Re: Permissions error with Postfix + Cyrus

[Daniel Bareiro]

On 15/2/19 13:59, Reco wrote:

>   Hi.

Hi, Reco. Thanks for your reply.

> Its' expected. /var/run is a symlink to /run, in-memory filesystem
> (tmpfs). Which becomes empty after each reboot.
> Every time you boot, systemd calls systemd-tmpfiles with the
> following config:
> 
> $ cat /usr/lib/tmpfiles.d/cyrus-imapd.conf
> #Type Path  Mode UID   GID  Age Argument
> d /run/cyrus0755 cyrus mail -   -
> d /run/cyrus/socket 0750 cyrus mail -   -
> 
> Since dpkg-statoverride is honored only at package installation or
> upgrade, systemd wins ☺.
> 
> And if you're not using systemd - /etc/init.d/cyrus-imapd takes care of
> calling systemd-tmpfiles.

Thanks for the explanation. Maybe I'm confused but I think that in the
upgrade I did from Wheezy to Jessie with systemd I had used
dpkg-statoverride and the changes were persistent in the reboots. That's
why I had thought that upgrading from Jessie to Stretch I would have the
same result.

>> Any idea what could be a definitive solution? Maybe I'm missing
>> something here?

> Try this if you're using systemd:
> 
> cat > /etc/tmpfiles.d/cyrus-imapd.conf << EOF
> #Type Path  Mode UID   GID  Age Argument
> d /run/cyrus0755 cyrus lmtp -   -
> d /run/cyrus/socket 0750 cyrus lmtp -   -
> EOF

Thank you! It worked!

> And you have to dpkg-divert /usr/lib/tmpfiles.d/cyrus-imapd.conf if
> you're *not* using systemd, see above.

I'll keep it in mind.

Thank you very much for your time.

Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Permissions error with Postfix + Cyrus

[Daniel Bareiro]

Hi all!

I am observing the following problem after the upgrade from Jessie to
Stretch at the time of trying to deliver each mail:

--
[/var/run/cyrus/socket/lmtp]: Permission denied
--

The delivery is normalized after executing this command:

--
# dpkg-statoverride --force --update --add cyrus lmtp 750
/var/run/cyrus/socket
--

But I have noticed that after doing a reboot I have this problem again.
Any idea what could be a definitive solution? Maybe I'm missing
something here?

Thanks in advance.

Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

cyrus-imapd not starting after upgrade from Jessie to Stretch

[Daniel Bareiro]

Hi all!

After quite some time, today I decided to update the mail server to
Debian Stretch.

All without problems until I reach the part of cyrus-imapd that does not
start. This is what I see in the log:

--
Jan 14 23:10:45 mail systemd[1]: Started Cyrus IMAP/POP3 daemons.
Jan 14 23:10:45 mail cyrus/ctl_cyrusdb[5318]: skiplist: clean shutdown
file missing, updating recovery stamp
Jan 14 23:10:45 mail cyrus/ctl_cyrusdb[5318]: recovering cyrus databases
Jan 14 23:10:45 mail cyrus/ctl_cyrusdb[5318]: done recovering cyrus
databases
Jan 14 23:10:46 mail cyrus/cyr_expire[5332]: Repacking mailbox
user.admin.TareasCron version 12
Jan 14 23:10:46 mail cyrus/cyr_expire[5332]: Expired 0 and expunged 0
out of 28809 messages from 80 mailboxes
Jan 14 23:10:46 mail cyrus/cyr_expire[5332]: duplicate_prune: pruning
back 3.00 days
Jan 14 23:10:46 mail cyrus/cyr_expire[5332]: duplicate_prune: purged 0
out of 438 entries
Jan 14 23:10:46 mail cyrus/tls_prune[5335]: twoskip: invalid magic
header: /var/lib/cyrus/tls_sessions.db
Jan 14 23:10:46 mail cyrus/tls_prune[5335]: cyrusdb: opening
/var/lib/cyrus/tls_sessions.db with backend skiplist (requested twoskip)
Jan 14 23:10:46 mail cyrus/tls_prune[5335]: skiplist: recovered
/var/lib/cyrus/tls_sessions.db (223 records, 41200 bytes) in 0 seconds
Jan 14 23:10:46 mail cyrus/tls_prune[5335]: skiplist: checkpointed
/var/lib/cyrus/tls_sessions.db (223 records, 41200 bytes) in 0.091 sec
Jan 14 23:10:46 mail cyrus/tls_prune[5335]: tls_prune: purged 2 out of
223 entries
Jan 14 23:10:46 mail cyrus/master[5311]: cannot find executable for
service 'nntp'
Jan 14 23:10:46 mail cyrus/master[5311]: exiting
Jan 14 23:10:46 mail systemd[1]: cyrus-imapd.service: Main process
exited, code=exited, status=78/n/a
Jan 14 23:10:46 mail systemd[1]: cyrus-imapd.service: Unit entered
failed state.
Jan 14 23:10:46 mail systemd[1]: cyrus-imapd.service: Failed with result
'exit-code'.
--

I'm not sure what the problem is but that "invalid magic header" makes
me think that maybe it changed the header format of
/var/lib/cyrus/tls_sessions.db and the migration process did not do the
corresponding conversion. Any ideas that can bring more light?

The associated problem is that because of this it seems that Postfix can
not deliver the mails since there is no /var/run/cyrus/socket/lmtp.


Thanks in advance.

Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Re: stretch update of thunderbird wants to remove enigmail

[Daniel Bareiro]

Hi, Sven.

On 17/09/18 18:36, Sven Joachim wrote:

>> I run debian stretch:
>>
>> ni@quark:/etc$ cat debian_version
>> 9.5
>>
>> and I use a number of email clients. I see there is currently an update 
>> (presumably security related?) for thunderbird. But as this upgrade would 
>> remove enigmail I chose (at least for the moment) to not implement it.
>>
>> Does anyone know if there are plans in the works for an associated upgrade 
>> of 
>> enigmail so that it might be possible in the near future to upgrade 
>> thunderbird without losing embedded support for gnupg?

> This is discussed in bug #909000[1], you may want to subscribe to it.
>
> 1. https://bugs.debian.org/909000

Thanks for the reference in Debian BTS. The weekend I was looking for if
there was an open issue but I didn't find it. I see the issue was opened
today.


Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Re: stretch update of thunderbird wants to remove enigmail

[Daniel Bareiro]

On 17/09/18 17:46, ernst doubt wrote:

> Greetings,

Hi, Ernst.

> I run debian stretch:
> 
> ni@quark:/etc$ cat debian_version
> 9.5
> 
> and I use a number of email clients. I see there is currently an update 
> (presumably security related?) for thunderbird. But as this upgrade would 
> remove enigmail I chose (at least for the moment) to not implement it.
> 
> Does anyone know if there are plans in the works for an associated upgrade of 
> enigmail so that it might be possible in the near future to upgrade 
> thunderbird without losing embedded support for gnupg?
> 
> I'm not subscribed to this list (but will check the archives on-line for a 
> while to make sure I don't miss a reply), so CCs to me are fine (and even 
> appreciated if you are willing).
> 
> thanks so very much in advance,

I have also found this issue in my update yesterday.

I'm not sure if it will be related but in later attempts to update I got
this internal error:

--
root@orion:~# aptitude upgrade -V
Resolving dependencies...
Internal error: found 2 (choice -> promotion) mappings for a single choice.
No packages will be installed, upgraded, or removed.
0 packages upgraded, 0 newly installed, 0 to remove and 8 not upgraded.
Need to get 0 B of archives. After unpacking 0 B will be used.
--

Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Show event from KOrganizer to Panel calendar

[Daniel Bareiro]

Hi all!

I am currently using Debian Stretch and I would like to see the events
configured in KOrganizer (which in turn synchronizes with Horde) in the
calendar that is displayed when I click on the clock. I have been able
to show the holidays but I was researching for the way to show the
personalized events in KOrganizer but I have not been able to get it.

Any clues would be appreciated.

Thanks in advance.

Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Re: No sound in Debian Stretch

[Daniel Bareiro]

Hi, deloptes.

On 12/04/18 02:29, deloptes wrote:

>> Killing the 'pulseaudio' process solved the problem. Good to have sound
>> again :)

> Did you remove the .pulse directory before killing or not?

I was checking, but that directory did not exist. So I simply tried
killing the process directly.


Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Re: No sound in Debian Stretch

[Daniel Bareiro]

Hi, deloptes.

On 10/04/18 20:53, deloptes wrote:

 Has anyone experienced something like that and has some clue how to fix
 it?

>>> try
>>> alsamixer -c0
>>> or
>>> amixer -c0
>>> and see if something is muted there
>>> usually 0 is the alsacard driver - it might be other index for you though

>> I was also looking at the settings with the ncurses interface provided
>> by "alsamixer -c0". "Master", "PCM" and "Speaker" is at maximum, unless
>> I'm missing something. Here some screenshots:
>>
>> https://ibin.co/3xx7l69DriYy.png
>> https://ibin.co/3xx8ERkqHJwW.png
>> https://ibin.co/3xx8ac8djtS4.png
>>
>> I also tried setting "Internal" to the maximum, but it made no difference.

> Automute is enabled - this means when you plug in headphone, speaker is
> turned off
> Headphone is also muted - no sound
> 
> strange that you mention you have no sound at all - without headphones
> plugged, it should work.
> check also the pavucontrol settings in both cases (the icons for default
> device etc)
> 
> If nothing helps remove ~/.pulse directory and reboot or login again or kill
> pulse server (it should respawn)

Killing the 'pulseaudio' process solved the problem. Good to have sound
again :)

Thanks to all for your interest.

Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Re: No sound in Debian Stretch

[Daniel Bareiro]

Hi, Ben.

On 10/04/18 19:51, Ben Caradoc-Davies wrote:
> On 11/04/18 10:15, Daniel Bareiro wrote:
>>  From one day to the next I ran out of sound in Debian Stretch. It's
>> strange because I don't remember making any changes and everything was
>> running without problem.
>> I installed pavucontrol to see if there is something muted, but that
>> does not seem to be the case. For example when I am playing a Youtube
>> video, in "Firefox: Audiostream" and in "Output devices" (I'm not sure
>> if that's what it says in the English version because I have the
>> interface in Spanish here) I see how the bottom bar fluctuates as if it
>> was reproducing something, but I am not able to hear any sound neither
>> by the speakers nor by the headset.
>> Has anyone experienced something like that and has some clue how to
>> fix it?

> Did the problem start when you plugged in your headset? What happens if
> you unplug your headset? Do you get sound from your speakers? How are
> your speakers connected? Is this a laptop? I have had a laptop with an
> Intel chipset for which headphone autoswitching was broken. I ended up
> disabling (commenting out) the switch-on-port-available module in
> /etc/pulse/default.pa .
> 
> On my current disktop chipset, my headset is detected as line out (not
> headphones). I am using "Analog Stereo Duplex" in Configuration and
> "Line Out" in "Output Devices". Do you have any HDMI devices connected
> or listed as Configuration options?

The computer where I am having this problem is a Thinkpad T530 notebook.
I'm not getting sound at all, whether I have the headset plugged in or not.

Until a few days ago it was working without problems. I don't remember
exactly when I started to experience this. If it was after return the
notebook from sleeping state or at some other time.

This notebook does not have any HDMI port.

Thanks for your interest.

Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Re: No sound in Debian Stretch

[Daniel Bareiro]

Hi, deloptes.

On 10/04/18 19:36, deloptes wrote:

>> Has anyone experienced something like that and has some clue how to fix
>> it?

> try
> alsamixer -c0
> or
> amixer -c0
> and see if something is muted there
> usually 0 is the alsacard driver - it might be other index for you though

This is the output I get with "amixer -c0":

-
Simple mixer control 'Master',0
  Capabilities: pvolume pvolume-joined pswitch pswitch-joined
  Playback channels: Mono
  Limits: Playback 0 - 87
  Mono: Playback 87 [100%] [0.00dB] [on]
Simple mixer control 'Headphone',0
  Capabilities: pvolume pswitch
  Playback channels: Front Left - Front Right
  Limits: Playback 0 - 87
  Mono:
  Front Left: Playback 0 [0%] [-65.25dB] [off]
  Front Right: Playback 0 [0%] [-65.25dB] [off]
Simple mixer control 'Headphone',1
  Capabilities: pswitch
  Playback channels: Front Left - Front Right
  Mono:
  Front Left: Playback [on]
  Front Right: Playback [on]
Simple mixer control 'Speaker',0
  Capabilities: pvolume pswitch
  Playback channels: Front Left - Front Right
  Limits: Playback 0 - 87
  Mono:
  Front Left: Playback 87 [100%] [0.00dB] [on]
  Front Right: Playback 87 [100%] [0.00dB] [on]
Simple mixer control 'PCM',0
  Capabilities: pvolume
  Playback channels: Front Left - Front Right
  Limits: Playback 0 - 255
  Mono:
  Front Left: Playback 255 [100%] [0.00dB]
  Front Right: Playback 255 [100%] [0.00dB]
Simple mixer control 'Mic',0
  Capabilities: pvolume pswitch
  Playback channels: Front Left - Front Right
  Limits: Playback 0 - 31
  Mono:
  Front Left: Playback 31 [100%] [12.00dB] [off]
  Front Right: Playback 31 [100%] [12.00dB] [off]
Simple mixer control 'Mic Boost',0
  Capabilities: volume
  Playback channels: Front Left - Front Right
  Capture channels: Front Left - Front Right
  Limits: 0 - 3
  Front Left: 0 [0%] [0.00dB]
  Front Right: 0 [0%] [0.00dB]
Simple mixer control 'IEC958',0
  Capabilities: pswitch pswitch-joined
  Playback channels: Mono
  Mono: Playback [off]
Simple mixer control 'IEC958',1
  Capabilities: pswitch pswitch-joined
  Playback channels: Mono
  Mono: Playback [on]
Simple mixer control 'IEC958',2
  Capabilities: pswitch pswitch-joined
  Playback channels: Mono
  Mono: Playback [on]
Simple mixer control 'Beep',0
  Capabilities: pvolume pswitch
  Playback channels: Front Left - Front Right
  Limits: Playback 0 - 31
  Mono:
  Front Left: Playback 0 [0%] [-34.50dB] [off]
  Front Right: Playback 0 [0%] [-34.50dB] [off]
Simple mixer control 'Capture',0
  Capabilities: cvolume cswitch
  Capture channels: Front Left - Front Right
  Limits: Capture 0 - 63
  Front Left: Capture 63 [100%] [30.00dB] [on]
  Front Right: Capture 63 [100%] [30.00dB] [on]
Simple mixer control 'Auto-Mute Mode',0
  Capabilities: enum
  Items: 'Disabled' 'Enabled'
  Item0: 'Enabled'
Simple mixer control 'Digital',0
  Capabilities: cvolume
  Capture channels: Front Left - Front Right
  Limits: Capture 0 - 120
  Front Left: Capture 120 [100%] [30.00dB]
  Front Right: Capture 120 [100%] [30.00dB]
Simple mixer control 'Dock Mic',0
  Capabilities: pvolume pswitch
  Playback channels: Front Left - Front Right
  Limits: Playback 0 - 31
  Mono:
  Front Left: Playback 31 [100%] [12.00dB] [off]
  Front Right: Playback 31 [100%] [12.00dB] [off]
Simple mixer control 'Dock Mic Boost',0
  Capabilities: volume
  Playback channels: Front Left - Front Right
  Capture channels: Front Left - Front Right
  Limits: 0 - 3
  Front Left: 0 [0%] [0.00dB]
  Front Right: 0 [0%] [0.00dB]
Simple mixer control 'Internal Mic Boost',0
  Capabilities: volume
  Playback channels: Front Left - Front Right
  Capture channels: Front Left - Front Right
  Limits: 0 - 3
  Front Left: 0 [0%] [0.00dB]
  Front Right: 0 [0%] [0.00dB]
Simple mixer control 'Loopback Mixing',0
  Capabilities: enum
  Items: 'Disabled' 'Enabled'
  Item0: 'Disabled'
-

I was also looking at the settings with the ncurses interface provided
by "alsamixer -c0". "Master", "PCM" and "Speaker" is at maximum, unless
I'm missing something. Here some screenshots:

https://ibin.co/3xx7l69DriYy.png
https://ibin.co/3xx8ERkqHJwW.png
https://ibin.co/3xx8ac8djtS4.png

I also tried setting "Internal" to the maximum, but it made no difference.


Thanks for your reply.

Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

No sound in Debian Stretch

[Daniel Bareiro]

Hi all!

From one day to the next I ran out of sound in Debian Stretch. It's
strange because I don't remember making any changes and everything was
running without problem.

I installed pavucontrol to see if there is something muted, but that
does not seem to be the case. For example when I am playing a Youtube
video, in "Firefox: Audiostream" and in "Output devices" (I'm not sure
if that's what it says in the English version because I have the
interface in Spanish here) I see how the bottom bar fluctuates as if it
was reproducing something, but I am not able to hear any sound neither
by the speakers nor by the headset.

Has anyone experienced something like that and has some clue how to fix it?


Thanks in advance.

Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Re: Problems with KDE in Debian Stretch

[Daniel Bareiro]

Hi, Felix.

On 11/03/18 01:09, Felix Miata wrote:

>> I think that before adding the file with the configuration that I
>> mentioned (/usr/share/X11/xorg.conf.d/20-intel.conf), I was using the
>> default driver. At least I don't have a /etc/X11/xorg.conf file.
>>
>> In essence the configuration I suppose that it will have been the same
>> one that I kept previously with Jessie and with which it was not having
>> problems with Jessie.
>> ...
>> Currently I have these packages installed:
>> ...
>> i A xserver-xorg-video-all - X.Org X server -- output driver metapackage
>> i A xserver-xorg-video-intel - X.Org X server -- Intel i8xx, i9xx display 
>> driver
>> ...
>> I guess these would be the same packages I was using with Jessie (if so,
>> I suppose I would also have installed xserver-xorg-video-intel), but
>> honestly, I don't have registered the ones I had installed then.

> A default install of either Jessie or Stretch includes xserver-xorg-video-all,
> and thus xserver-xorg-video-intel. Thus with your 3rd Gen Core, it's virtually
> impossible that you weren't using the intel driver in Jessie, and unlikely in
> Stretch.
> 
> It's simple enough to try the modeset(0) driver. Simply purge
> xserver-xorg-video-intel, rename 20-intel.conf, and restart the xserver. 
> Either
> it's better, or it's not. If not, reinstall xserver-xorg-video-intel, restore
> 20-intel.conf (or not), and restart the xserver.
> 
> If nothing helps, try going into desktop settings and disabling compositing. 
> If
> that doesn't help either, ask on intel-...@lists.freedesktop.org which is a
> hangout of Intel driver devs. Include 'lspci -nnk | grep -A3 VGA' output and
> pastebin Xorg.0.log.

I have tried the workaround mentioned by Bernd about changing the
compositor from OpenGL to XRender and during almost a month of testing
with that configuration I have not had the problem again.

I would like to point out that I made this change without removing the
configuration in /usr/share/X11/xorg.conf.d/20-intel.conf that I
mentioned in a previous message. Maybe I would have to remove this
configuration to check if the solution is due to the combination of the
configuration in that file with the use of XRender or if only using
XRender is enough.

I will also try the solution you suggested, purging the package
xserver-xorg-video-intel and renaming 20-intel.conf.

Thank you all for your interest. Much appreciated.

Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Re: GPG key expiry questions?

[Daniel Bareiro]

Hi, Ansgar.

On 14/03/18 03:26, Ansgar Burchardt wrote:

>>> You can change the expiry date of your own key, but for other people to
>>> be able to see it and avoid having your key show up as expired, you must
>>> publish the new (key? signature? not sure...) and others must fetch it
>>> before the expiry date hits.
>>>
>>> I think what happened is that you edited the expiration date of your key
>>> and published it, but the other person didn't get the updated version
>>> before their copy of your key expired.

>> Ah, that sounds plausible. I think I actually edited it after it had
>> expired, so very likely, if that causes a problem. I have a newer one as
>> well (4096 instead of 2048 bit) - though apparently with no signatures
>> on it yet. Not sure if that will suffer the same problem? I can't
>> remember if that one also expired and was posthumously edited ... If it
>> hasn't actually been used much, will that mean nobody's got it 'cached'?

