her possibility is that you have something
that is setting net/ipv6/conf/enp1s0/accept_ra back to 0 after
systemd-sysctl.service already set it to 1. NetworkManager is known
to do this:
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1025073
So, what are you using to manage enp1s0?
Cheers,
ory having group write permission. I don't see you list those
permissions in your email, so please check if that is the case. i.e.
your home directory should be rwxr-xr-x or more restrictive.
Cheers,
Andy
¹ Since each staff member has full root access they can usually find
ways to circumvent
now I see why cutting off the string on the first space that
> appears is safe. I never saw such cases because I always used sha*sums
> on files.
But it does the same thing with files…
Thanks,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
any time you know, so it
may not be worth trying to replicate their structure locally.
Also maybe you want some sort of web site mirroring solution.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
into "fzf"
(It is packaged in Debian)
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
f malware distribution it is easier to
compromise a real Debian developer and get them to upload the bad
package in an entirely proper way. THis has already happened at
least once, though not to a stable release AFAIK. Unlike tampering
of in-flight downloads which has never been reported.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
signature.asc
Description: PGP signature
Hello,
On Tue, Apr 11, 2023 at 12:04:24AM +0200, zithro wrote:
> So, I got curious about his claim
Well you can't say you haven't been warned. This rabbit hole goes
very deep and the bottom will not contain the answers you seek!
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
DNS:*.islandhosting.com, DNS:islandhosting.com
…so my conclusion is that they would only ever expect you to use
https://hornby.islandhosting.com:2096, and anything else outside of
*.islandhosting.net, including the bare IP address, will result in a
TLS warning.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
itself to resolv.conf. A great
portion of the advice Gene offers on this list is factually
incorrect.
It would be best to corroborate anything Gene advises you to do with
the documentation and other posters. Sometimes he is correct, but
too many times he is not.
Cheers,
Andy
--
https://bitfo
DDgMSZi4HxMMhjPdzGs2H/o8D
CrKUmSE9VBhRoclczsBbMENUftKR0XOl
It does seem like your ;local resolver is at fault when it comes to
DNSSEC.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
w view of human behaviour.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
run scripts daily for
*whatever purpose each script has*. If you have questions about what
a specific script does, try looking at it, as it's just an
executable script (usually sh or bash). If you're still confused
then ask a specific question about a specific script.
Cheers,
Andy
--
https:/
ng this
in my spare time.
That is, why are you asking people to convince you to like Perl?
There are lots of languages and you appear to have found one you
like better.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
Hello,
On Tue, Apr 04, 2023 at 05:35:04AM +0200, local10 wrote:
> Apr 4, 2023, 00:16 by in...@dataswamp.org:
> > Andy Smith wrote:
> >
> >> The argument being responded to is roughly that "a popular
> >> AI coding assistant is written in Python, and Pyt
n (which owns the Perl and Raku trademarks)
doesn't want Perl 5 to die.
So hopefully you can see now that things are different because
things are different.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
Hello,
On Mon, Apr 03, 2023 at 05:41:14AM +0200, Emanuel Berg wrote:
> Andy Smith wrote:
>
> > For example, even if some AI assistant is written in Python,
> > and even if you can ask it to spit out a device driver for
> > the Linux kernel that does X and Y with Z ha
s Perl and writes it nearly every day.
I think you should ask a better question, one that more precisely
covers what exactly it is that you want to know. Looking back at
most of your recent posts to this list I'd give that same advice in
response to many of them, I'm afraid.
Cheers,
Andy
--
f you can ask it to spit out a device driver for the Linux
kernel that does X and Y with Z hardware, do you think the device
driver that it spits out will itself be written in Python?
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
those options
in a way you weren't expecting. Some apps might not even support
IPv6. For most apps /etc/gai.conf controls this.
You mentioned in another email that you had to alter gai.conf to
make IPv6 be preferred. That is unusual as it is not the expected
default behaviour.
