread hellekin 
On 01/20/2016 12:27 PM, hellekin wrote:
> Hello,
> 
> git.devuan.org will go down for a scheduled upgrade on Friday, January
> 22nd, in the (EU) evening.
> 

I am timezone-challenged :)  Hope everything is fine.  Please report any
anomalies.  Happy hacking!

==
hk

-- 
 _ _ We are free to share code and we code to share freedom
(_X_)yne Foundation, Free Culture Foundry * https://www.dyne.org/donate/
___
Dng mailing list
Dng@lists.dyne.org
https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng

Re: [DNG] "Common knowledge?"-question

2016-01-22 Thread Peter Olson 
> On January 22, 2016 at 4:34 PM Rainer Weikusat
>  wrote:
> 
> Can the effect of the following C function
> 
> static void print_start(char const *name, char const *what)
> {
> char *buf, *p;
> unsigned name_len, what_len, total;
> 
> name_len = strlen(name);
> what_len = strlen(what);
> total = name_len + what_len + 3;
> 
> p = buf = alloca(total);
> memcpy(p, name, name_len);
> p += name_len;
> *p++ = ' ';
> memcpy(p, what, what_len);
> p += what_len;
> *p++ = ':';
> *p = ' ';
> 
> *buf &= ~0x20;
> 
> Write(2, buf, total);
> }
> 
> be considered obvious or should it rather get an explanation?
> 
> An ASCII lowercase letter can be turned into the corresponding uppercase
> letter by clearing the sixth bit.

I'm unhappy for two reasons:

  the failure mode of alloca is SIGSEGV or some other malfunction and there is
no way to test for it

  the *buf &= ~0x20; breaks for UTF8 strings.

Nevermind that the function implicitly references stderr except when it doesn't.

Peter Olson
___
Dng mailing list
Dng@lists.dyne.org
https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng

Re: [DNG] what is sssd?

2016-01-22 Thread Rob Owens 
One thing it can be used for is offline authentication for LDAP users.  I am
currently using sssd on a Funtoo laptop for this purpose.  When I have no 
network access (no access to the LDAP server), my users can still log in.

Previously I had used pam-ccreds for this.  Both pam-ccreds and sssd require
changes to the pam.d files in order to work for offline authentication.  I am
not a PAM wizard, so I had a lot of trouble getting this done.  I never really
got it working right with pam-ccreds, but I managed to stumble upon a working
configuration with sssd.  

That is not an endorsement of sssd, necessarily -- I think if I was more 
knowledgeable about PAM I could probably get either one working.  I would 
prefer to use pam-ccreds only because it has a much more limited scope than
sssd seems to have.  If I recall correctly, pam-ccreds needs to be used in
combination with nslcd for offline LDAP authentication.

-Rob

- Original Message -
> From: "Dr. Nikolaus Klepp" 
> To: dng@lists.dyne.org
> Sent: Friday, January 22, 2016 8:23:46 AM
> Subject: [DNG] what is sssd?

> Does anybody know what sssd is good for? I was a bit surprised to see a whole
> bunch of these sssd-something packages in debian, while I was searching for
> sss. It's homepage says:
> 
> "SSSD is a system daemon. Its primary function is to provide access to 
> identity
> and authentication remote resource through a common framework that can provide
> caching and offline support to the system. It provides PAM and NSS modules, 
> and
> in the future will D-BUS based interfaces for extended user information. It
> provides also a better database to store local users as well as extended user
> data.
> 
> Documentation on configuring SSSD in Fedora or Red Hat Enterprise Linux is
> available from the RHEL deployment guide. We also have a dedicated
> Documentation section [...]"
> 
> Any idea?
> 
> 
> --
> Please do not email me anything that you are not comfortable also sharing with
> the NSA.
> ___
> Dng mailing list
> Dng@lists.dyne.org
> https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
___
Dng mailing list
Dng@lists.dyne.org
https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng

[DNG] [Solved]Re: Input Method Framework

2016-01-22 Thread mett 

2016-01-21 14:34 に Robert Storey さんは書きました:

   writes:


Hi dear list,



Thanks again for all the work u did on Dev1 and tell me if I can

help

in anyway.



