Re: This URL crashes Konqueror.....?

[Kamaraju Kusumanchi]

On Thursday 11 January 2007 21:54, M-L wrote:
> Can someone enlighten me please as to why this the URL below crashes
> Konqueror?
>
> http://www.avaaz.org/en/iraq_campaign_jan_2007/
>
>

Works fine on konqueror 3.5.5 installed from Debian Etch (testing) i386 
repositories. No crash and the site renders fine.

raju

-- 
Kamaraju S Kusumanchi
http://www.people.cornell.edu/pages/kk288/
http://malayamaarutham.blogspot.com/

--
Save Money on Your Health Insurance
Compare multiple insurance quotes to save with NetQuote's free service
http://tags.bluebottle.com/fc/MhtYWUi3V9u2QrvYXGnSo87fVZAue8u7gaR1U/


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: IP Address networking - best way?

[Justin Hartman]

On 1/12/07, Alan Chandler wrote:

I don't think that is an issue.  My /etc/network/interfaces file
follows.  Essentially this machine is my router connecting via eth0 to
the internet (and using dhcp from my ISP to get me an IP address - and
prerunning the firewall as it comes up) on the lan side are a set of
interfaces from a single network card based around eth1.  This all
works perfectly and eth1 and eth1:0 have separate ip addresses.

[SNIP]

I have to admit I am now more confused than ever - not because of your
post Alan but because this issue seems to have little to do with the
interfaces file and more to do with /etc/init.d/networking restart.

Yesterday I made some changes to the server and from terminal I
rebooted the server. When the system booted up (without problems) I
first became aware that eth0:0 was not loading at boot time and I had
to manually run "ifup eth0:0" to get the interface up and running
which is why I posted back onto this thread.

Without making a single change to the interfaces file I issued a
/etc/init.d/networking restart command and low and behold my network
just went down again with no access to the server so now I'm wondering
if this has to do with the whole networking restart or the interfaces
file itself.


I wonder if the original poster is having problems because he needs to
allow ip forwarding.


Not sure about this and I don't know how to check this out either.
Sorry I know I'm seeming very dumb right now but networking is not
something I'm very good at and I'm learning as I go along here...

Thank for all your patience
--
Regards
Justin Hartman
PGP Key ID: 102CC123


--
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

DVD menu creator

[andy]

Dear all

Although I have been using the command line to write up quick and dirty 
xml files to use in the process of burning DVD video files to disk, I 
was wondering if anyone had a recommendation for a (graphical) 
application that would do this for me. A friend in Windows-world is 
using something by Nero that provides him with different options to 
write chapters and menus, to have a graphic/thumbnails show when the DVD 
is inserted into the drive and so forth. I was just curious if a similar 
application existed for Debian.


Thanks

A


--
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: IP Address networking - best way?

[Alan Chandler]

On Friday 12 January 2007 02:00, Andrew Sackville-West wrote:
> On Fri, Jan 12, 2007 at 03:04:08AM +0200, Justin Hartman wrote:
> > On 1/12/07, Michael Bellears
> >
> > <[EMAIL PROTECTED]> wrote:
> > >Bahfat fingers! Try auto eth0:0
> >
> > The problem with auto eth0:0 is that last time I did this and I ran
> > a networking restart I completely shut down my server from external
> > access. I had to get the datacenter to remove the auto and then I
> > could get back into my machine.
>
> I believe that when you brought this up before you were told that
> eth0 and eth0.0 are the same thing and that was the problem. you need
> either eth0 and eth0.1 or eth0.0 and eth0.1. If it wasn't you, sorry.
> :)

I don't think that is an issue.  My /etc/network/interfaces file 
follows.  Essentially this machine is my router connecting via eth0 to 
the internet (and using dhcp from my ISP to get me an IP address - and 
prerunning the firewall as it comes up) on the lan side are a set of 
interfaces from a single network card based around eth1.  This all 
works perfectly and eth1 and eth1:0 have separate ip addresses.

I wonder if the original poster is having problems because he needs to 
allow ip forwarding.  

# /etc/network/interfaces -- configuration file for ifup(8), ifdown(8)

# The loopback interface
auto lo
iface lo inet loopback

# The first network card - this entry was created during the Debian 
installation
# (network, broadcast and gateway are optional)
#

auto eth0
auto eth1
auto eth1:0
auto eth1:1
auto eth1:2
auto eth1:9

# This is the network card for connecting from the outside (MAC address 
registered)
iface eth0 inet dhcp
pre-up /etc/firewall $IFACE
pre-up echo 1 > /proc/sys/net/ipv4/ip_forward

iface eth1 inet static
address 192.168.0.20
netmask 255.255.255.0

iface eth1:0 inet static
address 192.168.0.30
netmask 255.255.255.0

iface eth1:1 inet static
address 192.168.0.31
netmask 255.255.255.0

iface eth1:2 inet static
address 192.168.0.32
netmask 255.255.255.0

iface eth1:9 inet static
address 192.168.0.39
netmask 255.255.255.0



-- 
Alan Chandler
http://www.chandlerfamily.org.uk


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Help needed?

[dicota]

Hello,

my name is Mirko and i'm from the IT of the DICOTA company. Do you need help 
with any technical information about the link accessorie?

For your information: If you have a working wine configuration you can start the 
EasyCopyNet.exe on the device (in my ubuntu notebook /media/cdrecorder) by copy the 
EasyCopyNet.exe on your Desktop and start from this location. After this you can set the 
"System/Setup/Share as readonly" OFF. I think this must help. But you can use 
the EasyCopyNet Tool also to copy files from the first to the second computer - also 
under linux with wine (remember - wine shows only your wine configured devices!)


--
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: IP Address networking - best way?

[Justin Hartman]

On 1/12/07, Andrew Sackville-West wrote:

I believe that when you brought this up before you were told that eth0
and eth0.0 are the same thing and that was the problem. you need
either eth0 and eth0.1 or eth0.0 and eth0.1. If it wasn't you,
sorry. :)


Yes this was me who originally brought this up. After waiting nearly
three days for the datacenter to get eth0 back up and running I am
just being overcautious with this to 'try' and avoid any issues coming
up again.


change this to eth0.0 and then auto eth0.1 should work. note that I
haven't tested this, just recalling the previous thread on this
topic. check recent archives (maybe two weeks).


Got it - thanks!
--
Regards
Justin Hartman
PGP Key ID: 102CC123


--
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: Root privilege (SOLVED)

[cga2000]

On Thu, Jan 11, 2007 at 05:15:19PM EST, Douglas Tutty wrote:
> On Thu, Jan 11, 2007 at 03:15:51PM -0500, cga2000 wrote:


 
> > yes .. but what I'm really not too comfortable with is mostly the
> > non-granularity of privileges ..  I'll have to play with groups a bit
> > and see if this might provide better solutions.  Also do some googling
> > and look for those who went down that road before me .. see if they came
> > up with useful conclusions.
> > 
> 
> What sorts of things do you find you need root for?  I use root (e.g.
> su - ) for these things only:
> 
>   install packages with aptitude:
>   aptitude has the option of being run by a user then
>   prompt for the root password when needed but then the
>   user's extended package attributes are stored separatly
>   than if root (or another user) runs it.  Until that
>   problem is solved, I'll stick with running it as root.
> 
>   Edit config files:
> 
>   after both, run samhain -t update

I've tried tripwire in the past for similar purposes but found it rather
messy .. lots of false positives .. huge reports that I soon got into
the habit of deleting without looking at them.. Probably didn't spend
the time to read and understand the manual and configure it correctly.

I'll give samhain a look..  Looks promising.

>   run my backup script since I end up tar.bz2ing stuff that I as a
>   regular user can't read.
> 
>   Do anything with disks and partitions (check smart drive status,
>   alter the LVM setup).

This is what root's recently been up to on my laptop:

· manually adjusting the system & hardware clock
· bouncing the network
· starting/restarting/stopping daemons
· adding "local" stuff to the /etc/rc.* boot scripts
· adding/removing test users
· resetting the wife's password
· running a password cracker
· running chkrootkit
· viewing logs
· accessing /var/spool/
· shutting down the system
· starting a vmware image
· starting my chroot etch install
· moving stuff to a fat file system
· looking for and deleting core files
· teaching myself the intricacies of cron
· loading/unloading modules 
· adding/removing software with apt
· kernel upgrades/reconfiguration (partially as root) 
· make-installing software compiled from source 
· running dpkg-reconfigure
· manually running updatedb
· sync'ing file systems
· renicing tasks
· changing file ownership/permissions
· adding an entry to the terminfo database
· running lilo
· mounting/unmounting file systems
· running backups
· creating/burning iso images
· system tools such as fdisk that may require root privileges 
· same for the network -- ifconfig .. ip .. tcpdump ..
· editing config files in the directory tree
· killing misbehaving processes
· changing root's password
· testing the OP's problem

Notes:

1. It's well past midnight here so it's a bit late to bother structuring
   the above.  I think it mostly boils down to what you indicated with a
   few personal extras that you probably have no use for.
   
2. A significant number of tasks do not require root privileges .. some
   simple stuff such as adding /sbin to my $PATH .. adding myself to a
   couple of groups .. etc. would let me perform these at least in part
   under my regular account.  
   
   But then I'd have to think .. does this particular option or feature
   require root privileges .. ??  I don't want to have to think about
   such aspects.  I mean, I'm looking for clues in /var/log .. some logs
   are world-readable and others are not..  The problem I'm dealing with
   may be quite serious..  I am already in a foul mood .. Do I really
   need the additional aggravation of having to switch accounts while
   investigating..?  
   
   This is a personal decision and not the same thing as being sloppy.  
   
   Generally speaking, I happen to wear two different hats on this
   system ..  user and administrator.  In order to keep things separate
   I prefer to use two different accounts.  I have been doing this since
   I started playing with linux 6-7 years ago and I haven't had any
   problems so far.  Rule of conduct: If I have the slightest doubt
   about the outcome of what I plan to do after su'ing to root .. I
   don't do it.  
  
3. I have excluded some stuff from the above that was done in single
   user mode .. things like adding a partition .. fsck'ing file systems
   ..  moving the /usr/local tree to a separate partition .. etc.

4. my ultimate fantasy is to run a final "rm -rf *" under '/' and watch
   the dying throes of a linux system .. as soon as I can afford a new
   laptop and before giving the old one away to charity.  
   
   Or maybe much sooner, who knows...  Sh*t happens..

   :-)

> Everything else I do as myself.  I wouldn't want anyone other than root
> doing any of that.

I think this last statement would make a rather nice sig.

Thanks.

cga


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of "unsubscri

Re: This URL crashes Konqueror.....?

[Greg Folkert]

On Fri, 2007-01-12 at 13:54 +1100, M-L wrote:
> Can someone enlighten me please as to why this the URL below crashes 
> Konqueror?
> 
> http://www.avaaz.org/en/iraq_campaign_jan_2007/

Mainly because of this:

http://www.avaaz.org/inc/interstateh2.swf

Cheers.
-- 
greg, [EMAIL PROTECTED]

The technology that is
Stronger, better, faster:  Linux


signature.asc
Description: This is a digitally signed message part

Re: For the 4th time please remove the thread from server please

[Greg Folkert]

Top posting on purpose.

Kevin Chicak, please read the lists.debian.org disclaimer!

http://www.debian.org/MailingLists/disclaimer

Quote:

By sending an email to such a public forum, you agree to public
distribution of your article. All mails sent to any of our
mailing lists (and to the bug tracking system) will be publicly
distributed and archived in our mailing list archives.

Any emails sent by any one person directly to the list, or
replies by others to those emails sent to the list, are
considered published, in accordance with the United States law.

Obviously the author still owns the copyright to the content of
these emails that they have written. However, that does not mean
that the Debian Project is under obligation to remove them from
a list archive once published. Several legal counsels have
reviewed this stance and confirmed it is correct.

The mailing list archives have been public well before you sent
a message to that mailing list address. You are responsible for
determining who it is you are sending your email to. You cannot
send email to arbitrary recipients and expect that they are
automatically forced into accepting your terms for receiving
your email.

Debian accepts no responsibility for the opinions and
information posted on its mailing lists by others.

Debian disclaims all warranties with regard to information
posted on its mailing lists, whether posted by Debian or others;
this disclaimer includes all implied warranties of
merchantability and fitness. In no event shall Debian be liable
for any special, indirect or consequential damages, or damages
of any kind whatsoever, resulting from loss of use, data or
profits, arising out of or in connection with the use of any
information posted on a Debian mailing list.

By posting material, the posting party warrants and represents
that it owns the copyright with respect to such material, has
received permission from the copyright owner, or that the
material is in the public domain. The posting party further
warrants and represents that it otherwise has the full and
unencumbered right to post such material and that such posting
will not infringe any rights or interests of others.

Debian does not generally monitor its mailing lists for
inappropriate postings, and does not undertake editorial control
of postings. We do, however, reserve the right to prevent
posting to mailing lists in the event of failure to comply with
the mailing list code of conduct.

Some spam and virus filtering is applied to every message that
goes through Debian lists. Roughly 1 in 400 messages that are
sent to the list actually make it through; the rest are
discarded as spam.

Your requests are falling on deaf ears. And the legal authority to back
the deafness.

Please refrain from making this futile request again, as it looks bad
for you and you alone.


On Thu, 2007-01-11 at 18:44 -0700, Kevin Chichak wrote:
> Can you please Remove the following thread!!! From
> your server.
> 
> 
> 
> 
> 
> Top of Form
> 
> 
>  [Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread
> Index] 
> Bottom of Form
> Re: DON'T OPEN THE PREVIOUS MESSSAGE FROM ME!!! VIRUS
> 
> • To: "WADE @ Spots" <[EMAIL PROTECTED]> 
> • Subject: Re: DON'T OPEN THE PREVIOUS MESSSAGE FROM ME!!! VIRUS 
> • From: Paul Johnson <[EMAIL PROTECTED]> 
> • Date: Tue, 17 Feb 2004 12:09:38 -0800 
[...SNIP...]
-- 
greg, [EMAIL PROTECTED]

The technology that is
Stronger, better, faster:  Linux


signature.asc
Description: This is a digitally signed message part

Re: What was SA thinking?

[Steve Lamb]

Raquel wrote:
> So change it to the score you want exim.org to get in your local.cf
> file ... or whitelist it.

Er, not the point.  I mean since I clearly have spent time in my SA
configuration file that's not the problem.  The problem is why these obviously
horrible sources need to be addressed by the end users in the first place.
These are not off-in-the wild domains I'm talking about here, these are about
as mainstream as you can get.


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Installing debian on a DL360G5 server with a hp P400 controller

[DB]

There are no drivers supporing the P400 controller.

How can I get debian to install on this system.

--
Don

Re: This URL crashes Konqueror.....?

[M-L]

On Friday 12 January 2007 14:02, Alan Ianson shared this with us all:
>--> On Thu January 11 2007 18:54, M-L wrote:
>--> > Can someone enlighten me please as to why this the URL below crashes
>--> > Konqueror?
>--> >
>--> > http://www.avaaz.org/en/iraq_campaign_jan_2007/
>-->
>--> It doesn't crash my konqueror on etch-amd64.

Thank you, maybe I would have to use sun java again.

Charlie

-- 
Registered Linux User:- 329524
+++
Through want of enterprise and faith men are where they are, buying and 
selling and spending their lives like 
servants. .Henry David Thoreau

>>>
Linux Debian Etch


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: recommended network/server layout for website, email, and backup hosting

[Mihira Fernando]

On 1/11/07, John Schmidt <[EMAIL PROTECTED]> wrote:

Hi,

I would like to host several low traffic web sites at my home with some older
computers (400 Mhz P2) that I have laying around.  I would like to get some
recommendations on effective ways of setting up my set of computers that
would provide a web server, and email server and back up servers.

for low traffic servers, these machines are more than enough.
What really matters is the amount of memory and HD space and ofcause bandwidth.



These web sites would be publically accessible with low traffic volumes.  In
addition, I forsee  email hosting for each of the domains.  I would not have
that many email accounts (not more than 10-20).  I figured that exim with the
ability to do multiple hosting would suffice.  I would probably set up a
couple of mailing lists as well using something like mailman.  I would like to
set up my email server with imap, and pop cabilities for both the publically
accessible domains and my own personal email access.  I would like to have a
couple of machines set up in my LAN that would be able to provide two
levelsof backups for my configurations, both internal LAN backups and DMZ
level backups (web server and email server).

For multidomain vitual mail  hosting, you're far better off using
Postfix. It's much easier to configure and uses less resources than
exim.


Initially, I was thinking that I would put two machines in my DMZ zone, one
acting as a web server and one acting as an email server.  My two backup
machines would be in my LAN along with my fileserver and another development
machine.

If its really low traffic, you can have all-in-one box.


Regarding server security (email and web server), I have the following
questions?

1.  Because the machines are slow, would it be better to have the two machines
do some sort of load balancing or would it be better to have a separation of
responsibilities?

If its low traffic, your mahines doesnt need load balancing. P2 400 is
more than enough to handle the traffic.


2.  Would it be better (security wise) to have my email server located in my
LAN and not in my DMZ zone and just tunnel port 25 traffic through?

ofcause but configuration is more complex in this approach. Besides,
Postfix in its defaut state (out of the box) is secure enough and with
proper configuration its virtually imposible to compromise.


