LVM problem
Hi, I want to add a new disk (/dev/sdb1) to an existing VG. Here what I've done : * pvcreate /dev/sdb1 * vgextend VolGroup00 /dev/sdb1 * lvresize -l +20901 /dev/VolGroup00/LogVol00 (LogVol00 is mounted on /) Then, when I make a 'lvdisplay' I saw the correct size of the volume (sum of the old size plus the size of the new disk) But a 'df -kh' always gives me the old size... What's wrong ??? Thanks for any help Regards -- users mailing list users@lists.fedoraproject.org To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Re: God, No Volume Groups Found !!!!
依和 wrote: Dear all, I'm using FC8 and I download the kernel source 2.6.33.2 from kernel.org and build it by myself but, everytime I try to boot from the new kernel I met the error No Volume Groups Found. I tried everything I could but failed still. Would you please give me any idea? Thanks in advance. Are you sure you have compiled all the needed pieces (such as modules)? You should compare the kernel messages in the working and not-working case. -- Roberto Ragusamail at robertoragusa.it -- users mailing list users@lists.fedoraproject.org To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Re: Scanning broken in Fedora ?
On Wed, Apr 14, 2010 at 3:04 PM, Jim mickey...@sbcglobal.net wrote: On 04/14/2010 01:46 AM, Hiisi wrote: On 04/12/2010 11:16 PM, Valent Turkovic wrote: https://bugzilla.redhat.com/show_bug.cgi?id=556218 Is scanning working for you? Looks like it's broken. Any news of a fix anytime soon? snip Most all of the Printers and Scanners out on the retail market are unsupported in Linux. I had to battle with the Samsung SCX-4500W also but did get it working nicely in F10 then F11 and now F12 - my notes are at: http://userbase.kde.org/Troubleshooting/Samsung_scx-4500W -- mike c -- users mailing list users@lists.fedoraproject.org To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Open Office 3.2
attempt to install from desktop, ask me to become root for best install. how do I become root on desktop -- users mailing list users@lists.fedoraproject.org To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Root with GUI
How do I make myself root in the GUI -- users mailing list users@lists.fedoraproject.org To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Re: Root with GUI
On Thu, Apr 15, 2010 at 7:21 AM, hewjr1...@gmail.com wrote: How do I make myself root in the GUI Running a root GUI login is very much frowned upon. What exactly are you trying to accomplish? The system-config* tools will prompt for root authentication if necessary or you can su (or sudo) to root in a terminal session or login as root in a virtual terminal. Richard -- users mailing list users@lists.fedoraproject.org To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Re: Root with GUI
On Thu, 15 Apr 2010 07:24:32 -0500 Richard Shaw wrote: The system-config* tools will prompt for root authentication if necessary Thousands and thousands of times in a row, in fact :-). I'm still waiting for someone to point me to the web page documenting the actual case histories of horrible things that happened because a GUI app was running as root. (NOT the cases where people did stupid things in GUIs, I want the one that describes people doing perfectly normal safe operations who had horrible things go wrong simply because they were running a gui as root). -- users mailing list users@lists.fedoraproject.org To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Re: Root with GUI
On Thu, 2010-04-15 at 08:32 -0400, Tom Horsley wrote: On Thu, 15 Apr 2010 07:24:32 -0500 Richard Shaw wrote: The system-config* tools will prompt for root authentication if necessary Thousands and thousands of times in a row, in fact :-). I'm still waiting for someone to point me to the web page documenting the actual case histories of horrible things that happened because a GUI app was running as root. (NOT the cases where people did stupid things in GUIs, I want the one that describes people doing perfectly normal safe operations who had horrible things go wrong simply because they were running a gui as root). You mean the cases where everything works correctly? If everything worked correctly and there were no bugs, and our systems weren't Internet-connected, and we understood the implications of everything we did, and we never typed or clicked on anything we didn't mean to, why would we need the concept of root? poc -- users mailing list users@lists.fedoraproject.org To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Re: Root with GUI
On Thu, 2010-04-15 at 07:24 -0500, Richard Shaw wrote: On Thu, Apr 15, 2010 at 7:21 AM, hewjr1...@gmail.com wrote: How do I make myself root in the GUI Running a root GUI login is very much frowned upon. What exactly are you trying to accomplish? The system-config* tools will prompt for root authentication if necessary or you can su (or sudo) to root in a terminal session or login as root in a virtual terminal. Richard I suspect that he wants to execute a privileged operation from the GUI, not that he wants to run the GUI from root, though the question is unclear. poc -- users mailing list users@lists.fedoraproject.org To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Re: Root with GUI
On 04/15/2010 08:24 AM, Richard Shaw wrote: On Thu, Apr 15, 2010 at 7:21 AM,hewjr1...@gmail.com wrote: How do I make myself root in the GUI Running a root GUI login is very much frowned upon. What exactly are you trying to accomplish? The system-config* tools will prompt for root authentication if necessary or you can su (or sudo) to root in a terminal session or login as root in a virtual terminal. One scenario is when the normal users are all defined over nis/nfs, and the network is down, but you need to log in to fix things... To fix things in a scenario like that, I boot into runlevel 3 (by temporarily appending 3 to the end of the kernel line in grub), login as root, and run startx to get a gui session for root. - Mike -- users mailing list users@lists.fedoraproject.org To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Re: vlc streaming tantalizingly close - thanks - that worked.
Thanks Stefan - that worked - it was simple, even obvious - and I missed it!! (well done me) From: stefan riemens fgfs.ste...@gmail.com Have you opened your firewall? You can use the system-config-firewall utility for that. Joe Feely joe.fe...@googlemail.com: I suspect I'm missing something obvious / simple. Streaming with vlc (music mp3 files) with:- [...@f12onofficedt rips]$ vlc --sout udp://192.168.0.3:1234 * while on the other desktop the usb wireless stick flashes away seemingly happily. Run gui vlc - in open Network dialog box - enter Protocol UDP , Address 192.168.0.3 , and port 1234 Hit play and not much. No error messages; no indications of activity in status boxes; no sound. I'm afraid I'm not smart enough to know if the problem is vlc or some other setting(s). BTW vlc works fine with local stuff and online radio. (I'm running F12 on streaming box and F11 on receiving box) Any ideas? -- Joe Feely -- users mailing list users@lists.fedoraproject.org To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Re: Open Office 3.2
On Thu, Apr 15, 2010 at 12:03:12PM +, hewjr1...@gmail.com wrote: attempt to install from desktop, ask me to become root for best install. how do I become root on desktop open a terminal window and type in: su - root and enter the root password when prompted. from there on, that terminal is root (though the rest of the desktop isn't) and commands run therein run as root. -- users mailing list users@lists.fedoraproject.org To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines -- Fred Smith -- fre...@fcshome.stoneham.ma.us - I can do all things through Christ who strengthens me. -- Philippians 4:13 --- -- users mailing list users@lists.fedoraproject.org To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Re: Open Office 3.2
On Thu, 2010-04-15 at 09:03 -0400, fred smith wrote: On Thu, Apr 15, 2010 at 12:03:12PM +, hewjr1...@gmail.com wrote: attempt to install from desktop, ask me to become root for best install. how do I become root on desktop open a terminal window and type in: su - root Typing su - is sufficient. and enter the root password when prompted. from there on, that terminal is root (though the rest of the desktop isn't) and commands run therein run as root. -- users mailing list users@lists.fedoraproject.org To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines -- Fred Smith -- fre...@fcshome.stoneham.ma.us - I can do all things through Christ who strengthens me. -- Philippians 4:13 --- -- === UH-OH!! I put on GREAT HEAD-ON TRAIN COLLISIONS of the 50's by mistake!!! === Aaron Konstam telephone: (210) 656-0355 e-mail: akons...@sbcglobal.net -- users mailing list users@lists.fedoraproject.org To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Re: dealing with states of drowsiness, FC12, netbook
