[gentoo-user] syslog-ng misbehaving
Before I seek out a mailing list for syslog-ng, I was hoping I could get
some tips from people here. I recently started trying to separate logs
into various functions rather than letting everything go to
/var/log/messages. So I created three filters in syslog-ng. One is
intended to separate sshd messages, one to separate samba messages, and
the other to say "everything ELSE". The problem I seem to be having is
that the everything ELSE log still shows things that should have been
removed! For example, when I login via ssh I get identical notification
in the /var/log/messages and in /var/sshd/sshd.log. So I'm lost. I'm
including my syslog-ng.conf. Perhaps someone here can tell me what I'm
doing wrong.
Thanks!
-- CUT HERE - syslog_ng.conf --
@version: 3.30
@include "scl.conf"
options {
threaded(yes);
chain_hostnames(no);
stats_freq(43200);
mark_freq(3600);
};
source src { system(); internal(); };
filter samba { program("samba"); };
filter ssh_messages { facility("AUTH") and level("INFO"); };
filter syslog { not filter("ssh_messages") and not filter("samba"); };
destination console { file("/dev/tty12"); };
destination messages { file("/var/log/messages"); };
destination sshd_log { file("/var/log/sshd/sshd.log"); };
destination smb_logs { file("/var/log/samba/samba.log"); };
log { source(src); destination(smb_logs); filter(samba); flags(final); );
log { source(src); destination(sshd_log); filter(ssh_messages);
flags(final); };
log { source(src); destination(console); filter(syslog); };
log { source(src); destination(messages); filter(syslog); };
-- CUT HERE --
Re: [gentoo-user] Looking for other Seamonkey users
antlists wrote: > On 06/04/2021 18:30, Dale wrote: >> Wols Lists wrote: >>> On 06/04/21 05:19, Dale wrote: Another question, can I just copy my current emails over and "import" them? I think Seamonkey uses mbox type setup. I know I could with Thunderbird but it was a bit fussy. It did work tho. It also made it easier to switch back. >>> Consider setting up a local imap server. Do all email clients do imap >>> nowadays? >>> >>> I use thunderbird, and since fetchmail broke, I just use rules to pull >>> everything down from the net, sort it, and copy it to local folders on >>> my imap server. >>> >>> You could then use mutt, or neomutt, or pine, or alpine, or >>> whatever, to >>> read (most of) your mail. And any html garbage they couldn't handle, >>> you >>> could use thunderbird or seamonkey or whatever. >>> >>> No need to move mail between different clients. And as for moving your >>> current stuff over, you just move it from Seamonkey's local store to >>> the >>> imap server and it'll appear for all the other clients. >>> >>> Because I move around between home computers, having my mail like this >>> exposed on an imap server is brilliant ... >>> >>> Cheers, >>> Wol >>> >>> >> >> >> If I understand this correctly, that could be a good idea. I use gmail, >> want to switch so bad I can taste it, and pop access to download all >> emails to my hard drive. I do that because if I run into trouble with >> my network, I have emails just in case I can find a mailing list post >> that will help. IMAP requires the internet from my understanding. From >> my understanding of your idea, I'd use a email program to download and >> store the emails for me here on my system and then use any frontend, >> Seamonkey, Thunderbird or whatever to read, reply etc. It would still >> give me a local copy I can access without a network connection but I can >> use whatever tool I want to see them. Interesting. That sounds like a >> awesome idea. Once moved, I'd never have to move it again if I change >> what I use to view emails. > > All imap requires is an imap server. The ISPs run them, Google runs > them, and why can't you run one? > > I run Courier-imap, most people seem to swear by Dovecote. Just do a > bit of reading up. >> >> One thing, among others, I like about Seamonkey, folders and automatic >> sorting. For example, your reply went to a folder where all Gentoo user >> mailing list emails go. It also shows them by thread. I like the >> thread option for mailing lists but can disable it in other folders >> where threads don't do well. I repeat that for other mailing lists, >> -dev for example, but also for my bank, online retailers like ebay or >> Amazon etc. Each has their own place to go. One reason I do that, my >> filters are set up in such a way that if a email is made to look like >> one of those but comes from somewhere else, a scam or phishing, it >> doesn't filter. It stays in the inbox and that tells me to be >> suspicious. If I were to use IMAP, could I still do that? Does IMAP >> use folders and filters? I admit, I don't think I've ever used IMAP. > > Imap is quite happy with folders. Google let you create folders, IMAP > lets you access them. No problem. >> >> This sounds like a interesting idea. I've read where people on this >> list set up such a thing and it doesn't seem to complicated. I might >> could handle that with a good howto. >> >> Thanks much for thinking outside the box a bit here. This could give me >> lots of good options. >> > Read up on Courier and Dovecot. I'm sure people here will help you set > it up. Once you've got it working, point Seamonkey at it and see if > you can create folders. > > Then just point your existing rules to move your emails into your imap > folders. You can keep Gmail, but all your folders and emails will be > stored locally. > > And then, just like you can use any old client to access Gmail, you > can use any old client to access your local imap server! > > Cheers, > Wol > > I've done some research. It seems Dovecot is what I need. It uses mbox and has some features I might need one day already where Courier doesn't but there isn't much difference really. If anyone is curious, the comparison is here. https://en.wikipedia.org/wiki/Comparison_of_mail_servers The biggest thing, mbox. If I recall correctly that is what Seamonkey uses and I should be able to import those easy enough. It at least gives me a head start. Since this is a whole new deal, going to start a new thread if nobody pops up and says nooo to Dovecot. I found a guide here: http://www.wikigentoo.ksiezyc.pl/Dovecot.htm So far, it is Gentoo based. I found another one but it is Ubuntu based. May work but commands are different. Trying to go by a Gentoo based one. If anyone has a better one, please share links. May start new thread in a day or so if no one shouts no. Dale :-) :-) P. S. One howto mentions a squirrel. I like
Re: [gentoo-user] Cron and disabling emails for one script only
John Covici wrote: > On Tue, 06 Apr 2021 13:43:31 -0400, > Dale wrote: >> Howdy, >> >> I set up a hard drive to backup my emails, world file, /etc and a couple >> other things. I been doing it manually but finally set up a cron job to >> run it automatically. I call it a script but some may laugh at me >> calling it that. Anyway, I got cron to run it just fine. It runs and >> copies it over just like it should. I set it to do that each hour. >> Thing is, it sends a email every time it does it. I don't mind a email >> if there is a error but don't want one if it runs successfully. This is >> the cron file I set up. It's placed in the hourly directory. >> >> >> #!/bin/bash >> /root/mail-backup > /dev/null 2>&1 || true >> # >/dev/null 2>&1 >> >> >> I got a lot of hits doing a google search and the only thing I see is to >> direct it to /dev/null. From examples I've seen, this should work. I >> then ran across the one currently up there with true in it. I don't >> understand that but tried it anyway. It still sends emails. I also >> tried the one commented out below that as well. Still emails. >> >> Keep in mind, I do not want to disable ALL emails, just this one >> script. How does one disable emails for this one cron job? Do I have a >> typo or putting it in wrong place maybe? Everything I found shows this >> should work but obviously I'm doing something wrong. Again, error >> emails are fine. I don't want successful runs tho. >> >> Thanks much. > I think you have to do it in your actual backup script or put the > whole thing in the hourly directory putting >/dev/null at the end of > each rsync command, but leaving off the 2>&1, so you will get error > messages. > This seems to be working. Since I added the null bit to the script itself, it hasn't sent a email. I don't know if it will if it fails but I still have weekly backups as well. It seems I had the right option, just put it in the wrong place. I figured it would be something like that. Thanks to all. Dale :-) :-)
[gentoo-user] CTRL-C and pre-merge checks
Hello list, I've just started an emerge -e world to run overnight, and I realised I'd forgotten to mount /boot (for intel-microcode), so I hit CTRL-C to abort. It took several dozen attempts, because pre-merge checks were in progress. It seems that this operation doesn't pass the interrupt up the calling chain, as other operations do. Should I report a bug? -- Regards, Peter.