3.  I know nothing about DNS, and figured that I would let someone like
no-ip.com provide this service for me.  Or would it be fairly straightforward
to do my own DNS hosting and combine two of my machines for doing primary and
secondary DNS with other responsibilities, i.e. email/DNS on one machine,
DNS/web server on another?  Is it possible to have my DNS machines inside my
LAN, or is it necessary to have both primary and secondary DNS machines in my
DMZ for better security.

No-ip.com is for dynamic IP hosts. Since you have a static IP, you
dont need dynamic IP services.
If you dont want to maintain your own DNS use a free DNS service like
http://freedns.afraid.org. However, if you're going to maintaing your
own DNS, its far easier to keep the DNS on the DMZ. However, you'll
have to do some address translation/forwarding since you have only one
static IP.


4.  For imap and pop stuff can the imap server be inside my LAN and access be
tunneled through as needed.

possible but more troublesome.


5.  Should any server, i.e. mail, imap,pop, web be located in the DMZ zone so
if they are hacked, my internal LAN machines are safer?

Depends on how you configure your firewall and the PCs.



--
Random Quotes From Megas XLR
Coop: You see? The mysteries of the Universe are revealed when you break stuff.
Jamie: When in doubt, blow up a planet.
Kiva: It's an 80 foot robot, if we can't see it, absolutely it's not here.
Glorft Technician: Unnecessary use of force in capturing the Earthers
has been approved.


--
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: This URL crashes Konqueror.....?

[M-L]

On Friday 12 January 2007 14:00, Roberto C. Sanchez shared this with us all:
>--> On Fri, Jan 12, 2007 at 01:54:06PM +1100, M-L wrote:
>--> > Can someone enlighten me please as to why this the URL below crashes
>--> > Konqueror?
>--> >
>--> > http://www.avaaz.org/en/iraq_campaign_jan_2007/
>--> >
>-->
>--> Not sure why it crashes Konq.  Maybe a javascript bug?
>-->
>--> As far as the site content, don't worry you aren't missing a thing.  It
>--> seems like just some self-important activist types who make
>--> pronouncements without providing anything approaching a hard fact, any
>--> sort of substantiation or even an inkling that they have the most basic
>--> understanding of political or military matters.
>-->
>--> To top it off, they don't even bother to offer a potential solution,
>--> they just whine about the problem.  What good is that?
>-->
>--> Regards,
>-->
>--> -Roberto

Thanks Roberto,

I will have to look through Konq to see why it breaks on this. Javascript bug 
you reckon..? Will look here first.

Thank you
Charlie

-- 
Registered Linux User:- 329524
+++
I disapprove of what you say, but I will defend to the death your right to say 
it. ..Voltaire

>>>
Linux Debian Etch


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: [OT/FLAME] Horrible GNOME File Picker (Was: Open (helper application chooser) for iceweasel/icedove is too simple)

[Henrique de Moraes Holschuh]

On Fri, 12 Jan 2007, Nyizsnyik Ferenc wrote:
> I really don't need the little pictures in front of the file names. Does 
> anybody?

Sure.  The typical user GNOME wants to target does.  They don't know enough
to properly add extensions to their file names without coaxing by the
applications, and they cannot deal with, say, a pdf file that is named
"readme.txt" for some stupid reason.

The problem is twofold: 

1. GNOME is used by a lot more people than the ridiculously low skill level
user they aim at, and the GNOME project are often really bad at not dumbing
down their interface in non-reversible ways.  This means a lot of users get
unhappy at the way the interface gets dumber and dumber at every new
release.

2. Broken, stupid, non/badly-engineered design on the underlying code is
becoming more and more common on the desktop environments.  The GNOME
file-picker is a fine example of such things, but is hardly the worst
offender.   One only needs to read the average applet sourcecode to be
nearly driven to tears of anguish and pain.

-- 
  "One disk to rule them all, One disk to find them. One disk to bring
  them all and in the darkness grind them. In the Land of Redmond
  where the shadows lie." -- The Silicon Valley Tarot
  Henrique Holschuh


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: How to request removal of SPAM from Debian archives

[Roberto C. Sanchez]

On Fri, Jan 12, 2007 at 01:14:11AM -0200, Henrique de Moraes Holschuh wrote:
> 
> Do not pester the mailinglist with removal requests.  The correct contact
> addresses are on http://lists.debian.org, and
> http://www.debian.org/contact#infrastructure.
> 
Not just that, but Pascal Hakim (who usually answers listmaster mail) is
quite responsive and pops up on this list every so often.

Regards,

-Roberto

-- 
Roberto C. Sanchez
http://people.connexer.com/~roberto
http://www.connexer.com


signature.asc
Description: Digital signature

How to request removal of SPAM from Debian archives

[Henrique de Moraes Holschuh]

DISCLAIMER: I am *not* on the postmaster team.  Don't bother me with
requests of help to get messages deleted, I *cannot* help you.  Please
respect the reply-to header: I do not want to receive private replies of any
kind on this thread's topic.  Do not CC me either.

Anyone can request that messages be removed from the Debian archive by
locating them on the http://lists.debian.org archive (use the message-id
search for maximum effect), and clicking on the "Report as spam" button.

If you find a message that has no "Report as spam" button, that is probably
a bug.  Please report the message-id and the fact that is has no "report as
spam" button to the lists.debian.org archive team.  Their email is on the
lists.debian.org homepage.

Whether the listmasters will defer or accept a request to delete a message
is up to them.  Nobody other than a listmaster can help you with any real
chances of getting a message deleted.

Even if the Debian listmasters remove a message from the lists.debian.org
archive, this will NOT get the message removed from any other archives, as
they are not maintained by the Debian project.  You will have to track it
down over the entire internet, and request the owners of each archive to
delete the message (and they may do as they wish with your request).

Do NOT reply to messages you want to see deleted, it is counter-productive.
This is one of the reasons why I am posting this message as a new thread
head (no In-Reply-To header).  Messages that have replies to them are less
likely to be removed.

Do not pester the mailinglist with removal requests.  The correct contact
addresses are on http://lists.debian.org, and
http://www.debian.org/contact#infrastructure.

-- 
  "One disk to rule them all, One disk to find them. One disk to bring
  them all and in the darkness grind them. In the Land of Redmond
  where the shadows lie." -- The Silicon Valley Tarot
  Henrique Holschuh


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: This URL crashes Konqueror.....?

[Ron Johnson]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 01/11/07 20:54, M-L wrote:
> Can someone enlighten me please as to why this the URL below crashes 
> Konqueror?
> 
> http://www.avaaz.org/en/iraq_campaign_jan_2007/

Works fine with IceWeasel 2.0.0.1.


-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQFFpvtWS9HxQb37XmcRAh+DAJ9chotrwbYyMD26DmCLO/Y7rDW3AwCdH44c
XO8hGpbYVw9nqG0k6xi9Cmo=
=tTrh
-END PGP SIGNATURE-


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: This URL crashes Konqueror.....?

[Alan Ianson]

On Thu January 11 2007 18:54, M-L wrote:
> Can someone enlighten me please as to why this the URL below crashes
> Konqueror?
>
> http://www.avaaz.org/en/iraq_campaign_jan_2007/

It doesn't crash my konqueror on etch-amd64.


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: This URL crashes Konqueror.....?

[Roberto C. Sanchez]

On Fri, Jan 12, 2007 at 01:54:06PM +1100, M-L wrote:
> Can someone enlighten me please as to why this the URL below crashes 
> Konqueror?
> 
> http://www.avaaz.org/en/iraq_campaign_jan_2007/
> 

Not sure why it crashes Konq.  Maybe a javascript bug?

As far as the site content, don't worry you aren't missing a thing.  It
seems like just some self-important activist types who make
pronouncements without providing anything approaching a hard fact, any
sort of substantiation or even an inkling that they have the most basic
understanding of political or military matters. 

To top it off, they don't even bother to offer a potential solution,
they just whine about the problem.  What good is that?

Regards,

-Roberto

-- 
Roberto C. Sanchez
http://people.connexer.com/~roberto
http://www.connexer.com


signature.asc
Description: Digital signature

Re: For the 4th time please remove the thread from server please

[Andrew Sackville-West]

On Thu, Jan 11, 2007 at 06:44:31PM -0700, Kevin Chichak wrote:
> Can you please Remove the following thread!!! From
> your server.

It makes sense that you want the thread removed because you've
splattered your entire address book up there. I understand that. What
I don't get though, is why, in a public list, you would DO THE SAME
THING BY QUOTING THE WHOLE FREAKING MESSAGE AGAIN!!!

that's just ridiculous. further more, how and why would any of us, the
subscribers of debian-USER have any control over this list? we are,
after all, only subscribers, not admins. You might get much farther if
you were to, say, I don't know, contact the LISTMASTER?! 

why don't you go to lists.debian.org and look around a bit. I'll give
you a hint: its an email address for listmaster. A nicely worded
explanation of the situation may resolve the matter handily.

but that's just me.

A

[snipped silly replastering of OP's friends and family email address]



signature.asc
Description: Digital signature

This URL crashes Konqueror.....?

[M-L]

Can someone enlighten me please as to why this the URL below crashes 
Konqueror?

http://www.avaaz.org/en/iraq_campaign_jan_2007/

TIA
Charlie
-- 
Registered Linux User:- 329524
+++
We must have infinite faith in each other. If we have not, we must never let 
it leak out that we have not. .Henry David 
Thoreau

>>>
Linux Debian Etch


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: getting xorg working on an old box .....

[Ron Johnson]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 01/11/07 17:23, Michael Fothergill wrote:
> 
> 
> 
> 
>> >> The error was
>> >
>> >> (EE) AIGLX screen 0 is not DRI compatible
>> >
>> >> and a few other lines followed
>> >> by
>> >> killed.
>> > Hi Michael,
>> > this error is not sufficient to stop an X server, it is just a bit of
>> > info that states that this card does not have this advanced feature
>> > (used for eyecandy). Show us more lines that have EE,WW,II or similar.
>> > Cheers,
>> > Kev
>> >
>> >> Hmmm  THis is worrying because this was the only error I saw on
>> the
>> >> terminal.  MInd you maybe there was one of these other errors
>> elsewhere
>> >> in the log file that didn't appear on the terminal
>> >
>> >> Would the log file be in e.g. /var/log/xorg.0.log or something like
>> that?
>>
>> Close.  /var/log/Xorg.0.log.  Do you use startx or xdm?
> 
> I use gdm as the login window. I have never actually seen the window of
> course because xorg hasn't worked correctly yet.  But gdm did try to
> fire up.
>  However at the terminal prompt after interrupting a failed xorg session
> I typed in startx.
> 
> Was this dumb of me?

Dumb?  No.

I just don't favor [xgk]dm because if X doesn't work, you still have
a functional system.

> Regards,
> 
> Michael Fothergill
> 
> 
> 
> 
>>
>> >> I could boot up the machine and go in the file and sniff around for
>> more
>> >> errors.
>> >
>> >> I will see what I can find and come back at you guys later.
>> >
>> >> Thank you for this advice.

-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQFFpvXyS9HxQb37XmcRAiEVAKDCXaGRiu46aux56q/Bg33K1JEa/gCfSzuO
8ctYC4liYmsokTvPO2Kqw6g=
=VOqN
-END PGP SIGNATURE-


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: Soundcard not detected after debootstrap!

[Douglas Tutty]

On Fri, Jan 12, 2007 at 08:07:43AM +0600, Abu Zaher wrote:
> On 1/12/07, Kevin Mark <[EMAIL PROTECTED]> wrote:
> >
> >Are these installed?
> >alsa-base
> >alsa-utils
> >libesd-alsa0
> 
> 
> alsa-base and alsa-utils were installed earlier, and but i missed
> libesd-alsa0, now when i installed that the problem was solved, well a bit.
> 
> I can now play mp3 files as root. But cant play any as normal user. Gnome's
> volume control doesn't work, when I click on the volume control icon i get
> this message:
> 
> "No volume control GStreamer plugins and/or devices found."


Your normal user has to be in group 'audio'.

Doug.


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: tty migration

[Douglas Tutty]

On Thu, Jan 11, 2007 at 08:41:04PM -0500, Nelson Castillo wrote:
> On 1/11/07, Douglas Tutty <[EMAIL PROTECTED]> wrote:
> >On Thu, Jan 11, 2007 at 07:22:05PM -0500, Nelson Castillo wrote:
> >> >Note: I'm not trying to migrate a process from one machine to another,
> >> >just the program's stdin, stdout, stderr from a VC to a ssh.
> >>
> >> Perhaps you should use GNU Screen instead. It will change your life :P
> >>
 
> With "Ctrl a d" you detach the screen session. Then "screen -r"  will
> get it back.


Thanks,

I'll get it soon.

Doug.


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: For the 4th time please remove the thread from server please

[hendrik]

On Thu, Jan 11, 2007 at 06:44:31PM -0700, Kevin Chichak wrote:
> 
> Here's an idea...go get your site's postmaster to do his job already
> and reject viruses at SMTP time.  If he refuses, ask him (and his
> boss) why he can't be bothered to do his job.
> 
> http://ursine.ca/~baloo/clamd-exiscan.txt

firefox tells me

Not Found

The requested URL /Rejecting_Viruses_The_Right_Way was not found on this 
server.
Apache/2.2.3 (Debian) mod_fastcgi/2.4.2 PHP/5.2.0-8 Server at ursine.ca 
Port 80

-- hendrik


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: drivers in linux

[Andrew Sackville-West]

On Thu, Jan 11, 2007 at 11:43:22PM +, Andrew Critchlow wrote:
> Can anyone please explain to me how drivers work in linux/debian?
> I am a newbie and have come over from microsoft. So my knowledge is of 
> drivers and device manager and stuff from windows.

welcome to the dark side...

>  
>  
> Is there such a device manager in linux/debian?

no not really. and there is no need for one. upon booting, the linux kernel digs
through all the hardware it can find on the system and attempts to
automatically load the appropriate "drivers" (typically called
modules). If it can't find a module for a particular piece of
hardware, it will continue its boot process quite happily. Later in
the boot process a special hardware detection system called udev comes
into play and it does the same thing -- looks at the hardware and
attempts to load modules for it. A well configured kernel will have
already done all this and udev won't do much upon booting. Later, if
you plug in a usb device, for example, udev will notice it and
automatically load the drivers for you :).

> And if I was to install a network card for example how could I check to see 
> if it was installed correctly (without trying it), how would I install 
> drivers for it etc?

For the vast majority of *supported* hardware, there is no need to
install drivers. They come with the kernel and install themselves. It
will be frustrating and confusing at first, but later, when you get
the hang of it, you'll marvel at how you did windows before. For a few
bits of *supported* hardware, you will find that the drivers are not
in the kernel or its modules. In that case you'll have to find,
download and install the modules. Its not hard. Ask here and we'll
help. 

SO, for your network card. Put the card in, boot the system, watch the
messages scroll by. if you see anything starting "ethx" where x is
some number, usually 0, then you've got a network card detected by the
kernel and probably running. You can confirm this many ways. I usually
ping www.google.com as its the best check of whether its working or
not. 

If the boot messages went by too fast, you can see them again with the
"dmesg" command. It will scroll them all by again really fast. so try
"dmesg | less" which will give you a pager to view it with. type "q"
to exit. you can scan for messages about "eth" as above. 

more ways to see your network card: the command "lspci" (as in "list
pci bus") will show you all the devices on the pci bus and what the
kernel thinks they are. If the network card is there, it will be
obvious. 

okay, have fun. the best way to do this is to just do it. 

A


signature.asc
Description: Digital signature

Re: [OFF-TOPIC] Mailing List Netiquette

[Paul Johnson]

Andrei Popescu wrote:

> On Thu, 11 Jan 2007 09:51:57 -0700
> Paul Scott <[EMAIL PROTECTED]> wrote:
> 
>> Learning to quote should include trimming from the quote all the
>> material that is not relevant to your answer.  We probably have
>> already read the OP's post and don't need to see it again and again.
> 
> I replied immediately, my message should have been (one of) the
> first, and the amount of text was not *that* big to trim.

That assumes that nothing (bad mail2news propagation, antispam measures,
mail filter rules, etc) has caused delivery to fail, and that email and
news propagate instantaneously and the same speed through all sites.  This
is far from a guarantee:  Assuming 4 days delivery time unless otherwise
bounced or responded to is generally a safe assumption.



-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: Soundcard not detected after debootstrap!

[Abu Zaher]

On 1/12/07, Kevin Mark <[EMAIL PROTECTED]> wrote:


Are these installed?
alsa-base
alsa-utils
libesd-alsa0



alsa-base and alsa-utils were installed earlier, and but i missed
libesd-alsa0, now when i installed that the problem was solved, well a bit.

I can now play mp3 files as root. But cant play any as normal user. Gnome's
volume control doesn't work, when I click on the volume control icon i get
this message:

"No volume control GStreamer plugins and/or devices found."

Regards

--
Abu Zaher Md. Faridee
---
Time heals every wound, but time itself is a wound that never heals.

Re: For the 4th time please remove the thread from server please

[Raquel]

On Thu, 11 Jan 2007 18:44:31 -0700
"Kevin Chichak" <[EMAIL PROTECTED]> wrote:

> Can you please Remove the following
> thread!!! From your server.
> 
> 

And what makes you think that I, or any other subscriber to this
list, is able to do that?