On Tue, Apr 13, 2010 at 7:11 PM, jack craig jcr...@extraview.com wrote: Hi Folks, I admit to being new to mobile computers, laptops, netbooks, etc. there are more states on these systems that a desktop usually uses, including sleep and hibernate. is there an URL somewhere that will tell me how to recognize these different states and return my netbook to normal operating mode once the state of drowsiness is established? i fire up my asus netbook in the am and when i don't use it for an hr or so, it goes to sleep (or maybe hibernate) mode. the power button light is still on. but the only control i get is pressing and holding the power button until i get a shutdown. would some kind soul point me to a state managment URL? This page describes the acpi power states: http://en.wikipedia.org/wiki/Advanced_Configuration_and_Power_Interface#Power_States On my hp laptop, pressing the power button once will cause it to wake up again. On my old asus laptop (running f11 i think) this didn't work properly, though it would try to resume. If you don't want it to hibernate at all, you need to change the power profile. For kde this under the advancded tab of the system settings. HTH, Chris -- users mailing list users@lists.fedoraproject.org To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Re: Root with GUI
Richard Shaw: The system-config* tools will prompt for root authentication if necessary Tom Horsley: Thousands and thousands of times in a row, in fact :-). Not here. Once you've authenticated, that info is cached for a few minutes, and automatically renewed as you keep on doing things as root. And, if you are going to be idle for a while, you can manually extend the period without having to type in the password again (there's an icon in the task bar where you can renew/release it). I'm still waiting for someone to point me to the web page documenting the actual case histories of horrible things that happened because a GUI app was running as root. (NOT the cases where people did stupid things in GUIs, I want the one that describes people doing perfectly normal safe operations who had horrible things go wrong simply because they were running a gui as root). Yeah, well, the *usual* thing that cause problems is - the user stays logged in as root, does all their work as root, all *their* files are owned by root, so they have to keep on logging in as root to use their files. They paint themselves into a corner, then use that to justify why they need to be root. If you want further ideas about what goes wrong, go back through the list and look at some of Gene's posts. He runs as root, and comes a cropper over it, often enough. Traditionally IRC (as root) users have their problems, it's just making it easy for them to become a zombie. -- [...@localhost ~]$ uname -r 2.6.27.25-78.2.56.fc9.i686 Don't send private replies to my address, the mailbox is ignored. I read messages from the public lists. -- users mailing list users@lists.fedoraproject.org To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Re: Root with GUI
two questions can you point to articles where a user as root was using an IRC client and got zombified?? and 2, are you guys saying that gnome in fedora 11/12 doesn't allow a user to log in as the root user? thanks On Thu, Apr 15, 2010 at 6:40 AM, Tim ignored_mail...@yahoo.com.au wrote: Richard Shaw: The system-config* tools will prompt for root authentication if necessary Tom Horsley: Thousands and thousands of times in a row, in fact :-). Not here. Once you've authenticated, that info is cached for a few minutes, and automatically renewed as you keep on doing things as root. And, if you are going to be idle for a while, you can manually extend the period without having to type in the password again (there's an icon in the task bar where you can renew/release it). I'm still waiting for someone to point me to the web page documenting the actual case histories of horrible things that happened because a GUI app was running as root. (NOT the cases where people did stupid things in GUIs, I want the one that describes people doing perfectly normal safe operations who had horrible things go wrong simply because they were running a gui as root). Yeah, well, the *usual* thing that cause problems is - the user stays logged in as root, does all their work as root, all *their* files are owned by root, so they have to keep on logging in as root to use their files. They paint themselves into a corner, then use that to justify why they need to be root. If you want further ideas about what goes wrong, go back through the list and look at some of Gene's posts. He runs as root, and comes a cropper over it, often enough. Traditionally IRC (as root) users have their problems, it's just making it easy for them to become a zombie. -- [...@localhost ~]$ uname -r 2.6.27.25-78.2.56.fc9.i686 Don't send private replies to my address, the mailbox is ignored. I read messages from the public lists. -- users mailing list users@lists.fedoraproject.org To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines -- users mailing list users@lists.fedoraproject.org To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
SSH tunnel for ssh traffic
Hi, I need to ssh to some remote VM that sit in a private LAN. For any other service (e.g. RDP) I'd use ssh tunneling just normal. But what do I do for ssh traffic? Since ssh is not host agnostic, it will always complain about localhost having a different RSA key. I just do not want to edit the known_hosts every time I need to connecto to a new machine! Is there some way to tell ssh to use a tunnel directly for a connection? regards Christoph signature.asc Description: Dies ist ein digital signierter Nachrichtenteil -- users mailing list users@lists.fedoraproject.org To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Re: Root with GUI
On Thu, 15 Apr 2010 06:49:08 -0700 bruce wrote: and 2, are you guys saying that gnome in fedora 11/12 doesn't allow a user to log in as the root user? The GDM program doesn't allow you to login as root (though you can edit some obscure files to change that). A gnome session is willing to run as root if you can get past the login hurdles :-). -- users mailing list users@lists.fedoraproject.org To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Re: Root with GUI
在 2010-04-15四的 10:13 -0400,Tom Horsley写道: On Thu, 15 Apr 2010 06:49:08 -0700 bruce wrote: and 2, are you guys saying that gnome in fedora 11/12 doesn't allow a user to log in as the root user? The GDM program doesn't allow you to login as root (though you can edit some obscure files to change that). A gnome session is willing to run as root if you can get past the login hurdles :-). edit /etc/passwd modify your uid and gid ,change the value into zero. -- users mailing list users@lists.fedoraproject.org To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Re: Scanning broken in Fedora ?
On 04/15/2010 05:33 AM, mike cloaked wrote: On Wed, Apr 14, 2010 at 3:04 PM, Jimmickey...@sbcglobal.net wrote: On 04/14/2010 01:46 AM, Hiisi wrote: On 04/12/2010 11:16 PM, Valent Turkovic wrote: https://bugzilla.redhat.com/show_bug.cgi?id=556218 Is scanning working for you? Looks like it's broken. Any news of a fix anytime soon? snip Most all of the Printers and Scanners out on the retail market are unsupported in Linux. I had to battle with the Samsung SCX-4500W also but did get it working nicely in F10 then F11 and now F12 - my notes are at: http://userbase.kde.org/Troubleshooting/Samsung_scx-4500W It was those instructions that help me get my Samsung CLX3170FN working in scanning. -- users mailing list users@lists.fedoraproject.org To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Re: Root with GUI
On 04/15/2010 01:52 PM, Dr. Michael J. Chudobiak wrote: On 04/15/2010 08:24 AM, Richard Shaw wrote: On Thu, Apr 15, 2010 at 7:21 AM,hewjr1...@gmail.com wrote: How do I make myself root in the GUI Running a root GUI login is very much frowned upon. What exactly are you trying to accomplish? The system-config* tools will prompt for root authentication if necessary or you can su (or sudo) to root in a terminal session or login as root in a virtual terminal. One scenario is when the normal users are all defined over nis/nfs, and the network is down, but you need to log in to fix things... To fix things in a scenario like that, I boot into runlevel 3 (by temporarily appending 3 to the end of the kernel line in grub), login as root, and run startx to get a gui session for root. - Mike I just run the required GUI application as a root user. It's a trivial matter to create a desktop short cut that will run as a root user. IMHO this is a better option, as it is inherently more secure. But then I prefer to restrict root user access to only those applications that need it. So I think the Fedora team are right to not have a GUI root login. This is my preference and in no way is it a criticism of any choice of solution others may decide to adopt. JB -- users mailing list users@lists.fedoraproject.org To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Re: Root with GUI