I followed devuanfanboy howto, removed dbus and installed

fluxbox(was

under xfce b4)



Thing is Im using Japanese a lot and need anthy or similar.


I need Chinese input myself (I live in Taiwan), and for now I'm also
using Emacs as my input method. However, Emacs is too complex for my
wife, so I've got her using gcin. As far as I can tell, it does not
depend on dbus (I could be wrong about that, but "apt-cache show gcin"
doesn't list dbus). Although I don't use it for Japanese, I understand
that gcin supports it. According to the package description:

Description-en: GTK+ based input method for Chinese users
 gcin is a GTK+ based input method which focused mainly on
Traditional
 Chinese. However, it is also very useful for Simplified Chinese,
Japanese,
 and many other languages

So maybe you'll want to look into that.

cheers,
Robert


皆さん
ありがとうございます。
thanks everybody, just tried emacs and japanese input 出来ました(became 
possible)

bye bye dbus
again thanks devuan and dev1fanboy's howto
___
Dng mailing list
Dng@lists.dyne.org
https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng

Re: [DNG] what is sssd?

2016-01-22 Thread Rowland Penny 

On 22/01/16 16:02, Rob Owens wrote:

One thing it can be used for is offline authentication for LDAP users.  I am
currently using sssd on a Funtoo laptop for this purpose.  When I have no
network access (no access to the LDAP server), my users can still log in.



As I said, I cannot think of anything that sssd can do that winbind 
doesn't, or to put it it another way, you can do that with winbind. See 
here: https://wiki.samba.org/index.php/PAM_Offline_Authentication


Rowland

___
Dng mailing list
Dng@lists.dyne.org
https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng

Re: [DNG] what is sssd?

2016-01-22 Thread Simon Wise 

On 23/01/16 00:23, Dr. Nikolaus Klepp wrote:

Does anybody know what sssd is good for? I was a bit surprised to see a whole 
bunch of these sssd-something packages in debian, while I was searching for 
sss. It's homepage says:

"SSSD is a system daemon. Its primary function is to provide access to identity 
and authentication remote resource through a common framework that can provide 
caching and offline support to the system. It provides PAM and NSS modules, and in 
the future will D-BUS based interfaces for extended user information. It provides 
also a better database to store local users as well as extended user data.

Documentation on configuring SSSD in Fedora or Red Hat Enterprise Linux is available 
from ​the RHEL deployment guide. We also have a dedicated Documentation section 
[...]"

Any idea?




a quick google suggests it is a Red Hat replacement for authentication using 
ldap, maybe from 2012 or so, replacing PADL ...


here  is a guide, loaded with aggression and  with a mugshot to match:

http://www.couyon.net/blog/enabling-ldap-usergroup-support-and-authentication-in-centos-6

"Fedora/RedHat realized how terrible PADL software is, so they wrote their own 
stuff; it’s called SSSD. It’s a terrible name, but overall it works pretty well. 
Use SSSD, don’t use nslcd or anything that has pam_ldap or ldapd in the name. 
Just use SSSD."


and so on, down to Step 7 ...

"That's it. Don't mess with nslcd.conf. Don't install any nss-pam-ldapd packages 
or ldapd or anything. Just don't do it. Use the RedHat/Fedora stuff and tell 
PADL to kiss your ass."


http://www.padl.com/Contents/OpenSourceSoftware.html

a comment on that post:

"NSLCD and SSSD both work. I disagree with the author about sudo with nslcd. 
sudo will work fine with nslcd. It works fine with sssd also. There IS one 
reason to use nslcd over sssd, if it applies to you. If you have any 
applications that use the getent calls for user authentication, sssd will not 
work. Period. Red Hat decided that it knows better than any other software 
author, and dropped suooprt for getent shadow (from LDAP users) with sssd. A 
plus for sssd is that is supports credential caching, however this is only good 
is a user actually logged into the server while it was connected to LDAP, and we 
actually turn this caching setting off for security reasons. We are actually 
working with Red Hat to get some RADIUS support into sssd, and in a way that is 
not completely retarded.