Re: [gentoo-user] IPsec
Pre-Script: I'm probably in a bad mental state to reply, but I want to
answer some valid questions before others reply. Please take what I say
and how I say it with a grain of salt. I don't mean anything personally.
I /do/ appreciate the constructive and thought provoking responses that
I'm getting.
On 4/6/21 1:07 PM, Sid Spry wrote:
Can you clarify why you need to use IPsec?
I don't have a /need/ in any normal sense. But I do /want/ to mess /
play with and learn about /IPsec/. -- I have used many other VPNs;
OpenVPN and WireGuard. But I'm finding my understanding of IPsec
lacking, hence my desire to learn about /IPsec/, specifically
/transport/ mode.
If it is to support a commercial client you may be better off
handing them a system based around BSD.
*blink*
Nothing against any of the BSDs, or any other Unix for that matter. But
... I think this is a /Linux/ mailing list. ;-) So ... suggesting
something other than Linux seems counterproductive.
More flexibility will be had from Linux, but pfSense/OPNsense gives
you a point and click web terminal which is easier to train in house
IT on due to the documentation available.
I'd like to add IPFire to that list. Especially considering that it's
Linux based. ;-)
The modes are also usually sufficient -- site to site tunnel (like
the appliances you're used to using), intranet protection, and routing
options for the same.
"Usually" being the operative word. "Sufficient" being in the eye of
the beholder.
*I* /personally/ _frequently_ fall outside of "usually". Being the
person that I am, what is "sufficient" for the vast majority of people
leaves me wanting.
If you control everything you can use wireguard or OpenVPN.
If it wasn't for the fact that I'm wanting to play with / learn about
IPsec, I would completely agree with you. However, my desire to learn
about /IPsec/ is in direct conflict with your otherwise reasonable
suggestion.
To answer some of your later questions in summary:
1. Of the projects libreswan seems to best maintained, though openswan
still releases regularly. I would start with libreswan. For racoon,
see https://www.netbsd.org/docs/network/ipsec/rasvpn.html.
2. Yes, see
https://libreswan.org/wiki/VPN_server_for_remote_clients_using_IKEv2.
Don't worry about embedding key material in your scripts (unless
you expect someone has bugged your monitor). The key material has
to be on disk in some form anyway.
Please allow me to elaborate.
I view -- what I understand to be the quintessential mode of operation
for -- Pre Shared Keys to have a security weakness ~> flaw in that both
ends must know the PSKs used for each direction. Thus compromising
either end completely compromises the security of the connection.
Further, if we assume that a per-system key is used for {en,de}cryption
(pick one, I don't think it matters which), then we can probably further
assume that the same per-system key is used for {en,de}cryption with
other additional systems. As such, compromising the PSK(s) on one
system likely compromises at least one of the PSK(s) for other systems.
Whats' more is that PSKs tend to be static. -- Maybe there are ways
with IKE to use PFS to ensure minimize damage done by knowing PSK(s).
I feel like most, if not all, of this is avoided by not having PSK(s) or
other keying material in scripts and on systems.
We are probably all familiar with having a TLS certificate key pair on
systems these days. So if we can leverage and re-use those key pairs,
that would be Really Nice™.
Typical usage has the tunnel creation commands referencing key
material.
There is a difference in referencing a PSK and referencing a key pair.
Especially when looking at the output of ps.
Bash disables history in noninteractive shells by default.
I feel like relying on a default, which can be changed, is not a good
basis for security. }:-)
3. Drop opportunistic encryption. It's best if you or the user knows
if the network is secure or not.
Agreed.
The O.E. is more to allow other systems to be able to communicate with
my system /more/ securely if they want to.
There are also ways to have IPTables allow IPsec protected traffic while
blocking unprotected traffic. Thus providing the hard pass / fail that
I think you're alluding to.
4. The authentication header (AH) does not provide
"security."
What does "security" mean?
I agree that AH does not provide /confidentiality/.
Encapsulating security payload (ESP) provides confidentiality and,
if selected, authentication. Check the docs -- usually you want
authentication and confidentiality, merely confidentiality allows
some classes of attacks.
I will check out the authentication option for ESP.
