> Maybe I should remove all firewall progs and start from zero.
I would suggest you install Shorewall. it is not the pain in the arse that's
been the theme of this thread so far.
Mike Kupfer wrote:
>> Have a look at this blog post and program:
>>
>> Managing OpenBSD installed packages declaratively
>>
>> https://dataswamp.org/~solene/2022-05-05-openbsd-declarative-packages-with-pkgset.html
>>
>> [...] Anyone has that for Debian and Debian-like systems?
>
> I have
Emanuel Berg wrote:
> Have a look at this blog post and program:
>
> Managing OpenBSD installed packages declaratively
>
> https://dataswamp.org/~solene/2022-05-05-openbsd-declarative-packages-with-pkgset.html
[...]
> Anyone has that for Debian and Debian-like systems?
I have half of that,
> Anyone has that for Debian and Debian-like systems?
Or, to be exact, systems that use APT.
--
underground experts united
https://dataswamp.org/~incal
Have a look at this blog post and program:
Managing OpenBSD installed packages declaratively
https://dataswamp.org/~solene/2022-05-05-openbsd-declarative-packages-with-pkgset.html
That's sure one idea, to have a config file (that's the
"declarative" part) and then a script that converts
I am attempting to run the ListGarden RSS generator on Debian 11.
Perl 5 (version 32) needs the ListGarden module. Meta::cpan does not
recognize the module name.
I am trying to implement a RSS (or Atom) feed on an blog I am
generating with make4ht.
RLH
--
He turneth rivers into a wilderness,
On Mon, 30 May 2022 at 01:28, Richard Owlett wrote:
> berenger.mo...@neutralite.org responded with a discussion about using
> aptitude's visual mode.
>
> That has multiple problems:
>1. My original goal description was inadequate.
>2. My target environment has changed.
>3. From his
On Sun, May 29, 2022 at 8:13 PM Greg Wooledge wrote:
> On Sun, May 29, 2022 at 11:50:44PM +, Lee wrote:
> > On 5/29/22, Greg Wooledge wrote:
> > > Second, I cannot ping this IP address, nor can I telnet to port 80 of
> it.
> >
> > For whatever it's worth..
> >
> > Pinging 69.30.225.10 with
>
>
> ssh gives me a login prompt
>
>
Btw, I highly recommend:
* Block SSH access from any IP except one you are going to use to manage
this server
* If you have dynamic IP, you can add all your ISP network, or, at least,
your country: (list can be downloaded here
On Sun, May 29, 2022 at 11:50:44PM +, Lee wrote:
> On 5/29/22, Greg Wooledge wrote:
> > Second, I cannot ping this IP address, nor can I telnet to port 80 of it.
>
> For whatever it's worth..
>
> Pinging 69.30.225.10 with 32 bytes of data:
> Reply from 69.30.225.10: bytes=32 time=43ms
On 5/29/22, Greg Wooledge wrote:
> On Sun, May 29, 2022 at 03:39:05PM -0500, Tom Browder wrote:
>> I have not intentionally hidden anything, Greg--I just never saw the need
>> for
>> mentioning it given the dialogue--x.y.z.w is just shorthand. If you
>> must know the exact IP address, it is
On May 29, 2022, at 2:30 PM, Nusrath Moin wrote:
Whenever i login after installing debian on my imac early 2006 it shows
"debian gnu/linux comes with absolutely no warranty, to the extent
permitted by applicable law"
That message is normal when you log in to a terminal. I think OSx showed
On May 29, 2022, at 2:30 PM, Nusrath Moin wrote:
>
>
>Whenever i login after installing debian on my imac early 2006 it shows
>"debian gnu/linux comes with absolutely no warranty, to the extent permitted
>by applicable law" on some command screen and i am stuck what should i do
>please tell
On Sun, May 29, 2022 at 15:55 Greg Wooledge wrote:
...
Thanks, Greg. It looks like my server was blocked from ports 80 and 443
upstream from it (as you and others suspected), so I asked my provider to
reinstall the OS and ensure it has public access to ports 80 and 443.
