Re: Erreur d'un partitionnement assisté avec LVM chiffré
Bonjour, Le lundi 17 février 2014 à 12:00, LaNaar Dakoté a écrit : Une brève vérification avec blkid m'indique que la partition /dev/sda1 est reconnue comme « membre LVM2 », mais qui m'est pourtant indiquée au format ext2 par df. S'agit-il donc d'un problème ou tout ceci est-il tout à fait normal ? Ça m'a tout l'air d'être un problème… Est-ce que la partition est déclarée comme Linux (type 83) ou bien LVM (type 8E) ? (La commande « fdisk -l /dev/sda ») peut l'indiquer. Quelle est la liste des volumes physiques LVM (commande « pvdisplay ») ? Seb -- Lisez la FAQ de la liste avant de poser une question : http://wiki.debian.org/fr/FrenchLists Pour vous DESABONNER, envoyez un message avec comme objet unsubscribe vers debian-user-french-requ...@lists.debian.org En cas de soucis, contactez EN ANGLAIS listmas...@lists.debian.org Archive: http://lists.debian.org/20140224100327.gb10...@sebian.nob900.homeip.net
Re: Handy Linux à base Debian
*Bonjour*, Le 19/02/2014 22:20, andre_deb...@numericable.fr a écrit : http://handylinux.org/ HandyLinux, c'est l'accessibilité pour tous et la liberté pour chacun d'évoluer à son gré. ça semble super pour les retraités qui débutent en informatique. -- JC E -- Lisez la FAQ de la liste avant de poser une question : http://wiki.debian.org/fr/FrenchLists Pour vous DESABONNER, envoyez un message avec comme objet unsubscribe vers debian-user-french-requ...@lists.debian.org En cas de soucis, contactez EN ANGLAIS listmas...@lists.debian.org Archive: http://lists.debian.org/530b2da6.6010...@gmail.com
Re: Handy Linux à base Debian
Le 2014-02-24 06:31, jc.etiemble a écrit : ça semble super pour les retraités qui débutent en informatique. Je l'ai installé pour le fun et la localisation pour le Québec ne fonctionne pas, clavier heure... Et je n'ai fait qu'effleurer la surface. Il faut mettre la main dans la cambouis Donc vous repasserez pour l'affirmation gratuite. Roger, retraité et pas débutant en informatique -- Lisez la FAQ de la liste avant de poser une question : http://wiki.debian.org/fr/FrenchLists Pour vous DESABONNER, envoyez un message avec comme objet unsubscribe vers debian-user-french-requ...@lists.debian.org En cas de soucis, contactez EN ANGLAIS listmas...@lists.debian.org Archive: http://lists.debian.org/530b41d8.80...@gmail.com
Re: Erreur d'un partitionnement assisté avec LVM chiffré
Salut, Est-ce que la partition est déclarée comme Linux (type 83) ou bien LVM (type 8E) ? (La commande « fdisk -l /dev/sda ») peut l'indiquer. De type Linux. Quelle est la liste des volumes physiques LVM (commande « pvdisplay ») ? Incorrect metadata area header checksum on /dev/sda1 at offset 4096 --- Physical volume --- PV Name /dev/sda5 VG Name mon_VG PV Size 74,27 GiB / not usable 4,00 MiB Allocatable yes (but full) PE Size 4,00 MiB Total PE 19011 Free PE 0 Allocated PE 19011 PV UUID rcHUfL-Yp3x-vAJ7-HBp3-W9Ji-886p-WuiAFR --- Physical volume --- PV Name /dev/sdb1 VG Name mon_VG PV Size 74,51 GiB / not usable 1,91 MiB Allocatable yes (but full) PE Size 4,00 MiB Total PE 19073 Free PE 0 Allocated PE 19073 PV UUID ZVaWgK-4KHW-CTf6-eNe4-5Gp9-ZNRT-b2zvPY /dev/sda1 is a new physical volume of 74,50 GiB --- NEW Physical volume --- PV Name /dev/sda1 VG Name PV Size 74,50 GiB Allocatable NO PE Size 0 Total PE 0 Free PE 0 Allocated PE 0 PV UUID ZimNeH-bzGR-Xg7Y-cLlm-tUfe-jhsY-3Bfc72 Il me semble pourtant avoir vérifié ça avant d'envoyer mon mail précédent et que /dev/sda1 n'y figurait pas... signature.asc Description: OpenPGP digital signature
Re: Handy Linux à base Debian
*Bonjour*, Le 24/02/2014 13:58, Roger Bouchard a écrit : Donc vous repasserez pour l'affirmation gratuite. Installée complètement en 1 heure sur une machine ancienne à partir du CD live handylinuxlight-20140211-486.iso (AMD Atlon 1 Go de ram + carte graphique ATI rage pro partition / 5 Gb et home 2 Gb ) Tout fonctionne impeccablement sans modification aucune. -- JC E -- Lisez la FAQ de la liste avant de poser une question : http://wiki.debian.org/fr/FrenchLists Pour vous DESABONNER, envoyez un message avec comme objet unsubscribe vers debian-user-french-requ...@lists.debian.org En cas de soucis, contactez EN ANGLAIS listmas...@lists.debian.org Archive: http://lists.debian.org/530b60b6.3050...@gmail.com
Re: Erreur d'un partitionnement assisté avec LVM chiffré
Je suis abonné à la liste, merci de ne pas m'écrire directement. Le lundi 24 février 2014 à 14:32, LaNaar Dakoté a écrit : Quelle est la liste des volumes physiques LVM (commande « pvdisplay ») ? Incorrect metadata area header checksum on /dev/sda1 at offset 4096 --- Physical volume --- PV Name /dev/sda5 VG Name mon_VG PV Size 74,27 GiB / not usable 4,00 MiB Allocatable yes (but full) PE Size 4,00 MiB Total PE 19011 Free PE 0 Allocated PE 19011 PV UUID rcHUfL-Yp3x-vAJ7-HBp3-W9Ji-886p-WuiAFR --- Physical volume --- PV Name /dev/sdb1 VG Name mon_VG PV Size 74,51 GiB / not usable 1,91 MiB Allocatable yes (but full) PE Size 4,00 MiB Total PE 19073 Free PE 0 Allocated PE 19073 PV UUID ZVaWgK-4KHW-CTf6-eNe4-5Gp9-ZNRT-b2zvPY /dev/sda1 is a new physical volume of 74,50 GiB --- NEW Physical volume --- PV Name /dev/sda1 VG Name PV Size 74,50 GiB Allocatable NO PE Size 0 Total PE 0 Free PE 0 Allocated PE 0 PV UUID ZimNeH-bzGR-Xg7Y-cLlm-tUfe-jhsY-3Bfc72 Apparemment, LVM peut garder les volumes physique en cache pour éviter de les re-détecter systématiquement. Que donne la commande « pvscan » ? Le fichier /etc/lvm/lvm.conf a-t-il été modifié ? (Sur un système Wheezy, sans modification de ce fichier, j'ai la somme MD5 suivante : 6c7803e3803ffc7369b13b4ea62cef8c). Seb -- Lisez la FAQ de la liste avant de poser une question : http://wiki.debian.org/fr/FrenchLists Pour vous DESABONNER, envoyez un message avec comme objet unsubscribe vers debian-user-french-requ...@lists.debian.org En cas de soucis, contactez EN ANGLAIS listmas...@lists.debian.org Archive: http://lists.debian.org/20140224160302.gc10...@sebian.nob900.homeip.net
réglage speed duplex en giga carte ethernet realtek switch nortel networks 3510-24t
Bonjour, j'ai un problème sur deux PC sous debian Wheezy J'ai installé le paquet firmware-realtek. Par défaut la carte ethernet est en autoneg sur les deux PC. Le switch un nortel networks 3510 24t a les ports en auto aussi. Le lien se négocie en 10m/half il n'y a que le 100/full forcé qui fonctionne. Pas de lien si forcé en giga. si je met auto côté switch et forcé en giga sur le pc ça ne fontionne pas. dans l'autre sens non plus. merci pour votre aide. -- Cordialement, Cyrille Germain
Re: Erreur d'un partitionnement assisté avec LVM chiffré
Apparemment, LVM peut garder les volumes physique en cache pour éviter de les re-détecter systématiquement. Que donne la commande « pvscan » ? Incorrect metadata area header checksum on /dev/sda1 at offset 4096 PV /dev/sda5 VG mon_VGlvm2 [74,26 GiB / 0free] PV /dev/sdb1 VG mon_VGlvm2 [74,50 GiB / 0free] PV /dev/sda1 lvm2 [74,50 GiB] Total: 3 [223,27 GiB] / in use: 2 [148,77 GiB] / in no VG: 1 [74,50 GiB] Le fichier /etc/lvm/lvm.conf a-t-il été modifié ? Il le fut pour sauter la détection de /dev/sda1 au démarrage, mais j'ai supprimé cette modification peu de temps après. signature.asc Description: OpenPGP digital signature
USB Installation
Bonjour, J'ai installé Wheezy sur une clef USB. Tout fonctionne mais j'aimerais avoir des conseils sur la gestion des cartes graphiques. En effet, selon l'ordinateur sur lequel je vais booter ma clef, le système graphique sera différent. Quelle serait donc la meilleure méthode pour gérer cela ? Merci -- “One original thought is worth a thousand mindless quotings.” “Le vrai n'est pas plus sûr que le probable.” Diogene Laerce -- Lisez la FAQ de la liste avant de poser une question : http://wiki.debian.org/fr/FrenchLists Pour vous DESABONNER, envoyez un message avec comme objet unsubscribe vers debian-user-french-requ...@lists.debian.org En cas de soucis, contactez EN ANGLAIS listmas...@lists.debian.org Archive: http://lists.debian.org/530c3d12.6020...@yahoo.fr
Re: Transferencia FTP a menos de 1Mbit/S
El Sun, 23 Feb 2014 20:52:57 -0300, adriancito escribió: On 21/02/14 12:24, Camaleón wrote: (...) Es raro, desde un cliente Linux todo funciona perfecto, pero desde las PCs Windows se percibe lentitud... Bien, ahora prueba con otro cliente FTP (p. ej., FileZilla o WinSCP, ambos con versión portátil disponible) desde Windows. Q raro, pruebo con otra PC con Debian 7 y con el Filezilla como cliente de FTP y todo funciona perfecto. Eso ya nos lo habías dicho ;-) Tienes que hacer la prueba *desde el equipo con Windows* pero con FileZilla o cualquier otro cliente FTP. Se trata de acotar al máximo el origen del la lentitud. Saludos, -- Camaleón -- To UNSUBSCRIBE, email to debian-user-spanish-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/pan.2014.02.24.16.14...@gmail.com
Cual es a mejor combinacion Server de Correos
Hola lista tengo servidor de correos con la combinacion de PostFix , Dovecot, Sendmail , luego Horde. Resulta que ahora quieren agregar mas dominios en este mismo servidor e instale Postfix admin que por cierto funiona bien pero hay que configurar algo mas a postfix y dovecot para que lea la base de datos del mismo al crar cuentas y dominio. mi consulta es cuan es la mejor opcion para escoger para configurar y administrar las cuentas y dominios por cierto tambien la aplicacion web. 1. Phamm , Postfix , Horde , Spam mail ( esta estoy buscando me dicen que si funciona bien ) 2. Posfixadmin , Postfix , Dovecot, Rouncube, Spamassin ( seria bueno esto) 3. Zimbra ( es algo caro ) saludos Atte. William Romero C
Re: Cual es a mejor combinacion Server de Correos
Saludos: 1. Phamm , Postfix , Horde , Spam mail ( esta estoy buscando me dicen que si funciona bien ) 2. Posfixadmin , Postfix , Dovecot, Rouncube, Spamassin ( seria bueno esto) 3. Zimbra ( es algo caro ) Zimbra es caro si te decides por la ZCS Network Edition, pero tienes la version ZCS Open Source: http://www.zimbra.com/downloads/os-downloads.html Yo con esta version de zimbra tengo funcionando un servidor con casi 40 dominios y unas 400 cuentas de correo. La diferencia con la version de pago está en algunas automatizaciones (sobre todo de cara a hacer backups), pero tienes scripts o zimlets (addons para zimbra) que hacen casi de todo. Eso si... necesitas máquina para hacerlo correr de manera fluida. -- Alfonso alfo...@gnuino.net -- To UNSUBSCRIBE, email to debian-user-spanish-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/2075454215.682.1393267840010.javamail.r...@gnuino.net
RE: Cual es a mejor combinacion Server de Correos
Date: Mon, 24 Feb 2014 19:50:40 +0100 From: alfo...@gnuino.net To: wromer...@hotmail.com CC: debian-user-spanish@lists.debian.org Subject: Re: Cual es a mejor combinacion Server de Correos Saludos: 1. Phamm , Postfix , Horde , Spam mail ( esta estoy buscando me dicen que si funciona bien ) 2. Posfixadmin , Postfix , Dovecot, Rouncube, Spamassin ( seria bueno esto) 3. Zimbra ( es algo caro ) Zimbra es caro si te decides por la ZCS Network Edition, pero tienes la version ZCS Open Source: http://www.zimbra.com/downloads/os-downloads.html Yo con esta version de zimbra tengo funcionando un servidor con casi 40 dominios y unas 400 cuentas de correo. La diferencia con la version de pago está en algunas automatizaciones (sobre todo de cara a hacer backups), pero tienes scripts o zimlets (addons para zimbra) que hacen casi de todo. Eso si... necesitas máquina para hacerlo correr de manera fluida. -- Alfonso alfo...@gnuino.net -- Gracias Alfonso. estoy revisando el link . saludos -- To UNSUBSCRIBE, email to debian-user-spanish-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/bay177-w3754fb6bffacf4582d035db6...@phx.gbl
Re: Cual es a mejor combinacion Server de Correos
