From https://www.php.net/manual/en/openssl.requirements.php
PHP 7.1-8.0 requires OpenSSL >= 1.0.1, < 3.0.
PHP >= 8.1 requires OpenSSL >= 1.0.2, < 4.0.
So it looks like you need to upgrade php to 8.1
I've a similar problem with my server requiring php 7.2 and trying to
figure out the upgrade
Have you looked at dev-tcltk/expect?
There's possibly an example you could try at
<https://www.journaldev.com/1405/expect-script-ssh-example-tutorial>
although you probably want to prompt for the password or retreive it
programatically rather than putting it on the command line :o
ame as oldconfig while picking the defaults,
this will save on hitting enter each time.
Steve
On Sat, 11 Dec 2021 12:14:23 +
Steve Evans wrote:
> On Fri, 10 Dec 2021 20:09:19 -0500
> Jack wrote:
>
> > Good evening all, calling on the accumulated wisdom here.
> >
> > kde-frameworks 5.88 has been marked stable, but my upgrade is
> > blocked becau
5.23.4.
Frameworks has been marked stable, but plasma has not yet :-(
See these bugs:
- https://bugs.gentoo.org/816042 "KDE Frameworks 5.88 stabilisation"
which has a status of IN_PROGRESS
- https://bugs.gentoo.org/826898 "KDE
.
-Steve Freeman
On 2021-11-28 05:09, gevisz wrote:
I have just noticed that the tor-browser I downloaded from its
official site does not start any more. :(
However, it started just a few weeks ago, before a few previous
updates.
Downloading its latest version has not changed anything in this
respect.
I has
>
I use an alias for depclean to achieve the same result:
alias depclean='emerge -va --depclean --exclude gentoo-sources --exclude gcc
--exclude mythweb --exclude php --exclude owncloud'
Steve
--
____
Steve Evans
hrome and KDE has seen this issue?
>
Mine is also missing the title bar. However the "Use system
title bar and borders" /does/ restore the normal title bar for me. This
is also version 94.0.4606.54 on KDE.
Steve
--
____
St
quot;; I run useful applications
>
Hi Walter,
I'd be interested to see how this integrates in your workflow, I'm
looking for a similar solution myself. The current functionality of
mutt/neomutt leaves a bit to be desired when using it as described.
P.S thank you Nils for introducing this to me, I will likely take the
plunge in the near future.
- Steve
t working because they
have not been upgraded to Python 3.
Steve
--
____
Steve EvansE-mail: mailto:ste...@gorbag.com
Registered Linux user #217906: http://counter.li.org
Public Encryption Key: http://www
On 09/12/2020 00:01, Grant Taylor wrote:
On 12/8/20 4:44 PM, Steve Wilson wrote:
I use this as the first step to limit ssh access to one of my
servers: `iptables -A INPUT -p tcp -m tcp --dport 22 -m geoip !
--src-cc GB -m comment --comment "Drop SSH from outside GB" -j DROP`
Has
oip ! --src-cc GB -m
comment --comment "Drop SSH from outside GB" -j DROP`
This has the advantage that apache doesn't need to process the request,
but a possible downside that you won't be able to display a message if
that's a requirement.
Steve
tem to get up and running again. I
did consider creating my own but decided to just keep an eye on future
updates hoping it's there.
*
https://github.com/rsyslog/rsyslog/blob/master/platform/redhat/centos/rsyslog.service
Steve.
ps.Seems it's a small world, I believe I had the pleasure in t
.
On top of this I store this in a private gitlab install so am now
looking at CI/CD to automate the testing, but at this point I'm at the
point of creating my own gentoo docker image with various things
pre-installed to start serious check/test/install of new ebuilds.
Steve.
On 20/10/2020 19:01
On 2020-06-30 20:35, Steve Freeman wrote:
I have a local gentoo repo mirror that has been running well for
years. It is essentially the same setup as described at
https://wiki.gentoo.org/wiki/Local_Mirror except that it runs on a
non-default port.
After upgrading to net-misc/rsync-3.2.0-r1
ses it to break again.
Client version appears to be irrelevant.
Running rsync as a non-daemon appears to work fine regardless of
server/client versions; it's only rsyncd that fails.