Best regards,
-Tom
Nusrath Moin wrote:
> Whenever i login after installing debian on my imac early 2006 it shows
> "debian gnu/linux comes with absolutely no warranty, to the extent
> permitted by applicable law" on some command screen and i am stuck what
> should i do please tell me i am unable to use my imac
If
On Sun, May 29, 2022 at 03:39:05PM -0500, Tom Browder wrote:
> I have not intentionally hidden anything, Greg--I just never saw the need for
> mentioning it given the dialogue--x.y.z.w is just shorthand. If you
> must know the exact IP address, it is 69.30.225.10.
OK. Now we can actually start
On Sun, May 29, 2022 at 2:21 PM Greg Wooledge wrote:
>
> > > > btw, are you able to ping server?
> > >
> > > Yes.
> >
> > It is always better to show the command and the output instead of saying
> > yes/no! :)
>
> Except it should be abundantly clear by now that you're dealing with
> someone who
Bonjour à tous,
Je voudrais utiliser OBS sur Debian pour faire des tutoriels vidéos.
Mais quand je veux filmer tout ce qui ce passe sur mon écran (Capture
d'écran XSHM), je n'ai rien en aperçu à part mon curseur qui se balade
sur fond noir. J'utilise le serveur graphique Wayland, j'ignore si
> > > btw, are you able to ping server?
> >
> > Yes.
>
> It is always better to show the command and the output instead of saying
> yes/no! :)
Except it should be abundantly clear by now that you're dealing with
someone who believes that they must hide every single detail from
the ones who
>
>
> I must say, I can not realy understand how you can ping and not
> telnet/access your web server.
>
>
Some router between OP and his server has something like
-I FORWARD -j REJECT --reject-with icmp-host-unreachable
Whenever i login after installing debian on my imac early 2006 it shows
"debian gnu/linux comes with absolutely no warranty, to the extent
permitted by applicable law" on some command screen and i am stuck what
should i do please tell me i am unable to use my imac
On 5/29/2022 7:20 PM, Tom Browder wrote:
On Sun, May 29, 2022 at 11:39 IL Ka wrote:
btw, are you able to ping server?
Yes.
It is always better to show the command and the output instead of saying
yes/no! :)
I must say, I can not realy understand how you can ping and not
telnet/access
On Sat, 2022-05-28 at 17:11 -0400, Greg Wooledge wrote:
> On Sat, May 28, 2022 at 04:02:39PM -0400, The Wanderer wrote:
> > On 2022-05-28 at 15:40, Jim Popovitch wrote:
> > > I have a file of regex patterns and I use grep like so:
> > >
> > > ~$ grep -f patterns.txt /var/log/syslog
> > >
> >
On Sun, May 29, 2022 at 11:39 IL Ka wrote:
> btw, are you able to ping server?
>
Yes.
On Sun, May 29, 2022 at 05:41:59AM -0500, Tom Browder wrote:
> On Sat, May 28, 2022 at 20:06 IL Ka wrote:
> ...
>
> 3. You should also check that Apache is running and listening to this port,
> > use ``ss -lt``.
> > For this command you _may_ use sudo to get process names (``sudo ss
> > -ltp``).
btw, are you able to ping server?
On Sun, May 29, 2022 at 7:26 PM Tom Browder wrote:
> On Sun, May 29, 2022 at 10:33 AM IL Ka wrote:
> >
> >
> >> When running those, I'm told neither the arptablrs nor the ebtables are
> registered (not installed). Should I install them?
> >
> > No.
> >
> > So,
>
>
> > and ``iptables -S`` ?
>
> -P INPUT ACCEPT
> -P FORWARD ACCEPT
> -P OUTPUT ACCEPT
> -N f2b-sshd
> -A INPUT -p tcp -m multiport --dports 22 -j f2b-sshd
> -A f2b-sshd -s 61.177.173.50/32 -j REJECT --reject-with
> icmp-port-unreachable
> -A f2b-sshd -s 61.177.173.7/32 -j REJECT --reject-with
>
On 22/05/22 at 03:30, Marcelo Laia wrote:
> On 21/05/22 at 04:09, Marcelo Laia wrote:
> > Nowadays, email recipients had give me feedback that attached files that
> > I sent was corrupted. I use Mutt + msmtp + offlineimap and OAuth GMail
> > app implementation.
>
> After more tests, I found that
On Sun, May 29, 2022 at 10:33 AM IL Ka wrote:
>
>
>> When running those, I'm told neither the arptablrs nor the ebtables are
>> registered (not installed). Should I install them?