On 24 de febrero de 2014 19:27:31 CET, William Romero wromer...@hotmail.com wrote: Hola lista tengo servidor de correos con la combinacion de PostFix , Dovecot, Sendmail , luego Horde. ¿2 MTAs en el mismo server? Raro raro. Resulta que ahora quieren agregar mas dominios en este mismo servidor e instale Postfix admin que por cierto funiona bien pero hay que configurar algo mas a postfix y dovecot para que lea la base de datos del mismo al crar cuentas y dominio. mi consulta es cuan es la mejor opcion para escoger para configurar y administrar las cuentas y dominios por cierto tambien la aplicacion web. La mejor es la que tú prefieras. 1. Phamm , Postfix , Horde , Spam mail ( esta estoy buscando me dicen que si funciona bien ) 2. Posfixadmin , Postfix , Dovecot, Rouncube, Spamassin ( seria bueno esto) Yo uso más o menos ésto. Es una configuración manual [1] y error prone, pero funciona bien. 3. Zimbra ( es algo caro ) saludos Atte. William Romero C [1] http://enchufado.com/post.php?ID=361 Salut, jors -- To UNSUBSCRIBE, email to debian-user-spanish-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/5b5853d8-a214-4954-a5a7-01c5f01e7...@email.android.com
Re: Cual es a mejor combinacion Server de Correos
El 24/02/2014 03:27 p.m., William Romero escribió: Hola lista tengo servidor de correos con la combinacion de PostFix , Dovecot, Sendmail , luego Horde. Resulta que ahora quieren agregar mas dominios en este mismo servidor e instale Postfix admin que por cierto funiona bien pero hay que configurar algo mas a postfix y dovecot para que lea la base de datos del mismo al crar cuentas y dominio. mi consulta es cuan es la mejor opcion para escoger para configurar y administrar las cuentas y dominios por cierto tambien la aplicacion web. 1. Phamm , Postfix , Horde , Spam mail ( esta estoy buscando me dicen que si funciona bien ) 2. Posfixadmin , Postfix , Dovecot, Rouncube, Spamassin ( seria bueno esto) 3. Zimbra ( es algo caro ) saludos Atte. William Romero C Fijate que te parece Virtualmin (GPL) attachment: sisisisol.vcf
Pregunta sobre iptables en debian
Hola buenas, tengo una pregunta que alomejor es un poco tonta pero siempre la he tenido y ahí va... No entiendo cuál es la finalidad de usar iptables. Es decir, se usa para filtrar y abrir sólo lo que tú quieras o cerrar, pero si tengo sólo instalado un servidor web y un servicio ssh, qué más da si uso iptables para aceptar sólo conexiones a esos puertos 80/22 respectivamente y cierro todo lo demás, si aunque no ponga iptables también van a estar abierto y escuchando... ¿Para que no puedan explotar otros puertos abiertos de otros servicios? No sé alomejor estoy equivocado pero no le veo mucho sentido excepto cerrar todo y abrir solo lo que quieras... No sé si me explicado bien. Es decir, imaginaros que sólo tengo el servicio web activo, puerto 80, todo lo demás que tenga algún puerto corriendo los paro, qué diferencia habría de usar ahí iptables a no usarlo... Saludos. -- To UNSUBSCRIBE, email to debian-user-spanish-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/caj2aoa92ewh+vgtduaxjqutyfzsyw2gof+8csk33alpxrny...@mail.gmail.com
Re: Pregunta sobre iptables en debian
El 24/02/2014 06:44 p.m., Maykel Franco escribió: Hola buenas, tengo una pregunta que alomejor es un poco tonta pero siempre la he tenido y ahí va... No entiendo cuál es la finalidad de usar iptables. Es decir, se usa para filtrar y abrir sólo lo que tú quieras o cerrar, pero si tengo sólo instalado un servidor web y un servicio ssh, qué más da si uso iptables para aceptar sólo conexiones a esos puertos 80/22 respectivamente y cierro todo lo demás, si aunque no ponga iptables también van a estar abierto y escuchando... ¿Para que no puedan explotar otros puertos abiertos de otros servicios? No sé alomejor estoy equivocado pero no le veo mucho sentido excepto cerrar todo y abrir solo lo que quieras... No sé si me explicado bien. Es decir, imaginaros que sólo tengo el servicio web activo, puerto 80, todo lo demás que tenga algún puerto corriendo los paro, qué diferencia habría de usar ahí iptables a no usarlo... Saludos. Me parece que es util eso de cerrar todo por iptables y dejar solo los servicios que usás, creo que es menos vulnerable. attachment: sisisisol.vcf
Re: Pregunta sobre iptables en debian
El Mon, 24 Feb 2014 22:44:03 +0100 Maykel Franco maykeldeb...@gmail.com escribió: Hola buenas, tengo una pregunta que alomejor es un poco tonta pero siempre la he tenido y ahí va... No entiendo cuál es la finalidad de usar iptables. Es decir, se usa para filtrar y abrir sólo lo que tú quieras o cerrar, pero si tengo sólo instalado un servidor web y un servicio ssh, qué más da si uso iptables para aceptar sólo conexiones a esos puertos 80/22 respectivamente y cierro todo lo demás, si aunque no ponga iptables también van a estar abierto y escuchando... ¿Para que no puedan explotar otros puertos abiertos de otros servicios? No sé alomejor estoy equivocado pero no le veo mucho sentido excepto cerrar todo y abrir solo lo que quieras... No sé si me explicado bien. Es decir, imaginaros que sólo tengo el servicio web activo, puerto 80, todo lo demás que tenga algún puerto corriendo los paro, qué diferencia habría de usar ahí iptables a no usarlo... sabes lo que es iptables??? sabes para que sirve? Tenes una idea muy simple de los sistemas Sabes los que es un DoS Sabes lo que son conexiones armadas mal a proposito? o mas simple: vos a tu casa dejas entrar a cualquiera?? Iptables es algo complejo como para explicarlo en un mail Existe mucha documentacion al respecto y para los distintos usos que le podes dar lee un poco sobre firewalling, trata de entender para que se usa un filtro. Si tenes una aplicacion web no solo necesitas netfilter tambien necesitas un WAF Saludos. -- To UNSUBSCRIBE, email to debian-user-spanish-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/caj2aoa92ewh+vgtduaxjqutyfzsyw2gof+8csk33alpxrny...@mail.gmail.com -- Angel Claudio Alvarez an...@angel-alvarez.com.ar -- To UNSUBSCRIBE, email to debian-user-spanish-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20140224185943.c965249550d5235f7ea40...@angel-alvarez.com.ar
Re: Pregunta sobre iptables en debian
El 24 de febrero de 2014, 18:53, Ariel Martin Bellio sisisi...@yahoo.com.ar escribió: El 24/02/2014 06:44 p.m., Maykel Franco escribió: Hola buenas, tengo una pregunta que alomejor es un poco tonta pero siempre la he tenido y ahí va... No entiendo cuál es la finalidad de usar iptables. Es decir, se usa para filtrar y abrir sólo lo que tú quieras o cerrar, pero si tengo sólo instalado un servidor web y un servicio ssh, qué más da si uso iptables para aceptar sólo conexiones a esos puertos 80/22 respectivamente y cierro todo lo demás, si aunque no ponga iptables también van a estar abierto y escuchando... ¿Para que no puedan explotar otros puertos abiertos de otros servicios? No sé alomejor estoy equivocado pero no le veo mucho sentido excepto cerrar todo y abrir solo lo que quieras... No sé si me explicado bien. Es decir, imaginaros que sólo tengo el servicio web activo, puerto 80, todo lo demás que tenga algún puerto corriendo los paro, qué diferencia habría de usar ahí iptables a no usarlo... Saludos. Me parece que es util eso de cerrar todo por iptables y dejar solo los servicios que usás, creo que es menos vulnerable. espesemos de cero el iptables es un firewall simplemente por algunas características que tiene te permite hacer algunas cosas mas como redirección de puertos con herramientas como el fail2ban te permite bloquear dinamicamente peticiones fallidas o analizar paquetes incompletos y dropearlos pero al fin y al cabo no es mas que un firewall aqui viene el gran error de administración y seguridad no es para bloquear puerto abiertos los puertos no desesados es por que tenes corriendo una aplicacion que no debe o no es deseada por ende parala desisntalala o lo que sea y si es que esta escuchando en una interface que no deseas simplemente configura bien el programa que tenes escuchando en ese puerto consepto TODO PUEDE FALLAR si tenes un programa detras de un firewall y el firewall falla el programa queda expuesto -- MrIX Linux user number 412793. http://counter.li.org/ las grandes obras, las sueñan los santos locos, las realizan los luchadores natos, las aprovechan los felices cuerdo, y las critican los inútiles crónicos,
Re: Pregunta sobre iptables en debian
El 24/02/14 22:44, Maykel Franco escribió: Hola buenas, tengo una pregunta que alomejor es un poco tonta pero siempre la he tenido y ahí va... No entiendo cuál es la finalidad de usar iptables. Es decir, se usa para filtrar y abrir sólo lo que tú quieras o cerrar, pero si tengo sólo instalado un servidor web y un servicio ssh, qué más da si uso iptables para aceptar sólo conexiones a esos puertos 80/22 respectivamente y cierro todo lo demás, si aunque no ponga iptables también van a estar abierto y escuchando... ¿Para que no puedan explotar otros puertos abiertos de otros servicios? No sé alomejor estoy equivocado pero no le veo mucho sentido excepto cerrar todo y abrir solo lo que quieras... No sé si me explicado bien. Es decir, imaginaros que sólo tengo el servicio web activo, puerto 80, todo lo demás que tenga algún puerto corriendo los paro, qué diferencia habría de usar ahí iptables a no usarlo... Saludos. iptables es un firewall de red con el que gestionar las conexiones en capa 3 y 4 como más te guste o necesites. Incluso puedes comprobar el estado de las mismas para decidir que hacer con ellas o detectar paquetes mal formados que puedan dar indicios de un ataque. Como comentas, se utiliza para cortar tráfico no deseado y permitir el legítimo: ya sea abriendo puertos, permitiendo qué conexiones desde qué red, NATing, etc. Puedes tener todos los servicios que quieras escuchando en la máquina local, pero si tienes iptables dropeando todas las peticiones serán rechazadas. Por ejemplo, prueba en tu máquina con el server Web y SSH las siguientes reglas iptables -A INPUT -p tcp --dport 80 -j DROP iptables -A INPUT -p tcp --dport 22 -j DROP esto debería descartarte todas las conexiones entrantes al puerto de destino 80 y 22 de la máquina local aun teniendo la política por defecto en ACCEPT. Con el comando iptables -L -vn deberías poder ver los contadores incrementándose con las pruebas que hagas. La configuración de un firewall es muy particular porque varía desde las necesidades de la red hasta del administrador del mismo. Lo ideal a mi gusto y más en ambientes en producción, es denegar todo y permitir únicamente lo que sea necesario pero no es estrictamente necesario. Saludos! -- To UNSUBSCRIBE, email to debian-user-spanish-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/530bc2a5.5090...@gmail.com
Re: Cual es a mejor combinacion Server de Correos
On Mon, 24 Feb 2014 18:31:06 -0300 Ariel Martin Bellio sisisi...@yahoo.com.ar wrote: La nación de Brasil se vio obligada en crear un sistema de correo llamado Expresso el sistema de email desde Brasil. Este sistema es opensource. Por lo que se ve usa muchos paquetes interesantes. Mas info: http://blog.mamalibre.com.ar/post/expresso-el-sistema-de-email-desde-brasil -- Servicios:. http://mamalibre.com.ar/servicios.php MamaLibre, Casa en Lincoln, Ituzaingo 1085 CP6070, Buenos Aires, Argentina pgph_q0hKRkcU.pgp Description: PGP signature
[OT] Re: Cual es a mejor combinacion Server de Correos
El 24/02/2014 07:22 p.m., Fabián Bonetti escribió: On Mon, 24 Feb 2014 18:31:06 -0300 Ariel Martin Bellio sisisi...@yahoo.com.ar wrote: La nación de Brasil se vio obligada en crear un sistema de correo llamado Expresso el sistema de email desde Brasil. Este sistema es opensource. Por lo que se ve usa muchos paquetes interesantes. Mas info: http://blog.mamalibre.com.ar/post/expresso-el-sistema-de-email-desde-brasil De buena manera le digo Fabián que cuide la edición de los emails... lo siguiente al wrote: no lo escribí yo. Salut! attachment: sisisisol.vcf
Re: Pregunta sobre iptables en debian