Cheers,
And
ackage.
> uninstalling it will remove it.
But will that remove the module from the currently running kernel?
That would be undesirable since I would still be relying upon it to
make the wifi work until I rebooted!
Cheers,
Andy
On Sun, Mar 26, 2023 at 04:51:25AM +, Andy Smith wrote:
> I have to build the kernel driver as an external DKMS
> module from:
>
> https://github.com/lwfinger/rtw89
>
> Specifically that is the rtw_8852be module.
>
> That works fine, but it seems that this dr
an upstream kernel
package but to be honest I'd rather just consume Debian package
updates plus a DKMS until it's included.
Thanks,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
fy the hardware clock. Typically it's
only done at shutdown time by the base OS to save the system clock
to the hardware clock ready for next boot, as the system clock is
assumed to be more accurate.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
llowed, then there's
likely no reason why you can't install any of several free
authoritative DNS server implementations (even a mix) and have it
work fine.
Do you have more specific questions?
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
our VPS provider's documentation to see if you
can simply increase the size of the vda disk and vda1 partition?
This is very commonly available with VPS setups and can often even
be done without you rebooting.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
use POSIX file acl so that openldap user can read TLS key file
regardless of file permissions
https://www.server-world.info/en/note?os=Debian_11=acl
I've not tried it for this specific case but I use it so that Exim
can read its TLS key in the same way, and that works fine.
Cheers,
Hello,
On Wed, Mar 01, 2023 at 07:53:19PM +0100, Nicolas George wrote:
> Andy Smith (12023-03-01):
> > > /dev/nvme0n1p2 23G 21G 966M 96% /
> > > /dev/nvme0n1p6 267M 83M 166M 34% /boot
> > > /dev/nvme0n1p1 511M 5.8M 506M 2% /boot/efi
> > > /de
ot well-suited to this kind of
reorganisation of an existing system.
Finally, if you are terrified of doing this sort of thing and don't
mind gross and ugly hacks, you could just move /opt/, /usr/local and
/usr/share into somewhere under /home and symlink them back to where
they should be.
Cheers,
Andy
¹
be a bit of a leap anyway.
As you say, all the other options only get more complicated from there.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
nicer to use than "cpan". See its web page at
https://metacpan.org/pod/App::cpanminus for full details.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
ill try
IPv6 these days if they think it's available).
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
time something is
deleted.
So I would just do nothing out of the ordinary and let the default
fstrim service do its job.
Things get more complicated if you are running virtual machines, or
LVM volumes or things like that, but it sounds like you aren't.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
ork attached storage, and I'm sure there's
people reading this who have done this for years and never had a
problem, but I've had and seen so many problems with non-trivial use
of USB storage. For myself, I'd want any long term setup to be
attached by SATA or NVMe or over network to same.
Che
ng you haven't elaborated upon.
First step, explain why your idea is better than, say, Tor.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
ion for an environment where you do not operate the VMs as you
won't be able to trust the VM admins to arrange for all their stuff
to be backed up. Your choices are likely to be restricted more
towards periodic imaging in that case.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
thing
else)? How are you providing storage for your domUs? Do you run PV
domUs, PVH or HVM or a mixture of these?
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
Hello,
On Fri, Nov 25, 2022 at 10:48:42AM +0100, to...@tuxteam.de wrote:
> On Fri, Nov 25, 2022 at 09:21:51AM +0000, Andy Smith wrote:
> > Nevertheless, not all of the licenses we might discuss in the context of
> > this thread are considered Free by the FSF, so there is a
orse than that! ESR was involved.
Nevertheless, not all of the licenses we might discuss in the context of
this thread are considered Free by the FSF, so there is a need for other
terminology.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
Hello,
On Thu, Nov 24, 2022 at 08:08:46PM -0500, Jeffrey Walton wrote:
> On Thu, Nov 24, 2022 at 7:28 PM Andy Smith wrote:
> > ...
