Re: [DNG] Lennart now working for Microsoft
On 7/14/22 12:04, Peter Duffy wrote: [snip] M$ and IBM haven't always been rivals - worth remembering that OS/2 was originally a joint venture. Then they decided to go their separate ways and fork the OS/2 project: IBM carried on developing OS/2; M$ hacked their version into Windows 95 (remember they took over the front page of the Times to advertise the launch of it?). (Shame that OS/2 vanished off the radar. I used it daily for a number of years: it was infinitely better than windows.) Caveat: two hazy recollections from long ago. 1) It'd be hard to find sources for it any more but IBM was not careful about the copyright and the code base ended up with a terrible mixture of code, some copyrighted by M$ some by IBM. M$ also got potential customers to postpone purchasing the obviously superior operating system through a very effective "wait-and-see" whisper campaign. So that basically paralyzed the OS/2. 2) On top of that, there was not much market demand for OS/2 due to the nearly complete lack of desktop applications for it. That lack was because while M$ had agreed to write some key applications for OS/2, it instead used the time secretly to write for NT. By the time IBM found out, it was too close to release to do anything. Later, IIRC, any team of developers wishing to write for W95 and get that little approval logo on their packaging had to also write the same application for NT. The license for the NT SDK had piggybacked onto it the prohibition of writing for competing operating systems. At the time I thought that was about killing the Mac game market but looking back I can see it was also about keeping OS/2 from getting even the smallest amount of traction. Anyway, back to Lennart, there are still few facts to go on at this point but given the apparent secrecy we can speculate that something big is brewing. Can this be tied to the restricted boot deployments? Lenovo is now selling laptops that refuse by default to boot non-Windows operating systems. I hope the derivative distros see the writing on the wall so that more use Devuan for their upstream source. Tails, Ubuntu, Linux Mint, Finnix, Kali, and others risk their future otherwise. /Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
[DNG] Compiler differs from the one used to build the kernel
When trying to build some DKMS modules manually, I run into the following fatal error when running 'make' warning: the compiler differs from the one used to build the kernel The kernel was built by: gcc-11 (Debian 11.2.0-20) 11.2.0 You are using: gcc-11 (Debian 11.3.0-1) 11.3.0 What kind of flag I can pass to 'make' or a setting I can change in the Makefile to ignore the error and steam ahead? Or what other solutions or work-arounds exist? Thanks, Lars PS. This is on Devuan GNU/Linux 5 (daedalus/ceres) and furthermore, I am not sure where 'make' is getting gcc 11.3.0-1 from: $ apt-cache policy gcc gcc: Installed: 4:11.2.0-2 Candidate: 4:11.2.0-2 Version table: *** 4:11.2.0-2 500 500 http://deb.devuan.org/merged daedalus/main amd64 Packages 100 /var/lib/dpkg/status ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
[DNG] NetworkManager Applet 1.24.0 on daedalus quite broken with multiple interfaces
It appears that the NetworkManager Applet 1.24.0 built into XFCE4 on daedalus is quite broken and can't route properly across multiple interfaces. Indeed the icon only shows a single interface even if "route -n" shows the other. If I add additional interfaces then NetworkManager adds those and routes appropriately even if they are on the same net as the interface it ignores. The only thing which has changed lately was a fresh installation of daedalus via an absolutely minimal chimaera installation where everything was unselected from tasksel. Then once daedalus was in place, tasksel was used to install XFCE4 and console utilities. What if anything can be done with the NetworkManager to get it to acknowledge the built-in interface or can I replace NetworkManager with something else? /Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
[DNG] OpenPGP key for Devuan Release ISOs?
I see that the ISO images are signed. I've tried to fetch the signing key[1] again, $ gpg --keyserver keys.gnupg.net \ --recv-key E032601B7CA10BC3EA53FA81BB23C00C61FC752C $ gpg --keyserver keys.gnupg.net \ --recv-key BB23C00C61FC752C $ gpg --keyserver keys.gnupg.net \ --search-keys BB23C00C61FC752C but get an error instead with each of the above methods: gpg: keyserver receive failed: Server indicated a failure What is the current / correct location to find the public key to check the releases with? /Lars [1] https://www.devuan.org/os/keyring ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] Early Days at Bell Labs
On 1/21/22 22:26, Hendrik Boom wrote: [snip] Whatever the licence then, it seems to have ended up with a sufficiently free licence for Intel to put a copy of it in the management engine in their CPUs for the last decade or so *without informing Tannenbaum*. Tannenbaum was miffed; he said the licence allowed this, but he would have liked to have been informed. That move probably makes MINIX the most widely used operating system around these days: https://www.networkworld.com/article/3236064/minix-the-most-popular-os-in-the-world-thanks-to-intel.html There is at least one recorded lecture by Andrew Tannenbaum about MINIX at the BSD conferences because it mainly has a NetBSD userspace. /Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] The Daedalus desktop needs some love
On 1/19/22 21:46, goli...@devuan.org wrote: On 2022-01-19 12:50, Lars Noodén via Dng wrote: On 1/17/22 23:17, goli...@devuan.org wrote: [snip]> This is not a trivial task. The many pieces that need to be coordinated are described in this HOW-TO: https://git.devuan.org/devuan/documentation/src/branch/master/art/graphics/theming-devuan.md [snip] What quality of display(s) and color calibration are required? /Lars In all the years I have been doing this, that question has never entered my mind and I have no idea how to even begin answering it. I do "eye" art not "machine" art. I can perceive even one increment change in a hex. Problem is . . . no one can know exactly what color another person is seeing. Add to that the vagaries of the monitor and . . . I don't know if a screenshot would capture the hex or what's showing on your monitor but maybe you could give it a try for the chimaera desktop and let us have a look. Ok, thanks. I guess from that answer and the others, that aspect might not be so important at the moment in this project. Are the colors for Daedalus chosen already? I see that the one tar ball is about Chimaera: Clearlooks-Phenix-Deepsea. Is that a complete sample? /Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] The Daedalus desktop needs some love
On 1/17/22 23:17, goli...@devuan.org wrote: [snip]> This is not a trivial task. The many pieces that need to be coordinated are described in this HOW-TO: https://git.devuan.org/devuan/documentation/src/branch/master/art/graphics/theming-devuan.md [snip] What quality of display(s) and color calibration are required? /Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] Genuine, legitimate Early Days at Bell Labs - Youtube, the systemd of video: Was: Early Days at Bell Labs - Youtube, the systemd of video
On 1/16/22 22:58, Steve Litt wrote: [snip] Now, does anybody have anything to say about the CONTENT of the video at https://www.youtube.com/watch?v=ECCr_KFl41E ? Yes, it was quite interesting to hear about what a nice working environment there used to be and the talent that was active there, especially the hands-off management style. He mentioned one of the main points of UNIX being about fostering community, and he was not far from MIT the whole time. So I was a little disappointed that he did not at mention GNU at least in passing even though he did spend some time talking about Linux. /Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] Lead or follow? this decade’s dilemma for GNU/Linux based ICT industry
On 12/30/21 10:36, Didier Kryn wrote: Le 30/12/2021 à 07:53, Steve Litt a écrit : The one improvement I can suggest with the article is to define all acronyms once within the text. Because I'm from North America, I call it "IT", and it took 10 minutes of looking up to find out that "ICT" is a European acronym for basically the same thing. It took about 25 minutes to find out what an "SME" is. Thanks Steve. I'm an european and still can't remember the meaning of both acronyms, although I understand from the context that they name in some way the computer technology (~: [snip] ( From what I remember, both acronyms, SME and ICT, were in use in the US in the 1990s into the 2000s. Back then ICT was the preferred acronym in the US in contexts where the activity was the focus. I gather the focus has now shifted to who is doing the billing for the tools rather than what the tools actually do any more. However, there may be some change in terminology in the EU as well as I have recently heard someone from gen Z making distinctions between IT and ICT but I did not press for a clarification or definitions at the time. Now I see that it could be worth finding out offline both what people see as the distinction and where the push for a distinction is coming from. The definitions might have changed very recently. Or it could be a shibboleth like spelling out S Q L versus saying Sequel to mean SQL in speech. Either way, it is always good practice to define each and every acronym upon their first use, since even common acronyms may have different expansions within different fields. ) Back on topic, I appreciate the post that "jaromil" has written. The nested subtopics make the structure hierarchical rather than linear. The part about IBM's apparent strategy is about the right length, give or take a little, so it would be hard to squeeze in the term "decommoditization". However, I feel that the term might be important enough to include because it would then link today's situation to ongoing, long-term attempts to derail FOSS development and Linux through the injection of artificial complexity. The strategy of decommoditization was outlined as a threat in the 1998 leak of the Halloween Documents. In a plot twist, IBM (once mistaken for an ally) appears to have been able to abuse the strategy more fully than Microsoft. One more reason to bring it up is that standardization is mentioned, standardization implicitly includes the concept of commodities, and commoditization of technology is so integral to FOSS that there is a risk it has been taken for granted. /Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] system administration of non-systemd distros and releases
On 11/25/21 17:11, Steve Litt wrote: [snip] Imagine if they made a car with the engine compartment welded shut, and gave you a little cockpit in the passenger compartment to control a robot inside the engine compartment that would do maintenance and repairs. That's not too far off from new cars as they are today. They are lousy with sensors and everything is tied directly or indirectly to the dealer, either through proprietary programs + proprietary protocols or service contracts or both. You can't change your own oil though I think changing the wiper blades on your own is still allowed. And by "you" I mean the ostensible owner or an independent repair shop. The cars are not recognized as computer systems, but as Cory Doctorow pointed out they are a computer you put your body into. I have only a weak grasp of the situation, having kept my head in the sand as long as I could, but I think two non-excusive approaches to solving the car software / protocol problem might be through software liability (as outlined by Geer and Kamp [1]) and through the ongoing attempts to restore the "right to repair" as led by Rossmann [2], in particular the latter which is picking momentum in regards to heavy farm equipment. /Lars [1] Transcript, "Cybersecurity as Realpolitik", Dan Geer: http://geer.tinho.net/geer.blackhat.6viii14.txt Video: https://youtu.be/nT-TGvYOBpI "The Software Industry IS STILL the Problem: The time is (also) way overdue for IT professional liability" Poul-Henning Kamp (2021) https://dl.acm.org/doi/10.1145/3487019.3489045 "The Software Industry IS the Problem: The time has come for software liability laws." Poul-Henning Kamp (2011) https://queue.acm.org/detail.cfm?id=2030258 [2] https://www.fighttorepair.org/ ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] What not to back up
On 11/23/21 21:27, Hendrik Boom wrote: I'm setting up a new backup script that will do it all piecemeal so that if a part of it fails, it can be retried without having to start *everythng* over from scratch. [snip] It depends on what you've set up. For the systems I have, I only back up the configuration files in /etc/ plus the output of dpkg --get-selections The restoration plan is to do a fresh installation and restore with dpkg --set-selections Then for the data, it is /var/ and /home/, with special treatment for any live databases if needed. I don't use /srv/ or /opt/ for anything. > But what about > > /run > /srv > /sys > ? > > What are those even used for? See "man 7 hier" """ /run This directory contains information which describes the system since it was booted. Once this purpose was served by /var/run and programs may continue to use it. /srv This directory contains site-specific data that is served by this system. /sys This is a mount point for the sysfs filesystem, which provides information about the kernel like /proc, but better structured, following the formalism of kobject infrastructure. """ /Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] pkexec in Chimaera
On 11/14/21 20:44, tempforever wrote: Lars Noodén via Dng wrote: [snip] On 11/8/21 05:12, tempforever wrote: > You say that sudoedit will run the editor itself under the unprivileged account; however, it appears it does run as root: [snip] Yes, I say that, but I got it from the manual page which is much more authoritative. It goes through the steps: 1. Temporary copies are made of the files to be edited with the owner set to the invoking user. 2. The editor specified by the policy is run to edit the temporary files. The sudoers policy uses the SUDO_EDITOR, VISUAL and EDITOR environment variables (in that order). If none of SUDO_EDITOR, VISUAL or EDITOR are set, the first program listed in the editor sudoers(5) option is used. 3. If they have been modified, the temporary files are copied back to their original location and the temporary versions are removed. sudoedit is running as root there, but it is not itself an editor. You can verify for yourself that the editor runs under the unprivileged account. Here is an example of using sudoedit to fire up Geany: $ EDITOR=geany sudoedit /etc/group & $ ps -p $(pgrep -d , 'sudoedit|geany') -o user,pid,ppid,args USER PIDPPID COMMAND root 221381 221316 sudoedit /etc/group lars 221382 221381 geany /var/tmp/group.XXm6gNkW As you see, sudoedit is a wrapper which supervises the editor and a temporary file. /Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] nano hard line wrap