With no useful logs or output, I'm finding this impossible to diagnose.
Does anyone have any ideas?
Thanks,
Steve Freeman
ave
you been having?
Steve
On Fri, 1 May 2020 19:42:54 +0100
Steve Evans wrote:
> On Fri, 1 May 2020 09:34:56 -0700
> Mark Knecht wrote:
>
> > On Fri, May 1, 2020 at 12:33 AM Peter Humphrey
> > wrote:
> > >
> > > On Wednesday, 29 April 2020 20:37:23 BST Michael wrote:
> >
ecent version of KDE. This is with Plasma version 5.17.5.
Further investigation reveals that Kmix has an option "Audio Setup..."
that does nothing, but examining xorg-session.log it outputs the error
Could not find module 'kcm_phonon'. See kcmshell5 --list for the
full li
forced, masked, or removed
{} circumfix state is bound to FEATURES settings
On Sat, Apr 18, 2020 at 09:17:01PM -0500, Steve Freeman wrote:
I did not see anything in my output that made think "~amd64". How on
earth
did you figure that out? I would love to know. :-)
In St
On 2020-04-18 20:42, Dale wrote:
Steve Freeman wrote:
I am trying to eliminate PHP 7.3 from my system. But I am having
trouble building dev-php/pecl-apcu-5.1.18 with support for PHP 7.4.
I am getting confusing output regarding whether pecl-apcu can be built
with PHP 7.4 support
On 2020-04-18 20:36, Ashley Dixon wrote:
On Sat, Apr 18, 2020 at 08:22:26PM -0500, Steve Freeman wrote:
Can anyone explain why php7-4 is either disallowed or missing, when
the
ebuild seems to allow it?
You need to allow the ~amd64 keyword (assuming that is your
architecture
I am trying to eliminate PHP 7.3 from my system. But I am having
trouble building dev-php/pecl-apcu-5.1.18 with support for PHP 7.4.
I am getting confusing output regarding whether pecl-apcu can be built
with PHP 7.4 support. It is working just fine with PHP 7.3 (until I
changed eselect php
On 12/4/18 3:31 AM, Joerg Schilling wrote:
Dale wrote:
So as usual, they are not very Linux friendly. Figures. I was hoping
The main problem with Linux is that the drivers at SCSI level in the kernel are
worse than they could be, so if you like to get better results, you should
encourage
On 12/14/18 3:31 AM, Joerg Schilling wrote:
Steve Dibb wrote:
On 12/3/18 9:27 AM, Pouru Lasse wrote:
I've got a bunch of scratched disc-based games (PS2, Xbox 360) that I'd
like to check for errors. Is there any program for Linux that does this?
I found and tried dvdisaster, but it only
On 12/3/18 9:27 AM, Pouru Lasse wrote:
I've got a bunch of scratched disc-based games (PS2, Xbox 360) that I'd
like to check for errors. Is there any program for Linux that does this?
I found and tried dvdisaster, but it only works for CDs, not
DVDs. Everything else seems to be Windows-only.
-
. From
my times with loop-aes I know that I have to store the journal through an
encrypted loop device else it might be written on the hard drive.
As of I'm new to dm-crypt and Gentoo, where will that journal now go?
Any help is welcomed. :)
Regards,
Roland
--
Sincerely,
Steve Buzonas
On 06/07/10 06:25, Eray Aslan wrote:
i.e. make a soft link to openvpn init script and make a seperate conf
file with the same name as the new init script in your config
directory (usually /etc/openvpn). Init script starts openvpn with the
correct config file.
Many thanks, works perfectly...
On 06/07/10 06:25, Eray Aslan wrote:
i.e. make a soft link to openvpn init script and make a seperate conf
file with the same name as the new init script in your config
directory (usually /etc/openvpn). Init script starts openvpn with the
correct config file.
Many thanks, works perfectly...
I already have one openvpn tunnel - and I need another. I've established
configuration launching the second tunnel (tun1, while tun0 is launched
at boot) using the command line to explicitly start openvpn. I'd really
like both tunnels to start at boot time.
