Re: [gentoo-user] Overriding environment variables per package
On Thu, Jan 15, 2015 at 7:38 PM, Neil Bothwick n...@digimed.co.uk wrote: On Thu, 15 Jan 2015 16:36:08 +0200, Alexander Kapshuk wrote: (3). cat package.env app-cdr/xfburn debug.conf (5). FEATURES=nostrip emerge -av xfburn I've had to define FEATURES on the command line as shown in (5), for nostrip to apply. For some reason, enabling the setting in /etc/portage/env/debug.conf did not seem to work for me. That should be % cat package.env app-cdr/xfburn debug.conf % cat env/debug.conf FEATURES=nostrip -- Neil Bothwick Nixon's Principal: If 2 wrongs don't make a right, try 3. I see where I went wrong. package.env goes into /etc/portage, not in /etc/portage/env. Thanks for pointing that out. Thanks to all those who have replied.
Re: [gentoo-user] Overriding environment variables per package
On Thu, 15 Jan 2015 16:36:08 +0200, Alexander Kapshuk wrote: (3). cat package.env app-cdr/xfburn debug.conf (5). FEATURES=nostrip emerge -av xfburn I've had to define FEATURES on the command line as shown in (5), for nostrip to apply. For some reason, enabling the setting in /etc/portage/env/debug.conf did not seem to work for me. That should be % cat package.env app-cdr/xfburn debug.conf % cat env/debug.conf FEATURES=nostrip -- Neil Bothwick Nixon's Principal: If 2 wrongs don't make a right, try 3. pgpCAYfJdKZYE.pgp Description: OpenPGP digital signature
Re: [gentoo-user] Overriding environment variables per package
Le 15/01/15 à 16:36, Alexander Kapshuk a tapoté : CXXFALGS=${CFLAGS} typo. I've had to define FEATURES on the command line as shown in (5), for nostrip to apply. For some reason, enabling the setting in /etc/portage/env/debug.conf did not seem to work for me. Where did I go wrong there? package.env file should not be in env/ directory. It should be in portage/ directory.
Re: [gentoo-user] Two things about portage
Secondly, today's sync fetched thirty thousand files, nearly all in metadata, yet nothing needed upgrading. Is this caused by careless editing? I've noticed before that sed /g alters the time stamp of all files it looks in, regardless of whether it changes anything. Most likely an eclass used by many packages was changed. That leads to metadata regeneration for all these packages. This is a good candidate: 14 Jan 2015; Michał Górny mgo...@gentoo.org eutils.eclass: prune_libtool_files: properly reset variables for following loop iterations. -- Andreas K. Huettel Gentoo Linux developer kde, council
Re: [gentoo-user] virtual/notification-daemon circular dependency?
On 15/01/2015 11:10, Raffaele BELARDI wrote: Alan McKinnon wrote: On 14/01/2015 15:39, Raffaele BELARDI wrote: # equery d virtual/notification-daemon-0 * These packages depend on virtual/notification-daemon-0: x11-libs/libnotify-0.7.6-r1 (virtual/notification-daemon) # equery d x11-libs/libnotify * These packages depend on x11-libs/libnotify: media-sound/ario-1.5.1 (libnotify ? x11-libs/libnotify) x11-misc/notification-daemon-3.14.1 (=x11-libs/libnotify-0.7) # equery d x11-misc/notification-daemon * These packages depend on x11-misc/notification-daemon: virtual/notification-daemon-0 (gnome ? x11-misc/notification-daemon) (!gnome ? x11-misc/notification-daemon) So it seems virtual/notification-daemon-0 is pulled in by x11-misc/notification-daemon, which is pulled in by virtual/notification-daemon-0. Where is my misunderstanding? thanks, raffaele Are you sure your second command above is correct? I get different results: khamul ~ # equery d virtual/notification-daemon-0 * These packages depend on virtual/notification-daemon-0: x11-libs/libnotify-0.7.6-r1 (virtual/notification-daemon) khamul ~ # equery d x11-libs/libnotify * These packages depend on x11-libs/libnotify: app-admin/system-config-printer-gnome-1.4.3-r1 (x11-libs/libnotify[introspection]) app-emulation/emul-linux-x86-gtklibs-20140508-r6 (abi_x86_32 ? =x11-libs/libnotify-0.7.6-r1[abi_x86_32(-)]) media-video/handbrake-0.9.9-r1 (gtk ? x11-libs/libnotify) media-video/vlc-2.1.5 (libnotify ? x11-libs/libnotify:0) www-client/midori-0.5.8-r1 (=x11-libs/libnotify-0.7) khamul ~ # equery d x11-misc/notification-daemon * These packages depend on x11-misc/notification-daemon: virtual/notification-daemon-0 (gnome ? x11-misc/notification-daemon) (!gnome ? x11-misc/notification-daemon) Yes: # grep libnotify /usr/portage/x11-misc/notification-daemon/notification-daemon-3.14.1.ebuild =x11-libs/libnotify-0.7 The problem seems to me in the x11-libs/libnotify-0.7.6-r1 ebuild, why should a library depend on the application that uses it? # grep notification-daemon /usr/portage/x11-libs/libnotify/libnotify-0.7.6-r1.ebuild PDEPEND=virtual/notification-daemon raffaele Some interesting background on how this all works: https://bugs.gentoo.org/show_bug.cgi?id=488690 It's not *really* a circular dep, as there are many things out there that satisfy the virtual, x11-misc/notification-daemon is quite likely the one used least -- Alan McKinnon alan.mckin...@gmail.com
Re: [gentoo-user] pdf viewer
Walter Dnes waltd...@waltdnes.org writes: On Sun, Jan 11, 2015 at 01:21:19PM +0100, lee wrote Walter Dnes waltd...@waltdnes.org writes: Assuming you've already got Content Type PDF file in the list, click on the icon beside emacsclient in the Action column. This opens a dropdown menu. Click on Use other... and navigate to /usr/bin/mupdf in the file menu. That's what I thought and tried. I don't want to use it as default action, though, because I sometimes save PDFs. Two options... 1) In the Action column you can select Always ask, and it'll always ask what you want to do. I find that to be a pain. What I want is to have llpp as the default program to show PDFs and be asked what I want to do, i. e. either shave or display it with the default program. Currently, I'm being asked what I want to do, and if I don't want to save the PDF but display it, I have to pick the program with which to display it. 2) mupdf does not render straight from memory. First it saves the pdf file to /tmp/ and renders it from there. I believe the linux default is to always clean up /tmp/ at every reboot (but not during restore from hibernation). While mupdf doesn't have a Save as option, you can copy/move the file from /tmp/ manually, giving you the same effect as a Save as. Yes, I noticed that llpp (or mupdf) is buggy in that it doesn't clean up after itself. That's enough reason for me to want something better. It's really bad behaviour to leave temporary files around and can even be a privacy issue. It's a hazard for the whole system because the /tmp partition might fill up, and when it's not a separate partition, the system may go down because the disk is full, or you'll see other issues because the /tmp partition is full. Having to try to figure out which file name might have been used to be able to switch to the shell to copy that file to where I want it would be a pita. -- Again we must be afraid of speaking of daemons for fear that daemons might swallow us. Finally, this fear has become reasonable.
Re: [gentoo-user] fail2ban: You have to create an init script for each container ...
Rich Freeman ri...@gentoo.org writes: On Sun, Jan 11, 2015 at 1:47 PM, lee l...@yagibdah.de wrote: Same here, so why does fail2ban get involved with containers? Seems like there are three options here. 1. Run fail2ban on the host and have it look into the containers, monitor their logs, and add host iptables rules to block connections. That's what I'm trying. 2. Run fail2ban in each container and have it monitor its own logs, and then add host iptables rules to block connections. Containers must not be able to change the firewalling rules of the host. If they can do such things, what's the point of having containers? 3. Run fail2ban in each container and have each container in its own network namespace. Fail2ban can then add container iptables rules to block connections. That would waste resources. I actually gave up on fail2ban after a bunch of issues. The only place I get brute force attacks right now is ssh, and I'm using the Google authenticator plugin. I just ignore the thousands of failed ssh authentication attempts... Hm, it's not working at all? It doesn't seem to do anything here ... -- Again we must be afraid of speaking of daemons for fear that daemons might swallow us. Finally, this fear has become reasonable.
Re: [gentoo-user] fail2ban: You have to create an init script for each container ...