On 11/13/21 19:41, Haines Brown wrote: I was left frustrated when nano 4.0 dropped hard line wrap as the default. But I have had no luck re-implementing it. I'm running nan 5.4-2. Man nanorc says there is the set/unset nowrap. I tried unset nowrap, but it had no effect. How do I recover a hard wrrap at 70 in nano? 'set breaklonglines' worked in nano 5.9, can you get a newer version through backports? $ nano -V GNU nano, version 5.9 (C) 1999-2011, 2013-2021 Free Software Foundation, Inc. (C) 2014-2021 the contributors to nano Compiled options: --disable-libmagic --enable-utf8 $ lsb_release -rd Description:Devuan GNU/Linux 5 (daedalus/ceres) Release:5 $ apt-cache policy nano | head -n 3 nano: Installed: 5.9-1 Candidate: 5.9-1 /Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] nano hard line wrap
On 11/13/21 19:41, Haines Brown wrote: [snip] > How do I recover a hard wrrap at 70 in nano? Isn't that done with 'set breaklonglines' now? /Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] pkexec in Chimaera
On 11/8/21 05:12, tempforever wrote: [snip]> Lars Noodén via Dng wrote: You could consider running sudoedit instead. That will allow you to edit a file as root (or any other designated account) while still running the editor itself under the unprivileged account. One should not run graphical programs as root, if it can be avoided. Thank you for the help also. sudoedit requires user "a" to be in sudo group, which I'd prefer not to do. A non-gui text editor invoked with su -c will work for now. Please take another look at /etc/sudoers because the system is allowed to have more than one group and users may be in more than one group at a time. Also, there can be more than one single line in /etc/sudoers or in any of the files beneath /etc/sudoers.d/ Thus you can have a group for account "a" which allows it to run sudoedit but nothing else, and it doesn't even have to be a new group: %a ALL=(ALL:ALL) sudoedit See "man sudoers" for that. sudo is certanly one of the most misunderstood and misused utilities around, in part because of the tragic default settings spread by the Ubuntu distros, an affliction it gets from Debian's default settings. /Lars PS. Thank you in advance for not top-posting. ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] pkexec in Chimaera
On 11/7/21 21:19, tempforever wrote: [snip]> Actually I'll probably switch to a text-based editor for this particular case, but in general, for GUI applications, how is this done now? [snip] You could consider running sudoedit instead. That will allow you to edit a file as root (or any other designated account) while still running the editor itself under the unprivileged account. One should not run graphical programs as root, if it can be avoided. From the manual page for sudo: When invoked as sudoedit, the -e option (described below), is implied. [...] -e, --edit Edit one or more files instead of running a command. In lieu of a path name, the string "sudoedit" is used when consultimg the security policy. If the user is authorized by the pol‐ icy, the following steps are taken: 1. Temporary copies are made of the files to be edited with the owner set to the invoking user. 2. The editor specified by the policy is run to edit the temporary files. The sudoers policy uses the SUDO_EDITOR, VISUAL and EDITOR environment variables (in that order). If none of SUDO_EDITOR, VISUAL or EDITOR are set, the first program listed in the editor sudoers(5) option is used. 3. If they have been modified, the temporary files are copied back to their original location and the temporary versions are removed. To help prevent the editing of unauthorized files, the following restrictions are enforced unless [...] There a lot more about that in the manual pages. See "man sudo" and "man sudoers" /Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] a how to question (project(s) related)
On 8/17/21 10:39 AM, Dr. Nikolaus Klepp wrote: [snip] > I've lost all my earier works on amiga and plus4 due to bitrotting - > I sold the hardware when I realised everyting on floppy dodn't even > last some years. The life span of various storage media under various storage conditions was (and is) well-documented but widely ignored. As a student and, later, researcher in libraries and archives in the 1990s 'we' tried hard to inform people of what the dangers were and of viable preservation strategies. Now as then ways out mostly center around migration from one storage medium to another. Filesystems that detect flipped or lost bits, like OpenZFS or BtrFS, help a little there. Migration from one data format to another is riskier, more difficult, and more error prone. So for that the likely way out would be emulators, possibly layers of system emulators in order to be able to run the newest remaining software still capable of accessing and rendering the data. FWIW you can emulate an Amiga easily now. I have been migrating some random files from the mid 1980s but nothing of importance. I still wrote college essays directly on paper then and those papers have gotten lost. I do regret erasing the 'extra' backups I had of a key WWW project from 1994. That whole project could have been saved with some cost but little effort. The size it was then is now considered insignificant these days. Too many other files since then have been lost to flipped bits. Regarding the original question from o1bigtenor about drowning in one's own documents, if the file formats support embedded metadata, and there is an indexing program which can process that metata, then that is one way. So a mixture of HTML, ODF, and PDF, each with embedded keywords/subject headings, title, date, and maybe a description can be indexed by Recoll or several other tools by the available metadata. Another way would be to expand on the example in the original message and try to group the apparent locations of each item. Zim can do that in an annotated manner by linking to the local documents. So it would even work for turning the document collection into a zettelkasten. /Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] End of free open source software?
On 5/9/21 12:57 PM, Arnt Karlsen wrote: > On Sun, 9 May 2021 09:18:47 +0200, Dr. wrote in message > <202105090918.47488.off...@klepp.biz>: > >> Hi! >> >> Anno domini 2021 Sun, 9 May 08:33:05 +0200 >> tito via Dng scripsit: >>> Hi to all, >>> today while reading online my selection of international newspapers >>> on the german www. faz.net I've found this little article which >>> made my antennas vibrate, link is: >>> >>> https://www.faz.net/aktuell/wirtschaft/reform-der-produkthaftung-verbraucher-sollen-vor-schaeden-durch-softwarefehler-geschuetzt-werden-17330921.html >> >> Thats just bullshit bingo. > > ..so was The Donald and der Adolf. The good news here is, today's > Germans have the experience and therefore much more wisdom to deal > with such bullshit bingo to keep it from repeating itself, and to > aim it somewhere useful and to fire up the French etc on it. > Keep your eyes open. My guess would be that the bullshit bingo is an attempt to reframe the software liability question for the general public in a way that is more favorable to proprietary software. I would guess that all the current, and not so current, discussion has so far centered around the ideas floated by Dan Geer and Poul-Hennning Kamp. Dan Geer had this to say at Black Hat 2014: "Today the relevant legal concept is "product liability" and the fundamental formula is "If you make money selling something, then you better do it well, or you will be held responsible for the trouble it causes." For better or poorer, the only two products not covered by product liability today are religion and software, and software should not escape for much longer. Poul- Henning Kamp and I have a strawman proposal for how software liability regulation could be structured." - http://geer.tinho.net/geer.blackhat.6viii14.txt He continued onward to enumerate and clarify the reasoning behind each of three points towards a possible solution in regards to applying liability to software: "0. Consult criminal code to see if damage caused was due to intent or willfulness." ... "1. If you deliver your software with complete and buildable source code and a license that allows disabling any functionality or code the licensee decides, your liability is limited to a refund." ... "2. In any other case, you are liable for whatever damage your software causes when it is used normally." - http://geer.tinho.net/geer.blackhat.6viii14.txt Notably and intentionally there is a carve out in those points to not just protect Free and Open Source Software, but to actually promote it as it is a strong way to improve quality and thus safety. However, he accurately notes that the proprietary software houses will howl about it. I would guess that the bullshit bingo linked to in the original message is just that and small attempt at revisionism to restart the debate for the benefit of proprietary software by ignoring the past progress on the topic. /Lars -- Here is the full quote from that part of his transcript: " 3. Source code liability -- CHOICE Nat Howard said that "Security will always be exactly as bad as it can possibly be while allowing everything to still function,"[NH] but with each passing day, that "and still function" clause requires a higher standard. As Ken Thompson told us in his Turing Award lecture, there is no technical escape;[KT] in strict mathematical terms you neither trust a program nor a house unless you created it 100% yourself, but in reality most of us will trust a house built by a suitably skilled professional, usually we will trust it more than one we had built ourselves, and this even if we have never met the builder, or even if he is long since dead. The reason for this trust is that shoddy building work has had that crucial "or else ..." clause for more than 3700 years: If a builder builds a house for someone, and does not construct it properly, and the house which he built falls in and kills its owner, then the builder shall be put to death. -- Code of Hammurabi, approx 1750 B.C. Today the relevant legal concept is "product liability" and the fundamental formula is "If you make money selling something, then you better do it well, or you will be held responsible for the trouble it causes." For better or poorer, the only two products not covered by product liability today are religion and software, and software should not escape for much longer. Poul-Henning Kamp and I have a strawman proposal for how software liability regulation could be structured. ... 0. Consult criminal code to see if damage caused was due to intent or willfulness. ... We are only trying to assign liability for unintentionally caused damage, whether that's sloppy coding, insufficient testing, cost cutting, incomplete documentation, or just p
Re: [DNG] Default logins for ARM images?
On 3/27/21 5:33 AM, Gregory Nowak via Dng wrote: > On Fri, Mar 26, 2021 at 12:30:45PM +0200, Lars Noodén via Dng wrote: >> I'm looking at an ARM image for Beowulf, but cannot find where the >> default password is annotated. It's not on either of these pages: >> >> https://arm-files.devuan.org/ >> https://www.devuan.org/get-devuan >> >> And no README file seems to be present. What is the default >> user/password for those images? > > I also am unable to find where this is documented. If memory serves > though, the user is root, and the password is toor (root > backwards). Try if that works. > > Greg > > Thanks. Hopefully it'll be documented soon. I ended up just mounting the image and editing /etc/shadow directly. chimaera seems to work fine and OpenZFS seems to be available and working on it. Regards, Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] Dng Subscription results
On 3/26/21 4:54 PM, Dimitris via Dng wrote: [snip] > for mailman it might also be possible to just send an email to > dng-j...@lists.dyne.org Thanks. That helped. Regards, Lars OpenPGP_0xDEF20AB6653CEAE7.asc Description: application/pgp-keys OpenPGP_signature Description: OpenPGP digital signature ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
[DNG] Default logins for ARM images?
I'm looking at an ARM image for Beowulf, but cannot find where the default password is annotated. It's not on either of these pages: https://arm-files.devuan.org/ https://www.devuan.org/get-devuan And no README file seems to be present. What is the default user/password for those images? /Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] Dng Subscription results
On 3/26/21 4:10 PM, Antony Stone wrote: > On Friday 26 March 2021 at 14:59:26, Lars Noodén via Dng wrote: > >> I am trying to subscribe a different account so I can unsubscribe this >> one. However, when submitting the new address to the web form [1], I >> get the following error and apparently no action towards subscription: >> >> Dng Subscription results >> Invalid captcha: invalid-input-response > > Try a different browser? > > > Antony. > I have tried both Firefox and Chromium already. Thus the problem appears to lie with the registration. Regards, Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
[DNG] Dng Subscription results
I am trying to subscribe a different account so I can unsubscribe this one. However, when submitting the new address to the web form [1], I get the following error and apparently no action towards subscription: Dng Subscription results Invalid captcha: invalid-input-response Regards, Lars [1] https://mailinglists.dyne.org/cgi-bin/mailman/subscribe/dng ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] Netiquette
There are also some informal Netiquette Guidelines from October 1995 in the form of RFC 1855: https://tools.ietf.org/html/rfc1855#section-3.0 Section 3 covers one-to-many communications. /Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] How to firewall on Devuan?