> Editing the key is no problem, the other side just has to update their
> copy from time to time.  But this is necessary anyway: if they do not
> look for updates to the key, they will never know about key revocations
> either and continue to trust a revoked key.
> 
> Just run `gpg --refresh-keys` from time to time.

Thanks for the suggestion. I have updated my keyring:
(spanish output)

--
viper@orion:~$ gpg --refresh-keys
gpg: refreshing 195 keys from hkp://keys.gnupg.net
(...)
gpg: clave B4A2F08FEC70168D: "Richard Hector " 9
firmas nuevas
(...)
gpg: Cantidad total procesada: 193
gpg:  sin cambios: 106
gpg:  nuevos identificativos: 29
gpg:nuevas subclaves: 14
gpg:   nuevas firmas: 3201
gpg: public key C11141521FA7D0B8 is 74797 seconds newer than the signature
gpg: marginals needed: 3  completes needed: 1  trust model: pgp
gpg: public key C11141521FA7D0B8 is 74797 seconds newer than the signature
gpg: nivel: 0  validez:   2  firmada:   0  confianza: 0-, 0q, 0n, 0m, 0f, 2u
--

GNUPG seems to have found 9 new signatures ('firmas' in spanish)  from
Richard.

The output in English would be something like this:

Total amount processed: 193
without changes: 196
new identifiers: 14
new subkeys: 14
new signatures: 3201

These 'signatures' are new public keys?

Still Thunderbird is showing the expired key. Should I restart it to
take the changes?

Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Re: Cores, Hyperthreads, and KVM

[Daniel Bareiro]

On 13/03/18 21:13, Richard Hector wrote:

> Hi all,

Hi, Richard.

> When I configure a KVM guest to have 2 vcpus, will that be 2 full cores?
> Or will it give the guest both threads on the same real core? Or might
> it use half of each of 2 different cores?
> 
> I guess the same applies to physical CPUs, too - there's presumably an
> advantage in giving a VM a set of cores all on the same CPU, to take
> advantage of shared caching - is that dealt with automatically?
> 
> I've always assumed that I should allocate even numbers of vcpus on an
> HT capable machine, so that it keeps the threads together.
> 
> Does any of this matter?

I think these 2 VCPUs can run on any core however you can configure the
affinity of processors by limiting the execution using taskset.

By the way, it looks like your GPG key is expired.

Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Re: stretch security updates

[Daniel Bareiro]

On 11/03/18 14:38, Felix Natter wrote:

> hi,

Hi, Felix.

> I had a wrong configuration in sources.list (for about half a year :-():
> 
> deb http://security.debian.org/ stretch/updates main contrib non-free
> deb-src http://security.debian.org/ stretch/updates main contrib non-free

I am using this configuration without problems. In fact, yesterday I got
the update to Stretch 9.4 with this configuration.

Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Re: Problems with KDE in Debian Stretch

[Daniel Bareiro]

Hi, Felix.

On 10/03/18 19:11, Felix Miata wrote:

> Daniel Bareiro composed on 2018-03-10 13:42 (UTC-0500):
> ...
>> hardware: a Thinkpad T530.
> 
>> About five days ago, after researching the Internet, I tried adding this
>> configuration in Xorg:
> 
>> ---
>> viper@orion:~$ cat /usr/share/X11/xorg.conf.d/20-intel.conf
>> Section "Device"
>>Identifier  "Intel Graphics"
>>Driver  "intel"
>>#Option  "AccelMethod"  "sna"
>>Option  "TearFree""true"
>>Option  "DRI""3"
>> EndSection
>> ---

> Have you ever tried the default driver? Search tells me T530 has HD Graphics
> 4000 on Ivy Bridge, roughly 5-6 years old, which ought to work with it if not 
> be
> optimal. It's built into the Xorg server in Stretch. To use can take as little
> effort as not having xserver-xorg-video-intel installed, but in your case it
> will likely require eliminating or modifying 20-intel.conf.
> 
> I have multiple Intel gfx machines, all older or newer than Ivy Bridge. All 
> use
> the integrated modeset(0) driver with any server newer than 1.16.x.
> 
> The Intel gfx driver hasn't had a formal release in going on 4 years, nothing
> but cgit milestones since 2.99.917.
> https://cgit.freedesktop.org/xorg/driver/xf86-video-intel/
> https://www.phoronix.com/forums/forum/linux-graphics-x-org-drivers/intel-linux/886898-ubuntu-debian-abandon-intel-x-org-driver-for-most-hardware-moves-to-modesetting-ddx

I think that before adding the file with the configuration that I
mentioned (/usr/share/X11/xorg.conf.d/20-intel.conf), I was using the
default driver. At least I don't have a /etc/X11/xorg.conf file.

In essence the configuration I suppose that it will have been the same
one that I kept previously with Jessie and with which it was not having
problems with Jessie.

Currently I have these packages installed:

---
i  xorg - X.Org X Window System
i A xorg-docs-core - Core documentation for the X.org X Window System
i A xorg-sgml-doctools - Common tools for building X.Org SGML documentation
i A xserver-xorg - X.Org X server
i A xserver-xorg-core - Xorg X server - core server
i A xserver-xorg-input-all - X.Org X server -- input driver metapackage
i A xserver-xorg-input-libinput - X.Org X server -- libinput input driver
i A xserver-xorg-input-wacom - X.Org X server -- Wacom input driver
i A xserver-xorg-legacy - setuid root Xorg server wrapper
i A xserver-xorg-video-all - X.Org X server -- output driver metapackage
i A xserver-xorg-video-amdgpu - X.Org X server -- AMDGPU display driver
i A xserver-xorg-video-ati - X.Org X server -- AMD/ATI display driver
wrapper
i A xserver-xorg-video-fbdev - X.Org X server -- fbdev display driver
i A xserver-xorg-video-intel - X.Org X server -- Intel i8xx, i9xx
display driver
i A xserver-xorg-video-nouveau - X.Org X server -- Nouveau display driver
i A xserver-xorg-video-qxl - X.Org X server -- QXL display driver
i A xserver-xorg-video-radeon - X.Org X server -- AMD/ATI Radeon display
driver
i A xserver-xorg-video-vesa - X.Org X server -- VESA display driver
i A xserver-xorg-video-vmware - X.Org X server -- VMware display driver
---

I guess these would be the same packages I was using with Jessie (if so,
I suppose I would also have installed xserver-xorg-video-intel), but
honestly, I don't have registered the ones I had installed then.

Regarding hardware, here is some more information provided by lspci:

---
viper@orion:~$ lspci -s 00:02.0 -vvv
00:02.0 VGA compatible controller: Intel Corporation 3rd Gen Core
processor Graphics Controller (rev 09) (prog-if 00 [VGA controller])
Subsystem: Lenovo 3rd Gen Core processor Graphics Controller
Control: I/O+ Mem+ BusMaster+ SpecCycle- MemWINV- VGASnoop-
ParErr- Stepping- SERR- FastB2B- DisINTx+
Status: Cap+ 66MHz- UDF- FastB2B+ ParErr- DEVSEL=fast >TAbort-
SERR- 
Kernel driver in use: i915
Kernel modules: i915
---

Note: I'm curious about the "" in Capabilities.

Meanwhile I am testing the workaround suggested by Bernd about changing
the composer.

Thanks for your interest.

Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Re: Problems with KDE in Debian Stretch

[Daniel Bareiro]

On 10/03/18 16:09, Brad Rogers wrote:

> Hello Daniel,

Hello, Brad. Thanks for your reply.

>> I would like to know if anyone had this problem and was able to solve it
>> in some way. If you have resolved it definitively, I would appreciate if

> Read the answers posted to the very similar question you asked on 1st
> March.
> 
> Did you try the suggestion that came from Bernd?

Thanks for letting me know this. I just checked the list archive because
I had problems with this email account and had to re-subscribe. So there
are messages that I didn't receive in my mailbox. In fact, I had doubts
that message with my question had reached the list and that's why I sent
this new message.

Thanks Curt and Bernd for your replies. Let me answer you here:

Curt:

> After looking briefly on the Network, searching for "KDE window
> flickering," you don't appear to be alone, from which fact a
> certain comfort can be derived (and help ideas too from others in the
> same blinking boat).
>
> Your problem seems "graphical" in nature.
>
> Maybe some aid and comfort here (if your driver's "intel"):
>
> https://bbs.archlinux.org/viewtopic.php?pid=1595276#p1595276

Yes, just that thread was the one that I read and from which I got the
configuration of Xorg that I applied although it does not seem to have
worked.

Bernd:

> Yes, I had a similar problem, not so serious, also intel graphics.
>
> I changed the composer from open-gl to Xrender and the problem was >
> gone.

Thank you for your suggestion. I'm going to try it and I'll report the
results.

Thank you both for your time.


Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Problems with KDE in Debian Stretch

[Daniel Bareiro]

Hi all!

Some time ago I started to experience some problems in KDE. In a random
way, when I'm using any application like Firefox, Chromium or
Thunderbird, the window starts blinking incessantly and becomes
unusable. When that happens I have no choice but to close the
application and reopen it.

This also usually happens with minimized applications. The name starts
blinking in the lower bar and only stops when I click on that minimized
application. It is a somewhat annoying behavior.

This did not happen to me with Debian Jessie always using the same
hardware: a Thinkpad T530.

About five days ago, after researching the Internet, I tried adding this
configuration in Xorg:

---
viper@orion:~$ cat /usr/share/X11/xorg.conf.d/20-intel.conf
Section "Device"
   Identifier  "Intel Graphics"
   Driver  "intel"
   #Option  "AccelMethod"  "sna"
   Option  "TearFree""true"
   Option  "DRI""3"
EndSection
---

Then I rebooted the notebook and it seemed like that had solved the
problem. But yesterday I had this problem with Chromium and today I had
it several times with Firefox while watching some videos.

It's kind of annoying because I have to close the application and open
it again.

I would like to know if anyone had this problem and was able to solve it
in some way. If you have resolved it definitively, I would appreciate if
you could share the used solution.

Thanks in advance.


Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Problems with KDE in Debian Stretch

[Daniel Bareiro]

Hi all!

Some time ago I started to experience some problems in KDE. In a random
way, when I'm using any application like Firefox, Chromium or
Thunderbird, the window starts blinking incessantly and becomes
unusable. When that happens I have no choice but to close the
application and reopen it.

This also usually happens with minimized applications. The name starts
blinking in the lower bar and only stops when I click on that minimized
application. It is a somewhat annoying behavior.

This did not happen to me with Debian Jessie always using the same
hardware: a Thinkpad T530.

I would like to know if anyone had this problem and was able to solve it
in some way.

Thanks in advance.


Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Re: Unable to get the temp for one disk in Stretch

[Daniel Bareiro]

Hi, again.

On 08/01/18 10:28, Daniel Bareiro wrote:

>>> I recently updated my firewall from Jessie to Stretch and I realized
>>> that the check_lm_sensors plugin was apparently not working because it
>>> was not possible to get the temperature of one of the disks:
>>>
>>> # /usr/lib/nagios/plugins/check_lm_sensors --list
>>> LM_SENSORS UNKNOWN - Error while executing /usr/sbin/hddtemp -n /dev/sdb
>>>
>>> These are two disks which form several MD arrays.
>>>
>>> # /usr/sbin/hddtemp -n /dev/sda
>>> 44
>>>
>>> # /usr/sbin/hddtemp -n /dev/sdb
>>> WARNING: Drive /dev/sdb doesn't seem to have a temperature sensor.
>>> WARNING: This doesn't mean it hasn't got one.
>>> WARNING: If you are sure it has one, please contact me
>>> (hddt...@guzu.net).
>>> WARNING: See --help, --debug and --drivebase options.
>>> /dev/sdb: WDC WD5000AAKX-60U6AA0:  no sensor

>> It *might* be that the drive database doesn't recognise the drive (it'd
>> be odd for the database to forget about a drive, but accidents happen).
>>
>> Try running "sudo /usr/sbin/update-smart-drivedb" and check again.

> Thanks for your reply and your time.
> 
> It seems that this file is not available:
> 
> ---
> root@alderamin:~# /usr/sbin/update-smart-drivedb
> bash: /usr/sbin/update-smart-drivedb: No existe el fichero o el directorio
> ---
> 
> I looked for it in another path but I did not find it.
> 
> The strange thing is the man page does exist.
> 
> Can someone with Stretch please confirm?

I found this in the smartmontools package documentation:

--
root@alderamin:/usr/share/doc/smartmontools# zcat NEWS.Debian.gz
smartmontools (6.4+svn4214-1) unstable; urgency=medium

  Previous versions of the smartmontools package included a tool
  update-smart-drivedb which downloaded updated drive definitions
  from the smartmontools website and stored them at

  /var/lib/smartmontools/drivedb/drivedb.h

  This tool did not download the definitions in a secure manner and
  so the feature has been removed in this version.  Future drive DB
  updates will be propagated via normal Debian package updates,
  including backports.

  If you already have a drivedb.h file at that location, smartctl
  will continue to use it.

 -- Jonathan Dowland <j...@debian.org>  Mon, 01 Feb 2016 21:19:47 +
(...)
--

The version available in Stretch for smartmontools is 6.5+svn4324-1.

So the update of the disk database would be done automatically when
installing the smartmontools package?

Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Re: Unable to get the temp for one disk in Stretch

[Daniel Bareiro]

Hi, Darac.

On 08/01/18 06:33, Darac Marjal wrote:

>> I recently updated my firewall from Jessie to Stretch and I realized
>> that the check_lm_sensors plugin was apparently not working because it
>> was not possible to get the temperature of one of the disks:
>>
>> # /usr/lib/nagios/plugins/check_lm_sensors --list
>> LM_SENSORS UNKNOWN - Error while executing /usr/sbin/hddtemp -n /dev/sdb
>>
>> These are two disks which form several MD arrays.
>>
>> # /usr/sbin/hddtemp -n /dev/sda
>> 44
>>
>> # /usr/sbin/hddtemp -n /dev/sdb
>> WARNING: Drive /dev/sdb doesn't seem to have a temperature sensor.
>> WARNING: This doesn't mean it hasn't got one.
>> WARNING: If you are sure it has one, please contact me
>> (hddt...@guzu.net).
>> WARNING: See --help, --debug and --drivebase options.
>> /dev/sdb: WDC WD5000AAKX-60U6AA0:  no sensor

> It *might* be that the drive database doesn't recognise the drive (it'd
> be odd for the database to forget about a drive, but accidents happen).
> 
> Try running "sudo /usr/sbin/update-smart-drivedb" and check again.

Thanks for your reply and your time.

It seems that this file is not available:

---
root@alderamin:~# /usr/sbin/update-smart-drivedb
bash: /usr/sbin/update-smart-drivedb: No existe el fichero o el directorio
---

I looked for it in another path but I did not find it.

The strange thing is the man page does exist.

Can someone with Stretch please confirm?


Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Unable to get the temp for one disk in Stretch

[Daniel Bareiro]

Hi all!

I recently updated my firewall from Jessie to Stretch and I realized
that the check_lm_sensors plugin was apparently not working because it
was not possible to get the temperature of one of the disks:

# /usr/lib/nagios/plugins/check_lm_sensors --list
LM_SENSORS UNKNOWN - Error while executing /usr/sbin/hddtemp -n /dev/sdb

These are two disks which form several MD arrays.

# /usr/sbin/hddtemp -n /dev/sda
44

# /usr/sbin/hddtemp -n /dev/sdb
WARNING: Drive /dev/sdb doesn't seem to have a temperature sensor.
WARNING: This doesn't mean it hasn't got one.
WARNING: If you are sure it has one, please contact me (hddt...@guzu.net).
WARNING: See --help, --debug and --drivebase options.
/dev/sdb: WDC WD5000AAKX-60U6AA0:  no sensor

In fact, not even smartctl is able to see the temperature:

# smartctl -a /dev/sda | grep Temperature_Celsius
194 Temperature_Celsius 0x0022   099   090   000Old_age   Always
  -   44

# smartctl -a /dev/sdb | grep Temperature_Celsius
#

It's weird because in Jessie I do not remember having this problem. I
can even find smartd entries in the syslog before doing the update:

# grep smart syslog
Jan  7 06:52:27 alderamin smartd[438]: Device: /dev/sdb [SAT], SMART
Usage Attribute: 190 Airflow_Temperature_Cel changed from 60 to 61
Jan  7 10:52:27 alderamin smartd[438]: Device: /dev/sdb [SAT], SMART
Usage Attribute: 190 Airflow_Temperature_Cel changed from 61 to 60
Jan  7 11:22:27 alderamin smartd[438]: Device: /dev/sda [SAT], SMART
Usage Attribute: 194 Temperature_Celsius changed from 102 to 101
Jan  7 12:22:28 alderamin smartd[438]: Device: /dev/sda [SAT], SMART
Usage Attribute: 194 Temperature_Celsius changed from 101 to 100
Jan  7 12:22:28 alderamin smartd[438]: Device: /dev/sdb [SAT], SMART
Usage Attribute: 190 Airflow_Temperature_Cel changed from 60 to 59
Jan  7 13:52:27 alderamin smartd[438]: Device: /dev/sda [SAT], SMART
Usage Attribute: 194 Temperature_Celsius changed from 100 to 99
Jan  7 14:22:27 alderamin smartd[438]: Device: /dev/sdb [SAT], SMART
Usage Attribute: 190 Airflow_Temperature_Cel changed from 59 to 58

So I'm not sure where the problem may be. If it is in smartd (and
hddtemp is based on smartd) or maybe in some kernel module.

Any thoughts will be greatly appreciated.

Thanks in advance.


Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Re: Security updates for Chromium on Debian Jessie

[Daniel Bareiro]

Hi, Alex.

On 29/09/17 07:19, Alex ARNAUD wrote:

 In the last DSA for the chromium-browser package (DSA-3985-1) I noticed
 that the updates were released for stable, testing and unstable but not
 for oldstable. I think the same thing happened with the previous
 update.

 Maybe I'm missing something and Chromium on Jessie is no longer getting
 security updates?

>>> It seems that the maintainer is overworked and cannot provide Jessie
>>> updates for chromium anymore[1].  Somebody else said he might be looking
>>> at it[2], but that was six weeks ago and nothing happened so far.
>>>
>>> So while it is not clear when chromium in jessie will be EOL'ed, it
>>> seems advisable to switch to some other browser for now (if you want a
>>> package from Debian, firefox-esr is the only option).
>>>
>>>
>>> 1. https://lists.debian.org/debian-security/2017/07/msg9.html
>>> 2. https://lists.debian.org/debian-security/2017/08/msg00010.html

>> Thanks for the observation and the references. I was not aware of this.
>>
>> Here I am using both Firefox and Chromium since sometimes I need to test
>> some things in both browsers (for example some WebRTC application such
>> as Jitsi Meet).

> You can also install Google Chrome from the Google Debian repository.
> It's up-to-date and it works for Jessie.

Thanks for the suggestion. I did not know they had a repository
published. The times I installed Chrome were downloading the Debian
package. But maybe this automatically adds an entry in
/etc/apt/source.list.d.


Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Re: Security updates for Chromium on Debian Jessie

[Daniel Bareiro]

Hi, Sven.

On 28/09/17 14:13, Sven Joachim wrote:

>> In the last DSA for the chromium-browser package (DSA-3985-1) I noticed
>> that the updates were released for stable, testing and unstable but not
>> for oldstable. I think the same thing happened with the previous update.
>>
>> Maybe I'm missing something and Chromium on Jessie is no longer getting
>> security updates?

> It seems that the maintainer is overworked and cannot provide Jessie
> updates for chromium anymore[1].  Somebody else said he might be looking
> at it[2], but that was six weeks ago and nothing happened so far.
> 
> So while it is not clear when chromium in jessie will be EOL'ed, it
> seems advisable to switch to some other browser for now (if you want a
> package from Debian, firefox-esr is the only option).
>
> 
> 1. https://lists.debian.org/debian-security/2017/07/msg9.html
> 2. https://lists.debian.org/debian-security/2017/08/msg00010.html

Thanks for the observation and the references. I was not aware of this.

Here I am using both Firefox and Chromium since sometimes I need to test
some things in both browsers (for example some WebRTC application such
as Jitsi Meet).