El día 24 de febrero de 2014, 23:07, Vicios fernando.vic...@gmail.com escribió: El 24/02/14 22:44, Maykel Franco escribió: Hola buenas, tengo una pregunta que alomejor es un poco tonta pero siempre la he tenido y ahí va... No entiendo cuál es la finalidad de usar iptables. Es decir, se usa para filtrar y abrir sólo lo que tú quieras o cerrar, pero si tengo sólo instalado un servidor web y un servicio ssh, qué más da si uso iptables para aceptar sólo conexiones a esos puertos 80/22 respectivamente y cierro todo lo demás, si aunque no ponga iptables también van a estar abierto y escuchando... ¿Para que no puedan explotar otros puertos abiertos de otros servicios? No sé alomejor estoy equivocado pero no le veo mucho sentido excepto cerrar todo y abrir solo lo que quieras... No sé si me explicado bien. Es decir, imaginaros que sólo tengo el servicio web activo, puerto 80, todo lo demás que tenga algún puerto corriendo los paro, qué diferencia habría de usar ahí iptables a no usarlo... Saludos. iptables es un firewall de red con el que gestionar las conexiones en capa 3 y 4 como más te guste o necesites. Incluso puedes comprobar el estado de las mismas para decidir que hacer con ellas o detectar paquetes mal formados que puedan dar indicios de un ataque. Como comentas, se utiliza para cortar tráfico no deseado y permitir el legítimo: ya sea abriendo puertos, permitiendo qué conexiones desde qué red, NATing, etc. Puedes tener todos los servicios que quieras escuchando en la máquina local, pero si tienes iptables dropeando todas las peticiones serán rechazadas. Por ejemplo, prueba en tu máquina con el server Web y SSH las siguientes reglas iptables -A INPUT -p tcp --dport 80 -j DROP iptables -A INPUT -p tcp --dport 22 -j DROP esto debería descartarte todas las conexiones entrantes al puerto de destino 80 y 22 de la máquina local aun teniendo la política por defecto en ACCEPT. Con el comando iptables -L -vn deberías poder ver los contadores incrementándose con las pruebas que hagas. La configuración de un firewall es muy particular porque varía desde las necesidades de la red hasta del administrador del mismo. Lo ideal a mi gusto y más en ambientes en producción, es denegar todo y permitir únicamente lo que sea necesario pero no es estrictamente necesario. Saludos! -- To UNSUBSCRIBE, email to debian-user-spanish-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/530bc2a5.5090...@gmail.com Sé de lo que es capaz iptables y para que es. El forward, mangle, nat, redirect...Lo he usado para numerosas cosas, pero la duda no es que no sepa lo que es iptables, la duda es que creo que da lo mismo tener iptables permitiendo sólo el tráfico TCP y cerrar todo, va a ser vulnerable igual. Es decir, si cierras todo, servicio a servicio y solo dejas el web apache, iptables apagado, daría lo mismo que usar iptables, cerrar todo y sólo permitir el tráfico TCP al puerto 80. Sería igual de vulnerable en ese caso o me equivoco?? Todo esto sin contar con fail2ban, por supuesto. Gracias por las respuestas. Saludos. -- To UNSUBSCRIBE, email to debian-user-spanish-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/caj2aoa8updtb4jz5e5ffszx+am52zwswu5yraifupoyqwos...@mail.gmail.com
Fwd: Re: Pregunta sobre iptables en debian
-- Forwarded message -- De: Maykel Franco maykeldeb...@gmail.com Date de fermeture: 2014-02-24 18:24 réserve de droits: Re: Pregunta sobre iptables en debian Pour: debian-user-spanish debian-user-spanish@lists.debian.org Cc : El día 24 de febrero de 2014, 23:07, Vicios fernando.vic...@gmail.com escribió: El 24/02/14 22:44, Maykel Franco escribió: Hola buenas, tengo una pregunta que alomejor es un poco tonta pero siempre la he tenido y ahí va... No entiendo cuál es la finalidad de usar iptables. Es decir, se usa para filtrar y abrir sólo lo que tú quieras o cerrar, pero si tengo sólo instalado un servidor web y un servicio ssh, qué más da si uso iptables para aceptar sólo conexiones a esos puertos 80/22 respectivamente y cierro todo lo demás, si aunque no ponga iptables también van a estar abierto y escuchando... ¿Para que no puedan explotar otros puertos abiertos de otros servicios? No sé alomejor estoy equivocado pero no le veo mucho sentido excepto cerrar todo y abrir solo lo que quieras... No sé si me explicado bien. Es decir, imaginaros que sólo tengo el servicio web activo, puerto 80, todo lo demás que tenga algún puerto corriendo los paro, qué diferencia habría de usar ahí iptables a no usarlo... Saludos. iptables es un firewall de red con el que gestionar las conexiones en capa 3 y 4 como más te guste o necesites. Incluso puedes comprobar el estado de las mismas para decidir que hacer con ellas o detectar paquetes mal formados que puedan dar indicios de un ataque. Como comentas, se utiliza para cortar tráfico no deseado y permitir el legítimo: ya sea abriendo puertos, permitiendo qué conexiones desde qué red, NATing, etc. Puedes tener todos los servicios que quieras escuchando en la máquina local, pero si tienes iptables dropeando todas las peticiones serán rechazadas. Por ejemplo, prueba en tu máquina con el server Web y SSH las siguientes reglas iptables -A INPUT -p tcp --dport 80 -j DROP iptables -A INPUT -p tcp --dport 22 -j DROP esto debería descartarte todas las conexiones entrantes al puerto de destino 80 y 22 de la máquina local aun teniendo la política por defecto en ACCEPT. Con el comando iptables -L -vn deberías poder ver los contadores incrementándose con las pruebas que hagas. La configuración de un firewall es muy particular porque varía desde las necesidades de la red hasta del administrador del mismo. Lo ideal a mi gusto y más en ambientes en producción, es denegar todo y permitir únicamente lo que sea necesario pero no es estrictamente necesario. Saludos! -- To UNSUBSCRIBE, email to debian-user-spanish-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/530bc2a5.5090...@gmail.com Sé de lo que es capaz iptables y para que es. El forward, mangle, nat, redirect...Lo he usado para numerosas cosas, pero la duda no es que no sepa lo que es iptables, la duda es que creo que da lo mismo tener iptables permitiendo sólo el tráfico TCP y cerrar todo, va a ser vulnerable igual. Es decir, si cierras todo, servicio a servicio y solo dejas el web apache, iptables apagado, daría lo mismo que usar iptables, cerrar todo y sólo permitir el tráfico TCP al puerto 80. Sería igual de vulnerable en ese caso o me equivoco?? Todo esto sin contar con fail2ban, por supuesto. Gracias por las respuestas. Saludos. Hola. No recuerdo donde escuche que la seguridad es un estado mental pero bueno al grano. Es importatnte no delegar la seguridad solo a un firewall. Tambien se debe tener en cuenta la parte de la aplicacion. De nada sirve tener un firewall de miles de dolares si tienes una aplicacion web mal programada y que por ejemplo te de acceso a tu maquina por otro puerto. Y presisamente hay entra el firewall. Imagina que tienes un server web con una aplicacion mal programada. Y por esas cosas de la vida alguien mal intencionado te abre sierto puertos, protocolos, etc, para hacer quien sabe que (malo) con tu server. Inicialmente el firewall permite el acceso ya que seria trafico permitido. Si tienes iptables este bloqueara estos puertos y protocolos no deseados a parte de controlar y monitorear tu trafico. Hay te puedes dar cuenta que algo anda mal. Por ejemplo si de un momento a otro tu iptables empiesa a dropear trafico saliente de ssh que viene de tu server que supuestamente solo tendria trafico http por el puerto 80 o tu server empiesa a generar mas conexiones de lo normalvia pueto 80 a otro server en particular, esto en particular no lo bloquearia tu firewall pero si quedaria registrado (tu server ahora es un bot para un ataque dos?) . Tambien es importatnte que alguien verifique las notificaciones de tu firewall. No importa si tienes super afinado tu iptables, si no lo revizas es como tener un guardia mudo y sin radio. Recuerda que no es recomendable tener tu
Fwd: Re: Pregunta sobre iptables en debian
-- Forwarded message -- De: Maykel Franco maykeldeb...@gmail.com Date de fermeture: 2014-02-24 18:24 réserve de droits: Re: Pregunta sobre iptables en debian Pour: debian-user-spanish debian-user-spanish@lists.debian.org Cc : El día 24 de febrero de 2014, 23:07, Vicios fernando.vic...@gmail.com escribió: El 24/02/14 22:44, Maykel Franco escribió: Hola buenas, tengo una pregunta que alomejor es un poco tonta pero siempre la he tenido y ahí va... No entiendo cuál es la finalidad de usar iptables. Es decir, se usa para filtrar y abrir sólo lo que tú quieras o cerrar, pero si tengo sólo instalado un servidor web y un servicio ssh, qué más da si uso iptables para aceptar sólo conexiones a esos puertos 80/22 respectivamente y cierro todo lo demás, si aunque no ponga iptables también van a estar abierto y escuchando... ¿Para que no puedan explotar otros puertos abiertos de otros servicios? No sé alomejor estoy equivocado pero no le veo mucho sentido excepto cerrar todo y abrir solo lo que quieras... No sé si me explicado bien. Es decir, imaginaros que sólo tengo el servicio web activo, puerto 80, todo lo demás que tenga algún puerto corriendo los paro, qué diferencia habría de usar ahí iptables a no usarlo... Saludos. iptables es un firewall de red con el que gestionar las conexiones en capa 3 y 4 como más te guste o necesites. Incluso puedes comprobar el estado de las mismas para decidir que hacer con ellas o detectar paquetes mal formados que puedan dar indicios de un ataque. Como comentas, se utiliza para cortar tráfico no deseado y permitir el legítimo: ya sea abriendo puertos, permitiendo qué conexiones desde qué red, NATing, etc. Puedes tener todos los servicios que quieras escuchando en la máquina local, pero si tienes iptables dropeando todas las peticiones serán rechazadas. Por ejemplo, prueba en tu máquina con el server Web y SSH las siguientes reglas iptables -A INPUT -p tcp --dport 80 -j DROP iptables -A INPUT -p tcp --dport 22 -j DROP esto debería descartarte todas las conexiones entrantes al puerto de destino 80 y 22 de la máquina local aun teniendo la política por defecto en ACCEPT. Con el comando iptables -L -vn deberías poder ver los contadores incrementándose con las pruebas que hagas. La configuración de un firewall es muy particular porque varía desde las necesidades de la red hasta del administrador del mismo. Lo ideal a mi gusto y más en ambientes en producción, es denegar todo y permitir únicamente lo que sea necesario pero no es estrictamente necesario. Saludos! -- To UNSUBSCRIBE, email to debian-user-spanish-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/530bc2a5.5090...@gmail.com Sé de lo que es capaz iptables y para que es. El forward, mangle, nat, redirect...Lo he usado para numerosas cosas, pero la duda no es que no sepa lo que es iptables, la duda es que creo que da lo mismo tener iptables permitiendo sólo el tráfico TCP y cerrar todo, va a ser vulnerable igual. Es decir, si cierras todo, servicio a servicio y solo dejas el web apache, iptables apagado, daría lo mismo que usar iptables, cerrar todo y sólo permitir el tráfico TCP al puerto 80. Sería igual de vulnerable en ese caso o me equivoco?? Todo esto sin contar con fail2ban, por supuesto. Gracias por las respuestas. Saludos. No recuerdo donde escuche que la seguridad es un estado mental. No podemos delegar la seguridad solo a un firewall. Tambien se debe tener en cuenta la parte de la aplicacion. No importa si tienes un firewall de miles de dolares si tienes una aplicacion web mal programada y que por ejemplo te de acceso a tu maquina por otro puerto. Y presisamente hay entra el firewall. Imagina que tienes un server web con una aplicacion mal programada. Y por esas cosas de la vida alguien mal intencionado te abre sierto puertos, protocolos etc para hacer quien sabe que (malo). Inicialmente el firewall permite el acceso ya que seria trafico permitido. Si tienes iptables este bloqueara estos puertos y protocolos no deseados a parte de controlar y monitorear tu trafico. Hay te puedes dar cuenta que algo anda mal. Por ejemplo si de un momento a otro tu iptables empiesa a dropear trafico saliente de ssh que viene de tu server que supuestamente solo tendria trafico http por el puerto 80. Para cosas como esas sirve iptables. Bueno y no solo es tener iptables bien afinado. Tambien es importante tener a alguien atento de las notificaciones de tu firewall. El no hacerlo es como tener un guardia mudo. Recuerda que no es recomendable tener tu firewall dentro de ll mismo server web. no subestimes tu servidor solo por que depronto brinda una web simple. dependiendo el pais donde este tu server. Si tu server empiesa a hacer ataques a otros servers. El hecho que no lo supieras no te exime de