-- 
Raquel

Judgmentalism assumes that you have the right to change someone
else.  Well, you don't.  You only have the right to choose how *you*
will change and behave.  Trust others to make their own choices. 
Put the accountability for another's actions where it belongs, on
the other person's shoulders.
  --Vince Poscente


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: Why and how to blacklist soundcard or networkcard modules?

[hendrik]

On Thu, Jan 11, 2007 at 04:04:00PM -0500, Kevin Mark wrote:
> On Thu, Jan 11, 2007 at 07:49:52AM -0800, Andrew Sackville-West wrote:
> > On Thu, Jan 11, 2007 at 04:45:16PM +0800, Richard wrote:
> > 
> > If you want two sound cards then you need to look into 'writing udev
> > rules' (google that phrase, its in the top couple hits) to learn how
> > to customise the rules so that your cards are always named the same
> > thing. and read the archives of this list (probably 2 months ago) for
> > a couple threads on running multiple sound cards. 
> > 
> Hi Richard,
> one of the issue with the introduction of udev is hardware is not
> detected in a predictable way. This is true for network, sound, and
> other cards. Sometimes people have 2 cards that use the SAME kernel
> modules and have this problem also. So one approach is to add UDEV rules
> that look for a distinct property and create a distinct device (card
> 1=eth0, card 2=eth1).

There was a message here a while ago pointing out that this naming 
scheme does not work;  eth0 and eth1 are apparently assigned by some 
earlier software, and to make udev give consistent names you have to com 
up with new names, such as ethlan and ethworld, and then use /def/ethlan 
and such in, say, the routing tables.

> If the udev rules are not working, you may try a
> crude method like renaming or removing the modules. e.g.
> if the modules is called 'ethernet.ko', name it 'ethernet.ko.bad'. This
> will make the kernel not find it and thus will not load it. But this is
> one solution. The udev rule is the best way.
> Cheers,
> Kev
> -- 
> |  .''`.  == Debian GNU/Linux == |   my web site:   |
> | : :' :  The  Universal |   'under construction'   |
> | `. `'  Operating System| go to counter.li.org and |
> |   `-http://www.debian.org/ |be counted! #238656   |
> |   my keysever: subkeys.pgp.net | my NPO: cfsg.org |



-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

For the 4th time please remove the thread from server please

[Kevin Chichak]

Can you please Remove the following thread!!! From
your server.





Top of Form


 [Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread
Index] 
Bottom of Form
Re: DON'T OPEN THE PREVIOUS MESSSAGE FROM ME!!! VIRUS

• To: "WADE @ Spots" <[EMAIL PROTECTED]> 
• Subject: Re: DON'T OPEN THE PREVIOUS MESSSAGE FROM ME!!! VIRUS 
• From: Paul Johnson <[EMAIL PROTECTED]> 
• Date: Tue, 17 Feb 2004 12:09:38 -0800 
• Cc: "(h) Bill (b)" <[EMAIL PROTECTED]>,"Abounader, Selim"
<[EMAIL PROTECTED]>,"Adam - Holy Comeback, Batman! The Canucks beat
Tampa!" <[EMAIL PROTECTED]>,Air Mattreses Suck
<[EMAIL PROTECTED]>,Alisha McIsaac <[EMAIL PROTECTED]>,Audrey
Prawdzik-Bergen <[EMAIL PROTECTED]>,"B & B Strub (Canada)"
<[EMAIL PROTECTED]>,Beth <[EMAIL PROTECTED]>,Bill & Ivy Crawford
<[EMAIL PROTECTED]>,Bill Crawford <[EMAIL PROTECTED]>,Bill
Crawford <[EMAIL PROTECTED]>, Blake Patton <[EMAIL PROTECTED]>,Blake Patton
<[EMAIL PROTECTED]>, Bob Swingle <[EMAIL PROTECTED]>,Cathy Cassidy
<[EMAIL PROTECTED]>, [EMAIL PROTECTED],"Column (Promotion)"
<[EMAIL PROTECTED]>, Darcy <[EMAIL PROTECTED]>,Dave Durant
<[EMAIL PROTECTED]>,David Zradicka -- Wuta international
<[EMAIL PROTECTED]>,deanna&greg <[EMAIL PROTECTED]>,
debian-user@lists.debian.org,Don Cottrell <[EMAIL PROTECTED]>,Don
Gallaher <[EMAIL PROTECTED]>,dsgreen <[EMAIL PROTECTED]>, Eric
Boley <[EMAIL PROTECTED]>,Ernie Toews <[EMAIL PROTECTED]>,Gail Helmer
<[EMAIL PROTECTED]>,Gene Orlick <[EMAIL PROTECTED]>, Gina Winn
<[EMAIL PROTECTED]>,Harvey Lalach <[EMAIL PROTECTED]>,Howard Darby
<[EMAIL PROTECTED]>,"I like your pants around your feet-ITS A
SONGpervert" <[EMAIL PROTECTED]>,James Chevrette
<[EMAIL PROTECTED]>,James Chevrette <[EMAIL PROTECTED]>, Janeen
<[EMAIL PROTECTED]>,Jason Marshall <[EMAIL PROTECTED]>,Jean MacDougall
<[EMAIL PROTECTED]>,Jean Marshall <[EMAIL PROTECTED]>,Jeff Torrance
<[EMAIL PROTECTED]>,Jim Cooper <[EMAIL PROTECTED]>, Joan Sweeney
<[EMAIL PROTECTED]>,[EMAIL PROTECTED], John Post
<[EMAIL PROTECTED]>,Johnny Prybar <[EMAIL PROTECTED]>, Joshua Prowse
<[EMAIL PROTECTED]>,Julia Allen <[EMAIL PROTECTED]>,"K. and R. Visser"
<[EMAIL PROTECTED]>,Kathie Stoner <[EMAIL PROTECTED]>,Kelli Erasmus
<[EMAIL PROTECTED]>,Kerrie Basarab
<[EMAIL PROTECTED]>,Kerrie Basarab
<[EMAIL PROTECTED]>,Kevin Chichak
<[EMAIL PROTECTED]>, [EMAIL PROTECTED],Kimberly Doepker
<[EMAIL PROTECTED]>, Laureen <[EMAIL PROTECTED]>,Liane Harcourt
<[EMAIL PROTECTED]>,Liz Crawford <[EMAIL PROTECTED]>, m II
<[EMAIL PROTECTED]>,Mail Delivery Subsystem
<[EMAIL PROTECTED]>,Margot Schulman
<[EMAIL PROTECTED]>,Maureen Duffy <[EMAIL PROTECTED]>,Megan Byers
<[EMAIL PROTECTED]>,Melanie <[EMAIL PROTECTED]>, Melanie
<[EMAIL PROTECTED]>,Melanie's Office
<[EMAIL PROTECTED]>,[EMAIL PROTECTED], Mikey
<[EMAIL PROTECTED]>,Pablo Judd <[EMAIL PROTECTED]>, Pato
<[EMAIL PROTECTED]>,Patrick Starrenburg
<[EMAIL PROTECTED]>,Peter Spinner
<[EMAIL PROTECTED]>,Pilsum Master <[EMAIL PROTECTED]>,"Put my ModChip
back in, but it still doesn't work...:(" <[EMAIL PROTECTED]>,Rick Jenkins
<[EMAIL PROTECTED]>, Rob Gibson <[EMAIL PROTECTED]>,Robert Marshall
<[EMAIL PROTECTED]>,Robert Swingle -- Internode <[EMAIL PROTECTED]>,Robert
Ward <[EMAIL PROTECTED]>, Roger Hough <[EMAIL PROTECTED]>,Ronald Holmes
<[EMAIL PROTECTED]>,Root -- Spots <[EMAIL PROTECTED]>, Ryanr
<[EMAIL PROTECTED]>,[EMAIL PROTECTED], "S. West"
<[EMAIL PROTECTED]>,Sam Halas <[EMAIL PROTECTED]>, Scott
<[EMAIL PROTECTED]>,[EMAIL PROTECTED], [EMAIL PROTECTED], Tara
<[EMAIL PROTECTED]>,Thedrawguy <[EMAIL PROTECTED]>, thumper
<[EMAIL PROTECTED]>,Tina <[EMAIL PROTECTED]>,"Tobin -
172lbs...still." <[EMAIL PROTECTED]>,[EMAIL PROTECTED],
[EMAIL PROTECTED],"Vohaul..chinook is back...a" <[EMAIL PROTECTED]>

• In-reply-to: <[EMAIL PROTECTED]> 
• Mail-followup-to: "WADE @ Spots" <[EMAIL PROTECTED]>,"(h) Bill (b)"
<[EMAIL PROTECTED]>,"Abounader, Selim" <[EMAIL PROTECTED]>,"Adam
- Holy Comeback, Batman! The Canucks beat Tampa!"
<[EMAIL PROTECTED]>,Air Mattreses Suck <[EMAIL PROTECTED]>,Alisha
McIsaac <[EMAIL PROTECTED]>,Audrey Prawdzik-Bergen <[EMAIL PROTECTED]>,"B
& B Strub (Canada)" <[EMAIL PROTECTED]>,Beth
<[EMAIL PROTECTED]>,Bill & Ivy Crawford
<[EMAIL PROTECTED]>,Bill Crawford <[EMAIL PROTECTED]>,Bill
Crawford <[EMAIL PROTECTED]>, Blake Patton <[EMAIL PROTECTED]>,Blake Patton
<[EMAIL PROTECTED]>, Bob Swingle <[EMAIL PROTECTED]>,Cathy Cassidy
<[EMAIL PROTECTED]>, [EMAIL PROTECTED],"Column (Promotion)"
<[EMAIL PROTECTED]>, Darcy <[EMAIL PROTECTED]>,Dave Durant
<[EMAIL PROTECTED]>,David Zradicka -- Wuta international
<[EMAIL PROTECTED]>,deanna&greg <[EMAIL PROTECTED]>,
debian-user@lists.debian.org,Don Cottrell <[EMAIL PROTECTED]>,Don
Gallaher <[EMAIL PROTECTED]>,dsgreen <[EMAIL PROTECTED]>, Eric
Boley <[EMAIL PROTECTED]>,Ernie Toews <[EMAIL PROTECTED]>,Gail Helmer
<[EMAIL PROTECTED]>,Gene Orlick <[EMAIL PROTECTED]>, Gina Winn
<[EMAIL PROTECTED]>,Harvey Lalach <[EMAIL PROTECTED]>,Howard Dar

Re: IP Address networking - best way?

[Andrew Sackville-West]

On Fri, Jan 12, 2007 at 03:04:08AM +0200, Justin Hartman wrote:
> On 1/12/07, Michael Bellears
> <[EMAIL PROTECTED]> wrote:
> >Bahfat fingers! Try auto eth0:0
> 
> The problem with auto eth0:0 is that last time I did this and I ran a
> networking restart I completely shut down my server from external
> access. I had to get the datacenter to remove the auto and then I
> could get back into my machine.

I believe that when you brought this up before you were told that eth0
and eth0.0 are the same thing and that was the problem. you need
either eth0 and eth0.1 or eth0.0 and eth0.1. If it wasn't you,
sorry. :)

> 
> Below is the full setup I have for /etc/network/interfaces
> 
> # The loopback network interface
> auto lo
> iface lo inet loopback
> 
> # The primary network interface
> allow-hotplug eth0
> iface eth0 inet static
>  address 70.87.206.50
>  gateway 70.87.206.49
>  netmask 255.255.255.248
> iface eth0:0 inet static

change this to eth0.0 and then auto eth0.1 should work. note that I
haven't tested this, just recalling the previous thread on this
topic. check recent archives (maybe two weeks).

A


signature.asc
Description: Digital signature

Re: tty migration

[Nelson Castillo]

On 1/11/07, Douglas Tutty <[EMAIL PROTECTED]> wrote:

On Thu, Jan 11, 2007 at 07:22:05PM -0500, Nelson Castillo wrote:
> >Note: I'm not trying to migrate a process from one machine to another,
> >just the program's stdin, stdout, stderr from a VC to a ssh.
>
> Perhaps you should use GNU Screen instead. It will change your life :P
>

I thought screen was a way to get many virtual-virtual terminals from
within one (virtual) terminal.


Not only that.


Can you exit a screen session, log in
another way and get it back with all the programs still running?


Yes.

With "Ctrl a d" you detach the screen session. Then "screen -r"  will
get it back.

It will work also if you accidentally close a SSH session. You will
be able to get back what you had been running. You might
need to detach it first if the system hasn't killed the ssh session yet
 -- "screen -dr".

One feature that is very useful is to have more than one
user see the same session. It's useful when you want to
help someone configure/debug something and she gives you
access to her server.

It's "screen -x". With that, you can have the terminals
in more than one PC at the same time (logged in with
the same user ... I think there are better permissions for
that but I haven't used them).

I like to use it and chat starting lines with #.

 [EMAIL PROTECTED]:~/svn$ cd fuwiki
 [EMAIL PROTECTED]:~/svn/fuwiki$ # let's do an update
 [EMAIL PROTECTED]:~/svn/fuwiki$ svn update
 At revision 10092.
 [EMAIL PROTECTED]:~/svn/fuwiki$ # Nothing new... catch you later.
 [EMAIL PROTECTED]:~/svn/fuwiki$ # Ok. See you...

It helps a lot. It's better than using IM and guess what someone
else's terminal is showing (or have her describe what she got).

You might want to use "screen -A" to start a Screen session.

Regards.

--
http://arhuaco.org
http://emQbit.com


--
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: drivers in linux

[Douglas Tutty]

On Thu, Jan 11, 2007 at 11:43:22PM +, Andrew Critchlow wrote:
> Can anyone please explain to me how drivers work in linux/debian?  I
> am a newbie and have come over from microsoft. So my knowledge is of
> drivers and device manager and stuff from windows.
>  
>  
> Is there such a device manager in linux/debian?  And if I was to
> install a network card for example how could I check to see if it was
> installed correctly (without trying it), how would I install drivers
> for it etc?
>  

The current testing version of Debian, Etch, will soon be stable.
Assuming that, since you're a newbie, you're not installing a
mission-critical server, you go with Etch.  

The UNIX philosophy is to have small things do one thing well, then join
them together to do big things.  The kernel (the core of the system if
you will) is the same.  Every different kind of hardware is 'driven' by
a different chunk of the kernel.  Some chunks are built into the kernel
as supplied by Debian, others are external into what are called modules.

When the kernel boots, all the chunks that are built-in look for their
corresponding piece of hardware.  If a chunk looks for a piece of
hardware you don't have, it says so and the next chunk reports.

On Etch, once the kernel boots, a program called udev eventually gets
started.  It looks as the modules that come with the kernel and watches
for the corresponding hardware.  When it sees it, it installs the
module.  

Bottom line:
Install Etch and don't worry about it.  If you have problems, ask here.

Enjoy.
Doug.


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

[OT] Setting a large kernel.shmmax... consequences?

[Kenward Vaughan]

Hi,

I'm setting up my home machine to do some QM calculations using GAMESS,
and the docs point out the desirability of upping the shared memory
allowances (in fact, it's outright needed in some cases).  I have 512 Mb
at this time, and am considering setting the shmmax size to 75% of that.

What I don't know is the consequence this has (if any) on how stuff
operates. I could create a script to set/reset it anytime I do this sort
of thing, or simply set it permanently in /etc/sysctl.conf and forget
it.

Does anyone have some idea what efect this would have on other things?
I'm not a heavy, 50 things going at once, type of user, but normally
have X going (GAMESS is command line, but there are some Web-based and
other GUI's for it that I'm checking out for teaching in class).

Thanks for thoughts!


Kenward
-- 
In a completely rational society, the best of us would aspire to be 
_teachers_ and the rest of us would have to settle for something less, 
because passing civilization along from one generation to the next 
ought to be the highest honor and the highest responsibility anyone 
could have. - Lee Iacocca


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: tty migration

[Douglas Tutty]

On Thu, Jan 11, 2007 at 07:22:05PM -0500, Nelson Castillo wrote:
> >Note: I'm not trying to migrate a process from one machine to another,
> >just the program's stdin, stdout, stderr from a VC to a ssh.
> 
> Perhaps you should use GNU Screen instead. It will change your life :P
> 

I thought screen was a way to get many virtual-virtual terminals from
within one (virtual) terminal.  Can you exit a screen session, log in
another way and get it back with all the programs still running?


 


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: [OT/Sometimes Windows is better] Horrible GNOME File Picker (Was: Open (helper application chooser) for iceweasel/icedove is too simple)

[Cybe R. Wizard]

marc <[EMAIL PROTECTED]>  said:
> > But I don't know what you mean by the two pane setup sentence.
> > Krusader has that by default.  
> 
> As I said, I use Krusader, but its limited layout options is a good 
> example of what not to do, imo. IOW, a good example to learn from.

Have any of you tried xfe?

Cybe R. Wizard
-- 
When Windows are opened the bugs come in.
Winduhs


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: [OT/FLAME] Horrible GNOME File Picker (Was: Open (helper application chooser) for iceweasel/icedove is too simple)

[Nyizsnyik Ferenc]

On Thu, 2007-01-11 at 15:53 -0800, Erik Steffl wrote:
> Sven Arvidsson wrote:
> [...]

>Seems like the problem is getting mime type (as mentioned here 
> before) or something of that nature...
> 
>   erik

It would be nice if it was possible to turn this "feature" off. 
I really don't need the little pictures in front of the file names. Does 
anybody?