Other than the author's bias against nss_ldap, anyone else have any reason to go 
with one other than the other? Both are actually pretty darn easy to get setup 
and working correctly. Neither have very good documentation."




None of the above sound encouraging ... but that was 4 years ago, I have no idea 
how well it works, how much it is better or worse than any other methods, how 
deeply it is tied into everything else to do with the "red-hat way". I am 
interested to hear reports, I am setting up something which will use ldap for 
web authentication, and to maintain a directory of various bits and pieces 
scattered around.



Simon



___
Dng mailing list
Dng@lists.dyne.org
https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng

Re: [DNG] Apparently Jessie has runit

2016-01-22 Thread Rainer Weikusat 
Joel Roth  writes:
> Steve Litt wrote:
>> On Wed, 20 Jan 2016 20:23:10 +
>> Rainer Weikusat  wrote:
>> 
>> > Steve Litt  writes:
>> > > People aren't completely alone on run scripts: I can give them any
>> > > run scripts I'm using. Also, Runit run scripts are *nothing* like
>> > > sysvinit or OpenRC init scripts:  
>> > 
>> > There is no such thing as a "sysvinit init script". The way the
>> > sysvinit program is usually employed on Linux is such that it's
>> > instructed to run the command /etc/init.d/rc with the run-level
>> 
>> 
>> > The commands which are actually executed via these S- and K-links come
>> > from individual packages and ultimatively contain whatever the people
>> > responsible for that considered sensible. 
>> 
>> The actual files to which the S- and K-links point are the "init
>> scripts" to which I refer. So perhaps I used the wrong name for them.
>> Anyway, they're usually an unholy mess, usually over 40 lines, I think
>> I remember seeing some go over 100.
>
> Hi Steve,
>
> How complicated is it to port such scripts to runit? Exim4's
> init.d script is 275 lines.

This depends on what you mean by "port", ie, do you just want the start
command, as was suggested elsewhere, or do you want to keep some of the
other features?
___
Dng mailing list
Dng@lists.dyne.org
https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng

[DNG] what is sssd?

2016-01-22 Thread Dr. Nikolaus Klepp 
Does anybody know what sssd is good for? I was a bit surprised to see a whole 
bunch of these sssd-something packages in debian, while I was searching for 
sss. It's homepage says:

"SSSD is a system daemon. Its primary function is to provide access to identity 
and authentication remote resource through a common framework that can provide 
caching and offline support to the system. It provides PAM and NSS modules, and 
in the future will D-BUS based interfaces for extended user information. It 
provides also a better database to store local users as well as extended user 
data.

Documentation on configuring SSSD in Fedora or Red Hat Enterprise Linux is 
available from ​the RHEL deployment guide. We also have a dedicated 
Documentation section [...]"

Any idea?


-- 
Please do not email me anything that you are not comfortable also sharing with 
the NSA.
___
Dng mailing list
Dng@lists.dyne.org
https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng

Re: [DNG] Debian is endorsed by Microsoft

2016-01-22 Thread dev1fanboy 
A lot of what you say sums up my feelings about systemd and microsoft. When 
these things had happened what was of the gnu/linux community practically all 
rejected anything that smells like microsoft, and it was necessary to do that 
imo (just as some zeal is necessary now for other inits to survive). We know 
what to expect from microsoft for the most part, so giving them a pass for 
"normal business practises" I don't think is sensible and might even be naive 
for many with the same experiences. Being fully about selling proprietary 
software, and the other problems the OS presents I can't give them a pass for 
anything as it gives others the wrong impression about free software/open 
source values. These are learned values and I'm not sure the time is right to 
unchange them, if microsoft GPL's their entire OS and stops all bad business 
practises then sure, but it would be naive for anyone with these experiences to 
expect that there is no FUD or bad motivations there. It also makes me wond
 er what will happen with debian now that microsoft apparently loves them. If 
people don't think the systemd culture emerging is not elitist, zealous, or 
cultish.. better to take a look at how they try to stop others from making a 
choice other than the software they produce. It's their way or the high way.