Re: Extraños kernel panic en Debian Jessie
yo tengo el mismo problema. con el kernel 3.2.0-4 (32 bits) o inferior se resuelve tu problema, por cierto este fallo creo que tiene relación con el chip gráfico nVidia, ahun no descubro (en mis ratos libres ) el por que de la falla, con el driver privativo y el libre (nouveau) es el mismo problema la ultima investigación q le di a Xorg fue que el grafico dejo de responder si, kieres evitar bajar el kernel, puedes usar Opera (explota cada 10 minutos) epiphany-browser saludos jose maldonado -- ** software libre no significa gratis: richard m. stallman http://wiki.debian.org/es/NormasLista#resumen http://wiki.debian.org/es/NormasLista/Gmail http://es.wikipedia.org/wiki/Top-posting -- To UNSUBSCRIBE, email to debian-user-spanish-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/530c36ba.5060...@gmail.com
[OT] Telia ADSL och SSH
Hej Med Telia ADSL är ssh, både kopiering av filer med scp och inloggning, nästan omöjligt, förbindelsen hänger sig direkt eller stoppar efter ett antal MB. Har någon annan varit med om detta? Har jag någon inställning fel, är det Telia som begränsar eller måste jag börja söka i kabeldragningen efter eventuella parallellkopplade jack (enligt fastighetsägaren kan det vara så)? Jag har modemet TG799vn v2 med firmware 10.4.0.O. Hälsningar -- -- Carl-Fredrik Enell Föraregatan 26B, 98139 Kiruna +46 (0)980-61282 +46 (0)70-5508256 http://kyla.kiruna.se/~fredrik -- -- To UNSUBSCRIBE, email to debian-user-swedish-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/21259.29875.703332.778...@morran.lan
Re: [OT] Telia ADSL och SSH
Har kört Ssh över Telia ADSL2+ i många år utan problem. Fel i kabeldragning sänker max bitrate. Störningar kan vara utsträckta i tiden eller mkt korta. I det första fallet får du lägre kapacitet, i det senare får du paketförlust. Kolla med bredbandskollen (ofta) och långa ping-serier. Parallellkopplade jack hörs i telefonen och märks på att 'internet' bryts när telefonsamtal börjar/pågår. /j Skickat från min iPad 24 feb 2014 kl. 17:34 skrev Carl-Fredrik Enell fred...@kyla.kiruna.se: Hej Med Telia ADSL är ssh, både kopiering av filer med scp och inloggning, nästan omöjligt, förbindelsen hänger sig direkt eller stoppar efter ett antal MB. Har någon annan varit med om detta? Har jag någon inställning fel, är det Telia som begränsar eller måste jag börja söka i kabeldragningen efter eventuella parallellkopplade jack (enligt fastighetsägaren kan det vara så)? Jag har modemet TG799vn v2 med firmware 10.4.0.O. Hälsningar -- -- Carl-Fredrik Enell Föraregatan 26B, 98139 Kiruna +46 (0)980-61282 +46 (0)70-5508256 http://kyla.kiruna.se/~fredrik -- -- To UNSUBSCRIBE, email to debian-user-swedish-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/21259.29875.703332.778...@morran.lan -- To UNSUBSCRIBE, email to debian-user-swedish-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/ee911fa1-5329-41e2-b2ec-c3c1d11d2...@barbanet.com
Re: [OT] Telia ADSL och SSH
On 2014-02-24 18:21, Jens Andersson wrote: Har kört Ssh över Telia ADSL2+ i många år utan problem. Fel i kabeldragning sänker max bitrate. Störningar kan vara utsträckta i tiden eller mkt korta. I det första fallet får du lägre kapacitet, i det senare får du paketförlust. Kolla med bredbandskollen (ofta) och långa ping-serier. Parallellkopplade jack hörs i telefonen och märks på att 'internet' bryts när telefonsamtal börjar/pågår. /j Skickat från min iPad 24 feb 2014 kl. 17:34 skrev Carl-Fredrik Enell fred...@kyla.kiruna.se: Hej Med Telia ADSL är ssh, både kopiering av filer med scp och inloggning, nästan omöjligt, förbindelsen hänger sig direkt eller stoppar efter ett antal MB. Har någon annan varit med om detta? Har jag någon inställning fel, är det Telia som begränsar eller måste jag börja söka i kabeldragningen efter eventuella parallellkopplade jack (enligt fastighetsägaren kan det vara så)? Jag har modemet TG799vn v2 med firmware 10.4.0.O. Hälsningar -- -- Carl-Fredrik Enell Föraregatan 26B, 98139 Kiruna +46 (0)980-61282 +46 (0)70-5508256 http://kyla.kiruna.se/~fredrik -- -- To UNSUBSCRIBE, email to debian-user-swedish-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/21259.29875.703332.778...@morran.lan Hej! Jag har Tyfons ADSL och ett parallellkopplat jack. När jag lyfter luren vid det jack där ADSL-modet/min server är ansluten bryts internet. Går det att koppla så att telefoni och internet fungerar samtidigt? Hur gör man en korrekt kabeldragning? Mvh Thomas Dahlén -- To UNSUBSCRIBE, email to debian-user-swedish-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/530c4c48.9060...@gmail.com
Re: Erro no virtualbox
Você está instalando como usuário root ? se não, tente como root. Em 21 de fevereiro de 2014 20:12, Ricardo Braz rickyb...@gmail.comescreveu: Estou instalando o virtualbox no debian jessie mas esta dando o seguinte erro: Error in SUPR3HardenedMain Effective UID is not root (euid=1000 egid=1000 uid=1000 gid=1000) (rc=-10) Please try reinstaling VirtualBox. Ja reinstalei e não tem jeito o que esta dando errado? Ricardo J. Braz Todos nós tomamos diferentes trilhas na vida; mas, não importa aonde vamos, aproveitamos um pouco de cada uma delas em toda parte - Tim McGrew
Re: Ajuda com tomcar
Já tentou acessar sua máquina nesse endereço ? localhost:8080 ? Em 23 de fevereiro de 2014 22:20, Leandro Moreira lean...@leandromoreira.eti.br escreveu: Prezados, boa noite! Tenho um tomcat instalado e configurado, preciso agora colocar o serviço do tomcat com o usuário do tomcat. Já criei o grupo, usuários dei as devidas permissões na pasta do tomcat e no script de inicialização do tomcat. Consigo subir o serviço com o usuário tomcat mas pela saída do netstat ele não abre a porta. Não encontrei nada de incomun nos logs tanto do servidor quanto do tomcat Sei que é uma lista do debian, mas estou realizando essa configuração no red hat, mas acredito que não seja muito diferente a configuração. segue abaixo a saídas dos comandos de starte e o os com serviço no ar: sh-4.1$ service tomcat start Using CATALINA_BASE: /usr/local/apache-tomcat-7.0.52 Using CATALINA_HOME: /usr/local/apache-tomcat-7.0.52 Using CATALINA_TMPDIR: /usr/local/apache-tomcat-7.0.52/temp Using JRE_HOME:/usr/java/jdk1.7.0_51 Using CLASSPATH: /usr/local/apache-tomcat-7.0.52/bin/bootstrap.jar:/usr/local/apache-tomcat-7.0.52/bin/tomcat-juli.jar Tomcat started. sh-4.1$ !ps ps -aux | grep tomcat Warning: bad syntax, perhaps a bogus '-'? See /usr/share/doc/procps-3.2.8/FAQ root 2198 0.0 0.2 161432 1972 pts/0S22:34 0:00 su tomcat tomcat2199 0.0 0.1 108332 1744 pts/0S22:34 0:00 sh tomcat3040 83.0 6.9 945832 61152 pts/0Sl 23:18 0:02 /usr/java/jdk1.7.0_51/bin/java -Djava.util.logging.config.file=/usr/local/apache-tomcat-7.0.52/conf/logging.properties -Djava.util.logging.manager=org.apache.juli.ClassLoaderLogManager -Djava.endorsed.dirs=/usr/local/apache-tomcat-7.0.52/endorsed -classpath /usr/local/apache-tomcat-7.0.52/bin/bootstrap.jar:/usr/local/apache-tomcat-7.0.52/bin/tomcat-juli.jar -Dcatalina.base=/usr/local/apache-tomcat-7.0.52 -Dcatalina.home=/usr/local/apache-tomcat-7.0.52 -Djava.io.tmpdir=/usr/local/apache-tomcat-7.0.52/temp org.apache.catalina.startup.Bootstrap start tomcat3053 0.0 0.1 110232 1144 pts/0R+ 23:18 0:00 ps -aux tomcat3054 0.0 0.0 103240 840 pts/0S+ 23:18 0:00 grep tomcat Att. -- Leandro Moreira Network Administrator LPIC1 - Linux Professional Institute Certified e-mail/msn: lean...@leandromoreira.eti.br Tel.: + 55(32) 9906-5713
Distribuição LaciOS baseada em Debian testing
Exmos Srs. Uma boa tarde , estamos a finalizar a nossa distribuição LaciOS Gil Eanes que deveria ter saído no passado dia 24.2.14 , mas constatamos que a ISO netinstall estará com problemas , em maquina virtual a ISO não passa dos 11% e quando passamos para as informações de instalação a ISO nesta percentagem manda a maquina virtual desmontar . Já mais alguém vos colocou este problema ? no Sabado estivemos a testar em diversas versões da virtualbox em várias distros de Linux desde 0 12.04 até ao futuro 14.04 e como é natural em Debian quer no 7.4 quer no Jersey . Agradeço desde já a vossa atenção Cumprimentos Carlos Carvalho
Monitoramento de Recursos
Bom dia Pessoal. O que me indicam pra monitoramento de recursos (CPU, memória, temperatura, etc)? Estou procurando algum que mostre as informações na barra superior. Desde já, Obrigado! *Estou usando a versão Wheezy. Atenciosamente *Leandro de Lima Camargo*
Fwd: Debian Servidor NAS on Flash disk read-only
Prezados , Para resolver o problema com o samba que reclamava do aquivo /var/lib/samba que estava montado somente escrita montei o mesmo em tmpfs ai funcionou legal . Porem agora tem mais um problema, quando é criado o usuario samba para autenticação funciona tudo 100% ,até que se reinicie a maquina , devido obviamente o /var/lib/samba estar montado na ram. Gostaria de saber se tem como configurar o samba para montar os aquivos responsaveis pelo usuario e senha no samba em outro lugar em modo read only, deixando os demais da forma que está assim resolveria esta pendenga! CONFIG SAMBA [global] workgroup = home server string = server netbios name = servidor #security = share security = user dns proxy = no CONFIG FSTAB proc /proc proc defaults 0 0 #tmpfs /var/lib/dhcp3 tmpfs defaults 0 0 tmpfs /tmp tmpfs defaults,noatime 0 0 tmpfs /var/tmp tmpfs defaults,noatime 0 0 tmpfs /var/lib/samba tmpfs defaults,noatime 0 0 tmpfs /var/run tmpfs defaults 0 0 tmpfs /var/log tmpfs defaults 0 0 tmpfs /var/lock tmpfs defaults 0 0 -- To UNSUBSCRIBE, email to debian-user-portuguese-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/cagbbsakrwr4nozhs6a_jtahrolhzwhqsr2baelqu+a8dv47...@mail.gmail.com
Re: Debian Servidor NAS on Flash disk read-only
Boa tarde ... Aquele artigo que eu havia lhe passado resolve o problema ( não estou em casa agora, não tenho como enviar novamente ! ) Resumidamente, ele monta os diretórios necessários em RAM durante o boot, e salva o conteúdo destes mesmos diretórios para a memória Flash qdo se faz um shutdown ! Pto, toda e qualquer alteração que tenha sido feita enquanto o servidor estava rodando é escrita na Flash, e qdo o novo boot é realizado, ele puxa novamente da flash para a RAM ! Foi por este motivo que eu lhe havia dito q tudo que o Sr. precisava estava naquele artigo ... Fábio Rabelo Em 24 de fevereiro de 2014 13:07, Marco A matrix.ho...@gmail.com escreveu: Prezados , Para resolver o problema com o samba que reclamava do aquivo /var/lib/samba que estava montado somente escrita montei o mesmo em tmpfs ai funcionou legal . Porem agora tem mais um problema, quando é criado o usuario samba para autenticação funciona tudo 100% ,até que se reinicie a maquina , devido obviamente o /var/lib/samba estar montado na ram. Gostaria de saber se tem como configurar o samba para montar os aquivos responsaveis pelo usuario e senha no samba em outro lugar em modo read only, deixando os demais da forma que está assim resolveria esta pendenga! CONFIG SAMBA [global] workgroup = home server string = server netbios name = servidor #security = share security = user dns proxy = no CONFIG FSTAB proc /proc proc defaults 0 0 #tmpfs /var/lib/dhcp3 tmpfs defaults 0 0 tmpfs /tmp tmpfs defaults,noatime 0 0 tmpfs /var/tmp tmpfs defaults,noatime 0 0 tmpfs /var/lib/samba tmpfs defaults,noatime 0 0 tmpfs /var/run tmpfs defaults 0 0 tmpfs /var/log tmpfs defaults 0 0 tmpfs /var/lock tmpfs defaults 0 0 -- To UNSUBSCRIBE, email to debian-user-portuguese-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/cagbbsakrwr4nozhs6a_jtahrolhzwhqsr2baelqu+a8dv47...@mail.gmail.com -- To UNSUBSCRIBE, email to debian-user-portuguese-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/CAEekY65OLcekUrxOB0=o3q4+sp_rftgtchhtbz9k8ralmwj...@mail.gmail.com
Re: Debian Servidor NAS on Flash disk read-only
Num dos artigos enviados pra lista tem a dica de como fazer isso. Mas se quiser resolver de forma mais simples, reparticione seu disco e monte uma partição /var como RW. Eu fiz isso em 1996 quando configurei um PC 386 como roteador para 3 modems ISA de 14400, que ligava por dialUP em 3 linhas telefônicas e dividia Internet para placa de rede com 10 outros PCs em um laboratório Em 24 de fevereiro de 2014 13:07, Marco A matrix.ho...@gmail.com escreveu: Prezados , Para resolver o problema com o samba que reclamava do aquivo /var/lib/samba que estava montado somente escrita montei o mesmo em tmpfs ai funcionou legal . Porem agora tem mais um problema, quando é criado o usuario samba para autenticação funciona tudo 100% ,até que se reinicie a maquina , devido obviamente o /var/lib/samba estar montado na ram. Gostaria de saber se tem como configurar o samba para montar os aquivos responsaveis pelo usuario e senha no samba em outro lugar em modo read only, deixando os demais da forma que está assim resolveria esta pendenga! CONFIG SAMBA [global] workgroup = home server string = server netbios name = servidor #security = share security = user dns proxy = no CONFIG FSTAB proc /proc proc defaults 0 0 #tmpfs /var/lib/dhcp3 tmpfs defaults 0 0 tmpfs /tmp tmpfs defaults,noatime 0 0 tmpfs /var/tmp tmpfs defaults,noatime 0 0 tmpfs /var/lib/samba tmpfs defaults,noatime 0 0 tmpfs /var/run tmpfs defaults 0 0 tmpfs /var/log tmpfs defaults 0 0 tmpfs /var/lock tmpfs defaults 0 0 -- To UNSUBSCRIBE, email to debian-user-portuguese-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/cagbbsakrwr4nozhs6a_jtahrolhzwhqsr2baelqu+a8dv47...@mail.gmail.com -- To UNSUBSCRIBE, email to debian-user-portuguese-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/caema1k8e6on3+vyibdtpzoxrrmxwfmtxncz-okfh2dtp8py...@mail.gmail.com
Re: Monitoramento de Recursos
On Mon, 2014-02-24 at 11:03 -0300, Leandro de Lima Camargo wrote: Bom dia Pessoal. O que me indicam pra monitoramento de recursos (CPU, memória, temperatura, etc)? Estou procurando algum que mostre as informações na barra superior. Desde já, Obrigado! *Estou usando a versão Wheezy. Atenciosamente *Leandro de Lima Camargo* Já ouviu falar do conky? Para mim, é imbatível. Você encontra ótimos temas no xfce-look.org. Uma que recomendo é o conkycolors do Hellmuth Saatkamp. Salvo engano, no script de instalação você consegue configurar o modo de exibição e fazê-lo aparecer como uma barra horizontal, acertar a altura e as informações que deseja. -- André N. Batista GNUPG/PGP KEY: 6722CF80 signature.asc Description: This is a digitally signed message part
LTSP - fazendo login na imagem do thin client
Pessoal, Migramos recentemente nosso servidor LTSP de Ubuntu para Debian Wheezy e estou tendo problemas para poder fazer o login no terminal da imagem do thin client (sabe,na frente do thin client, CTRL+ALT+F1) para fazer uns debugs. Pensei que era algo relacionado ao root, então criei um novo usuário no ltsp-chroot, gerei uma imagem nova e nada de login nesse usuário também. O que eu já fiz, seguindo alguns tutoriais que encontrei nas minhas pesquisas: ltsp-chroot passwd -u root ltsp-chroot passwd (e criei nova senha para o root) ltsp-upgrade-image Não funcionou. Instalei o ssh server para poder entrar no thin client via ssh, mas ao tentar logar recebo essa mensagem: Read from socket failed: Connection reset by peer Se eu faço um nmap no ip do thin client: PORT STATE SERVICE 22/tcp open ssh Antes quando era no Ubuntu funcionava o login. Como foi outro cara que configurou tudo (e administração de sistemas Linux não é o meu forte) não sei que parâmetros ele usou (ou se tem algum) ao rodar o ltsp-build-image, ou sei lá, sou bem novato nesse assunto. Qualquer ajuda vai ser bem vinda, até mesmo umas dicas de palavras chave pra sair procurando isso pela net, pois as que eu tentei não trouxeram muitos resultados relevantes. Desde já agradeço a atenção. -- .''`. Anderson R. Livramento : :' : Florianopolis - Santa Catarina - Brasil `. `'` GNU/Linux user #339026 - http://linuxcounter.net/ `-
Re: Debian Servidor NAS on Flash disk read-only
Deixe-me ver se eu entendí : O Sr. quer poder apertar o reset sem perder as últimas atualizações de usuários e senhas em um sistema somente leitura ? Se for isto, desejo-lhe boa sorte ... teoricamente o Sr. poderia disparar um script que, depois de criar um usuário e senha, remontasse a partição da Flash para escrita, salvasse o conteúdo de /var/alguma coisa na Flash e em seguida remonta-se a Flash como somente leitura . E se o Sr. encontrar alguma solução para isto, por favor poste aqui na lista, pois eu nunca ouvi falar de nada que faça isto ... Fábio Rabelo Em 24 de fevereiro de 2014 13:56, Marco A matrix.ho...@gmail.com escreveu: Fala Fabião Recebi o seu link sim ,, estive analizando e pelo que intendi , a flash e montada em em modo escrita ,e neste caso sujeita a se corromper no caso de um boot forçado. ou estou enganado? Na instalação que fiz na minha flash , fica tudo em read only , ficando um sistema solido que resiste a eventuais paradas forçadas ,pois vou instar isso num cenario bastante agressivo ,e se a flash ficar em modo leitura , (dale fsck) como constatei nos testes. Quando preciso editar algum arquivo monto a flash em como escrita 'mount / -o remount,rw depois remonto com letura somente mount / -o remount,ro abraço Marcos Em 24 de fevereiro de 2014 13:23, Fábio Rabelo fa...@fabiorabelo.wiki.br escreveu: Boa tarde ... Aquele artigo que eu havia lhe passado resolve o problema ( não estou em casa agora, não tenho como enviar novamente ! ) Resumidamente, ele monta os diretórios necessários em RAM durante o boot, e salva o conteúdo destes mesmos diretórios para a memória Flash qdo se faz um shutdown ! Pto, toda e qualquer alteração que tenha sido feita enquanto o servidor estava rodando é escrita na Flash, e qdo o novo boot é realizado, ele puxa novamente da flash para a RAM ! Foi por este motivo que eu lhe havia dito q tudo que o Sr. precisava estava naquele artigo ... Fábio Rabelo Em 24 de fevereiro de 2014 13:07, Marco A matrix.ho...@gmail.com escreveu: Prezados , Para resolver o problema com o samba que reclamava do aquivo /var/lib/samba que estava montado somente escrita montei o mesmo em tmpfs ai funcionou legal . Porem agora tem mais um problema, quando é criado o usuario samba para autenticação funciona tudo 100% ,até que se reinicie a maquina , devido obviamente o /var/lib/samba estar montado na ram. Gostaria de saber se tem como configurar o samba para montar os aquivos responsaveis pelo usuario e senha no samba em outro lugar em modo read only, deixando os demais da forma que está assim resolveria esta pendenga! CONFIG SAMBA [global] workgroup = home server string = server netbios name = servidor #security = share security = user dns proxy = no CONFIG FSTAB proc /proc proc defaults 0 0 #tmpfs /var/lib/dhcp3 tmpfs defaults 0 0 tmpfs /tmp tmpfs defaults,noatime 0 0 tmpfs /var/tmp tmpfs defaults,noatime 0 0 tmpfs /var/lib/samba tmpfs defaults,noatime 0 0 tmpfs /var/run tmpfs defaults 0 0 tmpfs /var/log tmpfs defaults 0 0 tmpfs /var/lock tmpfs defaults 0 0 -- To UNSUBSCRIBE, email to debian-user-portuguese-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/cagbbsakrwr4nozhs6a_jtahrolhzwhqsr2baelqu+a8dv47...@mail.gmail.com -- To UNSUBSCRIBE, email to debian-user-portuguese-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/caeeky64qe2_atlxbwabtwbp3fxcw-2tyrv+lgsbfctba0hp...@mail.gmail.com
INSTALAR DEBIAN WHEZZY UEFI
Boa tarde Galera, alguém poderia me dar uma força na instação do Debian em um servidor IBM X3630 M4 ? Instala mas não da o boot, em pesquisas descobri que é algo relacionado ao UEFI. Alguém ja passou por isso ? Obrigado! LEONARDO LUIS DOS SANTOSDeus abençoe o Brasil e seu povo! Campanha anti-vírus Ao encaminhar esta mensagem, por favor: 1- Delete o meu e-mail e meu nome. 2- Apague também os endereços dos amigos antes de reenviar. 3- Encaminhe como cópia oculta (Cco ou Bcc) aos SEUS destinatários. Agindo sempre assim dificultaremos a disseminação de vírus e spams.
Re: INSTALAR DEBIAN WHEZZY UEFI
Eu sofri com esse uefi tbm. Tenho um samsung ativ book 9 que veio com windows 8. Eu tentei várias coisas diferentes, que inclusive acidentalmente excluiram meu windows e depois nem o ubuntu live não iniciava. Após passar esse fds inteiro sofrendo com isso, reinstalei o windows 8, fiz um pen drive com debian testing, ao iniciar o computador, pressiono F+10 (escolher boot) e aparece as opções: setup, pendrive e UEFI pendrive. Escolhi a ultima, que fez o boot uefi do debian jessie. Importante lembrar que, no setup, devem ter algumas funções a serem alteradas, como Fast bios, secure boot, boot mode ( salvo engano: CSM OS and UEFI OS), legacy mode, para que o pendrive inicie corretamente. Bem, a instalação correu normalmente, porém tive uns problemas com drivers, que corrigi após instalar o debian. Interessante que eu tive que instalar o gnome tbm, pois não veio no cd1 do debian. Após finalizar esses detalhes, estou agora com meu debian funcionando ok, fazendo dualboot ok também. Bom, espero que essa história minha possa te dar alguma luz pra vc instalar o debian na sua máquina. Não estudo muito linux mas sou usuário desde 2009, faço somente o básico, por isso não sou a pessoa ideal pra lhe informar detalhes técnicos, creio que existe gente com mais experiência aqui na comunidade pra poder sanar alguma dúvida sua, mas acho que já dá pra você tentar mais coisas com o que eu descrevi aqui. Em 24 de fevereiro de 2014 16:46, Leonardo Santos leolui...@outlook.comescreveu: Boa tarde Galera, alguém poderia me dar uma força na instação do Debian em um servidor IBM X3630 M4 ? Instala mas não da o boot, em pesquisas descobri que é algo relacionado ao UEFI. Alguém ja passou por isso ? Obrigado! *LEONARDO LUIS DOS SANTOS* *Deus abençoe o Brasil e seu povo!* *Campanha anti-vírus* *Ao encaminhar esta mensagem, por favor:* *1- Delete o meu e-mail e meu nome.* *2- Apague também os endereços dos amigos antes de reenviar.* *3- Encaminhe como cópia oculta (Cco ou Bcc) aos SEUS destinatários.* *Agindo sempre assim dificultaremos a disseminação de vírus e spams.* -- Sheldon Led http://sheldonled.com http://tribodoci.net
Re: Debian Servidor NAS on Flash disk read-only
Em 24 de fevereiro de 2014 17:57, Marco A matrix.ho...@gmail.com escreveu: Mestres; O que preciso é somente manter informações de USUARIO E SENHA do samba de apenas UM USUARIO ,este USUARIO é somente para autenticar neste servidor de aquivos e ter acesso a partiçao que compartilha aquivos na rede , nao havera nem sera necessario criar outros usuarios futuramente, é isso. Como eu disse , penso em criar o usuario em modo escrita e depois tornar a flash somente leitura para que nao seja perdido estas informaçoes quando reiniciar. Reitero que uma vez criado o usuario UNICO o samba nao estara mais disponivel para criar novos usuarios, pois tudo estará em somente leitura é isso. Em 24 de fevereiro de 2014 15:05, Fábio Rabelo fa...@fabiorabelo.wiki.br escreveu: Deixe-me ver se eu entendí : O Sr. quer poder apertar o reset sem perder as últimas atualizações de usuários e senhas em um sistema somente leitura ? Se for isto, desejo-lhe boa sorte ... teoricamente o Sr. poderia disparar um script que, depois de criar um usuário e senha, remontasse a partição da Flash para escrita, salvasse o conteúdo de /var/alguma coisa na Flash e em seguida remonta-se a Flash como somente leitura . E se o Sr. encontrar alguma solução para isto, por favor poste aqui na lista, pois eu nunca ouvi falar de nada que faça isto ... Fábio Rabelo Em 24 de fevereiro de 2014 13:56, Marco A matrix.ho...@gmail.com escreveu: Fala Fabião Recebi o seu link sim ,, estive analizando e pelo que intendi , a flash e montada em em modo escrita ,e neste caso sujeita a se corromper no caso de um boot forçado. ou estou enganado? Na instalação que fiz na minha flash , fica tudo em read only , ficando um sistema solido que resiste a eventuais paradas forçadas ,pois vou instar isso num cenario bastante agressivo ,e se a flash ficar em modo leitura , (dale fsck) como constatei nos testes. Quando preciso editar algum arquivo monto a flash em como escrita 'mount / -o remount,rw depois remonto com letura somente mount / -o remount,ro abraço Marcos Em 24 de fevereiro de 2014 13:23, Fábio Rabelo fa...