In case it is relevant, tun0
On 17/06/2010 08:26, Rod wrote:
Check out iproute
* sys-apps/iproute2
Latest version available: 2.6.31
Latest version installed: 2.6.31
Size of files: 363 kB
Homepage:
http://www.linuxfoundation.org/collaborate/workgroups/networking/iproute2
OK, I admit it, this is more of a Linux networking challenge, but it's
one I want to resolve under gentoo.
I have two network interfaces - eth0 and tun0 - and both are (somehow)
connected to the internet. When I have eth0's IP address as my default
route, all my traffic is sent out via my NAT
On 26/05/2010 20:32, Brandon Vargo wrote:
I hope the above helps.
Thank you very much... that was very informative. Unfortunately, I now
discover I fibbed when I said I had SASL auth set up - I only thought I
had... When I correctly configure thunderbird, I get the following
postfix
On a gentoo mailserver, I'm running Postfix 2.6.5 - and, having followed
some howto or other, quite a long time ago, I have this section at the
end of my main.cf:
--
smtpd_recipient_restrictions =
permit_mynetworks,
permit_sasl_authenticated,
reject_unauth_destination,
On Friday 19 March 2010 19:14:21 Mick wrote:
I also tried /usr/bin/oocalc, but it didn't work. :-(
Try:
oocalc -no-oosplash
:-)
results lies in the last 25 lines of
/usr/lib64/openoffice/program/soffice.
Cheers,
Steve
Keith Dart wrote:
I recommend setting up your server hardware on a decent mini-PC with
server grade disks and installing openfiler. The openfiler uses XFS for
local storage and exports NFS and CIFS (and iSCSI if you want that).
http://www.openfiler.com/
It is based on rpath linux and uses a
On 15/03/2010 22:29, Andrea Conti wrote:
This IMHO pretty much rules out any kind of server-class hardware, which
tends to be both costly and power-hungry. If you're thinking about
buying used stuff, be sure to factor in the cost and difficulty of
finding spares in some years' time.
I'm
On 16/03/2010 19:57, Stroller wrote:
How does your system boot if your RAID1 system volume fails? The one
you have grub on? I think you mentioned a flash drive, which I've seen
mentioned before. This seems sound, but just to point out that's
another, different, single point of failure.
Well,
I have recently started looking at server resilience and availability in
the context of a hardware failure or hardware upgrade. I've come to the
conclusion that it would be very desirable if terrabyte-scale data did
not need to be restored from backup. This isn't a commercial server -
so I'm
On 15/03/2010 15:49, Kyle Bader wrote:
+1 on zfs w/ solaris for storage, just don't go cheap and get desktop disks.
I have to admit, I do like the idea of ZFS, though not quite enough to
justify maintaining Solaris in addition to my other infrastructure.
I was thinking about something rather
On 15/03/2010 18:21, Stroller wrote:
It's hard to be more specific without knowing your usage.
Yes... I was deliberately vague to see what options came up... but I can
be more specific. The budget is miniscule - and the performance demands
(bandwidth and latency) are completely non-challenging.
Steve wrote:
Firefox under Windows and Ubuntu :
Secure Connection Failed
An error occurred during a connection to server.
Peer's certificate has an invalid signature.
(Error code: sec_error_bad_signature)
Weirder and weirder... when I switch to lynx, it works!
Lynx remotely gives these two
Mick wrote:
I'd take that as a big broad hint that it is looking somewhere else
for certificates in this release and it found default certs.
+1
Check in your default apache (most likely) or vhosts configuration files that
you have SSLCertificateFile and SSLCertificateKeyFile paths
After a recent update, I restarted Apache...
I host a number of trivial development servers (using named virtual
hosts) and also support access to one of them over SSL. While I can
access all my data over http, access by https has stopped working.
I wondered if an update had made apache
Volker Armin Hemmann wrote:
yes, don't use locate. Also check the symlinks. Reset them with eselect gcc if
you have to.
Then try all your emerges with --tree you get a lot more helpfull output.
Also, when a dependency is missing revdep-rebuilt loves to fail. You can hunt
that down with
I've come across SOGo [ http://www.scalableogo.org/ ] and am interested
to try it... though it doesn't seem to have an ebuild in portage.
Does anyone use SOGo on Gentoo, or should I consider using a different
distro to trial this suite?
