Re: [gentoo-user] SSSD and nsupdate installation issue
Dave, That did the trick! Adding the bug tracker to my list of resources for future troubleshooting. Another day wiser, I suppose. Many thanks! On 3/13/21 5:28 PM, David M. Fellows wrote: Hey all, I've been trying to install SSSD on my Gentoo laptop over the past week and keep getting stuck at the same spot. I've tried 2.2.0-r1, 2.3.1-r2, and even 2.4.2 - all are failing during initial configuration, claiming that "nsupdate does not support 'realm'". I've manually run the Autoconf script and it doesn't seem to find this issue with nsupdate, so I'm really starting to scratch my head. Admittedly, my knowledge of the Gentoo package build process is lacking and after exhausting my google-foo I now climb the mountain in search of guidance. The dependencies and flags for SSSD seem pretty straightforward, so not sure what could be causing this. Any pointers (or commiseration) would be much appreciated. A few snippets below: checking for executable nsupdate... yes checking for nsupdate 'realm' support'... no configure: error: nsupdate does not support 'realm' environment, line 3426: Called econf '--localstatedir=/var' '--runstatedir=/run' '--with-pid-path=/run' '--with-plugin-path=/usr/lib64/sssd' '--enable-pammoddir=//lib64/security' '--with-ldb-lib-dir=/usr/lib64/samba/ldb' '--with-db-path=/var/lib/sss/db' '--with-gpo-cache-path=/var/lib/sss/gpo_cache' '--with-pubconf-path=/var/lib/sss/pubconf' '--with-pipe-path=/var/lib/sss/pipes' '--with-mcache-path=/var/lib/sss/mc' '--with-secrets-db-path=/var/lib/sss/secrets' '--with-log-path=/var/log/sssd' '--with-os=gentoo' '--with-nscd=/usr/sbin/nscd' '--with-unicode-lib=glib2' '--disable-rpath' '--sbindir=/usr/sbin' '--enable-local-provider' '--without-kcm' '--without-secrets' '--with-samba' '--with-smb-idmap-interface-version=6' '--enable-cifs-idmap-plugin' '--without-selinux' '--without-semanage' '--enable-krb5-locator-plugin' '--disable-pac-responder' '--with-nfsv4-idmapd-plugin' '--enable-nls' '--with-libnl' '--with-manpages' '--with-sudo' '--with-autofs' '--with-ssh' '--disable-valgrind' '--without-python2-bindings' '--without-python3-bindings' '--with-initscript=sysv' Best, Alex The problem seems to be described in this bug report: https://bugs.gentoo.org/679838 It also describes a workaround (set FEATURES=-network-sandbox). DaveF OpenPGP_0x866016D0C7D402E0.asc Description: application/pgp-keys OpenPGP_signature Description: OpenPGP digital signature
[gentoo-user] SSSD and nsupdate installation issue
Hey all, I've been trying to install SSSD on my Gentoo laptop over the past week and keep getting stuck at the same spot. I've tried 2.2.0-r1, 2.3.1-r2, and even 2.4.2 - all are failing during initial configuration, claiming that "nsupdate does not support 'realm'". I've manually run the Autoconf script and it doesn't seem to find this issue with nsupdate, so I'm really starting to scratch my head. Admittedly, my knowledge of the Gentoo package build process is lacking and after exhausting my google-foo I now climb the mountain in search of guidance. The dependencies and flags for SSSD seem pretty straightforward, so not sure what could be causing this. Any pointers (or commiseration) would be much appreciated. A few snippets below: checking for executable nsupdate... yes checking for nsupdate 'realm' support'... no configure: error: nsupdate does not support 'realm' environment, line 3426: Called econf '--localstatedir=/var' '--runstatedir=/run' '--with-pid-path=/run' '--with-plugin-path=/usr/lib64/sssd' '--enable-pammoddir=//lib64/security' '--with-ldb-lib-dir=/usr/lib64/samba/ldb' '--with-db-path=/var/lib/sss/db' '--with-gpo-cache-path=/var/lib/sss/gpo_cache' '--with-pubconf-path=/var/lib/sss/pubconf' '--with-pipe-path=/var/lib/sss/pipes' '--with-mcache-path=/var/lib/sss/mc' '--with-secrets-db-path=/var/lib/sss/secrets' '--with-log-path=/var/log/sssd' '--with-os=gentoo' '--with-nscd=/usr/sbin/nscd' '--with-unicode-lib=glib2' '--disable-rpath' '--sbindir=/usr/sbin' '--enable-local-provider' '--without-kcm' '--without-secrets' '--with-samba' '--with-smb-idmap-interface-version=6' '--enable-cifs-idmap-plugin' '--without-selinux' '--without-semanage' '--enable-krb5-locator-plugin' '--disable-pac-responder' '--with-nfsv4-idmapd-plugin' '--enable-nls' '--with-libnl' '--with-manpages' '--with-sudo' '--with-autofs' '--with-ssh' '--disable-valgrind' '--without-python2-bindings' '--without-python3-bindings' '--with-initscript=sysv' Best, Alex OpenPGP_0x866016D0C7D402E0.asc Description: application/pgp-keys OpenPGP_signature Description: OpenPGP digital signature
[gentoo-user] Multiboot USB - GRUB2 loop device
Hello all
I've recently taken it upon myself to create a multiboot USB with isos
that I tend to frequently use. So far I've been successful in adding
Clonezilla and the Archlinux live ISOs. I've attempted to add the Gentoo
install ISO in a similar manner (helped with the grub config within the
iso itself but can't seem to get GRUB to recogonize the image. My
DuckDuckGo-foo has returned useless results (a near hit, yet useless
inquiry being found here:
https://forums.gentoo.org/viewtopic-p-6527390.html).
My current GRUB menu entry is as follows:
menuentry '[loopback]gentoo amd64' {
set isofile='/isos/gentoo.iso'
echo "isofile set"
loopback loop $isofile
echo "loopback set"
linux (loop)/isolinux/gentoo64 root=/dev/ram0 init=/linuxrc
dokeymap looptype=squashfs loop=/image.squashfs cdroot cdboot
initrd=gentoo64.xz
initrd (loop)/isolinux/gentoo64.xz
}
When booting, I receive the following message:
isofile set
loopback set
error: attempt to read or write outside of disk 'loop'
error: you need to load the kernel first
Thanks in advance!
--
Best,
Alex Luehm
signature.asc
Description: PGP signature
Re: [gentoo-user] how best to encrypt a file
On July 3, 2018 7:33:27 AM CDT, Samuraiii wrote: >On 3.7.2018 13:27, Philip Webb wrote: >> 180703 Alec Ten Harmsel wrote: >>> On Tue, Jul 03, 2018 at 05:47:22AM -0400, Philip Webb wrote: I have a couple of small files which need to be encrypted : one is simple text ( .txt ), the other a spreadsheet ( .ods ). I haven't used encryption like this before : what do others use ? >>> I have used `gpg' to do this before: >>> # Encrypt with a passphrase >>> gpg -c >>> # Decrypt >>> gpg -d .gpg >>> I do have some files I keep encrypted locally >>> that I use `gpg' to encrypt/decrypt, but with my personal key pair. >>> For that, I use a vim plugin [1] that transparently decrypts to >`/tmp', >>> lets me edit and then saves back to the original file. >>> This prevents the decrypted contents from ever being on my hard >drive, >>> as I have `/tmp' mounted as tmpfs. >> Thanks, that's very helpful except that you forgot to append [1] >(smile). >> >> I don't need to encrypt the files locally, >> but do need to when I create copies to up-load as off-site back-ups. >> >> Does anyone else have a useful suggestion ? >> >Hi, > >there is "reverse" encfs if there are more files to encrypt for backup. > >encfs --reverse ~/dir /tmp/dir > >It will encrypt original files on fly as you read /tmp/dir. > >I used this before (now I backup with duplicity). > >S > >PS: link to arch page with some more info > >https://wiki.archlinux.org/index.php/EncFS#Encrypted_backup I'd recommend taking a look at borg backup. I've used it for remote backups over ssh and the deduplication and automatic encryption is aweaome. Maybe a bit overkill, but I believe in encryptes backups. -- Sent from my Android device with K-9 Mail. Please excuse my brevity.