On Thu, Jan 15, 2015 at 3:32 PM, lee l...@yagibdah.de wrote: Rich Freeman ri...@gentoo.org writes: 2. Run fail2ban in each container and have it monitor its own logs, and then add host iptables rules to block connections. Containers must not be able to change the firewalling rules of the host. If they can do such things, what's the point of having containers? A container on linux is really a set of kernel namespaces. There are six different namespaces in linux and a process can share any or none of them with the host. In this case the network namespace determines whether a process can see the host interfaces. There may also be capabilities that control what the process can do with those interfaces (I'd have to read up on that). A container may or may not have a separate network namespace. If it does most likely you're going to have to set up a bridged interface, DHCP/NAT, etc for the container. So, you can have it either way, which is why I offered three options. There are pros and cons to each. But, yes, if you do share the host interface then the amount of interaction is higher than if you don't. And, keep in mind that a container is not as compartmentalized as a VM in any case. 3. Run fail2ban in each container and have each container in its own network namespace. Fail2ban can then add container iptables rules to block connections. That would waste resources. Depends on how you run it, but yes, you might have multiple instances of fail2ban running this way consuming additional RAM. If you were really clever with your container setup they could share the same binary and shared libraries, which means they'd share the same RAM. However, it seems like nobody bothers running containers this way (obviously way more work coordinating them). I doubt it would take more CPU - 1 process scanning 5 logs probably doesn't use more CPU than 5 processes scanning 1 log each. You would get a security benefit from just running fail2ban on the host, since a failure on one container would apply a block to all the others. -- Rich
[gentoo-user] Emerge riddle again
Hi, again the emerge oracle has spoken to one to its lowest servants and so said: Diffing databases (17943 - 17944 packages) [N]net-print/epson-inkjet-printer-escpr (~*1.4.4): Epson Inkjet Printer Driver (ESC/P-R) * Time statistics: 219 seconds for syncing 95 seconds for eix-update 13 seconds for eix-diff 330 seconds total Calculating dependencies... done! WARNING: One or more updates/rebuilds have been skipped due to a dependency conflict: dev-python/numpy:0 (dev-python/numpy-1.9.0-r1:0/0::gentoo, ebuild scheduled for merge) conflicts with dev-python/numpy-1.9.0[python_targets_python2_7(-),python_targets_python3_3(-),-python_single_target_python2_7(-),-python_single_target_python3_3(-)] required by (dev-python/matplotlib-1.3.0-r1:0/0::gentoo, installed) ^ ^ May the light of the greater ebuild shed some wisdom onto my poor soul so enlightment will struck the darkness of my knowledge... But does that mean? Thank you very much for any help in advance! Best regards, Meino
Re: [gentoo-user] Emerge riddle again
On 16/01/2015 06:15, meino.cra...@gmx.de wrote: Hi, again the emerge oracle has spoken to one to its lowest servants and so said: Diffing databases (17943 - 17944 packages) [N]net-print/epson-inkjet-printer-escpr (~*1.4.4): Epson Inkjet Printer Driver (ESC/P-R) * Time statistics: 219 seconds for syncing 95 seconds for eix-update 13 seconds for eix-diff 330 seconds total Calculating dependencies... done! WARNING: One or more updates/rebuilds have been skipped due to a dependency conflict: dev-python/numpy:0 (dev-python/numpy-1.9.0-r1:0/0::gentoo, ebuild scheduled for merge) conflicts with dev-python/numpy-1.9.0[python_targets_python2_7(-),python_targets_python3_3(-),-python_single_target_python2_7(-),-python_single_target_python3_3(-)] required by (dev-python/matplotlib-1.3.0-r1:0/0::gentoo, installed) ^ ^ May the light of the greater ebuild shed some wisdom onto my poor soul so enlightment will struck the darkness of my knowledge... But does that mean? In simple terms, you have a conflict between something new and something old, and portage can't do it. In this case, portage wants to update numpy from to 1.9.0-r1, but can't. The reason is the matplotlib ebuild requires a version of numpy 1.9.0 (ignore for now the python_targets stuff, that's USE-like requirements which are not relevant). Bottom line: with that version of matplotlib, you are pegged to the current version of numpy, and portage is being overly complicated about telling you this. If you can't update matplotlib, you can just leave things as they are - it doesn't hurt. Train your eye to ignore that output about numpy. -- Alan McKinnon alan.mckin...@gmail.com
Re: [gentoo-user] Emerge riddle again