Though, I suspect it's going to be quite a bit more difficult to pull
off a MitM with ESP that's only providing confidentiality assuming that
proper authentication has recently happened in conjunction with
Re: [gentoo-user] Cron and disabling emails for one script only
On Tue, 6 Apr 2021 14:42:28 -0500, Dale wrote: > > cron only sends an email if the job produces any output. If the script > > follows the *nix principle of succeed quietly, fail noisily, you > > should only get emails when things go wrong. However without seeing > > your mail-backup script, it is hard to say what needs to change. > > > > The "|| true " part means this cron task will always return success, > > even if the script fails, which possibly is not what you want. > > > > > > > My script, if one wants to call it that, just has rsync commands in it. > It doesn't get fancy. I literally copy the commands from Konsole and > paste them in my text file. I make it executable and that's my script. > I wouldn't even think it rises to a bash thing even tho it is at the > top, cron likes it that way. For years, I been doing it manually. I > just wanted to automate the thing a bit. But what are the rsync commands and what information does cron mail you? Without this information, we can only make wild guesses as to what is going on. As a first wild guess though, rsync has a --quiet option that means it only outputs error messages, are you using this? As John said, your cron script only calls the backup script, so you may as well put that in cron.hourly. -- Neil Bothwick ...Advert for restaurant: "Exotic foods for all occasions. Police balls a speciality." pgp3YI58o6QnE.pgp Description: OpenPGP digital signature
[gentoo-user] Re: Looking for other Seamonkey users
On 2021-04-06, antlists wrote: > On 06/04/2021 19:30, Matt Connell (Gmail) wrote: >> On Tue, 2021-04-06 at 19:19 +0100, antlists wrote: >>> Imap is quite happy with folders. Google let you create folders, IMAP >>> lets you access them. No problem. >> Disclaimer: I haven't used Gmail in a few years. >> >> Interjection: Gmail does*not* support folders. Gmail uses*labels*, >> which mail clients will treat as folders. > > True. But I believe that's a recent change. No, it's always been that way -- at least for all of my GMail accounts. > Google is moving to labels for everything, and it's driving me nuts > in more ways than one ... > > I think of Google as using folders, because not that long ago that's > exactly what they did. Everything I've read, and all my experience since I started using mutt with Gmail many years ago has been that GMail's IMAP server has always implemented folders using the normal GMAIL label mechanism. And I've always been perfectly content with that implementation. -- Grant
Re: [gentoo-user] Looking for other Seamonkey users
On 06/04/2021 19:30, Matt Connell (Gmail) wrote: On Tue, 2021-04-06 at 19:19 +0100, antlists wrote: Imap is quite happy with folders. Google let you create folders, IMAP lets you access them. No problem. Disclaimer: I haven't used Gmail in a few years. Interjection: Gmail does*not* support folders. Gmail uses*labels*, which mail clients will treat as folders. True. But I believe that's a recent change. Google is moving to labels for everything, and it's driving me nuts in more ways than one ... I think of Google as using folders, because not that long ago that's exactly what they did. Cheers, Wol
Re: [gentoo-user] Cron and disabling emails for one script only
On Tue, 06 Apr 2021 13:43:31 -0400, Dale wrote: > > Howdy, > > I set up a hard drive to backup my emails, world file, /etc and a couple > other things. I been doing it manually but finally set up a cron job to > run it automatically. I call it a script but some may laugh at me > calling it that. Anyway, I got cron to run it just fine. It runs and > copies it over just like it should. I set it to do that each hour. > Thing is, it sends a email every time it does it. I don't mind a email > if there is a error but don't want one if it runs successfully. This is > the cron file I set up. It's placed in the hourly directory. > > > #!/bin/bash > /root/mail-backup > /dev/null 2>&1 || true > # >/dev/null 2>&1 > > > I got a lot of hits doing a google search and the only thing I see is to > direct it to /dev/null. From examples I've seen, this should work. I > then ran across the one currently up there with true in it. I don't > understand that but tried it anyway. It still sends emails. I also > tried the one commented out below that as well. Still emails. > > Keep in mind, I do not want to disable ALL emails, just this one > script. How does one disable emails for this one cron job? Do I have a > typo or putting it in wrong place maybe? Everything I found shows this > should work but obviously I'm doing something wrong. Again, error > emails are fine. I don't want successful runs tho. > > Thanks much. I think you have to do it in your actual backup script or put the whole thing in the hourly directory putting >/dev/null at the end of each rsync command, but leaving off the 2>&1, so you will get error messages. -- Your life is like a penny. You're going to lose it. The question is: How do you spend it? John Covici wb2una cov...@ccs.covici.com
Re: [gentoo-user] IPsec
On 06/04/2021 20:07, Sid Spry wrote: If you control everything you can use wireguard or OpenVPN. https://lwn.net/Articles/850098/ Salutory reading ... Cheers, Wol
Re: [gentoo-user] Cron and disabling emails for one script only
Neil Bothwick wrote: > On Tue, 6 Apr 2021 12:43:31 -0500, Dale wrote: > >> Keep in mind, I do not want to disable ALL emails, just this one >> script. How does one disable emails for this one cron job? Do I have a >> typo or putting it in wrong place maybe? Everything I found shows this >> should work but obviously I'm doing something wrong. Again, error >> emails are fine. I don't want successful runs tho. > cron only sends an email if the job produces any output. If the script > follows the *nix principle of succeed quietly, fail noisily, you should > only get emails when things go wrong. However without seeing your > mail-backup script, it is hard to say what needs to change. > > The "|| true " part means this cron task will always return success, even > if the script fails, which possibly is not what you want. > > My script, if one wants to call it that, just has rsync commands in it. It doesn't get fancy. I literally copy the commands from Konsole and paste them in my text file. I make it executable and that's my script. I wouldn't even think it rises to a bash thing even tho it is at the top, cron likes it that way. For years, I been doing it manually. I just wanted to automate the thing a bit. I hope I don't have to learn bash to do this. I'd delete the cron job and just go back to doing it manually. lol Dale :-) :-)
Re: [gentoo-user] IPsec
On Tue, Apr 6, 2021, at 10:35 AM, Grant Taylor wrote: > But I've started to get some more experience using IPsec without IKE > recently. > Can you clarify why you need to use IPsec? If it is to support a commercial client you may be better off handing them a system based around BSD. More flexibility will be had from Linux, but pfSense/OPNsense gives you a point and click web terminal which is easier to train in house IT on due to the documentation available. The modes are also usually sufficient -- site to site tunnel (like the appliances you're used to using), intranet protection, and routing options for the same. If you control everything you can use wireguard or OpenVPN. To answer some of your later questions in summary: 1. Of the projects libreswan seems to best maintained, though openswan still releases regularly. I would start with libreswan. For racoon, see https://www.netbsd.org/docs/network/ipsec/rasvpn.html. 2. Yes, see https://libreswan.org/wiki/VPN_server_for_remote_clients_using_IKEv2. Don't worry about embedding key material in your scripts (unless you expect someone has bugged your monitor). The key material has to be on disk in some form anyway. Typical usage has the tunnel creation commands referencing key material. Bash disables history in noninteractive shells by default. 3. Drop opportunistic encryption. It's best if you or the user knows if the network is secure or not. 4. The authentication header (AH) does not provide "security." Encapsulating security payload (ESP) provides confidentiality and, if selected, authentication. Check the docs -- usually you want authentication and confidentiality, merely confidentiality allows some classes of attacks. 5. Transport mode may be most appropriate, however you could have tunnels between all servers for redundancy. 6. Setting up the public key infrastructure will be most of the headache. > This is working and does enable IPsec /transport/ /mode/ between > $LeftHost and $RightHost. But it's completely manual at the moment. > Doesn't seem manual if you've got a script for it. A lot of people stop here. If you need consulting time I can offer it, but reading the linked pages should get you far enough along. I won't mind answering things in public but do wonder about your interest in IPsec.