-- 
Szia:
Nyizsa.

--
Need Help Repairing Your Credit?
Eliminate or consolidate your debt. Cut by 50%, payoff in 12-36 months
http://tags.bluebottle.com/fc/MhtYWUi20XE4KS0UZbfSTlrE9AlC36THGKCGS/


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: IP Address networking - best way?

[Justin Hartman]

On 1/12/07, Michael Bellears
<[EMAIL PROTECTED]> wrote:

Bahfat fingers! Try auto eth0:0


The problem with auto eth0:0 is that last time I did this and I ran a
networking restart I completely shut down my server from external
access. I had to get the datacenter to remove the auto and then I
could get back into my machine.

Below is the full setup I have for /etc/network/interfaces

# The loopback network interface
auto lo
iface lo inet loopback

# The primary network interface
allow-hotplug eth0
iface eth0 inet static
 address 70.87.206.50
 gateway 70.87.206.49
 netmask 255.255.255.248
iface eth0:0 inet static
 address 70.87.206.51
 gateway 70.87.206.49
 netmask 255.255.255.248

Does this help in any way?
--
Regards
Justin Hartman
PGP Key ID: 102CC123


--
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: drivers in linux

[celejar]

On 1/11/07, jdaues <[EMAIL PROTECTED]> wrote:

[snip]


I've only started using Debian in the last week, so be warned.
But so far the closest thing I see to a device manager is a package
called module-assistant:
http://packages.debian.org/unstable/devel/module-assistant


Module-assistant is a Debian-specific tool for the building and
installing of drivers that Debian packages as source code - a very
small minority of drivers. Most drivers are included in kernel
packages (binary or source) , either built in to the kernel or as
modules, as other posters have explained, and m-a is irrelevant to
them.

Celejar


--
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: light-weight rescue live CD?

[celejar]

On 1/11/07, [EMAIL PROTECTED] <[EMAIL PROTECTED]> wrote:

[snip]


In my bookmarks I find:

http://article.gmane.org/gmane.linux.debian.user/249330
http://www.grml.org/

Don't know whether grml does LVM, though.



From the grml-small package list [0]:


ii  lvm-common   1.5.20
  The Logical Volume Manager for Linux (common
files)
ii  lvm2 2.02.06-3
  The Linux Logical Volume Manager

Celejar

[0] http://grml.org/files/release-0.3-small/dpkg_list


--
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: Soundcard not detected after debootstrap!

[Kevin Mark]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On Fri, Jan 12, 2007 at 06:32:28AM +0600, Abu Zaher wrote:
> Hi,
> 
> Some days ago i debootstrapped sid from my sarge in  a new partition. 
> Installed
> an kernel 2.6.18-3-k7. But now when I boot 2 my new system, my soundcard 
> doen't
> get detected. I have a built in soundcard which works pretty well in sarge.
> 
Hi Abu, 
What kernel modules does sarge use?
what is the output of lspci?
Are these installed?
alsa-base
alsa-utils
libesd-alsa0  
after this, run 'alsaconf' and see if this help.
make sure to unmute all volume controns with alsamixer (look for 'm' at
the bottom of the screen).
Cheers,
Kev
- -- 
|  .''`.  == Debian GNU/Linux == |   my web site:   |
| : :' :  The  Universal |   'under construction'   |
| `. `'  Operating System| go to counter.li.org and |
|   `-http://www.debian.org/ |be counted! #238656   |
|   my keysever: subkeys.pgp.net | my NPO: cfsg.org |
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQFFptnOv8UcC1qRZVMRAls0AKCUf4FAaKQYsbaNYeOBeE0mgO2jxQCfSw3o
IvihopRi90I44mUFq14Z03w=
=lcrP
-END PGP SIGNATURE-


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

RE: IP Address networking - best way?

[Michael Bellears]

> 
> Yes - Add:
> 
> auto eth0:1

Bahfat fingers! Try auto eth0:0

Soundcard not detected after debootstrap!

[Abu Zaher]

Hi,

Some days ago i debootstrapped sid from my sarge in  a new partition.
Installed an kernel 2.6.18-3-k7. But now when I boot 2 my new system, my
soundcard doen't get detected. I have a built in soundcard which works
pretty well in sarge.



This is my dmesg output:

Linux version 2.6.18-3-k7 (Debian 2.6.18-8) ([EMAIL PROTECTED]) (gcc version
4.1.2 20061115 (prerelease) (Debian 4.1.1-20)) #1 SMP Sun Dec 10 20:17:39
UTC 2006
BIOS-provided physical RAM map:
BIOS-e820:  - 0009fc00 (usable)
BIOS-e820: 0009fc00 - 000a (reserved)
BIOS-e820: 000f - 0010 (reserved)
BIOS-e820: 0010 - 1fff (usable)
BIOS-e820: 1fff - 1fff8000 (ACPI data)
BIOS-e820: 1fff8000 - 2000 (ACPI NVS)
BIOS-e820: fec0 - fec01000 (reserved)
BIOS-e820: fee0 - fee01000 (reserved)
BIOS-e820: fff8 - 0001 (reserved)
0MB HIGHMEM available.
511MB LOWMEM available.
found SMP MP-table at 000fb930
On node 0 totalpages: 131056
 DMA zone: 4096 pages, LIFO batch:0
 Normal zone: 126960 pages, LIFO batch:31
DMI 2.3 present.
ACPI: RSDP (v000 AMI   ) @ 0x000fa940
ACPI: RSDT (v001 AMIINT VIA_K7   0x0010 MSFT 0x0097) @ 0x1fff
ACPI: FADT (v001 AMIINT VIA_K7   0x0011 MSFT 0x0097) @ 0x1fff0030
ACPI: MADT (v001 AMIINT VIA_K7   0x0009 MSFT 0x0097) @ 0x1fff00c0
ACPI: DSDT (v001VIA   VIA_K7 0x1000 MSFT 0x010d) @ 0x
ACPI: PM-Timer IO Port: 0x808
ACPI: Local APIC address 0xfee0
ACPI: LAPIC (acpi_id[0x01] lapic_id[0x00] enabled)
Processor #0 6:8 APIC version 16
ACPI: IOAPIC (id[0x02] address[0xfec0] gsi_base[0])
IOAPIC[0]: apic_id 2, version 3, address 0xfec0, GSI 0-23
ACPI: INT_SRC_OVR (bus 0 bus_irq 0 global_irq 2 dfl dfl)
ACPI: INT_SRC_OVR (bus 0 bus_irq 9 global_irq 9 low level)
ACPI: IRQ0 used by override.
ACPI: IRQ2 used by override.
ACPI: IRQ9 used by override.
Enabling APIC mode:  Flat.  Using 1 I/O APICs
Using ACPI (MADT) for SMP configuration information
Allocating PCI resources starting at 3000 (gap: 2000:dec0)
Detected 1685.280 MHz processor.
Built 1 zonelists.  Total pages: 131056
Kernel command line: root=/dev/hda6 ro
mapped APIC to d000 (fee0)
mapped IOAPIC to c000 (fec0)
Enabling fast FPU save and restore... done.
Enabling unmasked SIMD FPU exception support... done.
Initializing CPU#0
PID hash table entries: 2048 (order: 11, 8192 bytes)
Console: colour VGA+ 80x25
Dentry cache hash table entries: 65536 (order: 6, 262144 bytes)
Inode-cache hash table entries: 32768 (order: 5, 131072 bytes)
Memory: 512028k/524224k available (1556k kernel code, 11588k reserved, 582k
data, 196k init, 0k highmem)
Checking if this processor honours the WP bit even in supervisor mode... Ok.
Calibrating delay using timer specific routine.. 3373.36 BogoMIPS
(lpj=6746732)
Security Framework v1.0.0 initialized
SELinux:  Disabled at boot.
Capability LSM initialized
Mount-cache hash table entries: 512
CPU: After generic identify, caps: 0383fbff c1cbfbff  
  
CPU: After vendor identify, caps: 0383fbff c1cbfbff  
  
CPU: L1 I Cache: 64K (64 bytes/line), D cache 64K (64 bytes/line)
CPU: L2 Cache: 256K (64 bytes/line)
CPU: After all inits, caps: 0383fbff c1cbfbff  0420 
 
Intel machine check architecture supported.
Intel machine check reporting enabled on CPU#0.
Compat vDSO mapped to e000.
Checking 'hlt' instruction... OK.
SMP alternatives: switching to UP code
Freeing SMP alternatives: 16k freed
ACPI: Core revision 20060707
CPU0: AMD Sempron(tm) 2400+ stepping 01
Total of 1 processors activated (3373.36 BogoMIPS).
ENABLING IO-APIC IRQs
..TIMER: vector=0x31 apic1=0 pin1=2 apic2=-1 pin2=-1
Brought up 1 CPUs
migration_cost=0
checking if image is initramfs... it is
Freeing initrd memory: 4391k freed
NET: Registered protocol family 16
ACPI: bus type pci registered
PCI: PCI BIOS revision 2.10 entry at 0xfdaf1, last bus=1
PCI: Using configuration type 1
Setting up standard PCI resources
ACPI: Interpreter enabled
ACPI: Using IOAPIC for interrupt routing
ACPI: PCI Root Bridge [PCI0] (:00)
PCI: Probing PCI hardware (bus 00)
PCI quirk: region 0800-087f claimed by vt8235 PM
PCI quirk: region 0400-040f claimed by vt8235 SMB
Boot video device is :01:00.0
ACPI: PCI Interrupt Routing Table [\_SB_.PCI0._PRT]
ACPI: Power Resource [URP1] (off)
ACPI: Power Resource [URP2] (off)
ACPI: Power Resource [FDDP] (off)
ACPI: Power Resource [LPTP] (off)
ACPI: PCI Interrupt Link [LNKA] (IRQs 3 4 5 6 7 10 *11 12 14 15)
ACPI: PCI Interrupt Link [LNKB] (IRQs *3 4 5 6 7 10 11 12 14 15)
ACPI: PCI Interrupt Link [LNKC] (IRQs 3 4 *5 6 7 10 11 12 14 15)
ACPI: PCI Interrupt Link [LNKD] (IRQs 3 4 5 6 7 *10 11 12 14 15)
Linux Plug and Play Support v0.97 (c) Adam Belay
pnp: PnP ACPI init
pnp: 

Re: drivers in linux

[Kevin Mark]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On Thu, Jan 11, 2007 at 11:43:22PM +, Andrew Critchlow wrote:
> Can anyone please explain to me how drivers work in linux/debian?
> I am a newbie and have come over from microsoft. So my knowledge is of drivers
> and device manager and stuff from windows.
>  
>  
> Is there such a device manager in linux/debian?
> And if I was to install a network card for example how could I check to see if
> it was installed correctly (without trying it), how would I install drivers 
> for
> it etc?
>  
Hi Andrew,

hardware->kernel modules->kernel->software

When hardware is detected, there is some attempt by certain programs to
'load kernel modules' to enable the kernel to access the hardware. So if
a device is detected, you or some other program needs to load the kernel
modules for it. In most cases, it will happen 'automagically' (without
user intervention). If not, then ask here.

Kerneles can have built-in modules and loaded modules. The built-in ones
can be see by examining the /boot/config-$(uname -r) (in my case
config-2.6.18-3-686) with 'grep "=y" /boot/config-2.6.18-3-686'.
The ones that have been loaded can be seen by 'lsmod'. You can see all the
choices by doing 'grep "=m" /boot/config-2.6.18.3-686'. To load modules,
you type 'modprobe $MODULE'. If you want to load the pc speaker beep
module (/lib/modules/2.6.18-3-686/kernel/drivers/input/misc/pcspkr.ko),
you'd type 'modprobe pcspkr' (note the removal of '.ko').

Once you have the modules loaded for your hardware, you can check its
status by using the appropriate tool. In the case of network cards:
'ifconfig' (network InterFace CONFIGuration)

some tools to see what hardware are seen (but not necessarity avaiable
to the kernel) are 'lspci', 'lsusb' and dmesg.
cheers,
Kev
- -- 
|  .''`.  == Debian GNU/Linux == |   my web site:   |
| : :' :  The  Universal |   'under construction'   |
| `. `'  Operating System| go to counter.li.org and |
|   `-http://www.debian.org/ |be counted! #238656   |
|   my keysever: subkeys.pgp.net | my NPO: cfsg.org |
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQFFptbAv8UcC1qRZVMRAup/AJ0dwjn+B+EIUL5rS/0jE8bWfjF5vgCgjqeG
rfEM1qxpfAWJcFz/tjvz5Dk=
=f9JJ
-END PGP SIGNATURE-


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: Root privilege (SOLVED)

[cga2000]

On Thu, Jan 11, 2007 at 04:06:01PM EST, Andrei Popescu wrote:
> On Thu, 11 Jan 2007 14:01:55 -0500
> cga2000 <[EMAIL PROTECTED]> wrote:
> 
> > Well .. the malware could be the installer itself, no..?  It _is_
> > software after all.  If I was up to no good that's exactly where I'd
> > stick my mal-code..  only runs once .. under root, usually ..  does
> > its stuff .. removes itself.. and pop goes the weasel ..
> > 
> > Why should install programs run with the "extreme" privileges I
> > mentioned earlier when it is totally unnecessary in the first place?
> 
> Installers on linux are the exception not the rule.

Yes, but the "installing" function in a broad sense is at the root (pun
intended) of practically all vulnerabilities .. Even if you're
eavesdropping on transient data, you still need to install you sniffer
somewhere.

> > Besides, isn't this practice of switching to root whenever you
> > install a program in clear violation of the first -- 2nd, 3rd .. ?
> > principle of computer security .. ?? -- ie. users of a given system
> > should not be granted more privileges than necessary to perform the
> > tasks that fall within the scope of their position.  
> >
> > No reason I can think of why Joe Consultant should have read/write
> > access to the company's payroll files or other confidential data when
> > all he needs is permission to upgrade a couple of binaries in
> > usr/bin.  
> 
> But that's exactly it. Upgrading those binaries is a potential security
> problem ..

So is mopping up the floors in a timely manner..  Doesn't mean you want
the janitor to have the keys to the corporate safe.

> .. and it should be delegated only to responsible persons.

hence accountability -- sudo appears do that .. but where's the
granularity..?

> > I'm not really convinced.  I'm no expert, but sudo does sound a bit
> > like the "dancing dog at the circus" to me ..  For one thing, KISS is
> > another fundamental principle where system security is concerned and
> > in this respect, sudo does not seem to go in the right direction.
> 
> AFAICT sudo is actually plugging some of the holes mentioned in that
> handbook. It has logging and you can delegate specific tasks or even
> single commands to specific users or groups.

sudo obviously has merits, especially in a multi-admin context.  But
as you suggest above .. it ends up feeling more like a collection of
band-aids than corrective surgery.   

Thanks for your comments.

cga


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: tty migration

[Nelson Castillo]

Note: I'm not trying to migrate a process from one machine to another,
just the program's stdin, stdout, stderr from a VC to a ssh.


Perhaps you should use GNU Screen instead. It will change your life :P

This link will get you started:

 http://www.kuro5hin.org/story/2004/3/9/16838/14935

I use this .screenrc I found somewhere on the Internet.

 http://svn.arhuaco.org/svn/src/config-scripts/dot-screenrc

Regards.

--
http://arhuaco.org
http://emQbit.com


--
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

RE: IP Address networking - best way?

[Michael Bellears]

> Ok this setup in the /etc/network/interfaces file is working great.
> One problem however is if I restart the machine the eth0:0 
> doesn't load at runtime and i have to manually run ifup 
> eth0:0 before the interface loads.
> 
> Is there any way to ensure that the eth0:0 loads at boot time?

Yes - Add:

auto eth0:1

Under #Alias adress #1

For subsequent subints, repeat  :)

Re: Root privilege (SOLVED)

[Douglas Tutty]

On Thu, Jan 11, 2007 at 03:15:51PM -0500, cga2000 wrote:
 > 
> > That's one of the things I like about Linux. It encourages good
> > security practices by not making it too difficult to do privileged
> > tasks from within a user account.
> 
> yes .. but what I'm really not too comfortable with is mostly the
> non-granularity of privileges ..  I'll have to play with groups a bit
> and see if this might provide better solutions.  Also do some googling
> and look for those who went down that road before me .. see if they came
> up with useful conclusions.
> 

What sorts of things do you find you need root for?  I use root (e.g.
su - ) for these things only:

install packages with aptitude:
aptitude has the option of being run by a user then
prompt for the root password when needed but then the
user's extended package attributes are stored separatly
than if root (or another user) runs it.  Until that
problem is solved, I'll stick with running it as root.

Edit config files:

after both, run samhain -t update

run my backup script since I end up tar.bz2ing stuff that I as a
regular user can't read.

Do anything with disks and partitions (check smart drive status,
alter the LVM setup).

Everything else I do as myself.  I wouldn't want anyone other than root
doing any of that.

Doug.

 


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

tty migration

[Douglas Tutty]

Is there a way to reassign a running process from one tty to another?

E.g. I start a job on the computer in the basement.  Now I'm finished
being down there and want to move upstairs.  From upstairs I can ssh to
the computer in the basement.  I would like to move that running job to
the shell running from ssh from upstairs so I can interact from
upstairs.  All without exiting the job downstairs and restarting from
upstairs.

Note: I'm not trying to migrate a process from one machine to another,
just the program's stdin, stdout, stderr from a VC to a ssh.