On 2/24/21 2:01 PM, Steve Litt wrote: > Hi all, > > I'm now at the stage where I need a firewall on my Devuan VM guest, > and I don't know how to do it. I have the iptables package installed, > and /usr/sbin/iptables is a command, but I have no idea where to go > from there. Is there a file that iptables uses to define which ports > are blocked? There is an awful lot of inertia for iptables, more than there was for ipchains, but iptables is rather difficult to learn and use. It has also been succeeded by nftables, which is where the development is happening. So even though Beowuulf seems to come with iptables, I would recommend removing iptables and installing with nft. See: https://wiki.nftables.org/ https://wiki.nftables.org/wiki-nftables/index.php/Quick_reference-nftables_in_10_minutes Furthermore, nftables keeps its configuration in a single file: /etc/nftables.conf which is then read on startup, once nftables is activate in sysvinit or openrc. Though it is very different, I find that nft makes a bit more sense. It is also supposed to be more efficient. YMMV. /Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] Devuan wallpaper licensing?
On 1/27/21 10:43 PM, Bruce Perens via Dng wrote: > On Wed, Jan 27, 2021 at 11:30 AM wrote: >> On 2021-01-27 12:51, Lars Noodén via Dng wrote: >>> Greetings, >>> >>> Which licenses are relevant for contributing wallpapers to the distro? >>> >>> Would CC BY-ND [1] be the most appropriate, for photos? What about CC >>> BY-NC-ND [2] or is there an established license already chosen? [snip] > > CC ND and CC BY NC ND would have to go in the non-free section. > Thanks. I expect then that any of the choices with the NC attribute could also go in non-free. Since there would be no non-free dependencies, images with CC BY or CC BY-SA could go in main? /Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
[DNG] Devuan wallpaper licensing?
Greetings, Which licenses are relevant for contributing wallpapers to the distro? Would CC BY-ND [1] be the most appropriate, for photos? What about CC BY-NC-ND [2] or is there an established license already chosen? /Lars [1] https://creativecommons.org/licenses/by-nd/4.0/ [2] https://creativecommons.org/licenses/by-nc-nd/4.0 ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] TB and Enigmail
On 10/28/20 12:47 AM, Rick Moen wrote: > Quoting John Crisp via Dng (dng@lists.dyne.org): > > [snip much-appreciated picture of behind-the-scenes management > folderol at Thunderbird Project:] > >> The problem is decent alternatives are not great [...] > > Just in case people have lost track of this, the long-term nub of the > problem is: revenue model. > > Firefox brought in money. Thunderbird did not. When all is said and > done, Mozilla Foundation is an appendage of Mozilla, Inc., which as a > for-profit corporation is bound to a depressing pursuit of quarterly > earnings targets as a primary objective. From the corporate > perspective, Thunderbird development resources are deadweight, a > dispensible community sponsorship that earns nothing. > ... The risk is that SMTP/IMAPS become deprecated and/or coimpletely marginalized. Google appears to be doing what it can to cut off not only MUAs like Thunderbird but also competing mail providers. At least that is the impression I get. It's really hard to connect Thunderbird to GMail. You also get a lot of messages on an ongoing basis instructing how to turn off/block IMAPS, worded with scare words about 'security' and without mentioning either protocols or MUAs. If you mess with the accounts interface it is very easy to accidentally turn off Thunderbird / IMAPS access but very difficult to find how to allow it again. etc. Thunderbird probably cuts into their income. I suspect that when the microsoft proxies are forced to end their antitrust actions against Alphabet[1], Google with go ahead and finish capturing the market for e-mail and deprecate SMTP/IMAP. It's increasingly hard to exchange e-mail between lesser known providers or even self-hosted servers and GMail accounts. Getting sorted into spam is one method, but increasingly the messages are tagged by Google as being dodgy or unsafe. This isn't meant to be a rant about Google / Alphabet, it is meant to bring attention to the risk of losing e-mail globally and having it replaced by a single company's proprietary alternative. /Lars (writing hypocritically from a gmail account) [1] Both can be true. Proxies are agitating against Google to take heat off of other companies, while at the same time Google /does/ appear to be abusing its monopoly positions in several markets. The relevant one here is e-mail. ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] mssh not working (Chimaera)
On 10/2/20 5:09 PM, Dimitri Minaev via Dng wrote:
[snip]
> If you could offer an alternative that provides synchronized input to a
> number of SSH sessions, I'd be glad to hear your opinion. I know that
> similar capabilities are found in Terminator and my favorite Konsole, but
> they are not as comfortable as mssh when you need to open a bunch of
> sessions.
You could use tmux(1) and launch many windows (not panes) each with an
SSH session. Then you could script something and run it in the first
(0th) window:
while read -p "cmd: " cmd;
do
tmux list-windows \
| awk -F: '{print $1}' \
| tail +2 \
| xargs -I{} tmux send-keys -t :{} "$cmd" C-m \;
done
Or if there are only a few sessions, you could make multiple panes in a
single window and use 'synchronize-panes'
/Lars
___
Dng mailing list
Dng@lists.dyne.org
https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] Zoom?
On 8/4/20 3:58 PM, Hendrik Boom wrote: [...]> Normally, I use the Zoom app on my Android tablet, where I keep no > critical information. If video is not needed, then consider using Mumble [1]. It is exceptionally easy to set up, both from the client perspective and the user perspective. There are a lot of optional server-side configuration extras to consider and those can take some reading [2] but it works out of the box for the basics. The sound quality is nice and the system requirements are quite low. For privacy and availability, it is Free and Open Source Software and uses open standards along with respectable encryption. /Lars [1] https://wiki.mumble.info/wiki/FAQ [2] https://wiki.mumble.info/wiki/ACL_and_Groups#Examples ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] Devuan 3 running hot
On 6/15/20 3:37 AM, Gregory Nowak wrote: > On Sun, Jun 14, 2020 at 02:30:39PM +0200, d...@d404.nl wrote: >> Which is still quiet high. I would advise to renew the thermal paste on >> your processor. I can recommend Arctic Silver 5 AS5-3.5G Thermal Paste. >> Made a difference of another 20°C on idle on my old i5. > > If the system ran cool before the upgrade, thermal paste shouldn't be > the problem. What happens if you run with a 5.x kernel from > beowulf-backports, for instance > linux-image-5.4.0-0.bpo.2-amd64-unsigned? With either of these: linux-image-5.4.0-0.bpo.2-amd64-unsigned linux-image-5.4.0-0.bpo.4-amd64-unsigned I can log into an XFCE4 session just in time for the fans to spin up and the machine lock. With an even older kernel, I get about 50.0°C more or less. $ uname -sr Linux 4.19.0-8-rt-amd64 $ sensors coretemp-isa- Adapter: ISA adapter Package id 0: +51.0°C (high = +100.0°C, crit = +100.0°C) Core 0:+49.0°C (high = +100.0°C, crit = +100.0°C) Core 1:+48.0°C (high = +100.0°C, crit = +100.0°C) Core 2:+49.0°C (high = +100.0°C, crit = +100.0°C) Core 3:+49.0°C (high = +100.0°C, crit = +100.0°C) Core 4:+49.0°C (high = +100.0°C, crit = +100.0°C) Core 5:+48.0°C (high = +100.0°C, crit = +100.0°C) acpitz-acpi-0 Adapter: ACPI interface temp1:+51.0°C (crit = +120.0°C) iwlwifi-virtual-0 Adapter: Virtual device temp1:+55.0°C pch_cannonlake-virtual-0 Adapter: Virtual device temp1:+58.0°C ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] Devuan 3 running hot
On 6/14/20 2:03 PM, d...@d404.nl wrote: > On 14-06-2020 12:53, Lars Noodén via Dng wrote: >> On 6/14/20 1:47 PM, d...@d404.nl wrote: >>> On 14-06-2020 12:38, Lars Noodén via Dng wrote: >>>> An upgrade to Beowulf went very smoothly but since upgrading I notice >>>> that the fans are always running. Although the air temperature is about >>>> 25°C the cores seem to run much hotter than necessary, pushing 70°C or >>>> hotter. The system is not really under any load. What should I be >>>> looking at to make corrections? >>>> >>>> - >>>> >>>> $ grep -i pretty /etc/os-release ; uname -sr >>>> PRETTY_NAME="Devuan GNU/Linux 3 (beowulf)" >>>> Linux 4.19.0-9-amd64 >>>> >>>> >>> You can try to add intel_pstate=disable to your startup line. >> Thanks. It may already be disabled¹ though: >> >> # cat /sys/kernel/debug/tracing/events/power/pstate_sample/enable >> 0 >> >> # cat /sys/kernel/debug/tracing/events/power/cpu_frequency/enable >> 0 >> >> However, this is all an area I know nothing about. >> >> ¹ https://www.kernel.org/doc/html/v4.12/admin-guide/pm/intel_pstate.html >> ___ > > It is not my daily job either but what i understand when intel_pstate is > disabled acpi-cpufreq takes it over. (And most likely did in ASCII.) > > Give it a try and if it works add it to grub. > Seems to have made a difference of over 20°C. /Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] Devuan 3 running hot
On 6/14/20 1:47 PM, d...@d404.nl wrote: > On 14-06-2020 12:38, Lars Noodén via Dng wrote: >> An upgrade to Beowulf went very smoothly but since upgrading I notice >> that the fans are always running. Although the air temperature is about >> 25°C the cores seem to run much hotter than necessary, pushing 70°C or >> hotter. The system is not really under any load. What should I be >> looking at to make corrections? >> >> - >> >> $ grep -i pretty /etc/os-release ; uname -sr >> PRETTY_NAME="Devuan GNU/Linux 3 (beowulf)" >> Linux 4.19.0-9-amd64 >> >> > You can try to add intel_pstate=disable to your startup line. Thanks. It may already be disabled¹ though: # cat /sys/kernel/debug/tracing/events/power/pstate_sample/enable 0 # cat /sys/kernel/debug/tracing/events/power/cpu_frequency/enable 0 However, this is all an area I know nothing about. ¹ https://www.kernel.org/doc/html/v4.12/admin-guide/pm/intel_pstate.html ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
[DNG] Devuan 3 running hot