>
> No.
>
> So, you now have legacy (classic) iptables, right?
Yes.
> What is the output of ``iptables -L -v -n``
> When running those, I'm told neither the arptablrs nor the ebtables are
> registered (not installed). Should I install them?
>
No.
So, you now have legacy (classic) iptables, right?
What is the output of ``iptables -L -v -n`` and ``iptables -S`` ?
In my original post [1] I said:
I'm in the process of doing some idiosyncratic minimalistic installs using
the "--no-install-recommends" option of apt-get.
What I would like to do is enter the package name. The tool's response would
be a list of the recommended packages and their associated
On Sun, May 29, 2022 at 09:51 IL Ka wrote:
>
>>> Do I have to switch all four *legacy *tables?
>>
>
> yes
>
When running those, I'm told neither the arptablrs nor the ebtables are
registered (not installed). Should I install them?
>
>
>
>> Do I have to switch all four *legacy *tables?
>
yes
On Sat, May 28, 2022 at 17:24 IL Ka wrote:
> ...
I am not familiar with nft, bit you can switch to iptables using
>> ``update-alternatives``
>>
>
> # update-alternatives --set iptables /usr/sbin/iptables-legacy
> # update-alternatives --set ip6tables /usr/sbin/ip6tables-legacy
> #
Le 29/05/2022 à 13:22, Tom Browder a écrit :
On Sun, May 29, 2022 at 05:41 Tom Browder wrote:
Does anyone have a good reason for me to NOT install and enable UFW?
-Tom
good reason would be that thtere is obviously already something on
your server magaing the firewalling. Having 2
On Sun 29 May 2022 at 15:02:35 (+0200), Jörg-Volker Peetz wrote:
> Jim Popovitch wrote on 28/05/2022 21:40:
> > Not exactly Debian specific, but hoping that someone here can help.
> >
> > I have a file of regex patterns and I use grep like so:
> >
> > ~$ grep -f patterns.txt /var/log/syslog
Jim Popovitch wrote on 28/05/2022 21:40:
Not exactly Debian specific, but hoping that someone here can help.
I have a file of regex patterns and I use grep like so:
~$ grep -f patterns.txt /var/log/syslog
What I'd like to get is a listing of all lines, specifically the line
numbers of the
>
>
>
> Good to know. But does fail2ban require ipset?
>
No, but having several thousand rules is not convenient, so I prefer ipset
> They never have before in over 15 years, and, before I got this server
> started, its mate was serving fine. But if the ufw doesn't work, I'll ask
> them.
>
I'd
On Sun, May 29, 2022 at 07:06 IL Ka wrote:
> Does anyone have a good reason for me to NOT install and enable UFW?
>>
>
> ufw can't be used with ipset AFAIK, and I use ipset for many reasons
> (fail2ban, block access outside of my country etc).
> But If you only SSH your host from one static IP,
>
>
>
> Does anyone have a good reason for me to NOT install and enable UFW?
>
>
ufw can't be used with ipset AFAIK, and I use ipset for many reasons
(fail2ban, block access outside of my country etc).
But If you only SSH your host from one static IP, you probably do not need
fail2ban at all.
>
> $ telnet x.y.z.w 80
> Trying x.y.z.w...
> telnet: Unable to connect to remote host: No route to host
>
But you can ssh to this host, right?
Well, that means the firewall blocks your request and sends the ICMP
message "no route to host".
Switch to the legacy iptables using
On Sun, May 29, 2022 at 05:41 Tom Browder wrote:
Does anyone have a good reason for me to NOT install and enable UFW?
-Tom
Oi Vitor, esse esquema que você pensou não vai funcionar pq o "disco"
(pendrive) de instalação tem seu sistema de arquivos "read only", como se
fosse um CD ou DVD. Então o que você precisaria seria uma imagem atualizada
mesmo (tipo daily build).
Ao iniciar "do pendrive" qualquer operação que você
On Sat, May 28, 2022 at 20:06 IL Ka wrote:
...
3. You should also check that Apache is running and listening to this port,
> use ``ss -lt``.
> For this command you _may_ use sudo to get process names (``sudo ss
> -ltp``). Read ``ss --help``
>
> If you were able to connect on this host, then try
44 matches
Mail list logo