> > I think the most obvious counter-argument is that it would be a waste of
> > effort and human assets to put exploits in open source software
ing them put something
malicious in an open source project?
Frankly, this whole "the software is designed to take away my control
and must be made that way by the concerted effort of dark forces!" thing
sounds lke a thinly-veiled reference to one of Gene's favourite rants.
Cheers,
Andy
-
ght
ahead! As a bonus, he will write about it on some Devuan list and not
here. Right?
Everyone is a winner.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
configure it in a way that can reboot your
computer in the middle of a month-long print job.
Truly when Poettering has such awful powers over your actions, humanity
is lost.
Unless somehow this was solely down to an error on your part that for
some reason you don't want to take ownership of!
Ch
ure installation.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
System Partition: what do people do in 2020?"
https://lists.debian.org/debian-user/2020/11/msg00455.html
(same answers now in 2022)
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
u2 i386 GRand Unified Bootloader
(common files for version 2)
Maybe I need to file a bug on debsecan just so someone can tell me what
I am missing.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
ind does not make sense.
> Will that make it easier to upgrade the system to next stable when it comes
> out?
No, it will make it harder. Packages are mostly tested for upgrade from
the version in the previous release, i.e. oldstable, not olstable-backports.
Cheers,
Andy
--
https://bi
not have a
working system where every package comes from -backports as most of
those packages won't exist. bullseye-backports is only intended to
provide a relatively small number of newer packages for systems
nominally running Debian bullseye.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
t a lot, but I'm
having trouble understanding why it still mentions things like the
above.
Any ideas?
Thanks,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
we worked out they were trying to remember
where they bought things (Amazon)".
Imagine what it would be like talking any of these people through a
problem with their computer.
Someone famous once said, "the only intuitive interface is the
nipple".
I suspect that most of the re
there is a way without either using --create as you
did or stopping the array and hand editing the metadata of the
device in question.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
I still have two independent EFI SPs and mirror them at every grub
package update.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
Hello,
On Wed, Oct 05, 2022 at 02:31:01PM -0400, Greg Wooledge wrote:
> On Wed, Oct 05, 2022 at 06:23:39PM +0000, Andy Smith wrote:
> > I haven't yet felt the need to adjust sizing or permissions on /tmp
> > but if I did I'd just put an entry for it in /etc/fstab.
>
>
similar to tell them where to put temporary
output.
I haven't yet felt the need to adjust sizing or permissions on /tmp
but if I did I'd just put an entry for it in /etc/fstab.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
me=false
Of course, there is good reason for ProtectHome. It seems like you
could easily store this configuration file outside of /root, which
would be more common and would save you all this work.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
found: /root/nftables/ruleset.txt
>
> Sounds like the service might be chrooted.
… so OP please show us
$ systemctl cat nftables.service
to see if there are any interesting options about restricting
access to the filesystem.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
d
further down the thread that this is a laptop so maybe you can't do
that.
Cheers,
Andy
non-obsolete
operating system and there was no way to avoid running the software,
I'd be looking into more extreme measures like running just that app
in a chroot or container on an otherwise up to date system.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
smartctl -t long /dev/sda4
Then to view progress/result:
# smartctl -l selftest /dev/sda
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
report a
bug against the package with "wishlist" severity. Unless the lack of
a newer version is causing something to break, rather than just
resulting in newer functionality being missing, in which case a
higher severity might be appropriate.
Cheers,
Andy
--
https://bitfolk.com/ --
a new block
device.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
tually not any
different to MD in this regard.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
e
that happening in situations where you pay much much more for a
bespoke solution.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
ing is, I'm not sure there is any level of
severity setting that would have made a difference in this case,
only perhaps a lot of people experiencing the problem in time and
shouting about it (or automated testing to catch it).
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
On Mon, Sep 12, 2022 at 12:00:20PM +, Andy Smith wrote:
> Obviously, no one desires for there to be bugs, so your question
> doesn't really make sense. "Should bugs make it into Debian releases"?