An upgrade to Beowulf went very smoothly but since upgrading I notice that the fans are always running. Although the air temperature is about 25°C the cores seem to run much hotter than necessary, pushing 70°C or hotter. The system is not really under any load. What should I be looking at to make corrections? - $ grep -i pretty /etc/os-release ; uname -sr PRETTY_NAME="Devuan GNU/Linux 3 (beowulf)" Linux 4.19.0-9-amd64 - coretemp-isa- Adapter: ISA adapter Package id 0: +75.0°C (high = +100.0°C, crit = +100.0°C) Core 0:+75.0°C (high = +100.0°C, crit = +100.0°C) Core 1:+70.0°C (high = +100.0°C, crit = +100.0°C) Core 2:+70.0°C (high = +100.0°C, crit = +100.0°C) Core 3:+70.0°C (high = +100.0°C, crit = +100.0°C) Core 4:+69.0°C (high = +100.0°C, crit = +100.0°C) Core 5:+70.0°C (high = +100.0°C, crit = +100.0°C) acpitz-acpi-0 Adapter: ACPI interface temp1:+73.0°C (crit = +120.0°C) iwlwifi_1-virtual-0 Adapter: Virtual device temp1:+44.0°C pch_cannonlake-virtual-0 Adapter: Virtual device temp1:+60.0°C - top - 13:32:45 up 21:00, 11 users, load average: 0.90, 0.97, 0.99 Tasks: 309 total, 1 running, 308 sleeping, 0 stopped, 0 zombie %Cpu(s): 0.1 us, 0.4 sy, 0.0 ni, 99.5 id, 0.0 wa, 0.0 hi, 0.0 si, 0.0 st MiB Mem : 15752.8 total, 6909.7 free, 2698.7 used, 6144.4 buff/cache MiB Swap: 15743.0 total, 15742.6 free, 0.4 used. 12197.7 avail Mem PID USER PR NIVIRTRESSHR S %CPU %MEM TIME+ COMMAND 2529 root 20 0 493780 133052 98824 S 4.7 0.8 21:21.22 Xorg 291 root -51 19 0 0 0 D 3.7 0.0 20:10.16 irq/144-SYNA120 2839 lars 20 0 520740 50288 33980 S 1.0 0.3 0:22.16 xfce4-terminal 29662 root 20 0 12236 3020 2400 R 0.3 0.0 0:13.18 top 1 root 20 07904 2064 1892 S 0.0 0.0 0:02.10 init 2 root 20 0 0 0 0 S 0.0 0.0 0:00.04 kthreadd 3 root 0 -20 0 0 0 I 0.0 0.0 0:00.00 rcu_gp ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
[DNG] Patch for /etc/os-release on ascii
It might help to have the same level of detail for /etc/os-release on both ascii and beowulf. That would allow a more standardized approach to automatically detecting the versions. Perhaps the same should apply to jessie, too. /Lars diff /etc/os-release /etc/os-release.orig 3,5d2 < VERSION_ID="2" < VERSION="2 (ascii)" < VERSION_CODENAME=ascii ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] Qemu with Beowulf host / Ascii guest dies without much of an error message
On 8/12/19 4:00 PM, Ralph Ronnquist via Dng wrote: [snip] > Well, a slightly irrelevant, and perhaps well known observation: I have > come to think that the most flexible networking for my local VM's is the > "vde mode". It does need a small amount of initial plumbing, with a > (single) supporting tap, and then either a bridge or routing plus local > dhcp. This ends up with a networking "portal" through a (shared) socket > that the qemu processes happily connect to. [snip] Thanks. That has been useful. The guest now is visible on the same network as the host. There are only a few guides out there, but this one is up to date and worked for me: https://wiki.qemu.org/Documentation/Networking I'll have to add the networking to rc.local or something. Then the VM gets started with this -net tap instead of the more complicated arrangement in the first message. /Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] Qemu with Beowulf host / Ascii guest dies without much of an error message
On 8/12/19 1:42 PM, Ralph Ronnquist via Dng wrote: > Lars Noodén via Dng wrote on 12/8/19 8:07 pm: >> [snip] >> -net user,hostfwd=tcp::-:22 \ >> -net user,hostfwd=tcp::8880-:80 \ >> -net user,hostfwd=tcp::4443-:443 \ >> -net nic,model=virtio \ >> [snip] > > Won't those declaration set up multiple concurrent backends for the > single guest NIC ? Shouldn't you rather join up all redirections into a > single backend parameter? I can imagine that multple backends could well > compete rather than collaborate (though to end up crashing is a bit > insensitive). This is of course pure guess work... > > Ralph. Thanks. That was it. I am rather sure that invoking it the way shown above /used/ to work even if it now causes qemu to crash: Multiple old shell scripts I have from 2017 have that style of options, and worked, but I'm not sure for which version of qemu they last ran on. Definitely, putting forwarding all under one option keeps it from crashing. The qemu manual page does not warn against using multiple "-net user," options though it explicitly says that hostfwd can be used multiple times. I guess the right way is now like this: -net user,hostfwd=tcp::-:22,hostfwd=tcp::8880-:80,... The behavior has changed. I wonder if this is a bug in qemu? /Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
[DNG] Qemu with Beowulf host / Ascii guest dies without much of an error message
I've installed Ascii in a Qemu VM and qemu dies each and every time I try to connect to it using SSH via a forwarded port. This crash also happens each and every time with other Guests, such as CentOS 7, and with either Ascii or Beowulf as a host. It also happens with known working Qemu VMs imported from other distros, using much the same settings. None survive and attempted network connection. VNC connections work just fine, but when I try to connect to the forwarded SSH port or forwarded HTTP port, there is a long and VNC locks up. Nothing shows up in VNC during that interval nor can anything be typed. Then qemu dies and VNC goes away. The stderr from qemu gets the single word: 'Killed' It happens each and every time when trying to connect to the guest from the host. The crash is the same when trying to connect to either sshd or Apache2 (or anything else) over a forwarded port. When I start the guest again I can't find anything on it in /var/log/syslog or /var/log/messages around the time of the crash. Here is one example of qemu settings which do not allow incoming connections. However, there are many other similar variants with different NICs, drive formats, consoles or VNCs: qemu-system-x86_64 \ -m size=6G,slots=0,maxmem=6G \ -cpu host \ -enable-kvm \ -device virtio-balloon \ -name "qdevuan",process=qdevuan \ -drive \ format=qcow2,index=0,cache=none,media=disk,file=devuan.img -cdrom devuan_ascii_2.0.0_amd64_netinst.iso \ -net user,hostfwd=tcp::-:22 \ -net user,hostfwd=tcp::8880-:80 \ -net user,hostfwd=tcp::4443-:443 \ -net nic,model=virtio \ -vnc :0 \ -boot c Again, if I try connecting to SSH on 127.0.0.1 on port , it dies. If I try HTTP on 127.0.0.1 on port 8880, it dies. On the host, while Qemu is still running, the host has plenty of free memory: $ free -m totalusedfree shared buff/cache available Mem: 7898 5567271 0 70 7175 Swap: 8107 238084 However, I can see that memory usage climbs drastically before Qemu is killed: . . . PID PPID USER S %CPU %MEM COMMAND 3409 3408 lars R 42.1 96.4 qdevuan . . . What should I be checking to fix or work around this crash? $ grep -i pretty /etc/os-release PRETTY_NAME="Devuan GNU/Linux 3 (beowulf)" $ apt-cache policy qemu-system-x86 qemu-system-x86: Installed: 1:3.1+dfsg-8~deb10u1 Candidate: 1:3.1+dfsg-8~deb10u1 Version table: *** 1:3.1+dfsg-8~deb10u1 500 500 http://fi.deb.devuan.org/merged beowulf/main amd64 Packages 100 /var/lib/dpkg/status I've been puzzling over this for a few weeks. /Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] Installing fresh copy of x86_64 Beowulf?
On 7/28/19 6:33 PM, goli...@devuan.org wrote: > On 2019-07-28 09:29, rgsid...@sunrise.ch wrote: >> Hi, with the actual image, I encountered only one problem. I tried to >> install it from a USB-stick, but the installer mixed up the partitions >> and installed on /dev/sdb instead of /dev/sda. You have to correct >> grub and the fstab respectively to avoid a non bootable system. And >> be aware, that there won't be a gksu-package anymore and you should >> check, if there aren't any consolekit-related packages installed >> erroneously. Replace them with the whole lot of elogind-stuff and >> everything will just work fine 👍😃. >> >> Sincerely >> >> >> Roland >> >>> [...] > > > There is no official Beowulf image because Beowulf hasn't been released > yet. > > golinux Ok. Thanks everybody The approach I tried was to install a minimal Ascii setup and then s/ascii/beowulf/ in sources.list then do an upgrade and a dist-upgrade. It seem to work ok for a server, I've had it running the last few days.. I've not run into new errors, just old ones. /Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
[DNG] Installing fresh copy of x86_64 Beowulf?
Is there a current guide to installing Beowulf on a fresh machine in one move? Or must Ascii go first and then followed by an in-place upgrade? /Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
[DNG] Review: Intro to Devuan GNU+Linux, A Great Operating System without Systemd
Ubuntu Buzz has a nice review of Devuan: "Intro to Devuan GNU+Linux, A Great Operating System without Systemd" http://www.ubuntubuzz.com/2019/05/intro-to-devuan-gnulinux-great-operating-system-without-systemd.html It seems like a decent, positive review and covers the default in the desktop setup. It may have missed a key point about all the init systems or service managers [1] one can thus choose from: in addition to the default, sysvinit, there would also be OpenRC, DaemonTools, runit, monit, and maybe some others I missed, to choose from. On our side of things I notice that the repository does not seem to have any way of identifying those tools as a group. Perhaps they could all be labeled "init system" or "service manager" to make them easier to spot. Also, s6, launchd, and Upstart are not in the repository, the last one perhaps for obvious reasons. /Lars [1] systemd, furthermore, is neither an init system nor a service manager. It should not be mistaken for one, even though it might contain such parts. ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
[DNG] [solved] Re: python-qt5
On 5/1/19 4:01 PM, Ralph Ronnquist via Dng wrote: > Lars Noodén via Dng wrote on 1/5/19 10:44 pm: >> How would I find python-qt5 for beowulf or pull it in from the >> corresponding Debian repository? >> >> /Lars > did you mean python-pyqt5 ? > > Ralph. Yes. Sorry for the typo. /Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
[DNG] python-qt5
How would I find python-qt5 for beowulf or pull it in from the corresponding Debian repository? /Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] Way forward
On 4/12/19 6:24 PM, Hendrik Boom wrote: [snip] > The problem with the phrase "freedom of init choice" is that it appears > to say that one could choose systemd. > > We need to be clear that we are promoting freedom by providing > alternatives to systemd, and that users that choose systemd can > use Debian with our blessing. +1 The misrepresentation of systemd as an init system adds to that confusion. /Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] The 1st Devuan conference kicks off tomorrow afternoon!