hi tom... right.. it used to be the pam files as i recall to allow root to login from the login screen... i'm assuming these are the obscure files you're referring to ... or did the fedora team make other changes in f11/12/13 that i'm not aware of?? thanks On Thu, Apr 15, 2010 at 7:13 AM, Tom Horsley horsley1...@gmail.com wrote: On Thu, 15 Apr 2010 06:49:08 -0700 bruce wrote: and 2, are you guys saying that gnome in fedora 11/12 doesn't allow a user to log in as the root user? The GDM program doesn't allow you to login as root (though you can edit some obscure files to change that). A gnome session is willing to run as root if you can get past the login hurdles :-). -- users mailing list users@lists.fedoraproject.org To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines -- users mailing list users@lists.fedoraproject.org To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Re: SSH tunnel for ssh traffic
On 04/15/2010 07:12 AM, Christoph Höger wrote: Hi, I need to ssh to some remote VM that sit in a private LAN. For any other service (e.g. RDP) I'd use ssh tunneling just normal. But what do I do for ssh traffic? Since ssh is not host agnostic, it will always complain about localhost having a different RSA key. I just do not want to edit the known_hosts every time I need to connecto to a new machine! Is there some way to tell ssh to use a tunnel directly for a connection? regards Christoph You could use a nonstandard port for the connection. known_hosts includes the port information when the port is not 22 - it looks something like [localhost:1234] -- users mailing list users@lists.fedoraproject.org To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Re: Root with GUI
On Thu, 15 Apr 2010 07:44:28 -0700 bruce wrote: right.. it used to be the pam files as i recall to allow root to login from the login screen... i'm assuming these are the obscure files you're referring to ... Yea, some sort of pam change seems familiar. I haven't paid much attention since I switched to KDM (for plenty of other reasons besides the occasional root login - things like the ability to modify the X server args to remove the -nolisten tcp). -- users mailing list users@lists.fedoraproject.org To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Re: SSH tunnel for ssh traffic
On Thu, 15 Apr 2010 07:48:41 -0700 Konstantin Svist wrote: You could use a nonstandard port for the connection. known_hosts includes the port information when the port is not 22 - it looks something like [localhost:1234] Really? When did that start happening? It always honks about localhost changing when I do it. My general solution is to add the CheckHostIP no option to ~/.ssh/config and then define different aliases for localhost and use different ones for different forwarded connections. -- users mailing list users@lists.fedoraproject.org To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Re: SSH tunnel for ssh traffic
Christoph Höger wrote: I need to ssh to some remote VM that sit in a private LAN. For any other service (e.g. RDP) I'd use ssh tunneling just normal. But what do I do for ssh traffic? Since ssh is not host agnostic, it will always complain about localhost having a different RSA key. I just do not want to edit the known_hosts every time I need to connecto to a new machine! I have a machine which changes RSA key every boot (boot from read only USB key). The messages you are trying to avoid go away withi this in ssh_config: Host myhostname StrictHostKeyChecking no UserKnownHostsFile=/dev/null you should have localhost instead of myhostname. (are you really worried about someone hijacking localhost?) :-) -- Roberto Ragusamail at robertoragusa.it -- users mailing list users@lists.fedoraproject.org To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Re: dealing with states of drowsiness, FC12, netbook
On Thu, 2010-04-15 at 15:22 +0200, Chris Rouch wrote: On my hp laptop, pressing the power button once will cause it to wake up again. On my old asus laptop (running f11 i think) this didn't work properly, though it would try to resume. On my Asus laptop, pressing any key would wake up from a suspend to RAM, as the computer isn't completely shut down in that mode. If you had to press the power button, then there's some problem with hibernating on that computer. Suspend to disc would require pressing the power button to resume, as the computer is actually turned off in that suspension mode. I needed the closed-source RPM Fusion packaged NVidia drivers for resuming to work. I can't remember if that was just for suspend to ram, or for suspend to disc, as well. I don't want to remove it just to test, now. -- [...@localhost ~]$ uname -r 2.6.27.25-78.2.56.fc9.i686 Don't send private replies to my address, the mailbox is ignored. I read messages from the public lists. -- users mailing list users@lists.fedoraproject.org To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Re: Root with GUI
On 04/15/2010 08:58 PM, Tom Horsley wrote: On Thu, 15 Apr 2010 08:14:30 -0430 Patrick O'Callaghan wrote: and we never typed or clicked on anything we didn't mean to Right. You can type things you don't mean to as easily as click things you don't mean to. I'm just looking for the actual evidence that GUIs are fundamentally evil when running as root, not all this vague handwaving Oh, it must be horrible! stuff that seems to be entirely anecdotal or possibly completely imaginary. While not a disaster of epic proportions, I've seen non-techies login as root for a GUI session to do some minor admin work. Then they decide to do a few other things, forgetting or not knowing their actions under root would have consequences. Their actions would create files and or directories in user's areas (most time their own). They would then stay logged in as root for an extended time since they were happy to continue working. At some point, they'd logout and later, next day...after lunch, login as themselves and now have all sorts of troubles they didn't have before. Since they were non-techies they didn't know the concept of file/directory ownership so permission denied was a real shocker. So, they'd log back in a root and try to fix things only to make them worse...or make things insecure. Directories which were previously 755 became 777. Most of these folks had no concept of command line utils and did all their administration after clicking on a icon. Had they stuck to that as a regular user and simply typed in the root password they most likely would have done less damage to their system. I see it as bad practice to login as root for a GUI session. I'm experienced and I've not logged in a root for GUI session in years. I do, however, have sudo configured to not ask for a password. Some would consider that unsafe. P.S. The simplest way to login to the gui as root is to switch to KDM instead of GDM as your login manager. KDM has not yet been taken over by the paranoid thought police :-). -- HERE!! Put THIS on!! I'm in CHARGE!! Guess Who! http://tinyurl.com/mc4xe7 signature.asc Description: OpenPGP digital signature -- users mailing list users@lists.fedoraproject.org To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Re: dealing with states of drowsiness, FC12, netbook
Ah! there Is a kind soul on this list, Thx Chris, ... On 04/15/2010 06:22 AM, Chris Rouch wrote: On Tue, Apr 13, 2010 at 7:11 PM, jack craigjcr...@extraview.com wrote: Hi Folks, I admit to being new to mobile computers, laptops, netbooks, etc. there are more states on these systems that a desktop usually uses, including sleep and hibernate. is there an URL somewhere that will tell me how to recognize these different states and return my netbook to normal operating mode once the state of drowsiness is established? i fire up my asus netbook in the am and when i don't use it for an hr or so, it goes to sleep (or maybe hibernate) mode. the power button light is still on. but the only control i get is pressing and holding the power button until i get a shutdown. would some kind soul point me to a state managment URL? This page describes the acpi power states: http://en.wikipedia.org/wiki/Advanced_Configuration_and_Power_Interface#Power_States On my hp laptop, pressing the power button once will cause it to wake up again. On my old asus laptop (running f11 i think) this didn't work properly, though it would try to resume. If you don't want it to hibernate at all, you need to change the power profile. For kde this under the advancded tab of the system settings. HTH, Chris -- Jack Craig Software Engineer 831.461.7100 x120 www.extraview.com -- users mailing list users@lists.fedoraproject.org To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Re: Nagios-plugins packaging change broke my Nagios (plugins moved out of nagios-plugins to nagios-plugins-all)
On Wed, 14 Apr 2010 18:01:32 -0700 Aleksey Tsalolikhin atsaloli.t...@gmail.com wrote: Hi, Kevin. The source of my nagios-plugins package is the EPEL repository from the Fedora Project. I installed Nagios about a year and a half ago. You probibly want the 'epel-devel' list then. EPEL is in general much more conservative than Fedora when it comes to changes. nagios in EPEL has been packaged the same way for many years. I suspect you had a version from another repository (dag? atrpms? rpmforge?) installed that used a different setup, and only recently the epel version passed that version so it updated. Thanks, Aleksey kevin signature.asc Description: PGP signature -- users mailing list users@lists.fedoraproject.org To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Re: Root with GUI