Ah, sorry, I think I misunderstood - you are literally asking if the
presen
en team are only being tested to the extent that the
maintainers and volunteers are doing their own testing.
Clearly bugs WILL make it into Debian releases. It is worth thinking
about ways to reduce the chance of this happening.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
s
nux kernels should either be run in PVH or HVM mode under
Xen. pvshim is strictly for older guests.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
how us your domain
config file from /etc/xen)
type=pvh should work. type=pv is not expected to work. I don't know
about type=hvm.
Making the domU multiarch and booting it with an amd64 kernel while
retaining the i686 userland should work.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
number of times to check it can be reliably read.
If that works then I think I'd move on to a memory stress test. On
amd64 I'd use memtest86 but I don't know what is best for arm64.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
our database).
Are you just doing a pg_dump or are you shutting postgres down and
backing up the psql/data directory with usual filesystem tools?
Depending on what sort of errors you are seeing you may have a
damaged filesystem in which case it would be advisable to set it
read only and ta
tat".
Then we might be able to get you closer to your goal of being able
to back up the postgres tables you have in a database that is stored
on an MD array. If that is indeed your goal.
There might be further questions.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
ns:
https://raid.wiki.kernel.org/index.php/Asking_for_help
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
Hi Chuck,
On Fri, Aug 19, 2022 at 08:20:21PM -0400, Chuck Zmudzinski wrote:
> On 8/19/2022 6:59 PM, Andy Smith wrote:
> > Volunteers cannot be forced to do work, else they are not
> > volunteers.
>
> The fact that Debian is created by volunteers and therefore the chances
opriate. That's really the strongest
thing you can do. Others may be tempted to try to drag more info out
of you to determine what the exact history is here and who is
right/wrong, but I don't think that will help anyone in these
particular cases.
Regards,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
Hello,
On Wed, Aug 10, 2022 at 12:20:39PM +0200, Roger Price wrote:
> On Wed, 10 Aug 2022, Andy Smith wrote:
> > I had a negative experience with LPI about 15 years ago where I
> > signed up for one of their tests at a conference (FOSDEM) just out
> > of interest and then in
ink that RHCE was a
decent certification that employers paid attention to, and still do.
It helped me in my career and I took notice of its mention when
interviewing people myself.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
Hello,
On Tue, Aug 09, 2022 at 05:15:15PM -0400, Celejar wrote:
> On Tue, 2 Aug 2022 15:04:13 +
> Andy Smith wrote:
> > On Tue, Aug 02, 2022 at 10:44:54AM -0400, rhkra...@gmail.com wrote:
> > > I guess if I read that right, Verizon still supports IPv4 and has not
>
Hello,
On Sat, Aug 06, 2022 at 01:28:16PM -, Curt wrote:
> On 2022-08-06, Andy Smith wrote:
> > Anything between (and including) the OP's computer and
> > archive.debian.org can [intercept and] deny the HTTP request.
>
> Is there no way of making this determination?
Hello,
On Sat, Aug 06, 2022 at 06:52:29AM -0400, Amn wrote:
> Black listed?!!
> How does that work?
Anything between (and including) the OP's computer and
archive.debian.org can [intercept and] deny the HTTP request.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
he wheezy repository on
archive.debian.org gives these errors as the key has expired and
there is no valid key anywhere at this point, so as already
mentioned if one wants to use archive,debian.org for wheezy one
needs to override these errors, not search for a working key.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
Hello,
On Wed, Aug 03, 2022 at 10:35:44AM +, Marco wrote:
> Am Tue, 2 Aug 2022 23:02:12 +
> schrieb Andy Smith :
>
> > Why do you believe that having their customer premises equipment do
> > this for v6 is any different from having it do default NAT for v4?