On 4/7/19 4:53 PM, Linux O'Beardly via Dng wrote: > We've had a number of excellent talks which have been recorded and > can be seen at https://www.youtube.com/user/DyneOrg. Thanks for posting the recordings. The sound isn't always the best but I am quite grateful that some people planned to record the event and were able to post it so quickly. /Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] Update on the Green Hat Hackers attack
On 4/2/19 12:26 AM, Rick Moen wrote: > Quoting KatolaZ (kato...@freaknet.org): > >> Dear D1rs, >> >> we have analysed in depth the attack from the "Green Hat Hackers" that >> compromised the Devuan infrastructure in the last hours, and we >> concluded that you all are: >> >>* APRIL FOOLS * > > It was well done, IMO. I'm impressed as heck (and nostaligic) that you > created a fully populated Gopher presence. [snip] Indeed. I was worried quite a bit until nudged to look at the epoch dates. +1 for fitting gopher into the joke. Gopher is quite underrated. With OpenPGP-signed files, the lack of encryption is less of a problem, at least for public information. Maybe next year the gopher site could be done as an Onion service and thus wrap the gopher in an encrypted protocol. Though that may raise the bar for participation a bit too much. /Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] ..should we set up our own usage policy wizard script?, was: OpenSSH: delay on beowulf
On 2/11/19 11:51 AM, Didier Kryn wrote: > Le 10/02/2019 à 18:19, Arnt Karlsen a écrit : >>> >>> There's nothing in the logs. It just takes verry long to start. > > > Tried to set LogLevel in sshd_config? > > or launch sshd with the -d option ? A quick way to do that without disrupting anything would be to run sshd on an alternate port and then connect to that port: sudo /usr/sbin/sshd -p -d or sudo /usr/sbin/sshd -p -ddd 2>&1 | tee /tmp/sshd.log and capture the session's debugging info to a file to rummage around in. /Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] Systemd as tragedy
On 1/31/19 4:38 AM, Joel Roth via Dng wrote: > On Thu, Jan 31, 2019 at 12:19:44AM +0100, Alessandro Selli wrote: >> Might interest someone: >> >> https://lwn.net/Articles/777595/ >> >> [Front] Posted Jan 28, 2019 20:05 UTC (Mon) by corbet >> >> His attempt to cast that story for the >> pleasure of his audience resulted in a sympathetic and nuanced look at a >> turbulent chapter in the history of the Linux system. > > Hard to believe I listened to the same talk Corbet > is describing. What I heard was a propaganda piece, > finding reasons to sell the systemd approach > to BSD conference attendees. > > To Benno Rice, the tragedy is the pathetic opposition > to what he construes as the inevitable forces of > progress and rationality. That is also my interpretation of his statements, both at LCA and BSDCan. I'd seen the video of his LCA talk already and the gist was that he thinks systemd is great and that everyone should work on implementing something identical within FreeBSD. Something weird and disturbing that it got through the selection process and made it in as a talk. About the only attempt he made at an argument in favor of systemd was his constant use of the logical fallacy appeal to novelty. i.e. "it is better because it is newer" but at least he reduced the amount of personal attacks against non-systemd people this time. https://www.youtube.com/watch?v=o_AIw9bGogo He said about the same thing at BSDcan. https://www.youtube.com/watch?v=6AeWu1fZ7bY I still hold out hope that the normal tracks for LCA 2019 will be better but have not seen them yet except for the Lewis [1] talk which can be recommended for watching. /Lars [1] https://www.youtube.com/watch?v=p76hGxv3-HE ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] mailing list software
On 12/12/18 1:25 PM, Rick Moen wrote: > I wrote: > >> Upon examination, it turns out that the known flaws in Procmail lack any >> credible exploitation scenario. The matter was covered on LWN.net a few >> years ago, and I'm pretty sure nothing has changed substantively. >> >> (I've gone through this discussion several times since then on mailing >> lists, and can dredge up details from those if necessary.) > > One was a year ago on this mailing list: [...] Got it. https://lists.dyne.org/lurker/message/20180710.164111.458c1663.en.html Thanks. /Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] mailing list software
On 12/12/18 1:13 PM, Rick Moen wrote: > Quoting Lars Nood??n via Dng (dng@lists.dyne.org): > >> It's probably a time that Procmail be retired, and thus anything based >> on it. There have been a lot of reports in recent years of serious, >> unsafe bugs in its processing. However, there is this comment about it >> from a former Procmail maintainer to consider: >> >> https://marc.info/?l=openbsd-ports&m=141634350915839&w=2 > > Upon examination, it turns out that the known flaws in Procmail lack any > credible exploitation scenario. The matter was covered on LWN.net a few > years ago, and I'm pretty sure nothing has changed substantively. > > (I've gone through this discussion several times since then on mailing > lists, and can dredge up details from those if necessary.) I found only this one on LWN: "Reports of procmail's death are not terribly exaggerated" https://lwn.net/Articles/416901/ I liked Procmail back when I was using it, but that was a long time ago. Neither now nor then could I look under the hood so I defer to others on that. /Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] mailing list software
On 12/12/18 1:14 AM, Rick Moen wrote: > Quoting Martin Steigerwald (mar...@lichtvoll.de): [...] >> Ah, I found it: smartlist. It appears to be a small, lightweight C >> application. Debian is using this. > > Nicely summarised. Yes, SmartList seems to have carved out a neat > little niche of modest functionality. It's built atop Procmail, and [...] It's probably a time that Procmail be retired, and thus anything based on it. There have been a lot of reports in recent years of serious, unsafe bugs in its processing. However, there is this comment about it from a former Procmail maintainer to consider: https://marc.info/?l=openbsd-ports&m=141634350915839&w=2 /Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] Audio woes in Ascii - speakers but no headphones
On 12/10/18 1:25 AM, Joel Roth via Dng wrote: > [...] > One other good idea is this: alsactl init > The command will put your soundcard in a usable > state. > > As exemplified here: > > https://unix.stackexchange.com/questions/15765/why-do-i-have-to-run-alsactl-init-each-time-i-boot-my-system Progress. Thanks. I checked AlsaMixer and it showed the headphones with full volume but still no sound, unless I unplug the headphone jack and then sound comes from the speakers instead. However this immediately restored sound to the headphones: alsactl init I've now done alsactl store and will see if the settings hold after the next suspend/resume and the next scheduled reboot. /Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] Audio woes in Ascii - speakers but no headphones
On 10/11/18 9:00 PM, Lars Noodén wrote: > Today when I plugged in external speakers or earbuds into the audio jack > on my notebook, the sound no longer transfers from the built-in speakers > to the jack. The sound stops in the built-in speakers as expected but > it is not transferred to the jack. > > If I run pavucontrol and choose "playback" I can see the volume meter > hopping around as the sounds are processed. Strangely, if I choose > "output devices, port: speakers (unavilable)" I can also see the volume > meter being active and if I choose "output devices, port: headphones > (plugged in)" then the volume meter goes completely motionless after > zeroing out. This is the opposite of what I expect. I had expected > that when I plug in the headphones to the audio jack that the sound > activity would be shown there. > > I booted Linux Mint 19's Live image and the audio jack functions as > normal there so the problem seems to be with Devuan. I am open for > ideas about how to resolve this so that the audio jack may be used again. > > /Lars > > $ lsb_release -d; uname -r; > Description: Devuan GNU/Linux 2.0 (ascii) > 4.9.0-8-amd64 > The lack of sound from the headphone jack is still a problem with a newer kernel: $ lsb_release -d; uname -r; Description:Devuan GNU/Linux 2.0 (ascii) 4.18.0-0.bpo.1-amd64 What should I be looking at from within Devuan? /Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] Devuan for Raspberry Pi fried SD CARD.
On 12/3/18 1:16 PM, Edward Bartolo wrote: > Nevermind, I found that prepending a symlink with a 'K' in /etc/rcN.d > is to disable that script. See "man update-rc.d" for the official tool for that. /Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] Devuan for Raspberry Pi fried SD CARD.
On 12/2/18 12:41 PM, Edward Bartolo wrote: > [snip] > So, the SD CARD, although brand new is now to be thrown away. > [snip] Is it still under warranty? If so you can get a replacement. In addition to the tips already mentioned, under-provisioning helps a bit too. /Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] Implementing directory services/Kerberos
On 11/8/18 9:12 PM, Rick Moen wrote: > Redirecting back on-list. > > Quoting wirelessd...@gmail.com (wirelessd...@gmail.com): [snip] >> So my next question is, whats the recommended package to authenticate >> with LDAP and allow users to login to a desktop via their LDAP >> account? I've seen various options for PAM and NSS, but do I need to >> configure both or just one? [snip] > I remember that you very much needed a PAM hook, because you're > introducing a new and preferred authentication method for shell login. > Offhand, I can't remember exactly _how_ NSS is part of this picture > (being about name services, e.g., names of hosts), but NSS and PAM > are pretty intertwined. [snip] If you are using keys for authentication then you would not need PAM, I think. Using the AuthorizedKeysCommand directive to make an LDAP query and retrieve the public key ought to be enough. There is an example in this README file: https://github.com/reyk/ldapclient Apologies for using a Github link. /Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] CD-ROM missing valid 'Release' file on devuan_ascii_2.0.0_amd64_dvd-1.iso
On 10/24/18 6:46 AM, Lars Noodén wrote: > Using the devuan_ascii_2.0.0_amd64_dvd-1.iso image from a USB stick I > consistently get the error: > > [!] Detect and mount CD-ROM > Error reading Release file > The CD-ROM does not seem to contain a valid 'Release' file, > or that file could not be read correctly. > > You may try to repeat CD-ROM detection but, even if it does > succeed the second time, you may experience problems in the > installation. > > If it's any clue, the same error also occurs on the > devuan_ascii_2.0.0_amd64_cd-1.iso image as well as the Debian-based > 2018-06-27-rpd-x86-stretch.iso image for Raspbian. So the problem may > be upstream. > > /Lars > It turns out that none of those images like the presence of multiple USB sticks. So a work-around has been to remove everything except the installer device. /Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
[DNG] CD-ROM missing valid 'Release' file on devuan_ascii_2.0.0_amd64_dvd-1.iso
Using the devuan_ascii_2.0.0_amd64_dvd-1.iso image from a USB stick I consistently get the error: [!] Detect and mount CD-ROM Error reading Release file The CD-ROM does not seem to contain a valid 'Release' file, or that file could not be read correctly. You may try to repeat CD-ROM detection but, even if it does succeed the second time, you may experience problems in the installation. If it's any clue, the same error also occurs on the devuan_ascii_2.0.0_amd64_cd-1.iso image as well as the Debian-based 2018-06-27-rpd-x86-stretch.iso image for Raspbian. So the problem may be upstream. /Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] Case studies of high-traffic web sites running Devuan?
On 10/18/18 2:46 PM, Daniel Klein wrote: > On 10/17/18 05:09, Lars Noodén wrote: >> Are there any case studies about large, high-traffic web sites running >> Devuan? [snip] > classictic.com runs with devuan, as most of the supporting systems. Some are > still debian. > I can't say that it is more stable than debian was, but at least as stable > as it. 2 1/2 years and counting. All problems so far were database issues > and such. Thanks. /Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
[DNG] Case studies of high-traffic web sites running Devuan?
Are there any case studies about large, high-traffic web sites running Devuan? For my part I understand that it is just Debian without the nasty bits. However, some are leery of change and would like at least anecdotal support that it is as reliable, or more so, than Debian. /Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
[DNG] Kernel SUID sandbox
I notice that in Ascii with both the stock kernel and the one from backports (4.17.0-0.bpo.1-amd64) some applications cannot run. For example the web browser Brave fails with this message: [9394:9394:1015/111632.363017:FATAL:zygote_host_impl_linux.cc(116)] No usable sandbox! Update your kernel or see https://chromium.googlesource.com/chromium/src/+/master/docs/linux_suid_sandbox_development.md for more information on developing with the SUID sandbox. If you want to live dangerously and need an immediate workaround, you can try using --no-sandbox. Trace/breakpoint trap This is not an issue in Linux Mint. Perhaps it is a problem upstream in Debian? /Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
[DNG] Audio woes in Ascii - speakers but no headphones
Today when I plugged in external speakers or earbuds into the audio jack on my notebook, the sound no longer transfers from the built-in speakers to the jack. The sound stops in the built-in speakers as expected but it is not transferred to the jack. If I run pavucontrol and choose "playback" I can see the volume meter hopping around as the sounds are processed. Strangely, if I choose "output devices, port: speakers (unavilable)" I can also see the volume meter being active and if I choose "output devices, port: headphones (plugged in)" then the volume meter goes completely motionless after zeroing out. This is the opposite of what I expect. I had expected that when I plug in the headphones to the audio jack that the sound activity would be shown there. I booted Linux Mint 19's Live image and the audio jack functions as normal there so the problem seems to be with Devuan. I am open for ideas about how to resolve this so that the audio jack may be used again. /Lars $ lsb_release -d; uname -r; Description:Devuan GNU/Linux 2.0 (ascii) 4.9.0-8-amd64 ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] [OT] Restricting user capabilities after ssh login
On 10/10/18 7:30 PM, Alessandro Selli wrote: > Works for me: ...> [root@wrkstn02 ~]# lsb_release -d ; uname -r > Description: Devuan GNU/Linux 2.0 (ascii) > 4.18.0-0.bpo.1-amd64 Hmmm. I'm using just the stock kernel. Maybe that is the difference: $ lsb_release -d; uname -r Description:Devuan GNU/Linux 2.0 (ascii) 4.9.0-8-amd64 /Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] [OT] Restricting user capabilities after ssh login
On 10/10/18 12:38 AM, taii...@gmx.com wrote: > You can use apparmor to do this quite easily - afaik there are a few > tutorials for it. Last I checked, apparmor does not function with Devuan: # /etc/init.d/apparmor start /etc/init.d/apparmor: 130: /etc/init.d/apparmor: systemd-detect-virt: not found Starting AppArmor profiles:AppArmor not available as kernel LSM.. failed! /Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] Which is the destiny of "Gksu" ?