@fabiorabelo.wiki.br escreveu: Boa tarde ... Aquele artigo que eu havia lhe passado resolve o problema ( não estou em casa agora, não tenho como enviar novamente ! ) Resumidamente, ele monta os diretórios necessários em RAM durante o boot, e salva o conteúdo destes mesmos diretórios para a memória Flash qdo se faz um shutdown ! Pto, toda e qualquer alteração que tenha sido feita enquanto o servidor estava rodando é escrita na Flash, e qdo o novo boot é realizado, ele puxa novamente da flash para a RAM ! Foi por este motivo que eu lhe havia dito q tudo que o Sr. precisava estava naquele artigo ... Fábio Rabelo Em 24 de fevereiro de 2014 13:07, Marco A matrix.ho...@gmail.com escreveu: Prezados , Para resolver o problema com o samba que reclamava do aquivo /var/lib/samba que estava montado somente escrita montei o mesmo em tmpfs ai funcionou legal . Porem agora tem mais um problema, quando é criado o usuario samba para autenticação funciona tudo 100% ,até que se reinicie a maquina , devido obviamente o /var/lib/samba estar montado na ram. Gostaria de saber se tem como configurar o samba para montar os aquivos responsaveis pelo usuario e senha no samba em outro lugar em modo read only, deixando os demais da forma que está assim resolveria esta pendenga! CONFIG SAMBA [global] workgroup = home server string = server netbios name = servidor #security = share security = user dns proxy = no CONFIG FSTAB proc /proc proc defaults 0 0 #tmpfs /var/lib/dhcp3 tmpfs defaults 0 0 tmpfs /tmp tmpfs defaults,noatime 0 0 tmpfs /var/tmp tmpfs defaults,noatime 0 0 tmpfs /var/lib/samba tmpfs defaults,noatime 0 0 tmpfs /var/run tmpfs defaults 0 0 tmpfs /var/log tmpfs defaults 0 0 tmpfs /var/lock tmpfs defaults 0 0 -- To UNSUBSCRIBE, email to debian-user-portuguese-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/cagbbsakrwr4nozhs6a_jtahrolhzwhqsr2baelqu+a8dv47...@mail.gmail.com -- To UNSUBSCRIBE, email to debian-user-portuguese-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/cagbbsakxq4m+m_2mdaw+ztsifz+vvz7elfl90tjmslgvb66...@mail.gmail.com
Re: Debian Servidor NAS on Flash disk read-only
Mestres; O que preciso é somente manter informações de USUARIO E SENHA do samba de apenas UM USUARIO ,este USUARIO é somente para autenticar neste servidor de aquivos e ter acesso a partiçao que compartilha aquivos na rede , nao havera nem sera necessario criar outros usuarios futuramente, é isso. Como eu disse , penso em criar o usuario em modo escrita e depois tornar a flash somente leitura para que nao seja perdido estas informaçoes quando reiniciar. Reitero que uma vez criado o usuario UNICO o samba nao estara mais disponivel para criar novos usuarios, pois tudo estará em somente leitura é isso. Em 19 de fevereiro de 2014 01:37, Marco A matrix.ho...@gmail.com escreveu: Prezados , Fiz instalação do Debian Squeeze atraves da ferramenta dbootstrap em uma flash ide com 512mb , pra rodar um servidorzinho de aquivos tipo NAS com o servidor Samba,compartilhando dois hd de 1tb em Raid. Fiz a instalação do Samba ,com as configuraçoes minimas e tudo funcionou. Para proteger a flash e os arquivos de sistema e assim poder desligar direto no botao power , montei a partiçao somente leitura, porem nesta situação o Samba nao roda ,ou seja ele vai subir sem problemas somente quando monto a partiçao do sistema como escrita. Estive pesquisando , e me parece que o samba precisa de escrita em alguns arquivos de sistema , entao no meu cenario seria necessario montar estes aquivos na ram atraves de links simbolicos , se realmente é este o problema quais seriam? Segue as configurações do fstab e do smb.conf . Desde já agradeço uma luz Marcos Este é o erro que apresenta ao restartar o samba; Stopping Samba daemons: nmbd smbdstart-stop-daemon: warning: failed to kill 931: No such process config do samba [global] workgroup = home server string = server netbios name = servidor #security = share security = share dns proxy = no [dados] path = /dados/ #path = /hd1/ writable = yes browseable = yes public = yes #create mask = 0777 #directory mask = 0777 Fstab UUID=77c706f3-4a3a-451c-9982-39365e350ace / ext2 defaults,noatime,ro 0 0 UUID=af7f3d56-c0ba-4c46-87bb-7374d9b2b99f /dados auto defaults,errors=remount-ro 0 1 proc /proc proc defaults 0 0 #tmpfs /var/lib/dhcp3 tmpfs defaults 0 0 tmpfs /tmp tmpfs defaults,noatime 0 0 tmpfs /var/tmp tmpfs defaults,noatime 0 0 tmpfs /var/run tmpfs defaults 0 0 tmpfs /var/log tmpfs defaults 0 0 tmpfs /var/lock tmpfs defaults 0 0 -- To UNSUBSCRIBE, email to debian-user-portuguese-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/CAGbBsa+Q3yR=yruRGZ_3dDLFL+EVVuvV8KVzcdXBbgpyp=q...@mail.gmail.com
Re: netcat usage.
On 24/02/14 15:44, Peter Easthope wrote: References: a7f1e371d326618f1b4877e7b9e45483.squir...@easthope.ca 530a9882.4040...@gmail.com From: Scott Ferguson scott.ferguson.debian.u...@gmail.com Date: Mon, 24 Feb 2014 11:55:30 +1100 NOTE: there four different netcats available in Wheezy. I found three. netcat-openbsd, netcat-traditional, netcat6. OK. I miscounted transitional as a separate package. netcat-openbsd pleads ignorance. peter@dalton:~$ nc -l 25 -e ssmtp nc: invalid option -- 'e' ... netcat-traditional listens on the port; or appears to and does nothing. peter@dalton:~$ nc -l 25 -e ssmtp [gears humming] What are the contents of the file ssmtp? netcat6 refuses. peter@dalton:~$ nc -l -p 25 -e ssmtp -p 25 is not the same as -l 25 nc: bind to source :: 25 failed: Permission denied nc: bind to source 0.0.0.0 25 failed: Permission denied nc: failed to bind to any local addr/port $ nc -lvv -p 1025 -w 2;nc -lvv -p 25 listening on [any] 1025 ... no connection : Connection timed out Can't grab 0.0.0.0:25 with bind : Permission denied (netcat-traditional 1.10-40) Kind regards snipped -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/530b0a36.6080...@gmail.com
Re: netcat usage.
I'd include socat in the list, but perhaps it's command line options are different? socat is my preferred network swiss army knife. A little different, but there are also netsed, netrw etc. -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/CAOsGNST1WYd9Dg3KCmqe5yzUgmQSq=oqao008whkh-1yel+...@mail.gmail.com
Multiple monitors - one screensaver
Has anyone managed to get one screensaver stretched across multiple monitors? I use the nvidia driver with four monitors using two nvidia cards. Ric -- My father, Victor Moore (Vic) used to say: There are two Great Sins in the world... ..the Sin of Ignorance, and the Sin of Stupidity. Only the former may be overcome. R.I.P. Dad. /https://linuxcounter.net/cert/44256.png / -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/530b0c54.9070...@gmail.com
PROBLEMA DE IMPRESSÃO NO DEBIAN
Prezados, As impressoras de rede brother e HP na empresa que eu trabalho está muito lento no SO DEBIAN. E parece que este problema sempre ocorreu no DEBIAN e nos fóruns na web ninguém conhece a solução. Att. Vanderlei -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/530b0420.7030...@terra.com.br
Re: netcat usage.
On 24/02/14 20:07, Zenaan Harkness wrote: I'd include socat in the list, but perhaps it's command line options are different? socat is my preferred network swiss army knife. A little different, but there are also netsed, netrw etc. And the excellent crypcat - but I just counted the ones with netcat in their name (in case the OP was, um, fussy about it), not necessarily their functionality. I don't know what the actual criteria for being netcat is, for me if it does the job and is in /etc/alternatives I'm happy. Kind regards -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/530b0e58.4090...@gmail.com
Re: Multiple monitors - one screensaver
Ric Moore writes: Has anyone managed to get one screensaver stretched across multiple monitors? I use the nvidia driver with four monitors using two nvidia cards. Ric Which screensaver? I use dual heading, no DE, only X11, window manager shell. The old venerable xlock does what you ask. Chances are that has not the some of the fancy modules of the screensaver Zawinsky wrote... -- /\ ___Ubuntu: ancient /___/\_|_|\_|__|___Gian Uberto Lauri_ African word //--\| | \| | Integralista GNUslamicomeaning I can \/ coltivatore diretto di software not install già sistemista a tempo (altrui) perso...Debian Warning: gnome-config-daemon considered more dangerous than GOTO -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/21259.4419.252701.171...@mail.eng.it
Re: netcat usage.
On Mon 24 Feb 2014 at 20:18:16 +1100, Scott Ferguson wrote: On 24/02/14 20:07, Zenaan Harkness wrote: I'd include socat in the list, but perhaps it's command line options are different? socat is my preferred network swiss army knife. A little different, but there are also netsed, netrw etc. And the excellent crypcat - but I just counted the ones with netcat in their name (in case the OP was, um, fussy about it), not necessarily their functionality. I don't know what the actual criteria for being netcat is, for me if it does the job and is in /etc/alternatives I'm happy. There is also ncat, which comes in the nmap package and is described as a much-improved reimplementation of the venerable Netcat. This is what the OP is apparently using. He might also have nc aliased to ncat. I'd not previously come across the CAP_NET_BIND_SERVICE capability Pascal Hambourg mentions; the OP could consider doing (as root) setcap cap_net_bind_service=+ep /usr/bin/ncat as a solution to his problem. -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20140224102150.ga8...@copernicus.demon.co.uk
Re: Installing nodejs binaries as a .deb package
On Sat, Feb 22, 2014 at 11:40:51AM +1100, Scott Ferguson wrote: On 22/02/14 11:39, Scott Ferguson wrote: On 22/02/14 09:49, Blaine LaFreniere wrote: Hi, I was wondering how I might be able to install the nodejs binaries as a .deb package, so I could easily uninstall it later. Why not:- https://github.com/joyent/node/wiki/Installing-Node.js-via-package-manager Or:- http://blog.blakesimpson.co.uk/read/41-install-node-js-on-debian-wheezy I tried to use the alien utility to convert a .tgz file to a .deb, but after installing with dpkg -i package, it didn't appear to install correctly, because I couldn't access the binaries, and when I do `which node`, there are no results. I've not always had a lot of success with alien in the past, so where possible I avoid it. P.S. What Debian release you are trying to install to may be relevant - likewise any error messages or lack thereof. Sorry - hit Enter too soon. nodejs *is* in the Sid repostitory. Note, however, that due to a conflict with an existing package (node aka ax25-node), Debian ships the binary as /usr/bin/nodejs. If you need to use the old name (/usr/bin/node), then the node-legacy package seems to provide for you. signature.asc Description: Digital signature
Re: [WARNING] libc6 upgrade from 2.17.97 to 2.18.1 (unstable) fails -now segfaults on apt-get etc.
On 22 February 2014 01:52, Robin rc.rattusrat...@gmail.com wrote: **This of course may apply only to my PC but just in case it is not**: Just done dist-upgrade 01:30 22/02/2014 and upgrade fails whilst updating libc6. Applications that were open are still functioning but everything else segfaults. Looks like a reinstall -- rob Fix information: Aurelien Jarno wrote: For already broken systems like yours, here is a procedure to fix it. On a rescue system, change to the root directory of the system to be fixed. - make sure ldconfig won't be run anymore: ln -sf /bin/true lib/ldconfig - point the symlink to the correct libc version: ln -sf /lib/x86_64-linux-gnu/libdl-2.18.so lib64/ld-linux-x86-64.so.2 note that the version 2.18 might have to be adjusted depending on the libc currently installed on your system Then reboot on the system and run the following commands: - remove libc6-amd64: apt-get remove libc6-amd64 - reinstall and/or upgrade at least libc6 and libc-bin: apt-get --reinstall libc6 libc-bin Bug#739734 -- rob -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/caozwb-ppv5kua7l6zwzjgtli4b2yaln4a7hbqrinaf9swnc...@mail.gmail.com
Re: [WARNING] libc6 upgrade from 2.17.97 to 2.18.1 (unstable) fails -now segfaults on apt-get etc.
On Sat, Feb 22, 2014 at 01:52:27AM +, Robin wrote: **This of course may apply only to my PC but just in case it is not**: Just done dist-upgrade 01:30 22/02/2014 and upgrade fails whilst updating libc6. Applications that were open are still functioning but everything else segfaults. Looks like a reinstall I had that same issue at the weekend. Somehow my amd64/x86 multiarch machine had got libc6:i386 at 2.18 but libc6:amd64 was at 2.17. I think it was this mismatch that was throwing segfaults. In the end, I was able to complete the upgrade by: * Download the libc6:amd64 deb * dpkg-deb --extract deb tmp folder * dpkg-deb -e deb tmp folder * Edit tmp folder/DEBIAN/preinst and insert exit 0 near the top * dpkg-deb -b tmp folder * dpkg -i new deb This skipped some checks, but it did get things back in sync and I was able to complete the upgrade. The joys of running unstable(!) signature.asc Description: Digital signature
Re: disk quota
yes 2014-02-22 22:32 GMT+01:00 Pol Hallen de...@fuckaround.org: Hi folks! Reading some howtos about quota disk I'm not sure about this topic (because is very old): checking quotas regularly - Linux doesn't check quota usage each time a file is opened, you have to force it to process the aquota.user and aquota.group files periodically with the quotacheck command.You can setup a cron job to run a script similar to the one below to achieve this so, I need remount fs without quota, do: quotaon -vaug e remount with quota? Can anyone that use disk quota confirm this thing? thanks for help! -- Pol -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/53091753.6050...@fuckaround.org -- esta es mi vida e me la vivo hasta que dios quiera
Am I paranoid?
I have a relatively new installation (2 months) of Debian Wheezy, and not many additionaly packages installed. I *never* installed any virtual machine on this computer, however, after some problems (that I first though were hardware related) I found that vmtoolsd is installed on this computer. Synaptic does not show any installed VM package, same as my shell history. I'm aware that virtualization theoretically could be used to gain backdoor (or at least processing power) and I wonder if I'm the lucky one. I'm willing to explore this if anybody is interested to lead me. -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/lefcou$68c$1...@ger.gmane.org
Re: Am I paranoid?
Hi On Mon, Feb 24, 2014 at 01:14:10PM +0100, ha wrote: I have a relatively new installation (2 months) of Debian Wheezy, and not many additionaly packages installed. I *never* installed any virtual machine on this computer, however, after some problems (that I first though were hardware related) I found that vmtoolsd is installed on this computer. I cannot see a package named vmtoolsd in the debian archives. But I can see a package named open-vm-tools, which has files named like that: https://packages.debian.org/search?suite=defaultsection=allarch=anysearchon=contentskeywords=vmtoolsd This package seems to be the VMware Tools bit intended to be installed on a guest VM - i.e. it does not provide virtualisation, but does stuff guests... Is your box a VMWare guest? If not, then you should not need open-vm-tools. Synaptic does not show any installed VM package, same as my shell history. I'm aware that virtualization theoretically could be used to gain backdoor (or at least processing power) and I wonder if I'm the lucky one. I'm willing to explore this if anybody is interested to lead me. I would not suspect this to be the case here. If you have the open-vm-tools package from the Debian repository, you should be safe. Hope this helps -- Karl E. Jorgensen -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20140224122513.GA4691@hawking
Re: PROBLEMA DE IMPRESSÃO NO DEBIAN
Boas, Esta lista é em inglês, e é considerado má etiqueta usar CAPS. Se quiseres continuar em português, usa a https://lists.debian.org/debian-user-portuguese/ 2014-02-24 8:34 GMT+00:00 Vanderlei Gouvêa vdgou...@terra.com.br: As impressoras de rede brother e HP na empresa que eu trabalho está muito lento no SO DEBIAN. E parece que este problema sempre ocorreu no DEBIAN e nos fóruns na web ninguém conhece a solução. Quanto às impressoras, tenta o HPLIP, nunca tive problemas com um multi-funções da HP. -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/cadqa9ua9zq0ozwdfnq2ncyaghfctzo6mjaqpq_pjrkbar8z...@mail.gmail.com
cron.daily logrotate beating up my server
I have a little server running here in my office, and logrotate kept running at c. 7am, and using up 100% CPU. I changed the line in /etc/crontab to run cron.daily scripts at 4:15am, instead of 7:whateveritwas am. 15 4 * * * Also, in cron.daily/logrotate I added nice -n 15 I made these changes two days ago, and still, yesterday and today, logrotate is running at 7:30ami-ish, and using up almost 100% of CPU cycles. The server is an old refurbed eMachines box, 3.2ghz single core celeron with 2gb ram (was my work box from 2007 to 2011), and logrotate is beating it up. How do I get logrotate, first, to run at a time when the server is not busy with other stuff (I'm actively doing stuff on the server at 7am, but not at 4am, which is why I had made that change). and/or limit its abuse of CPU cycles? Why is it seemingly not honouring the changes I made to /etc/crontab and cron.daily/logrotate? Taz -- http://tazmandevil.info taz hungry -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20140224125702.ga16...@myownsite.me
Re: PROBLEMA DE IMPRESSÃO NO DEBIAN
On Mon, Feb 24, 2014 at 12:40:56PM +, Nuno Magalhães wrote: Boas, Esta lista é em inglês, e é considerado má etiqueta usar CAPS. Se quiseres continuar em português, usa a https://lists.debian.org/debian-user-portuguese/ 2014-02-24 8:34 GMT+00:00 Vanderlei Gouvêa vdgou...@terra.com.br: As impressoras de rede brother e HP na empresa que eu trabalho está muito lento no SO DEBIAN. E parece que este problema sempre ocorreu no DEBIAN e nos fóruns na web ninguém conhece a solução. Quanto às impressoras, tenta o HPLIP, nunca tive problemas com um multi-funções da HP. Posso dizer que tenho um HP5610 All-in-One e funciona perfectamente com Wheezy (e Lenny e Squeeze) com o HPLIP. O meu não esta ligado num rede, porem, mas com um maquina só. boa sorte Taz -- http://tazmandevil.info taz hungry -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20140224130023.gb16...@myownsite.me
Authentication problem which ejabberd using ODBC
Hi all. Some time ago, I decided to migrate from a compiled ejabberd 2.0 to version 2.1.5 from Debian GNU/Linux repositories. After that, everything was working, although the weekend I was checking some things of setup and I noticed that was running with a version of MySQL modules I compiled at the time (2011). The idea is that everything is running Debian packages for ease of administration and security updates. Then I tried the authentication is done with ODBC. Then, to achieve this, I commented the lines: --- {host_config, sysadminhaiku.com.ar, [ {odbc_server, {mysql, localhost, sysadminhaiku, ejabberd, password}} ]}. --- and added these lines: --- {odbc_server, DSN=MySQLEjabberdSysadminHaiku;UID=ejabberd;PWD=password}. --- But I get an authentication error: --- I(0.568.0:ejabberd_c2s:649) : ({socket_state,tls,{tlssock,#Port0.4138,#Port0.4140},0.567.0}) Failed authentication for dan...@sysadminhaiku.com.ar =INFO REPORT 2014-02-24 09:38:56 === D(0.568.0:ejabberd_c2s:1553) : Send XML on stream = failure xmlns='urn:ietf:params:xml:ns:xmpp-sasl'not-authorized//failure =INFO REPORT 2014-02-24 09:38:57 === D(0.567.0:ejabberd_receiver:320) : Received XML on stream = /stream:stream =INFO REPORT 2014-02-24 09:38:57 === D(0.567.0:shaper:61) : State: {maxrate,1000,999.6358088704133, 1393245537046358}, Size=16 M=15.994175063316883, I=5.973 =INFO REPORT 2014-02-24 09:38:57 === D(0.568.0:ejabberd_c2s:1553) : Send XML on stream = /stream:stream --- Could the authentication error be related to a connection issue? What I find strange is that I did a test with isql, and the connection is established. When I undo the change and authentication is back with Erlang compiled modules, everything returns to normal. Any idea what could be the problem? Thanks in advance for your reply. Regards, Daniel -- Daniel Bareiro Fingerprint: BFB3 08D6 B4D1 31B2 72B9 29CE 6696 BF1B 14E6 1D37 Powered by Debian GNU/Linux Squeeze - Linux user #188.598 signature.asc Description: Digital signature
Re: resolv.conf misbehaving
Hi, My apologies, I must have missed your reply Warning : this setup is wrong and may not work as you expect. All listed nameservers should be equivalent. Multiple nameservers are only for redundancy, not to provide multiple sources. If you query the first server for an information out of its scope, it may reply negatively (status: NXDOMAIN or NOERROR, ANSWER: 0) and the next server won't be queried. So in the end you won't get your answer. However, what would be the point of giving resolv.conf multiple nameserver options then (if I understand you correctly), if one cannot force (for lack of a better word) it, or even arbitrarily change the order in which servers can be queried? So it would be absolutely pointless in even trying? I think I am missing something somewhere, previously (Debian 3.0 and even later) one could add multiple nameservers in resolv.conf and the list would be queried one at a time if an ANSWER SECTION could not be obtained from the previous one. I fail to understand then the reasoning for limiting resolv.conf (and everything associated with it). I am no expert (by a long way) when it comes to any sort of DNS, but you don't need to be a Doctor to know when someone is ill. The setup I had (Debian 3.0) worked. Unfortunately smart devices and more wireless laptops demanded attention. So I upgraded (clean install) to Debian 7.0. All I want to do is for all wireless devices to get DHCP from Debian (not the router) and query Debian (not the router) for name resolution. Simple as that. I appreciate your input. Thank You Danny -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20140224132600.GA7788@fever.havannah.local
Re: Am I paranoid?
Hi I cannot see a package named vmtoolsd in the debian archives. But I can see a package named open-vm-tools, which has files named like that: Yes, I know. No, I do not have open-vm-tools package. This package seems to be the VMware Tools bit intended to be installed on a guest VM - i.e. it does not provide virtualisation, but does stuff guests... Is your box a VMWare guest? If not, then you should not need open-vm-tools. Yes, I know. No, my computer is not a virtual machine and I did not install on it any virtual machine software (and especially not VMware). My guess was that somebody assumed it is a VM box. (That's why I mentioned stealing of processor cycles) I would not suspect this to be the case here. If you have the open-vm-tools package from the Debian repository, you should be safe. Hope this helps No, according to synaptic I do not have installed any package that has VM in it. But thanks anyway. -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/lefja6$n5b$1...@ger.gmane.org
Re: cron.daily logrotate beating up my server
On Mon, Feb 24, 2014 at 01:57:02PM +0100, Tazman Deville wrote: I have a little server running here in my office, and logrotate kept running at c. 7am, and using up 100% CPU. I changed the line in /etc/crontab to run cron.daily scripts at 4:15am, instead of 7:whateveritwas am. 15 4 * * * Also, in cron.daily/logrotate I added nice -n 15 I made these changes two days ago, and still, yesterday and today, logrotate is running at 7:30ami-ish, and using up almost 100% of CPU cycles. The server is an old refurbed eMachines box, 3.2ghz single core celeron with 2gb ram (was my work box from 2007 to 2011), and logrotate is beating it up. How do I get logrotate, first, to run at a time when the server is not busy with other stuff (I'm actively doing stuff on the server at 7am, but not at 4am, which is why I had made that change). and/or limit its abuse of CPU cycles? Why is it seemingly not honouring the changes I made to /etc/crontab and cron.daily/logrotate? Off-list someone suggested I restart the cron daemon, which I have done. I won't know if that helped until tomorrow morning, though. Taz -- http://tazmandevil.info taz hungry -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20140224140648.ga18...@myownsite.me
RE: resolv.conf misbehaving
Hi Danny, My apologies, I must have missed your reply Warning : this setup is wrong and may not work as you expect. All listed nameservers should be equivalent. Multiple nameservers are only for redundancy, not to provide multiple sources. If you query the first server for an information out of its scope, it may reply negatively (status: NXDOMAIN or NOERROR, ANSWER: 0) and the next server won't be queried. So in the end you won't get your answer. However, what would be the point of giving resolv.conf multiple nameserver options then (if I understand you correctly), if one cannot force (for lack of a better word) it, or even arbitrarily change the order in which servers can be queried? So it would be absolutely pointless in even trying? Multiple dns servers are for REDUNDANCY. So if one fails and is no longer available you will automatically use the next one available. The setup I had (Debian 3.0) worked. Unfortunately smart devices and more wireless laptops demanded attention.So I upgraded (clean install) to Debian 7.0. All I want to do is for all wireless devices to get DHCP from Debian (not the router) and query Debian (not the router) for name resolution. Simple as that. Ok, so 1: Make sure to either disable DHCP in the router or make sure the router cannot answer those devices 2: Enable DHCP (isc-dhcp-server) on your linux machine 3: in the /etc/dhcp/dhcp.conf file have a line that points to the proper dns server Me, I have a linux box conneted to the LAN and the and the router on the same NIC. Internally I use 172.16.17.0/24 and my router is on 192.168.178.1 In my /etc/dhcp/dhcpd.conf file I have: #network definition shared-network internal.xxx.xx. { subnet 172.16.17.0 netmask 255.255.255.0 { option routers 172.16.17.1; option domain-name-servers 172.16.17.1, 194.109.104.104; option ntp-servers 172.16.17.1; range 172.16.17.20 172.16.17.39; range dynamic-bootp 172.16.17.40 172.16.17.45; default-lease-time 86400; # one day max-lease-time 172800; # two days } subnet 192.168.178.0 netmask 255.255.255.0 { } } This provides all information to the clients. If you want the router to handle all the traffic directly and not via the linux machine then change the option routers ... line. But... If you want it all in one network range then change that part of the setup too. For me, my linux box routes between several segments which my ISP router knows nothing about, which is why it is the default route for my network. Also, it is why I run my own dns server. Because there I CAN tell it where to look for the proper information if it is not available on the default internet dns servers. Bonno Bloksma -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/89d1798a7351d040b4e74e0a043c69d775194...@hglexch-01.tio.nl
ethernet and wifi together
Hello My scenario is the following. I'm connected to the wired network, which is the default network i'm using. The default gateway, DNS server and everything else is via this interface. On the other side i have some virtual machines inside and i need them to use the bridged wifi connection (because the wired one is behind a proxy server). For this i also need to have connected the wireless network (using WPA2-PSK). When i use Wicd. When i use Wicd to connect to wifi, it automatically disconnects me from ethernet and when i connect to ethernet, it disconnects me from wifi. Both connections (wifi and wired) should be configured dynamically (i'm using various networks at home or in the company). I tried a network-manager but I couldn't connect to wifi with it. Is there a way how to connect dynamically to both interfaces, using the eth0 as default route? Thanks in advance. Severan
Re: ethernet and wifi together
Hi. On Mon, 24 Feb 2014 15:32:08 +0100 S3v3ran . s3v3...@gmail.com wrote: Is there a way how to connect dynamically to both interfaces, using the eth0 as default route? Thanks in advance. Sure, there's a way. Remove NetworkManager and wicd as both of them are unsuitable for managing network settings anyway. Install wpasupplicant and resolvconf (unless you have them already). Configure your network interfaces at /etc/network/interfaces: 1) Wired - the usual way, with 'gateway' and 'dns-nameservers' stanzas. 2) Wireless - in accordance with /usr/share/doc/wpasupplicant/README.Debian.gz, section 'Roaming profiles' IIRC. Reco -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20140224190202.667e5f26727555c6acf4b...@gmail.com
Re: Am I paranoid?