Am Fri, 16 Jan 2015 05:15:03 +0100 schrieb meino.cra...@gmx.de: Hi, again the emerge oracle has spoken to one to its lowest servants and so said: Diffing databases (17943 - 17944 packages) [N]net-print/epson-inkjet-printer-escpr (~*1.4.4): Epson Inkjet Printer Driver (ESC/P-R) * Time statistics: 219 seconds for syncing 95 seconds for eix-update 13 seconds for eix-diff 330 seconds total Calculating dependencies... done! WARNING: One or more updates/rebuilds have been skipped due to a dependency conflict: dev-python/numpy:0 (dev-python/numpy-1.9.0-r1:0/0::gentoo, ebuild scheduled for merge) conflicts with dev-python/numpy-1.9.0[python_targets_python2_7(-),python_targets_python3_3(-),-python_single_target_python2_7(-),-python_single_target_python3_3(-)] required by (dev-python/matplotlib-1.3.0-r1:0/0::gentoo, installed) ^ ^ Well, this one's easy: your current matplotlib needs dev-python/numpy-1.9.0, so upgrade matplotlib if you want the newer numpy, or leave it if you don't care. (As a side note, I remember the reason for the blocker: something in numpy's C API changed in 1.9.0, and matplotlib 1.4.0 won't compile with it. There's a bug for it, in case you want to look it up.) [...] HTH -- Marc Joliet -- People who think they know everything really annoy those of us who know we don't - Bjarne Stroustrup pgpTijHUC2Re9.pgp Description: Digitale Signatur von OpenPGP
[gentoo-user] Re: html5 no longer working in firefox
On Thu, 15 Jan 2015 07:43:24 -0500 cov...@ccs.covici.com wrote: I will have to set all the settings again -- I hope things don't break, but now I wonder what happened because I lost all the bookmarks, etc. I renamed the old profile, so its still there so maybe something can be figured out. https://support.mozilla.org/kb/recovering-important-data-from-an-old-profile I'm sorry I can't help with the sound problem in the original profile, but that should help you carry on with at least your bookmarks. Before copying over any foo.sqlite files, remove all foo.sqlite.* files from the target profile directory. (I don't think the page mentions those files -- on other platforms, they seem to be cleared on exit, but just lately on Linux they are hanging around.)
Re: [gentoo-user] virtual/notification-daemon circular dependency?
Alan McKinnon wrote: On 14/01/2015 15:39, Raffaele BELARDI wrote: # equery d virtual/notification-daemon-0 * These packages depend on virtual/notification-daemon-0: x11-libs/libnotify-0.7.6-r1 (virtual/notification-daemon) # equery d x11-libs/libnotify * These packages depend on x11-libs/libnotify: media-sound/ario-1.5.1 (libnotify ? x11-libs/libnotify) x11-misc/notification-daemon-3.14.1 (=x11-libs/libnotify-0.7) # equery d x11-misc/notification-daemon * These packages depend on x11-misc/notification-daemon: virtual/notification-daemon-0 (gnome ? x11-misc/notification-daemon) (!gnome ? x11-misc/notification-daemon) So it seems virtual/notification-daemon-0 is pulled in by x11-misc/notification-daemon, which is pulled in by virtual/notification-daemon-0. Where is my misunderstanding? thanks, raffaele Are you sure your second command above is correct? I get different results: khamul ~ # equery d virtual/notification-daemon-0 * These packages depend on virtual/notification-daemon-0: x11-libs/libnotify-0.7.6-r1 (virtual/notification-daemon) khamul ~ # equery d x11-libs/libnotify * These packages depend on x11-libs/libnotify: app-admin/system-config-printer-gnome-1.4.3-r1 (x11-libs/libnotify[introspection]) app-emulation/emul-linux-x86-gtklibs-20140508-r6 (abi_x86_32 ? =x11-libs/libnotify-0.7.6-r1[abi_x86_32(-)]) media-video/handbrake-0.9.9-r1 (gtk ? x11-libs/libnotify) media-video/vlc-2.1.5 (libnotify ? x11-libs/libnotify:0) www-client/midori-0.5.8-r1 (=x11-libs/libnotify-0.7) khamul ~ # equery d x11-misc/notification-daemon * These packages depend on x11-misc/notification-daemon: virtual/notification-daemon-0 (gnome ? x11-misc/notification-daemon) (!gnome ? x11-misc/notification-daemon) Yes: # grep libnotify /usr/portage/x11-misc/notification-daemon/notification-daemon-3.14.1.ebuild =x11-libs/libnotify-0.7 The problem seems to me in the x11-libs/libnotify-0.7.6-r1 ebuild, why should a library depend on the application that uses it? # grep notification-daemon /usr/portage/x11-libs/libnotify/libnotify-0.7.6-r1.ebuild PDEPEND=virtual/notification-daemon raffaele
[gentoo-user] Two things about portage
Hello list, Is it only me who sees a difference between the order in which portage offers to install packages and the order in which it does install them? Secondly, today's sync fetched thirty thousand files, nearly all in metadata, yet nothing needed upgrading. Is this caused by careless editing? I've noticed before that sed /g alters the time stamp of all files it looks in, regardless of whether it changes anything. -- Rgds Peter.