On 09/01/2018 10:16 PM, Didier Kryn wrote: > Le 01/09/2018 à 14:10, fsmithred a écrit : >> Some apps have already replaced gksu with >> pkexec in stretch/ascii, and I wish that solution worked in all cases. >> There are plenty of posts from people who can't start synaptic from the >> menu, and I know of one case of someone (me) who can start synaptic from >> the menu and install packages without having to provide a password. > > You pointed the culprit: pkexec uses polycy-kit (for the sole > benefit of alowing to use it without a password). [snip] Last I checked, policy-kit was exceptionally complicated and difficult to configure. It was nothing that could be done casually. It also lacked most of the granularity of sudo. How much has it improved, if any, in recent years? /Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] Which is the destiny of "Gksu" ?
On 09/01/2018 05:54 PM, Adam Borowski wrote: > Nope. Per your own link, it's neither in buster nor unstable. > > Here you have it more clearly visible: > https://packages.qa.debian.org/g/gksu.html If I understand correctly gksu is not needed. Using sudo with -H or -i, but with or without -u, will take care of the $HOME issue for graphical applications. /Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] Devuan and the raspberry pi 3+
On 08/21/2018 11:24 PM, Jim Jackson wrote: > On Mon, 20 Aug 2018, Lars Noodén wrote: > >> On 8/20/18, Jim Jackson wrote: >>> There are images of Devuan ASCII for the Raspberry Pi 3. Anyone know if >>> these are ok for the 3+? Or would I need to run the image on a model 3 and >>> update the firmware and kernel before moving to the 3+? >> >> I used devuan_ascii_2.0.0_arm64_raspi3 from the embedded sets running >> on the 3B+ >> You do have to resize the root partition manually if you do not use >> the space for another partition. I haven't checked the graphics or >> anything but OpenSSH works fine. > > Ok Thanks. I'm thinking of upgrading the PI I've got on a Pi Display to a > 3+ so I'll buy the pi and give it a go. > > cheers > Jim I just checked the graphics for Ascii. I'm not sure about the Pi Display but it works fine with an HDMI monitor, at least with XFCE4. Though probably a window manager alone would be more appropriate than a full desktop environment. Sound works via HDMI as well. Bloated graphical apps will max out the CPU though. Timezone needs to be set manually. /Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
[DNG] Partial graphics after in-place upgrade from Ascii to Beowulf on amd64
Perhaps there is an installer image for Beowulf somewhere and this can be solved with a fresh re-installation? Sunday, I did an in-place upgrade from Ascii to Beowulf on amd64. I have only partial graphics since and must get past some problems with (I think) X11. When I allow slim, lightdm, or xdm one at a time (removing the others) to start, the keyboard and mouse do not respond not even to switch to a console even though they cause the display to show the graphical login screen. However, when I disable / remove these display managers then startx gives some lip about modules not existing. When I run startx manually from a console, something similar happens though I get a blank graphical display with the unmovable mouse pointer centered on the screen. But the window manager seems not to be running nor the desktop environment and, again, both the keyboard and the mouse are unresponsive so timeout is a way to get it to drop back to the shell. $ timeout 15 startx X.Org X Server 1.20.0 X Protocol Version 11, Revision 0 Build Operating System: Linux 4.9.0-6-amd64 x86_64 Debian Current Operating System: Linux slimbook 4.17.0-1-amd64 #1 SMP Debian 4.17.8-1 (2018-07-20) x86_64 Kernel command line: BOOT_IMAGE=/boot/vmlinuz-4.17.0-1-amd64 root=UUID=3f66d242-f064-4f6e-a110-6974886fb9a4 ro quiet Build Date: 01 July 2018 05:07:24PM xorg-server 2:1.20.0-3 (https://www.debian.org/support) Current version of pixman: 0.34.0 Before reporting problems, check http://wiki.x.org to make sure that you have the latest version. Markers: (--) probed, (**) from config file, (==) default setting, (++) from command line, (!!) notice, (II) informational, (WW) warning, (EE) error, (NI) not implemented, (??) unknown. (==) Log file: "/home/lars/.local/share/xorg/Xorg.0.log", Time: Tue Aug 21 14:36:43 2018 (==) Using system config directory "/usr/share/X11/xorg.conf.d" xf86EnableIOPorts: failed to set IOPL for I/O (Operation not permitted) (II) modeset(0): Initializing kms color map for depth 24, 8 bpc. $ grep '(EE)' ~/.local/share/xorg/Xorg.0.log (WW) warning, (EE) error, (NI) not implemented, (??) unknown. [ 22631.982] (EE) Failed to load module "nv" (module does not exist, 0) [ 22631.984] (EE) Failed to load module "fbdev" (module does not exist, 0) [ 22631.985] (EE) Failed to load module "vesa" (module does not exist, 0) [ 22631.989] (EE) [drm] Failed to open DRM device for (null): -2 [ 22632.296] (EE) Failed to initialize GLX extension (Compatible NVIDIA X driver not found) $ lspci -nn | grep -E -i 'vga|3d' 00:02.0 VGA compatible controller [0300]: Intel Corporation Device [8086:5916] (rev 02) 01:00.0 3D controller [0302]: NVIDIA Corporation GM108M [GeForce 940MX] [10de:134d] (rev a2) $ sudo lshw -sanitize -class display *-display description: VGA compatible controller product: Intel Corporation vendor: Intel Corporation physical id: 2 bus info: pci@:00:02.0 version: 02 width: 64 bits clock: 33MHz capabilities: pciexpress msi pm vga_controller bus_master cap_list rom configuration: driver=i915 latency=0 resources: irq:128 memory:dd00-ddff memory:b000-bfff ioport:f000(size=64) memory:c-d *-display description: 3D controller product: GM108M [GeForce 940MX] vendor: NVIDIA Corporation physical id: 0 bus info: pci@:01:00.0 version: a2 width: 64 bits clock: 33MHz capabilities: pm msi pciexpress bus_master cap_list rom configuration: driver=nvidia latency=0 resources: irq:16 memory:de00-deff memory:c000-cfff memory:d000-d1ff ioport:e000(size=128) memory:df00-df07 ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] Devuan and the raspberry pi 3+
On 8/20/18, Jim Jackson wrote: > There are images of Devuan ASCII for the Raspberry Pi 3. Anyone know if > these are ok for the 3+? Or would I need to run the image on a model 3 and > update the firmware and kernel before moving to the 3+? I used devuan_ascii_2.0.0_arm64_raspi3 from the embedded sets running on the 3B+ You do have to resize the root partition manually if you do not use the space for another partition. I haven't checked the graphics or anything but OpenSSH works fine. /Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] Git and git.devuan.org - solved
On 08/16/2018 09:04 PM, Stefan Krusche wrote: > Am Donnerstag 16 August 2018 schrieb Lars Noodén: [snip] >> There seems to be some finesse missing. > > Hi Lars, > > I'm almost totally unexperienced with git, but what is missing, I think, is > to "stage" the changed files with, IIRC, "git add somefiles.." That's a git > concept. I read the first three chapters of an excellent and easy to read > introduction into git where I learned that, which you can get for free at > this > website: > https://git-scm.com/book/en/v2 > > Just in case you are interested. The staging was the part I missed. It wasn't clear from the "git-commit" manual page at all that "git-add" is not about adding new files but queuing existing but modified files for upload. The -a with "commit" can skip that. git clone GITURL vi README.md git commit -a git push Thanks. All set. /Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] Git and git.devuan.org
On 08/16/2018 07:10 PM, KatolaZ wrote: [snip] > if the repository belongs to you (i.e., is USERNAME is your nickname), > then you should: > > git clone GITURL Thanks. That confirms that part. However, if I then edit a file, the commit seems to do nothing. > then make your changes, commit, and push (this should be covered by > the tutorials you have read). I get this message when trying to commit: no changes added to commit That seems to cause the push to say the following after entering the user name and password: Everything up-to-date And then no new notifications or changed files are present on the project git web page. Same if I try a 'git pull' in my cloned copy of the project. It just says: Already up-to-date. However, since one file has been changed it should be in conflict with the original copy of the project on git.devuan.org There seems to be some finesse missing. /Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
[DNG] We can't stop wars and diseases yet, but we got rid of systemd
There seems to now be a Swiss hosting provider specializing in Devuan hosting: "We can't stop wars and diseases yet, but we got rid of systemd." ... "thanks to the developers of Devuan." https://devuanhosting.com/en-us/cms/ It is one of their featured selling points. /Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
[DNG] Git and git.devuan.org
Can someone please give me some quick examples of how to best "checkout" something from g...@git.devuan.org:USERNAME/someproject and then, after modification, submit the changes back? I've used CVS only a little bit but am even more unfamiliar with git. I suppose it would be two lines but after reviewing a lot of git tutorials I am still not sure which one to use to fetch the code and then how to find a working method to upload the changes. Thanks, Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] [OT] Restricting user capabilities after ssh login
On 08/13/2018 10:45 AM, info at smallinnovations dot nl wrote: > On 13-08-18 09:40, Lars Noodén wrote: >> On 08/13/2018 10:36 AM, info at smallinnovations dot nl wrote: >>> On 13-08-18 09:31, Lars Noodén wrote: >>> >>> >>> I worked the other way, Apache is able to work with symlinks. I only >>> needed to make www-data member of the users group. >> Eek. Think instead 'least privilege' That would be one situation where >> adding an ACL would work. That would avoid giving away (potentially) >> all the user's files to the web server. >> >> /Lars > > It is not really different from allowing user access to > /var/www/html/website. When a user puts all his user's files there (s)he > give away (potentially) all the files to the webserver too. As a member of the user's group, if something breaks out of the web server's document root then it has full read access to ~user and its subdirectories. In some files or directories that could also be write access. ACLs are a pain though since they are rarely used and can be complicated. /Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] [OT] Restricting user capabilities after ssh login
On 08/13/2018 10:36 AM, info at smallinnovations dot nl wrote: > On 13-08-18 09:31, Lars Noodén wrote: > > >>> BTW I use this configuration combined with a symbolic link from >>> /var/www/html/website to /home/%u/website. This way it is much safer >>> then ftp, they cannot login while they still are able to maintain their >>> own website. Rsync over SSH is another possibility but SFTP looks more >>> like FTP and is more user friendly. >>> >>> Grtz >>> >>> Nick >> Hmm. symlinks should not work to reach targets outside the chroot. >> However, if you are on GNU/Linux you can use a bind mount. >> >> sudo mkdir www >> sudo mount --bind /var/www/html/website/ ./www/ >> >> It can be made permanent in /etc/fstab too. >> >> /Lars > > I worked the other way, Apache is able to work with symlinks. I only > needed to make www-data member of the users group. Eek. Think instead 'least privilege' That would be one situation where adding an ACL would work. That would avoid giving away (potentially) all the user's files to the web server. /Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] [OT] Restricting user capabilities after ssh login
On 08/13/2018 10:10 AM, info at smallinnovations dot nl wrote: > On 13-08-18 03:31, mett wrote: >> On Sun, 12 Aug 2018 13:18:23 +0200 >> info at smallinnovations dot nl wrote: >> [snip] >>> That part of my sshd_config looks like: >>> >>> Subsystem sftp internal-sftp >>> Match group sftponly >>> ChrootDirectory /home/%u >>> X11Forwarding no >>> AllowTcpForwarding no >>> ForceCommand internal-sftp [snip] > BTW I use this configuration combined with a symbolic link from > /var/www/html/website to /home/%u/website. This way it is much safer > then ftp, they cannot login while they still are able to maintain their > own website. Rsync over SSH is another possibility but SFTP looks more > like FTP and is more user friendly. > > Grtz > > Nick Hmm. symlinks should not work to reach targets outside the chroot. However, if you are on GNU/Linux you can use a bind mount. sudo mkdir www sudo mount --bind /var/www/html/website/ ./www/ It can be made permanent in /etc/fstab too. /Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] [OT] Restricting user capabilities after ssh login
On 08/13/2018 08:06 AM, Didier Kryn wrote: > But allowing ssh connections with a restricted shell permitting only > the commands used by rsync could be the way. But you would probably need > to forbid the fancy features of ssh, like port forwarding. If they use SSH keys (and only keys) for authentication then rsync restrictions can be set in the authorized_keys file but requires a bit of fiddling to get the right options. Running rsync with the SSH client in verbose mode gives you the details needed to set in the key file: rsync -e 'ssh -v' -avH /some/source/dir u@there:/some/dir/ Then see 'command="command"' in the AUTHORIZED_KEYS FILE FORMAT section of the manual page for sshd(8) for that. Once done, that is rather solid on its own but could still be used in conjunction with a restricted shell. The prerequisite is for a locked down SSH key is that the group of users to be affected doesn't have access the authorized keys files. The accounts need to be able to read their own own keys but not write them. And perhaps it is best if it cannot read the keys for other accounts. Match Group lockedin AuthorizedKeysFile /etc/ssh/keys/%u/authorized_keys Or something similar if you are more careful with the file permissions. Match Group lockedin AuthorizedKeysFile /etc/ssh/authorized_keys/%u What scale are you looking at, 10s, 100s, 1000s, or more? /Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] [OT] Restricting user capabilities after ssh login
On 08/13/2018 04:29 AM, mett wrote: [snip] > To be honest, rbash is what I thought of, first. > > 2 things refrain me from using it: > -user cannot cd in his subdirectories [snip] Ok. That is potentially a big barrier. > -the wikipedia example of writing 'bash' at the command line > and then being able to access everywhere(I tried it). That would be only if the $PATH environment variable is not set properl. You could forcibly set $PATH to /usr/local/rbin for example and then populate that directory with the allowed programs: sudo mkdir /usr/local/rbin; sudo ln /bin/ls /usr/local/rbin/; sudo mv /bin/mv /usr/local/rbin/; sudo rm /bin/rm /usr/local/rbin/; . . . You can use symbolic links in the restricting bin directory instead if the restricted PATH directory is on a different partition from the originals or if that style is nicer. /Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] [OT] Restricting user capabilities after ssh login
On 08/12/2018 09:10 AM, KatolaZ wrote: > On Sun, Aug 12, 2018 at 01:55:00PM +0900, mett wrote: [snip]>> I m considering giving ssh access but I realized that >> chroot for ssh looks quite involved. >> >> So, I m wondering if using 'chmod o-r' >> for folders(and subfolders), and files on >> /etc, /home, /root, /usr and /var is a viable solution. > > Maybe use a restricted shell, allowing only the bunch of commands you > would like the users to be able to run. Beware of cat(s), though. With restricted shell the main thing is to make a separate directory for the rshell user and replace $PATH with it so they can't access the normal directories. There you put links (symbolic or hard) to the original applications they are allowed to run, how ever few those are but the fewer the better. However, why vsftpd instead of using chrooted SFTP for the file transfers? /Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
[DNG] maintaining packages (was Re: systemd and ssh-server)
On 07/27/2018 01:33 PM, KatolaZ wrote: > On Fri, Jul 27, 2018 at 01:18:41PM +0300, Lars Nood�n wrote: > [cut] >> Can you please (re-)post the link to the new Devuan build process? [cut] > > and the relevant link is the fourth one: > > https://dev1galaxy.org/viewtopic.php?pid=1110#p1110 > The manual of d1h, the Devuan packaging helper will help you build Devuan > packages for Devuan or at home for your own use. > > Please feel free to ask if you need. Please also consider that the > current version of d1h has a problem with the "cache" function, which > I have to update to use the new salsa.debian.org. Sorry for the > inconvenience. Ok. Thanks. I've not forgotten, just slow, and have been working out which hardware to use and working through several options for what to load (or not load) on the system and general work flow. It's looking like the main way to reduce the probability of end-point compromise for such a juicy target is to not have any X11 applications, but especially not usual desktop stuff like a browser. Once I've got some more prerequisites out of the way, I'll be practicing with d1h. /Lars signature.asc Description: OpenPGP digital signature ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
[DNG] apparmor: systemd-detect-virt: not found
apparmor seems to be missing from the bug list [1] and gives an error: # /etc/init.d/apparmor restart /etc/init.d/apparmor: 182: /etc/init.d/apparmor: systemd-detect-virt: not found Reloading AppArmor profiles:Mounting securityfs on /sys/kernel/security...Insufficient privileges to change profiles.. failed! Should a bug be filed at https://bugs.devuan.org/ or elsewhere? /Lars [1] https://bugs.devuan.org/db/ix/full.html ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] systemd and ssh-server
On 07/27/2018 01:00 PM, KatolaZ wrote: > [...] I need to specify here that a *maintainer* is a person who > follows the changes happening upstream to the packages he/she is > maintaining on a daily basis, and rebuilds those packages as > necessary, keeping them updated. And commits herself to do so at > least for an entire release cycle. > > Unfortunately, most of the great people that helped stripping > libsystemd deps in Jessie, just disappeared soon after (also due to > the relatively steep learning curve of the Devuan building pipeline, > which has been lately somehow simplified by d1h and other tools). > > [...] The real burden is committing to maintaining those changes at > least for an entire release cycle, better if more than that. That's > what a *maintainer* should do. [...] The Devuan site [1] is quite clean but as a side effect lacks a direct link to the new, more simplified build process, and says to ask via mail. Back in the Red Hat 5.2 days, OpenSSH was one of the packages where I rolled my own RPMs. APT is different but, famous last words, how much harder could it be once one gets going? I can probably follow a recipe reasonably well, and the second or third time should be easy, but would be constrained somewhat if a dedicated development machine is needed locally. So I would be interested in seeing how feasible it would be to maintain that package. Some preliminary searching turns up nothing about Devuan's build process. Can you please (re-)post the link to the new Devuan build process? /Lars [1] https://devuan.org/ ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] systemd and ssh-server
On 07/26/2018 04:01 PM, Klaus Ethgen wrote:> Hi, > > Am Mo den 23. Jul 2018 um 14:24 schrieb Rolf Schmidt: >> I would ask, if it is true, that the openssh-server still needs >> libsystemd0 in ascii? > >> Can I expect e fix? > > If you trust me ( :-D ) you can use my package[0].[snip] Looking at the DSC files, it seems that the culprit is either gnome or ssh-askpass-gnome or both. Is there an alternative ssh-askpass-* graphical utility likely to be more portable which can replace it? /Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] who's tying up my port 80?
On 07/09/2018 11:23 PM, Harald Arnesen wrote: > Rick Moen [2018-07-09 21:01]: > >> 'netstat' in the 21st Century is spelled 'ss'. ;-> >> https://dougvitale.wordpress.com/2011/12/21/deprecated-linux-networking-commands-and-their-replacements/ > > Why, oh why replace well-known, portable commands with Linux-only > commands that are no better? Looking at the comparison table in that link, not only are the new utilities and order of magnitude more complex they also fail to deliver many of the functions available in the normal utilities. Newer is not better. Different is not better. Only better is better. ... and most of these new utilities don't cut the mustard from what I've experienced with them. I haven't decided about ss yet however. /Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] A Devuan kernel?
On 07/09/2018 01:52 AM, Jimmy Johnson wrote: > I don't think Linus is trying to hide anything, he just can't talk > about a backdoor and will deny a backdoor if you ask him about one. If you watch the video of when he was asked that question up front at a conference there is a clear "no" sound from him occurring at the same time he vigorously nods his head, leaving the answer ambiguous for now. Though it was from the time before backdoors, I would still like to see a copy of Gary Kildall's book. A lot of today's troubles still stem from that earlier time. The stakes at the level Torvalds is at are very high. /Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
[DNG] Starting a Devuan subforum at LinuxQuestions?