Neil Bothwick wrote:
On Mon, 28 Sep 2009 12:57:36 +0100, Steve wrote:
I've come across SOGo [ http://www.scalableogo.org/ ] and am interested
to try it... though it doesn't seem to have an ebuild in portage.
It's in the gnustep overlay.
% eix sogo
* gnustep-apps/sogo [1
Neil Bothwick wrote:
On Mon, 28 Sep 2009 13:23:24 +0100, Steve wrote:
I guess I need to do something special to get the 'gnustep overlay'...
I've recently done my eix-sync, so that's not it.
emerge layman and run eix-remote update
Many thanks, I now get the same eix response as you
Today my gentoo server that has sat happily churning my mundane (and
lightweight) tasks froze and I noticed when it stopped serving DNS
queries... and the server was even unresponsive from the command
prompt. I rebooted and was a bit taken aback at what I found.
The server currently
Alan McKinnon wrote:
Looks like you have 200 processes sitting there blocking I/O. Is there
anything related in the logs?
Not sure - as I'm not sure where to look, or what to look for.
Your best bet is to examine emerge.log (better still - genlop) and find all
recent upgrades that might
Jarry wrote:
Might be bug in clamd/spamassassin. But it could also be you are
being mail-bombed (e.g. infinite depth of compressed-in-compressed
attachements).
I thought about that - but I can't find an offending email with a bogus
attachment if I am.
I recommend to include some limit for
Mick wrote:
On Tuesday 16 June 2009, Steve wrote:
So far I've not got far with either Groupware suite... they're both
close - I wonder how hard it would be to tailor them... Hmmm.
Have a quick look at InfoLog of eGroupware. I think that either on its own
Steve wrote:
Stumped by why the installation test for SASL failed, I ploughed on to
see where it took me. The answer to this, is as far as trying to
access my (working) IMAP server... eGroupware reports:
*The connection to the IMAP Server failed!!*
NO, Authentication failed.
Erm, update
want to risk contributing to a massive centralised database
of personal information... :)
Thanks, and - of course - I'm still interested in anecdotal hints/tips
from anyone who has attempted something similar.
Steve
Steve wrote:
On the down-side, they both seem to have relatively steep learning
curves relative to my primary objective... i.e. keeping notes about
communications with infrequent contracts... so, for example, if I were
about to meet someone from Acme Corp next week, and I remembered
having
...
Steve
I am looking for a web-application to manage contacts... but I'm not
looking for just an address book... I guess this isn't especially
gentoo, but I'd ideally like to run a server on my gentoo box, so I hope
I can be forgiven for asking here.
Personally, I'm absolutely awful at remembering
Mick wrote:
An adaptor can have more than one public IP address (multi-homing) and you can
use something like: ifconfig eth0:0 192.168.0.2 netmask 255.255.255.0 up to
set them up (increment eth0:1, eth0:2, etc accordingly). However, if your
SSL vhost is listening on a random port you don't
Anthony Metcalf wrote:
*That* depends on the exact specifics of what he is/isn't allowed to
be showing.They may not even want the service to show as
existing at that address for whatever reason.
Thanks for all your discussion... I'll try to clarify - the PPP over
SSH approach does seem
over my ssh tunnel.
Can anyone give me any hints - or, ideally, a link to a how-to?
Thanks...
Steve
Sascha Hlusiak wrote:
The easiest thing would probably be to just use ssh port forwarding because
you already have all the pieces running anyway. Wouldn't a simple
ssh -L 12345:secondapache:https u...@remotessh
and the browsing to https://localhost:12345 do the trick? Or you could use a
Has anyone any ideas? The syslog-ng is the usually the first line
reported by top:
4097 root 20 0 3120 1060 708 R 48.3 0.1 677:46.38 syslog-ng
The files in /var/log seem to be growing at an expected slow pace and
aren't reporting anything unexpected. I followed a 'howto' and have
Steve wrote:
Do others get this behaviour - is this a bug in syslog-ng?
Sorry for the multiple posts... a slight error on my part. The sshguard
process wasn't running - a /bin/sh process trying to spawn it was
running (there was no link from /usr/local... to the binary) and when
the binary
Sebastian Günther wrote:
program() only takes 1 argument: the programname.