Thanks,

Doug.


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: Root privilege (SOLVED)

[Douglas Tutty]

On Thu, Jan 11, 2007 at 11:41:45AM -0800, Paul Johnson wrote:
> Douglas Tutty wrote:
> > On Wed, Jan 10, 2007 at 11:25:51PM -0500, Roberto C. Sanchez wrote:
> >> On Wed, Jan 10, 2007 at 11:00:48PM -0500, Douglas Tutty wrote:
> >> > 
> >> > I can buy that.  Hard to watch a DVD or use a full-featured
> >> > web-browser, or read a pdf with diagrams without X.
> >> > 
> >> Except that watching a DVD with 'mplayer -vo aa dvd://1' is quite the
> >> console-based experience.  Also, they don't make web browser much more
> >> full featured that lynx.  I'll grant you that diagrams in a PDF are a
> >> bit tougher, though :-)
> >> 
> > I haven't looked at mplayer.  Do you mean that I can watch a DVD on a
> > serial console?
> 
> Yes, but don't expect to get any sound over a serial console.  I suggest
> watching it in an xterm on the same machine as the DVD player, make the
> font size really small and the window area really large to get acceptable
> resolution.

If I'm going to run X to get an xterm then I'll just use VLC.

Doug.


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: [OT/FLAME] Horrible GNOME File Picker (Was: Open (helper application chooser) for iceweasel/icedove is too simple)

[Erik Steffl]

Sven Arvidsson wrote:

On Wed, 2007-01-10 at 00:27 -0800, Erik Steffl wrote:
   it takes few minutes to open /usr/bin here (almost no load on 
machine), next time (I assume cache helps a lot) it takes 10-20 seconds.


   system:
 debian unstable
 icedove 1.5.0.9.dfsg1-1
 pentium 2.4 GHz
 1GB RAM

   do you think I should file a bug? against what? where?


I found a bug dealing directly with opening /usr/bin,
http://bugzilla.gnome.org/show_bug.cgi?id=322314

There is also a few links to performance related bugs here,
http://live.gnome.org/GtkFileChooser


  yeah, this one in particular seems relevant:

http://bugzilla.gnome.org/show_bug.cgi?id=310642

  However they all seem to think that it's all because the directory is 
read (to be able to autocomplete etc.) which is not entirely true cause 
bash autocompletes as well yet I cannot seem to be able to make it stall 
on directories with few thousand files (local disk).


  Seems like the problem is getting mime type (as mentioned here 
before) or something of that nature...


erik


--
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: drivers in linux

[Tyler MacDonald]

Andrew,
This works way, way, way differently in linux.

If you type "dmesg", after a clean boot, you'll get a report
of every driver that started up.

If you type "ifconfig -a", you can get a list of all configured
network cards.

If you type "lsmod", you'll get a list of all loaded kernel drivers.

Most hardware will be auto-detected, and the debian linux kernel
comes with just about every hardware driver available, so on most systems,
you shouldn't need to "manage" your devices in that way. Most third-party
linux drivers can be installed without too much trouble; it's *really* easy
if they've been debianized. But this is too big of a topic to cover in one
email / HOWTO; you really need to go through the process a few times with a
few different types of drivers to get the hang of it. If there's something
specific you need to install, I'd advise you start your learning there. :-)

Cheers,
Tyler


Andrew Critchlow <[EMAIL PROTECTED]> wrote:
> Can anyone please explain to me how drivers work in linux/debian?
> I am a newbie and have come over from microsoft. So my knowledge is of 
> drivers and device manager and stuff from windows.
>  
>  
> Is there such a device manager in linux/debian?
> And if I was to install a network card for example how could I check to see 
> if it was installed correctly (without trying it), how would I install 
> drivers for it etc?
>  
>  
>  
> thanks all
>  
>  
>  
>  
> Andrew.
-- 


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: web panel for FTP ???

[Roberto C. Sanchez]

On Thu, Jan 11, 2007 at 11:39:49PM +0100, Jarek wrote:
> Hello!
> 
> 
>   I'm looking for web application able to manage FTP accounts.
> I know webmin, but it is going to die and I was looking for somthing
> which will work in future. I don't need sofisticated server
> administration tools, but just someting to manage less than 100 FTP
> accounts with quota. Does anyone know somthing interesting ?
> 
Webmin is not going to die.

Regards,

-Roberto

-- 
Roberto C. Sanchez
http://people.connexer.com/~roberto
http://www.connexer.com


signature.asc
Description: Digital signature

Conexant PCI ADSL modem

[John Talbut]

Hi

I have managed to get and keep my conexant modem working with a Debian system.
Below are my notes about how.

John

Make sure we are talking about the same modem - this one:
http://www.themad-house.co.uk/Conexant/conexant-specification.html .

All packages apart from those below are installed from Debian, notably PPP over 
ATM.

Currently I am on kernel 2.6.18 and Debian testing, though I have managed to get
it to work with all kernels from 2.4 onwards.

Read this in conjunction with the instructions at 
http://patrick.spacesurfer.com/linux_conexant_pci_adsl.html .


Requirements:
Package: lsb-base (2.0-7) is required (for killall)
A symlink is required in /usr/src, e.g.: ln -s /usr/src/linux-source-2.6.18 
/usr/src/linux


Setting up Conexant modem

Patch the files in CnxADSL-6.1.2.007-PIM-2.6-1.1 using:
patch -p1 --verbose 
   if grep -q "\[pppoatm\]" /proc/ksyms; then
rmmod pppoatm

(i.e. my system has kallsyms), and:
< INITSCRIPTDIR=/etc/init.d
---

INITSCRIPTDIR=/etc/rc.d/init.d

(my system has /etc/init.d))

Made sure in file /CnxADSL-6.1.2.007-PIM-2.6-1.1-patched-1.5/cnxadslctl
That line is not: killproc /usr/sbin/pppd
but:  killall /usr/sbin/pppd

Then, cd /downloads/CnxADSL-6.1.2.007-PIM-2.6-1.1-patched-1.5
 make clean
 make
 make install

Module turns up in /lib/modules//extra
cd /lib/modules/2.6.18-/kernel

/sbin/depmod -a
modprobe -l  to check that it is there.
/etc/init.d/cnxadslctl start


--
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: My sarge box has an IRC bot

[Roberto C. Sanchez]

On Thu, Jan 11, 2007 at 01:38:09PM -0500, Greg Folkert wrote:
> 
> At one time I had an IRC-Bot on my machine. It was put in /dev/shm/ I
> fixed the access issue (it was writable by anyone)
> 
The fact that /dev/shm is world writable is not an access issue anymore
than /tmp being world writable.  In fact, it is commonly used for
inter-process communication amongst *unpriviledged* processes.  If you
take away its world writable attribute, your programs that depend on
POSIX shared memory will fail.

> then another one in /tmp/apache-chroot I used for uploads. I turned off
> execute for /tmp (made it its own Filesystem for that)
> 
Yup.  While that will thwart the most naïve of attacks, put a binary
(not a script) in there (something like ls works) and run this:

/lib/ld-linux.so.2 /tmp/ls

Of course, for scripts you can just use /usr/bin/path/to/interpreter.

> Turned out to be a Perl script in Twiki doing the exploit and running
> it.
> 
Ouch.  Something similar happened to a friend of mine through an upload
bug in simplephpblog.

Regards,

-Roberto

-- 
Roberto C. Sanchez
http://people.connexer.com/~roberto
http://www.connexer.com


signature.asc
Description: Digital signature

Re: drivers in linux

[jdaues]

Andrew Critchlow wrote:

Can anyone please explain to me how drivers work in linux/debian?
I am a newbie and have come over from microsoft. So my knowledge is of 
drivers and device manager and stuff from windows.
 
 
Is there such a device manager in linux/debian?
And if I was to install a network card for example how could I check to 
see if it was installed correctly (without trying it), how would I 
install drivers for it etc?
 


I've only started using Debian in the last week, so be warned.
But so far the closest thing I see to a device manager is a package 
called module-assistant:

http://packages.debian.org/unstable/devel/module-assistant


--
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: ntfs with encrypted files

[Roberto C. Sanchez]

On Thu, Jan 11, 2007 at 07:35:25PM +0100, BAGI Akos wrote:
> Hi List!
> 
> I have the following problem:
> - on xp the user encrypted 6 GB of data ( documents, photos etc.)
> - the data was copied tho an USB-HDD ( the user didn't mention that the 
> data is encrypted)
> - the xp was fully reinstalled
> - the restore doesnt't work because it's not possible to read the 
> encrypted files
> 
> We are out of ideas.
> Is there any possibility to restore the data?
> 
Check with Microsoft.  It's their operating system.

Regards,

-Roberto

-- 
Roberto C. Sanchez
http://people.connexer.com/~roberto
http://www.connexer.com


signature.asc
Description: Digital signature

drivers in linux

[Andrew Critchlow]

Can anyone please explain to me how drivers work in linux/debian?
I am a newbie and have come over from microsoft. So my knowledge is of drivers 
and device manager and stuff from windows.
 
 
Is there such a device manager in linux/debian?
And if I was to install a network card for example how could I check to see if 
it was installed correctly (without trying it), how would I install drivers for 
it etc?
 
 
 
thanks all
 
 
 
 
Andrew.

Re: web panel for FTP ???

[Danesh Daroui]

What FTP server are you using? If you are using ProFTP Follow this link:

http://www.debianhelp.co.uk/proftpweb.htm

There are some GUIs to manage FTP server.

D.


Jarek wrote:

Hello!


I'm looking for web application able to manage FTP accounts.
I know webmin, but it is going to die and I was looking for somthing
which will work in future. I don't need sofisticated server
administration tools, but just someting to manage less than 100 FTP
accounts with quota. Does anyone know somthing interesting ?

best regards
  



--
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: getting xorg working on an old box .....

[Michael Fothergill]

>> The error was
>
>> (EE) AIGLX screen 0 is not DRI compatible
>
>> and a few other lines followed
>> by
>> killed.
> Hi Michael,
> this error is not sufficient to stop an X server, it is just a bit of
> info that states that this card does not have this advanced feature
> (used for eyecandy). Show us more lines that have EE,WW,II or similar.
> Cheers,
> Kev
>
>> Hmmm  THis is worrying because this was the only error I saw on the
>> terminal.  MInd you maybe there was one of these other errors elsewhere
>> in the log file that didn't appear on the terminal
>
>> Would the log file be in e.g. /var/log/xorg.0.log or something like 
that?


Close.  /var/log/Xorg.0.log.  Do you use startx or xdm?


I use gdm as the login window. I have never actually seen the window of 
course because xorg hasn't worked correctly yet.  But gdm did try to fire 
up.
 However at the terminal prompt after interrupting a failed xorg session I 
typed in startx.


Was this dumb of me?

Regards,

Michael Fothergill






>> I could boot up the machine and go in the file and sniff around for 
more

>> errors.
>
>> I will see what I can find and come back at you guys later.
>
>> Thank you for this advice.



-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQFFpsT4S9HxQb37XmcRAuzkAJ971PFWsDcTtVBtMxncaJMJyMrNUQCdFCx1
cvYXgJ52aLRuzoZIqw5DCro=
=FENn
-END PGP SIGNATURE-


--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact 
[EMAIL PROTECTED]




_
Be the first to hear what's new at MSN - sign up to our free newsletters!  
http://www.msn.co.uk/newsletters



--
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: getting xorg working on an old box .....

[Ron Johnson]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 01/11/07 16:59, Michael Fothergill wrote:
> 
> 
> 
>> From: Kevin Mark <[EMAIL PROTECTED]>
>> To: debian-user@lists.debian.org
>> Subject: Re: getting xorg working on an old box .
>> Date: Thu, 11 Jan 2007 17:51:24 -0500
>>
> On Thu, Jan 11, 2007 at 10:40:07PM +, Michael Fothergill wrote:
>> Dear Debianists,
> 
>> The error was
> 
>> (EE) AIGLX screen 0 is not DRI compatible
> 
>> and a few other lines followed
>> by
>> killed.
> Hi Michael,
> this error is not sufficient to stop an X server, it is just a bit of
> info that states that this card does not have this advanced feature
> (used for eyecandy). Show us more lines that have EE,WW,II or similar.
> Cheers,
> Kev
> 
>> Hmmm  THis is worrying because this was the only error I saw on the
>> terminal.  MInd you maybe there was one of these other errors elsewhere
>> in the log file that didn't appear on the terminal
> 
>> Would the log file be in e.g. /var/log/xorg.0.log or something like that?

Close.  /var/log/Xorg.0.log.  Do you use startx or xdm?

>> I could boot up the machine and go in the file and sniff around for more
>> errors.
> 
>> I will see what I can find and come back at you guys later.
> 
>> Thank you for this advice.



-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQFFpsT4S9HxQb37XmcRAuzkAJ971PFWsDcTtVBtMxncaJMJyMrNUQCdFCx1
cvYXgJ52aLRuzoZIqw5DCro=
=FENn
-END PGP SIGNATURE-


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: getting xorg working on an old box .....

[Michael Fothergill]

From: Kevin Mark <[EMAIL PROTECTED]>
To: debian-user@lists.debian.org
Subject: Re: getting xorg working on an old box .
Date: Thu, 11 Jan 2007 17:51:24 -0500

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On Thu, Jan 11, 2007 at 10:40:07PM +, Michael Fothergill wrote:
> Dear Debianists,
>
> The error was
>
> (EE) AIGLX screen 0 is not DRI compatible
>
> and a few other lines followed
> by
> killed.
Hi Michael,
this error is not sufficient to stop an X server, it is just a bit of
info that states that this card does not have this advanced feature
(used for eyecandy). Show us more lines that have EE,WW,II or similar.
Cheers,
Kev


Hmmm  THis is worrying because this was the only error I saw on the 
terminal.  MInd you maybe there was one of these other errors elsewhere in 
the log file that didn't appear on the terminal


Would the log file be in e.g. /var/log/xorg.0.log or something like that?

I could boot up the machine and go in the file and sniff around for more 
errors.


I will see what I can find and come back at you guys later.

Thank you for this advice.

Regards

Michael Fothergill









- --
|  .''`.  == Debian GNU/Linux == |   my web site:   |
| : :' :  The  Universal |   'under construction'   |
| `. `'  Operating System| go to counter.li.org and |
|   `-http://www.debian.org/ |be counted! #238656   |
|   my keysever: subkeys.pgp.net | my NPO: cfsg.org |
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQFFpr9sv8UcC1qRZVMRAuGiAJ96H7S1ArCttPd3nu8GvkDzhXrUQgCfbqFX
ychQFJ56/pQ2AhARWrnkPpU=
=FlmZ
-END PGP SIGNATURE-


--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact 
[EMAIL PROTECTED]




_
MSN Hotmail is evolving – check out the new Windows Live Mail 
http://ideas.live.com



--
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: getting xorg working on an old box .....

[Kevin Mark]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On Thu, Jan 11, 2007 at 10:40:07PM +, Michael Fothergill wrote:
> Dear Debianists,
> 
> The error was
> 
> (EE) AIGLX screen 0 is not DRI compatible
> 
> and a few other lines followed
> by
> killed.
Hi Michael,
this error is not sufficient to stop an X server, it is just a bit of
info that states that this card does not have this advanced feature
(used for eyecandy). Show us more lines that have EE,WW,II or similar.
Cheers,
Kev
- -- 
|  .''`.  == Debian GNU/Linux == |   my web site:   |
| : :' :  The  Universal |   'under construction'   |
| `. `'  Operating System| go to counter.li.org and |
|   `-http://www.debian.org/ |be counted! #238656   |
|   my keysever: subkeys.pgp.net | my NPO: cfsg.org |
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQFFpr9sv8UcC1qRZVMRAuGiAJ96H7S1ArCttPd3nu8GvkDzhXrUQgCfbqFX
ychQFJ56/pQ2AhARWrnkPpU=
=FlmZ
-END PGP SIGNATURE-


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: smooth upgrades

[Andrei Popescu]

On Thu, 11 Jan 2007 17:24:40 -0500
Greg Folkert <[EMAIL PROTECTED]> wrote:

> On Thu, 2007-01-11 at 14:03 -0800, Andrew Sackville-West wrote:
> > On Thu, Jan 11, 2007 at 11:35:03PM +0200, Andrei Popescu wrote:
> > > > 
> > > > 
> > > > debian:/etc/apt# cat apt.conf
> > > > APT::Default-Release "etch";
> > > 
> > > It's not related to your problem, but 'etch' doesn't work as a
> > > Default-Release. You must use 'testing'. Also this options is
> > > needed only if you have sources for unstable as well, in order to
> > > prevent an upgrade to unstable.
> > > 
> > 
> > I know we all just argued about this, but I thought the consensus
> > was that in fact they do work, provided one has the sources.list
> > setup using "etch". Am I wrong?
> 
> No you are NOT wrong. See my other reply to Andrei.

I thought I demonstrated my point, though a bit late due to some mail
problems (that's why it's sent twice). The link is in the other mail.