Thanks for your reply.

Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Security updates for Chromium on Debian Jessie

[Daniel Bareiro]

Hi all!

In the last DSA for the chromium-browser package (DSA-3985-1) I noticed
that the updates were released for stable, testing and unstable but not
for oldstable. I think the same thing happened with the previous update.

Maybe I'm missing something and Chromium on Jessie is no longer getting
security updates?


Thanks in advance.

Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Re: Thunderbird 52.2.1 and Enigmail

[Daniel Bareiro]

Hi, Doc.

On 07/08/17 10:05, D. R. Evans wrote:

> I have been away for a week, and this morning saw that enigmail had been
> updated in my absence, so I updated all the jessie updates offered me by the
> official repositories.
> 
> This updated thunderbird and enigmail, as expected.
> 
> BUT enigmail won't run because it seems that the current update requires a
> version of gnupg that is more recent than the official version that is part of
> the repositories :-(

I don't remember having this issue. I think I just did "aptitude install
enigmail" and it installed only that package. So I assume that the
dependencies would already be satisfied with the other packages I had
installed.

root@orion:~# aptitude show gnupg | grep Versión
Versión: 1.4.18-7+deb8u3


Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Re: Thunderbird 52.2.1 and Enigmail

[Daniel Bareiro]

Hi, Jason.

On 25/07/17 21:54, Jason Wittlin-Cohen wrote:

> Sorry for the oversight.

No problem.

> I am actually running on Stretch, so I'm using
> Enigmail 1.9.7.  Perhaps someone can backport the version from Stretch
> to Jessie to resolve this issue.

It seems that it is already solved.

Thanks too, Frank, for your contribution. It seems that now it is
possible to install it without making the change in sources.list that
you had suggested.

Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Re: Thunderbird 52.2.1 and Enigmail

[Daniel Bareiro]

Hi, Paul.

On 27/07/17 08:41, Paul van der Vlis wrote:

>> I just updated Thunderbird on Jessie. Support for the 45.x series has
>> ended, so starting with this update Debian is now following the 52.x
>> releases.

> I've tried much, but it did not work. So I downgraded, this worked for me:
> 
> apt remove thunderbird icedove
> apt install thunderbird=1:45.8.0-3~deb8u1
> apt install thunderbird-l10n-nl=1:45.8.0-3~deb8u1
> apt install lightning=1:45.8.0-3~deb8u1
> apt install lightning-l10n-nl=1:45.8.0-3~deb8u1
> apt install icedove=1:45.8.0-3~deb8u1
> apt install enigmail=2:1.8.2-4~deb8u1
> apt -t jessie-backports install xul-ext-sogo-connector
> 
> And you need some kind of pinning...

Thanks for your contribution.

I see that yesterday was published the DSA-3921-1 referring to the bug
869774 talking about Enigmail 1.9.8.1 to restore full compatibility.

But I still don't see the update available. Do you see it?

Kind regards,
Daniel

Re: Thunderbird 52.2.1 and Enigmail

[Daniel Bareiro]

Hi, Doc.

On 26/07/17 11:05, D. R. Evans wrote:

>> I just updated Thunderbird on Jessie. Support for the 45.x series has
>> ended, so starting with this update Debian is now following the 52.x
>> releases.
>>
>> But after the update, Enigmail stopped working. In fact, when I go to
>> (my email account) -> Settings-> OpenGPG security, none of the buttons
>> are working. Not even "OK" to accept the changes.
>>
>> Is someone going through this too?

> Having seen your post before I was presented a few minutes ago with the
> Thunderbird update, I've refrained from applying it.
> 
> Has anyone other than Daniel applied the jessie Thunderbird update? and, if
> so, did you also lose access to enigmail? (It seems strange that there hasn't
> been a whole chorus of people chiming in to warn about the Thunderbird 
> update.)

Yesterday I filled out a bug report for this issue:

https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=869745

There several others having confirmed this bug.

For now I have uninstalled the Debian package and installed the addon
from the official site, as rpr suggested. Everything worked again after
that.


Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Re: Thunderbird 52.2.1 and Enigmail

[Daniel Bareiro]

Hi, rpr.

On 26/07/17 07:20, rpr // wrote:

> According I see, the Debian Jessie package has the version 1.8.2 for
> Enigmail:
> 
> root@orion:~# aptitude show enigmail | grep Versión
> Versión: 2:1.8.2-4~deb8u1
> 
> But this version does not seem to be compatible with Thunderbird 52 [1].
> Enigmail 1.8.2 is compatible with Thunderbird 29.0 to 46.0. That's why
> it was running on the previous packaged version of Thunderbird 45.x.

> Daniel, if I were you I would try to uninstall the enigmail package and
> then add the newest version of Enigmail addon (v. 1.9.7) directly in
> Thunderbird (Tools > Add-ons > Browse all add-ons > find Enigmail > Add
> to Thunderbird).

Yes, that's what I decided to do. Thanks for the recommendation. Now
with Enigmail 1.9.7 I can see the signatures again and access the
encrypted emails.


Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Re: Thunderbird 52.2.1 and Enigmail

[Daniel Bareiro]

Hi again, Georgi.

On 25/07/17 20:21, Daniel Bareiro wrote:

>>>> I'll try to sign this message because I have not used Enigmail for a
>>>> long time.

>>> Thanks for trying this. I appreciate it. Did you manage to sign it?

>> Yes, I signed the message, you should be able to see my signature.

> Thanks for trying. Unfortunately I am not able to see your signature. I
> also don't see the signature from other emails sent by myself nor I'm
> able to open encrypted messages that I have received. Before the upgrade

According I see, the Debian Jessie package has the version 1.8.2 for
Enigmail:

root@orion:~# aptitude show enigmail | grep Versión
Versión: 2:1.8.2-4~deb8u1

But this version does not seem to be compatible with Thunderbird 52 [1].
Enigmail 1.8.2 is compatible with Thunderbird 29.0 to 46.0. That's why
it was running on the previous packaged version of Thunderbird 45.x.

So it looks like we have a problem here.

Kind regards,
Daniel

[1]
https://addons.mozilla.org/es/thunderbird/addon/enigmail/versions/?page=1#version-1.8.2

Re: Thunderbird 52.2.1 and Enigmail

[Daniel Bareiro]

Hi, Jason.

Thanks for your reply. But please respond to the list so that we can all
take advantage of the contribution.

On 25/07/17 18:54, Jason Wittlin-Cohen wrote:

> I'm not seeing the behavior you described with Thunderbird + Enigmail.

Thats weird. Are you using Debian Jessie packages for both?


Thanks again for your reply.

Kind regards,
Daniel

Re: Thunderbird 52.2.1 and Enigmail

[Daniel Bareiro]

Hi, Georgi.

On 25/07/17 19:26, Georgi Naplatanov wrote:

>>> I'll try to sign this message because I have not used Enigmail for a
>>> long time.

>> Thanks for trying this. I appreciate it. Did you manage to sign it?

> Yes, I signed the message, you should be able to see my signature.

Thanks for trying. Unfortunately I am not able to see your signature. I
also don't see the signature from other emails sent by myself nor I'm
able to open encrypted messages that I have received. Before the upgrade
it worked without problems.

>> I'm not sure if this is some incompatibility between the Debian versions
>> for Thunderbird and Enigmail.

> I'm not sure either. I saw standard dialog box for crash report several
> times on my computer but I didn't see anything odd and therefor I didn't
> create bug report.

Yes, I've also filled the Thunderbird report dialog box every time
Thunderbird crashed. But I meant an incompatibility between Thunderbird
and Enignail for the issue I mentioned in this thread, considering it as
something independent of Thunderbird crashes.


Thanks for your time.

Kind regards,
Daniel

Re: Thunderbird 52.2.1 and Enigmail

[Daniel Bareiro]

On 25/07/17 18:23, Georgi Naplatanov wrote:

>> I just updated Thunderbird on Jessie. Support for the 45.x series has
>> ended, so starting with this update Debian is now following the 52.x
>> releases.
>>
>> But after the update, Enigmail stopped working. In fact, when I go to
>> (my email account) -> Settings-> OpenGPG security, none of the buttons
>> are working. Not even "OK" to accept the changes.
>>
>> Is someone going through this too?
>>
>>
>> Thanks in advance.

> Hi Daniel,

Hi, Georgi.

> I'm not sure what happens with Thunderbird in Debian but I had crashes
> almost daily with both - Jessie and Stretch and at the end I downloaded
> latest version from mozilla.org.

Yes, I also experienced that behavior. Then the frequency of occurrence
diminished, but in any case I continued observing this crashes.

> I'll try to sign this message because I have not used Enigmail for a
> long time.

Thanks for trying this. I appreciate it. Did you manage to sign it?

I'm not sure if this is some incompatibility between the Debian versions
for Thunderbird and Enigmail.


Kind regards,
Daniel

Thunderbird 52.2.1 and Enigmail

[Daniel Bareiro]

Hi all!

I just updated Thunderbird on Jessie. Support for the 45.x series has
ended, so starting with this update Debian is now following the 52.x
releases.

But after the update, Enigmail stopped working. In fact, when I go to
(my email account) -> Settings-> OpenGPG security, none of the buttons
are working. Not even "OK" to accept the changes.

Is someone going through this too?


Thanks in advance.

Kind regards,
Daniel

Re: Issue with notebook (maybe the battery?)

[Daniel Bareiro]

Hi, David.

On 24/05/17 22:23, David Wright wrote:

>> When you talk about "the numbers", do you mean to see by the console the
>> values that are obtained for both batteries (voltage, for example) to
>> make a comparison?

> Yes, the bash function I use is:
> 
> battery () 
> { 
> local BATTERYFILE="/sys/class/power_supply/BAT0/uevent";
> [ ! -r $BATTERYFILE ] && printf '%s\n' "$BATTERYFILE not found!" && 
> return 1;
> date +%Y-%m-%d-%H-%M-%S;
> cat $BATTERYFILE;
> local FILEBATNOW="/sys/class/power_supply/BAT0/charge_now";
> local FILEBATPREV="/sys/class/power_supply/BAT0/charge_full";
> local CHARGE=$(( 100 * $(< $FILEBATNOW) / $(< $FILEBATPREV) ));
> [ $CHARGE -lt 100 ] && printf '%s\n' "Charge: $CHARGE%"
> }

Interesting... thanks for sharing :-)

I had to modify it because in my case I don't have "BAT0/charge_full"
and "BAT0/charge_now". I have "BAT0/energy_now" and "BAT0/energy_full".
Maybe you're using Stretch or a Backports kernel?

> AIUI uevent gives you the lot, which varies by model etc.
> so just   cat /sys/class/power_supply/BAT0/uevent
> should do it, with and without the power supply connected.

Sending the values to a file, I then graphed them using GNUPlot. A
picture tells more than thousands of words :-) It is interesting to see
how the charging curve describes almost a perfect straight line
and then begins to decelerate as it approaches 100%.

https://ibin.co/3Ny1TPsm9oNn.png

> (I run a slightly more sophisticated version that also
> reads the CPU temperature, has error trapping, and changes
> the root window colour according to battery state and,
> if frying, temperature.)

It would be interesting to see it :-)


Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Re: Issue with SASL authentication

[Daniel Bareiro]

Hi again!

On 24/05/17 21:21, Daniel Bareiro wrote:

>>> I am configuring SASL to authenticate against IMAP. When I try to
>>> authenticate, I get an error:
>>>
>>> --
>>> root@Wserver2:~# saslpasswd2 -c daniel
>>> --
>>> root@Wserver2:~# testsaslauthd -u daniel -p password
>>> 0: NO "authentication failed"
>>> --
>>>
>>> However it works when I provide the realm:
>>>
>>> --
>>> root@Wserver2:~# testsaslauthd -u daniel -r server2 -p password
>>> 0: OK "Success."
>>> --
>>>
>>> It's strange because I have another server where it works without problems:
>>>
>>> --
>>> root@mail:~# testsaslauthd -u daniel -p password
>>> 0: OK "Success."
>>> --
>>>
>>> Both hosts have Debian Jessie and the SASL configuration is the same:
>>>
>>> --
>>> root@mail:~# grep ^[^#] /etc/default/saslauthd
>>> START=yes
>>> DESC="SASL Authentication Daemon"
>>> NAME="saslauthd"
>>> MECHANISMS="sasldb"
>>> MECH_OPTIONS=""
>>> THREADS=5
>>> OPTIONS="-c -m /var/run/saslauthd"
>>> --
>>> root@server2:~# grep ^[^#] /etc/default/saslauthd
>>> START=yes
>>> DESC="SASL Authentication Daemon"
>>> NAME="saslauthd"
>>> MECHANISMS="sasldb"
>>> MECH_OPTIONS=""
>>> THREADS=5
>>> OPTIONS="-c -m /var/run/saslauthd"
>>> --
>>>
>>> "mail" has some updates to apply, but I do not see any differences in
>>> the versions of the SASL packages:
>>>
>>> --
>>> root@mail:~# aptitude show libsasl2-2 | grep Versión
>>> Versión: 2.1.26.dfsg1-13+deb8u1
>>>
>>> root@mail:~# aptitude show libsasl2-modules | grep Versión
>>> Versión: 2.1.26.dfsg1-13+deb8u1
>>>
>>> root@mail:~# aptitude show sasl2-bin | grep Versión
>>> Versión: 2.1.26.dfsg1-13+deb8u1
>>> --
>>>
>>> --
>>> root@server2:~# aptitude show libsasl2-2 | grep Version
>>> Version: 2.1.26.dfsg1-13+deb8u1
>>>
>>> root@server2:~# aptitude show libsasl2-modules | grep Version
>>> Version: 2.1.26.dfsg1-13+deb8u1
>>>
>>> root@server2:~# aptitude show sasl2-bin | grep Version
>>> Version: 2.1.26.dfsg1-13+deb8u1
>>> --
>>>
>>> In this case I'm not doing the authentication test against IMAP but
>>> directly against SASL, so I guess the problem will be directly related
>>> to the SASL configuration itself.
>>>
>>> Any thoughts about what might differ between the two environments?

>> In case it is useful, when the authentication fails I get this in
>> /var/log/auth.log:
>>
>> --
>> May 24 15:31:38 server2 saslauthd[2701]: do_auth : auth failure:
>> [user=daniel] [service=imap] [realm=] [mech=sasldb] [reason=Unknown]
>> --
>>
>> It seems that authentication is done through IMAP and I have previously
>> installed the Cyrus packages.

> Apparently, despite this difference, the SASL authentication via IMAP is
> working.
> 
> /var/log/mail.log:
> 
> --
> May 24 19:38:51 server2 cyrus/imaps[3711]: starttls: TLSv1.2 with cipher
> ECDHE-RSA-AES128-SHA (128/128 bits new) no authentication
> May 24 19:38:51 server2 cyrus/imaps[3711]: login: host.domain.tld.net
> [x.y.z.t] daniel CRAM-MD5+TLS User logged in
> SESSIONID=
> May 24 19:38:51 server2 cyru

Re: Issue with notebook (maybe the battery?)

[Daniel Bareiro]

Hi, David.

On 24/05/17 21:22, David Wright wrote:

 Yes, as I mentioned in another message in this thread, I have already
 contacted the supplier to go asking for availability and prices.

>>> I'll cross my fingers for you. Please do likewise as these are
>>> the figures from one of my laptops:
>>>
>>> Charger in:
>>> POWER_SUPPLY_CHARGE_FULL_DESIGN=380
>>> POWER_SUPPLY_CHARGE_FULL=872000
>>> POWER_SUPPLY_CHARGE_NOW=380
>>>
>>> Charger out:
>>> POWER_SUPPLY_CHARGE_FULL_DESIGN=380
>>> POWER_SUPPLY_CHARGE_FULL=872000
>>> POWER_SUPPLY_CHARGE_NOW=828000
>>>
>>> IOW my baseline after 8 years is about 20% capacity.

>> Sorry for my delay in responding.
>>
>> I'll cross my fingers for you, David. How did your laptop battery continue?

> Nowadays this battery merely acts like an UPS because the laptop
> has to be plumbed in to a monitor to be usable (or else used over
> ssh). As reported earlier, there's a fault in the screen circuitry
> which means it's not really a portable anymore.
> https://lists.debian.org/debian-user/2017/04/msg00533.html

Ah, I see..

>> Just yesterday I took my notebook to the provider to test with a new
>> battery. He said that today he will be contacting me to let me know the
>> result of the test.
>>
>> I'll let you know when I have news. Something I can add since my last
>> update to the mailing list is that the battery charge level with the
>> charger connected was gradually falling. At the time I took it to the
>> provider I had 18%.

> It would certainly be interesting to see the numbers from a new
> battery if you buy one. I've never owned a laptop (or any other
> computer, for that matter) from new.

Today the supplier sent me an email telling me that they tested with the
new battery, and it operates perfectly. They left the new battery
without power connected, and it operated with correct autonomy. They
checked the battery's power levels from the terminal and it reached the
maximum load limit correctly and then it was decreasing normally.

When you talk about "the numbers", do you mean to see by the console the
values that are obtained for both batteries (voltage, for example) to
make a comparison?


Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Re: Issue with SASL authentication

[Daniel Bareiro]

Hi!

On 24/05/17 15:37, Daniel Bareiro wrote:

>> I am configuring SASL to authenticate against IMAP. When I try to
>> authenticate, I get an error:
>>
>> --
>> root@Wserver2:~# saslpasswd2 -c daniel
>> --
>> root@Wserver2:~# testsaslauthd -u daniel -p password
>> 0: NO "authentication failed"
>> --
>>
>> However it works when I provide the realm:
>>
>> --
>> root@Wserver2:~# testsaslauthd -u daniel -r server2 -p password
>> 0: OK "Success."
>> --
>>
>> It's strange because I have another server where it works without problems:
>>
>> --
>> root@mail:~# testsaslauthd -u daniel -p password
>> 0: OK "Success."
>> --
>>
>> Both hosts have Debian Jessie and the SASL configuration is the same:
>>
>> --
>> root@mail:~# grep ^[^#] /etc/default/saslauthd
>> START=yes
>> DESC="SASL Authentication Daemon"
>> NAME="saslauthd"
>> MECHANISMS="sasldb"
>> MECH_OPTIONS=""
>> THREADS=5
>> OPTIONS="-c -m /var/run/saslauthd"
>> --
>> root@server2:~# grep ^[^#] /etc/default/saslauthd
>> START=yes
>> DESC="SASL Authentication Daemon"
>> NAME="saslauthd"
>> MECHANISMS="sasldb"
>> MECH_OPTIONS=""
>> THREADS=5
>> OPTIONS="-c -m /var/run/saslauthd"
>> --
>>
>> "mail" has some updates to apply, but I do not see any differences in
>> the versions of the SASL packages:
>>
>> --
>> root@mail:~# aptitude show libsasl2-2 | grep Versión
>> Versión: 2.1.26.dfsg1-13+deb8u1
>>
>> root@mail:~# aptitude show libsasl2-modules | grep Versión
>> Versión: 2.1.26.dfsg1-13+deb8u1
>>
>> root@mail:~# aptitude show sasl2-bin | grep Versión
>> Versión: 2.1.26.dfsg1-13+deb8u1
>> --
>>
>> --
>> root@server2:~# aptitude show libsasl2-2 | grep Version
>> Version: 2.1.26.dfsg1-13+deb8u1
>>
>> root@server2:~# aptitude show libsasl2-modules | grep Version
>> Version: 2.1.26.dfsg1-13+deb8u1
>>
>> root@server2:~# aptitude show sasl2-bin | grep Version
>> Version: 2.1.26.dfsg1-13+deb8u1
>> --
>>
>> In this case I'm not doing the authentication test against IMAP but
>> directly against SASL, so I guess the problem will be directly related
>> to the SASL configuration itself.
>>
>> Any thoughts about what might differ between the two environments?

> In case it is useful, when the authentication fails I get this in
> /var/log/auth.log:
> 
> --
> May 24 15:31:38 server2 saslauthd[2701]: do_auth : auth failure:
> [user=daniel] [service=imap] [realm=] [mech=sasldb] [reason=Unknown]
> --
> 
> It seems that authentication is done through IMAP and I have previously
> installed the Cyrus packages.

Apparently, despite this difference, the SASL authentication via IMAP is
working.