On Friday, January 22, 2016 12:33 AM, Steve Litt  
wrote:
> On Thu, 21 Jan 2016 12:08:19 +
> Simon Hobson  wrote:
> 
>> reading this list is like being at an evangelical meeting of some
>> hardcore cult - and that *IS* very off-putting to a large number of
>> people.
> 
> Both clauses of the preceding partial sentence are absolutely true. And
> it goes without saying that I am a minor priest in this cult.
> 
> Here's the thing though: If you say in public that you don't use
> systemd, that's offputting to 1/3 of the Linux population. A very vocal
> and judgmental 1/3. If you actively participate in any plan to provide
> an alternative to systemd, you've now offput 2/3 of the Linux
> population, and are going to get your name constantly dragged through
> the mud.
> 
> So the Devuan project has already offput 2/3 of the Linux population.
> And although I cannot provide any backup for this opinion, it's my
> opinion that most fans of corporate Linux are in the 2/3 we already
> offput, and very few real fans of corporate Linux remain in the 1/3 not
> yet offput.
> 
> So there are few left in our membership and prospective membership who
> would be offput by anti-Microsoft assertions.
> 
> Meanwhile, the fact that we're Linux at all skews us to have long ago
> blown off the Microsoft fans, and makes it likely that a sizeable
> portion of us have very anti-Microsoft opinions, especially those who
> have been in Linux long enough to remember the Halloween Documents,
> Microsoft's Halloween Code, Microsoft execs Mundie and Allchin's whines
> to congress to make GPL illegal, and Microsoft's generous license fees
> paid to Linux patent troll SCO, which enabled SCO to randomly sue Linux
> users for several more years.
> 
> Bottom line, we long ago blew off most of those who would have found
> our, or at least my, way of phrasing things offputting.
> 
> We all hope there will come a time when Devuan becomes a plurality
> force in the world of Linux. Such an eventuality is no less probable
> than was Linux's takeover of everything but the desktop, if that
> probability were predicted in the 1990's. And if you look at Linux
> promotion in the 1990's, it was very cultish within, and very
> offputting to fans of corporate computing or even those who believed
> technology choice to be a meritocracy.
> 
> And when Devuan becomes such a plurality, having won the war for the
> hearts and minds of those having strong believes concerning software
> choice and modularity, we'll tone down our rhetoric to become more
> inclusive of meritocracy believers and all but the most hard-core
> corporatists. But it's too early for that now: Right now our job is to
> inspire strong beliefs leading to strong development, testing,
> documentation and advocacy, and an absolute and constitutional
> rejection of systemd.
> 
> SteveT
> 
> Steve Litt
> January 2016 featured book: Twenty Eight Tales of Troubleshooting
> http://www.troubleshooters.com/28
> 
> 
> ___
> Dng mailing list
> Dng@lists.dyne.org
> https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
-- 
Take back your privacy. Switch to www.StartMail.com
___
Dng mailing list
Dng@lists.dyne.org
https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng

Re: [DNG] what is sssd?

2016-01-22 Thread Rowland Penny 

On 22/01/16 14:29, Klaus Hartnegg wrote:

Am 22.01.2016 um 14:23 schrieb Dr. Nikolaus Klepp:

Does anybody know what sssd is good for?


This is often used together with Samba to make userids of pure Active 
Directory users known to the Linux of the domain controller.


https://wiki.samba.org/index.php/Sssd

The samba developers recommend to use winbindd for this function. But 
there are cases when this does not exactly do what the admins want. 
Then they often switch to sssd.




Care to expand on what sssd does that winbind doesn't ?

Rowland

___
Dng mailing list
Dng@lists.dyne.org
https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng

Re: [DNG] what is sssd?

2016-01-22 Thread Klaus Hartnegg 

Am 22.01.2016 um 14:23 schrieb Dr. Nikolaus Klepp:

Does anybody know what sssd is good for?


This is often used together with Samba to make userids of pure Active 
Directory users known to the Linux of the domain controller.


https://wiki.samba.org/index.php/Sssd

The samba developers recommend to use winbindd for this function. But 
there are cases when this does not exactly do what the admins want. Then 
they often switch to sssd.