There aren't two arguments (no comma) - and, yes, the syntax is odd -
but it is exactly what is given by the sshguard man page - and seems to
be confirmed by the syslog-ng manual, too.
BTW: Just curious: you do not
Alan McKinnon wrote:
In short: top lies,
On this occasion, top was telling the truth. ;)
I'm playing around with an application that requires me to manage a
large (multi-gigabyte to terabyte), bespoke, frequently-updating data
structure in real-time... key concerns are for durability and
efficiency. While a traditional approach might be to employ an
expensive DBMS on expensive
I am interested in the possibility of running a small-scale oracle
server for some experimental development work. Ideally, I'd install on
gentoo - as this is my server box... though I guess there may be hoops
through which I must jump...
I found this:
Alan McKinnon wrote:
On Thursday 04 December 2008 21:03:17 Christian Franke wrote:
I just don't see what blocking ssh-bruteforce attempts should be good
for, at least on a server where few _users_ are active.
Two reasons:
a. Maybe, just maybe, you overlooked something. Belts,
Simon wrote:
Since it is very unlikely that the attacker is targeting you
specifically, changing the port number (and removing root access) will
very likely stop the attack forever. Though, if the attacker did
target you, then you will need some more security tools (intrusion
detection,
I've recently discovered a curious pattern emerging in my system log
with failed login attempts via ssh.
Previously, I noticed dictionary attacks launched - which were easy to
detect... and I've a process to block the IP address of any host that
repeatedly fails to authenticate.
What I see now
propagated DSA keys... but I think this would be
tricky to set up. A shared block-list, I suspect, would be the most
effective response to this attack... and the response most likely to
minimise others' exposure, too.
Steve
Dmitry S. Makovey wrote:
P.S. I actually don't do any of the above. It was just a surge of creative
paranoia
in response to initial request :)
All good ideas - except selling the blacklist... I'd be happiest to
share my blacklist for free... my objective is to minimise exposure to
botnets -
Paul Hartman wrote:
I think using Dmitry's idea of rejecting the first 2 connections, but
then allowing it as normal on the third attempt would satisfy your
requirements for being on the normal port, allowing all IPs and
requiring no special setup on the client end (other than knowing they
Dmitry S. Makovey wrote:
Erm - surely I either need to set up my client to port-knock... which
is a faff I'd rather avoid... in order to use the technique.
nope. just start connection. wait a minute. cancel. start another one. wait a
minute. cancel. start new one - voila! :)
Eeew...
a
few weeks.
Is this computer (term used lightly), in the USA ?
Steve
--
I'm trying to establish a shared repository for semi-structured data...
This could be interpreted in many ways, so I'll try to illustrate with
an example.
Say I'm researching a new topic - for example, the Oil Industry... and
I'm looking to establish a shared resource detailing relevant
Norberto Bensa wrote:
Is there a straightforward way to make my Gentoo box 'play fair' and
not hog 100% of the bandwidth?
If your router doesn't give you bandwidth and/or traffic shaping
control, you can drop some packets. For example, the following rule
will accept up to 50 packets per
Has anyone else played with iFolder on Gentoo?
I followed these links:
http://gentoo-wiki.com/HOWTO_iFolder
http://www.ifolder.com/index.php/HowTos
http://www.ifolder.com/index.php/HowTo:Building_iFolder_Enterprise_Server_on_Gentoo
I want to be able to manage a sizeable number of reference manuals I
have in various ebook formats - CHM; PDF etc. scattered around various
PCs; on CDs etc. - and I'm looking for a web-app to help me organise
them as a virtual reference library.
I want to be able to tag the files by 'subject
Situation: There's a LAN with a Netgear ADSL router... heterogenous OS,
including Gentoo, are installed on various PCs on the LAN.
I'd like to know what communicating IPs are consuming most bandwidth,
and to quantify how much bandwidth they are using... Ideally, I'd like
to see a real-time
Alan wrote:
Give iftop a look.
great tool... unfortunately, even in promiscuous mode, it doesn't track
TCP data except to/from the host on which it is running. I presume this
means that my Netgear DSL router implements a switch as as opposed to a
hub...
Nice try though...
--
Thanks for all your suggestions...