On 04/15/2010 11:42 PM, Ed Greshko wrote: Since they were non-techies they didn't know the concept of file/directory ownership so permission denied was a real shocker. So, they'd log back in a root and try to fix things only to make them worse...or make things insecure. Directories which were previously 755 became 777. I should have pointed out that when confronted with this new permission denied message they would ask their equally non-technical cubical mate who would tell them about the command they learned (chmod) that seemed to fix things...yet not really knowing why. Their advice was Oh, just do this. :-) signature.asc Description: OpenPGP digital signature -- users mailing list users@lists.fedoraproject.org To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Re: Root with GUI
On 04/15/2010 10:12 AM, users-requ...@lists.fedoraproject.org wrote: From: Dr. Michael J. Chudobiakm...@avtechpulse.com Subject: Re: Root with GUI On 04/15/2010 08:24 AM, Richard Shaw wrote: On Thu, Apr 15, 2010 at 7:21 AM,hewjr1...@gmail.com wrote: How do I make myself root in the GUI Running a root GUI login is very much frowned upon. You forgot the stage directions: Folds arms across chest, wags finger at suitably cowed and humiliated user.. It's 'frowned upon' by religious zealots who wish to impose their 'the sky could fall' fears upon everyone. A***oles piss me off. If you want to log in as root, you will have to start by logging in as a user, then 'su' yourself to root in a console, and cd to /etc/pam.d Run 'grep -H -n != *' You should see something like: [r...@tor1 pam.d]# grep -H -n != * gdm:3:#auth requiredpam_succeed_if.so user != root quiet gdm-password:3:#auth required pam_succeed_if.so user != root quiet gdm-password.rpmsave:3:#auth required pam_succeed_if.so user != root quiet gdm.rpmsave:3:#auth required pam_succeed_if.so user != root quiet racoon:3:#auth required pam_succeed_if.so user != root xdm:3:#auth required pam_succeed_if.so user != root quiet except in your case, there will be no '#' preceding the 'auth' in those files. Edit to add the '# in all of the files your system lists, thus commenting out the line. Those lines make the authentication process quietly fail, if you are root. Stupid idiotic nanny-statism circumvented. There will be a test however, to see if this works and that you are awake. This test should have been done 15 days ago. Do 'su -', 'cd /' and then 'rm -rf *'. If you cannot log in after first considering whether you should follow these instructions, and you in fact followed them, then you have failed. Geoff Tux says: Be regular. Eat cron flakes. -- users mailing list users@lists.fedoraproject.org To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Re: Root with GUI
On Thu, 15 Apr 2010 23:42:46 +0800 Ed Greshko wrote: At some point, they'd logout and later, next day...after lunch, login as themselves and now have all sorts of troubles they didn't have before. It is possible for idiots to screw up, is not the same as an actual case history of some exploit hitting someone only because they were running a GUI app as root. I'm still waiting for the pointer to those case histories :-). -- users mailing list users@lists.fedoraproject.org To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Re: Root with GUI
On Thu, 15 Apr 2010 12:07:01 -0430 Patrick O'Callaghan wrote: GUIs are large, complex and buggy pieces of multiple interacting components written by diverse people of widely differing abilities. Which just proves that you should never use a gui for anything remotely sensitive, like accessing your bank accounts or doing your taxes. Nuclear reactor control software should interface with the operators totally through punch card input to avoid the possibility of a gui screwup, etc. -- users mailing list users@lists.fedoraproject.org To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Re: Root with GUI
On 04/15/2010 09:01 AM, R. G. Newbury wrote: On 04/15/2010 10:12 AM, users-requ...@lists.fedoraproject.org wrote: From: Dr. Michael J. Chudobiakm...@avtechpulse.com Subject: Re: Root with GUI On 04/15/2010 08:24 AM, Richard Shaw wrote: On Thu, Apr 15, 2010 at 7:21 AM,hewjr1...@gmail.comwrote: How do I make myself root in the GUI Running a root GUI login is very much frowned upon. You forgot the stage directions: Folds arms across chest, wags finger at suitably cowed and humiliated user.. Oh, come now! It's 'frowned upon' by religious zealots who wish to impose their 'the sky could fall' fears upon everyone. A***oles piss me off. Those who accuse people who caution against this very ill-advised practice religious zealots or A***oles certainly demonstrate their massive experience and maturity, don't they? In my 35 years of being in this business, I've had to support a large number of Linux, BSD and SYSV systems in the hands of former Windows users (and others with similar brain damage). I can say from experience that a root-based GUI is a very dangerous thing and those who claim otherwise either haven't supported large numbers of neophyte users or have been extraordinarily fortunate to have escaped unscathed. It so very much easier to damage a system from the GUI than from a command line. A single icon click or Proceed click can run literally tens or hundreds of CLI commands. As root, there's no restriction on what's run. Brilliant! The ramifications can be (and have been) devastating in my experience. This is specifically why root-based GUIs have been disabled by default. All that being said, if one is a godlike user and/or is willing to deal with the carnage that can (note I said _can_) ensue with root- based GUIs, then by all means edit the pam files and have at it. No one is stopping you. However, one shouldn't call people who take a more conservative and safer route (often based on past experience) derogatory names. (getting off my soap box) I'm done with this thread. -- - Rick Stevens, Systems Engineer, C2 Hosting ri...@nerd.com - - AIM/Skype: therps2ICQ: 22643734Yahoo: origrps2 - -- - Give me ambiguity or give me something else! - -- -- users mailing list users@lists.fedoraproject.org To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Re: SSH tunnel for ssh traffic
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 04/15/2010 09:12 AM, Christoph Höger wrote: Hi, I need to ssh to some remote VM that sit in a private LAN. For any other service (e.g. RDP) I'd use ssh tunneling just normal. But what do I do for ssh traffic? Since ssh is not host agnostic, it will always complain about localhost having a different RSA key. I just do not want to edit the known_hosts every time I need to connecto to a new machine! Is there some way to tell ssh to use a tunnel directly for a connection? regards Christoph I'm afraid I do not understand what you are asking. Let me try to answer what I think you are asking. I apologize if I'm wrong. Let us say I want to ssh tunnel to a remote machine on a remote lan. Let us say I want to tunnel ssh traffic through this ssh tunnel to still a third machine on that remote lan. Could I do something like the following in my ~/.ssh/config file: Host remote HostKeyAlias myAliasForRemote HostName remote.com LocalForward veryremotehost:22 Host veryremote HostKeyAlias myAliasForVeryRemote HostName localhost port Now, could I do ssh remote and myAliasForRemote is what is associated with the host in my ~/.ssh/known_hosts file. and as long as this connection is open, could I do ssh veryremote and myAliasForVeryRemote is what is associated with the host, veryremotehost, in my ~/.ssh/known_hosts file. I am not sure if the DNS name, veryremotehost needs to be resolved locally or remotely. I think it is remotely, but you would need to check. Normally, I would have used IP addresses because the hosts on the company's internal lan did not have DNS entries. The HostKeyAlias controls the name used for the host that is stored in the ~/.ssh/known_hosts file. Is this what you are asking? -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10 (GNU/Linux) Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org/ iEYEARECAAYFAkvHWB0ACgkQyc8Kn0p/AZT9LACcDNo/uJxnV1fx4JEbboAIgFt2 fMYAoK62YhEtG/Oc45hZs1hAED9tLBOe =aTns -END PGP SIGNATURE- -- users mailing list users@lists.fedoraproject.org To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Re: Root with GUI