___
Dng mailing list
Dng@lists.dyne.org
https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng

Re: [DNG] what is sssd?

2016-01-22 Thread Rowland Penny 

On 22/01/16 15:32, Klaus Hartnegg wrote:

Am 22.01.2016 um 16:07 schrieb Rowland Penny:

On 22/01/16 14:29, Klaus Hartnegg wrote:

Am 22.01.2016 um 14:23 schrieb Dr. Nikolaus Klepp:

Does anybody know what sssd is good for?


This is often used together with Samba to make userids of pure Active
Directory users known to the Linux of the domain controller.

https://wiki.samba.org/index.php/Sssd

The samba developers recommend to use winbindd for this function. But
there are cases when this does not exactly do what the admins want.
Then they often switch to sssd.


Care to expand on what sssd does that winbind doesn't ?


I do not use it myself, only read about it on the samba mailinglist.
You can probably tell much more precisely what sssd is, than I can.
Just wanted to make sure that before devuan leaves it away, they 
should consider that some samba users want it.
I should have added that because winbind improves with time, sssd will 
probably be less used in the future.




Yes, you are quite correct that some samba users want it, whether they 
need it, is another question. I cannot actually think of anything that 
sssd does that winbind doesn't.


Rowland


___
Dng mailing list
Dng@lists.dyne.org
https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng

Re: [DNG] what is sssd?

2016-01-22 Thread Rob Owens 
- Original Message -
> From: "Rowland Penny" 
> On 22/01/16 16:02, Rob Owens wrote:
>> One thing it can be used for is offline authentication for LDAP users.  I am
>> currently using sssd on a Funtoo laptop for this purpose.  When I have no
>> network access (no access to the LDAP server), my users can still log in.
>>
> 
> As I said, I cannot think of anything that sssd can do that winbind
> doesn't, or to put it it another way, you can do that with winbind. See
> here: https://wiki.samba.org/index.php/PAM_Offline_Authentication
> 

It looks like I'd need to have a Windows domain (could be via Samba) to 
make that work.  Is that correct?  I've got Linux-only LDAP authentication,
so I'm not using a domain.

-Rob
___
Dng mailing list
Dng@lists.dyne.org
https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng

Re: [DNG] "Common knowledge?"-question

2016-01-22 Thread Gregory Nowak 
On Fri, Jan 22, 2016 at 09:34:28PM +, Rainer Weikusat wrote:
> Can the effect of the following C function
> 
> static void print_start(char const *name, char const *what)
> {
> char *buf, *p;
> unsigned name_len, what_len, total;
> 
> name_len = strlen(name);
> what_len = strlen(what);
> total = name_len + what_len + 3;
> 
> p = buf = alloca(total);
> memcpy(p, name, name_len);
> p += name_len;
> *p++ = ' ';
> memcpy(p, what, what_len);
> p += what_len;
> *p++ = ':';
> *p = ' ';
> 
> *buf &= ~0x20;
> 
> Write(2, buf, total);
> }
> 
> be considered obvious or should it rather get an explanation?
> 
> An ASCII lowercase letter can be turned into the corresponding uppercase
> letter by clearing the sixth bit.
> ___

My answer is that you shouldn't assume someone will understand what
your function does, even if you think a five-year-old should get
it. It's always a good idea to include a comment block at the top of
your function describing what it does, what variables it expects, and
what it does (or in this case) doesn't return. Yes, that means
explicitly state a void function returns no value. If nothing else,
you do someone else the courtesy of saving them time by explaining
what your function does so they don't need to read through it to
figure that out. If they want to read through it anyway, they still
have that option of course. Just my $0.01 worth.

Greg


-- 
web site: http://www.gregn.net
gpg public key: http://www.gregn.net/pubkey.asc
skype: gregn1
(authorization required, add me to your contacts list first)
If we haven't been in touch before, e-mail me before adding me to your contacts.

--
Free domains: http://www.eu.org/ or mail dns-mana...@eu.org
___
Dng mailing list
Dng@lists.dyne.org
https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng