Nouveau dans l'empaquetage

[Maxime Lombard]

Bonjour,

Fidèle utilisateur de Debian depuis plus de 10 ans, je me suis enfin
décider à sauter le pas et à regarder comment aider Debian à avoir les
paquets à jour.

Etant un grand utilisateur de Wine également, cela m'inquiète que la
dernière version dans Sid soit encore à la 6.0 alors que l'on approche de
la sortie finale de la 7.0 (la rc2 est sortie vendredi dernier)

J'aimerais bien contribuer à l'empaquetage de Wine/vkd3d afin de mettre à
jour les paquets dans les dépôts Debian. J'ai envoyé un mail à Michael
Gilbert (le mainteneur actuel) et je suis toujours sans réponse. Est-il
toujours DMD ? Car aucune trace de lui depuis + de 6 mois.

J'ai réussi à empaqueter wine-7.0~rc2 avec succès et tout fonctionne très
bien.

J'ai du coup explorer les méandres sur site Debian afin de voir de quel
façon je pouvais devenir un Mainteneur Debian novice. Mais je dois dire que
je me suis perdu dans la multitude des pages sur le site... On t'envoi sur
une page qui t'envoie sur une autre ...

J'ai, me semble t'il vu que je pouvais faire appel à un mentor Debian pour
m'aider dans mes démarches et vérifier ce que je fais.

Est-ce que quelqu'un peut m'expliquer simplement la façon de faire pour
faire connaître le paquet que j'ai mis à jour et le faire vérifier ?

Cordialement,

Re: Identity Theft

[John Hasler]

rhkramer writes:
> I used my eyes to read the number off the screen and then dial my
> separate phone (not attached to a computer (well, other than the
> ObiHai VOIP device).

Didn't you also say that you later verified the number by checking the
logs in your Google account?
-- 
John Hasler 
j...@sugarbit.com
Elmwood, WI USA

Re: vulnerability classifications (was: Re: Identity Theft)

[Jeremy Ardley]

On 21/12/21 10:18 am, Nicole wrote:



More at https://owasp.org/www-community/attacks/xss/

just out of curiousity: I understand XSS are like code injections into
the HTML through user controlled input or attacker controlled input, e.g.
the password field or the message you send someone. what you describe my
amateurish brain however references as XS(-Leak?) vulnerability - is
this a mix-up on your end or a misunderstanding of how words are used on
my end?


The overview in the link above describes it. Basically the script can do 
many things including altering the content of a page


More at

https://owasp.org/www-community/Types_of_Cross-Site_Scripting

--
Jeremy


OpenPGP_signature
Description: OpenPGP digital signature

Re: Identity Theft

[Jeremy Ardley]

On 21/12/21 10:09 am, Jeremy Ardley wrote:s.
There is a type of attack called cross-site scripting (XSS). It's 
mostly been eliminated by latest version browsers, but there are 
always zero-day vulnerabilities.


The effect is that if you are vulnerable and have two tabs open, one 
to the legitimate site, and one to a bad guy site, the bad guy can 
alter your trusted site and for instance change a valid link into 
something malicious, or change a displayed phone number.


More at https://owasp.org/www-community/attacks/xss/



You can mitigate XSS by having a single browser that is used solely to 
access high value sites. e.g. if you routinely run Firefox, have a copy 
of Vivaldi that you use to access your banks - one at a time.


--
Jeremy



OpenPGP_signature
Description: OpenPGP digital signature

Re: Identity Theft

[Jeremy Ardley]

On 21/12/21 9:59 am, rhkra...@gmail.com wrote:

On Monday, December 20, 2021 02:28:13 PM Brian wrote:

On Mon 20 Dec 2021 at 10:32:31 -0500, rhkra...@gmail.com wrote:

My identity has been stolen, and although it has nothing to do with

[...]

May we know the URL of the financial website you contacted and the
help number you phoned.

The website is troweprice.com, and the phone number is 855/654-5324.

It looks like I didn't record the actual URL that I was on, but I don't think
you could see that exact page in any case as it was an https page and one that
showed my account numbers and balances.



There is a type of attack called cross-site scripting (XSS). It's mostly 
been eliminated by latest version browsers, but there are always 
zero-day vulnerabilities.


The effect is that if you are vulnerable and have two tabs open, one to 
the legitimate site, and one to a bad guy site, the bad guy can alter 
your trusted site and for instance change a valid link into something 
malicious, or change a displayed phone number.


More at https://owasp.org/www-community/attacks/xss/

--
Jeremy



OpenPGP_signature
Description: OpenPGP digital signature

Re: Identity Theft

[rhkramer]

On Monday, December 20, 2021 02:28:13 PM Brian wrote:
> On Mon 20 Dec 2021 at 10:32:31 -0500, rhkra...@gmail.com wrote:
> > My identity has been stolen, and although it has nothing to do with
> 
> [...]
> 
> May we know the URL of the financial website you contacted and the
> help number you phoned.

The website is troweprice.com, and the phone number is 855/654-5324.

It looks like I didn't record the actual URL that I was on, but I don't think 
you could see that exact page in any case as it was an https page and one that 
showed my account numbers and balances.

Re: Identity Theft

[rhkramer]

On Monday, December 20, 2021 02:09:13 PM Jeremy Nicoll wrote:
> On Mon, 20 Dec 2021, at 18:30, John Hasler wrote:
> > Jeremy Nicoll writes:
> >> How would Google intercept a financial institution's valid
> >> phone number?
> > 
> > He was using Google Voice.
> 
> When the OP "found" a number on screen, to ring, does that
> mean he eg clicked on the display of a number and then some
> software he has connected to a different number?
> 
> Or did he use his eyes and read the number off the screen,
> then "dial" (presumably in software) that number he saw
> displayed (which later apparently worked properly) and got
> someone else?

I used my eyes to read the number off the screen and then dial my separate 
phone (not attached to a computer (well, other than the ObiHai VOIP device).

Re: Firefox ESR EOL

[Kushal Kumaran]

On Thu, Dec 09 2021 at 10:12:18 AM, piorunz  wrote:
> Hello,
>
> I noticed that Debian Stable uses Firefox ESR 78.15.0, which is final
> update of 78 series. All further updates go to Firefox ESR 91, as
> Mozilla page says:
> https://www.mozilla.org/en-US/firefox/78.15.0/releasenotes
>
> "Version 78.15.0, first offered to ESR channel users on October 5, 2021
> This is the final planned ESR78 release. Eligible users will be
> automatically updated to the ESR91 release on November 2."
>
> Since 2 November, Firefox 78 is EOL and we all should upgrade. I use
> Debian Bullseye on several of my computers, and they all are on ESR 78.
>
> Firefox 91 should migrate to Stable as soon as possible, otherwise we
> risk unpatched security vulnerabilities being present in Debian Stable,
> there are several of them already.
> https://security-tracker.debian.org/tracker/source-package/firefox-esr
>
> Is there any remedy for this?
>

As of a day ago, Firefox 91 is now in stable.  My thanks to the
maintainers of the firefox debian packages and the build toolchains for
working on this.

-- 
regards,
kushal

Re: Firefox ESR EOL

[gene heskett]

On Monday, December 20, 2021 9:45:57 AM EST Stefan Monnier wrote:
> > The first arm board builder to give us two pcie slots or two net
> > ports. or  even 2 parports WILL OWN this market if the MSRP is under
> > $100 with 2 gigs of  ram.  Ideal would be one pci-e, and one net port.
> > SSD's can be put on the pi4's  on either or both, usb-3 ports.
> 
> Something like the MochaBin, but a bit cheaper?
> 
I, once I switched my attention to the pi, haven't paid that much attention. 
Lets just say I got used to the pi's warts. It does have quite a few.
> Stefan
> 
> .


Cheers, Gene Heskett.
-- 
"There are four boxes to be used in defense of liberty:
 soap, ballot, jury, and ammo. Please use in that order."
-Ed Howdershelt (Author, 1940)
If we desire respect for the law, we must first make the law respectable.
 - Louis D. Brandeis
Genes Web page 

Re: keyboard setup

[mick crane]

On 2021-12-20 19:11, Georgi Naplatanov wrote:

On 12/20/21 18:03, mick crane wrote:

Operating System: Debian GNU/Linux 11 (bullseye)
Kernel: Linux 5.10.0-10-amd64
Architecture: x86-64

I'm still having trouble with random lines from elsewhere in the file
I'm editing getting plonked a hundred or so lines away.
Which is a pain as it can take a while to locate them.
Want to use the console Ctrl+Alt+Fx for a bit and see if it's 
something

to do with X
Trouble is I can't get the console keyboard keys to do the same thing 
as

in Xfce.
I read that the keyboard map is supposed to be shared between console
and X but not here.
I try various things.
"dpkg-reconfigure console-setup"
"dpkg-reconfigure console-data"
"dpkg-reconfigure keyboard-setup"
"service keyboard-setup restart"
reboot the PC
nothing seems to work.
this particular keyboard is small generic USB thing which works with
Microsoft Office keyboard layout.
but in console some keys are not what is on the key. eg "#" is UK 
Pound

sign.
"dpkg-reconfigure keyboard-setup" does have that layout as a 
selection.

Is there something I need to do after selecting to get it to work ?

mick


Hi Mick,

did you try

# dpkg-reconfigure keyboard-configuration
# service keyboard-setup restart

There is a wiki - https://wiki.debian.org/Keyboard


yes, sorry that was a typo in posting

that's what I typed.
dpkg-reconfigure keyboard-configuration
service keyboard-setup restart

selecting the layout microsoft office keyboard in Xfce 
settings->keyboard GUI

is successful. but is not used by console.

mick

--
Key ID4BFEBB31

Re: Identity Theft

[Brian]

On Mon 20 Dec 2021 at 10:32:31 -0500, rhkra...@gmail.com wrote:

> My identity has been stolen, and although it has nothing to do with Debian, 
> Linux, or computing (well, in general). I thought it would be educational / 
> important to notify everyone I can of what happened.
> 
> I did not believe it could happen, but I have convinced myself and have 
> reasonable proof of what happened.
> 
> My description starts off talking about using a computer, but that has little 
> or nothing to do with what happened.
> 
> I was on my computer, logged into a financial website, on which I could view 
> things like my account number, current balance, and such.
> 
> I needed some help, so I looked for a help number on that page.  I found one 
> and called it, and got a scammer (although I didn't realize it until too much 
> later).

[...]

May we know the URL of the financial website you contacted and the
help number you phoned.

-- 
Brian.

Re: Problème NIS

[Jean-Claude Marquès]

  
  
Le 20/12/2021 à 18:24, BERTRAND Joël a
  écrit :
  Bonsoir
  
  Sur Bullseye, un reboot (???!!!???) des clients (en Bullseye eux
  aussi) a réglé le problème. Par contre, je n'ai pas (encore)
  réussi à identifier la cause. C'est aussi la première fois, il me
  semble, mais les souvvenirs, on sait ce que cela vaut, qu'un
  reboot règle un problème sous debian.
  
  Je ne sais pas quelle était la cause, mais le remède a fonctionné.
  Phénomène reproductible sur tous les clients et sur chaque cohorte
  d'étudiants concernés (3 à ce jour sur cette distribution debian
  11). Pour le coup, NIS est un service qui peut même tomber en
  marche.
  
  Bien évidemment, l'identification de la cause m'intéresse très
  fortement (rien trouvé dans les logs...).
  
  Bonne soirée
  
  Jean-Claude
  
  

Bonjour
  à tous,
  
  
  J'ai une station de travail qui est en Debian/Bookworm et qui
  fonctionnait correctement jusqu'à une mise à jour récente
  (apportée par unattented upgrade) et je n'arrive pas à trouver ce
  qui coince.
  
  
  Configuration :
  
  - serveur NIS/NFS tournant sous NetBSD 9.2 (rien de changé de ce
  côté-là). Les tables NIS sont exportées correctement et sur la
  machine fautive, un ypcat passwd par exemple renvoie quelque
  chose.
  
  - poste FreeBSD
  
  - postes Linux (un debian stable et plusieurs debian/testing).
  
  
  Lors de la mise en place de la configuration, j'ai galéré
  parce que tout ce beau monde ne cause pas la même langue ni le
  même format. J'ai donc côté NetBSD un Makefile spécifique pour
  générer les fichiers à la bonne syntaxe pour Linux, NetBSD et
  FreeBSD. J'ai aussi forcé le chiffrement des mots de passe à old
  pour les entrées yp.
  
  
  Lorsque je fais un ypcat passwd sur le poste fautif (et les
  autres d'ailleurs), j'obtiens:
  
  
  bertrand:iuzeyizruyeri:1002:1002:...
  
  
  Bref, cela semble bien chiffré avec crypt.
  
  
  Sur le poste FreeBSD, ça fonctionne sans problème. Sur le
  poste Debian 11 aussi. Mais pas sur testing où un su par exemple
  me retourne :
  
  
  su: user bertrand does not exist or the entry does not contain all
  the required fields
  
  
  Naturellement, j'ai testé avec plusieurs identifiants. Le
  résultat est toujours le même.
  
  
  J'ai vu que les fichiers /etc/pam.d/auth* avaient été mis à
  jour récemment, mais je ne comprends pas le rapport (et surtout,
  je ne vois pas trop quelle est la différence entre ceux de la
  machine sous debian 11 et celle sous testing). Dernière chose,
  toutes ces machines sont diskless, mais apparmor ne semble pas se
  plaindre.
  
  
  Je prends toute idée parce que je ne vois vraiment pas d'où
  vient le problème...
  
  
  Bien cordialement,
  
  
  JKB
  
  


  

Re: keyboard setup

[Georgi Naplatanov]

On 12/20/21 18:03, mick crane wrote:
> Operating System: Debian GNU/Linux 11 (bullseye)
> Kernel: Linux 5.10.0-10-amd64
> Architecture: x86-64
> 
> I'm still having trouble with random lines from elsewhere in the file
> I'm editing getting plonked a hundred or so lines away.
> Which is a pain as it can take a while to locate them.
> Want to use the console Ctrl+Alt+Fx for a bit and see if it's something
> to do with X
> Trouble is I can't get the console keyboard keys to do the same thing as
> in Xfce.
> I read that the keyboard map is supposed to be shared between console
> and X but not here.
> I try various things.
> "dpkg-reconfigure console-setup"
> "dpkg-reconfigure console-data"
> "dpkg-reconfigure keyboard-setup"
> "service keyboard-setup restart"
> reboot the PC
> nothing seems to work.
> this particular keyboard is small generic USB thing which works with
> Microsoft Office keyboard layout.
> but in console some keys are not what is on the key. eg "#" is UK Pound
> sign.
> "dpkg-reconfigure keyboard-setup" does have that layout as a selection.
> Is there something I need to do after selecting to get it to work ?
> 
> mick

Hi Mick,

did you try

# dpkg-reconfigure keyboard-configuration
# service keyboard-setup restart

There is a wiki - https://wiki.debian.org/Keyboard

Kind regards
Georgi

Re: Identity Theft

[Jeremy Nicoll]

On Mon, 20 Dec 2021, at 18:30, John Hasler wrote:
> Jeremy Nicoll writes:
>> How would Google intercept a financial institution's valid
>> phone number?
>
> He was using Google Voice.

When the OP "found" a number on screen, to ring, does that 
mean he eg clicked on the display of a number and then some 
software he has connected to a different number?

Or did he use his eyes and read the number off the screen,
then "dial" (presumably in software) that number he saw 
displayed (which later apparently worked properly) and got 
someone else?

-- 
Jeremy Nicoll - my opinions are my own.

Re: Identity Theft

[Nicholas Geovanis]

On Mon, Dec 20, 2021 at 12:47 PM Nicholas Geovanis 
wrote:

>
> On Mon, Dec 20, 2021 at 12:31 PM John Hasler  wrote:
>
>> Jeremy Nicoll writes:
>> > How would Google intercept a financial institution's valid phone
>> > number?
>>
>> He was using Google Voice.
>>
>
> Moreover the vast bulk of the USA's phone traffic outside the local
> central office
> service area is VoIP over fiber. Long-distance traffic as well.
>

Of course the same is true of your cellular voice traffic. Once it transits
your nearby cellphone tower
it travels on "someone's" fiber.


>
>
>> John Hasler
>> j...@sugarbit.com
>> Elmwood, WI USA
>>
>>

Re: Identity Theft

[Nicholas Geovanis]

On Mon, Dec 20, 2021 at 12:31 PM John Hasler  wrote:

> Jeremy Nicoll writes:
> > How would Google intercept a financial institution's valid phone
> > number?
>
> He was using Google Voice.
>

Moreover the vast bulk of the USA's phone traffic outside the local central
office
service area is VoIP over fiber. Long-distance traffic as well.


> John Hasler
> j...@sugarbit.com
> Elmwood, WI USA
>
>

[Résolu] Re: Problème NIS

[BERTRAND Joël]

Bon... Problème résolu.

J'ai modifié le fichier nsswitch.conf comme ceci :

hilbert:[~] > cat /etc/nsswitch.conf
# /etc/nsswitch.conf
#
# Example configuration of GNU Name Service Switch functionality.
# If you have the `glibc-doc-reference' and `info' packages installed, try:
# `info libc "Name Service Switch"' for information about this file.

passwd: compat nis
group:  compat nis
shadow: compat nis
gshadow:files

hosts:  files mdns4_minimal [NOTFOUND=return] dns
networks:   files

protocols:  db files
services:   db files
ethers: db files
rpc:db files

netgroup:   nis

Notez bien le _rajout_ du paramètre nis sur passwd, group et shadow.
J'ai bien vérifié dans la doc, il n'y a aucune raison (d'ailleurs cette
doc n'est plus à jour du tout). Ça fonctionnait sans cela depuis un NIS
installé avec un NetBSD 4.0, ça ne nous rajeunit pas.

Je vais râler mais vous me connaissez depuis le temps. Je sais que
j'utilise une testing, mais les développeurs de Debian qui font un sacré
boulot ne peuvent être tenus responsables de ce genre de bug. Toutes les
distributions utilisant cette libc seront impactées. Une fois de plus,
la libc est poussée sans être sèche sur des fonctions pourtant
fondamentales. Là, c'était un poste local, j'avais la main sur la
console. Mais sur un serveur distant accessible qu'en ssh, sans compte
local, comment fait-on ? Ce genre de modification silencieuse du
comportement de la libc est intolérable parce que ça peut planter des
tas de machines.

Bon, je vais allez prendre une camomille. Bonnes fêtes de fin d'année à
tous,

JKB

Re: Identity Theft

[John Hasler]

Jeremy Nicoll writes:
> How would Google intercept a financial institution's valid phone
> number?

He was using Google Voice.
-- 
John Hasler 
j...@sugarbit.com
Elmwood, WI USA

Debian bookworm mate-panel segfault.

[GARZIANO Anthony]

Bonjour à tous !!
Je rencontre des problèmes avec mate-panel sur une machine debian bookworm.
Lorsque je tente de loger ma session mate le menu ne s’affiche pas avec 
l’environnement de mate et l’affichage est instable.
Dans les logs fichier messages je touve cette référence :
mate-panel: segfault …..
Au momoent de la tentative d’ouverture de session.
J’ai tenté la désinstallation/réinstallation des paquets mais rien y a fait.
Quelqu’un a-t’il une idée ?
Merci d’avance.
Anthony.

Re: Identity Theft

[Jeremy Nicoll]

On Mon, 20 Dec 2021, at 16:12, John Hasler wrote:
> Did you notify Google?  Seems likely that's where the hole is.

How would Google intercept a financial institution's valid phone
number?

-- 
Jeremy Nicoll - my opinions are my own.

Problème NIS

[BERTRAND Joël]

Bonjour à tous,

	J'ai une station de travail qui est en Debian/Bookworm et qui 
fonctionnait correctement jusqu'à une mise à jour récente (apportée par 
unattented upgrade) et je n'arrive pas à trouver ce qui coince.


Configuration :
- serveur NIS/NFS tournant sous NetBSD 9.2 (rien de changé de ce 
côté-là). Les tables NIS sont exportées correctement et sur la machine 
fautive, un ypcat passwd par exemple renvoie quelque chose.

- poste FreeBSD
- postes Linux (un debian stable et plusieurs debian/testing).

	Lors de la mise en place de la configuration, j'ai galéré parce que 
tout ce beau monde ne cause pas la même langue ni le même format. J'ai 
donc côté NetBSD un Makefile spécifique pour générer les fichiers à la 
bonne syntaxe pour Linux, NetBSD et FreeBSD. J'ai aussi forcé le 
chiffrement des mots de passe à old pour les entrées yp.


	Lorsque je fais un ypcat passwd sur le poste fautif (et les autres 
d'ailleurs), j'obtiens:


bertrand:iuzeyizruyeri:1002:1002:...

Bref, cela semble bien chiffré avec crypt.

	Sur le poste FreeBSD, ça fonctionne sans problème. Sur le poste Debian 
11 aussi. Mais pas sur testing où un su par exemple me retourne :


su: user bertrand does not exist or the entry does not contain all the 
required fields


	Naturellement, j'ai testé avec plusieurs identifiants. Le résultat est 
toujours le même.


	J'ai vu que les fichiers /etc/pam.d/auth* avaient été mis à jour 
récemment, mais je ne comprends pas le rapport (et surtout, je ne vois 
pas trop quelle est la différence entre ceux de la machine sous debian 
11 et celle sous testing). Dernière chose, toutes ces machines sont 
diskless, mais apparmor ne semble pas se plaindre.


	Je prends toute idée parce que je ne vois vraiment pas d'où vient le 
problème...


Bien cordialement,

JKB

Re: Identity Theft

[John Hasler]

Did you notify Google?  Seems likely that's where the hole is.
-- 
John Hasler 
j...@sugarbit.com
Elmwood, WI USA

keyboard setup

[mick crane]

Operating System: Debian GNU/Linux 11 (bullseye)
Kernel: Linux 5.10.0-10-amd64
Architecture: x86-64

I'm still having trouble with random lines from elsewhere in the file 
I'm editing getting plonked a hundred or so lines away.

Which is a pain as it can take a while to locate them.
Want to use the console Ctrl+Alt+Fx for a bit and see if it's something 
to do with X
Trouble is I can't get the console keyboard keys to do the same thing as 
in Xfce.
I read that the keyboard map is supposed to be shared between console 
and X but not here.

I try various things.
"dpkg-reconfigure console-setup"
"dpkg-reconfigure console-data"
"dpkg-reconfigure keyboard-setup"
"service keyboard-setup restart"
reboot the PC
nothing seems to work.
this particular keyboard is small generic USB thing which works with 
Microsoft Office keyboard layout.
but in console some keys are not what is on the key. eg "#" is UK Pound 
sign.

"dpkg-reconfigure keyboard-setup" does have that layout as a selection.
Is there something I need to do after selecting to get it to work ?

mick
--
Key ID4BFEBB31

Re: Firefox ESR EOL

[John Hasler]

Stefan writes:
> Something like the MochaBin, but a bit cheaper?

