e some, but
depending on whether they are easy or hard to find would seem like
an easy first step in working out if this is a serious problem or
not.
Cheers,
Andy
en this and more complications I'd be surprised if there are
many packages which directly depend upon systemd-as-pid1 for no good
reason. But do report bugs for those that do!
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
ng and invents a new
init system, or finds out that all CPUs made in the last 20 years
are insecure, or something.
So, get used to it, I guess? ;)
Cheers,
Andy
amer1.0-plugins-ugly:amd64 1:1.12.3-dmo1
I suspect that the "dmo" suffix indicates that this package was
installed from "debian multimedia" which is not part of Debian. If
so, you're on your own there. Maybe remove such packages and try
again.
Cheers,
Andy
--
https://bitfolk.com
or block special
devices on the file system.
While a filesystem is mounted "nodev", it can't have device special
files created on it.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
hrc
fi
Does yours (still)?
Maybe you could compare your ,bash_profile now to one from your
recent backups.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
es what you want, but given the size and
complexity of the firefox packages that is perhaps a bit ambitious.
Then, there is always the option of creating your own firefox
executable which is a script that checks your environment, fixes it
up if necessary, and then calls the real firefox binary.
Cheers,
lly get past
it, and the result is just simpler, so I am optimistic. I think/hope
that having only one environment to manage (the place that Ansible
runs from) will really help.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
y.
Indeed; since snapshot.debian.org goes all the way back to woody in
2005, I don't see why it wouldn't be possible to put that in your
/etc/apt/sources.list and take a potato system up through woody,
sarge, etch, lenny, squeeze, to wheezy then switch to the normal
mirrors to go to jessie and beyond.
ide me how to recreate the necessary files in /dev so I can
mount these volumes and boot the server?
Thanks,
-Andy.
for some time).
You might find it more convenient to use the device aliases in the
/dev/disk/by-* directories as these can be based on some persistent
property of your removable device such as its label, serial number,
or which port it is plugged into etc.
Cheers,
Andy
iating the
dangers. I've had it break badly!
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
Hi Stephen,
On Tue, Feb 20, 2018 at 10:09:52AM +0100, Stephan Seitz wrote:
> On Di, Feb 20, 2018 at 05:09:12 +0000, Andy Smith wrote:
> >CVE-2017-5753 is Spectre v1. There is no fix for Spectre v1 anywhere
> >yet, not even in Linux upstream.
>
> Are you sure?
[…]
>
you, Spectre v2 is fixed in the kernel package in
sid. Read it again:
<https://security-tracker.debian.org/tracker/CVE-2017-5715>
That's the retpoline stuff you're talking about.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
that.
On Mon, Feb 19, 2018 at 01:23:25PM +, Michael Fothergill wrote:
> Checkout the debian backports suite (kindly resourcefully suggested by
> Andy Smith)
Please note that I provided these details to Michael Fothergill as
part of Michael's general query about how a user could obtain a
things to w...@debian.org.
Cheers,
Andy
ty of this being
the culprit, though the lack of resolution here does suggest the OP
may have a long road ahead if that is the case.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
rent browser in every release of Debian against
every wiki on the Internet to try to replicate or understand your
problem is too simple for us.
Can you please try again at a later date with a query that contains
less information about your issue, in order to make it more suitable
to us.
er"
> boot option...
This sounds like a better option because each kernel update will fix
a lot of other things, not only Meltdown.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
Hi Michael,
On Sat, Feb 03, 2018 at 11:44:39PM +, Michael Fothergill wrote:
> On 3 February 2018 at 23:14, Andy Smith <a...@strugglers.net> wrote:
> > If you want to make genuine constructive suggestions for how things
> > could be improved, I think you should star
nation of you misunderstanding
what Debian is, and you wishing Debian was something that it's not.
> I am concerned about new users and what they would have to to
> install the current kernels (ie use a separate live sid
> distribution (correctly and helpfully referred to by Andy) to
> comp
le release that
new users are directed at.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
likely to
be new mitigations developed that get around known problems in less
expensive ways. So expect a lot more kernel updates in our near
future.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
o do this, as IPv4 will
probably fall back to 'link local' addresses if they receive no response
from a DHCP server (which they won't, as all they're connected to is some
other PC).
Both devices will allocate themselves an address in the 'link local' range,
and these addresses can then be used for communicating between the devices.
Andy
What am I meant to want to fail?
If a host that's expecting to receive its address via DHCP receives no response
from the
DHCP server, it should fall back automatically to a 'link local' address.
Andy
er.
I fixed these problems by downloading a new netboot.tar.gz as
described at <https://www.debian.org/releases/jessie/amd64/ch04s05.html.en>
Hope that helps.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
can use this address to do whatever you need to do.