Rick Stevens wrote: On 04/15/2010 09:01 AM, R. G. Newbury wrote: On 04/15/2010 10:12 AM, users-requ...@lists.fedoraproject.org wrote: From: Dr. Michael J. Chudobiakm...@avtechpulse.com Subject: Re: Root with GUI On 04/15/2010 08:24 AM, Richard Shaw wrote: On Thu, Apr 15, 2010 at 7:21 AM,hewjr1...@gmail.com wrote: How do I make myself root in the GUI Running a root GUI login is very much frowned upon. You forgot the stage directions: Folds arms across chest, wags finger at suitably cowed and humiliated user.. Oh, come now! It's 'frowned upon' by religious zealots who wish to impose their 'the sky could fall' fears upon everyone. A***oles piss me off. Those who accuse people who caution against this very ill-advised practice religious zealots or A***oles certainly demonstrate their massive experience and maturity, don't they? Being immature, opinionated, or even certifiably insane doesn't make him wrong. Those things are not mutually exclusive to being right. In my 35 years of being in this business, I've had to support a large number of Linux, BSD and SYSV systems in the hands of former Windows users (and others with similar brain damage). I can say from experience that a root-based GUI is a very dangerous thing and those who claim otherwise either haven't supported large numbers of neophyte users or have been extraordinarily fortunate to have escaped unscathed. Root access by incompetents is a bad thing, the interface is moot. But at any level of competence forcing people to do things in a complex and unfamiliar way make errors more likely. I have scripts to do things I only do a few times a year, as well as set of notes that would have been a wiki had there been such a thing when I started. Bozo should not have root, anyone so trusted should be allowed to use the best tools available. It so very much easier to damage a system from the GUI than from a command line. A single icon click or Proceed click can run literally tens or hundreds of CLI commands. As root, there's no restriction on what's run. Brilliant! The ramifications can be (and have been) devastating in my experience. This is specifically why root-based GUIs have been disabled by default. Your whole argument only makes sense if you accept the first sentence as true. And frankly I don't, at least using standard Fedora menus. What tools do you install that would wreak such havoc? I'm looking at the menus (FC13 at the moment) and I find the set of things needing root and the set of things a user trusted with root would want to do have little overlap and minimum danger. Unless you trust root to people who are clearly incompetent, what would they do from GUI that they could screw up worse trying to do it from CLI? Some users have never *seen* a CLI, and find it a neat new feature. I didn't make that quote up. ;-) All that being said, if one is a godlike user and/or is willing to deal with the carnage that can (note I said _can_) ensue with root- based GUIs, then by all means edit the pam files and have at it. No one is stopping you. Good. Because if you have root password then all you have accomplished with nanny login is to force the user to type the root password for every GUI, or force the user to try to use su and a possibly unfamiliar CLI to do things. I have a high resistance to giving just users root in any way, much less blocking access to tools which might do the wrong thing but would at least do it correctly. I have pissed off several managers by requesting a signed authorization to give root to people who are not administrators. And covered my ass once with just such a paper, I am not a trusting person. -- Bill Davidsen david...@tmr.com We have more to fear from the bungling of the incompetent than from the machinations of the wicked. - from Slashdot -- users mailing list users@lists.fedoraproject.org To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Re: authentication problem
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 04/15/2010 11:51 AM, jack craig wrote: Hi Folks, I have an authentication issue with ssh that i'd like to ask for clues on solving? i have created a local host key, id_rsa.pub. i have copied that to the remote host, .ssh/authorized_keys, and checked the perms for both ~/.ssh .ssh/authorized_keys. yet i get the below, ... ssh -v -l jackc sby1.extraview.com OpenSSH_5.2p1, OpenSSL 0.9.8k-fips 25 Mar 2009 ... publickey,gssapi-with-mic,password ! ... No credentials cache found ... No credentials cache found ... debug1: Next authentication method: publickey debug1: Offering public key: /home/jackc/.ssh/id_rsa debug1: Server accepts key: pkalg ssh-rsa blen 277 Agent admitted failure to sign using the key. debug1: Next authentication method: password ja...@sby1.extraview.com's password: my naive reading of the above looks like it fulfilled one authentication method, but then goes on to ask for another, in this case, a password. my wag is that there is an /etc/pam.d config that is wrong, but this isn't my strong suite and i don't want to guess/mess around. also, this phrase, ... debug1: Unspecified GSS failure. Minor code may provide more information No credentials cache found I wouldn't worry about GSS failure. You haven't set it up. - From URL: http://www.ssh.com/support/documentation/online/ssh/adminguide/53/userauth-gssapi.html it explains the idea behind GSS. I tend to think of GSS as Kerberos. where do i find the minor code its referring to? any ssh guru's out there to provide a clue? Not sure. When it says, Agent admitted failure to sign using the key., is it referring to ssh-agent? There is a program, ssh-add, which talks to ssh-agent. I haven't used ssh-add or ssh-agent in a long time. Before I take us down this path which might be a wild good chase, I better ask are you using these? Whenever I have publickey authentication problems, it usually is file and directory permissions. You indicated you checked ~/.ssh and ~/.ssh/authorized_keys As a test, could you make certain your $HOME directories, on both the local and remote machine, are not writable by anyone, but owner? Could you make sure ~/.ssh on both machines is only read/write by owner? Could you make sure the files in ~/.ssh, such as authorized_keys, config, id_rsa, known_hosts, are only read/write by owner? For me, anything in ~/.ssh should only be read/write by owner. Call me paranoid but only owner should have access to these files. The one kicker, I'm asking you to do, is make sure both $HOME directories are, at most, readable, by others, and not writable. If you want someone to put files in your $HOME directory area, can you set up $HOME/droparea and give them read/write access to $HOME/droparea? -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10 (GNU/Linux) Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org/ iEYEARECAAYFAkvHX68ACgkQyc8Kn0p/AZSq7gCfemQ7xhl7GwPnlC1Hcrj+XlI0 dREAn16BFmZbHBeQ8ZvcX2Hp+iCVoBy3 =l5hs -END PGP SIGNATURE- -- users mailing list users@lists.fedoraproject.org To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Clamav
How on earth do I set this up to get virus definitions that selinux won't jump all over I just want email scanned out and in I tried the latest 96 could only find i686 rpm for clamav, clamd, freshclam I am running Fedora 12 x86_64 The fedora repo has version 95 only I installed the i686 version of 96 but selinux is freaking out stopping the update I have removed all and I will wait for proper instruction as I really do not know enough about this OS Is there a proper order for install? -- users mailing list users@lists.fedoraproject.org To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Re: Clamav
On Thu, 2010-04-15 at 12:22 -0700, Michael Miles wrote: I have removed all and I will wait for proper instruction as I really do not know enough about this OS Given that you say so yourself, the logical question is why do you need Clamav? Clamav is usually installed by people running mail servers for users who access them from Windows. If all you're doing is reading mail in Linux, it's extremely unlikely that you even need it. In 35 years of using first Unix and then Linux, I have yet to see a single virus that wasn't a proof-of-concept demo. poc -- users mailing list users@lists.fedoraproject.org To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Re: Clamav
On 04/15/2010 12:50 PM, Patrick O'Callaghan wrote: On Thu, 2010-04-15 at 12:22 -0700, Michael Miles wrote: I have removed all and I will wait for proper instruction as I really do not know enough about this OS Given that you say so yourself, the logical question is why do you need Clamav? Clamav is usually installed by people running mail servers for users who access them from Windows. If all you're doing is reading mail in Linux, it's extremely unlikely that you even need it. In 35 years of using first Unix and then Linux, I have yet to see a single virus that wasn't a proof-of-concept demo. poc This is really what I have been wrestling with myselfwhy do I really need it Is Fedora really that secure? I come from windows and I am amazed at how not secure windows is. So thank you as I don't really need it. The only time I get a reaction from Virus software with linux is when I put in a windows 7 backup dvd -- users mailing list users@lists.fedoraproject.org To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Re: Clamav
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 04/15/2010 03:22 PM, Michael Miles wrote: How on earth do I set this up to get virus definitions that selinux won't jump all over I just want email scanned out and in I tried the latest 96 could only find i686 rpm for clamav, clamd, freshclam I am running Fedora 12 x86_64 The fedora repo has version 95 only I installed the i686 version of 96 but selinux is freaking out stopping the update I have removed all and I will wait for proper instruction as I really do not know enough about this OS Is there a proper order for install? What avc messages are you seeing? Are you saying the yum update is failing or after you start clamd, you get lots of avc messages? -BEGIN PGP SIGNATURE- Version: GnuPG v2.0.14 (GNU/Linux) Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org/ iEYEARECAAYFAkvHcnoACgkQrlYvE4MpobMNFACfesPPKZ7PJqjJnl2jr23SBQKM idcAn08qB5h2qGU6Praq5AFQHRopx1y0 =3vJl -END PGP SIGNATURE- -- users mailing list users@lists.fedoraproject.org To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Re: Clamav
On Thu, 2010-04-15 at 13:02 -0700, Michael Miles wrote: Is Fedora really that secure? Even if we limit the discussion to email viruses, that's a very complex and difficult question (to which the answer is yes :-). It's not an attribute exclusive to Fedora as such, but to all Unix-based systems, mainly for three reasons: 1) The mail client isn't running as root. 2) Even when running as root, Linux mail clients won't blindly execute attachments. 3) Even for executable attachments, the virus is written for Windows and won't run on Linux. Of course it's in principle possible to get past all the above barriers, so *in theory* you can have a Linux virus, assuming the user is stupid enough to run an unknown executable. As I say, I've never seen one in the wild. I come from windows and I am amazed at how not secure windows is. See (3) above. Most viruses are written for Windows as it's the most popular platform. MS likes to pretend that's the only reason it gets all the grief, but there are other factors. poc -- users mailing list users@lists.fedoraproject.org To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Re: authentication problem
On 04/15/2010 11:49 AM, Rick Sewill wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 04/15/2010 11:51 AM, jack craig wrote: Hi Folks, I have an authentication issue with ssh that i'd like to ask for clues on solving? i have created a local host key, id_rsa.pub. i have copied that to the remote host, .ssh/authorized_keys, and checked the perms for both ~/.ssh .ssh/authorized_keys. yet i get the below, ... ssh -v -l jackc sby1.extraview.com OpenSSH_5.2p1, OpenSSL 0.9.8k-fips 25 Mar 2009 ... publickey,gssapi-with-mic,password ! ... No credentials cache found ... No credentials cache found ... debug1: Next authentication method: publickey debug1: Offering public key: /home/jackc/.ssh/id_rsa debug1: Server accepts key: pkalg ssh-rsa blen 277 Agent admitted failure to sign using the key. debug1: Next authentication method: password ja...@sby1.extraview.com's password: my naive reading of the above looks like it fulfilled one authentication method, but then goes on to ask for another, in this case, a password. my wag is that there is an /etc/pam.d config that is wrong, but this isn't my strong suite and i don't want to guess/mess around. also, this phrase, ... debug1: Unspecified GSS failure. Minor code may provide more information No credentials cache found I wouldn't worry about GSS failure. You haven't set it up. - From URL: http://www.ssh.com/support/documentation/online/ssh/adminguide/53/userauth-gssapi.html it explains the idea behind GSS. I tend to think of GSS as Kerberos. where do i find the minor code its referring to? any ssh guru's out there to provide a clue? Not sure. When it says, Agent admitted failure to sign using the key., is it referring to ssh-agent? There is a program, ssh-add, which talks to ssh-agent. I haven't used ssh-add or ssh-agent in a long time. Before I take us down this path which might be a wild good chase, I better ask are you using these? Whenever I have publickey authentication problems, it usually is file and directory permissions. You indicated you checked ~/.ssh and ~/.ssh/authorized_keys both the client server have the 700 for .ssh and 600 for all .ssh/* note also that i have the same access to different hosts in our domain. my client is fc11, but the remote hosts are centos 4 5. As a test, could you make certain your $HOME directories, on both the local and remote machine, are not writable by anyone, but owner? Could you make sure ~/.ssh on both machines is only read/write by owner? Could you make sure the files in ~/.ssh, such as authorized_keys, config, id_rsa, known_hosts, are only read/write by owner? For me, anything in ~/.ssh should only be read/write by owner. Call me paranoid but only owner should have access to these files. The one kicker, I'm asking you to do, is make sure both $HOME directories are, at most, readable, by others, and not writable. If you want someone to put files in your $HOME directory area, can you set up $HOME/droparea and give them read/write access to $HOME/droparea? in this case i am just building a backup system for my client host to back up to he server. i have accts on both so i got ja...@client writing to ja...@server Thx for you time, suggestions beyond perms? -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10 (GNU/Linux) Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org/ iEYEARECAAYFAkvHX68ACgkQyc8Kn0p/AZSq7gCfemQ7xhl7GwPnlC1Hcrj+XlI0 dREAn16BFmZbHBeQ8ZvcX2Hp+iCVoBy3 =l5hs -END PGP SIGNATURE- -- Jack Craig Software Engineer 831.461.7100 x120 www.extraview.com -- users mailing list users@lists.fedoraproject.org To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
RE: authentication problem
Has anyone experienced issues with openssh 5.2 and Putty, keep getting strange behavior, IE: putty hangs, used To work no problem with Fedora 9. Right now I have the iptables firewall disabled just to eliminate it as A problem. -Original Message- From: users-boun...@lists.fedoraproject.org [mailto:users-boun...@lists.fedoraproject.org] On Behalf Of jack craig Sent: Thursday, April 15, 2010 3:58 PM To: users@lists.fedoraproject.org Subject: Re: authentication problem On 04/15/2010 11:49 AM, Rick Sewill wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 04/15/2010 11:51 AM, jack craig wrote: Hi Folks, I have an authentication issue with ssh that i'd like to ask for clues on solving? i have created a local host key, id_rsa.pub. i have copied that to the remote host, .ssh/authorized_keys, and checked the perms for both ~/.ssh .ssh/authorized_keys. yet i get the below, ... ssh -v -l jackc sby1.extraview.com OpenSSH_5.2p1, OpenSSL 0.9.8k-fips 25 Mar 2009 ... publickey,gssapi-with-mic,password ! ... No credentials cache found ... No credentials cache found ... debug1: Next authentication method: publickey debug1: Offering public key: /home/jackc/.ssh/id_rsa debug1: Server accepts key: pkalg ssh-rsa blen 277 Agent admitted failure to sign using the key. debug1: Next authentication method: password ja...@sby1.extraview.com's password: my naive reading of the above looks like it fulfilled one authentication method, but then goes on to ask for another, in this case, a password. my wag is that there is an /etc/pam.d config that is wrong, but this isn't my strong suite and i don't want to guess/mess around. also, this phrase, ... debug1: Unspecified GSS failure. Minor code may provide more information No credentials cache found I wouldn't worry about GSS failure. You haven't set it up. - From URL: http://www.ssh.com/support/documentation/online/ssh/adminguide/53/userauth-g ssapi.html it explains the idea behind GSS. I tend to think of GSS as Kerberos. where do i find the minor code its referring to? any ssh guru's out there to provide a clue? Not sure. When it says, Agent admitted failure to sign using the key., is it referring to ssh-agent? There is a program, ssh-add, which talks to ssh-agent. I haven't used ssh-add or ssh-agent in a long time. Before I take us down this path which might be a wild good chase, I better ask are you using these? Whenever I have publickey authentication problems, it usually is file and directory permissions. You indicated you checked ~/.ssh and ~/.ssh/authorized_keys both the client server have the 700 for .ssh and 600 for all .ssh/* note also that i have the same access to different hosts in our domain. my client is fc11, but the remote hosts are centos 4 5. As a test, could you make certain your $HOME directories, on both the local and remote machine, are not writable by anyone, but owner? Could you make sure ~/.ssh on both machines is only read/write by owner? Could you make sure the files in ~/.ssh, such as authorized_keys, config, id_rsa, known_hosts, are only read/write by owner? For me, anything in ~/.ssh should only be read/write by owner. Call me paranoid but only owner should have access to these files. The one kicker, I'm asking you to do, is make sure both $HOME directories are, at most, readable, by others, and not writable. If you want someone to put files in your $HOME directory area, can you set up $HOME/droparea and give them read/write access to $HOME/droparea? in this case i am just building a backup system for my client host to back up to he server. i have accts on both so i got ja...@client writing to ja...@server Thx for you time, suggestions beyond perms? -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10 (GNU/Linux) Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org/ iEYEARECAAYFAkvHX68ACgkQyc8Kn0p/AZSq7gCfemQ7xhl7GwPnlC1Hcrj+XlI0 dREAn16BFmZbHBeQ8ZvcX2Hp+iCVoBy3 =l5hs -END PGP SIGNATURE- -- Jack Craig Software Engineer 831.461.7100 x120 www.extraview.com -- users mailing list users@lists.fedoraproject.org To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines -- users mailing list users@lists.fedoraproject.org To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Re: SSH tunnel for ssh traffic