Regards,
Andrei
-- 
If you can't explain it simply, you don't understand it well enough.
(Albert Einstein)


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: Mis/Dis information (was Re: smooth upgrades)

[Andrei Popescu]

On Thu, 11 Jan 2007 17:23:33 -0500
Greg Folkert <[EMAIL PROTECTED]> wrote:

> On Thu, 2007-01-11 at 23:35 +0200, Andrei Popescu wrote:
> > On Thu, 11 Jan 2007 12:21:16 -0800
> > tom arnall <[EMAIL PROTECTED]> wrote:
> > > 
> > > 
> > > i have my apt-get parameter files set up properly, i think, but
> > > when i do an apt-cache policy i don't like what i get, as follows:
> > > 
> > >   debian:/etc/apt# cat sources.list
> > > 
> > >   ## Testing - Debian (currently Etch)
> > >   deb http://ftp.us.debian.org/debian etch main contrib
> > > non-free deb-src http://ftp.us.debian.org/debian etch main contrib
> > > non-free
> > > 
> > > 
> > >   debian:/etc/apt# cat apt.conf
> > >   APT::Default-Release "etch";
> > 
> > It's not related to your problem, but 'etch' doesn't work as a
> > Default-Release. You must use 'testing'. Also this options is needed
> > only if you have sources for unstable as well, in order to prevent
> > an upgrade to unstable.
> 
> Yes it will he has the proper names in the sources.list. He *MAY* use
> "etch" as long as he uses the same name in his sources.

I know I responded a bit late so might have missed it:

http://lists.debian.org/debian-user/2007/01/msg00250.html

If I made a mistake I would be happy to know about it.

Regards,
Andrei
-- 
If you can't explain it simply, you don't understand it well enough.
(Albert Einstein)


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

getting xorg working on an old box .....

[Michael Fothergill]

Dear Debianists,

In a recent post I reported a problem with xorg working on an old Gateway 
2000 PC I use.  The problem was that I chose 24 depth and the ATI Mach 64 
graphics card could not support it.


I followed the advice and did dpkg-reconfigure xserver-xorg and eventually 
ended up selecting 4 depth.


Thanks for this recommendation.

I also put in the Belinea 10 20 10 monitor specs (I use this monitor) in the 
advanced menu choice for the monitor.


The rest of the choices were pretty much default ones.

The box then spent ages whirring away and writing to the swap area (low RAM 
situation).  Finally I got an error from xorg.


The error was

(EE) AIGLX screen 0 is not DRI compatible

and a few other lines followed
by
killed.


Suggestions and comments welcome.

Regards,

Michael Fothergill

_
Be the first to hear what's new at MSN - sign up to our free newsletters!  
http://www.msn.co.uk/newsletters



--
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

web panel for FTP ???

[Jarek]

Hello!


I'm looking for web application able to manage FTP accounts.
I know webmin, but it is going to die and I was looking for somthing
which will work in future. I don't need sofisticated server
administration tools, but just someting to manage less than 100 FTP
accounts with quota. Does anyone know somthing interesting ?

best regards
-- 
Jarek <[EMAIL PROTECTED]>


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: IP Address networking - best way?

[Justin Hartman]

On 1/4/07, Larry Irwin <[EMAIL PROTECTED]> wrote:

Forget my last email... too quick on the keyboard...
The "auto" declaration is for physical interfaces only...
It should have looked like this when you were done:

#Physical interface
auto eth0
#Base address
iface eth0 inet static
   address 70.87.206.50
   netmask 255.255.255.0
   gateway 70.87.206.49
#Alias adress #1
iface eth0:0 inet static
   address 70.87.206.51
   netmask 255.255.255.0
   gateway 70.87.206.49

[SNIP]

Ok this setup in the /etc/network/interfaces file is working great.
One problem however is if I restart the machine the eth0:0 doesn't
load at runtime and i have to manually run ifup eth0:0 before the
interface loads.

Is there any way to ensure that the eth0:0 loads at boot time?
--
Regards
Justin Hartman
PGP Key ID: 102CC123


--
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: smooth upgrades

[Greg Folkert]

On Thu, 2007-01-11 at 14:03 -0800, Andrew Sackville-West wrote:
> On Thu, Jan 11, 2007 at 11:35:03PM +0200, Andrei Popescu wrote:
> > > 
> > > 
> > >   debian:/etc/apt# cat apt.conf
> > >   APT::Default-Release "etch";
> > 
> > It's not related to your problem, but 'etch' doesn't work as a
> > Default-Release. You must use 'testing'. Also this options is needed
> > only if you have sources for unstable as well, in order to prevent an
> > upgrade to unstable.
> > 
> 
> I know we all just argued about this, but I thought the consensus was
> that in fact they do work, provided one has the sources.list setup
> using "etch". Am I wrong?

No you are NOT wrong. See my other reply to Andrei.
-- 
greg, [EMAIL PROTECTED]

The technology that is
Stronger, better, faster:  Linux


signature.asc
Description: This is a digitally signed message part

Mis/Dis information (was Re: smooth upgrades)

[Greg Folkert]

On Thu, 2007-01-11 at 23:35 +0200, Andrei Popescu wrote:
> On Thu, 11 Jan 2007 12:21:16 -0800
> tom arnall <[EMAIL PROTECTED]> wrote:
> > 
> > 
> > i have my apt-get parameter files set up properly, i think, but when
> > i do an apt-cache policy i don't like what i get, as follows:
> > 
> > debian:/etc/apt# cat sources.list
> > 
> > ## Testing - Debian (currently Etch)
> > deb http://ftp.us.debian.org/debian etch main contrib non-free
> > deb-src http://ftp.us.debian.org/debian etch main contrib
> > non-free
> > 
> > 
> > debian:/etc/apt# cat apt.conf
> > APT::Default-Release "etch";
> 
> It's not related to your problem, but 'etch' doesn't work as a
> Default-Release. You must use 'testing'. Also this options is needed
> only if you have sources for unstable as well, in order to prevent an
> upgrade to unstable.

Yes it will he has the proper names in the sources.list. He *MAY* use
"etch" as long as he uses the same name in his sources.

Trust me, yes you can. And yes it will work. The migration from testing
to stable is the whole reason for it to work.


Think of this: You auto-update with -y to catch security updates as
quickly as possible. You miss the date of the change. You use the
"testing" moniker.

Two weeks after etch turns into stable, you notice this, mainly from a
*TON* of things being broken when things are allowed into testing from
Experimental to Sid to "testing". You are screwed. Only thing to do is
to go forward to Sid to get working pieces.

Oops.

Now lets look at using the moniker "etch", auto-update with -y to catch
security updates as quickly as possible. The migration of etch to stable
goes off and two weeks later you notice the event happened in the news.
Panicking you quickly login hoping everything is fine. It is. You can
now change to "stable" as a Default Release and in the sources.list. In
other words at your leisure.

Does that explain it for you?

You have to use "etch" in both the apt.conf and sources.list for it to
work. I've ridden the upgrade path from "slink" this way. So, please do
not spread dis-information. Though it might be good info for stable only
"re-installers" versus the "rolling updaters" like many experienced
Debian users are.


-- 
greg, [EMAIL PROTECTED]

The technology that is
Stronger, better, faster:  Linux


signature.asc
Description: This is a digitally signed message part

Re: smooth upgrades

[Andrew Sackville-West]

On Thu, Jan 11, 2007 at 11:35:03PM +0200, Andrei Popescu wrote:
> > 
> > 
> > debian:/etc/apt# cat apt.conf
> > APT::Default-Release "etch";
> 
> It's not related to your problem, but 'etch' doesn't work as a
> Default-Release. You must use 'testing'. Also this options is needed
> only if you have sources for unstable as well, in order to prevent an
> upgrade to unstable.
> 

I know we all just argued about this, but I thought the consensus was
that in fact they do work, provided one has the sources.list setup
using "etch". Am I wrong?


A


signature.asc
Description: Digital signature

Re: two version numbers on a kernel package?

[Andrew Sackville-West]

On Thu, Jan 11, 2007 at 03:58:08PM -0500, Greg Folkert wrote:
> On Thu, 2007-01-11 at 15:26 -0500, [EMAIL PROTECTED] wrote:
> > On Wed, Jan 10, 2007 at 08:43:31PM -0800, Paul Johnson wrote:
> > > [EMAIL PROTECTED] wrote:
> > > 
> > > > What does it mean when there are two version numbers on a package.
> > > 
> > > The -number is the Debian patchlevel:  major.minor.patch-debpatch
> > > 
> > So in 
> >   linux-image-2.6.17-2-486_2.6.17-9_i386.deb
> 
> It is Linux Image 2.6.17-2-486 (that is the package name)
> 
> Version is 2.6.17-9  (basically the source version) for the i386
> architecture.
> 
> Hope that helps.
> 
> Here is the DPKG output(sorry for the LONG LINES (made as short as
> possible)
> 
> |/ Err?=(none)/Hold/Reinst-required/X=both-problems (Status,Err: 
> uppercase=bad)
> ||/ Name  VersionDescription
> +++-=-==-==
> ii  linux-image-2.6.18-1-k7   2.6.18-3   Linux 2.6.18 image on AMD K7
> ii  linux-image-2.6.18-2-k7   2.6.18-5   Linux 2.6.18 image on AMD K7
> ii  linux-image-2.6.18-3-k7   2.6.18-8   Linux 2.6.18 image on AMD K7
> 

--^^
this is the package name, which is incremented with each new package
release.




this is the kernel version number with major.minor.patch-debpatch. The
deb patches are not sequential, I assume, because they may not
necessarily release each patch level, or the package versions get
upgraded without a package version increase (why, I don't know. maybe
because the deb patch is not significant enough to call it a new
version of the package). 

So you might install linux-image-2.6.18-1-k7 and get a kernel version
2.6.18-1. Then later, deb will upgrade that package, but not
signifantly enough to change the package version number. So you do an
apt* upgrade and the package linux-image-2.6.18-1-k7 gets upgraded
(we've all seen this -- "you are installing a new version of the same
kernel, you must reboot") so that now you are running the same
package, but the kernel version associated with it is 2.6.18-2. At
some point the put out a whole new kernel package version --
linux-image-2.6.18-2-k7 with a new kernel version, say 2.6.18-3 and so
forth. 

this is all a guess, and the numbers are made up.

A


signature.asc
Description: Digital signature

recommended network/server layout for website, email, and backup hosting

[John Schmidt]

Hi,

I would like to host several low traffic web sites at my home with some older 
computers (400 Mhz P2) that I have laying around.  I would like to get some 
recommendations on effective ways of setting up my set of computers that 
would provide a web server, and email server and back up servers.

A big reason for doing this is to learn about more what all is involved and 
don't mind digging into details but would like to ensure that I reasonably 
aware of what I am getting into and potential pitfalls and security issues.

I have a static IP with an IPCOP firewall (with 3 NICs), and a internal LAN 
with several machines running debian behind the firewall.  Nothing is hanging 
off my DMZ right now.  I block everything coming into my firewall except ssh 
traffic.  

These web sites would be publically accessible with low traffic volumes.  In 
addition, I forsee  email hosting for each of the domains.  I would not have 
that many email accounts (not more than 10-20).  I figured that exim with the 
ability to do multiple hosting would suffice.  I would probably set up a 
couple of mailing lists as well using something like mailman.  I would like to 
set up my email server with imap, and pop cabilities for both the publically 
accessible domains and my own personal email access.  I would like to have a 
couple of machines set up in my LAN that would be able to provide two 
levelsof backups for my configurations, both internal LAN backups and DMZ 
level backups (web server and email server).

Initially, I was thinking that I would put two machines in my DMZ zone, one 
acting as a web server and one acting as an email server.  My two backup 
machines would be in my LAN along with my fileserver and another development 
machine.

Regarding server security (email and web server), I have the following 
questions?

1.  Because the machines are slow, would it be better to have the two machines 
do some sort of load balancing or would it be better to have a separation of 
responsibilities?

2.  Would it be better (security wise) to have my email server located in my 
LAN and not in my DMZ zone and just tunnel port 25 traffic through?  

3.  I know nothing about DNS, and figured that I would let someone like 
no-ip.com provide this service for me.  Or would it be fairly straightforward 
to do my own DNS hosting and combine two of my machines for doing primary and 
secondary DNS with other responsibilities, i.e. email/DNS on one machine, 
DNS/web server on another?  Is it possible to have my DNS machines inside my 
LAN, or is it necessary to have both primary and secondary DNS machines in my 
DMZ for better security.  

4.  For imap and pop stuff can the imap server be inside my LAN and access be 
tunneled through as needed.

5.  Should any server, i.e. mail, imap,pop, web be located in the DMZ zone so 
if they are hacked, my internal LAN machines are safer?

6.  Are there some suggested or best practices for having my machines in the 
DMZ access my back up servers?

Thanks,

John


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: partitioning tools for LVM

[Wesley J. Landaker]

On Thursday 11 January 2007 13:35, [EMAIL PROTECTED] wrote:
> Are there any partitioning tools that happily deal in LVM on RAID?
>
> parter, gparted, fdisk, cfdisk seem not to, as least fron what
> documentation I've managed to find for them.

The nature of your question suggests that you don't really understand how 
LVM works. Here is a quick primer and some links:

When using LVM, you first need Physical Volues (PVs). These are real 
partitions or drives. Some examples would be /dev/hda2 or /dev/sdb. To use 
a device as a physical volume, you typically just run pvcreate on it; in 
general, you also set it to an "LVM" type partition using fdisk and 
friends, but this isn't strictly necessary. Anyway, it will destroy any 
existing data on each partition or device you use for a PV. Setting up PVs 
is the ONLY time you'll ever use a program like fdisk or parted. For the 
rest, you use LVM tools.

After you've created PVs, you will not ever use them directly. Instead, you 
group them together into a Volume Group (VG). A VG has a symbolic name you 
give to a group of PVs. You create one with vgcreate, e.g. if I wanted to 
create a VG called "vgmain" using two PVs I'd created previously, I might 
run "vgcreate vgmain /dev/hda2 /dev/sdb". You can also add and remove PVs 
on-the-fly later.

*Finally*, you need to create Logic Volumes, which is the whole point of an 
LVM system (that's why it's *Logical Volume Management*). These are the 
actual volumes that you treat like you used to treat partitions, e.g. put 
file systems on them. You create LVs as part of a Volume Group that you've 
previously created, and give them symbolic names. You can add, remove, and 
resize them using lv* commands. For instance, if I wanted a 500M LV 
named "opt", I might run "lvcreate -n opt -L500M vgmain". Now I'd probably 
make a filesystem on it with "mkfs.ext3 /dev/vgmain/opt" and put a line in 
my fstab like "/dev/vgmain/opt /opt ext3 defaults 0 0". Later, I might add 
or remove more LVs, resize them, etc. I can do all of the online, although 
obviously the data itself on the LV (e.g. a filesystem) may need to be 
unmounted and/or resized first, although most filesystems can at least GROW 
online, while mounted.

Anyway, see  for a more in depth 
discussion. You can pretty much ignore anything that talks about "LVM1" 
unless you're working with a legacy system. There are also other systems 
like EVMS, but LVM2 is pretty much the mainstream.

-- 
Wesley J. Landaker <[EMAIL PROTECTED]> 
OpenPGP FP: 4135 2A3B 4726 ACC5 9094  0097 F0A9 8A4C 4CD6 E3D2


pgpg53uYZ7Zar.pgp
Description: PGP signature

Re: smooth upgrades

[Andrei Popescu]

On Thu, 11 Jan 2007 12:21:16 -0800
tom arnall <[EMAIL PROTECTED]> wrote:

> On Wednesday 10 January 2007 15:35, Andrew Sackville-West wrote:
> > On Wed, Jan 10, 2007 at 03:28:55PM -0800, tom arnall wrote:
> > > On Tuesday 09 January 2007 23:08, Andrew Sackville-West wrote:
> > > > On Tue, Jan 09, 2007 at 05:19:51PM -0800, tom arnall wrote:
> > > > > > > i replaced 'testing' with 'etch' today and haven't used
> > > > > > > apt-get since.
> > > > > > >
> > > > > > > how do i tell which version (testing/stable) i'm running?
> > > > > >
> > > > > > regardless, what is your version of libc6? that's probably
> > > > > > the best indicator at this point. one of my etch boxes is
> > > > > > running
> > > > > >
> > > > > > dpkg -l | grep libc6
> > > > > > ii  libc6
> > > > > > 2.3.6.ds1-8 GNU C Library: Shared
> > > > > > libraries ii  libc6-dev
> > > > > > 2.3.6.ds1-8 GNU C Library: Development
> > > > > > Libraries and Hea ii  libc6-i686
> > > > > > 2.3.6.ds1-8 GNU C Library: Shared
> > > > > > libraries [i686 optimi
> > > > > >
> > > > > > stable is currently, per packages.debian.org, 2.3.2
> > > > > >
> > > > > > so figure out which you're running and that will clue you
> > > > > > in to what to do.
> > > > >
> > > > > debian:/etc/apt# dpkg -l |grep libc6
> > > > > ii  libc6
> > > > > 2.3.6-7  GNU C Library: Shared libraries
> > > > > ii  libc6-dev
> > > > > 2.3.6-7  GNU C Library: Development
> > > > > Libraries and Header debian:/etc/apt#
> > > > >
> > > > > does this mean i'm running etch?
> > > >
> > > > sounds like you're somewhere between sarge and etch. Etch is
> > > > running 2.3.6.ds1-8 and sid is up to 2.3.6.ds1-10. But sarge is
> > > > at 2.3.2 so you're definitely mostly etch.
> > > >
> > > > when did you last upgrade?
> > > >
> > > > I've lost track ofthis thread. what were we discussing?
> > >
> > > thanks for getting back to me. the thread started by my asking if
> > > there was a way to upgrade without breaking my system. i had
> > > recently upgraded and messed up gaim and a few other things. the
> > > profile edit for gnome-terminal is still not right. from my
> > > original discussion there grew a general discussion of relating
> > > to the repositories.
> >
> > Okay, I would say at this point you should probably go ahead and
> > dist-upgrade yourself to get caught up. I don't know how long its
> > been since you upgraded, but since you're mostly to etch already,
> > its likely any breakage you currently have has already been fixed.
> > With etch in freeze now and under 100 release-critical bugs left, I
> > think you'll be in good shape.
> >
> > ymmv
> >
> > A
> 
> 
> i have my apt-get parameter files set up properly, i think, but when
> i do an apt-cache policy i don't like what i get, as follows:
> 
>   debian:/etc/apt# cat sources.list
> 
>   ## Testing - Debian (currently Etch)
>   deb http://ftp.us.debian.org/debian etch main contrib non-free
>   deb-src http://ftp.us.debian.org/debian etch main contrib
> non-free
> 
> 
>   debian:/etc/apt# cat apt.conf
>   APT::Default-Release "etch";

It's not related to your problem, but 'etch' doesn't work as a
Default-Release. You must use 'testing'. Also this options is needed
only if you have sources for unstable as well, in order to prevent an
upgrade to unstable.