I have an ESPRESSObin board from that outfit up in the shop somewhere.
It never worked right due to a defect in the voltage regulator chain.
The published schematics for it are wrong, and all my attempts to get
support were ignored.  I'm not sure I want to deal with that outfit
again.
-- 
John Hasler 
j...@sugarbit.com
Elmwood, WI USA

Re: Identity Theft

[Nicholas Geovanis]

On Mon, Dec 20, 2021 at 9:33 AM  wrote:

> My identity has been stolen, and although it has nothing to do with
> Debian,
> Linux, or computing (well, in general). I thought it would be educational
> /
> important to notify everyone I can of what happened.
>
> 
> This is part of what prompted my report to the FBI -- they don't promise
> to do
> anything about it, but the implication / inference I get is that they will
> not
> delete the report.  (And they will look at the report and consider taking
> action of some sort, iiuc.)
>

The FBI is not necessarily bound by statute-of-limitation issues as state
prosecutors are.
In Chicago, the FBI lured and shot John Dillinger behind the Biograph
Theater. The seat that
the Lady In Red sat in was refinished in red velvet. And nearly 40 years
later they helped assassinate
the Black Panther leaders Fred Hampton and Mark Clark.

Very sorry about what happened, it's always a concern.

Re: Firefox ESR EOL

[Nicholas Geovanis]

On Mon, Dec 20, 2021 at 4:00 AM Jeremy Ardley  wrote:

>
> On 20/12/21 5:52 pm, Curt wrote:
> > On 2021-12-18, Anssi Saari  wrote:
> >> Nicholas Geovanis  writes:
> >>
> >>> Maybe I missed something. Why RISC V?
> >> Just having an alternative is attractive to some. Having an open
> >> alternative even more so.
> >>
> >> I'd happily run ARM or RISC-V, if those were an alternative for a decent
> >> desktop or laptop computer. Raspberry Pi is scratching and clawing its
> >> way there little by little. As the Pi 4 has exposed a PCIe connection,
> >> it has a viable storage now for a small system. But still slow and weird
> >> form factor. Maybe in Pi 6 or maybe 10? Who knows.
> > The 3.14159265359 is still popular.
> >
> >> RISC-V is better in the form factor part as there's a standard Mini-ITX
> >> board but the price and performance aren't there yet. Not to mention
> >> software support. I'd want an official Debian release first.
> >>
> >>
> >>
> There are a few ARM SBC that are very powerful - better than Pi 4. They
> have NVME/PCiE disk interfaces and several USB 3.0 interfaces.
>

For myself I've always been an Arduino fan over others. And I worked for
British-owned
Premier-Farnell's American property which distributes RPi's here, Newark
Element14 :-)
Helped move their datacenter :-)
Arduino's are mostly ARM-based and models like the Mega are incredibly
powerful and cheap.
Full OS's run on more advanced models, or just Arduino's open-source
runtime. Program in
their C++ environment, python, Java Hundreds of snap-on sensor boards
are available.
Italian-made models are on-the-shelf at certain retailers that serve the
maker-community.

I have next to me a prototype synthpad based on an Arduino Uno. 5 years ago
up at Michigan Tech
University, I saw a self-guided submarine drone that had both a Pi and
Arduino on-board. Exploring
in the university's swimming pool.

The NanoPi M4V2 is one such, but there are several competitors mostly
> using RockChip chipsets.
>
> They run Armbian and usually have integrated gigabit LAN (2.5 Gigabit
> with the right drivers) and dual band wifi and bluetooth.
>
> As a workstation they are more than adequate. As a home server they are
> more than adequate.
>
> --
> Jeremy
>
>

Identity Theft

[rhkramer]

My identity has been stolen, and although it has nothing to do with Debian, 
Linux, or computing (well, in general). I thought it would be educational / 
important to notify everyone I can of what happened.

I did not believe it could happen, but I have convinced myself and have 
reasonable proof of what happened.

My description starts off talking about using a computer, but that has little 
or nothing to do with what happened.

I was on my computer, logged into a financial website, on which I could view 
things like my account number, current balance, and such.

I needed some help, so I looked for a help number on that page.  I found one 
and called it, and got a scammer (although I didn't realize it until too much 
later).

He said he was from the financial website I was dealing with, and asked me to 
"verify" my information before he could answer my questions (or connect me to 
someone else to do that).  On that pretext, he asked (and I answered) a lot of 
questions about my identity -- more than I should have, including things, like 
my mailing address, DOB, SSN (iirc), and, among other things, a credit card 
number and such.  

(Things like my full SSN (instead of just the last 4 digits), a credit card, 
and maybe DOB should have been red flags.  I feel very stupid.)

To get the help I needed he directed me to make another call which was 
furtherance to the scam, he wanted me to say yes to the questions asked on 
that 2nd call in order to place an order for some service (with an initial fee 
and then a monthly fee, probably forever).

Once I realized and was quite certain that I had talked to a scammer, I called 
the same number (on which I got the scammer) again, and this time I got a bona 
fide representative of the financial company (verified by me after some 
extensive 
conversation).  

Once I was sure I was scammed, I hung up to try to deal with any mitigation of 
the problem that I could do.

Later in the day, I called the same number again, and again got a bona fide 
representative of the financial company during which we did things like lock 
the account.

In between those last two calls, I started calling other companies and such 
(e.g., the company that issued the credit card) to take steps to continue to 
mitigate the problem.  

The credit card company did have a charge on record that was not made by me 
(at least not intentionally) -- they deleted that charge, cancelled the credit 
card, arranged to issue a new one, etc.

Here are some of the "kickers":

   * At first I thought maybe I had misdialed the number the first time, but my 
calls are made over VOIP with Google Voice as the "provider" -- Google Voice 
logs my calls (time, duration, number called or calling) and the log confirmed 
that I dialed the same number all three times.

   * After this happened, I googled for more information, eventually googling 
on the key words "telephone intercept" which did lead to some somewhat useful 
information (some was about legal entities who can be allowed to intercept 
phone calls (e.g., a wiretap)).  The information I found indicated that what 
happened to me is a known thing for cellphones, but I could find nothing to 
indicate that it was a known thing for VOIP calls (nor for landlines).