I will look into fail2ban... that might be what I need... While I could
crank BLOCKING_PERIOD for blacklist.py to an absurdly high value, this
(AFAIK) will not persist blocks when the server is powered down or rebooted.
I need to retain port 22 and can't
want from scratch...
Steve
--
gentoo-user@lists.gentoo.org mailing list
In the context of online banking, where Windows of some flavour is the
desktop OS, I see a substantial risk arising through spyware and/or
viruses. I suspect that a neat way to mitigate this would be to run an
OS from a CD which offers nothing more fancy than a basic web-browser.
Is there
On Feb 7, 2008 3:19 AM, Arnau Bria [EMAIL PROTECTED] wrote:
On Wed, 6 Feb 2008 20:37:56 -0500
Steve Buzonas wrote:
Hi!
Hello, reading more about the driver it says that that driver is no
longer maintained and it recommends zd1211rw which is included in the
kernel. You should be able
I have been thinking of going to x86_64 mode but I'm wondering if
it's worth the trouble with multilib, chroot'ing, firefox-bin and other
compromises (admittedly some minor). I realize I should see some speed
increase but probably only in certain areas such as compiling.
I just switched
allow it, or do I have an outdated version of portage?
Steve Buzonas Jr.
by going to
'Device Drivers Network Device Support Wireless LAN ZyDAS
ZD1211/ZD1211B USB-wireless support '.
Hope it helps.
Steve Buzonas Jr.
On Thursday 20 December 2007, Stroller wrote:
... I was expecting something
similar to when I've hotplugged SATA drives on my desktop machine.
What controller is in that, please?
Does it do hardware RAID, or is it just a regular SATA controller?
I've done it using both the onboard
machine. We had to
reboot the server to get it to see the replacement drive. Perhaps there's
some /proc/ or /sys/ setting to trigger a rescan of the SCSI bus, but I
couldn't find it.
Other than those oddities the drive swap went well.
Cheers,
Steve.
signature.asc
Description
-backup.nongnu.org/
If you ignore the 'rdiff-backup-data' folder it creates then it's more or less
identical to using rsync alone.
HTH,
Steve.
--
[EMAIL PROTECTED] mailing list
On Sunday 04 November 2007, Roger Mason wrote:
Did you have to do anything special to make it work from cron?
No, but then the crontab entry is simply:
47 4 * * * /root/backup.sh
The backup.sh is essentially:
rdiff-backup \
--print-statistics \
--exclude /mnt \
--exclude /dev \
On Sunday 04 November 2007, Shawn Haggett wrote:
Roger Mason wrote:
How have you setup the passwordless ssh? If your using keys with the ssh
keyagent, then when the command is run in cron it wouldn't know where to
find your ssh-agent...
Shawn
I use a use a key with no password without
On Saturday 03 November 2007, Grant wrote:
I'm looking for an easy way to encode the video files I acquire into a
single format and level of quality. It would also be nice to be able
to easily burn a DVD of the resultant file that will play on a home
DVD player. I'm sure there are at least
On Friday 02 November 2007, sean wrote:
How is vixie-cron setup to accept remote connections?
Eh? Why would a cron daemon need to accept connections, what does that even
mean in the context of cron?
--
[EMAIL PROTECTED] mailing list
On Monday 08 October 2007, Arnau Bria wrote:
My apache2 worked fine until lasta Friday I update it to 2.2.6.
Now, when I try to access my drupal site, I see this error in firefox:
I'm just guessing, but Apache 2.2.6 removed index.htm from the list of
default index files. It may be possible
On Monday 08 October 2007, Arnau Bria wrote:
You're right, I needed index.php... but now php does not work!!!
Have you run revdep-rebuild, or even simply manually re-emerged PHP after
updating Apache?
not sure if all those dir should be empty...
could you please confirm?
I have only php.ini,
On Tuesday 02 October 2007, Alexander Skwar wrote:
Hello.
When X.Org 1.4 first hit the portage tree, I masked it, as I had quite
some problems getting it to work work with my Nvidia graphics card.
I decided to stay with 1.3.0.0 for the time being.
Now x11-base/xorg-server-1.4-r2 is in the
1 - 100 of 262 matches
Mail list logo