Host remote HostKeyAlias myAliasForRemote HostName remote.com LocalForward veryremotehost:22 Host veryremote HostKeyAlias myAliasForVeryRemote HostName localhost port This comes very close to my needs. Only one thing left: Is there any way to trigger ssh remote just by running ssh veryremote? signature.asc Description: Dies ist ein digital signierter Nachrichtenteil -- users mailing list users@lists.fedoraproject.org To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Re: SSH tunnel for ssh traffic
Am Donnerstag, den 15.04.2010, 07:48 -0700 schrieb Konstantin Svist: On 04/15/2010 07:12 AM, Christoph Höger wrote: Hi, I need to ssh to some remote VM that sit in a private LAN. For any other service (e.g. RDP) I'd use ssh tunneling just normal. But what do I do for ssh traffic? Since ssh is not host agnostic, it will always complain about localhost having a different RSA key. I just do not want to edit the known_hosts every time I need to connecto to a new machine! Is there some way to tell ssh to use a tunnel directly for a connection? regards Christoph You could use a nonstandard port for the connection. known_hosts includes the port information when the port is not 22 - it looks something like [localhost:1234] ssh localhost:12345 does not work (tries to resolve localhost:12345 as hostname, dunno why) signature.asc Description: Dies ist ein digital signierter Nachrichtenteil -- users mailing list users@lists.fedoraproject.org To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Boinc s...@home
Is anyone running boinc for s...@home. I am looking for an optimized application with Vlar kill for cuda The only one I could find are dated and Lunitics opt apps for linux 64 are not there any more. The apps run fine until the cuda gets one with major vlar and bogs system until I abort application http://calbe.dw70.de/linux64.html These are the Multibeam apps I am running with Boinc Cuda app needs vlar kill -- users mailing list users@lists.fedoraproject.org To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Re: Root with GUI
On 04/16/2010 12:41 AM, Tom Horsley wrote: On Thu, 15 Apr 2010 23:42:46 +0800 Ed Greshko wrote: At some point, they'd logout and later, next day...after lunch, login as themselves and now have all sorts of troubles they didn't have before. It is possible for idiots to screw up, is not the same as an actual case history of some exploit hitting someone only because they were running a GUI app as root. I'm still waiting for the pointer to those case histories :-). Well, the point being that in this case some directories were set to 777. This allowed others to, for example, read other people's mail, gain access to other people's personal files, photos, etc. Yes, it is a local exploit. But, if some guy had emails about his colleagues he didn't want to get out...or his cache file was filled with trails of visiting porn sites...or... I suppose you'd find that OK...and just chalk it up to idiots. But that is one of the reasons for making it hard for folks to login as root from the GUI. To protect them from themselves. Yes, some people's view is that everyone should have the choice to shoot themselves in the foot. Some people think their children are very intelligent, and well taught so there is no need in the world for child guard caps on medicines and other bottles. Sure, it a pain for older folks with no children in their household...but I think they can request non-guarded bottles at the pharmacy. So, the choice is there to opt out. And the choice to opt out with regards to the root login exists. But, it isn't easy to do it for the simple reason that if it is easy to do...the idiots would be the first ones to do it. My reasons for not allowing root access for GUI logins is different than what others have and for what you're looking for proof of. IMHO, my reasons are more fundamental and more likely to have real world impact. -- Next to being shot at and missed, nothing is really quite as satisfying as an income tax refund. -- F. J. Raymond Guess Who! http://tinyurl.com/mc4xe7 signature.asc Description: OpenPGP digital signature -- users mailing list users@lists.fedoraproject.org To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Re: SSH tunnel for ssh traffic
On 04/15/2010 05:40 PM, Christoph Höger wrote: Am Donnerstag, den 15.04.2010, 07:48 -0700 schrieb Konstantin Svist: ssh localhost:12345 does not work (tries to resolve localhost:12345 as hostname, dunno why) Because it should be: ssh -p 12345 localhost RTFM -- Kevin J. Cummings kjch...@rcn.com cummi...@kjchome.homeip.net cummi...@kjc386.framingham.ma.us Registered Linux User #1232 (http://counter.li.org) -- users mailing list users@lists.fedoraproject.org To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Re: SSH tunnel for ssh traffic
Am Donnerstag, den 15.04.2010, 18:04 -0400 schrieb Kevin J. Cummings: RTFM Yeah, there was this -p switch because ssh uses : in a different way. I should have known this, its been a pretty long day. No time for reading man pages anymore ;) signature.asc Description: Dies ist ein digital signierter Nachrichtenteil -- users mailing list users@lists.fedoraproject.org To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Re: SSH tunnel for ssh traffic
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 04/15/2010 04:38 PM, Christoph Höger wrote: Host remote HostKeyAlias myAliasForRemote HostName remote.com LocalForward veryremotehost:22 Host veryremote HostKeyAlias myAliasForVeryRemote HostName localhost port This comes very close to my needs. Only one thing left: Is there any way to trigger ssh remote just by running ssh veryremote? I always started ssh remote manually. Could you create a bash shell script that starts ssh remote in the background, and then starts ssh veryremote? - From the man ssh page, there is a suggestion about using The following example tunnels an IRC session from client machine “127.0.0.1” (localhost) to remote server “server.example.com”: $ ssh -f -L 1234:localhost:6667 server.example.com sleep 10 $ irc -c ’#users’ -p 1234 pinky 127.0.0.1 Perhaps you could do something like: # Please note...I have not tested this. #!/bin/bash # establish the initial ssh tunnel putting it in the background ssh -f remote sleep 10 # wait 2 seconds for ssh to set up the tunnel, hopefully long enough sleep 2 # establish the ssh tunnel to the very remote machine. ssh veryremote I prefer starting ssh -f remote sleep 10 manually to know the ssh tunnel is actually started before I start using it to forward traffic. Other than using a bash script, I can't think of a way to trigger the starting of ssh remote. On another note, they added a ~/.ssh/config option that is new to me. For those having problems with a home directory shared across multiple machines, from man ssh_config, they added NoHostAuthenticationForLocalhost NoHostAuthenticationForLocalhost This option can be used if the home directory is shared across machines. In this case localhost will refer to a different machine on each of the machines and the user will get many warn- ings about changed host keys. However, this option disables host authentication for localhost. The argument to this keyword must be “yes” or “no”. The default is to check the host key for localhost. -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10 (GNU/Linux) Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org/ iEYEARECAAYFAkvHmV4ACgkQyc8Kn0p/AZQpuQCfXK3UcWOd8LR0FkHbRK0uqH9n mYMAn0XVzkFoD7y4Cxkq3NLGpWyHp2x3 =YRkG -END PGP SIGNATURE- -- users mailing list users@lists.fedoraproject.org To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Wifi link iwl3945
Hi All, Since the installation of F12 in my Acer Aspire 580 series laptop with Intel 3945ABG wireless module, I am having the issue where my Wifi link gets deactivated and activated (disconnects connects) frequently. AP is a Netgear WGR router with WEP enabled. Was using Debian GNU/Linux (Etch Lenny) and I was able to work without any issues. The following is the /var/log/messages when a typical wifi session is disabled and enabled. This issue was severe when there was no security enabled in the router (I gave only MAC address level security). When I included WEP, it became better. Module iwl3945 is loaded in the kernel along with iwlcore, mac80211. Any idea on how to avoid this completely? Apr 16 09:03:36 localhost NetworkManager: info (wlan0): device state change: 8 - 2 (reason 0) Apr 16 09:03:36 localhost NetworkManager: info (wlan0): deactivating device (reason: 0). Apr 16 09:03:36 localhost NetworkManager: info (wlan0): canceled DHCP transaction, dhcp client pid 3603 Apr 16 09:03:36 localhost NetworkManager: WARN check_one_route(): (wlan0) error -34 returned from rtnl_route_del(): Sucess#012 Apr 16 09:03:36 localhost avahi-daemon[1265]: Withdrawing address record for 192.168.0.4 on wlan0. Apr 16 09:03:36 localhost avahi-daemon[1265]: Leaving mDNS multicast group on interface wlan0.IPv4 with address 192.168.0.4. Apr 16 09:03:36 localhost avahi-daemon[1265]: Interface wlan0.IPv4 no longer relevant for mDNS. Apr 16 09:03:36 localhost NetworkManager: info (wlan0): taking down device. Apr 16 09:03:36 localhost avahi-daemon[1265]: Withdrawing address record for fe80::21b:77ff:fe51:4fcd on wlan0. Apr 16 09:03:37 localhost NetworkManager: info (wlan0): bringing up device. Apr 16 09:03:37 localhost kernel: Registered led device: iwl-phy0::radio Apr 16 09:03:37 localhost kernel: Registered led device: iwl-phy0::assoc Apr 16 09:03:37 localhost kernel: Registered led device: iwl-phy0::RX Apr 16 09:03:37 localhost kernel: Registered led device: iwl-phy0::TX Apr 16 09:03:37 localhost kernel: ADDRCONF(NETDEV_UP): wlan0: link is not ready Apr 16 09:03:37 localhost NetworkManager: info (wlan0): supplicant interface state: starting - ready Apr 16 09:03:37 localhost NetworkManager: info (wlan0): device state change: 2 - 3 (reason 42) Apr 16 09:03:37 localhost NetworkManager: info Activation (wlan0) starting connection 'Auto virusk' Apr 16 09:03:37 localhost NetworkManager: info (wlan0): device state change: 3 - 4 (reason 0) Apr 16 09:03:37 localhost NetworkManager: info Activation (wlan0) Stage 1 of 5 (Device Prepare) scheduled... Apr 16 09:03:37 localhost NetworkManager: info Activation (wlan0) Stage 1 of 5 (Device Prepare) started... Apr 16 09:03:37 localhost NetworkManager: info Activation (wlan0) Stage 2 of 5 (Device Configure) scheduled... Apr 16 09:03:37 localhost NetworkManager: info Activation (wlan0) Stage 1 of 5 (Device Prepare) complete. Apr 16 09:03:37 localhost NetworkManager: info Activation (wlan0) Stage 2 of 5 (Device Configure) starting... Apr 16 09:03:37 localhost NetworkManager: info (wlan0): device state change: 4 - 5 (reason 0) Apr 16 09:03:37 localhost NetworkManager: info Activation (wlan0/wireless): access point 'Auto virusk' has security, but secrets are required. Apr 16 09:03:37 localhost NetworkManager: info (wlan0): device state change: 5 - 6 (reason 0) Apr 16 09:03:37 localhost NetworkManager: info Activation (wlan0) Stage 2 of 5 (Device Configure) complete. Apr 16 09:03:37 localhost NetworkManager: info Activation (wlan0) Stage 1 of 5 (Device Prepare) scheduled... Apr 16 09:03:37 localhost NetworkManager: info Activation (wlan0) Stage 1 of 5 (Device Prepare) started... Apr 16 09:03:37 localhost NetworkManager: info (wlan0): device state change: 6 - 4 (reason 0) Apr 16 09:03:37 localhost NetworkManager: info Activation (wlan0) Stage 2 of 5 (Device Configure) scheduled... Apr 16 09:03:37 localhost NetworkManager: info Activation (wlan0) Stage 1 of 5 (Device Prepare) complete. Apr 16 09:03:37 localhost NetworkManager: info Activation (wlan0) Stage 2 of 5 (Device Configure) starting... Apr 16 09:03:37 localhost NetworkManager: info (wlan0): device state change: 4 - 5 (reason 0) Apr 16 09:03:37 localhost NetworkManager: info Activation (wlan0/wireless): connection 'Auto virusk' has security, and secrets exist. No new secrets needed. Apr 16 09:03:37 localhost NetworkManager: info Config: added 'ssid' value 'virusk' Apr 16 09:03:37 localhost NetworkManager: info Config: added 'scan_ssid' value '1' Apr 16 09:03:37 localhost NetworkManager: info Config: added 'key_mgmt' value 'NONE' Apr 16 09:03:37 localhost NetworkManager: info Config: added 'auth_alg' value 'OPEN' Apr 16 09:03:37 localhost NetworkManager: info Config: added 'wep_key0' value 'omitted' Apr 16 09:03:37 localhost NetworkManager: info Config: added 'wep_tx_keyidx' value '0' Apr 16 09:03:37 localhost NetworkManager: info Activation (wlan0) Stage 2 of 5 (Device Configure) complete. Apr 16 09:03:37
Some question in include\linux\I2c.h
Hi all. when i read the include\linux\I2c.h, i have a question between -- /* include\linux\I2c.h */ ... /* Standard driver model interfaces */ int (*probe)(struct i2c_client *, const struct i2c_device_id *); int (*remove)(struct i2c_client *); /* driver model interfaces that don't relate to enumeration */ void (*shutdown)(struct i2c_client *); int (*suspend)(struct i2c_client *, pm_message_t mesg); int (*resume)(struct i2c_client *); ... -- Q: 1. /* driver model interfaces that don't relate to enumeration */--what does this sentence mean? 2. what the different between int (*resume)(struct i2c_client *) and int (*remove)(struct i2c_client *) ? - - Best regards, mojian E-mail:mojian4li...@163.com -- users mailing list users@lists.fedoraproject.org To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Re: Wifi link iwl3945
On 04/15/2010 08:42 PM, Kurian Thayil wrote: Hi All, Since the installation of F12 in my Acer Aspire 580 series laptop with Intel 3945ABG wireless module, I am having the issue where my Wifi link gets deactivated and activated (disconnects connects) frequently. AP is a Netgear WGR router with WEP enabled. Was using Debian GNU/Linux (Etch Lenny) and I was able to work without any issues. The following is the /var/log/messages when a typical wifi session is disabled and enabled. This issue was severe when there was no security enabled in the router (I gave only MAC address level security). When I included WEP, it became better. Module iwl3945 is loaded in the kernel along with iwlcore, mac80211. Any idea on how to avoid this completely? Apr 16 09:03:36 localhost NetworkManager: info (wlan0): device state change: 8 - 2 (reason 0) Apr 16 09:03:36 localhost NetworkManager: info (wlan0): deactivating device (reason: 0). Apr 16 09:03:36 localhost NetworkManager: info (wlan0): canceled DHCP transaction, dhcp client pid 3603 Apr 16 09:03:36 localhost NetworkManager: WARN check_one_route(): (wlan0) error -34 returned from rtnl_route_del(): Sucess#012 Apr 16 09:03:36 localhost avahi-daemon[1265]: Withdrawing address record for 192.168.0.4 on wlan0. Apr 16 09:03:36 localhost avahi-daemon[1265]: Leaving mDNS multicast group on interface wlan0.IPv4 with address 192.168.0.4. Apr 16 09:03:36 localhost avahi-daemon[1265]: Interface wlan0.IPv4 no longer relevant for mDNS. Apr 16 09:03:36 localhost NetworkManager: info (wlan0): taking down device. Apr 16 09:03:36 localhost avahi-daemon[1265]: Withdrawing address record for fe80::21b:77ff:fe51:4fcd on wlan0. Apr 16 09:03:37 localhost NetworkManager: info (wlan0): bringing up device. Apr 16 09:03:37 localhost kernel: Registered led device: iwl-phy0::radio Apr 16 09:03:37 localhost kernel: Registered led device: iwl-phy0::assoc Apr 16 09:03:37 localhost kernel: Registered led device: iwl-phy0::RX Apr 16 09:03:37 localhost kernel: Registered led device: iwl-phy0::TX Apr 16 09:03:37 localhost kernel: ADDRCONF(NETDEV_UP): wlan0: link is not ready Apr 16 09:03:37 localhost NetworkManager: info (wlan0): supplicant interface state: starting - ready Apr 16 09:03:37 localhost NetworkManager: info (wlan0): device state change: 2 - 3 (reason 42) Apr 16 09:03:37 localhost NetworkManager: info Activation (wlan0) starting connection 'Auto virusk' Apr 16 09:03:37 localhost NetworkManager: info (wlan0): device state change: 3 - 4 (reason 0) Apr 16 09:03:37 localhost NetworkManager: info Activation (wlan0) Stage 1 of 5 (Device Prepare) scheduled... Apr 16 09:03:37 localhost NetworkManager: info Activation (wlan0) Stage 1 of 5 (Device Prepare) started... Apr 16 09:03:37 localhost NetworkManager: info Activation (wlan0) Stage 2 of 5 (Device Configure) scheduled... Apr 16 09:03:37 localhost NetworkManager: info Activation (wlan0) Stage 1 of 5 (Device Prepare) complete. Apr 16 09:03:37 localhost NetworkManager: info Activation (wlan0) Stage 2 of 5 (Device Configure) starting... Apr 16 09:03:37 localhost NetworkManager: info (wlan0): device state change: 4 - 5 (reason 0) Apr 16 09:03:37 localhost NetworkManager: info Activation (wlan0/wireless): access point 'Auto virusk' has security, but secrets are required. Apr 16 09:03:37 localhost NetworkManager: info (wlan0): device state change: 5 - 6 (reason 0) Apr 16 09:03:37 localhost NetworkManager: info Activation (wlan0) Stage 2 of 5 (Device Configure) complete. Apr 16 09:03:37 localhost NetworkManager: info Activation (wlan0) Stage 1 of 5 (Device Prepare) scheduled... Apr 16 09:03:37 localhost NetworkManager: info Activation (wlan0) Stage 1 of 5 (Device Prepare) started... Apr 16 09:03:37 localhost NetworkManager: info (wlan0): device state change: 6 - 4 (reason 0) Apr 16 09:03:37 localhost NetworkManager: info Activation (wlan0) Stage 2 of 5 (Device Configure) scheduled... Apr 16 09:03:37 localhost NetworkManager: info Activation (wlan0) Stage 1 of 5 (Device Prepare) complete. Apr 16 09:03:37 localhost NetworkManager: info Activation (wlan0) Stage 2 of 5 (Device Configure) starting... Apr 16 09:03:37 localhost NetworkManager: info (wlan0): device state change: 4 - 5 (reason 0) Apr 16 09:03:37 localhost NetworkManager: info Activation (wlan0/wireless): connection 'Auto virusk' has security, and secrets exist. No new secrets needed. Apr 16 09:03:37 localhost NetworkManager: info Config: added 'ssid' value 'virusk' Apr 16 09:03:37 localhost NetworkManager: info Config: added 'scan_ssid' value '1' Apr 16 09:03:37 localhost NetworkManager: info Config: added 'key_mgmt' value 'NONE' Apr 16 09:03:37 localhost NetworkManager: info Config: added 'auth_alg' value 'OPEN' Apr 16 09:03:37 localhost NetworkManager: info Config: added 'wep_key0' value 'omitted' Apr 16 09:03:37 localhost NetworkManager: info Config: added 'wep_tx_keyidx' value '0' Apr 16 09:03:37 localhost