Re: [gentoo-user] Two things about portage
On Thu, 15 Jan 2015 10:27:48 +, Peter Humphrey wrote: Is it only me who sees a difference between the order in which portage offers to install packages and the order in which it does install them? I see it too, I've always put it down to my use of --jobs. It means portage cannot start installing a package until all its dependencies are installed, so it picks the next available package to install. -- Neil Bothwick Snacktrek, n.: The peculiar habit, when searching for a snack, of constantly returning to the refrigerator in hopes that something new will have materialized. pgpBVTZ9SLa9m.pgp Description: OpenPGP digital signature
Re: [gentoo-user] html5 no longer working in firefox
On Wed, Jan 14, 2015 at 05:06:55PM -0500, cov...@ccs.covici.com wrote Funny thing is it used to work fine, early November and then some update broke the thing, but I will definitely try the debug console and see if it tells me anything. Try creating a new Firefox profile and see if sound works. If it works then the problem is with your mimeTypes.rdf file (long story). We'll worry about fixing that later if necessary. -- Walter Dnes waltd...@waltdnes.org I don't run desktop environments; I run useful applications
Re: [gentoo-user] html5 no longer working in firefox
Walter Dnes waltd...@waltdnes.org wrote: On Wed, Jan 14, 2015 at 05:06:55PM -0500, cov...@ccs.covici.com wrote Funny thing is it used to work fine, early November and then some update broke the thing, but I will definitely try the debug console and see if it tells me anything. Try creating a new Firefox profile and see if sound works. If it works then the problem is with your mimeTypes.rdf file (long story). We'll worry about fixing that later if necessary. What I got out of the control-shift-i console is specified type attribute of not supported load of media resource failed. All candidate resources failed to load media load paused. Now, getting a new profile made things work, I will have to set all the settings again -- I hope things don't break, but now I wonder what happened because I lost all the bookmarks, etc. I renamed the old profile, so its still there so maybe something can be figured out. I appreciate all the help so far on this. -- Your life is like a penny. You're going to lose it. The question is: How do you spend it? John Covici cov...@ccs.covici.com
[gentoo-user] Overriding environment variables per package
Hello, As shown in the wiki articles shown below: https://wiki.gentoo.org/wiki//etc/portage/env https://wiki.gentoo.org/wiki/Knowledge_Base:Overriding_environment_variables_per_package I made the following provisions to debug a program that was segfaulting on my system: (1). mkdir -p /etc/portage/env cd /etc/portage/env (2). cat debug.conf CFLAGS=${CFLAGS} -ggdb CXXFALGS=${CFLAGS} FEATURES=nostrip (3). cat package.env app-cdr/xfburn debug.conf (4). grep burn /etc/portage/package.use app-cdr/xfburn debug (5). FEATURES=nostrip emerge -av xfburn I've had to define FEATURES on the command line as shown in (5), for nostrip to apply. For some reason, enabling the setting in /etc/portage/env/debug.conf did not seem to work for me. Where did I go wrong there? Thanks.