/var/log/mail.log:

--
May 24 19:38:51 server2 cyrus/imaps[3711]: starttls: TLSv1.2 with cipher
ECDHE-RSA-AES128-SHA (128/128 bits new) no authentication
May 24 19:38:51 server2 cyrus/imaps[3711]: login: host.domain.tld.net
[x.y.z.t] daniel CRAM-MD5+TLS User logged in
SESSIONID=
May 24 19:38:51 server2 cyrus/imaps[3711]: created decompress buffer of
4102 bytes
May 24 19:38:51 server2 cyrus/imaps[3711]: created compress buffer of
4102 bytes
May 24 19:38:51 server2 cyrus/imaps[3711]: client id: "name"
"Thunderbird" "version" "45.8.0"
May 24 19:38:53 server2 cyrus/master[3800]: about to exec
/usr/lib/cyrus/bin/imapd
May 24 19:38:53 server2 cyrus/imaps[3800]: execute

Re: Issue with SASL authentication

[Daniel Bareiro]

Hi again.

On 24/05/17 10:57, Daniel Bareiro wrote:

> I am configuring SASL to authenticate against IMAP. When I try to
> authenticate, I get an error:
> 
> --
> root@Wserver2:~# saslpasswd2 -c daniel
> --
> root@Wserver2:~# testsaslauthd -u daniel -p password
> 0: NO "authentication failed"
> --
> 
> However it works when I provide the realm:
> 
> --
> root@Wserver2:~# testsaslauthd -u daniel -r server2 -p password
> 0: OK "Success."
> --
> 
> It's strange because I have another server where it works without problems:
> 
> --
> root@mail:~# testsaslauthd -u daniel -p password
> 0: OK "Success."
> --
> 
> Both hosts have Debian Jessie and the SASL configuration is the same:
> 
> --
> root@mail:~# grep ^[^#] /etc/default/saslauthd
> START=yes
> DESC="SASL Authentication Daemon"
> NAME="saslauthd"
> MECHANISMS="sasldb"
> MECH_OPTIONS=""
> THREADS=5
> OPTIONS="-c -m /var/run/saslauthd"
> --
> root@server2:~# grep ^[^#] /etc/default/saslauthd
> START=yes
> DESC="SASL Authentication Daemon"
> NAME="saslauthd"
> MECHANISMS="sasldb"
> MECH_OPTIONS=""
> THREADS=5
> OPTIONS="-c -m /var/run/saslauthd"
> --
> 
> "mail" has some updates to apply, but I do not see any differences in
> the versions of the SASL packages:
> 
> --
> root@mail:~# aptitude show libsasl2-2 | grep Versión
> Versión: 2.1.26.dfsg1-13+deb8u1
> 
> root@mail:~# aptitude show libsasl2-modules | grep Versión
> Versión: 2.1.26.dfsg1-13+deb8u1
> 
> root@mail:~# aptitude show sasl2-bin | grep Versión
> Versión: 2.1.26.dfsg1-13+deb8u1
> --
> 
> --
> root@server2:~# aptitude show libsasl2-2 | grep Version
> Version: 2.1.26.dfsg1-13+deb8u1
> 
> root@server2:~# aptitude show libsasl2-modules | grep Version
> Version: 2.1.26.dfsg1-13+deb8u1
> 
> root@server2:~# aptitude show sasl2-bin | grep Version
> Version: 2.1.26.dfsg1-13+deb8u1
> --
> 
> In this case I'm not doing the authentication test against IMAP but
> directly against SASL, so I guess the problem will be directly related
> to the SASL configuration itself.
> 
> Any thoughts about what might differ between the two environments?

In case it is useful, when the authentication fails I get this in
/var/log/auth.log:

--
May 24 15:31:38 server2 saslauthd[2701]: do_auth : auth failure:
[user=daniel] [service=imap] [realm=] [mech=sasldb] [reason=Unknown]
--

It seems that authentication is done through IMAP and I have previously
installed the Cyrus packages.

Thanks in advance,

Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Issue with SASL authentication

[Daniel Bareiro]

Hi all!

I am configuring SASL to authenticate against IMAP. When I try to
authenticate, I get an error:

--
root@Wserver2:~# saslpasswd2 -c daniel
--
root@Wserver2:~# testsaslauthd -u daniel -p password
0: NO "authentication failed"
--

However it works when I provide the realm:

--
root@Wserver2:~# testsaslauthd -u daniel -r server2 -p password
0: OK "Success."
--

It's strange because I have another server where it works without problems:

--
root@mail:~# testsaslauthd -u daniel -p password
0: OK "Success."
--

Both hosts have Debian Jessie and the SASL configuration is the same:

--
root@mail:~# grep ^[^#] /etc/default/saslauthd
START=yes
DESC="SASL Authentication Daemon"
NAME="saslauthd"
MECHANISMS="sasldb"
MECH_OPTIONS=""
THREADS=5
OPTIONS="-c -m /var/run/saslauthd"
--
root@server2:~# grep ^[^#] /etc/default/saslauthd
START=yes
DESC="SASL Authentication Daemon"
NAME="saslauthd"
MECHANISMS="sasldb"
MECH_OPTIONS=""
THREADS=5
OPTIONS="-c -m /var/run/saslauthd"
--

"mail" has some updates to apply, but I do not see any differences in
the versions of the SASL packages:

--
root@mail:~# aptitude show libsasl2-2 | grep Versión
Versión: 2.1.26.dfsg1-13+deb8u1

root@mail:~# aptitude show libsasl2-modules | grep Versión
Versión: 2.1.26.dfsg1-13+deb8u1

root@mail:~# aptitude show sasl2-bin | grep Versión
Versión: 2.1.26.dfsg1-13+deb8u1
--

--
root@server2:~# aptitude show libsasl2-2 | grep Version
Version: 2.1.26.dfsg1-13+deb8u1

root@server2:~# aptitude show libsasl2-modules | grep Version
Version: 2.1.26.dfsg1-13+deb8u1

root@server2:~# aptitude show sasl2-bin | grep Version
Version: 2.1.26.dfsg1-13+deb8u1
--

In this case I'm not doing the authentication test against IMAP but
directly against SASL, so I guess the problem will be directly related
to the SASL configuration itself.

Any thoughts about what might differ between the two environments?


Thanks in advance.

Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Re: Issue with notebook (maybe the battery?)

[Daniel Bareiro]

Hi, David.

On 28/03/17 16:24, David Wright wrote:

>> Yes, as I mentioned in another message in this thread, I have already
>> contacted the supplier to go asking for availability and prices.

> I'll cross my fingers for you. Please do likewise as these are
> the figures from one of my laptops:
> 
> Charger in:
> POWER_SUPPLY_CHARGE_FULL_DESIGN=380
> POWER_SUPPLY_CHARGE_FULL=872000
> POWER_SUPPLY_CHARGE_NOW=380
> 
> Charger out:
> POWER_SUPPLY_CHARGE_FULL_DESIGN=380
> POWER_SUPPLY_CHARGE_FULL=872000
> POWER_SUPPLY_CHARGE_NOW=828000
> 
> IOW my baseline after 8 years is about 20% capacity.

Sorry for my delay in responding.

I'll cross my fingers for you, David. How did your laptop battery continue?

Just yesterday I took my notebook to the provider to test with a new
battery. He said that today he will be contacting me to let me know the
result of the test.

I'll let you know when I have news. Something I can add since my last
update to the mailing list is that the battery charge level with the
charger connected was gradually falling. At the time I took it to the
provider I had 18%.


Many thanks to all who responded to me for the interest and time.

Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Re: [OT] Re: Issue with notebook (maybe the battery?)

[Daniel Bareiro]

Hi, Joe an Tomás.

> Do you think the problem might be in the charger?  

 Yes, certainly. That's why I said it's difficult to know what's
 going on without either a known good battery or a known good
 charger. You'd better hope it's the battery, as that is easy to
 fix...  

>>> But in any case, whether the problem is in the charger or the
>>> battery, I suppose that to solve the issue I will have to change the
>>> part. I suppose if the problem is in the charger, the cost will be
>>> less compared to a battery.

>> Yes, but it is unlikely that a schematic diagram of the laptop
>> motherboard will be available. It shouldn't be too hard to locate the
>> parts used in charging, but if the main IC is faulty, it may not be
>> available in your part of the world [...]

> It's worth stressing on this point, since I've the suspicion that there
> is a misunderstanding on your part, Daniel: the charge controller isn't
> that external brick: that is probably just a more or less dumb power
> source. The charge controller is buried somewhere in your laptop (as
> Joe puts it, on the laptop's motherboard).

Yes, now that he talked about the schematic of the motherboard, I see
that he was referring to some internal component of the notebook. Thanks
for pointing this out, Tomás :-)

And about that:

> > Lots of contacts. It is possible that the battery electronics can
> > tell if it is correctly seated in the right model laptop, and will
> > not supply power if that is not the case. For your safety, of
> > course.

It could be a possibility...

Next week I'll take the notebook to the supplier for the test with a new
battery. They offered doing tests with a new battery for an entire day.
I think I'm going to suggest them to use a liveCD as System Rescue CD or
something like that, since the disk is encrypted. Although I'm not sure
if they will feel comfortable using GNU/Linux (and I don't know if there
is liveCD's with Windows).


Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Re: Issue with notebook (maybe the battery?)

[Daniel Bareiro]

Hi, David.

On 27/03/17 00:08, David Wright wrote:

>>> Complete discharge is instantly fatal, they can never wake up again.
>>> All lithium cells have rudimentary electronics to cut off discharge
>>> earlier than this, typically 2.8-3.0V per cell. Charging is relatively
>>> complex, constant current of about half capacity to around 4.1V, then
>>> constant voltage to fairly precise 4.2V, then when the current drops
>>> below a certain level, cutoff.
>>>
>>> It should be possible to leave a lithium battery permanently connected
>>> to the charger. No 'trickle charge' will occur, no additional current
>>> will flow until the cell voltage drops by a certain amount. But full
>>> charge is not recommended for long-term storage.
>>>
>>> Yes, I had to build a lithium battery into something a few years ago,
>>> I had to learn how to charge it. 

>> Thank you for sharing these interesting comments. I think some time I've
>> inadvertently consumed the entire battery charge (although this was
>> something that happened a long time ago, I think). Perhaps the
>> recommendation to avoid this is to check the "Enable Power Management"
>> option in KDE.

> I didn't know you could. I thought the battery would stop supplying
> current before that happened. I was under the impression that to get
> any lower, you had to leave it empty so it could self-discharge.
> 
> I ran a laptop on a faulty battery for 17 months. Throughout that
> period, the charge indicator flashed four yellows and a green. Apart
> from running down quite quickly, there were no other signs of
> distress. About a week before it finally gave up the ghost, I had the
> same behaviour as yours: removing the power cable would kill the laptop.
> 
> The battery itself had a charge indicator when you pressed a button,
> lighting a steady line of one to five LEDs. When it died, just the
> 2nd and 4th LEDs flashed on and off instead, and the laptop wouldn't
> run at all.
> 
> Fortunately, I had a spare (smaller) battery of the same vintage which
> is still going. (I won't say still going strong.) The laptop is also
> showing its age: the display gives problems most of the time so I run
> it hooked up to a monitor.

Thank you for sharing these experiences. In my previous email I was
talking about a full discharge because that's what I thought happened
when I saw the KDE charge indicator after I plugged in the charger once
the notebook shut down abruptly because I did not have enable the
"Enable Power Management" option of KDE. That's why I thought that it
would avoid that situation happens again

>> Do you think that of the information I showed in
>> /sys/class/power_supply/BAT0/uevent or
>> /org/freedesktop/UPower/devices/battery_BAT0 can be detected any
>> electrical problem with the battery?

> The only obvious oddity I can see is POWER_SUPPLY_STATUS=Unknown but
> I'm not sure I haven't seen that myself in the past, though probably
> only momentarily. But the voltages you see are a bit suspicious.
> 
> I just ran this same laptop down to 7% capacity (takes about 20 minutes)
> and it was down at 10.797 volts. On reconnecting the power, it rose to
> 11.7 volts within, say, 15 seconds (but still reading 7% of course).
> So the low voltage you see with the charger attached might suggest
> that the battery is loading the charger somewhat. (Unfortunately you
> don't appear to get current amps, which may be related to Unknown above.)

I was observing these values:


$ upower -i /org/freedesktop/UPower/devices/battery_BAT0
(...)
  battery
(...)
percentage:  37%
capacity:81,5333%
(...)


But I'm not sure if that will be indicator of something. "Percentage"
seems to be the battery charge level. Looking at the upower
documentation I found this [1]:

The "Percentage" property: The amount of energy left in the power source
expressed as a percentage between 0 and 100. Typically this is the same
as (energy - energy-empty) / (energy-full - energy-empty). However, some
primitive power sources are capable of only reporting percentages and in
this case the energy-* properties will be unset while this property is set.

The "Capacity" property: The capacity of the power source expressed as a
percentage between 0 and 100. The capacity of the battery will reduce
with age. A capacity value less than 75% is usually a sign that you
should renew your battery. Typically this value is the same as
(full-design / full) * 100. However, some primitive power sources are
not capable reporting capacity and in this case the capacity property
will be unset.

I was comparing the values with those of the original battery:


# upower -i /org/freedesktop/UPower/devices/battery_BAT0
  native-path:

Re: Issue with notebook (maybe the battery?)

[Daniel Bareiro]

Hi, Joe.

On 27/03/17 16:01, Joe wrote:

 I remember that when I bought this battery, I was advised to leave
 the charger plugged in for a little more than an hour after the
 charging level reaches 100%. And for the subsequent times, try to
 avoid having the charger plugged in when the battery charge level
 reaches 100%. So I was following that criteria. What do you think
 about that?  

>>> I would hesitate to contradict a supplier, but a lithium battery
>>> charger should not permit overcharging. It *must* not, as there is a
>>> serious risk of fire or explosion, not just a reduction of life as
>>> will occur with other types. The maximum charge voltage must be a
>>> fairly precise 4.20V per cell, and really the only practical way to
>>> charge these batteries is to use one of many specialised integrated
>>> circuits designed to do just that.  

>> I think he made that recommendation about disconnecting the charger
>> when the charge reaches 100% because he thought otherwise would
>> affect the battery life.

> As I say, it shouldn't. Lithium chargers don't provide a continuous
> trickle charge. Various sources on the Net claim that life will be
> longer if you never fully-charge the battery, but with a laptop, you're
> always going to be looking for maximum running time. Supposedly it's
> best to store the battery for long periods half-charged, but then
> whenever you need to use the laptop, you have about an hour to wait for
> full charge. You can't win.

Thank you for these observations.

>> Very interesting what you mention in these paragraphs. So in this
>> case a measurement on the battery would have to give a voltage
>> between 3.0V and 4.1V per cell if the battery works correctly?

> Pretty much. The discharge protection should come in about 3V, but
> might allow discharge a bit further. There is little energy left in the
> cell at 3V. Here's a set of discharge curves at various currents:
> 
> http://www.richtek.com/battery-management/img/battery-discharge.png

Thanks for the clarification.

>>> Yes. The problem is that it's not possible to rig up a quick
>>> charging test for lithium, or a dummy battery load to check the
>>> charger. With other technologies, a current source powered from a
>>> higher voltage, with a voltmeter, would give some idea of the
>>> battery state.   

>> Do you think the problem might be in the charger?

> Yes, certainly. That's why I said it's difficult to know what's going
> on without either a known good battery or a known good charger. You'd
> better hope it's the battery, as that is easy to fix...

But in any case, whether the problem is in the charger or the battery, I
suppose that to solve the issue I will have to change the part. I
suppose if the problem is in the charger, the cost will be less compared
to a battery.

>> At the beginning I had thought that maybe not since the notebook 
>> works when it is connected. Although perhaps it could be that if the
>> electronics that manages the phases that you mentioned before is
>> physically in the charger, the problem is in the charger.

> The external power for the laptop is separate from the charger
> electronics. The charger must supply a defined current, and if some of
> this were diverted to run the laptop, it would be difficult for the
> charger to monitor the state of the battery. So the external power is
> supplied to two paths, to the laptop electronics and to the charger,
> with laptop power being taken from the battery when the external power
> is not present.

If I understood correctly, I think that here you was suggested that it
could also be a problem related to another internal component of the
notebook that diverts power from the charger to the battery for its charge.

 Perhaps the ultimate test is going to a business where they have
 original Lenovo components, ask them for a new battery to test it
 at the moment with the notebook and, if all goes well, then buy
 it.  

>>> Sadly, that's the only real test.  
>>
>> Earlier I telephoned the supplier where I bought this battery and he
>> offered to test (without cost) my notebook with a new battery for a
>> full charge cycle to make sure the problem was in the battery.

> You are lucky. Many suppliers have neither the equipment nor the
> willingness to help after the warranty period.

Yes, it is good that they have had that good predisposition. In fact,
when I talked to them on the phone, I told them that if I saw that when
I plugged in the charger, the charge led behaves correctly, I could
assume the issue was on the battery and that would make the test a
little quick. But the person I spoke insisted on doing a full load cycle
so they would be reassured that everything works fine. Going there and
back takes me at least three hours (plus the the time awaiting for full
charge of the battery) so the trip would be a pain (not to mention go to
leave the notebook for the test, go back, and go later for it). The

Re: Issue with notebook (maybe the battery?)

[Daniel Bareiro]

Hi, Joe.

 Checking the purchase invoices, I bought the notebook on September
 19, 2013, and then changed the battery on November 2, 2015. So
 less than two years ago I have this battery.

 The notebook I use it practically every day and I leave it
 sleeping from one day to the next so I do not have to open every
 application every time. I'm not sure if that impacts so much on
 the battery life.  

>>> If it was a long term degradation, possibly. With some battery
>>> technology/technologies(?) there is a "memory" effect. If there is a
>>> repeated "shallow discharge"/recharge cycle ( sleep overnight
>>> followed by running during day with charger plugged in) the
>>> effective battery capacity will decrease. IIRC that applies to only
>>> one technology but can't remember which.  

>> I remember that when I bought this battery, I was advised to leave the
>> charger plugged in for a little more than an hour after the charging
>> level reaches 100%. And for the subsequent times, try to avoid having
>> the charger plugged in when the battery charge level reaches 100%. So
>> I was following that criteria. What do you think about that?

> I would hesitate to contradict a supplier, but a lithium battery
> charger should not permit overcharging. It *must* not, as there is a
> serious risk of fire or explosion, not just a reduction of life as
> will occur with other types. The maximum charge voltage must be a fairly
> precise 4.20V per cell, and really the only practical way to charge
> these batteries is to use one of many specialised integrated circuits
> designed to do just that.

I think he made that recommendation about disconnecting the charger when
the charge reaches 100% because he thought otherwise would affect the
battery life.

> There's a time sequence: first, with a completely discharged battery,
> which will have been disconnected by its own internal electronics, a
> significant current charge is given and the cell voltage monitored
> (calculated for a multi-cell battery). If it does not exceed 3.0V
> within a few minutes, the charger gives up and produce an error signal,
> the battery is faulty. If all is well, the recommended charge current
> for the cells, normally about half the capacity i.e. about a two-hour
> charge, is applied until the voltage reaches about 4.1V/cell, when the
> charger switches to a third mode to bring the output voltage to
> precisely 4.2V. During this mode, as the cell reaches full charge, the
> current drops away and when a particular value is reached, the charger
> cuts off. No further charge will be applied until usage or
> self-discharge of the cell reduces the voltage to below about 4.1V. If
> a charger is connected to a battery that is already charged to between
> 3.0V and 4.1V per cell, phase two is immediately started, and if the
> cell voltage is already between 4.1V and 4.2V, nothing will happen.
> There is no continuous trickle-charge mode. Assuming, of course, the
> charger is designed properly, and with a specialised IC, this is pretty
> much guaranteed.
>
> So a lot of warnings about overcharging, memory effect, about removing
> the battery when external power is used, and suchlike, are hangovers
> from the days of nickel battery technologies, and don't apply to
> lithium. Conversely, the charger has to be matched to the battery
> capacity, and there's no way to charge lithium batteries with any kind
> of general-purpose charger, you need the supplier's own charger, which
> may be built-in to the appliance.