So, beware.

Note: The only problem that has occurred so far is a fairly small fraudulent 
charge on my credit card, but my information is "out there" so who knows what 
may happen in the future.

I've done (or am in the process of doing) what I think are all the right 
things as far as protecting myself, including things like:

   *  making a report to my local police department and getting an incident 
number (they do not have the capabilities to investigate such a thing, but 
some, maybe all entities like insurance companies insist on having such a 
report in case of doing things like filing a claim

   * reporting it to all the credit rating agencies and freezing my accounts / 
reports (at first, they just put a warning in your credit report, I later found 
that I could freeze the report so no one could even access it -- I can 
unfreeze the freeze if I need to allow some financial institution access to it 
for some reason (and then refreeze it).  (Aside: iirc, one agency will 
maintain the freeze for 7 years, another one does it for 99 years, I will have 
to put a reminder on my calendar to remember to renew at that time ;-)  As a 
more serious aside, at the time I was aware of only 3 credit rating agencies, 
I've since become aware of at least two more which I will investitate and if 
the seem legitimate, I will freeze the reports there as well.)

   * I signed up with one of the companies like LIfeLock (actually, I chose 
Aura), who among other things will monitor the dark web for activity related 
to me.  I have since found that my bank offers a free service to do the same 
thing, so I will be signing up with them.

   * I am changing (and mostly have changed) the username and password on all 

Re: 8 -> 9 update changing things

[Roy J. Tellason, Sr.]

On Sunday 19 December 2021 05:48:12 pm Dan Ritter wrote:
> Roy J. Tellason, Sr. wrote: 
> > On Sunday 19 December 2021 03:18:46 am Andrei POPESCU wrote:
> > > On Sb, 18 dec 21, 11:24:34, Roy J. Tellason, Sr. wrote:
> > > > 
> > > > There remains the sound issue in the virtualbox.  Could it be that 
> > > > Debian isn't running PulseAudio but something else?  That would 
> > > > account for the guest OS not being able to talk to it...
> > > 
> > > As far as I'm aware there is no default sound server in Debian, it's 
> > > whatever the corresponding Desktop Environment depends on. Usually this 
> > > is PulseAudio, but it seems PipeWire is becoming more popular.
> > 
> > Well,  sound on the Debian side of things works,  as in playing youtube 
> > videos and such.  It doesn't work in the Slackware virtualbox,  which is 
> > apparently trying to connect to Pulseaudio.  Going through the Xfce 
> > application menus just now I see very little that would tell me what it is 
> > that's actually running here,  so I figure I probably need to typs 
> > something on the command line in a terminal,  but I don't know what.
> > 
> > One thing that shows up in the Xfce application menu under multimedia is 
> > "Pulseaudio Volume Control".  When I invoke this  a small window pops up,  
> > with the text "Establishing connection to Pulseaudio.  Please wait" and 
> > then nothing happens,  even if I let it sit there for quite a while.
> > 
> > Suggestions as to where I might look for the problem?
> 
> In general, that message means that even if there is a copy of
> the pulseaudio daemon running, it is not running with the right
> userid and the X11 session you are running in doesn't know about
> it.
> 
> Run "pulseaudio --start" and try again.

That did get the volume control as invoked from the Xfce applications menu 
working,  all right.  Looking in the process table that I see under KDE System 
Monitor (what I usually use to keep track of system loading) I now see 
pulseaudio in there twice.  One shows the command you mention here,  and the 
other one doesn't,  and says "daemonize=no".  I'm guessing that's the problem,  
where to fix it is another question.  Mousing over it I also see 
"parent=systemd" for both of them...

Looking at "man systemd",  nothing jumps out at me with regard to where I want 
to go from here.


-- 
Member of the toughest, meanest, deadliest, most unrelenting -- and
ablest -- form of life in this section of space,  a critter that can
be killed but can't be tamed.  --Robert A. Heinlein, "The Puppet Masters"
-
Information is more dangerous than cannon to a society ruled by lies. --James 
M Dakin

Re: osinfo-query os missing debian Bullseye

[David]

On Tue, 21 Dec 2021 at 00:44, john doe  wrote:
> On 12/20/2021 12:44 AM, David wrote:
> > On Mon, 20 Dec 2021 at 04:36, Dan Ritter  wrote:
> >> john doe wrote:

> > I just use '--os-variant debiantesting' until someone
> > gives better advice.

> According to (1), the better advice would be to use 'debian10'!!! :)
> 1)
> https://listman.redhat.com/archives/libvirt-users/2021-December/msg00057.html

Thanks for the update, but I don't see any suggestion of "better"
in that discussion.

Your question there does not even mention that 'debiantesting'
is a possible option, so it may not have been considered by
your respondent. It appears to me that they've simply told you
that it's ok to use what you said was available, without any
suggestion of it being "better" than something which was
never mentioned.

I suspect none of this is particularly important anyway.
It has been like this for some years, with the stable Debian
release not appearing in the libosinfo that it contains,
and it does not seem to cause any problems that I've noticed.
And it seems likely that 'debiantesting' will reliably point to
the next release. But what it actually does and whether
it matters I have no idea.

Re: Salida audio en mini PC

[Leonardo Marín]

El lun, 20 dic 2021 a las 8:05, Josu Lazkano ()
escribió:

> Gracias a los dos,
>
> ¡Ya lo tengo funcionando! He copiado los ficheros de esta web [
> http://davidegironi.blogspot.com/2019/10/linux-mint-on-z83-f-intel-atom-x5-z8350.html]
> y ajustado los volumenes con alsamixer.
>
> Ya no casca el speaker-test y tengo sonido.
>
> Muchísimas gracias por vuestra ayuda.
>
Que bueno te sirvió y se pudo resolver, saludos.


