Re: [gentoo-user] NAS suggestions for home user
On Thu, Sep 30, 2021 at 5:50 PM Mark Knecht wrote: > > I've been looking at a few software solutions based on another thread here > but so far nothing has excited me so recommendations for what makes sense for > high reliability home backup is of great interest, especially if it helps me > somehow in cleaning up the backups after deleting stuff on my main machine on > purpose and therefore not needing it on the backup. It is probably going to stretch your budget, but you should look into distributed filesystems like CephFS/MooseFS/LizardFS. The latter two at least should run fine on hardware like a Pi4 if you aren't doing too much IOPS. You could actually run them on as little as a single host, which would probably be cheaper than a commercial NAS though really no better. The big advantages is that you aren't limited by the drive capacity of a single host, and you have redundancy at the host level. That is, you can pull a plug on any host and the whole thing just keeps running. Again, I realize this isn't exactly what you asked for. IMO this is the long-term direction storage is trending towards though. I can't vouch for the hardware requirements for Ceph, but that can scale incredibly well and is pretty-much the future. I've heard it isn't so great on just a few hosts though. -- Rich
[gentoo-user] Re: Chrome - no system title bar or boarders
On 2021-09-30, Mark Knecht wrote: > >> Kubuntu got a chrome-stable update today but it didn't fix this problem. New >> revision is 94.0.4606.71. Can anyone who saw this problem fixed respond with >> the revision? > > Actually, it is fixed but for anyone who might run into this there > was a recommendation somewhere along the way to enable Ozone in the > chrome://flags section. I had done but hadn't looked at my log file > which apparently were filling up with ozone error messages every 3 > seconds or so. The interim fix was to _disable_ the ozone flag. I don't remember seeing any recommendation to enable it. > I disabled the ozone flag and now I have KDE title bars. Doing that is what fixed it for me. -- Grant
[gentoo-user] Re: setcap fails: (Operation not supported)
On 2021-09-30, Andrew Udvare wrote: > On 30/09/2021 13:58, Grant Edwards wrote: >> Still can't figure out how to get setcap to work > Not sure if this is it, but do you have CONFIG_EXT4_FS_SECURITY enabled? No, I don't. Google has found me information that indicates that SELinux and MAC (Mandatory Access Controls) require FS_SECURITY, but Google can't find any indication that FS_SECURITY is required for linux file capabilities. I should try enabling it and see... Several years ago, I know I could set capabilities on executables (on a different Gentoo machine), and I don't remember it being difficult to get working at all... -- Grant
[gentoo-user] NAS suggestions for home user
I'm in the study phase on some sort of NAS backup system for my home. I'll be building (or buying) a new desktop/server machine in the next few months - my i980 machine doesn't have the right instruction set for running Tensorflow anymore - so I want to figure out backups before I put together the new machine. I have about $400 credit at NewEgg and would like to keep my additional costs on the NAS down to about $100-$200. I expect the new machine to probably be 4TB RAID but it would be quite a while before that gets filled up. What do I need to be thinking about? Do I need 8TB in the NAS box? Are 2 or 4 bay NAS boxes generally RAID? I do backups today about once a week. I do not currently keep any snapshots. I just back up files so over time the backup carries a lot of stuff that I don't need anymore and I have to go clean it up if I run out of space. The NAS would be turned off most of the time. If I need to use it I'll just power it up. I've been looking at a few software solutions based on another thread here but so far nothing has excited me so recommendations for what makes sense for high reliability home backup is of great interest, especially if it helps me somehow in cleaning up the backups after deleting stuff on my main machine on purpose and therefore not needing it on the backup. Thanks in advance for any ideas. Cheers, Mark
Re: [gentoo-user] Re: Chrome - no system title bar or boarders
> Kubuntu got a chrome-stable update today but it didn't fix this problem. New > revision is 94.0.4606.71. Can anyone who saw this problem fixed respond with > the revision? > > Thank in advance, > Mark > Actually, it is fixed but for anyone who might run into this there was a recommendation somewhere along the way to enable Ozone in the chrome://flags section. I had done but hadn't looked at my log file which apparently were filling up with ozone error messages every 3 seconds or so. I disabled the ozone flag and now I have KDE title bars. Sorry for the noise. Hope the extra info saves someone so time later one. Cheers, Mark
Re: [gentoo-user] Re: Chrome - no system title bar or boarders
On Mon, Sep 27, 2021 at 7:35 AM Grant Edwards wrote: > > On 2021-09-25, Spackman, Chris wrote: > > > > I use Fluxbox and had the same issue. Found this today: > > > > https://piunikaweb.com/2021/09/23/google-chrome-94-use-system-title-bar-and-borders-checkbox-broken/ > > > > To fix the problem: > > > > > > > > you will need to head over to the chrome://flags page and find the > > “use-ozone-platform” setting. > > > > Make sure to change it from default to disabled, restart your Chrome > > browser and you will be good to go." > > > > > > > > I can confirm that this worked for me here. > > Fixed it for me (openbox). > > -- > Grant > Kubuntu got a chrome-stable update today but it didn't fix this problem. New revision is 94.0.4606.71. Can anyone who saw this problem fixed respond with the revision? Thank in advance, Mark