Very interesting what you mention in these paragraphs. So in this case a
measurement on the battery would have to give a voltage between 3.0V and
4.1V per cell if the battery works correctly?

 But in any case, in all this time, whenever the battery was
 charged, the charge level was up to 100%. So just since yesterday
 I suddenly saw that the load stayed at 38% and I started to
 experience this issue.  

>>> That makes me think of a component failure. Likely the battery, but
>>> conceivably something in the laptop.

> Yes. The problem is that it's not possible to rig up a quick charging
> test for lithium, or a dummy battery load to check the charger. With
> other technologies, a current source powered from a higher voltage,
> with a voltmeter, would give some idea of the battery state. 

Do you think the problem might be in the charger? At the beginning I had
thought that maybe not since the notebook works when it is connected.
Although perhaps it could be that if the electronics that manages the
phases that you mentioned before is physically in the charger, the
problem is in the charger.

>> Perhaps the ultimate test is going to a business where they have
>> original Lenovo components, ask them for a new battery to test it at
>> the moment with the notebook and, if all goes well, then buy it.

> Sadly, that's the only real test.

Earlier I telephoned the supplier where I bought this battery and he
offered 

Re: Issue with notebook (maybe the battery?)

[Daniel Bareiro]

Hi, Tomás and Joe.

On 26/03/17 07:49, Joe wrote:

 [snip]

 Checking the purchase invoices, I bought the notebook on September
 19, 2013, and then changed the battery on November 2, 2015. So
 less than two years ago I have this battery.

 The notebook I use it practically every day and I leave it
 sleeping from one day to the next so I do not have to open every
 application every time. I'm not sure if that impacts so much on
 the battery life.  

>>> If it was a long term degradation, possibly. With some battery
>>> technology/technologies(?) there is a "memory" effect. If there is a
>>> repeated "shallow discharge"/recharge cycle ( sleep overnight
>>> followed by running during day with charger plugged in) the
>>> effective battery capacity will decrease. IIRC that applies to only
>>> one technology but can't remember which.  

>> That would be the nickel family (NiMH and its predecessors). Laptops
>> changed long ago (I'd venture somewhere in the 90-ies) to Li-whatever.

> Lithium isn't particularly sensitive to state and depth of charge,
> apparently the optimal long-term storage state is about half-charge.

>> Those have other weak spots: overcharging shortens their lives,
>> especially being overcharged *and* higher temps. More overcharging
>> leads to fireworks. They *need* some electronics to take care of
>> that. Deep discharge is also fatal to their lifetimes.

> Complete discharge is instantly fatal, they can never wake up again.
> All lithium cells have rudimentary electronics to cut off discharge
> earlier than this, typically 2.8-3.0V per cell. Charging is relatively
> complex, constant current of about half capacity to around 4.1V, then
> constant voltage to fairly precise 4.2V, then when the current drops
> below a certain level, cutoff.
> 
> It should be possible to leave a lithium battery permanently connected
> to the charger. No 'trickle charge' will occur, no additional current
> will flow until the cell voltage drops by a certain amount. But full
> charge is not recommended for long-term storage.
> 
> Yes, I had to build a lithium battery into something a few years ago,
> I had to learn how to charge it. 

Thank you for sharing these interesting comments. I think some time I've
inadvertently consumed the entire battery charge (although this was
something that happened a long time ago, I think). Perhaps the
recommendation to avoid this is to check the "Enable Power Management"
option in KDE.

Do you think that of the information I showed in
/sys/class/power_supply/BAT0/uevent or
/org/freedesktop/UPower/devices/battery_BAT0 can be detected any
electrical problem with the battery?


Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Re: Issue with notebook (maybe the battery?)

[Daniel Bareiro]

Hi, Richard.

On 26/03/17 06:46, Richard Owlett wrote:

>> [snip]
>>
>> Checking the purchase invoices, I bought the notebook on September 19,
>> 2013, and then changed the battery on November 2, 2015. So less than two
>> years ago I have this battery.
>>
>> The notebook I use it practically every day and I leave it sleeping from
>> one day to the next so I do not have to open every application every
>> time. I'm not sure if that impacts so much on the battery life.

> If it was a long term degradation, possibly. With some battery
> technology/technologies(?) there is a "memory" effect. If there is a
> repeated "shallow discharge"/recharge cycle ( sleep overnight followed
> by running during day with charger plugged in) the effective battery
> capacity will decrease. IIRC that applies to only one technology but
> can't remember which.

I remember that when I bought this battery, I was advised to leave the
charger plugged in for a little more than an hour after the charging
level reaches 100%. And for the subsequent times, try to avoid having
the charger plugged in when the battery charge level reaches 100%. So I
was following that criteria. What do you think about that?

>> But in any case, in all this time, whenever the battery was charged, the
>> charge level was up to 100%. So just since yesterday I suddenly saw that
>> the load stayed at 38% and I started to experience this issue.

> That makes me think of a component failure. Likely the battery, but
> conceivably something in the laptop.

Perhaps the ultimate test is going to a business where they have
original Lenovo components, ask them for a new battery to test it at the
moment with the notebook and, if all goes well, then buy it.

Thanks for your reply.

Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Re: Issue with notebook (maybe the battery?)

[Daniel Bareiro]

Hi, Eike.

On 25/03/17 20:13, Eike Lantzsch wrote:

 Last night, when I was going to close my notebook (with Jessie), I
 unplugged the charger cable waiting for the notebook to automatically
 go to sleep mode and surprisingly it turned off. It was a bit late so
 I left the issue to check it out today.

 I re-plugged the charger cable and KDE displays a message saying
 "Charging ..." but the charge level does not exceed 38%.

 Some observations:

 * If I unplug the charger, the notebook turns off. I would expect it
 to not turn off if the battery has a 38% charge.

 * When I plug in the charger, I notice that the battery LED blinks
 green for a few seconds (as if it was charging), then blinks orange
 for a moment (as if the battery is low) and finally it goes out (as
 if it were already loaded).

 * If with the cable plugged in I go to the KDE option to sleep the
 notebook, it works. But as soon as I disconnect the cable, the
 notebook turns off.

 Maybe it's a problem with the battery? Can you think of any other
 tests I can do to identify the source of the problem?

>>> Quick question: how old is the battery? I've seen it alleged that
>>> lithium batteries lose up to 20% of capacity a year, regardless of
>>> charge cycles, and I certainly had a laptop battery which stopped
>>> charging after about five years of reducing capacity. I also have a
>>> netbook, of the same brand, which is more than seven years old and
>>> still holds about half the charge it did when it was new.
>>>
>>> Many people replace laptops in much less than five years, though
>>> probably not people who run Linux on them.

>> Thanks for your interest.
>>
>> Checking the purchase invoices, I bought the notebook on September 19,
>> 2013, and then changed the battery on November 2, 2015. So less than two
>> years ago I have this battery.

> Did you purchase an original battery?

Yes. The parts I purchased were always original from Lenovo. The part
number is 45N1107.

> Usually the spare original batteries come with the same container as the 
> laptops. Consequently the "new" batteries are as old as the laptop. For that 
> reason it is usually better to purchase after-market batteries which contain 
> fresher cells.

Yes, I guess so. With the battery that came with the notebook I had
problems a while later and that is why then, in November 2015, I had to
buy another one that is the one I am using now, as I mentioned in a
previous message. But I'm not sure if this other battery is having
problems too. Is there any clue in the outputs copied in an previous
message that would suggest that?


Thanks for your reply.

Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Re: Issue with notebook (maybe the battery?)

[Daniel Bareiro]

Hi, Joe.

On 25/03/17 18:29, Joe wrote:

>> Hi all!
>>
>> Last night, when I was going to close my notebook (with Jessie), I
>> unplugged the charger cable waiting for the notebook to automatically
>> go to sleep mode and surprisingly it turned off. It was a bit late so
>> I left the issue to check it out today.
>>
>> I re-plugged the charger cable and KDE displays a message saying
>> "Charging ..." but the charge level does not exceed 38%.
>>
>> Some observations:
>>
>> * If I unplug the charger, the notebook turns off. I would expect it
>> to not turn off if the battery has a 38% charge.
>>
>> * When I plug in the charger, I notice that the battery LED blinks
>> green for a few seconds (as if it was charging), then blinks orange
>> for a moment (as if the battery is low) and finally it goes out (as
>> if it were already loaded).
>>
>> * If with the cable plugged in I go to the KDE option to sleep the
>> notebook, it works. But as soon as I disconnect the cable, the
>> notebook turns off.
>>
>> Maybe it's a problem with the battery? Can you think of any other
>> tests I can do to identify the source of the problem?

> Quick question: how old is the battery? I've seen it alleged that
> lithium batteries lose up to 20% of capacity a year, regardless of
> charge cycles, and I certainly had a laptop battery which stopped
> charging after about five years of reducing capacity. I also have a
> netbook, of the same brand, which is more than seven years old and
> still holds about half the charge it did when it was new.
> 
> Many people replace laptops in much less than five years, though
> probably not people who run Linux on them.

Thanks for your interest.

Checking the purchase invoices, I bought the notebook on September 19,
2013, and then changed the battery on November 2, 2015. So less than two
years ago I have this battery.

The notebook I use it practically every day and I leave it sleeping from
one day to the next so I do not have to open every application every
time. I'm not sure if that impacts so much on the battery life.

But in any case, in all this time, whenever the battery was charged, the
charge level was up to 100%. So just since yesterday I suddenly saw that
the load stayed at 38% and I started to experience this issue.

Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Re: Issue with notebook (maybe the battery?)

[Daniel Bareiro]

Hi, David.

On 25/03/17 16:34, David Wright wrote:

>> Hi all!
>>
>> Last night, when I was going to close my notebook (with Jessie), I
>> unplugged the charger cable waiting for the notebook to automatically go
>> to sleep mode and surprisingly it turned off. It was a bit late so I
>> left the issue to check it out today.
>>
>> I re-plugged the charger cable and KDE displays a message saying
>> "Charging ..." but the charge level does not exceed 38%.
>>
>> Some observations:
>>
>> * If I unplug the charger, the notebook turns off. I would expect it to
>> not turn off if the battery has a 38% charge.
>>
>> * When I plug in the charger, I notice that the battery LED blinks green
>> for a few seconds (as if it was charging), then blinks orange for a
>> moment (as if the battery is low) and finally it goes out (as if it were
>> already loaded).
>>
>> * If with the cable plugged in I go to the KDE option to sleep the
>> notebook, it works. But as soon as I disconnect the cable, the notebook
>> turns off.
>>
>> Maybe it's a problem with the battery? Can you think of any other tests
>> I can do to identify the source of the problem?
> 
> Sounds like the battery has lost one of more of its cells.
> A charge of 38% is not bad in itself, but if the voltage
> isn't there, the computer won't run.
> 
> Do you have a file along the lines of /sys/class/power_supply/BAT0/uevent
> that has more information in it than just the charge numbers?

Below copy the output of the values obtained by this file:

-
$ cat /sys/class/power_supply/BAT0/uevent
POWER_SUPPLY_NAME=BAT0
POWER_SUPPLY_STATUS=Unknown
POWER_SUPPLY_PRESENT=1
POWER_SUPPLY_TECHNOLOGY=Li-ion
POWER_SUPPLY_CYCLE_COUNT=0
POWER_SUPPLY_VOLTAGE_MIN_DESIGN=1080
POWER_SUPPLY_VOLTAGE_NOW=10938000
POWER_SUPPLY_POWER_NOW=0
POWER_SUPPLY_ENERGY_FULL_DESIGN=6000
POWER_SUPPLY_ENERGY_FULL=4892
POWER_SUPPLY_ENERGY_NOW=1879
POWER_SUPPLY_CAPACITY=38
POWER_SUPPLY_CAPACITY_LEVEL=Critical
POWER_SUPPLY_MODEL_NAME=45N1107
POWER_SUPPLY_MANUFACTURER=L
POWER_SUPPLY_SERIAL_NUMBER= 4375
-


I had also consulted this file, although it seems that it shows the same
information but with a different format:

-
$ upower -i /org/freedesktop/UPower/devices/battery_BAT0
  native-path:  BAT0
  vendor:   L
  model:45N1107
  serial:   4375
  power supply: yes
  updated:  sáb 25 mar 2017 17:49:46 -03 (57 seconds ago)
  has history:  yes
  has statistics:   yes
  battery
present: yes
rechargeable:yes
state:   charging
warning-level:   none
energy:  18,79 Wh
energy-empty:0 Wh
energy-full: 48,92 Wh
energy-full-design:  60 Wh
energy-rate: 0 W
voltage: 10,939 V
percentage:  38%
capacity:81,5333%
technology:  lithium-ion
icon-name:  'battery-good-charging-symbolic'
-


Thanks for your reply.

Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Issue with notebook (maybe the battery?)

[Daniel Bareiro]

Hi all!

Last night, when I was going to close my notebook (with Jessie), I
unplugged the charger cable waiting for the notebook to automatically go
to sleep mode and surprisingly it turned off. It was a bit late so I
left the issue to check it out today.

I re-plugged the charger cable and KDE displays a message saying
"Charging ..." but the charge level does not exceed 38%.

Some observations:

* If I unplug the charger, the notebook turns off. I would expect it to
not turn off if the battery has a 38% charge.

* When I plug in the charger, I notice that the battery LED blinks green
for a few seconds (as if it was charging), then blinks orange for a
moment (as if the battery is low) and finally it goes out (as if it were
already loaded).

* If with the cable plugged in I go to the KDE option to sleep the
notebook, it works. But as soon as I disconnect the cable, the notebook
turns off.

Maybe it's a problem with the battery? Can you think of any other tests
I can do to identify the source of the problem?


Thanks in advance.

Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Re: Issues with KDE from Debian Stretch [was: Upgrading Jessie to Stretch]

[Daniel Bareiro]

Hi,

On 05/03/17 00:21, Daniel Bareiro wrote:

> Now I have some issues with KDE. I'm not sure if it have to do with the
> video driver, but when I open an application or interact with KDE, the
> image starts shaking and some areas turn black. Below a screenshot.
> 
> https://ibin.co/3ETGMDNvhA2G.png
> https://ibin.co/3ETGUxOa9reG.png
> 
> Thank you in advance for your help.

I think to have solved this.

In System Setting -> Hardware -> Display and Monitor -> Compositor, I
change the tearing prevention to "Full screen repaints".

Maybe this can be useful to someone else.


Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Re: Issues with KDE from Debian Stretch [was: Upgrading Jessie to Stretch]

[Daniel Bareiro]

Hi, Sven.

On 04/03/17 19:16, Sven Joachim wrote:

>> Given that Stretch is in the final freeze phase, I thought it was a good
>> idea to upgrade my desktop computer from Jessie to Stretch to start
>> getting used to using it.
>>
>> After updating to the latest version of stable and changing "jessie" to
>> "stretch" in sources.list, I started with the usual procedure: updating
>> APT and other utilities, to have available the improvements that have
>> been introduced.

> I'm not sure if this has actually been recommended for the last few
> releases, and for Stretch it is almost certainly a bad idea.

According to what I have documented in my Dokuwiki, it was that way used
for me to start the process of upgrading from Squeeze to Wheezy, and
from Wheezy to Jessie:


# aptitude update && aptitude dist-upgrade -V

(change "jessie" to "stretch" on /etc/apt/source.list)

# apt-get update
# apt-get install apt dpkg aptitude -V

(...)


And I had no problems on those occasions. But perhaps it is not
applicable this time.

>> # apt-get install apt dpkg aptitude -V
>>
>> But this seems to cause some VLC dependencies to break:
>>
>> 
>> Reading package lists... Done
>> Building dependency tree
>> Reading state information... Done
>> Some packages could not be installed. This may mean that you have
>> requested an impossible situation or if you are using the unstable
>> distribution that some required packages have not yet been created
>> or been moved out of Incoming.
>> The following information may help to resolve the situation:
>>
>> The following packages have unmet dependencies:
>>  libvlccore8 : Breaks: vlc (< 2.2.4-7~) but 2.2.4-1~deb8u1 is to be
>> installed
>>Breaks: vlc-nox (< 2.2.4-7~) but 2.2.4-1~deb8u1 is to be
>> installed
>> E: Error, pkgProblemResolver::Resolve generated breaks, this may be
>> caused by held packages.
>> 
>>
>> Did this happen to anyone else?

> Probably yes, because of the libstdc++6 transition[1,2] that required
> changing the package name of many C++ libraries and an unusually high
> amount of Breaks.
> 
> Your best bet is probably to just try "apt-get dist-upgrade" and if that
> does not work, file a bug against the upgrade-reports pseudopackage.
> 
> Good luck,
> Sven
> 
> 
> 1. https://lists.debian.org/debian-devel-announce/2015/07/msg0.html
> 2. https://lists.debian.org/debian-devel-announce/2015/08/msg2.html

Thanks for the references. Thanks also, Lisi, for your interest.

I've tried a different approach, starting with a minimal upgrade using
"apt-get upgrade -V", and then upgrading the kernel and udev. Finally a
complete upgrade with "apt-get dist-upgrade -V". On that way I can
upgrade without problems.

Now I have some issues with KDE. I'm not sure if it have to do with the
video driver, but when I open an application or interact with KDE, the
image starts shaking and some areas turn black. Below a screenshot.

https://ibin.co/3ETGMDNvhA2G.png
https://ibin.co/3ETGUxOa9reG.png

Thank you in advance for your help.


Kind regards,
Daniel




signature.asc
Description: OpenPGP digital signature

Upgrading Jessie to Stretch

[Daniel Bareiro]

Hi all!

Given that Stretch is in the final freeze phase, I thought it was a good
idea to upgrade my desktop computer from Jessie to Stretch to start
getting used to using it.

After updating to the latest version of stable and changing "jessie" to
"stretch" in sources.list, I started with the usual procedure: updating
APT and other utilities, to have available the improvements that have
been introduced.

# apt-get install apt dpkg aptitude -V

But this seems to cause some VLC dependencies to break:


Reading package lists... Done
Building dependency tree
Reading state information... Done
Some packages could not be installed. This may mean that you have
requested an impossible situation or if you are using the unstable
distribution that some required packages have not yet been created
or been moved out of Incoming.
The following information may help to resolve the situation:

The following packages have unmet dependencies:
 libvlccore8 : Breaks: vlc (< 2.2.4-7~) but 2.2.4-1~deb8u1 is to be
installed
   Breaks: vlc-nox (< 2.2.4-7~) but 2.2.4-1~deb8u1 is to be
installed
E: Error, pkgProblemResolver::Resolve generated breaks, this may be
caused by held packages.


Did this happen to anyone else?


Thanks in advance.

Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Re: Skype

[Daniel Bareiro]

Hi!

On 07/02/17 17:25, Anonymous wrote:

> Skype on Linux is terrible and crashes randomly, even after fixing the
> Pulseaudio issue. No other software I've ever used on Linux causes as
> many problems as Skype. Obviously this problem ultimately comes from
> Microsoft, but nevertheless many of us need Skype for communications
> with colleagues running a non-Linux OS since it is the overwhelming
> market leader in VOIP; this is especially common in a business environment.
> 
> Skype needs to run on Linux with the same stability that it does on
> Windows and MacOS, WITHOUT resorting to installing WINE, and preferably
> without relying on WebRTC.
> 
> If you could develop a non-Skype Linux client with the ability to easily
> communicate on the Skype platform --- something open source but which
> has compatibility with Skype, coordinated with Microsoft --- that would
> be ideal. But relying on Microsoft to develop good software for Linux
> has proven to be a losing proposition and I'm sure is stifling the
> adoption of Linux by a wider audience.

An update. A few days ago they switched to Beta. Yesterday I tried video
calls. A person with an Android device called me and I was able to pick
up the call and talk to her. So it's an important progress.

Although I saw that the chat area shows the start time of the call, the
duration of the call is not displayed. I think it would be good to keep
track of this there as well.


Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Re: Crashes in Icedove on Stretch

[Daniel Bareiro]

Hi.

On 16/02/17 11:05, Daniel Bareiro wrote:

>> I think I fixed the random Icedove crashes I was experiencing on Jessie
>> by setting layers.offmainthreadcomposition.enabled to false in Icedove's
>> config editor.

> Thanks for the tip. I applied this change. Let's see if it makes any
> difference.

Although crashes continue to occur in my case, when using this option
Icedove seems more stable than before.

Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Re: Crashes in Icedove on Stretch

[Daniel Bareiro]

Hi again.

On 15/02/17 19:52, Daniel Bareiro wrote:

>> Isn't there a plan to migrate back to Thunderbird anyway, just as 
>> Iceweasel has been replaced with firefox?
>>
>> I wonder if stretch has thunderbird packages? (no time to check right 
>> now)

> It looks like it's currently in Sid. Has anyone tried it?
> 
> https://packages.debian.org/search?searchon=names=thunderbird

Here is the official announcement:

https://lists.debian.org/debian-devel-announce/2017/02/msg4.html


Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Re: Crashes in Icedove on Stretch

[Daniel Bareiro]

Hi, Jörg.

On 16/02/17 05:26, Jörg-Volker Peetz wrote:

> Daniel Bareiro wrote on 02/15/17 23:52:
> 
>>> I wonder if stretch has thunderbird packages? (no time to check right 
>>> now)
>>
>> It looks like it's currently in Sid. Has anyone tried it?
>>
>> https://packages.debian.org/search?searchon=names=thunderbird
>>
> I'm using a mixed testing/sid system and have also experienced such sudden
> deaths of icedove with version 45.6.0.
> A few hours ago I did the transition to thunderbird. It went really smooth by
> upgrading the iceweasel*/iceowl* packages (it makes a backup of ~/.icedove and
> generates a new ~/.thunderbird from that), and after using some
> unmarkauto/markauto and purge commands there are now only the
> thunderbird*/lightning* packages on the system.
> In my lxpanel config I had to replace icedove.desktop by thunderbird.desktop,
> the firefox Application "mailto" was adapted automatically.
> All runs smooth so far.

Thanks for sharing your experience. It would be good to know if it
remains stable after several days. I just applied the change suggested
by Benjamin in another message in this thread.

Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Re: Crashes in Icedove on Stretch

[Daniel Bareiro]

Hi, Benjamin

On 16/02/17 09:31, Benjamin Rochefort wrote:

> I think I fixed the random Icedove crashes I was experiencing on Jessie
> by setting layers.offmainthreadcomposition.enabled to false in Icedove's
> config editor.

Thanks for the tip. I applied this change. Let's see if it makes any
difference.

Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Re: Problems with installing Debian-Testing in a Virtualbox and on an old Toshiba-Laptop

[Daniel Bareiro]

Hi, Michael.

On 16/02/17 10:37, Michael Siemmeister wrote:

> Thanks for your answers!
> 
> I am going to try the upstream repository in the evening.
> 
> Nevertheless, as written in my first mail, I got problems with
> installing Debian-Testing on my old Toshiba laptop. I just checked the
> model number. It's a Toshiba Satellite P300-1BB. Model No.:
> PSPCCE-01K001GR. Debian-Stable Jessie 8.5 worked fine without any
> problems during the installation. So I think the hardware is okay.
> 
>  I tried to install Debian-Testing on this laptop directly to the
> harddisk without virtualbox. During the installation there were no
> problems. But after the first boot, I keep getting these messages:
> 
> [drm:radeon_pci_probe [radeon]] *ERROR* radeon kernel modesetting for
> R600 or later requires firmware-amd-graphics.
> kvm: disabled by bios
> 
> Then the display starts blinking and nothing else happens.
> 
> Can you help me with this?
> How to report this bug?

Have you tried using the kernel parameter "nomodeset"?


Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Re: User-oriented backup tools

[Daniel Bareiro]

Hi, Francesco

On 15/02/17 19:37, Francesco Porro wrote:

> Hi guys, It's the first time I'm posting here. I'm both a Fedora and
> Debian user.
> 
> Which backup tool do you use?
> At this time I feel comfortable with rsync, which I use to sync my home
> to an external Usb drive. No automation, no scheduling for now. I just
> launch rsync from the command line and let it backup all the stuff when
> I need it.
> 
> Now I'd like to move to more powerful utility. It should be reliable and
> very user-friendly. A friend on Irc suggested me borg [1], which also
> feature decuplication, encryption and seems easy enough to use.
> 
> Otherwise I discovered a scripting hot-to to make some kind of snapshots
> via rsync (and hardlinking) [2], but I haven't tryed it out yet.
> 
> So... What's your opinion about user-oriented backup tools? ^^

Another alternative could be to use Dirvish.


Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Re: Crashes in Icedove on Stretch

[Daniel Bareiro]

Hi, Mark

On 15/02/17 19:43, Mark Fletcher wrote:

>>> I am using Jessie, Icedove v. 45.6.0 at the moment, on AMD64;

>> It's a known bug in Jessie. My question is about Stretch.
>>
>> With regards,
>> Paul

> Isn't there a plan to migrate back to Thunderbird anyway, just as 
> Iceweasel has been replaced with firefox?
> 
> I wonder if stretch has thunderbird packages? (no time to check right 
> now)

It looks like it's currently in Sid. Has anyone tried it?

https://packages.debian.org/search?searchon=names=thunderbird


Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Re: Crashes in Icedove on Stretch

[Daniel Bareiro]

Hi, Tony.

On 15/02/17 12:50, Tony Baldwin wrote:

> Not sure if relevant, but I use ID with imap with a gmx.com account
> (Perhaps this last was obvious?)

I have three accounts configured in Icedove. Two accounts on my local
IMAP server, and other IMAP account on GMX. But I do not think it have
to do with the GMX account because I have experienced this issue also
when browsing my local emails or it has also died suddenly without any
kind of interaction (I think).

Kind regards,
Daniel




signature.asc
Description: OpenPGP digital signature

Re: Crashes in Icedove on Stretch

[Daniel Bareiro]

On 15/02/17 11:36, Paul van der Vlis wrote:

> Hello,

Hi, Paul.

> Many peope (not all) have problems because Icedove crashes since an
> update last year. Icedove on my laptop with Debian stable crashes random
> about one time per week.
> 
> I have many customers with Debian stable and oldstable. Most of them
> have problems with a crashing Icedove. I have also workstations here
> where Icedove has never crashed.
> 
> What I want to ask, is what the latest situation is when using Stretch
> (testing). I know a few people who are using Stretch and they all told
> me they have no problems with a crashing Icedove.
> 
> What is your experience?

That does not sound good. I have been experiencing this for a while in
Jessie and I was hoping it would be fixed on Stretch :(

Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Re: Kernel Update on Stretch

[Daniel Bareiro]

Hi, Sven.

On 14/02/17 10:19, Sven Hartge wrote:

> He thinks of mechanisms like ksplice or kpatch where you can 
> alter/patch the running kernel without rebooting the system.

Yes, I had read some about this and that, for example, Ubuntu has it
available but as a paid service that one can hire. What is not clear to
me is if these systems are complemented with the package system or it is
something independent.

I think it's some kind of hot patching, which would not require
installing a new version of the kernel package.


Thanks for your reply.

Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Re: Kernel Update on Stretch

[Daniel Bareiro]

Hi, Darac.

On 14/02/17 10:01, Darac Marjal wrote:

>>> Some time ago I read that Linux 4.x incorporates the feature to be
>>> updated without requiring a restart of the operating system.

>> Some Linux Distributions have such a feature. Debian is not one of them.

> Actually, yes it is, you just need to install the user space tools.[1]
> 
> The facility is called "kexec" (named after the system call to 'EXECute
> a new Kernel', I suspect). Install the "kexec-tools" package and, if I'm
> reading that page correctly, the "reboot" command will be replaced by a
> kexec call (see the linked page, though, for precautions about your
> first reboot).
> 
> [1] wiki.debian.org/BootProcessSpeedup#Using_kexec_for_warm_reboots

Reading about the documentation you mentioned and researching a little
more about kexec, I see that kexec skips the BIOS init part, but it
requires a boot anyway.

In fact, I see that kexec is present in Jessie and I've also seen some
examples of use with 2.6 series kernels. I understand that what I
mentioned was introduced with Linux 4.x.


Thanks for your reply.

Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Kernel Update on Stretch

[Daniel Bareiro]

Hi all!

Some time ago I read that Linux 4.x incorporates the feature to be
updated without requiring a restart of the operating system.

Since stretch incorporates a kernel of the 4.x series, this would imply
that we can update the kernel package and avoid reboots?


Thanks in advance.

Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Re: Stretch stable and jessie testing - repositories listed

[Daniel Bareiro]

Hi, Katrin.

On 09/02/17 13:09, GiaThnYgeia wrote:

>> Here is a jessie source:
>> deb http://ftp.us.debian.org/debian/ jessie main non-free contrib
>> Here is a stretch source:
>> deb http://ftp.us.debian.org/debian/ stretch main contrib non-free

> But I have http://ftp.us.debian.org/debian/ testing main
> 
> and don't change it what will happen?

If you do not wish to change that line, you will remain being always in
the "testing" branch.

If you change "testing" to "stretch", for the moment you will be in the
"testing" branch and then, when "stretch" becomes stable, you will stay
in the stable branch.


Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Re: Best way to set maximum number of open descriptors for a process

[Daniel Bareiro]

Hi, Sven.

On 08/02/17 14:37, Sven Hartge wrote:

>> In this case, it seems that the service file for systemd is created
>> dynamically. Or I'm wrong?
>>
>> 
>> root@conference:~# find / -name jitsi-videobridge.service
>> /sys/fs/cgroup/systemd/system.slice/jitsi-videobridge.service
>> /run/systemd/generator.late/jitsi-videobridge.service
>> /run/systemd/generator.late/runlevel5.target.wants/jitsi-videobridge.service
>> /run/systemd/generator.late/runlevel4.target.wants/jitsi-videobridge.service
>> /run/systemd/generator.late/runlevel3.target.wants/jitsi-videobridge.service
>> /run/systemd/generator.late/runlevel2.target.wants/jitsi-videobridge.service
>> 

> You can also generate override files for dynamically generated units by
> creating /etc/systemd/system/jitsi-videobridge.service.d/configname.conf
> 
> "configname" can be whatever you want.
> 
> In this file you then put
> 
> ,
> | [Service]
> | LimitNOFILE=65536
> `
> 
> and do a "systemctl daemon-reload".
> 
> If you now "systemctl cat jitsi-videobridge.service" you should get the
> output of the generated file and your appended override config.

Great! That worked! It seems that the only value specified in
LimitNOFILE applies to both the soft and hard limit.

Thank you very much for your reply.

Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Re: Publicity: Stretch Freeze/Release Team meeting very soon

[Daniel Bareiro]

Hi, Greg.

On 08/02/17 14:15, Greg Wooledge wrote:
> On Wed, Feb 08, 2017 at 02:08:13PM -0300, Daniel Bareiro wrote:
>> Thanks for sharing the news. These days I was looking for information on
>> whether Stretch was already in full freeze since the scheduled date was
>> last Sunday. But I had not found anything about it. I even planned to
>> ask on this list to see if anyone knew anything :-)
> 
> https://lists.debian.org/debian-devel-announce/2017/02/msg1.html

Ah, great. Thanks for sharing the reference. I will consider the source
for future searches :-)


Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Re: Publicity: Stretch Freeze/Release Team meeting very soon

[Daniel Bareiro]

On 08/02/17 13:46, Cindy-Sue Causey wrote:

> Hi :)

Hi, Cindy.

> Not sure what the protocol is for forwarding emails so am jumping off
> the ledge here by covering the topic two ways. The email's public
> Debian-Publicity link/URL is immediately below and then the email is
> attached in full further down.
> 
> Thought the attached email might be of interest because they're giving
> a wide open shout out looking for all interested parties. It was
> posted by Cédric Boutillier:
> 
> https://lists.debian.org/debian-publicity/2017/02/msg00012.html
> 
> It was of immediate interest for me because I just debootstrap'ed both
> Stretch and Jessie this week. Am in Jessie this second... no new
> updates needed for days AND/BUT... five minutes ago, a website
> complained that my browser is out of date = here's your sign. :)
> 
> That's the end of my knowledge on the team meeting topic. Am sending
> this then will be logging out of poor ol' dilapidated Jessie to get
> used to cozying up to his/her younger sibling, the up and coming shiny
> new Stretch..
> 
> Happy Debian'ing!

Thanks for sharing the news. These days I was looking for information on
whether Stretch was already in full freeze since the scheduled date was
last Sunday. But I had not found anything about it. I even planned to
ask on this list to see if anyone knew anything :-)

Do you believe that in the current state of Stretch, it is stable enough
to begin migrating from Jessie or recommend wait until the final
publication date?


Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Re: Best way to set maximum number of open descriptors for a process

[Daniel Bareiro]

Hi, Greg.

On 08/02/17 10:20, Greg Wooledge wrote:

>> The process starts as a service, so it does not require a shell:

>> I had thought that I could add something to the script that starts the
>> process, but I'm not sure if it's the best idea from the point of view
>> of maintainability because a package update could eliminate that change.

> I believe the correct approach is to add one of the limit= directives
> to the systemd unit.  See systemd.exec(5) for details.  Searching for
> the word "limit" gets you to the correct section.

Very interesting. Thanks for the reference! I see that in this case the
directive to use is LimitNOFILE=. Although I did not find the
syntax (for example, LimitNOFILE=soft:hard).

In this case, it seems that the service file for systemd is created
dynamically. Or I'm wrong?


root@conference:~# find / -name jitsi-videobridge.service
/sys/fs/cgroup/systemd/system.slice/jitsi-videobridge.service
/run/systemd/generator.late/jitsi-videobridge.service
/run/systemd/generator.late/runlevel5.target.wants/jitsi-videobridge.service
/run/systemd/generator.late/runlevel4.target.wants/jitsi-videobridge.service
/run/systemd/generator.late/runlevel3.target.wants/jitsi-videobridge.service
/run/systemd/generator.late/runlevel2.target.wants/jitsi-videobridge.service



Thanks for your reply.

Kind regards,
Daniel




signature.asc
Description: OpenPGP digital signature

Re: Best way to set maximum number of open descriptors for a process

[Daniel Bareiro]

Hi, Tomas.

On 08/02/17 08:42, to...@tuxteam.de wrote:

>> Maybe I could add something to the startup script, but maybe if the
>> Debian package is updated, these changes will be lost. What do you
>> suggest is the best way?

> Yes, if the process is being started via a shell, ulimit seems the
> way to go. In SysV init, either in the start script or perhaps in
> /etc/defaults (which is then picked up by the start script).
> 
> Note that /etc is "taboo" for the distro[1], i.e. it will install
> something there, but in won't touch anything which wasn't installed
> by the distro, at least not without asking.
> 
> Sure systemd has a way to do that, but for that I'll have to defer
> to the systemd experts.
> 
> [1] at least for civilised distros, like Debian.

The process starts as a service, so it does not require a shell:

---
root@conference:~# systemctl status jitsi-videobridge
● jitsi-videobridge.service - LSB: Jitsi Videobridge
   Loaded: loaded (/etc/init.d/jitsi-videobridge)
   Active: active (running) since Tue 2017-02-07 08:25:10 ART; 24h ago
  Process: 410 ExecStart=/etc/init.d/jitsi-videobridge start
(code=exited, status=0/SUCCESS)
   CGroup: /system.slice/jitsi-videobridge.service
   └─434 java -Xmx3072m -XX:+HeapDumpOnOutOfMemoryError
-XX:HeapDumpPath=/tmp
-Djava.library.path=/usr/share/jitsi-videobridge/lib/native/linux-64 -...

Warning: Journal has been rotated since unit was started. Log output is
incomplete or unavailable.
---

I had thought that I could add something to the script that starts the
process, but I'm not sure if it's the best idea from the point of view
of maintainability because a package update could eliminate that change.

Another alternative might be to add something like this to /etc/rc.local:

---
PID_JVB=`ps -u jvb | tail -1 | awk '{ print $1 }'`
prlimit --pid $PID_JVB --nofile=10240:10240
---

But perhaps there is another more elegant way to achieve this.


Thanks for your reply.

Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Best way to set maximum number of open descriptors for a process

[Daniel Bareiro]

Hi!

I would like to set the maximum number of open descriptors for a
specific process in a way that is maintainable.

I've tried putting something like this in /etc/security/limits.d/:

jvbsoftnofile   10240
jvbhardnofile   10240

But this seems to only apply to processes with an active shell in the
system:


root@conference:~# cat /etc/security/limits.d/jitsi-meet.conf
jvb softnofile  10240
jvb hardnofile  10240

root@conference:~# ps -u jvb | tail -1 | awk '{ print $1 }'
434

root@conference:~# cat /proc/434/limits | grep open
Max open files4096 4096 files

root@conference:~# su - jvb
jvb@conference:~$ ulimit -n
10240


Maybe I could add something to the startup script, but maybe if the
Debian package is updated, these changes will be lost. What do you
suggest is the best way?


Thanks in advance.

Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Re: Skype

[Daniel Bareiro]

Hi, deloptes.

On 08/02/17 03:36, deloptes wrote:

> If we are pragmatic it was a joke that skype was ported to linux, we'll need
> to find another way. I'm thinking of mere SIP phone or just dropping the
> desktop and using windows anyway. There was too much disappointment
> recently from the linux side.

I am currently testing Jitsi Meet [1] with Debian. Here [2] you can see
a server with Jitsi Meet open to the community for test the system.

Kind regards,
Daniel

[1] https://jitsi.org/Projects/JitsiMeet
[2] https://meet.jit.si



signature.asc
Description: OpenPGP digital signature

Re: The connections resets after some time.

[Daniel Bareiro]

Hi, Henrique.

 watching mtr for a few minutes waiting for the ssh connections to freeze
 and I've only seen that the hops from the cablemodem turn red when
 everything freezes. I'm going to do the test again by connecting
 directly via ethernet to ensure the results are reproducible.

>>> I did the test again by connecting the notebook with a cable to the
>>> TP-Link router (192.168.2.1). When the connections are dropped, all the

>> Do it _directly_ connected to the cable modem, please.  And by that I
>> also mean without any VMs, containers, virtual network devices, or NAT
>> in the middle.

> Yesterday I did another test connecting a PC with cable directly to the
> cablemodem. The test was done with the PC without virtualization in the
> middle. The result was similar to the previous ones.
> 
> https://ibin.co/3AOR4sbcReOc.png
> 
> When the hops all turn red, does that mean the cablemodem is not responding?