>
> Un saludo.
>
> --
> Josu Lazkano
>


-- 
L.J.Marín
Usando: Debian Testing

Re: osinfo-query os missing debian Bullseye

[john doe]

On 12/20/2021 12:44 AM, David wrote:

On Mon, 20 Dec 2021 at 04:36, Dan Ritter  wrote:

john doe wrote:



As far as I can tell, the command 'osinfo-query os' does not
support/list 'debian11'.



I need to fire up a Bullseye VM what is the best way forward?



What does osinfo-query have to do with installing a VM?


I expect it will be something like seen here:
   https://wiki.debian.org/KVM?highlight=%28os-variant%29

'virt-install' takes an '--os-variant' argument. The known
values of that argument are queried by an 'osinfo-query'
command.

$ osinfo-query os | awk -e '/debian/ {print $1}'
debian1.1
debian1.2
debian1.3
debian10
debian2.0
debian2.1
debian2.2
debian3
debian3.1
debian4
debian5
debian6
debian7
debian8
debian9
debiantesting

$ cat /etc/debian_version
11.2

$ dpkg -S osinfo-query
libosinfo-bin: /usr/bin/osinfo-query
libosinfo-bin: /usr/share/man/man1/osinfo-query.1.gz

$ apt list --installed libosinfo-bin
Listing... Done
libosinfo-bin/stable,now 1.8.0-1 amd64 [installed]

I just use '--os-variant debiantesting' until someone
gives better advice.



According to (1), the better advice would be to use 'debian10'!!! :)

In short, the issue has been fixed upstream and will make it's way in
the Debian package in the next little while.

1)
https://listman.redhat.com/archives/libvirt-users/2021-December/msg00057.html

--
John Doe

[HS] Re: Sacnner HP laserjet Pro MPF M28-M31a

[bm]

Bonjour,

Ce Michel, auteur du message en cette réponse, m'a fait découvrir 
GNU/Linux le 4 Décembre 1999, j'ai vérifié,c'était un Samedi, à l'heure 
de l'apéro. J'avais bu 2 "ricard", à cette occasion.


J'étais curieux car j'avais professionnellement des serveurs NT 3.51 (je 
ne suis pas sur de la version, mais ce n'était pas NT4 qui devait 
marcher beaucoup mieux) qui plantaient, surtout la nuit.


Je lui avais fourni, en échange, un compilateur de dbase, Clipper, avec 
une licence discutable. Il y a prescription.


Du coup, je sais à qui m'adresser car je vais acheter HP Laserjet 
MFPM28-M31a.


Bonne aprem et bonne fin d'année à touTEs.



Le 20/12/2021 à 09:06, Michel a écrit :

Bonjour,

Je reposte car il semble que mon message précédent ait disparu.

J'ai bataillé pour tenter de refaire fonctionner le scanner de cet HP
M28-M31a sous Bullseye alors qu'il fonctionnait parfaitement sous
Buster, j'en avais parlé ici même il y a quelques temps.

J'avais un peu laissé tomber, puis, un jour ça refait surface et on
cherche à nouveau une solution.

J'ai juste installé sane-airscan et je sélectionne le périphérique eSCL
HP Laserjet MFP ip=127.0.0.1 dans la liste proposée ( et nom plus le
hpaio ), et tout fonctionne impeccable ( testé plusieurs fois depuis
xsane et hp-scan ).

En espérant que ça puisse aider quelqu'un...

Bonne fin d'année à tous.

Re: Firefox ESR EOL

[gene heskett]

On Monday, December 20, 2021 5:00:07 AM EST Jeremy Ardley wrote:
> On 20/12/21 5:52 pm, Curt wrote:
> > On 2021-12-18, Anssi Saari  wrote:
> >> Nicholas Geovanis  writes:
> >>> Maybe I missed something. Why RISC V?
> >> 
> >> Just having an alternative is attractive to some. Having an open
> >> alternative even more so.
> >> 
> >> I'd happily run ARM or RISC-V, if those were an alternative for a decent
> >> desktop or laptop computer. Raspberry Pi is scratching and clawing its
> >> way there little by little. As the Pi 4 has exposed a PCIe connection,
> >> it has a viable storage now for a small system. But still slow and weird
> >> form factor. Maybe in Pi 6 or maybe 10? Who knows.
> > 
> > The 3.14159265359 is still popular.
> > 
> >> RISC-V is better in the form factor part as there's a standard Mini-ITX
> >> board but the price and performance aren't there yet. Not to mention
> >> software support. I'd want an official Debian release first.
> 
> There are a few ARM SBC that are very powerful - better than Pi 4. They
> have NVME/PCiE disk interfaces and several USB 3.0 interfaces.
> 
> The NanoPi M4V2 is one such, but there are several competitors mostly
> using RockChip chipsets.
> 
> They run Armbian and usually have integrated gigabit LAN (2.5 Gigabit
> with the right drivers) and dual band wifi and bluetooth.

Armbian on a rock64, an older version of the rockchip. is in fact much faster 
than a pi4. If the interfaceing for linuxcnc was there it would be more than 
capable of freezing out the pi. Unforch there is zero interest on the part of 
armbian for realtime kernels, so you're on your own building one. That could 
be done, I've done it for the pi3-4's. But this section of the market seems to 
think their future is in multimedia, and has zero interest in machine control. 
For going outside the Foundations fence, I am blacklisted on the raspian pi 
forum.

As a home cnc machine builder, that attitude is killing the market these 
devices could own if they wanted to.  So I have one machine run by a pi, 
drawing perhaps 25 watts with the lcd monitor. The other 4 are running on old 
Dells, drawing 250 watts with monitors. Its the build cost that restricts the 
pi's, over $200 to interface to a machine, The Dells are famously lacking in 
real i/o, but a usable machine can be built for $65 in interfacing.

The first arm board builder to give us two pcie slots or two net ports. or 
even 2 parports WILL OWN this market if the MSRP is under $100 with 2 gigs of 
ram. Ideal would be one pci-e, and one net port. SSD's can be put on the pi4's 
on either or both, usb-3 ports.

> As a workstation they are more than adequate. As a home server they are
> more than adequate.

Absolutely.

Take care and stay well all.

Cheers, Gene Heskett.
-- 
"There are four boxes to be used in defense of liberty:
 soap, ballot, jury, and ammo. Please use in that order."
-Ed Howdershelt (Author, 1940)
If we desire respect for the law, we must first make the law respectable.
 - Louis D. Brandeis
Genes Web page 

Re: Salida audio en mini PC

[Josu Lazkano]

Gracias a los dos,

¡Ya lo tengo funcionando! He copiado los ficheros de esta web [
http://davidegironi.blogspot.com/2019/10/linux-mint-on-z83-f-intel-atom-x5-z8350.html]
y ajustado los volumenes con alsamixer.

Ya no casca el speaker-test y tengo sonido.

Muchísimas gracias por vuestra ayuda.

Un saludo.

-- 
Josu Lazkano

Re: Firefox ESR EOL

[Jeremy Ardley]

On 20/12/21 5:52 pm, Curt wrote:

On 2021-12-18, Anssi Saari  wrote:

Nicholas Geovanis  writes:


Maybe I missed something. Why RISC V?

Just having an alternative is attractive to some. Having an open
alternative even more so.

I'd happily run ARM or RISC-V, if those were an alternative for a decent
desktop or laptop computer. Raspberry Pi is scratching and clawing its
way there little by little. As the Pi 4 has exposed a PCIe connection,
it has a viable storage now for a small system. But still slow and weird
form factor. Maybe in Pi 6 or maybe 10? Who knows.

The 3.14159265359 is still popular.


RISC-V is better in the form factor part as there's a standard Mini-ITX
board but the price and performance aren't there yet. Not to mention
software support. I'd want an official Debian release first.



There are a few ARM SBC that are very powerful - better than Pi 4. They 
have NVME/PCiE disk interfaces and several USB 3.0 interfaces.


The NanoPi M4V2 is one such, but there are several competitors mostly 
using RockChip chipsets.


They run Armbian and usually have integrated gigabit LAN (2.5 Gigabit 
with the right drivers) and dual band wifi and bluetooth.


As a workstation they are more than adequate. As a home server they are 
more than adequate.


--
Jeremy



OpenPGP_signature
Description: OpenPGP digital signature

Re: Firefox ESR EOL

[Curt]

On 2021-12-18, Anssi Saari  wrote:
> Nicholas Geovanis  writes:
>
>> Maybe I missed something. Why RISC V?
>
> Just having an alternative is attractive to some. Having an open
> alternative even more so.
>
> I'd happily run ARM or RISC-V, if those were an alternative for a decent
> desktop or laptop computer. Raspberry Pi is scratching and clawing its
> way there little by little. As the Pi 4 has exposed a PCIe connection,
> it has a viable storage now for a small system. But still slow and weird
> form factor. Maybe in Pi 6 or maybe 10? Who knows.

The 3.14159265359 is still popular.

> RISC-V is better in the form factor part as there's a standard Mini-ITX
> board but the price and performance aren't there yet. Not to mention
> software support. I'd want an official Debian release first.
>
>
>


-- 

Thinkpad acpi_call not working on Debian Sid

[Apurv J]

Hi,

I've been trying use certain features offered by tlp (like discharging 
and re-calibration) but getting an error. Did a little digging and found 
out some clues as to what's going on.


output of "tlp-stat -b":
> tpacpi-bat (acpi_call)  = inactive (kernel error)

searching in the logs using journalctl I got:
> acpi_call: loading out-of-tree module taints kernel.
> 440 kernel: acpi_call: module verification failed: signature and/or 
required key missing - tainting kernel


I'm using a Thinkpad T440, secureboot disabled. Kernel: /5.15.0-2-amd64./

Is this a bug?
//

Regards,
Apurv

Re: Risc-V [OT: Firefox ESR EOL]

[tomas]

On Sun, Dec 19, 2021 at 01:44:35PM -0500, Polyna-Maude Racicot-Summerside wrote:

[...]

> Would you have some suggestion if I'd like to try out a Risc-V board ?

Feeding your fave search engine with, e.g. single board computer +"Risc-V"
yields some hits. A couple of examples:

  
https://liliputing.com/2021/05/nezha-is-a-99-single-board-pc-with-a-risc-v-processor.html
  
https://www.cnx-software.com/2021/04/13/allwinner-d1-linux-risc-v-sbc-processor/
  
https://marketresearchtelecast.com/tried-risc-v-single-board-computer-rvboards-nezha-with-debian-linux/98055/
  
https://www.reddit.com/r/RISCV/comments/kwgcx2/beaglev_the_first_affordable_riscv_computer/

Don't expect laptop-like or desktop-like performance yet -- rather
embedded-like performance. Those things haven't got the economy of scale
to justify vast caching architectures and other luxuries. That would
make them unaffordable. But things might change...

Cheers
-- 
tomás


signature.asc
Description: PGP signature

Sacnner HP laserjet Pro MPF M28-M31a

[Michel]

Bonjour,

Je reposte car il semble que mon message précédent ait disparu.

J'ai bataillé pour tenter de refaire fonctionner le scanner de cet HP
M28-M31a sous Bullseye alors qu'il fonctionnait parfaitement sous
Buster, j'en avais parlé ici même il y a quelques temps.

J'avais un peu laissé tomber, puis, un jour ça refait surface et on
cherche à nouveau une solution.

J'ai juste installé sane-airscan et je sélectionne le périphérique eSCL
HP Laserjet MFP ip=127.0.0.1 dans la liste proposée ( et nom plus le
hpaio ), et tout fonctionne impeccable ( testé plusieurs fois depuis
xsane et hp-scan ).

En espérant que ça puisse aider quelqu'un...

Bonne fin d'année à tous.