Re: [gentoo-user] Looking for other Seamonkey users
On Tue, 6 Apr 2021 12:30:36 -0500, Dale wrote: > One thing, among others, I like about Seamonkey, folders and automatic > sorting. For example, your reply went to a folder where all Gentoo user > mailing list emails go. It also shows them by thread. I like the > thread option for mailing lists but can disable it in other folders > where threads don't do well. I repeat that for other mailing lists, > -dev for example, but also for my bank, online retailers like ebay or > Amazon etc. Each has their own place to go. One reason I do that, my > filters are set up in such a way that if a email is made to look like > one of those but comes from somewhere else, a scam or phishing, it > doesn't filter. It stays in the inbox and that tells me to be > suspicious. If I were to use IMAP, could I still do that? Does IMAP > use folders and filters? I admit, I don't think I've ever used IMAP. It does support folders. You can still do the sorting in Seamonkey and the results will be available to any other clients you use, but only if you run Seamonkey first. The alternative is to do the sorting when the mail is downloaded, using something like procmail. Then you mails will be sorted regardless of the client you use. -- Neil Bothwick WinErr 012: Window closed - Do not look inside pgpo6L8LiJMG2.pgp Description: OpenPGP digital signature
Re: [gentoo-user] Cron and disabling emails for one script only
On Tue, 6 Apr 2021 12:43:31 -0500, Dale wrote: > Keep in mind, I do not want to disable ALL emails, just this one > script. How does one disable emails for this one cron job? Do I have a > typo or putting it in wrong place maybe? Everything I found shows this > should work but obviously I'm doing something wrong. Again, error > emails are fine. I don't want successful runs tho. cron only sends an email if the job produces any output. If the script follows the *nix principle of succeed quietly, fail noisily, you should only get emails when things go wrong. However without seeing your mail-backup script, it is hard to say what needs to change. The "|| true " part means this cron task will always return success, even if the script fails, which possibly is not what you want. -- Neil Bothwick The gene pool could use a little chlorine. pgpvuULBJcKJG.pgp Description: OpenPGP digital signature
Re: [gentoo-user] Looking for other Seamonkey users
On Tue, 2021-04-06 at 19:19 +0100, antlists wrote: > Imap is quite happy with folders. Google let you create folders, IMAP > lets you access them. No problem. Disclaimer: I haven't used Gmail in a few years. Interjection: Gmail does *not* support folders. Gmail uses *labels*, which mail clients will treat as folders. This can result in unexpected behavior, such as the same message appearing in different folders because it is labeled in two different ways, if you are not aware of this and expecting it to happen. One less reason to use Gmail.
Re: [gentoo-user] Cron and disabling emails for one script only
On 06/04/2021 18:43, Dale wrote: Keep in mind, I do not want to disable ALL emails, just this one script. How does one disable emails for this one cron job? Do I have a typo or putting it in wrong place maybe? Everything I found shows this should work but obviously I'm doing something wrong. Again, error emails are fine. I don't want successful runs tho. Are you sure? What if the job doesn't run (and doesn't send a failure message). Try and get it to use some distinguishing characteristic for your email client to separate success and failure. Then you can dump all your success messages into a folder that expires messages. If you suddenly discover you've got no messages your know your cron job is stuffed. If your job is stuffed you get the error email. Cheers, Wol
Re: [gentoo-user] Looking for other Seamonkey users
On 06/04/2021 18:30, Dale wrote: Wols Lists wrote: On 06/04/21 05:19, Dale wrote: Another question, can I just copy my current emails over and "import" them? I think Seamonkey uses mbox type setup. I know I could with Thunderbird but it was a bit fussy. It did work tho. It also made it easier to switch back. Consider setting up a local imap server. Do all email clients do imap nowadays? I use thunderbird, and since fetchmail broke, I just use rules to pull everything down from the net, sort it, and copy it to local folders on my imap server. You could then use mutt, or neomutt, or pine, or alpine, or whatever, to read (most of) your mail. And any html garbage they couldn't handle, you could use thunderbird or seamonkey or whatever. No need to move mail between different clients. And as for moving your current stuff over, you just move it from Seamonkey's local store to the imap server and it'll appear for all the other clients. Because I move around between home computers, having my mail like this exposed on an imap server is brilliant ... Cheers, Wol If I understand this correctly, that could be a good idea. I use gmail, want to switch so bad I can taste it, and pop access to download all emails to my hard drive. I do that because if I run into trouble with my network, I have emails just in case I can find a mailing list post that will help. IMAP requires the internet from my understanding. From my understanding of your idea, I'd use a email program to download and store the emails for me here on my system and then use any frontend, Seamonkey, Thunderbird or whatever to read, reply etc. It would still give me a local copy I can access without a network connection but I can use whatever tool I want to see them. Interesting. That sounds like a awesome idea. Once moved, I'd never have to move it again if I change what I use to view emails. All imap requires is an imap server. The ISPs run them, Google runs them, and why can't you run one? I run Courier-imap, most people seem to swear by Dovecote. Just do a bit of reading up. One thing, among others, I like about Seamonkey, folders and automatic sorting. For example, your reply went to a folder where all Gentoo user mailing list emails go. It also shows them by thread. I like the thread option for mailing lists but can disable it in other folders where threads don't do well. I repeat that for other mailing lists, -dev for example, but also for my bank, online retailers like ebay or Amazon etc. Each has their own place to go. One reason I do that, my filters are set up in such a way that if a email is made to look like one of those but comes from somewhere else, a scam or phishing, it doesn't filter. It stays in the inbox and that tells me to be suspicious. If I were to use IMAP, could I still do that? Does IMAP use folders and filters? I admit, I don't think I've ever used IMAP. Imap is quite happy with folders. Google let you create folders, IMAP lets you access them. No problem. This sounds like a interesting idea. I've read where people on this list set up such a thing and it doesn't seem to complicated. I might could handle that with a good howto. Thanks much for thinking outside the box a bit here. This could give me lots of good options. Read up on Courier and Dovecot. I'm sure people here will help you set it up. Once you've got it working, point Seamonkey at it and see if you can create folders. Then just point your existing rules to move your emails into your imap folders. You can keep Gmail, but all your folders and emails will be stored locally. And then, just like you can use any old client to access Gmail, you can use any old client to access your local imap server! Cheers, Wol