Regards,
Andrei
-- 
If you can't explain it simply, you don't understand it well enough.
(Albert Einstein)


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

readonly NFS root: udev means can't use stock kernel? (long)

[Alexis Huxley]

I'm trying to set up a NFS read-only root filesystem; what's more I'm
trying to do it using absolutely standard kernels! This is important
because it is possible that I will be have to repeat much of this on
RHEL for application support reasons, which in turn will also mean
keeping stock kernels. But for all the obvious reasons I'm trying it
on Debian first.

The PXE/DHCP/TFTP parts are all fine, I cloned an existing machine into
a chrooted environment, stripped it down and now and I can boot the OS
and everything looks pretty good, but there are number of irritations,
any advice anyone can give is much appreciated!

('ga010133vm3' is my test NFS root client. '134.171.27.236' is my NFS
root server.)

root mounted three times!
-

ga010133vm3# df
Filesystem1K-blocks  Used Available Use% Mounted on
rootfs 14721376   8549152   5424384  62% /
udev  1024024 10216   1% /dev
134.171.27.236:/diska/nfsroot  14721376   8549152   5424384  62% /
134.171.27.236:/diska/nfsroot  14721376   8549152   5424384  62% 
/dev/.static/dev
tmpfs12848880128408   1% /tmp
ga010133vm3#

The first entry ('rootfs ...') I guess is the one added by the kernel
itself because of the parameters it sees on the command line, in turn
provided by the pxe.config file, but why isn't that root fs pivoted out 
(or whatever it is that happens these days) as it mounts the desired
root fs 134.171.27.236:/diska/nfsroot on / ?

I added 'noauto' to the entry for / in /etc/fstab but that makes
no difference at all, presumably because there is an explicit mount
request for / somewhere (initrd getting the root device off the kernel
command line maybe?) What is the "correct" fix? Presumably somehow
to tell the initrd to pivot it out a bit better?

The second entry is the correct one.

The third entry I presume is being put there as udev moved what it
sees as /dev out of place before it mounts its own fs there. Though
my non NFS-root Debian machines don't have this!

Because of the dependencies for the stock Debian kernels, I cannot
uninstall udev, but I think it would make no difference even if I
did because it looks like udev is in the initrd image, so even when
I specify:

ga010133vm3# grep static /etc/udev/udev.conf
no_static_dev="true"
ga010133vm3#

Byt it makes no difference: the nfsroot is still mounted on
/dev/.static/dev.  

What's going on? What is the "Debian way" to get root mounted
three times? Like I said I want to stick with stock kernels, and
I want to edit /etc/init.d files as little as possible in order
to keep the system easily updatable. 

What would be perfectly acceptable - if there is no cleaner 
alternative would be the addition of /etc/init.d/sort-it-all-out
to sort the mess out; but then I guess it's too late to go pivoting
the mounted root fs out of the way when other init.d scripts have
already started stuff on it (e.g. syslogd).

Incidentally, I tried the nfsbooted package, and that also resulted
in it being mounted three times.

/dev/null does not exist when sshd starts
-

ga010133vm3# sshd
ga010133vm3# pgrep sshd
ga010133vm3# grep daemon /var/log/syslog
Jan 11 18:22:44 ga010133vm3 sshd[1411]: fatal: daemon() failed: No such device
ga010133vm3#

A google of this error message showed that sshd died because /dev/null
did not exist, and a look around /etc/init.d turned up this in udev:

# When modifying this script, do not forget that between the time that
# the new /dev has been mounted and udevtrigger has been run there will be
# no /dev/null. This also means that you cannot use the "&" shell command.

which seems to suggest udev is not behaving very well in this
environment.

DHCP not passing hostname?
--

I'm using dhcp3 as the client and as the server. I see that if
'auto eth0' is in /etc/network/interfaces then there is the network
connection is lost (presumably NIC downed) prior to the call for
an IP address, and since / is NFS mounted at that point things go
quickly wrong.

But ifup also thinks that the NIC is not up yet; for purely cosmetic
reasons it would be nice if it understood it was up. One fix would be
to hack its state file, but nicer seemed to add 'script "/bin/true";'
to /etc/dhcp3/dhclient.conf so that the call to dhclient is a
no-op. This works fine.

Prior to doing that, I set the script to be a one liner:

#!/bin/sh
env >> /tmp/log

I did this in order to see if I could modify /etc/init.d/hostname.sh
to use information provided by the DHCP to set the hostname; using
/etc/hostname to set the hostname would mean that I could not let a
second client mount the same NFS root filesystem. But oddly I did
not see any hostname in the log file; I see a lot of other stuff:
IPs, gateways, DNS servers, but no hostname.

In the end I modified the hostname.sh to include:

HOSTNAME=$(/usr/bin/host $(ifconfig eth0 | 

Re: Adding a new HDD - how do I move /var/lib/mysql ?

[Andrei Popescu]

On Thu, 11 Jan 2007 14:33:45 -0500
[EMAIL PROTECTED] wrote:

> On Thu, Jan 11, 2007 at 06:14:44PM +0200, Andrei Popescu wrote:
> > On Thu, 11 Jan 2007 09:02:02 -0500
> > [EMAIL PROTECTED] wrote:
> > > 
> > > So the effect of ln is the same as cp, except that no copy is
> > > made.
> > 
> > Not really. If you make a link (soft or hard) you get one file/dir
> > with two names and/or locations. Any changes made through the link
> > will be in fact done to the file/dir itself. If you change one copy
> > of a file/dir the other copy will not change and the space occupied
> > is (almost) double.
> 
> Exactly -- no copy is made.  I made the analogy to provide a mnemonic 
> for those with difficulty remembering which of ln's arguments is
> which.

Thanks for the tip! I use ln very seldom and always have to man for the
right arguments (this is why I sometimes use mc instead).

Regards,
Andrei
-- 
If you can't explain it simply, you don't understand it well enough.
(Albert Einstein)


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: Root privilege (SOLVED)

[Andrei Popescu]

On Thu, 11 Jan 2007 15:15:51 -0500
cga2000 <[EMAIL PROTECTED]> wrote:

> I'll have to install synaptic and take a look.  I understand it
> prompts you for the root password as relevant, right?

Actually I have no idea. I use only aptitude in command-line and
sometimes interactive. AFAICT aptitude (interactive) uses su to
achieve that.

[snip]
> yes .. but what I'm really not too comfortable with is mostly the
> non-granularity of privileges ..  I'll have to play with groups a bit
> and see if this might provide better solutions.  Also do some googling
> and look for those who went down that road before me .. see if they
> came up with useful conclusions.

IMHO the granularity is necessary only in a multi-user environment with
different levels of admins. For a single user it's not so relevant.

Regards,
Andrei
-- 
If you can't explain it simply, you don't understand it well enough.
(Albert Einstein)


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: help!

[Greg Folkert]

On Sat, 2007-01-06 at 02:01 -0500, Roberto C. Sanchez wrote:
> On Sat, Jan 06, 2007 at 01:44:34AM -0500, J. Tyler Young wrote:
> > I want to get a copy of Debian, but I have a wierd computer, its a HP 
> > Pavillion Ze4430us Laptop with a mobile AMD Athlon XP2400+
> > 
> Nothing weird about it.
> 
> > Which platform will work for me!?!?!?!?!
> > 
> i386

But then install a -K7 kernel once the install is complete... :-P

-- 
greg, [EMAIL PROTECTED]

The technology that is
Stronger, better, faster:  Linux


signature.asc
Description: This is a digitally signed message part

Re: partitioning tools for LVM

[Greg Folkert]

On Thu, 2007-01-11 at 15:35 -0500, [EMAIL PROTECTED] wrote:
> Are there any partitioning tools that happily deal in LVM on RAID?
> 
> parter, gparted, fdisk, cfdisk seem not to, as least fron what 
> documentation I've managed to find for them.
> 
> Presumably something can, because I created my present setup in the 
> Debian and/or Ubuntu installers.
> 
> I found partman (actually a huge suite of partman* packages), but its 
> descriptions on the Debian packages site say it is there only for use by 
> the Debian installer, and should never be installed on a normal system.
> 
> (though my guess is that it's the one I used in the installers)
> 
> Should I boot the installer and abort after partitioning?  That seems 
> ugly.  Especially because it probably won't update my lvm.conf file.

LVM?? Partition?

Pre or Post making Physical Volumes ready for addition to Volume Groups?

What are you trying to do?

-- 
greg, [EMAIL PROTECTED]

The technology that is
Stronger, better, faster:  Linux


signature.asc
Description: This is a digitally signed message part

Re: Root privilege (SOLVED)

[Andrei Popescu]

On Thu, 11 Jan 2007 14:01:55 -0500
cga2000 <[EMAIL PROTECTED]> wrote:

> Well .. the malware could be the installer itself, no..?  It _is_
> software after all.  If I was up to no good that's exactly where I'd
> stick my mal-code..  only runs once .. under root, usually ..  does
> its stuff .. removes itself.. and pop goes the weasel ..
> 
> Why should install programs run with the "extreme" privileges I
> mentioned earlier when it is totally unnecessary in the first place?

Installers on linux are the exception not the rule.

> Besides, isn't this practice of switching to root whenever you
> install a program in clear violation of the first -- 2nd, 3rd .. ?
> principle of computer security .. ?? -- ie. users of a given system
> should not be granted more privileges than necessary to perform the
> tasks that fall within the scope of their position.  
>
> No reason I can think of why Joe Consultant should have read/write
> access to the company's payroll files or other confidential data when
> all he needs is permission to upgrade a couple of binaries in
> usr/bin.  

But that's exactly it. Upgrading those binaries is a potential security
problem and it should be delegated only to responsible persons.
 
> I'm not really convinced.  I'm no expert, but sudo does sound a bit
> like the "dancing dog at the circus" to me ..  For one thing, KISS is
> another fundamental principle where system security is concerned and
> in this respect, sudo does not seem to go in the right direction.

AFAICT sudo is actually plugging some of the holes mentioned in that
handbook. It has logging and you can delegate specific tasks or even
single commands to specific users or groups.

Regards,
Andrei
-- 
If you can't explain it simply, you don't understand it well enough.
(Albert Einstein)


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: Why and how to blacklist soundcard or networkcard modules?

[Kevin Mark]

On Thu, Jan 11, 2007 at 07:49:52AM -0800, Andrew Sackville-West wrote:
> On Thu, Jan 11, 2007 at 04:45:16PM +0800, Richard wrote:
> 
> If you want two sound cards then you need to look into 'writing udev
> rules' (google that phrase, its in the top couple hits) to learn how
> to customise the rules so that your cards are always named the same
> thing. and read the archives of this list (probably 2 months ago) for
> a couple threads on running multiple sound cards. 
> 
Hi Richard,
one of the issue with the introduction of udev is hardware is not
detected in a predictable way. This is true for network, sound, and
other cards. Sometimes people have 2 cards that use the SAME kernel
modules and have this problem also. So one approach is to add UDEV rules
that look for a distinct property and create a distinct device (card
1=eth0, card 2=eth1). If the udev rules are not working, you may try a
crude method like renaming or removing the modules. e.g.
if the modules is called 'ethernet.ko', name it 'ethernet.ko.bad'. This
will make the kernel not find it and thus will not load it. But this is
one solution. The udev rule is the best way.
Cheers,
Kev
-- 
|  .''`.  == Debian GNU/Linux == |   my web site:   |
| : :' :  The  Universal |   'under construction'   |
| `. `'  Operating System| go to counter.li.org and |
|   `-http://www.debian.org/ |be counted! #238656   |
|   my keysever: subkeys.pgp.net | my NPO: cfsg.org |


signature.asc
Description: Digital signature

Re: [OT/Sometimes Windows is better] Horrible GNOME File Picker (Was: Open (helper application chooser) for iceweasel/icedove is too simple)

[Ron Johnson]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 01/11/07 14:52, marc wrote:
> Wim De Smet said...
>> On 1/11/07, marc <[EMAIL PROTECTED]> wrote:
[snip]
>> I think what you should really do right now is scratch that
>> itch and build your own file manager.
> 
> LOL The cry of the true conservative. At least you didn't suggest
> I "go back to Windows, which you clearly love" or some such
> nonsense.
> 
> There are some excellent areas of innovation in Linux - and there
> always will be - but 'success' seems to taint apps with the kiss
> of death, or, at least, turns them to stone.

Or be a *real* geek and use multiple rxvt windows and your favorite
shell.


-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQFFpqYWS9HxQb37XmcRAkPiAJ9pQ3q+BjO4Lutmloo56G2nD8dyFgCgmOs2
Gxh+8M+ApR2ZbfMAO1WR4a8=
=ES0c
-END PGP SIGNATURE-


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: Eudora -> Evolution how?

[Ron Johnson]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 01/11/07 11:59, Greg Folkert wrote:
> On Wed, 2007-01-10 at 21:39 +, Andrew M.A. Cater wrote:
>> I've a colleague on the phone now: he wants to transfer Eudora mail 
>> archives from a Windows partition -> Evolution under Debian - Testing.
>>
>> This will make his wife and his world Windows free for the most part :)
>>
>> TIA
> 
> YWIA
> 
> Why not connect your your Eudora E-Mail Client to a temporary IMAP
> server on your Linux machine and drag all the messages up there.

Heck, make it a permanent IMAP server on your Linux machine.
fetchmail and postfix aren't that hard to configure.

When I bought my wife a computer (we had been sharing mine),
pointing her Tbird to my server with all her existing emails was
trivial.

> Then with the new Evo E-Mail client drag them all back down.
> 
> I just use IMAP and do server-side e-mail storage. I also do server-side
> sorting with procmail and mailfilter. Rather than tasking the client
> side so badly.
> 
> Just an FYI, I have 21K messages in a few folders and Evo has no
> problem. Plus I can connect from anywhere in the world and get my mail +
> Mail archives. And I have made an attachment with all of my contacts in
> it and sent myself an e-mail, plus my PGP Key. Making getting contacts
> and PGP key easy for myself.
> 
> I am also thinking about making an LDAP storage container for my
> contacts... making it even easier.

-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQFFpqVLS9HxQb37XmcRAsaiAKDl+YcDjIOJV/R9WbSQC6j9CMGmHwCgq++P
7pseaozSK8rzNGHvNy/SZQo=
=NkFg
-END PGP SIGNATURE-


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: two version numbers on a kernel package?

[Greg Folkert]

On Thu, 2007-01-11 at 15:26 -0500, [EMAIL PROTECTED] wrote:
> On Wed, Jan 10, 2007 at 08:43:31PM -0800, Paul Johnson wrote:
> > [EMAIL PROTECTED] wrote:
> > 
> > > What does it mean when there are two version numbers on a package.
> > 
> > The -number is the Debian patchlevel:  major.minor.patch-debpatch
> > 
> So in 
>   linux-image-2.6.17-2-486_2.6.17-9_i386.deb

It is Linux Image 2.6.17-2-486 (that is the package name)

Version is 2.6.17-9  (basically the source version) for the i386
architecture.

Hope that helps.

Here is the DPKG output(sorry for the LONG LINES (made as short as
possible)

[EMAIL PROTECTED]:~$ dpkg -l \
linux-image-2.6.18-1-k7 \
linux-image-2.6.18-2-k7 \
linux-image-2.6.18-3-k7
Desired=Unknown/Install/Remove/Purge/Hold
| Status=Not/Installed/Config-files/Unpacked/Failed-config/Half-installed
|/ Err?=(none)/Hold/Reinst-required/X=both-problems (Status,Err: uppercase=bad)
||/ Name  VersionDescription
+++-=-==-==
ii  linux-image-2.6.18-1-k7   2.6.18-3   Linux 2.6.18 image on AMD K7
ii  linux-image-2.6.18-2-k7   2.6.18-5   Linux 2.6.18 image on AMD K7
ii  linux-image-2.6.18-3-k7   2.6.18-8   Linux 2.6.18 image on AMD K7


So you can see what I am talking about, I just did a dpkg -l
-- 
greg, [EMAIL PROTECTED]

The technology that is
Stronger, better, faster:  Linux


signature.asc
Description: This is a digitally signed message part

Re: [OT/Sometimes Windows is better] Horrible GNOME File Picker (Was: Open (helper application chooser) for iceweasel/icedove is too simple)

[marc]

Wim De Smet said...
> On 1/11/07, marc <[EMAIL PROTECTED]> wrote:
> > But that's my point, really: why continue to clone TC, when there are so
> > many additional functions out there on other tools that leave TC in the
> > dust? If devs stick their heads in the sand and ignore developments then
> > things will atrophy. In fact, in the domain of file mangers, I think
> > they atrophied some time ago on Linux. And that's a shame.
> 
> I know that in the case of nautilus at least the devs have chosen to
> drop a lot of options in the name of usability.