Re: [gentoo-user] Re: setcap fails: (Operation not supported)
On 30/09/2021 13:58, Grant Edwards wrote: On 2021-09-30, Grant Edwards wrote: On 2021-09-30, Grant Edwards wrote: I'm trying to add NET_ADMIN capability to an executable that needs to create a tun inteface. AFACIT, this is the command to do that: $ sudo setcap cap_net_admin+ep example_app Failed to set capabilities on file `example_app' (Operation not supported) The only possible cause for that message Google has been able fo find is that the FS doesn't have xattr support. Is Posix ACL support required for setcap? I can't find any documentation of such a requirement, but it's the only other thing I can think of... That's not it. I rebuilt my kernel with POSIX ACL support enabled for ext4, rebooted, and verified that ACLs now work. Still can't figure out how to get setcap to work # file example_app example_app: ELF 64-bit LSB pie executable, x86-64, version 1 (SYSV), dynamically linked, interpreter /lib64/ld-linux-x86-64.so.2, for GNU/Linux 3.2.0, with debug_info, not stripped # setcap cap_net_admin,cap_net_raw+eip example_app Failed to set capabilities on file `example_app' (Operation not supported) -- Grant Not sure if this is it, but do you have CONFIG_EXT4_FS_SECURITY enabled? OpenPGP_signature Description: OpenPGP digital signature
[gentoo-user] Re: setcap fails: (Operation not supported)
On 2021-09-30, Grant Edwards wrote: > On 2021-09-30, Grant Edwards wrote: > >> I'm trying to add NET_ADMIN capability to an executable that needs to >> create a tun inteface. AFACIT, this is the command to do that: >> >>$ sudo setcap cap_net_admin+ep example_app >>Failed to set capabilities on file `example_app' (Operation not supported) >> >> The only possible cause for that message Google has been able fo find >> is that the FS doesn't have xattr support. > > Is Posix ACL support required for setcap? > > I can't find any documentation of such a requirement, but it's the > only other thing I can think of... That's not it. I rebuilt my kernel with POSIX ACL support enabled for ext4, rebooted, and verified that ACLs now work. Still can't figure out how to get setcap to work # file example_app example_app: ELF 64-bit LSB pie executable, x86-64, version 1 (SYSV), dynamically linked, interpreter /lib64/ld-linux-x86-64.so.2, for GNU/Linux 3.2.0, with debug_info, not stripped # setcap cap_net_admin,cap_net_raw+eip example_app Failed to set capabilities on file `example_app' (Operation not supported) -- Grant
[gentoo-user] Re: setcap fails: (Operation not supported)
On 2021-09-30, Grant Edwards wrote: > I'm trying to add NET_ADMIN capability to an executable that needs to > create a tun inteface. AFACIT, this is the command to do that: > >$ sudo setcap cap_net_admin+ep example_app >Failed to set capabilities on file `example_app' (Operation not supported) > > The only possible cause for that message Google has been able fo find > is that the FS doesn't have xattr support. Is Posix ACL support required for setcap? I can't find any documentation of such a requirement, but it's the only other thing I can think of... -- Grant
[gentoo-user] setcap fails: (Operation not supported)
I'm trying to add NET_ADMIN capability to an executable that needs to create a tun inteface. AFACIT, this is the command to do that: $ sudo setcap cap_net_admin+ep example_app Failed to set capabilities on file `example_app' (Operation not supported) The only possible cause for that message Google has been able fo find is that the FS doesn't have xattr support. It's an ext4 filesystem, and I believe xattr support is enabled: $ rm -f xattr-test $ touch xattr-test $ setfattr -n user.test -v "hello" xattr-test $ getfattr -d xattr-test # file: xattr-test user.test="hello" (AFAICT, there's no way to disable xattr support in ext4.) I've also found sources that mention that in the kernel configuration under 'enable different security models' you have to enable the 'capabilities' option. But, that option doesn't seem to exist in 5.10 kernels. The only occurances of the string CAPAB in 5.10 Kconfig files is CPU_THUMB_CAPABLE What do I need to do to get setap to work? -- Grant
Re: [gentoo-user] How to compress lots of tarballs
On 30/09/2021 00:17, Rich Freeman wrote: On Wed, Sep 29, 2021 at 5:48 PM Wols Lists wrote: An LVM snapshot creates a "copy on write" image. I'm just beginning to dig into it myself, but I agree it's a bit confusing. So, snapshots in general are a solution for making backups atomic. That is, they allow a backup to look as if the entire backup was taken in an instant. The simplest way to accomplish that is via offline backups. Unmount the drive, mount it read-only, then perform a backup. That guarantees that nothing changes between the time the backup starts/stops. Of course, it also can mean that for many hours you can't really use the drive. Snapshots let you cheat. They create two views of the drive - one that can be used normally, and one which is a moment-in-time snapshot of what the drive looked like. You backup the snapshot, and you can use the regular drive. Yup. I'm planning to configure systemd to do most of this for me. As a desktop system it goes up and down, so the plan is a trigger will fire midnight fri/sat, and the first time it gets booted after that, a snapshot will be taken before fstab is run. Then I'll have backups of /home and /. I won't keep many root backups, but I'll keep /home until I run out of space. And that's why I suggested if you want a separate backup rather than a collection of snapshots, you snapshot the backup and use in-place rsync. Of course that still means you need to quiesce the bit you're copying, but you could back it up piecemeal. Cheers, Wol