[gentoo-user] Cron and disabling emails for one script only
Howdy, I set up a hard drive to backup my emails, world file, /etc and a couple other things. I been doing it manually but finally set up a cron job to run it automatically. I call it a script but some may laugh at me calling it that. Anyway, I got cron to run it just fine. It runs and copies it over just like it should. I set it to do that each hour. Thing is, it sends a email every time it does it. I don't mind a email if there is a error but don't want one if it runs successfully. This is the cron file I set up. It's placed in the hourly directory. #!/bin/bash /root/mail-backup > /dev/null 2>&1 || true # >/dev/null 2>&1 I got a lot of hits doing a google search and the only thing I see is to direct it to /dev/null. From examples I've seen, this should work. I then ran across the one currently up there with true in it. I don't understand that but tried it anyway. It still sends emails. I also tried the one commented out below that as well. Still emails. Keep in mind, I do not want to disable ALL emails, just this one script. How does one disable emails for this one cron job? Do I have a typo or putting it in wrong place maybe? Everything I found shows this should work but obviously I'm doing something wrong. Again, error emails are fine. I don't want successful runs tho. Thanks much. Dale :-) :-)
Re: [gentoo-user] Looking for other Seamonkey users
Wols Lists wrote: > On 06/04/21 05:19, Dale wrote: >> Another question, can I just copy my current emails over and "import" >> them? I think Seamonkey uses mbox type setup. I know I could with >> Thunderbird but it was a bit fussy. It did work tho. It also made it >> easier to switch back. > Consider setting up a local imap server. Do all email clients do imap > nowadays? > > I use thunderbird, and since fetchmail broke, I just use rules to pull > everything down from the net, sort it, and copy it to local folders on > my imap server. > > You could then use mutt, or neomutt, or pine, or alpine, or whatever, to > read (most of) your mail. And any html garbage they couldn't handle, you > could use thunderbird or seamonkey or whatever. > > No need to move mail between different clients. And as for moving your > current stuff over, you just move it from Seamonkey's local store to the > imap server and it'll appear for all the other clients. > > Because I move around between home computers, having my mail like this > exposed on an imap server is brilliant ... > > Cheers, > Wol > > If I understand this correctly, that could be a good idea. I use gmail, want to switch so bad I can taste it, and pop access to download all emails to my hard drive. I do that because if I run into trouble with my network, I have emails just in case I can find a mailing list post that will help. IMAP requires the internet from my understanding. From my understanding of your idea, I'd use a email program to download and store the emails for me here on my system and then use any frontend, Seamonkey, Thunderbird or whatever to read, reply etc. It would still give me a local copy I can access without a network connection but I can use whatever tool I want to see them. Interesting. That sounds like a awesome idea. Once moved, I'd never have to move it again if I change what I use to view emails. One thing, among others, I like about Seamonkey, folders and automatic sorting. For example, your reply went to a folder where all Gentoo user mailing list emails go. It also shows them by thread. I like the thread option for mailing lists but can disable it in other folders where threads don't do well. I repeat that for other mailing lists, -dev for example, but also for my bank, online retailers like ebay or Amazon etc. Each has their own place to go. One reason I do that, my filters are set up in such a way that if a email is made to look like one of those but comes from somewhere else, a scam or phishing, it doesn't filter. It stays in the inbox and that tells me to be suspicious. If I were to use IMAP, could I still do that? Does IMAP use folders and filters? I admit, I don't think I've ever used IMAP. This sounds like a interesting idea. I've read where people on this list set up such a thing and it doesn't seem to complicated. I might could handle that with a good howto. Thanks much for thinking outside the box a bit here. This could give me lots of good options. Dale :-) :-)
Re: [gentoo-user] Looking for other Seamonkey users
On 06/04/21 05:19, Dale wrote: > Another question, can I just copy my current emails over and "import" > them? I think Seamonkey uses mbox type setup. I know I could with > Thunderbird but it was a bit fussy. It did work tho. It also made it > easier to switch back. Consider setting up a local imap server. Do all email clients do imap nowadays? I use thunderbird, and since fetchmail broke, I just use rules to pull everything down from the net, sort it, and copy it to local folders on my imap server. You could then use mutt, or neomutt, or pine, or alpine, or whatever, to read (most of) your mail. And any html garbage they couldn't handle, you could use thunderbird or seamonkey or whatever. No need to move mail between different clients. And as for moving your current stuff over, you just move it from Seamonkey's local store to the imap server and it'll appear for all the other clients. Because I move around between home computers, having my mail like this exposed on an imap server is brilliant ... Cheers, Wol
Re: [gentoo-user] IPsec