I asked you this question because I did another test where I noticed
that although the ping to the cablemodem is not interrupted, MTR shows
all the hops in red:

14.44 GMT-3 => MTR stays red from ping 3153 to 3160 (seven seconds).
 - Server in FR   => 18:44:15 GMT+1 (drops connection)
 - Server en EEUU => 12:44:17 GMT-5 (drops connection)
 - Ping to cablemodem is not interrupted:

https://ibin.co/3AT1DTFK65tS.png

--
viper@defiant:~$ ping 192.168.1.1 | while read pong; do echo "$(date):
$pong"; done
(...)
sáb ene 28 14:43:39 ART 2017: 64 bytes from 192.168.1.1: icmp_seq=3184
ttl=64 time=0.595 ms
sáb ene 28 14:43:40 ART 2017: 64 bytes from 192.168.1.1: icmp_seq=3185
ttl=64 time=0.542 ms
sáb ene 28 14:43:41 ART 2017: 64 bytes from 192.168.1.1: icmp_seq=3186
ttl=64 time=0.542 ms
sáb ene 28 14:43:42 ART 2017: 64 bytes from 192.168.1.1: icmp_seq=3187
ttl=64 time=0.624 ms
sáb ene 28 14:43:43 ART 2017: 64 bytes from 192.168.1.1: icmp_seq=3188
ttl=64 time=0.555 ms
sáb ene 28 14:43:44 ART 2017: 64 bytes from 192.168.1.1: icmp_seq=3189
ttl=64 time=0.556 ms
sáb ene 28 14:43:45 ART 2017: 64 bytes from 192.168.1.1: icmp_seq=3190
ttl=64 time=0.630 ms
sáb ene 28 14:43:46 ART 2017: 64 bytes from 192.168.1.1: icmp_seq=3191
ttl=64 time=0.573 ms
sáb ene 28 14:43:47 ART 2017: 64 bytes from 192.168.1.1: icmp_seq=3192
ttl=64 time=0.568 ms
sáb ene 28 14:43:48 ART 2017: 64 bytes from 192.168.1.1: icmp_seq=3193
ttl=64 time=0.581 ms
sáb ene 28 14:43:49 ART 2017: 64 bytes from 192.168.1.1: icmp_seq=3194
ttl=64 time=0.566 ms
sáb ene 28 14:43:50 ART 2017: 64 bytes from 192.168.1.1: icmp_seq=3195
ttl=64 time=0.531 ms
sáb ene 28 14:43:51 ART 2017: 64 bytes from 192.168.1.1: icmp_seq=3196
ttl=64 time=0.610 ms
sáb ene 28 14:43:52 ART 2017: 64 bytes from 192.168.1.1: icmp_seq=3197
ttl=64 time=0.543 ms
sáb ene 28 14:43:53 ART 2017: 64 bytes from 192.168.1.1: icmp_seq=3198
ttl=64 time=0.554 ms
sáb ene 28 14:43:54 ART 2017: 64 bytes from 192.168.1.1: icmp_seq=3199
ttl=64 time=0.627 ms
sáb ene 28 14:43:55 ART 2017: 64 bytes from 192.168.1.1: icmp_seq=3200
ttl=64 time=0.564 ms
sáb ene 28 14:43:56 ART 2017: 64 bytes from 192.168.1.1: icmp_seq=3201
ttl=64 time=0.539 ms
sáb ene 28 14:43:57 ART 2017: 64 bytes from 192.168.1.1: icmp_seq=3202
ttl=64 time=0.606 ms
sáb ene 28 14:43:58 ART 2017: 64 bytes from 192.168.1.1: icmp_seq=3203
ttl=64 time=0.566 ms
sáb ene 28 14:43:59 ART 2017: 64 bytes from 192.168.1.1: icmp_seq=3204
ttl=64 time=0.576 ms
sáb ene 28 14:44:00 ART 2017: 64 bytes from 192.168.1.1: icmp_seq=3205
ttl=64 time=0.618 ms
sáb ene 28 14:44:01 ART 2017: 64 bytes from 192.168.1.1: icmp_seq=3206
ttl=64 time=0.572 ms
sáb ene 28 14:44:02 ART 2017: 64 bytes from 192.168.1.1: icmp_seq=3207
ttl=64 time=0.560 ms
sáb ene 28 14:44:03 ART 2017: 64 bytes from 192.168.1.1: icmp_seq=3208
ttl=64 time=0.642 ms
sáb ene 28 14:44:04 ART 2017: 64 bytes from 192.168.1.1: icmp_seq=3209
ttl=64 time=0.564 ms
sáb ene 28 14:44:05 ART 2017: 64 bytes from 192.168.1.1: icmp_seq=3210
ttl=64 time=0.558 ms
sáb ene 28 14:44:06 ART 2017: 64 bytes from 192.168.1.1: icmp_seq=3211
ttl=64 time=0.594 ms
sáb ene 28 14:44:07 ART 2017: 64 bytes from 192.168.1.1: icmp_seq=3212
ttl=64 time=0.547 ms
sáb ene 28 14:44:08 ART 2017: 64 bytes from 192.168.1.1: icmp_seq=3213
ttl=64 time=0.536 ms
sáb ene 28 14:44:09 ART 2017: 64 bytes from 192.168.1.1: icmp_seq=3214
ttl=64 time=0.612 ms
sáb ene 28 14:44:10 ART 2017: 64 bytes from 192.168.1.1: icmp_seq=3215
ttl=64 time=0.540 ms
sáb ene 28 14:44:11 ART 2017: 64 bytes from 192.168.1.1: icmp_seq=3216
ttl=64 time=0.625 ms
sáb ene 28 14:44:12 ART 2017: 64 bytes from 192.168.1.1: icmp_seq=3217
ttl=64 time=0.764 ms
sáb ene 28 14:44:13 ART 2017: 64 bytes from 192.168.1.1: icmp_seq=3218
ttl=64 time=0.595 ms
sáb ene 28 14:44:14 ART 2017: 64 bytes from 192.168.1.1: icmp_seq=3219
ttl=64 time=0.539 ms
sáb ene 28 14:44:15 ART 2017: 64 bytes from 192.168.1.1: icmp_seq=3220
ttl=64 time=0.607 ms
sáb ene 28 14:44:16 ART 2017: 64 bytes 

Re: The connections resets after some time.

[Daniel Bareiro]

Hi, Henrique.

On 28/01/17 11:40, Henrique de Moraes Holschuh wrote:

> What do you think? Will it be a problem with the cablemodem?
 I don't know which hop is your cable modem, but you need to explain the
 first hop losing packets.  If it drops return packets that often, you

>>> The cablemodem is 192.168.1.1, so the CMTS is 10.96.0.1. I've been

> 10.96.0.1 could be the CMTS, or it could be an aggregation router,
> depends on the CMTS being transparent or not to the IP L3.

Thanks for the observation.

>>> watching mtr for a few minutes waiting for the ssh connections to freeze
>>> and I've only seen that the hops from the cablemodem turn red when
>>> everything freezes. I'm going to do the test again by connecting
>>> directly via ethernet to ensure the results are reproducible.

>> I did the test again by connecting the notebook with a cable to the
>> TP-Link router (192.168.2.1). When the connections are dropped, all the

> Do it _directly_ connected to the cable modem, please.  And by that I
> also mean without any VMs, containers, virtual network devices, or NAT
> in the middle.

Yesterday I did another test connecting a PC with cable directly to the
cablemodem. The test was done with the PC without virtualization in the
middle. The result was similar to the previous ones.

https://ibin.co/3AOR4sbcReOc.png

When the hops all turn red, does that mean the cablemodem is not responding?

>> https://ibin.co/3ANVFzZi7BHg.png

> It does look like the cable-modem, but this is not yet certain.  And it
> could also be ethernet cabling or a switch (if you have one), etc.
> Basically anything between the test node (your laptop/computer) and the
> cable modem, *including* infrastructure.

With the previous test we discard any intermediate elements of the network.

> If you can do it at no cost, ask the ISP to replace that cable modem
> just in case.  These things *do* age, I had to replace three of them
> over the last 8 years.  One of them did not outright die, it would lose
> packets or connect at low bandwidth at the DOCSIS layer.

The last time I spoke with the Support area of the ISP was last Thursday
and they told me that from the Technology sector they asked to send a
technician to make a repair because they had checked the CMTS and they
did not find problems there. That was before doing these tests with MTR.

In the case it provides any additional information, the cablemodem is a
Cisco DPC3825. It does not seem to have SSH access. The only access I
see is via web and there I have not seen any log that can provide more
information than those already obtained with these tests.


Thanks for your reply and your time.

Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Re: The connections resets after some time.

[Daniel Bareiro]

Hi again, Henrique.

On 27/01/17 19:32, Daniel Bareiro wrote:

>>> What do you think? Will it be a problem with the cablemodem?

>> I don't know which hop is your cable modem, but you need to explain the
>> first hop losing packets.  If it drops return packets that often, you
>> cannot assume where any loss after that one is happening: it could be
>> just their return packets being dropped by the first hop.

> The cablemodem is 192.168.1.1, so the CMTS is 10.96.0.1. I've been
> watching mtr for a few minutes waiting for the ssh connections to freeze
> and I've only seen that the hops from the cablemodem turn red when
> everything freezes. I'm going to do the test again by connecting
> directly via ethernet to ensure the results are reproducible.

I did the test again by connecting the notebook with a cable to the
TP-Link router (192.168.2.1). When the connections are dropped, all the
hops are shown in red from the cablemodem (192.168.1.1) for about three
to four seconds. This is the screenshot:

https://ibin.co/3ANVFzZi7BHg.png


Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Re: The connections resets after some time.

[Daniel Bareiro]

Hi, Henrique.

On 27/01/17 19:11, Henrique de Moraes Holschuh wrote:

>> I thought about doing a test with MTR. Maybe it could provide some
>> interesting information. This way I left in a later window an ssh
>> connection to a server running htop, and a window ahead running MTR.
>>
>> When the window with htop freezes, MTR shows as a cascade failure from
>> the cablemodem, turning red the hosts from this (192.168.1.1). This
>> stays red for about three or four seconds and then goes
>> back to black.
>>
>> https://ibin.co/3AMfJ9PYCGJ4.png

> Why is it getting packet loss to the *first* hop?  Wifi?  Do that test
> using an ethernet connection...

The first hop (192.168.2.1) is my TP-Link WDR-3600 router with OpenWRT.
At the time of the test with mtr, I was connected with my notebook to
that router wirelessly. The second hop (10.1.0.10) is my firewall with
Debian Jessie. It called my attention to see packet loss in both,
although I was struck by the fact that from the cablemodem everything
turned red for a few seconds at the time the connections freeze.

>> What do you think? Will it be a problem with the cablemodem?

> I don't know which hop is your cable modem, but you need to explain the
> first hop losing packets.  If it drops return packets that often, you
> cannot assume where any loss after that one is happening: it could be
> just their return packets being dropped by the first hop.

The cablemodem is 192.168.1.1, so the CMTS is 10.96.0.1. I've been
watching mtr for a few minutes waiting for the ssh connections to freeze
and I've only seen that the hops from the cablemodem turn red when
everything freezes. I'm going to do the test again by connecting
directly via ethernet to ensure the results are reproducible.

Thanks for your reply and your time.


Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Re: The connections resets after some time.

[Daniel Bareiro]

Hi again, Henrique.

On 24/01/17 13:37, Henrique de Moraes Holschuh wrote:

>> It's very weird. The cablemodem does not lose Upstream and Downstream
>> synchronization, but nevertheless I see that the established
>> connections are lost (for example, instant messaging, SSH, or HTTP,
>> to mention a few).

> Are you under any sort of stateful packet filtering device (L3+
> firewall, NAT/CGNAT gateway, anti-virus device)?   Inquire your ISP.
>
> Such devices can _and do_ cause this sort of issue when they hit
> resource limits of any sort (such as going over peak capacity of
> connection setup/teardown rate, throughput, etc), or during failover,
> etc.
>
> It could also be caused by link or routing problems in the ISP
> backbone, backhaul, and even in the Internet border itself (ISP to
> ISP eBGP links).
>
> (...)

I thought about doing a test with MTR. Maybe it could provide some
interesting information. This way I left in a later window an ssh
connection to a server running htop, and a window ahead running MTR.

When the window with htop freezes, MTR shows as a cascade failure from
the cablemodem, turning red the hosts from this (192.168.1.1). This
stays red for about three or four seconds and then goes
back to black.

https://ibin.co/3AMfJ9PYCGJ4.png

When any router turns red means 100% packet loss? Because in the
screenshot this value was not in 100 for the cablemodem on that moment.


What do you think? Will it be a problem with the cablemodem?

Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Re: The connections resets after some time.

[Daniel Bareiro]

Hi, Henrique.

On 24/01/17 13:37, Henrique de Moraes Holschuh wrote:

>> It's very weird. The cablemodem does not lose Upstream and Downstream
>> synchronization, but nevertheless I see that the established connections
>> are lost (for example, instant messaging, SSH, or HTTP, to mention a few).

> Are you under any sort of stateful packet filtering device (L3+
> firewall, NAT/CGNAT gateway, anti-virus device)?   Inquire your ISP.
> 
> Such devices can _and do_ cause this sort of issue when they hit
> resource limits of any sort (such as going over peak capacity of
> connection setup/teardown rate, throughput, etc), or during failover,
> etc.
> 
> It could also be caused by link or routing problems in the ISP backbone,
> backhaul, and even in the Internet border itself (ISP to ISP eBGP
> links).

Very interesting observations. Thank you! Below I add the news.

>> I do not know if it will be related, but on 05/01 there was a service
>> interruption between 09.25 and 11.35. After the service was restored, I
>> noticed that I was changed from CMTS 10.94.0.1 to 10.96.0.1. Maybe some
>> problem in configuring this CMTS?

> It could be an issue in the ISP's backhaul or backbone, yes.  In that
> case, it might be limited to this CMTS, or to a network region, or even
> to large sections of the ISP's network.
> 
> Ask people you know that use the same ISP in your neighborhood and also
> elsewhere in the same city, that might give you extra data on the extent
> of the issues.

At 12.37 GMT-3 I detected a restart of the cablemodem. After verifying,
I see that I am still in the same CMTS 10.96.0.1. I telephoned the
Support area of the ISP to ask if this reboot was linked to some change
(for example, some adjustment in the parameters of the binary that
receives the cablemodem) but they did not know. I was told that they
will ask the technical area for an update. So far everything seems
stable, although I would like to know what they changed, if they touched
something. I will keep it under observation and call again tomorrow.

>> Thinking that this could be because it changes the public IP, I checked
>> the log of a script that I have to update against Afraid DNS service.
>> But several days ago the IP does not change so that does not seem to be
>> the problem.

> What is your ISP's AS number, please?  If you don't know, please look it
> up by connecting with a browser to http://bgp.he.net.

Very interesting site. This is the AS number:

http://bgp.he.net/AS27984

>> What do you think? Will it be a problem of the Internet provider?

> From the data you provided, it certainly looks like a problem in either
> your ISP's network, or their upstream ISPs.


Thank you very much for your interest and your time.

Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Re: The connections resets after some time.

[Daniel Bareiro]

Hi, Armando.

On 24/01/17 12:54, Armando Cerna wrote:

> Have you tried maintaining the ssh connection from a different internet
> connection?  Assuming you have no issues it is probably related to the
> ISP.  It would also be a good test to to try sshing to a server in
> another location and seeing if your connection drops but given that you
> are experiencing pidgin dropping as well.  I would assume it's internet
> related.  Do you have another computer you can test with?

Yes. As I mentioned in the other mail, I tried with a PC in my local
network and connected it directly to the cablemodem in a wired way. And
the behavior was the same. Another test I did not mention is that, with
the notebook connected to the cablemodem in a wired way, I tried
connecting via VPN to my local network via ssh using the public IP
assigned to the cablemodem. And after a while I lost the connection.

Both the notebook and this PC have Debian 8.6. It could be a recent bug.
But it is strange because for example I do not remember having had
problems on last December.


Thanks for your interest.

Kind regards,
Daniel




signature.asc
Description: OpenPGP digital signature

The connections resets after some time.

[Daniel Bareiro]

Hi all!

It's been a bit more than a week since I've been observing that, from
time to time, I lose the established connections. I realize this because
I have for example an SSH connection against a server in France that
freezes and a few minutes later I see that Pidgin reconnects.

It is quite strange. At first I noticed this from my notebook connected
via wifi to a wireless router that is connected to a switch.

Here some connection loss records (there may have been more, but these
are the ones that I registered):


13/01:
--

08.09
09.16
10.29
12.06
13.09
14.10
15.33
18.02
20.31
22.13

14/01:
--

07.33
08.42
09.54
11.13
12.27
15.09
16.05
17.27
19.54
22.15

15/01:
--

13.23
18.01
19.16
20.35
22.55

16/01:
--

00.10
10.05
11.16

12.10 => Here, to rule out that this was a problem in the wireless
connection, I connected the notebook to the same router but this time
wired. Reconnections persisted, as you can see.

12.34
14.58
16.11

16.17 => So I did what I think would be the definitive test: I connected
the notebook to the cablemodem directly, wired. Reconnections persisted.

17.30
18.40
19.57

20.56 => Again change to wireless mode as the cuts are given by
connecting directly.

21.10
22.44

17/01:
--
07.21
08.14
09.53
10.44

14.25
15.39
17.21

17.38 => Reset cablemodem and set it up again.

18/01:
--

20.35 => There were no cuts from 17.38 on 17/01 until this time.

19/01:
--
07.48
09.02
10.15
11.22
12.19
15.05
16.11
17.35
18.42
20.01

Reboot cablemodem from the Internet provider at approximately 9:00 pm to
see if this solves the problem.

20/01:
--
17.21
18.36
19.44
21.15
22.21
23.27

21/01:
--
01.56
03.09

10.05
10.37
11.49
13.18
14.17
15.32
16.46
18.09
19.13
20.31
22.08
22.58

22/01:
--
00.11
01.21
02.37

10.07
11.21
12.36
13.43
16.11
17.26
19.12
20.14
21.39
22.31
23.35

23/01:
--

07.05
08.18
09.26
10.40
15.40
16.59
18.04
19.20
20.32
21.50

24/01:
--

05.38
06.30
07.42

10.12
11.21


To rule out a problem with the notebook (with Debian Jessie 8.6), I have
tried connecting a PC (also with Debian Jessie 8.6) directly to the
cablemodem, wired, and observed the same behavior.

It's very weird. The cablemodem does not lose Upstream and Downstream
synchronization, but nevertheless I see that the established connections
are lost (for example, instant messaging, SSH, or HTTP, to mention a few).

I do not know if it will be related, but on 05/01 there was a service
interruption between 09.25 and 11.35. After the service was restored, I
noticed that I was changed from CMTS 10.94.0.1 to 10.96.0.1. Maybe some
problem in configuring this CMTS?

Thinking that this could be because it changes the public IP, I checked
the log of a script that I have to update against Afraid DNS service.
But several days ago the IP does not change so that does not seem to be
the problem.


What do you think? Will it be a problem of the Internet provider?


Thanks in advance.

Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Re: Alternative to Adobe Reader, anyone?

[Daniel Bareiro]

Hi, Lisi.

On 31/10/16 08:07, Lisi Reisz wrote:

>> "fit to page" function depends on printer driver settings, not printer
>> software.
>> You may change your cups/printer settings:
>> http://localhost:631/
> 
> Where?  In which section can you make the change you suggest?  I remember and 
> have set a setting for turning pages if necessary, but not one for fitting to 
> printable area.

Maybe it is a "lpr" option:

https://www.cups.org/doc/options.html

(See "Scaling to Fit")


Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Re: imapsync and Debian

[Daniel Bareiro]

Hi, Jochen.

On 14/10/16 16:30, Jochen Spieker wrote:

>> I am planning to migrate about 200 e-mail accounts from a mail server
>> using Dovecot to a mail server running Cyrus.

> Sounds weird! I though most people migrate _to_ Dovecot nowadays (if
> they haven't already). Care to elaborate the reasons? I don't want to
> discuss it, I am just curious.

No problem. On the contrary. I appreciate your interest :-) It is not
about migrate to a different IMAP server but a problem of the
environment itself. It turns out that people who supposedly were dealing
with that server, abandoned it too much. It is a server with Squeeze and
they do not even bother to use the LTS repositories, so more than two
years ago that server is without security updates.

So I thought it would be less painful to do a clean installation of
Jessie and migrate everything to this new server (using Cyrus IMAP). But
beyond that, most worrying is on that server without updating for so
long is the institutional website exposed to anything.

So that is a not minor matter that we have to consider to be sure that
this site will work with the PHP version of Jessie. I think both options
(upgrade to Jessie from the current state, such as migrating to a new
host with Jessie) take a lot of work, but I think the second alternative
will be less painful and allow me to have a better control over
migration as well as divide it into several phases. Anyway, all comments
are welcome :-)

>> The idea is to migrate emails maintaining the status read, unread, etc,
>> and also synchronize Draft, Sent and Trash folders in each mailbox.
>>
>> I think the best will be make it through IMAP. This would also be
>> agnostic to the storage mechanism used (MAILDIR, system users accounts,
>> etc) in the source and destination servers. Following this course of
>> action, I found this [1] interesting article written by Falko Timme in
>> HowtoForge.

> Offlineimap can also do IMAP to IMAP synchronization. The author of
> imapsync mentions it on [4] as well.

Thank you. I'll take a look.


Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Re: imapsync and Debian

[Daniel Bareiro]

Hi, Henrique.

On 14/10/16 11:38, Henrique de Moraes Holschuh wrote:
> On Fri, 14 Oct 2016, Daniel Bareiro wrote:
>> For the current license, this could make it a candidate for
>> incorporation in the Debian repositories again?

> We don't usually distribute software against upstream wishes.  I suppose
> there are exceptions, but IMHO there aren't any exceendingly good
> reasons to have imapsync as one of them.
> 
> I am not going to even bother trying to understand if we can actually
> distribute imapsync in Debian main given its very unusual license:
> http://imapsync.lamiral.info/LICENSE
> 
> Besides, it looks like the software is priced extremely fairly.  You pay
> to help its continuing development *once* per lifetime.  If EUR 50 is
> too much, read carefully the section about the price in bitcoins...