>
Hello,
On Tue, Aug 02, 2022 at 06:23:26PM +, Marco wrote:
> Am Tue, 2 Aug 2022 16:40:42 +
> schrieb Andy Smith :
>
> > It's possible that some providers might do IPv6 NAT as well, but I
> > think the majority would just apply some default and quite
> > rest
utable by a matter of convention, the equivalent in IPv6 are just
not routable by the protocol. You have to go out of your way to NAT
them to/from routable addresses to have IPv6 packets traverse.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
ering already are trusted by
most.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
Sky
broadband, a popular consumer and business ISP in UK. Most of Sky's
customers will not know or care that at some point IPv6 got switched
on for them.
If you host content/services then you might want to increase the
priority of learning IPv6 basics so that you can make sure that your
content is ava
ike
> that w/ Debian
Oh, I thought you wanted to stop using DHCPv6 (protocol) entirely.
I've never tried any of this, I've only used static v6 setups
everywhere, so I'm not much use. But can you not have dhclient6 send
a DUID like this?
https://superuser.com/a/954133/100242
Cheers,
oice but to use DHCPv6.
I don't know if static /56 is an option on fios. Although there is
no technical reason to not allocate you a static /56, it is often
used as a differentiator for a more costly service "because they
can".
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
noted) plus the risk of missing other interesting things.
I don't find writing logcheck filters to be a particularly big time
sink. But if you do then it might alter the balance for you.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
d the web for
articles on importing and found some examples already.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
ions you have about mailman3 rather than specifically
Debian's packaging of it. I've found it very helpful, though you do
have to bear in mind that they can only really talk about installs
of mailman3 done in a venv from pip, not through Debian packages.
https://lists.mailman3.org/mailman3/lists
his seems to give an example of
what you want using exiftool:
https://photo.stackexchange.com/a/71428
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
Hello,
On Mon, Jul 11, 2022 at 10:31:36PM -0400, rhkra...@gmail.com wrote:
> On Sunday, July 10, 2022 06:48:10 PM Andy Smith wrote:
> > Otherwise I'm afraid your claims about IPv6 so far have been quite
> > bizarre, on the level of "IPv6 ate my homework" or &q
, what?
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
Hello,
On Sun, Jul 10, 2022 at 07:19:08PM -0500, Igor Korot wrote:
> Trying to compile my program it fails by not finding the
> pg-config script and libpq-fe.h file.
You were already shown apt-file.
Regards,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
https://www.debian.org/doc/manuals/debian-reference/ch02.en.html
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
Hello,
On Sun, Jul 10, 2022 at 05:43:33PM -0500, Igor Korot wrote:
> What package can I find aclocal in?
$ apt-file search bin/aclocal
automake: /usr/bin/aclocal-1.16
automake1.11: /usr/bin/aclocal-1.11
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
necessary and at worst a misconfiguration exists somewhere else.
DNS is designed to work on IPv4-only networks.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
But you're
also doing it on a thread which conclusively has nothing to do with
IPv6. Hopefully you can see why this seems like a bit of a theme
with you.
On Sat, Jul 09, 2022 at 03:59:48PM -0400, gene heskett wrote:
> Andy, you obviously don't live in ipv4 only territory.
I travel a lo
gt; There is nothing I can find in the exim4 configuration that would inhibit
> IPv6.
You disabling IPv6 inhibits IPv6 but I really don't know what the
fixation is with IPv6 (and why it must be disabled).
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
he new way of
> disabling IPv6?
That directory exists for me on all of my Debian 11 machines, so I
guess you have something else wrong. Or maybe have already disabled
IPv6 on the kernel command line (don't know if that removes the
net.ipv6 sysfs tree as well).
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
se list// directory for per-list overrides.
Tags that you can use in templates:
https://docs.mailman3.org/projects/mailman/en/latest/src/mailman/rest/docs/templates.html#templated-texts
I hope some of that helped.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
401 - 500 of 2609 matches
Mail list logo