On 4/6/21 8:09 AM, J. Roeleveld wrote: I only managed to get it working between off-the-shelve devices, but would prefer to do it from Linux. That's where some of my experience is; SOHO routers, 15+ years ago. I think I did manage to get FreeS/WAN (at the time) to establish a VPN with one of the SOHO routers that I was using at the time. But I've started to get some more experience using IPsec without IKE recently. Please keep it on the list so I can participate in the process. Okay. Here's a copy of what I've sent to the handful of people that replied to me in the varies places I sent the broadcast. I'll elaborate on the things that I'm pondering below. - ip xfrm - I'm currently dabbling with IPsec transport mode between some systems using the following commands: --8<-- 1AKEY1=0x$(xxd -c 32 -l 32 -ps /dev/random) 2AKEY2=0x$(xxd -c 32 -l 32 -ps /dev/random) 3AID=0x$(xxd -c 4 -l 4 -ps /dev/random) 4ASRC="$LeftIP" 5ADST="$RightIP" 6ALOCAL="$ASRC" 7AREMOTE="$ADST" 8echo "Run the following commands on $LeftHost." 9ip xfrm state add src $ASRC dst $ADST proto esp spi $AID reqid $AID mode transport auth sha256 $AKEY1 enc aes $AKEY2 # b out state (SA) 10ip xfrm policy add src $ALOCAL dst $AREMOTE dir out tmpl src $ASRC dst $ADST proto esp reqid $AID mode transport # b out policy 11ip xfrm state add src $ADST dst $ASRC proto esp spi $AID reqid $AID mode transport auth sha256 $AKEY1 enc aes $AKEY2 # b in state (SA) 12ip xfrm policy add src $AREMOTE dst $ALOCAL dir in tmpl src $ADST dst $ASRC proto esp reqid $AID mode transport # b in policy 13echo 14echo 15echo 16echo "Run the following commands on $RightHost." 17ip xfrm state add src $ADST dst $ASRC proto esp spi $AID reqid $AID mode transport auth sha256 $AKEY1 enc aes $AKEY2 # d out state (SA) 18ip xfrm policy add src $AREMOTE dst $ALOCAL dir out tmpl src $ADST dst $ASRC proto esp reqid $AID mode transport # d out policy 19ip xfrm state add src $ASRC dst $ADST proto esp spi $AID reqid $AID mode transport auth sha256 $AKEY1 enc aes $AKEY2 # d in state (SA) 20ip xfrm policy add src $ALOCAL dst $AREMOTE dir in tmpl src $ASRC dst $ADST proto esp reqid $AID mode transport # d in policy -->8-- This is working and does enable IPsec /transport/ /mode/ between $LeftHost and $RightHost. But it's completely manual at the moment. I'm curious if you have any comments on "ip xfrm". - strongSwan / Libraswan / OpenSwan / FreeS/WAN - I dabbled with FreeS/WAN the better part of 20 years ago. It worked at the time. But I've not needed or wanted to do anything with IPsec again until recently. -- I've taken a foray through OpenVPN and WireGuard, both of which were decidedly easier than IPsec. It's my understanding that OpenSwan and strongSwan are direct forks of FreeS/WAN and that Libraswan is a fork or rename of OpenSwan. What I'm not sure of is what the actual current status of the *Swan(s) is. Also, how do the *Swan(s) relate to racoon, which I see reference as being independent. - X.509 certificate based authentication - One of the reasons my script above is manual is because I don't want to embed keying material in config files on the VPSs that I'm using IPsec transport mode between. I'd like to figure out if it's possible to use X.509 certificates to have the two IPsec endpoints authenticate against each other and dynamically negotiate keying material based on their public & private key pairs that they already have. E.g. can $LeftHost use use it's private key to authenticate itself to $RightHost and vice versa? I presume that this would be done via IKE, and I further presume that it will likely be IKEv2. - Opportunistic Encryption - I really like the idea of IPsec Opportunistic Encryption so that systems can dynamically / automatically configure and use IPsec /transport/ /mode/ encryption between each other. - AH vs ESP - Do the cryptographic primitives of ESP supplant AH in confirming ~> authenticating that the traffic came from the host that is sending the traffic? E.g. can ESP offer the same authentication that AH does? Or are AH and ESP truly different functions which don't overlap? - Transport vs Tunnel Mode - I'm really interested in /transport/ mode more than I am tunnel mode. I'd like to get my various servers to use IPsec /transport/ mode configured (much like my script) to protect all of the traffic between them. I did some playing this weekend with /transport/ mode between my Linux router at home and one of my VPS(s). Yes, my Linux router is functioning as a basic NATing router. But, it occurred to me /transport/ mode might work between my router and my VPS(s) in that Linux /was/ doing the /NAT/ing. Meaning that it was effectively the endpoint of the traffic. Thus the
Re: [gentoo-user] Console scrollback is back again!
On Tue, Apr 6, 2021 at 4:54 AM Alan Mackenzie wrote: > Hello, Michael. > > On Mon, Apr 05, 2021 at 18:08:58 -0500, Michael Jones wrote: > > [ ] > > > Without looking at the patch itself: > > > Have you considered something like kmscon as a userland alternative? > > To be honest, no. I wasn't really aware of it when I starting working on > the Linux console. > > According to Wikipedia, the last release was in 2013, and development > stopped altogether in 2015. The Gentoo package for it is masked. > Good points, and I can't speak to the code cleanliness of kmscon, or potential security problems. That being said, even though I was annoyed when the scrollback was removed from the kernel, I do understand the reason for it being removed. It does seem like the kind of functionality that would be better provided by userspace. > > I installed it on my laptop, and aside from not working with gpmd or > > consolation for mouse support, it's a perfectly functional local tty. > > I suppose it's one of these programs that once working, pretty much > carries on working for ever. > That's entirely possible :-) Maybe someone (not necessarily you) will find the removal of the scrollback buffer to be enough motivation to bring kmscon back to life as a project.
Re: [gentoo-user] Kernel upgrade from 5.4 to 5.10: oldconfig "Restart config..."
On Tue, 06 Apr 2021 13:59:11 +0100, Peter Humphrey wrote: > > > fwiw, I think I've always just copied the old .config across, then > > > done "make menuconfig". I think that also just accepts defaults for > > > anything new. > > > > It doesn't, it prompts for every change, with the default > > preselected. > > Eh? Did you read 'oldconfig' where 'menuconfig' was written? Doh! -- Neil Bothwick IBM: I Blame Microsoft pgpNxitY2J1eL.pgp Description: OpenPGP digital signature
Re: [gentoo-user] Console scrollback is back again!
Hello, John
On Tue, Apr 06, 2021 at 10:13:39 -0400, John Covici wrote:
> On Tue, 06 Apr 2021 09:14:23 -0400,
> Peter Humphrey wrote:
> > On Monday, 5 April 2021 19:13:18 BST Alan Mackenzie wrote:
> > > We'll see how people react to it here, first.
> > You're my hero!
> Would this patch work on 5.4.96 and following?
No, there is a slight difference (two struct fields moved and renamed)
between 5.4 and 5.10.
For 5.4, please use the attached patch instead. It has been tested on
5.4.80-r1 and 5.4.97.
> --
> Your life is like a penny. You're going to lose it. The question is:
> How do
> you spend it?
> John Covici wb2una
> cov...@ccs.covici.com
--
Alan Mackenzie (Nuremberg, Germany).
--- drivers/video/console/Kconfig.orig 2021-03-31 19:14:48.186140856 +
+++ drivers/video/console/Kconfig 2021-04-05 13:41:20.967713154 +
@@ -79,6 +79,55 @@
help
Low-level framebuffer-based console driver.
+config FRAMEBUFFER_CONSOLE_SOFT_SCROLLBACK
+ bool "Enable Scrollback Buffer in System RAM"
+ depends on FB=y && FRAMEBUFFER_CONSOLE
+ default y
+ select FRAMEBUFFER_CONSOLE_SOFT_SCROLLBACK_PERSISTENT_ENABLE_BY_DEFAULT
+ help
+ This option creates scrollback buffers for each framebuffer console,
+ or one buffer for them all. These buffers are allocated dynamically
+ during initialisation.
+
+ If you want this feature, say 'Y' here and enter the amount of
+ RAM to allocate for this buffer. If unsure, say 'N'.
+
+config FRAMEBUFFER_CONSOLE_SOFT_SCROLLBACK_SIZE
+ int "Scrollback Buffer Size (in KB)"
+ depends on FRAMEBUFFER_CONSOLE_SOFT_SCROLLBACK
+ range 1 1024
+ default "128"
+ help
+ Enter the amount of System RAM to allocate for each scrollback
+ buffer of framebuffer consoles in kilobytes. Each character
+ position on the video takes 2 bytes of storage. 128k will give you
+ approximately 4 240x67 screenfuls of scrollback buffer.
+
+config FRAMEBUFFER_CONSOLE_SOFT_SCROLLBACK_PERSISTENT_ENABLE_BY_DEFAULT
+ bool "Persistent Scrollback History for each framebuffer console by
default"
+ depends on FB=y && FRAMEBUFFER_CONSOLE &&
FRAMEBUFFER_CONSOLE_SOFT_SCROLLBACK
+ default y
+ help
+
+ Note: this option's value N has not (?yet) been implemented (2021-04).
+
+ Say Y here if the scrollback history should persist by default when
+ switching between consoles. Otherwise, the scrollback history will
+ be flushed the first time a scroll-up operation occurs on the new
+ console after the console is switched. STOUGH!!! FIXME!!! This
+ feature can also be enabled using the boot command line parameter
+ 'vgacon.scrollback_persistent=1'.
+
+ This feature might break your tool of choice to flush the scrollback
+ buffer, e.g. clear(1) will work fine but Debian's clear_console(1)
+ will be broken, which might cause security issues.
+ You can use the escape sequence \e[3J instead if this feature is
+ activated.
+
+ Note that a buffer of VGACON_SOFT_SCROLLBACK_SIZE is taken for each
+ created tty device.
+ So if you use a RAM-constrained system, say N here.
+
config FRAMEBUFFER_CONSOLE_DETECT_PRIMARY
bool "Map the console to the primary display device"
depends on FRAMEBUFFER_CONSOLE
--- drivers/tty/vt/vt.orig.c2020-11-28 17:14:38.523649992 +
+++ drivers/tty/vt/vt.c 2021-04-05 14:33:47.743786578 +
@@ -142,6 +142,13 @@
#define DEFAULT_BELL_DURATION (HZ/8)
#define DEFAULT_CURSOR_BLINK_MS200
+/* NEW STOUGH, 2021-04-01 */
+#ifdef CONFIG_FRAMEBUFFER_CONSOLE_SOFT_SCROLLBACK
+static unsigned int console_soft_scrollback_size =
+ 1024 * CONFIG_FRAMEBUFFER_CONSOLE_SOFT_SCROLLBACK_SIZE;
+#endif
+/* END OF NEW STOUGH */
+
struct vc vc_cons [MAX_NR_CONSOLES];
#ifndef VT_SINGLE_DRIVER
@@ -294,7 +301,7 @@
static inline unsigned short *screenpos(struct vc_data *vc, int offset, int
viewed)
{
unsigned short *p;
-
+
if (!viewed)
p = (unsigned short *)(vc->vc_origin + offset);
else if (!vc->vc_sw->con_screen_pos)
@@ -623,6 +630,232 @@
}
}
+/* NEW STOUGH, 2021-03-31 */
+#ifdef CONFIG_FRAMEBUFFER_CONSOLE_SOFT_SCROLLBACK
+/* NEW STOUGH, 2021-04-01 */
+static void con_update_softback(struct vc_data *vc)
+{
+ int l = vc->vc_softback_size / vc->vc_size_row;
+ if (l > 5)
+ {
+ vc->vc_softback_end = vc->vc_softback_buf + l * vc->vc_size_row;
+ vc->vc_softback_top = vc->vc_softback_buf; /* STOUGH,
2021-04-04 */
+ }
+ else
+ /* Smaller scrollback makes no sense, and 0 would screw
+ the operation totally */
+ vc->vc_softback_top = 0;
+}
+
+static int concon_set_origin(struct vc_data *vc)
+{
+ if
Re: [gentoo-user] Console scrollback is back again!
On Tue, 06 Apr 2021 09:14:23 -0400, Peter Humphrey wrote: > > On Monday, 5 April 2021 19:13:18 BST Alan Mackenzie wrote: > > > We'll see how people react to it here, first. > > You're my hero! Would this patch work on 5.4.96 and following? -- Your life is like a penny. You're going to lose it. The question is: How do you spend it? John Covici wb2una cov...@ccs.covici.com
Re: [gentoo-user] IPsec
On Monday, April 5, 2021 3:46:37 AM CEST Grant Taylor wrote: > Hi, > > Does anyone have any experience with IPsec? Preferably on Gentoo or > Linux in general? > > I'd like to discuss some things (probably off list) while wading into > the IPsec pool. E.g.: > > - ip xfrm ... > - strongSwan > - Libraswan > - X.509 certificate based authentication, preferably /mutual/ > - Opportunistic Encryption > - Transport Mode > - Tunnel Mode I only managed to get it working between off-the-shelve devices, but would prefer to do it from Linux. Please keep it on the list so I can participate in the process. -- Joost
Re: [gentoo-user] emerge failure for dev-lang/R-4.0.4
On Mon, 2021-04-05 at 18:29 +0200, k...@aspodata.se wrote: > > So, how much memory does R need to build ? > I have: > > $ free > totalusedfree shared buff/cache > available > Mem: 6103628 1807560 2631444 146376 1664624 > 3107868 > Swap:8788924 670108 8118816 > We have the same amount of RAM, but building dev-lang/R doesn't come close to using it all on my machine, even with MAKEOPTS="-j4"... > > I already have (in make.conf): > EMERGE_DEFAULT_OPTS="--jobs 1 ..." > > This seems to solved the issue: > # cat /etc/portage/env/j1 > MAKEOPTS=-j1 > # cat /etc/portage/package.env/R > dev-lang/R j1 That will work around the issue, and you may have to use that trick for some other packages like firefox/LLVM with "only" 6GB of RAM. But it doesn't explain why I can build dev-lang/R and you can't. What USE flags does "emerge -pv1 dev-lang/R" show? Are you willing to watch "htop" in another window while the dev-lang/R build fails to see how much memory is free?
Re: [gentoo-user] Console scrollback is back again!
On Monday, 5 April 2021 19:13:18 BST Alan Mackenzie wrote: > We'll see how people react to it here, first. You're my hero! -- Regards, Peter.
Re: [gentoo-user] Kernel upgrade from 5.4 to 5.10: oldconfig "Restart config..."