Andy
I have never tried it but <https://unix.stackexchange.com/a/255955>
seems to suggest that you would set the stable_secret sysctl and
then it would work automatically after that.
You could set the sysctl from /etc/network/interfaces or from
/etc/sysctl.d/ or just by some other script.
Cheers,
Andy
services provided to my network).
I'm an inveterate fiddler when it comes to computing, so am always on the look
out for the next 'best' thing to try!
Thanks again to all for the input.
Andy
ow IPv6 access to every device
on my internal network without having to worry about NAT and port forwarding
to get connections through my firewall.
Thanks for the pointer to tinydns, I'll take a look.
Andy
st, as I quite like the idea of having
something lightweight do both jobs.
Are there any other options, or should I just dive in and try to convert to
dnsmasq?
Thanks
Andy
, PTR (both IPv4 and IPv6), NS and
CNAME records to that domain?
Thanks
Andy
miliar with btrfs.
https://news.ycombinator.com/item?id=14909843
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
ike everything else, ZFS has its downsides too, so it is a
matter of requirements.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
an RAID-1 and
-10 and have seen a lot more bugs. Including really bad data loss
bugs.
One look at https://btrfs.wiki.kernel.org/index.php/RAID56 should be
enough.
> Would I be safer with ext4 over RAID5?
It's a bit of a frying pan / ground zero nuclear blast situation,
really.
Cheers,
Andy
--
h
ckages might be helped by
https://codesearch.debian.net/
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
ome up.
Can you avoid it by using global_filter to restrict LVM's operation
to certain devices?
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
ou should be setting are_match() if you want lookfor() to
match anything.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
re-created after kernel reinstall. Sysmap comes
with the kernel, and we already covered grub.
So, try the commands and see what happens. There might be some
additional forcing you need to do but it soul;d be relatively simple.
Cheers,
Andy
ose of it was to have
something to link to when this controversy (which has been going on
for years) rears its head on social media. In that context its style
makes a lot of sense.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
var/lib/urandom/random-seed and very
early on is fed back in to seed the PRNG. It's only in the small
window between boot and feeding in that data where the PRNG might
not have enough entropy.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
e pool is initialised.
https://bugzilla.kernel.org/show_bug.cgi?id=71211
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
config management straight off. Depending on what system I
am working on I will sometimes "cheat" and install it manually with
apt, configure the files with an editor etc. But I do always at
least try to "go back" and recreate the working config with
config management so it's
est not to reply to it (unless you feel like replying
off-list to the person explaining that they are replying to spam),
as the sender won't see your reply and no one on this list can do
anything about it.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
> I'd be interested to hear
e xen-user mailing list is a good place to ask support
questions, as there are probably more admins who use Xen there.
https://lists.xenproject.org/mailman/listinfo/xen-users
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
Hello,
On Thu, Aug 10, 2017 at 07:04:09AM -0400, Dan Ritter wrote:
> On Wed, Aug 09, 2017 at 09:46:09PM -0400, David Niklas wrote:
> > On Sat, 29 Jul 2017 04:59:40 +
> > Andy Smith <a...@strugglers.net> wrote:
> >
> > Also, my use case is at home where the
mers forge from
addresses, so just imagine the consequences of a spam run that had
debian-user as its from address, and you will conclude that it would
play out exactly as we see here.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
the last couple of
years is people reporting abnormally low performance in their
configuration.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
Hi Joe,
On Tue, Jul 11, 2017 at 12:51:20PM -0600, Joe Pfeiffer wrote:
> Andy Smith <a...@strugglers.net> writes:
> > On Mon, Jul 10, 2017 at 05:18:54PM +0200, Sébastien Gautrin wrote:
> >> The proof of this is that they all have nearly the exact same content (some
>
ne could do about it anyway, aside from
completely ignoring all of those emails. There's no real downside in
ignoring them so I'm not going to get worked up about people taking
it so personally!
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
ess alone.
I don't think they care who receives the blowback.
Cheers,
Andy
¹ barring any of the other trusted identity schemes like SPF, DKIM,
DMARC or crypto signed email.
--
https://bitfolk.com/ -- No-nonsense VPS hosting
Please consider the environment before reading this e-mail.
— John Levine
yption will save you
from a motivated and resourceful attacker:
https://en.wikipedia.org/wiki/Cold_boot_attack
This has been the same forever, on all Linux distributions, Windows
and pretty much any other operating system.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
d of systemd ... but there is sooo much to know
As usual I think LWN provides excellent coverage of this issue.
https://lwn.net/Articles/721848/
If possible I do recommend people pay for an LWN subscription. The
work they do is worth paying for.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
That way this all works without having to run any commands on the
client depending on where the client machine is located.
One downside is that if a broken proxy announces itself then your
clients will use it, i.e. you don't have any control over whether
the proxy is used or not.
Cheers,
Andy
--
recate the
net-tools commands.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
illing to keep the relevant
net-tools manpages up to date.