It looks like contact from a VUA would be needed to get a subforum for Devuan established over at LinuxQuestions: "...The process for this is covered in depth elsewhere, but if you know someone that is officially associated with the distro that is interested in participating here at LQ, do feel free to put them in touch." https://www.linuxquestions.org/questions/lq-suggestions-and-feedback-7/devuan-4175631820/ I think there is enough activity over at that site that it would be a good idea to establish a presence there. /Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] (forw) [GoLugTech] Microsoft buys GitHub
On 06/05/2018 02:06 PM, Mark Rousell wrote: > On 05/06/2018 07:19, Alessandro Selli wrote: >> On 04/06/2018 at 18:40, Mark Rousell wrote: >>> On 04/06/2018 17:02, salsa-...@tut.by wrote: Personally I see this as a part of "embrace open source" strategy to kill open source. # Serge >>> I can't see that it would be in Microsoft's interest to kill open source. >> Really? Are you kidding? > > The simple truth is that Microsoft is now making money out of open > source (and users of open source software). Thus killing or harming open > source no longer makes sense for Microsoft. If M$ actually were into FOSS, it'd support ODF and other open standards in its products, rather than breaking them. Or it would join the OIN to show that it is on the same team and stop shaking down Android/Linux-using companies and other */Linux users over software patents. Actions speak louder than words. > Their revenue going forward depends on playing nicely with open source. Their revenue does not yet depend on helping FOSS, but it does depend on people repeating that untruth that it does. Where they are making money off of FOSS is through their shakedowns over software patents. That is a core part of their Azure strategy, too. For Azure if another company threatens M$ over software patents, M$ just sells them a few more for a song and then sends them off to attack competitors. M$ used to depend on the OEM monopoly and the office file format monopoly and to a certain extent it still does. But they are moving those cash cows under Azure to make "cloud" look like growth. M$ will screw up GitHub both on purpose and by accident. Take a look at Nokia, Hotmail, and Skype. Politically they can't mess with it right away while people are watching, but expect the claws to come out within two years of acquisition after people have time to forget. Time is needed, recall what Ralph wrote about TTL of societal knowledge. /Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] [OT] Re: (forw) [GoLugTech] Microsoft buys GitHub
On 06/04/2018 09:10 PM, Mark Rousell wrote: [snip] > I chose the name 'Microsoft Enterprise Linux' deliberately. ;-) [snip] It's called "Azure Sphere OS" and it is 100% dependent on M$ products. You cannot use it without M$ Azure and you cannot develop for it without both M$ Windows and M$ Visual Studio on M$ Windows. Presumably system administration has similar requirements. Of the the targets for purchase, I'd say that Canonical is weakest and M$ always goes after the weak and crappy products. Ubuntu is not crappy but Canonical is not in good shape and like Red Hat it has been infiltrated at the executive level by "former" Microsofters. But unlike Red Hat because Canonical is much smaller, these are a much higher percentage of the team and have an outsized influence. A purchase could further damage upstream Debian and thus Devuan. However, as long as Devuan is able to self-host, M$ destruction of GitHub is only a side problem and not directly in the way of progress. /Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] [OT] Re: (forw) [GoLugTech] Microsoft buys GitHub
On 06/04/2018 08:27 PM, Ralph Ronnquist wrote: [snip] > Unfortunately TTL for societal knowledge seems to be about 6 years; > i.e., 6 years after introduction, it'll generally be seen as having > always been there. > > Ralph. Good point but I'd say that's only if it's knowledge in an area near and dear to an individual. If it is an area outside their interests then the TTL is probably closer to 18 months or less. That observation is not taking into account the heavy propaganda and revisionism that M$ and its operatives use, especially with their control over the trade press. So collectively, since most people are not interested, the TTL is maybe just over a year or so. That's what makes the lies about "MS ❤ Linux" especially problematic. Your average slob believes it right away and after 18 months, your not so average slobs will too. "I ❤ Chicken" ⇒ "MS ❤ Linux" /Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] [OT] Re: (forw) [GoLugTech] Microsoft buys GitHub
On 06/04/2018 11:45 PM, KatolaZ wrote: > On Mon, Jun 04, 2018 at 08:47:36PM +0100, Simon Hobson wrote: >> KatolaZ wrote: >> >>> Whatever people say on twitter, Microsoft has never changed and never >>> will. It's the same company that stole BASIC. The same company that >>> stole DOS. >> >> While I am no fan of MS and it's tactics, they didn't steal DOS. They bought >> it outright for what the person selling it accepted as a fair price. It's an >> interesting story of how one decision changed the direction of the software >> world, and one of those points in history where with the benefit of 20:20 >> hindsight it's easy to say "he did WHAT !" > > You are right: they "bought" DOS from a "third party" which had > developed DOS out of an unlicensed source version of Digital Research > CP/M, and called it MS-DOS. I had a vague recollection that M$ had to resettle over the price because the initial $75K turned out to be a rip-off. I cannot find anything specific to the resettlement. However, here are two decent articles about the origins of MS-DOS https://www.bloomberg.com/news/articles/2004-10-24/the-man-who-could-have-been-bill-gates https://www.bizjournals.com/seattle/print-edition/2015/05/01/microsoft-bought-tim-paterson-s-dos-for-75k-the.html I'm not sure why M$ bought GitHub other than, based on their M.O., it provides some means to hurt their competitors. Remember that nearly all of the major projects stored in GitHub are competitors to M$ and now M$ will have access to that code. /Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] installer on serial console / qemu
On 05/17/2018 10:15 PM, Alessandro Selli wrote: > On 17/05/2018 at 10:05, Lars Noodén wrote: >> On 05/17/2018 10:37 AM, Adam Borowski wrote: >>> On Thu, May 17, 2018 at 05:32:06AM +0300, Lars Noodén wrote: >>>> Typo aside, wouldn't that need to point to the serial console instead >>>> and add, speed, parity, and word size? >>>> >>>>console=ttyS0,19200n8 >>> >>> Doesn't this default to 115200n8 these days? >> >> The console will run at the speed you set it to run at within the limits >> of your hardware. Some hardware handles 115200 bps some hardware does >> not. > > What hardware that was produced in the past 20 years does not? I have encountered several types of USB-to-Serial adapters which do not. When I swap them out for a different brand, the same machine tolerates higher rates. /Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] installer on serial console / qemu
On 05/17/2018 10:37 AM, Adam Borowski wrote: > On Thu, May 17, 2018 at 05:32:06AM +0300, Lars Noodén wrote: >> Typo aside, wouldn't that need to point to the serial console instead >> and add, speed, parity, and word size? >> >> console=ttyS0,19200n8 > > Doesn't this default to 115200n8 these days? The console will run at the speed you set it to run at within the limits of your hardware. Some hardware handles 115200 bps some hardware does not. Some might only handle speeds in between, such as 38400 bps. Best to start low to get things working first and then ramp up later until you hit errors. /Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] installer on serial console / qemu
On 05/17/2018 05:15 AM, Enrico Weigelt, metux IT consult wrote: [snip] > could anyone give me a hint on how to run the installer on > serial console ? If I just add conosole=tty0, the installer > suddenly asks me for the language. Typo aside, wouldn't that need to point to the serial console instead and add, speed, parity, and word size? console=ttyS0,19200n8 Stop bits, I guess are assumed to be 1. If I recall correctly it may have to be set in two places, once for the kernel and once in another .cfg file for the installer. /Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] machine locks up switching between console and X session - resolved
On 04/27/2018 02:23 AM, Steve Litt wrote: [snip] > Not mentioned is which WM/DE is being used. Some WM/DEs are a crash > waiting to happen. Why not temporarily use LXDE, and see whether that > effects the frequency of the hang. If so, determine what about your > former WM/DE was causing the problem. > > I'd just be careful about reducing focus too early, or the root cause > might escape you for a long, long time. [snip] Ok. Thanks everyone, especially Steve. Sorry for the protracted saga. I redid the RAM test which looked initially like a lead but the recent versions of multi-threaded Memtest86+ fail on several models of computers, including the one I have as I found out. So the RAM turns out to be OK based on the single-threaded tests. I've tried both video drivers for Nvidia. Then I tried the Live Ubuntu 18.04 image and had no problems with memory getting eaten for no reason. So I installed Ubuntu for a while and it worked, so I then reinstalled Devuan Ascii but with LxQt and MATE instead of XFCE, neither seem to give any problem with RAM. The nasty nouveau driver had no problems on the fresh install, so I have now also tried the nasty nvidia-bin driver. Both leave a lot to be desired but both behave as far as RAM consumption goes. I have that set up now running close to 48 hours and the RAM usage goes up and down in proportion to the processes active, not just up and up and up. tldr; it looks like the problem might have been XFCE itself ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
[DNG] machine locks up switching between console and X session - update
On 04/27/2018 02:23 AM, Steve Litt wrote: [snip] First thing I'd do is test the RAM and the disk. Easy to do, and it would be real shame to chase your video driver tail for a month when it was bad RAM. I'm pretty sure bad RAM can cause almost anything: Why not rule it out early. [snip] Thanks for that reminder. I had checked the RAM early on but when I did it before I had only checked with single-threaded Memtest86+ So this time I did it properly and also checked the multi-threaded tests. One of them that causes it to lock up every time and I can t get past test #7. The driver is a separate problem I'll have to address, but later. I'll go after that hardware issue first and then check additional options like problematic drivers. I'd just be careful about reducing focus too early, or the root cause might escape you for a long, long time. [snip] Too late ;) I'll look into things now and update the list in some days or weeks. /Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] machine locks up switching between console and X session
On 04/26/2018 08:42 PM, Florian Zieboll wrote: [snip] > in one of your previous mails you pasted the output of your attempt to > install the "nvidia-driver" package. If you follow down the dependency > chain by manually trying to install the "not installable" predepends, > sooner or later you'll reach the package, which is the root of this > problem; apt will give you a more detailed error message for it. [snip] Thanks. Following one dependency chain from nvidia-driver-bin, it arrives at 'nvidia-installer-cleanup' which has no installation candidate. Looking at the Nvidia site, it looks like the right driver for the GM108M (GeForce 940MX) might be 390 which should be provided by nvidia-driver-bin in Devuan. # apt-cache show nvidia-driver-bin | head -n 3 Package: nvidia-driver-bin Source: nvidia-graphics-drivers Version: 390.48-2~bpo9+1 /Lars # apt-get install nvidia-driver-bin nvidia-alternative nvidia-legacy-check nvidia-installer-cleanup Reading package lists... Done Building dependency tree Reading state information... Done Package nvidia-installer-cleanup is not available, but is referred to by another package. This may mean that the package is missing, has been obsoleted, or is only available from another source E: Package 'nvidia-installer-cleanup' has no installation candidate ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] machine locks up switching between console and X session
On 04/26/2018 08:34 PM, KatolaZ wrote: [snip]> the drivers you get from Debian Stretch repos are exactly the same > drivers (bit-by-bit) that you get through Devuan ASCII repos. And I > mean it. Whatever it is, it's indeed the very same package, really, > *the* *very* *same* *package*. [snip] Ok Thanks for confirming that. I'll read up on things at bugs.debian.org and dev1galaxy.org now as you suggest. /Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] machine locks up switching between console and X session
On 04/26/2018 06:37 PM, Steve Litt wrote: > On Thu, 26 Apr 2018 06:36:14 +0300 > Lars Noodén wrote: [snip] >> Looking at the task manager in XCFE and top in the shell, the RAM and >> swap usage eventually start to climb more and more rapidly until >99% >> of RAM is in use and >99% of swap. Then the machine locks up, mouse >> pointer last. > > Well cool, that's a clue. Using top and/or htop, find out who is > consumnig all that memory. Also find out the #2 ram consumer: Sometimes > a browser can bog down and run X up to 99%. [snip] I've been watching for a while now and through several reboots. I can't see anything in user space that consumes RAM but over time the memory usage creeps upward. Some things can make it rise rapidly, such as Qemu or VLC or Chromium or many others from time to time. Only Qemu is quite consistent, but it itself does not show unreasonable memory usage even while the system is running out of memory. I haven't seen memory usage while enabling or disabling a second display, but that often causes a freeze. So I suspect something not in user space, and the display makes me think its the graphics card driver. However, above and beyond being an all-around permanoob on most topics, I am especially ignorant about hardware. I suspect that if I could figure out 1) the appropriate drivers, and 2) how to get them from Debian, that would be the solution. /Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] machine locks up switching between console and X session
On 04/21/2018 09:56 PM, Arnt Karlsen wrote: > On Sat, 21 Apr 2018 20:37:24 +0300, Lars wrote in message > : > >> On 04/21/2018 08:17 PM, Arnt Karlsen wrote: >> [snip] >>> ..you have 2 video cards fighting each other for access to your >>> screen hw??? Choose one, I recommend nouveau on your GM108M. I've tried creating a new xorg.conf but still get the lock ups: $ sudo service slim stop $ X -configure $ sudo cp ~/xorg.conf.new /etc/X11/xorg.conf > ..troubleshooting ideas: https://wiki.archlinux.org/index.php/Nouveau That page might have a hint: $ sudo dmesg | grep -i 'table invalid' [ 4.385672] nouveau :01:00.0: DRM: Pointer to TMDS table invalid [ 4.385678] nouveau :01:00.0: DRM: Pointer to flat panel table invalid /Lars ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
Re: [DNG] machine locks up switching between console and X session
On 01/15/2018 06:13 PM, Chillfan wrote: [snip] > Try with the official NVIDIA drivers and see what happens. > > https://wiki.debian.org/NvidiaGraphicsDrivers Thanks. I've been unable to install the driver. Would I have to get that straight from Debian? See below for the missing dependencies. Looking at the task manager in XCFE and top in the shell, the RAM and swap usage eventually start to climb more and more rapidly until >99% of RAM is in use and >99% of swap. Then the machine locks up, mouse pointer last. Another way to trigger a lock-up 100% of the time is to run qemu for anything. /Lars $ sudo apt-get install nvidia-driver Reading package lists... Done Building dependency tree Reading state information... Done Some packages could not be installed. This may mean that you have requested an impossible situation or if you are using the unstable distribution that some required packages have not yet been created or been moved out of Incoming. The following information may help to resolve the situation: The following packages have unmet dependencies: nvidia-driver : PreDepends: nvidia-installer-cleanup but it is not installable PreDepends: nvidia-legacy-check (>= 343) but it is not going to be installed Depends: nvidia-driver-libs (= 375.82-1~deb9u1) but it is not going to be installed Depends: nvidia-driver-bin (= 375.82-1~deb9u1) but it is not going to be installed Depends: xserver-xorg-video-nvidia (= 375.82-1~deb9u1) but it is not going to be installed Depends: nvidia-vdpau-driver (= 375.82-1~deb9u1) but it is not going to be installed Depends: nvidia-alternative (= 375.82-1~deb9u1) but it is not going to be installed Depends: nvidia-kernel-dkms (= 375.82-1~deb9u1) but it is not going to be installed or nvidia-kernel-375.82 Depends: nvidia-support but it is not installable Recommends: nvidia-settings (>= 375) but it is not installable Recommends: nvidia-persistenced but it is not installable E: Unable to correct problems, you have held broken packages. ___ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