In the same way that Bush uses the word 'freedom' ;-) Reducing 
functionality does not equate to improved usability. Chopping off my 
legs certainly makes me a more compact human being. Gouging out my eyes 
makes my brain less 'bloated'.

> And I personally don't
> think that's a bad thing. Your choice of words seems to indicate you
> do, but let's be clear that this is a personal preference. Personally
> I don't even _want_ my file manager to have all these fancy features.
> The devs of nautilus are not sticking their head in the sand, they've
> just got an entirely different philosophy of what a good file manager
> should do.

What I actually think is that Linux app devs are the most conservative 
on the planet. I think that once an app is mainstream - gains some 
recognition - that that conservatism is compounded and a fear of failure 
takes over and the atrophy begins. Worse, sometimes the app regress - I 
cite Gnome as the leading example.

> I think what you should really do right now is scratch that itch and
> build your own file manager.

LOL The cry of the true conservative. At least you didn't suggest I "go 
back to Windows, which you clearly love" or some such nonsense.

There are some excellent areas of innovation in Linux - and there always 
will be - but 'success' seems to taint apps with the kiss of death, or, 
at least, turns them to stone.

-- 
Cheers,
Marc


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

partitioning tools for LVM

[hendrik]

Are there any partitioning tools that happily deal in LVM on RAID?

parter, gparted, fdisk, cfdisk seem not to, as least fron what 
documentation I've managed to find for them.

Presumably something can, because I created my present setup in the 
Debian and/or Ubuntu installers.

I found partman (actually a huge suite of partman* packages), but its 
descriptions on the Debian packages site say it is there only for use by 
the Debian installer, and should never be installed on a normal system.

(though my guess is that it's the one I used in the installers)

Should I boot the installer and abort after partitioning?  That seems 
ugly.  Especially because it probably won't update my lvm.conf file.

-- hendrik



-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: two version numbers on a kernel package?

[hendrik]

On Wed, Jan 10, 2007 at 08:43:31PM -0800, Paul Johnson wrote:
> [EMAIL PROTECTED] wrote:
> 
> > What does it mean when there are two version numbers on a package.
> 
> The -number is the Debian patchlevel:  major.minor.patch-debpatch
> 
So in 
  linux-image-2.6.17-2-486_2.6.17-9_i386.deb
is the debpatch number
-2-486_2.6.17-9_i386
or
-2
or
-9_i386
or
-2-486
or
-9
?

-- hendrik


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: exim4

[Paul Johnson]

Andrew Critchlow wrote:

> Does exim4 not accept any client connections such as pop3/imap/web
> interface or do you have to install 3rd part applications for this
> functionality?

exim is a MUA, not an MDA.  You will need to install other programs[1] if
users need to check their mail remotely.

> I am busy learning exim4 for a competition where I may get asked common
> configuration tasks, does anyone know of the common configuration tasks?

Given that every site is fairly unique, how common are we talking?



[1] Programs are specific titles, applications are categories of software. 
Word processing is an application, not a program; OpenOffice Writer is a
program, not an application.


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: Root privilege (SOLVED)

[Andrew Sackville-West]

On Thu, Jan 11, 2007 at 11:41:45AM -0800, Paul Johnson wrote:
> Douglas Tutty wrote:
> 
> > On Wed, Jan 10, 2007 at 11:25:51PM -0500, Roberto C. Sanchez wrote:
> >> On Wed, Jan 10, 2007 at 11:00:48PM -0500, Douglas Tutty wrote:
> >> > 
> >> > Hi Roberto
> >> > 
> >> > I can buy that.  Hard to watch a DVD or use a full-featured
> >> > web-browser, or read a pdf with diagrams without X.
> >> > 
> >> Except that watching a DVD with 'mplayer -vo aa dvd://1' is quite the
> >> console-based experience.  Also, they don't make web browser much more
> >> full featured that lynx.  I'll grant you that diagrams in a PDF are a
> >> bit tougher, though :-)
> >> 
> > I haven't looked at mplayer.  Do you mean that I can watch a DVD on a
> > serial console?
> 
> Yes, but don't expect to get any sound over a serial console.  I suggest
> watching it in an xterm on the same machine as the DVD player, make the
> font size really small and the window area really large to get acceptable
> resolution.

just for the record, the opening scene to Raiders of the Lost Ark is
totally watchable this way. What a really cool feature this is...

A


signature.asc
Description: Digital signature

Re: smooth upgrades

[Andrew Sackville-West]

On Thu, Jan 11, 2007 at 12:21:16PM -0800, tom arnall wrote:
> On Wednesday 10 January 2007 15:35, Andrew Sackville-West wrote:
> >
> > Okay, I would say at this point you should probably go ahead and
> > dist-upgrade yourself to get caught up. I don't know how long its been
> > since you upgraded, but since you're mostly to etch already, its
> > likely any breakage you currently have has already been fixed. With
> > etch in freeze now and under 100 release-critical bugs left, I think
> > you'll be in good shape.
> >
> 
> 
> i have my apt-get parameter files set up properly, i think, but when i do an 
> apt-cache policy i don't like what i get, as follows:
> 
[snipped good locking apt.conf and sources.list

> 
>   debian:/etc/apt# apt-cache policy
>   Package files:
>100 /var/lib/dpkg/status
> release a=now
>   Pinned packages:
>   W: Couldn't stat source package list \http://ftp.us.debian.org 
> etch/main 
> Packages 
> (/var/lib/apt/lists/ftp.us.debian.org_debian_dists_etch_main_binary-i386_Packages)
>  - 
> stat (2 No such file or directory)
>   W: Couldn't stat source package list http://ftp.us.debian.org 
> etch/contrib 
> Packages 
> (/var/lib/apt/lists/ftp.us.debian.org_debian_dists_etch_contrib_binary-i386_Packages)
>  - 
> stat (2 No such file or directory)
>   W: Couldn't stat source package list http://ftp.us.debian.org 
> etch/non-free 
> Packages 
> (/var/lib/apt/lists/ftp.us.debian.org_debian_dists_etch_non-free_binary-i386_Packages)
>  - 
> stat (2 No such file or directory)
>   debian:/etc/apt#
> 
> 
> is it safe to proceed?

I get this same behavior if I move my /var/lib/apt/lists out of the
way... IOW, you need to update 

apt-get|aptitude update

should clean up the problem. you've changed your repositories without
updating so apt is looking for package lists that you haven't
downloaded yet.

A


signature.asc
Description: Digital signature

Re: I WILL ASSIST YOU GET YOUR FUNDS

[Paul Johnson]

Bryce wrote:

> Citing a website for which you yourself are the technical contact is
> hardly authoritative.  

I see we can read for comprehension:  Sources were cited, and anybody's
welcome to correct the inaccurate and cite source.

> Top-posting is plenty readable for these shorter threads. 

That wrongly assumes you can guarantee thread depth stopping shallow.

> Welcome to the 21st Century!

Outlook-style quoting is a shortlived, dying fad of the 1990s.

By the way, don't use Reply to All.  I get the list, I don't need two
copies, and it violates the list rules.  Use Reply to Mailing List instead,
all modern mail clients have this feature.  If your reader can't do that,
consider using a modern mail client or use
nntp://news.gmane.org/gmane.linux.debian.user instead.





-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: complaint from Xfce about address configuration

[Mathias Brodala]

Hello.

Easthope, 11.01.2007 20:56:
> I had a machine configured with a static address 
> and subsequently changed it to use dhcp.  Now 
> this message pops up when Xfce is started.

Guess you should have better asked that on the Xfce ML, but anyways:

> "Could not look up internet address for computer.
> This will prevent Xfce from operating correctly.
> It may be possible to correct the problem by adding
> computer to the file /etc/hosts on your system."
> 
> Firefox works but the message is bothersome.
> 
> Obviously the old static address can not be left 
> in /etc/hosts now that dhcp is used.  How should 
> this be fixed.

Maybe as follows?

hostname 127.0.0.1

-- 
debian/rules



signature.asc
Description: OpenPGP digital signature

Re: [OFF-TOPIC] Mailing List Netiquette

[Paul Johnson]

Celejar wrote:

> What is "going AOL!"?

The "Me too!" or similarly content-free, untrimmed-quote post. 
http://wiki.ursine.ca/AOL!



-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: Root privilege (SOLVED)

[Paul Johnson]

Please don't quote in backwards order; this is a high traffic list and it
makes things harder to follow if we have to jump through hoops to get
context.
http://wiki.ursine.ca/Best_Online_Quoting_Practices

Vladimir Kozlov wrote:

> Paul Johnson wrote:
>> Roberto C. Sanchez wrote:
>> 
>>> Of course, some things simply cannot be done without a GUI.  Or at least
>>> they cannot be done efficiently.
>> 
>> Like?
>
> E.g. when I tried to use KVpnc to import the OpenVPN config file
> donwloaded from my vpn server (IPCop), I've got the "Wrong password"
> message. Not so informative, isn't it?  After a long digging I've found 
> that there is a problem with file permissions - when I login as root, the 
> import goes without any problem, and then I am able to connect as regular 
> user.   

I still fail to see why someone would need to log in as root to do this. 
Why not log in as a normal user, type sudo -s or su - and run just the
commands you need run as root there instead of loading a whole
not-necessarily-well-audited GUI as root?
 
> I do understand there should be better way to do this, but logging as
> root just for import the config file is much easier as any other methods.

I'm not really sure that's faster or easier at all.  Much less secure and
much easier to shoot yourself in the foot is about the only obvious
difference.



-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: Root privilege (SOLVED)

[cga2000]

On Thu, Jan 11, 2007 at 03:06:33AM EST, Andrei Popescu wrote:
> On Wed, 10 Jan 2007 17:52:18 -0500
> cga2000 <[EMAIL PROTECTED]> wrote:

< snip part I - already replied >

Sorry Andrei .. had to run out for something and I must have
accidentally deleted the rest of your reply below ..

> > But I was talking "proof of concept" .. in the world of the average
> > to-the-gui-born user .. and thinking in terms of CD/DVD's  that you
> > just pop in .. say "yes" to the eula .. click the "next" button a few
> > time .. done.. 

> Because of that crowd we have all the problems with the bot-nets.

And yet it seems everybody agrees they want that crowd to jump ship..
world dominance .. you know..

> > Not likely _that_ crowd would like the idea of starting an xterm..
> > typing in a command to launch the installer .. etc.  etc.
> 
> That's why we have synaptic/kpackage/other GUI packet managers, and I'm
> not speaking strictly about Debian here.

I'll have to install synaptic and take a look.  I understand it prompts
you for the root password as relevant, right?

> > As such I find the X gui model incomplete and although having gui
> > installers assume you already have root authority prior to launching
> > them may be a lesser evil than the proliferation of password-prompting
> > code in the wrong places .. I'm rather convinced by Roberto's
> > argumentation .. I find that it's just one more good reason why I'd
> > rather stick to the non-gui interface.
> 
> Me too, but between two evils I will choose the lesser one. If we
> require all GUI packet managers to be *started* by root rather then
> requesting the root password (via su, gksu, ...) 

As a non-gui person I do find it hard to figure out a clean way of
launching gui apps in privileged mode.  Sounds like the desktop
environment should have this functionality .. via a dedicated menu
maybe.. ?   Or just a gui application launcher that emulates what su
does in line  mode?  At least this launcher would be unique on the
system and its code so much the source of attention that it could be
trusted.  Ah yes .. but then since it's gui stuff you would need a gtk
version.. a qt version .. etc. not to mention the couple of hundreds of
window managers that you can choose from .. Some of them such as wmaker
do have their own widget library.

> whenever they *really* need root access than all users will start to
> login as root/admin as they do on Windows. Heck, I do that on Windows
> as well because I don't want to logout/login every time I need to mess
> with a prog/driver/whatever.
> 
> That's one of the things I like about Linux. It encourages good
> security practices by not making it too difficult to do privileged
> tasks from within a user account.

yes .. but what I'm really not too comfortable with is mostly the
non-granularity of privileges ..  I'll have to play with groups a bit
and see if this might provide better solutions.  Also do some googling
and look for those who went down that road before me .. see if they came
up with useful conclusions.

Thanks.

cga


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: smooth upgrades

[tom arnall]

On Wednesday 10 January 2007 15:35, Andrew Sackville-West wrote:
> On Wed, Jan 10, 2007 at 03:28:55PM -0800, tom arnall wrote:
> > On Tuesday 09 January 2007 23:08, Andrew Sackville-West wrote:
> > > On Tue, Jan 09, 2007 at 05:19:51PM -0800, tom arnall wrote:
> > > > > > i replaced 'testing' with 'etch' today and haven't used apt-get
> > > > > > since.
> > > > > >
> > > > > > how do i tell which version (testing/stable) i'm running?
> > > > >
> > > > > regardless, what is your version of libc6? that's probably the best
> > > > > indicator at this point. one of my etch boxes is running
> > > > >
> > > > > dpkg -l | grep libc6
> > > > > ii  libc6 2.3.6.ds1-8 GNU C
> > > > > Library: Shared libraries
> > > > > ii  libc6-dev 2.3.6.ds1-8 GNU C
> > > > > Library: Development Libraries and Hea
> > > > > ii  libc6-i6862.3.6.ds1-8 GNU C
> > > > > Library: Shared libraries [i686 optimi
> > > > >
> > > > > stable is currently, per packages.debian.org, 2.3.2
> > > > >
> > > > > so figure out which you're running and that will clue you in to
> > > > > what to do.
> > > >
> > > > debian:/etc/apt# dpkg -l |grep libc6
> > > > ii  libc62.3.6-7  GNU
> > > > C Library: Shared libraries
> > > > ii  libc6-dev2.3.6-7  GNU
> > > > C Library: Development Libraries and Header
> > > > debian:/etc/apt#
> > > >
> > > > does this mean i'm running etch?
> > >
> > > sounds like you're somewhere between sarge and etch. Etch is running
> > > 2.3.6.ds1-8 and sid is up to 2.3.6.ds1-10. But sarge is at 2.3.2 so
> > > you're definitely mostly etch.
> > >
> > > when did you last upgrade?
> > >
> > > I've lost track ofthis thread. what were we discussing?
> >
> > thanks for getting back to me. the thread started by my asking if there
> > was a way to upgrade without breaking my system. i had recently upgraded
> > and messed up gaim and a few other things. the profile edit for
> > gnome-terminal is still not right. from my original discussion there grew
> > a general discussion of relating to the repositories.
>
> Okay, I would say at this point you should probably go ahead and
> dist-upgrade yourself to get caught up. I don't know how long its been
> since you upgraded, but since you're mostly to etch already, its
> likely any breakage you currently have has already been fixed. With
> etch in freeze now and under 100 release-critical bugs left, I think
> you'll be in good shape.
>
> ymmv
>
> A


i have my apt-get parameter files set up properly, i think, but when i do an 
apt-cache policy i don't like what i get, as follows:

debian:/etc/apt# cat sources.list

## Testing - Debian (currently Etch)
deb http://ftp.us.debian.org/debian etch main contrib non-free
deb-src http://ftp.us.debian.org/debian etch main contrib non-free


debian:/etc/apt# cat apt.conf
APT::Default-Release "etch";
APT::Cache-Limit 1800;

debian:/etc/apt# apt-cache policy
Package files:
 100 /var/lib/dpkg/status
  release a=now
Pinned packages:
W: Couldn't stat source package list \http://ftp.us.debian.org 
etch/main 
Packages 
(/var/lib/apt/lists/ftp.us.debian.org_debian_dists_etch_main_binary-i386_Packages)
 - 
stat (2 No such file or directory)
W: Couldn't stat source package list http://ftp.us.debian.org 
etch/contrib 
Packages 
(/var/lib/apt/lists/ftp.us.debian.org_debian_dists_etch_contrib_binary-i386_Packages)
 - 
stat (2 No such file or directory)
W: Couldn't stat source package list http://ftp.us.debian.org 
etch/non-free 
Packages 
(/var/lib/apt/lists/ftp.us.debian.org_debian_dists_etch_non-free_binary-i386_Packages)
 - 
stat (2 No such file or directory)
debian:/etc/apt#


is it safe to proceed?


tom



-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

complaint from Xfce about address configuration

[Easthope]

Hello Debian users,

I had a machine configured with a static address 
and subsequently changed it to use dhcp.  Now 
this message pops up when Xfce is started.

"Could not look up internet address for computer.
This will prevent Xfce from operating correctly.
It may be possible to correct the problem by adding
computer to the file /etc/hosts on your system."

Firefox works but the message is bothersome.

Obviously the old static address can not be left 
in /etc/hosts now that dhcp is used.  How should 
this be fixed.

Thanks,  Peter E.
peasthope at cablelan dot net