Even the net-tools maintainers in Debian have wanted it removed from
the base install for more than 8 years now. I'm not saying they
would refuse to fix documentation bugs, but the motivation may be
very low at this point.
Some more info
you're just looking to set up software RAID with encryption, all
of that can be done from the Debian installer.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
delay is gone.
On Wed, 2017-05-24 at 23:23 +0200, deloptes wrote:
> andy wrote:
>
> > i'm hoping i'm missing something obvious. thanks in advance!
> >
>
> I don't know if I can help. I am still on jessie, but here are some
> thoughts
>
> &
ssl certificate providers. Or free
> ssl providers. What do you think about them ?
I think the best of the free ones is letsencrypt.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
12308ff10b7b [SWAP]
├─abezella--laptop-root c8a5cd45-6192-48c0-ad74-a07bdba06db1 /
└─abezella--laptop-home 86ba9c52-bcb7-401e-a77e-03216ba541a4 /home
sr0
--
andy <and...@diatribes.org>
to check out is whether your BIOS is
going to see a bootloader on the drive it tries to boot from next
time.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
14.7-1
excellent, thank you! adding that package and its unstable dependency
got it linked...
--
andy <and...@diatribes.org>
in advance for any help!
andy
ly
service, that consumes HTTP on its backend and exposes HTTPS on its
frontend?
That way, the burden is on the administrator rather than the
end-user, which is probably a fairer division of labour.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
until it is needed.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
sing from below that
you meant bs=1K, in which case yes, that's 4GiB. This is all quicker
to test than to ask about though. :)
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
us.debian.org.
apt uses SRV records:
$ dig +short -t SRV _http._tcp.ftp.us.debian.org
0 2 80 ftp-nyc.osuosl.org.
0 1 80 debian.gtisc.gatech.edu.
0 1 80 ftp-chi.osuosl.org.
That's where you're getting the host name ftp-chi.osuosl.org from.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
Hi Jonathan,
On Fri, Mar 24, 2017 at 10:16:16AM +, Jonathan Dowland wrote:
> On Fri, Mar 24, 2017 at 06:29:35AM +0000, Andy Smith wrote:
> > It can be useful to note the names of people who can't seem to
> > prevent themselves from writing argumentative and massively
> >
e those.
It can be useful to note the names of people who can't seem to
prevent themselves from writing argumentative and massively
off-topic responses over and over again. It's a relatively small but
vocal list.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
jessie-backports right now is
new enough. I did a write up a while ago about experimenting with
this in XFS:
http://strugglers.net/~andy/blog/2017/01/10/xfs-reflinks-and-deduplication/
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
appear to be on behalf of all server administrators then I think you
need to show your working.
Cheers,
Andy
¹ http://www.zdnet.com/article/ubuntu-linux-continues-to-rule-the-cloud/
² https://coreos.com/docs/
--
https://bitfolk.com/ -- No-nonsense VPS hosting
Hello,
On Sun, Mar 12, 2017 at 10:49:50PM -0500, David Wright wrote:
> On Mon 13 Mar 2017 at 03:05:31 (+), Andy Smith wrote:
> > On Sun, Mar 12, 2017 at 10:55:05AM +, Sharon Kimble wrote:
> > > In an effort to get gnus to read root emails I've chowned
> > > /
by putting the correct ownership and permissions back
on /var/mail/mail. It is normally owned by mail:mail with mode 0600.
If that doesn't help, try looking at the logs of your mail server
when you expect the emails to be sent. If using exim, that would be
/var/log/exim4/mainlog and /var/log/exim4/p
On Tue, Mar 07, 2017 at 02:47:42AM +, Andy Smith wrote:
> On Mon, Mar 06, 2017 at 09:29:37PM -0500, Gene Heskett wrote:
> > And what replaces it in the MTA dept?
Oh, and procmail is not an MTA (and neither is maildrop…), but more
correctly a Mail Delivery Agent, but I got what
nts
and maildrop:
http://www.courier-mta.org/maildrop/
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
"I remember the first time I made love. Perhaps it was not love exactly but I
made it and it still works." — The League Against Tedium
ally it is a
no-brainer to me: promote the hot spare then remove the suspect drive.
Since it's a spare there is no time where the array lacks
redundancy. If you wait for the drive to fail then there will be a
period of no redundancy while the spare is brought it.
This does depend on what kind of S
getting to the source of my issue there.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
1
You've put the device path (e.g. /dev/sdb2) in the second column
instead of the mount point. Since you've specified UUID you don't
need to specify device path.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
enial of service attacks which use
open recursive nameservers:
http://www.securiteam.com/securityreviews/5GP0L00I0W.html
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
Hello,
On Sat, Feb 11, 2017 at 11:23:00PM +, GiaThnYgeia wrote:
> Andy Smith:
> > Took a stab at reporting it to ftpmas...@debian.org for now.