On Monday, 5 April 2021 19:43:29 BST Neil Bothwick wrote: > On Mon, 5 Apr 2021 19:04:18 +0100, antlists wrote: > > > For the uninitiated, the difference here is that olddefconfig will > > > accept the default configuration value for any new/changed options, > > > whereas oldconfig will prompt the user for input. > > > > > > The former is great if you just don't care and want to accept the > > > default, but it isn't right for every user. > > > > fwiw, I think I've always just copied the old .config across, then done > > "make menuconfig". I think that also just accepts defaults for anything > > new. > > It doesn't, it prompts for every change, with the default preselected. Eh? Did you read 'oldconfig' where 'menuconfig' was written? > It's more time consuming than running make olddefconfig but it does give > you the chance to see what the new options are, and read the help if you > need more. -- Regards, Peter.
Re: [gentoo-user] Console scrollback is back again!
On Monday, April 5, 2021 7:12:07 PM CEST Alan Mackenzie wrote: > Hello, Gentoo. > > Yes, console soft scrolling is back! That essential feature that was > stripped out of the kernel at around 5.4.x has returned! > > Only this time, it's even better! Instead of one scrollback buffer > shared between all tty's, there's now a buffer for each tty. > > How to get it working: > (i) Extract the enclosed patch file to your /usr/src/linux-5.10.27-gentoo > directory (or probably any 5.10 kernel's). > (ii) From that directory run $ patch -p0 < diff.20210405.diff. > (iii)(a) If you've already got a working 5.10.27, do a $ make oldconfig. > That should bring up the new configuration items, for which you can > accept the defaults. These two items are a flag to enable the > scrollback, and a buffer size defaulting to 128kB. > (iii)(b) If you haven't yet got a 5.10.27, just configure your kernel in > the usual way. The two new items are under Device Drivers/Graphics > support/Console display driver support. > (iv) Build the kernel. > (v) Put the new kernel into your usual boot manager. > (vi) Reboot and enjoy! > Thank you! I will add this to my "/etc/portage/patches/sys-kernel/gentoo-sources" directory. Right next to the gpl-defang patch.
Re: [gentoo-user] Console scrollback is back again!
Hello, Karl. On Mon, Apr 05, 2021 at 21:58:37 +0200, k...@aspodata.se wrote: > Alan Mackenzie: > > Yes, console soft scrolling is back! That essential feature that was > > stripped out of the kernel at around 5.4.x has returned! > It is commit 087b6cb17df5834d395ab72da3f937380470ba15, > between v5.4.65 and 66. > Perhaps also 0d123a8c64fde433a, cf5a7ded53652c3d63d72, and possible > other stuff. I will confess that I don't actually have a git repository of Linux on my machine. I'd have to back it up, somehow. It would be a fair amount of work to write an efficient back-up procedure - the one I have at the moment for git repos backs up the entire repository, which would probably be excessive for Linux. Currently, I've changed a mere five files, for which I'm getting by with symbolic links in the kernel tree pointing into my home directory. > > Only this time, it's even better! Instead of one scrollback buffer > > shared between all tty's, there's now a buffer for each tty. > Great, no more missing data when switching vts. > Btw, wasn't that added in commit aabd31c421ddc730edf6d89c4ed3885e4fca5e30 > but turned off by default. There was no capability at all for one buffer per tty in framebuffer consoles. It was there for VGA consoles, and, I think, one or two others. The configuration page for it was confusing - the option for "persistent scrollback" was purely for VGAcon, though that wasn't obvious. I spent time in the past trying to get multiple buffers working, and was even considering reporting a bug. > ... > > One or two features haven't (yet) been implemented - having a > > single scroll buffer shared amongst all tty's isn't there, > ... > Is there any reason to share the buffer ? Not that I can think of. The only reason might be if somebody wanted a very large scrollback buffer, but didn't have a lot of RAM. But even so, the current default takes a total of less than 1 MB of RAM with the standard 7 tty's. Even increasing the buffer size to 10 MB, that would only come to 70 MB. Such a size of buffer would really need more sophisticated handling, with search facilities, some marking of positions, and so on. That would be a large project. > > Bug reports and other comments are welcome, of course. > git log drivers/video/console/vgacon.c etc. can give some ideas > what one is up against. Once I find some way to read it. ;-( Anyhow, the patch I have is working software, and is not going away any time soon. It means I can carry on using Linux. Just in case you're interested, the problem I had with no scrolling on tty1 was due to the way the console was initialised early on in the boot process. Its structures were initialised in a separate place from the normal init function, thus bypassing the scrollbuffer's init. When it came to re-initialising it for scrollbuffer, this partial initialisation acted as a flag not to carry on with the init. At least it caused me to learn about printk. ;-) > Regards, > /Karl Hammar -- Alan Mackenzie (Nuremberg, Germany).
Re: [gentoo-user] Console scrollback is back again!
On Tue, Apr 6, 2021 at 10:56 AM Alan Mackenzie wrote: > > > > > I just tested it with kernel 5.11.11. Seems fine. > > Thanks! > Thank _you_! It is regrettable that console scrolling is out of the kernel. Even if one doesn't use the console that much, it is used once in a while, and those occasions tend to be precisely the ones back scrolling will be most missed. Jorge Almeida
Re: [gentoo-user] Console scrollback is back again!
Hello, Jorge. On Mon, Apr 05, 2021 at 19:38:57 +0100, Jorge Almeida wrote: > On Mon, Apr 5, 2021 at 6:12 PM Alan Mackenzie wrote: > > Hello, Gentoo. > > Yes, console soft scrolling is back! That essential feature that was > > stripped out of the kernel at around 5.4.x has returned! > > Only this time, it's even better! Instead of one scrollback buffer > > shared between all tty's, there's now a buffer for each tty. > I just tested it with kernel 5.11.11. Seems fine. Thanks! > Jorge Almeida -- Alan Mackenzie (Nuremberg, Germany).
Re: [gentoo-user] Console scrollback is back again!
Hello, Michael. On Mon, Apr 05, 2021 at 18:08:58 -0500, Michael Jones wrote: [ ] > Without looking at the patch itself: > Have you considered something like kmscon as a userland alternative? To be honest, no. I wasn't really aware of it when I starting working on the Linux console. According to Wikipedia, the last release was in 2013, and development stopped altogether in 2015. The Gentoo package for it is masked. > I installed it on my laptop, and aside from not working with gpmd or > consolation for mouse support, it's a perfectly functional local tty. I suppose it's one of these programs that once working, pretty much carries on working for ever. -- Alan Mackenzie (Nuremberg, Germany).