Thanks for your reply.

Yes, I agree that it is a somewhat strange license. I also understand
that the reasons of the developer are very respectable and perhaps for
that he makes no direct advertising on how to obtain the source code
even though this is possible. It was just a curious question that I made
without intention to limit their income.


Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

imapsync and Debian

[Daniel Bareiro]

Hi all!

I am planning to migrate about 200 e-mail accounts from a mail server
using Dovecot to a mail server running Cyrus.

The idea is to migrate emails maintaining the status read, unread, etc,
and also synchronize Draft, Sent and Trash folders in each mailbox.

I think the best will be make it through IMAP. This would also be
agnostic to the storage mechanism used (MAILDIR, system users accounts,
etc) in the source and destination servers. Following this course of
action, I found this [1] interesting article written by Falko Timme in
HowtoForge.

But it seems that imapsync is no longer available in the Debian
repositories [2] because the developer was implementing a payment model
for obtaining this software and then maybe he thought that Debian could
affect their income so he gave a resounding "No" [3] to continue
distributing it. A very respectable decision, I think.

I was checking the official site [4] of imapsync and even though the
developer seems to have a paid business model, it seems that the source
code is still available. In fact he has documented the Debian
installation process [5] and there he makes mention of downloading a
tarball. Although I do not see a link on where to get the tarball. Maybe
I'm missing something?

It seems that the license [6] has no restrictions, but it is unclear
where to get the code (again, if I'm missing something, please let me
know). Apparently there is a repository on Github for imapsync [7] but I
have come to it using a search engine.

For the current license, this could make it a candidate for
incorporation in the Debian repositories again?



Thanks in advance.

Kind regards,
Daniel

[1]
https://www.howtoforge.com/how-to-migrate-mailboxes-between-imap-servers-with-imapsync
[2] https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=609845
[3] https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=609845#60
[4] https://imapsync.lamiral.info
[5] https://imapsync.lamiral.info/INSTALL.d/INSTALL.Debian.txt
[6] https://imapsync.lamiral.info/NOLIMIT
[7] https://github.com/imapsync/imapsync



signature.asc
Description: OpenPGP digital signature

Re: Recommendation: Backup system

[Daniel Bareiro]

Hi, Richard.

On 04/10/16 23:06, Richard Hector wrote:

> My current challenge is to back up windows boxes - if I can get rsync to
> work (maybe DeltaCopy? Not sure if that will work how I want), I guess
> I'll be stuck doing a local rsync of a smbfs mount ... unless someone
> has a better suggestion.

Some time ago I started a thread [1] on the list for this topic. The
Cygwin SSH server seems to run smoothly although I have not yet
implemented it on a daily basis.


Kind regards,
Daniel

[1] https://lists.debian.org/debian-user/2016/08/threads.html#00040



signature.asc
Description: OpenPGP digital signature

virt-clone changes the file format from qcow to raw

[Daniel Bareiro]

Hi all!

I wonder if someone is experiencing the following behavior that I think
is a bug in virt-clone.

When I clone a virtual machine with a qcow disk, the cloned machine
changes its disk to raw format.

However, the XML configuration file for the cloned machine indicates a
qcow type. Due to this inconsistency, a failure occurs when start the
cloned virtual machine since Libvirt expect to find a qcow disk, but it
is a raw disk.

Sequence of steps to reproduce the problem:

# virt-clone --original example --name clone1 --file
/space/images/clone1.qcow


ss01:/var/lib/libvirt/images# file example.qcow2
example.qcow2: QEMU QCOW Image (v3), 2147483648 bytes

ss01:/space/images# file clone1.qcow
clone1.qcow: DOS/MBR boot sector


Thanks in advance.


Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Re: Baja

[Daniel Bareiro]

Hi, Hugo.

On 12/09/16 21:33, Hugo Alberto Bertheau Delgado wrote:

> Baja
> 
> Gracias

Please see:

List-Unsubscribe:


Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Re: Debian server for backups of Windows clients

[Daniel Bareiro]

Hi, Celejar

On 09/09/16 18:18, Celejar wrote:

 My laptop has 802.11 a/b/g WiFi and Fast Ethernet.  Wireless data
 transfers are slow (~50 Mbps).  Wired is twice as fast (100 Mbps); still
 slow.  Newer WiFi (n, ac) should be faster, but only the newest WiFi
 hardware can match or beat Gigabit.

>>> You get ~50Mbps over a/b/g? 54Mbps is the theoretical maximum, and
>>> everything I've read says that 20-24Mbps is the real-world maximum.

>> Still, 20-24 Mbps is more than 10 Mpbs I was seeing with rsync. There
>> could be a bottleneck somewhere?

> As per your own suggestion in another message, definitely benchmark
> with iperf to see if that's better.

Yes, it can be. I was thinking about what I said in a previous message
about the control information added by rsync on the packets sent.

I think this would be important only if we focus on the performance
(number of bits of data sent / total number of bits sent). In this case,
the focus is the transfer rate, for which the amount of control bits
used would be irrelevant since I think we need to know how many bits per
second we are getting, regardless of the utility have those bits.

> And as we discussed in another thread some time ago, (especially) if 
> you're using wireless, benchmark throughput in *both* directions,
> since the transmitter (or receiver) may be better on one machine than
> on another.

Interesting sidelight. Thanks for sharing.


Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Re: Debian server for backups of Windows clients

[Daniel Bareiro]

Hi, deloptes.

On 09/09/16 19:06, deloptes wrote:

>> Still, 20-24 Mbps is more than 10 Mpbs I was seeing with rsync. There
>> could be a bottleneck somewhere?

> In my case it was the IO on the disk - I couldn't do more than 12Mbps even
> on wired connection, because I have encrypted disk ... it took me a while
> to understand why though.

This is an interesting fact. Because 'orion' (the notebook used in the
mentioned test) also has an encrypted disk. In the test, the notebook
was pulling the files on the Windows VM on the wired network.

root@orion:~# dmsetup ls --target crypt
sda5_crypt  (254, 0)

root@orion:~# cryptsetup luksDump /dev/sda5 | grep Version -A3
Version:1
Cipher name:aes
Cipher mode:xts-plain64
Hash spec:  sha1

viper@orion:~$ lsblk --fs
NAME FSTYPE LABEL UUID MOUNTPOINT
sda
├─sda1 /boot
├─sda2
└─sda5
  └─sda5_crypt
├─main-swap[SWAP]
├─main-root/
└─main-datos   /datos
sr0


I did not think this could affect so strongly in the network transfer.


Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Re: SMTP relay issue with emails to specific domain

[Daniel Bareiro]

Hi, Joe.

Thanks for your reply.

On 09/09/16 18:06, Joe wrote:

>>> An email client connects to its SMTP smarthost using SMTP, so
>>> there's no way a given SMTP server can tell whether it's a client
>>> (MUA) or another SMTP server (MTA) trying to connect to it.  

>> That's outdated information.
>>
>> SMTP is used to exchange messages between mail servers (MTAs), but
>> a client submitting a new message to its designated relay may use
>> the "Submission" protocol on port 587 instead.  (Really old clients
>> may still use SMTP.)
>>
>> Relay control is a pretty important, nontrivial field.  

> And a separate issue in this case, where no relaying was requested. The
> protocol used is still SMTP, possibly with a few bells and whistles
> bolted on, and does not vary depending on whether a mail client or
> server is the originator. The port and authentication required vary
> according to whether local delivery or relaying is occurring, not
> according to what kind of software is on the transmitting end.
> 
> I've used a SMTP server to send authenticated mail to another server,
> as it was necessary in that time and place. The receiving server
> couldn't tell that the sender was another server. I've used a terminal
> window, a mail client by anyone's standards, to send unauthenticated
> port 25 SMTP directly to a recipient's server, something a client is
> not normally expected to do.
> 
> The issue in this case is that a SMTP server *seems* to be demanding
> authentication for local delivery. There may be more to it than that,
> but certainly there are DNS irregularities. There is no MX record for
> the domain (which, to be honest, I would have thought meant that no
> delivery was even attempted), and the domain administrators may have
> made other configuration errors. It may just be that the OP's postfix
> installation is failing to find the MX, getting confused, and returning
> an error message which is less than helpful.

Apparently, in Hostgator they don't have an MX record for this domain.
Even making the query directly to the Google DNS, it returns nothing:

---
$ dig -t mx @8.8.8.8 lkeusa.com

; <<>> DiG 9.9.5-9+deb8u6-Debian <<>> -t mx @8.8.8.8 lkeusa.com
; (1 server found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 17815
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 512
;; QUESTION SECTION:
;lkeusa.com.IN  MX

;; AUTHORITY SECTION:
.   1799IN  SOA ns6073.hostgator.com.
root.gator3037.hostgator.com. 1372031250 86400 7200 360 86400

;; Query time: 254 msec
;; SERVER: 8.8.8.8#53(8.8.8.8)
;; WHEN: Fri Sep 09 20:09:22 ART 2016
;; MSG SIZE  rcvd: 106
---

According to the Section 5 of RFC 5321 [1], if no MX record is present
mail servers should fall back to the A record for the domain. This is
probably what's happening in this case. Although not clarify the problem
of authentication that I am observing.

Tomorrow I'll try to make a test from the other side to see if I get the
same error.


Kind regards,
Daniel

[1] https://tools.ietf.org/html/rfc5321#section-5



signature.asc
Description: OpenPGP digital signature

Re: Debian server for backups of Windows clients

[Daniel Bareiro]

Hi, Celejar.

On 09/09/16 15:51, Celejar wrote:

>> My laptop has 802.11 a/b/g WiFi and Fast Ethernet.  Wireless data
>> transfers are slow (~50 Mbps).  Wired is twice as fast (100 Mbps); still
>> slow.  Newer WiFi (n, ac) should be faster, but only the newest WiFi
>> hardware can match or beat Gigabit.

> You get ~50Mbps over a/b/g? 54Mbps is the theoretical maximum, and
> everything I've read says that 20-24Mbps is the real-world maximum.

Still, 20-24 Mbps is more than 10 Mpbs I was seeing with rsync. There
could be a bottleneck somewhere?


Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Re: Debian server for backups of Windows clients

[Daniel Bareiro]

Hi, David.

Thanks for your reply.

On 09/08/16 22:57, David Christensen wrote:

>> As you can see, the transfer was over than 3 GB and it were not hung. I
>> did several tests and all were without problems.
>>
>> I wonder if in the mentioned episodes of hangs you remember whether the
>> transferred volume was higher or lower than in this case (or it hung
>> randomly).

> Script it and run it every night for a week.  If it works every time,
> try again for 30 days.  Then 90.  Then 365.

Yes, I have to start testing on a daily basis. Anyway, the mentioned
test results were quite satisfactory.

>> As a side note, the larger file (disk01.img) took more than 40 minutes
>> to be transferred. So the rsync was running quite some time without
>> hanging. While it does not have to do with the topic of this thread, in
>> rsync progress data we can see that the average transfer rate was 10
>> Mbps. I guess it will have to do with that I'm going through a wireless
>> network. In this testing the Debian computer is a notebook connected to
>> the wireless router and the KVM Windows is on the wired network. May it
>> be so large the decrease in transfer speed? The wireless router is
>> TPLink WDR3600 with OpenWRT.

> My laptop has 802.11 a/b/g WiFi and Fast Ethernet.  Wireless data
> transfers are slow (~50 Mbps).  Wired is twice as fast (100 Mbps); still
> slow.  Newer WiFi (n, ac) should be faster, but only the newest WiFi
> hardware can match or beat Gigabit.

I think it is reasonable to expect that the wireless transfer rate is
lower than the one obtained in a wired network. But there is a big
difference compared to the ~50 Mpbs you mentioned. The peak obtained
with rsync was 10 Mbps. Maybe the best is to take a metric with iperf,
what do you think?

> For the initial full backup, I have found that scp is faster than rsync.

It is likely, since rsync adds control information used by rsync
algorithm to track the synchronization.

> When I know that I've added a bunch of new and/or large files on the
> sender, I sometimes try the rsync 'whole-file' option.  As I haven't
> benchmarked it, I don't know if/when it is helping.
>
> My biggest problem with rsync is when I reorganize file/ directory trees
> on my file server; especially big stuff -- raw video, movies, disk
> images, ISO images, etc..  I have yet to figure out an rsync incantation
> that does the corresponding moves on the destination, rather than
> mindlessly copying and deleting 100's of GB.  I have often considered
> writing an rsync prelude script for just this case.

If you make a move of files, but always within the same root filesystem
provided to rsync, you might want to consider using --delete for get an
identical image in the source and destination.


Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Re: SMTP relay issue with emails to specific domain

[Daniel Bareiro]

On 09/09/16 15:05, Stephan Beck wrote:

> Hi Daniel,

Hi, Stephan. Thanks for your reply.

>>> I recently set up an relay SMTP server on a host of Digital Ocean, using
>>> Debian and Postfix.
>>>
>>> The main reason for setting up this relay is that the cPanel VPS is
>>> hosted at Godaddy, and they force everyone to send email through their
>>> shared SMTP relay. As expected, that shared relay is continually being
>>> flagged for spam.
>>>
>>> So the outgoing emails are routed through this server. Usually
>>> everything worked smoothly. Mails to accounts on Google, Yahoo, Hotmail
>>> and other servers are delivered. But I found a problem with a specific
>>> domain:
>>>
>>> ---
>>> Sep  7 14:36:11 smtp postfix/smtp[8036]: 5EAA520AAD:
>>> to=, relay=lkeusa.com[50.87.144.56]:25], delay=13,
>>> delays=0.91/0.06/6.1/5.9, dsn=5.0.0, status=bounced (host
>>> lkeusa.com[50.87.144.56] said: 550-Please turn on SMTP Authentication in
>>> your mail client, or login to the 550-IMAP/POP3 server before sending
>>> your message.  smtp.server.com 550-[x.y.z.t]:41988 is not permitted to
>>> relay through this server 550 without authentication. (in reply to RCPT
>>> TO command))
>>> ---
>>>
>>> I'm not sure why this specific domain is complaining in this way.

> I think it's because it requires SMTP authentication, whereas apparently
> the other servers you mention don't (mails are delivered). Have you
> checked if the mail client's option mail.smtpserver.default.authMethod
> is set to 0, which means there is no SMTP authentication at all. That
> could explain the issue.
> For a list of methods, see (1)
> Looking at exim's server ready 220 response below, it does not like
> people to send spam or bulk email.
> The 550 return code means that the mailbox you are trying to reach can't
> be found or you are lacking access rights. In your case it's the latter,
> as the server response indicates.
> 
> 
> (1) http://www.afterlogic.com/mailbee/docs/SMTP_props_AuthMethod.htm

H... I do not quite understand this situation. That is, lkeusa.com
asked to use SMTP authentication, but this would make sense if the email
client connects directly to lkeusa.com for deliver the email. And this
is not the case. The client connects to an intermediate server, the
relay server, which is the one delivering the email to lkeusa.com. Or
maybe I'm missing something?


Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Re: SMTP relay issue with emails to specific domain

[Daniel Bareiro]

On 08/09/16 13:56, Daniel Bareiro wrote:

> I recently set up an relay SMTP server on a host of Digital Ocean, using
> Debian and Postfix.
> 
> The main reason for setting up this relay is that the cPanel VPS is
> hosted at Godaddy, and they force everyone to send email through their
> shared SMTP relay. As expected, that shared relay is continually being
> flagged for spam.
> 
> So the outgoing emails are routed through this server. Usually
> everything worked smoothly. Mails to accounts on Google, Yahoo, Hotmail
> and other servers are delivered. But I found a problem with a specific
> domain:
> 
> ---
> Sep  7 14:36:11 smtp postfix/smtp[8036]: 5EAA520AAD:
> to=<x...@lkeusa.com>, relay=lkeusa.com[50.87.144.56]:25], delay=13,
> delays=0.91/0.06/6.1/5.9, dsn=5.0.0, status=bounced (host
> lkeusa.com[50.87.144.56] said: 550-Please turn on SMTP Authentication in
> your mail client, or login to the 550-IMAP/POP3 server before sending
> your message.  smtp.server.com 550-[x.y.z.t]:41988 is not permitted to
> relay through this server 550 without authentication. (in reply to RCPT
> TO command))
> ---
> 
> I'm not sure why this specific domain is complaining in this way.
> 
> Another thing that is strange to me is that apparently a dig query is
> not returning nothing:
> 
> ---
> $ dig -t mx lkeusa.com
> 
> ; <<>> DiG 9.9.5-9+deb8u6-Debian <<>> -t mx lkeusa.com
> ;; global options: +cmd
> ;; Got answer:
> ;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 31796
> ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1
> 
> ;; OPT PSEUDOSECTION:
> ; EDNS: version: 0, flags:; udp: 4096
> ;; QUESTION SECTION:
> ;lkeusa.com.IN  MX
> 
> ;; Query time: 531 msec
> ;; SERVER: 10.1.0.6#53(10.1.0.6)
> ;; WHEN: Thu Sep 08 13:48:38 ART 2016
> ;; MSG SIZE  rcvd: 39
> ---
> 
> But Postfix was trying to deliver the mail in 50.87.144.56.
> 
> Maybe they were making changes to the remote server?

Well, it seems that in the absence of an MX record, Postfix uses the A
record that it find by querying that domain and in that IP address an
Exim server responds:

---
# telnet lkeusa.com 25
Trying 50.87.144.56...
Connected to lkeusa.com.
Escape character is '^]'.
220-gator3037.hostgator.com ESMTP Exim 4.86_1 #1 Thu, 08 Sep 2016
12:15:19 -0500
220-We do not authorize the use of this system to transport unsolicited,
220 and/or bulk e-mail.
---

But I have not yet determined what the cause of that error 550 which is
not present with other SMTP servers like Gmail.

I will continue investigating. Any comments that shed some more light on
this will be appreciated.


Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

SMTP relay issue with emails to specific domain

[Daniel Bareiro]

Hi all!

I recently set up an relay SMTP server on a host of Digital Ocean, using
Debian and Postfix.

The main reason for setting up this relay is that the cPanel VPS is
hosted at Godaddy, and they force everyone to send email through their
shared SMTP relay. As expected, that shared relay is continually being
flagged for spam.

So the outgoing emails are routed through this server. Usually
everything worked smoothly. Mails to accounts on Google, Yahoo, Hotmail
and other servers are delivered. But I found a problem with a specific
domain:

---
Sep  7 14:36:11 smtp postfix/smtp[8036]: 5EAA520AAD:
to=, relay=lkeusa.com[50.87.144.56]:25], delay=13,
delays=0.91/0.06/6.1/5.9, dsn=5.0.0, status=bounced (host
lkeusa.com[50.87.144.56] said: 550-Please turn on SMTP Authentication in
your mail client, or login to the 550-IMAP/POP3 server before sending
your message.  smtp.server.com 550-[x.y.z.t]:41988 is not permitted to
relay through this server 550 without authentication. (in reply to RCPT
TO command))
---

I'm not sure why this specific domain is complaining in this way.

Another thing that is strange to me is that apparently a dig query is
not returning nothing:

---
$ dig -t mx lkeusa.com

; <<>> DiG 9.9.5-9+deb8u6-Debian <<>> -t mx lkeusa.com
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 31796
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;lkeusa.com.IN  MX

;; Query time: 531 msec
;; SERVER: 10.1.0.6#53(10.1.0.6)
;; WHEN: Thu Sep 08 13:48:38 ART 2016
;; MSG SIZE  rcvd: 39
---

But Postfix was trying to deliver the mail in 50.87.144.56.

Maybe they were making changes to the remote server?


Thanks in advance.

Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature

Re: Advice on downloading software please

[Daniel Bareiro]

On 27/08/16 16:45, Brian wrote:

>> On 2016-08-27 08:55, Steve Greig wrote:
>>> I would like to download a programme (opencpn) onto my laptop which is
>>> running debian. It is so long since I have done this I can not
>>> remember how to start. Also I am not sure which version of debian I
>>> have which seems to be relevant according to the website. Instructions
>>> are given at x [1].
>  ^
>  |
>  |
> What happened here-| ? The link has disappeared, Censorship at work?

Maybe some intermediate processing performed by openmailbox.org,

Kind regards,
Daniel



signature.asc
Description: OpenPGP digital signature