[…]
> ohh ... wait it just came back UP again
> http://archive.debian.org/debian/dists/squeeze/main/binary-amd64/
> It is all the
On Sat, Feb 11, 2017 at 01:18:31PM +, Andy Smith wrote:
> Is this intentional?
>
> If not, who should the problem be reported to?
Took a stab at reporting it to ftpmas...@debian.org for now.
Cheers,
Andy
woody,
sarge, etch, lenny,
squeeze debian/"
however, I am seeing this with lenny and squeeze¹.
Is this intentional?
If not, who should the problem be reported to?
Cheers,
Andy
¹ Yes, these ancient machines should be upgraded. The people that own
t
sions?
I can't. As far as I can see you should expect compressed rotated
files with your config, both in 3.8.7 and 3.11.0.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
Hi Harald,
On Thu, Feb 02, 2017 at 02:50:09PM +0100, Harald Dunkel wrote:
> On 02/02/17 11:17, Andy Smith wrote:
> > Also through the use of override config files that are included into
> > the main config file, you can avoid being prompted about changes to
> > the main
es care of applying that config to all
your hosts.
Popular examples are Puppet, Ansible and Chef, all of which are
well-supported on Debian. To decide which is best for you will
require some independent research as this is a big topic area and
hard to generalise.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
Hi Kynn,
On Wed, Feb 01, 2017 at 10:43:37AM -0500, Kynn Jones wrote:
> On Wed, Feb 1, 2017 at 7:24 AM, Andy Smith <a...@strugglers.net> wrote:
> > On Tue, Jan 31, 2017 at 06:42:39PM -0500, Kynn Jones wrote:
> > > Unfortunately, I'll never know what the problem was.
nded one?
I do not think there are any reiserfs conversion programs to anything
else, but the different versions of ext can all be converted to
ext4.
Other than that you're probably going to have to copy it across.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
our reboot when things are
working?
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
elp.21_Btrfs_claims_I.27m_out_of_space.2C_but_it_looks_like_I_should_have_lots_left.21
If not, could be things like deleted files that are still open (see
"lsof" output, look for "(deleted)". Or maybe ran out of inodes. See
"df -i" out to check that.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
u but you can pretty easily get the idea:
https://www.digitalocean.com/community/tutorials/how-to-host-multiple-websites-securely-with-nginx-and-php-fpm-on-ubuntu-14-04
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
ouvez-vous m'aider svp ? J'ai besoin du PC pour travailler et cela fait
plusieurs jours
que je suis bloqué sans piste évidente à creuser...
Merci.
Bien à vous,
Andy.
Si vous avez des difficultés pour visualiser ce message, consultez la copie web
(http://eye.newsletter.indyannapub.com/m?r=pTE3NzYwxBB80IQw70UP0N9E0IHQgBoz0IrQstDQMMQQ0KvQktCYFm5UR0DQiAvQqx3QmR70U9kjZGViaWFuLXVzZXItZnJlbmNoQGxpc3RzLmRlYmlhbi5vcmeRxBAu0K1bEyAY0NlE0JQ2-9CI0JoL0KLQ2qA=)
;jessie-backports"?
Personally I only ever cherry-pick from backports because there is
normally a specific package I want, and I don't want the behaviour
of the entire rest of my system to potentially change.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
pty, some basic connectivity checks (ping
192.168.0.5 from client) may be useful.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
"I'd be happy to buy all variations of sex to ensure I got what I wanted."
— Gary Coates (talking about cabling)
e two PVs, is configure
your LVM to stripe extents across both PVs instead of just
allocating them linearly from one PV or another. That would get you
back a bit of the performance.
Cheers,
Andy
¹ Namely:
0. Have backups in case one of the new drives encounters an error
during step (6
ent.
Cheers,
Andy
can I
> delete a raid device and start over if I have to? fdisk?
I have had partman become massively confused by previous contents of
disks before. I've used wipefs to get rid of signatures so partman
would be happy.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
saw this copy on-list.
> > On Nov 11, 2016, at 11:45 PM, Andy Smith <a...@strugglers.net> wrote:
> >
> > Okay. So I think we should focus on why "hostname -f" returns the
> > wrong/outdated info. I'm not sure yet.
> >
> > Out of interest what does &q
Hi Glenn,
On Fri, Nov 11, 2016 at 11:13:02PM -0700, Glenn English wrote:
> > On Nov 11, 2016, at 9:58 PM, Andy Smith <a...@strugglers.net> wrote:
> > After you have done that, what command are you using which shows you
> > the old/incorrect values?
>
> Mostly hostn
/hosts and potentially DNS or other name services you
have configured in /etc/nsswitch.conf.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting
901 - 1000 of 2609 matches
Mail list logo