Le 24.02.2014 13:14, ha a écrit : I have a relatively new installation (2 months) of Debian Wheezy, and not many additionaly packages installed. I *never* installed any virtual machine on this computer, however, after some problems (that I first though were hardware related) I found that vmtoolsd is installed on this computer. Synaptic does not show any installed VM package, same as my shell history. I'm aware that virtualization theoretically could be used to gain backdoor (or at least processing power) and I wonder if I'm the lucky one. I'm willing to explore this if anybody is interested to lead me. Try to find that file. ( run something like find / -name vmtoolsd ) dpkg ( or apt, aptitude, synaptic, etc ) is not the only way to install things. It's only the most efficient ( on Debian ) and secure. It is still possible to install from sources, for example, in this case, it will problably be installed in /usr/local. Also, it could be that your $PATH include a directory of your $HOME, where an installer could have then installed something. For example, I have installed some games like that: regnum, or redeclipse ( but I have to type their complete names for now. I should add their pathes to my $PATH for more ease of use, or bind their binaries to a shortcut... ). Good hunt. -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/1e49a80919ffb381f02a4666487cf...@neutralite.org
Re: Am I paranoid?
FYI, this was a log entry that caught my attention: vmusr[3785]: [ warning] [vmtoolsd] The vmusr service needs to run inside a virtual machine. ... And I repeat once again: This is not a virtual machine and I did not install any VM software. -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/lefng7$crv$1...@ger.gmane.org
Re: Am I paranoid?
Hi! Try to find that file. ( run something like find / -name vmtoolsd ) I did. It only shows that files are there: /etc/pam.d/vmtoolsd /usr/bin/vmtoolsd dpkg ( or apt, aptitude, synaptic, etc ) is not the only way to install things. It's only the most efficient ( on Debian ) and secure. It is still possible to install from sources, for example, in this case, it will problably be installed in /usr/local. Also, it could be that your $PATH include a directory of your $HOME, where an installer could have then installed something. For example, I have installed some games like that: regnum, or redeclipse ( but I have to type their complete names for now. I should add their pathes to my $PATH for more ease of use, or bind their binaries to a shortcut... ). echo $PATH does not shows my home directory I did not installed anything from source. Good hunt. Thnx -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/lefntf$kca$1...@ger.gmane.org
Re: Am I paranoid?
Hi. On Mon, 24 Feb 2014 16:24:19 +0100 ha hiei.arh...@gmail.com wrote: Hi! Try to find that file. ( run something like find / -name vmtoolsd ) I did. It only shows that files are there: /etc/pam.d/vmtoolsd /usr/bin/vmtoolsd … echo $PATH does not shows my home directory I did not installed anything from source. To answer your question - yes, you're right being paranoid. In Debian, software doesn't install by itself, installing a software requires human intervention. You didn't do it = someone else did it. Whenever virtualization can be used to gain a backdoor is irrelevant here, what's relevant is that someone has a root privileges on your host already. Now, whenever these privileges were carelessly used to install vmtoolsd Slackware-style (i.e. not using apt or deb), or these privileges were used to do something more (say, replacing sshd with its' keylogged version) - that's really interesting. I suggest you to: 1) Reboot the system using the good-known LiveCD. That's really important as you cannot trust the integrity of the OS on this host. 2) Mount host's / filesystem and /var filesystem somewhere ('/mnt' will do). 3) Run debsums -ac -r /mnt 4) If, and only if debsums won't report anything unusual - purge vmtoolsd, cleanup anything in /usr/local, change root password, remove any ssh public keys from /root/.ssh/authorized_keys, reboot to normal. 5) If debsums show any file replacements (especially /usr/sbin/sshd, /bin/bash, etc) - reinstall the OS from the scratch. Reco -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20140224193636.644bbfe2c7ae59b2aa558...@gmail.com
Re: Am I paranoid?
On Monday, February 24, 2014 04:40:39 PM ha wrote: On 02/24/14 16:24, ha wrote: Hi! Try to find that file. ( run something like find / -name vmtoolsd ) I did. It only shows that files are there: /etc/pam.d/vmtoolsd /usr/bin/vmtoolsd By the way, there is also /etc/vmware-tools folder This rather highlights why I like Arch's package manager (Pacman.) more than APT. Pacman features a command (pacman -Qo file) that explicitly checks a file you specify for package ownership. Rather than getting paranoid, go see if APT has a tool that does the same thing. I find it doubtful you've been compromised. Conrad -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/1943927.mP18IQJb7E@twilight
Re: Am I paranoid?
On 02/24/14 16:24, ha wrote: Hi! Try to find that file. ( run something like find / -name vmtoolsd ) I did. It only shows that files are there: /etc/pam.d/vmtoolsd /usr/bin/vmtoolsd By the way, there is also /etc/vmware-tools folder -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/lefos4$vca$1...@ger.gmane.org
Re: Am I paranoid?
Hi On Mon, Feb 24, 2014 at 09:43:39AM -0600, y...@marupa.net wrote: On Monday, February 24, 2014 04:40:39 PM ha wrote: On 02/24/14 16:24, ha wrote: Hi! Try to find that file. ( run something like find / -name vmtoolsd ) I did. It only shows that files are there: /etc/pam.d/vmtoolsd /usr/bin/vmtoolsd By the way, there is also /etc/vmware-tools folder This rather highlights why I like Arch's package manager (Pacman.) more than APT. Pacman features a command (pacman -Qo file) that explicitly checks a file you specify for package ownership. dpkg --search ${filename} -- Karl E. Jorgensen -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20140224154804.GB4691@hawking
Re: Am I paranoid?
On Monday, February 24, 2014 03:48:04 PM Karl E. Jorgensen wrote: Hi On Mon, Feb 24, 2014 at 09:43:39AM -0600, y...@marupa.net wrote: On Monday, February 24, 2014 04:40:39 PM ha wrote: On 02/24/14 16:24, ha wrote: Hi! Try to find that file. ( run something like find / -name vmtoolsd ) I did. It only shows that files are there: /etc/pam.d/vmtoolsd /usr/bin/vmtoolsd By the way, there is also /etc/vmware-tools folder This rather highlights why I like Arch's package manager (Pacman.) more than APT. Pacman features a command (pacman -Qo file) that explicitly checks a file you specify for package ownership. dpkg --search ${filename} Thank you. Using that command it'd be trivial to see if those files were installed by the package manager, maybe a dependency, which is more likely than being compromised, in all honesty. Conrad -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/1521775.fCcAIDVUWK@twilight
Accessing Glipper in testing (Jessie)
Hello, I was running Wheezy for a while, with a little bit of tweaking, I came to enjoy the new Gnome interface (I had been a KDE fan for years until I upgraded to Wheezy). In installed the Glipper clipboard manager and could access it by placing the mouse cursor into the lower right corner of the screen. It was otherwise hidden, and I thought the whole thing was very slick. I recently upgraded to testing, and Glipper disappeared. It's still installed, but I can no longer access it like I used to. The only way I can find to access Glipper is to open the Gnome Tweak Tool and enable the Window list extension. This enables a traditional task bar at the bottom of the screen which shows the currently open windows, a workspace switcher, and at the very end on the right it has a blue circle with a 1 on it. If I click on that blue circle, a gray bar slides up and shows the Glipper icon, which I can then click on. I don't care for this solution, because the task bar takes up space at the bottom of the screen and I can't seem to hide it, and I also have to click the blue circle in order to get to Glipper. I neither need nor want the window list or workspace switcher, so to have it there simply for the puspose of accessing Glipper is irksome. It was much nicer when I could simply move the cursor to the lower right corner without clicking on anything. Is there something I can do to get this old behavior back? Thanks in advance. - Dave P.S. Yes, I do realize that I can use CTRL-ALT-C to pop up Glipper anytime, and that's what I'm doing right now, but I really liked the mouse-only solution I had before. -- Dave Parker Systems Administrator Utica College Integrated Information Technology Services (315) 792-3229 Registered Linux User #408177
Re: Am I paranoid?
Hi, On Mon, Feb 24, 2014 at 09:43:39AM -0600, y...@marupa.net wrote: This rather highlights why I like Arch's package manager (Pacman.) more than APT. Pacman features a command (pacman -Qo file) that explicitly checks a file you specify for package ownership. Interesting. I don't have a clue about the package system I use but XYZ is better because I didn't find feature A in mine. :) Rather than getting paranoid, go see if APT has a tool that does the same thing. I find it doubtful you've been compromised. Because that's the low-end package manager job, and, - surpise! - dpkg can do that. dpkg -S /path/to/dile for installed packages. There's also apt-file, too, if you look for what (un)installed paclage a file is in. That one looks in the ahives Contents files Regards, Rene Conrad -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/1943927.mP18IQJb7E@twilight -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20140224155145.ga14...@rene-engelhard.de
Re: Am I paranoid?
I did. It only shows that files are there: /etc/pam.d/vmtoolsd /usr/bin/vmtoolsd By the way, there is also /etc/vmware-tools folder This rather highlights why I like Arch's package manager (Pacman.) more than APT. Pacman features a command (pacman -Qo file) that explicitly checks a file you specify for package ownership. dpkg --search ${filename} Thank you: dpkg --search /usr/bin/vmtoolsd dpkg-query: no path found matching pattern /usr/bin/vmtoolsd dpkg --search /etc/pam.d/vmtoolsd dpkg-query: no path found matching pattern /etc/pam.d/vmtoolsd dpkg --search vmtoolsd dpkg-query: no path found matching pattern *vmtoolsd* -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/lefq9o$kuq$1...@ger.gmane.org
Re: Am I paranoid?
debsums -ac -r /mnt Great, thanks! I didn't know about debsums. However, it does not report anything when started from the debian live usb. 4) If, and only if debsums won't report anything unusual - purge vmtoolsd, cleanup anything in /usr/local, change root password, remove any ssh public keys from /root/.ssh/authorized_keys, reboot to normal. 5) If debsums show any file replacements (especially /usr/sbin/sshd, /bin/bash, etc) - reinstall the OS from the scratch. I will format disk and do the fresh install anyway, but I simply do not understand how something like this could be done. This is the first time I noticed something like this, simply because it is a fresh install. By the way, do not have sshd installed (and there is no /usr/sbin/sshd). And no suspicious users in /etc/passwd. -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/lefrlt$7f4$1...@ger.gmane.org
Re: Am I paranoid?
On Mon, 2014-02-24 at 16:17 +0100, ha wrote: FYI, this was a log entry that caught my attention: vmusr[3785]: [ warning] [vmtoolsd] The vmusr service needs to run inside a virtual machine. ... And I repeat once again: This is not a virtual machine and I did not install any VM software. Check to see if you have any new users or groups added to your system that look suspicious. The log entry for vmuser indicates that someone is or has tried to use your system as a vmuser. I use this type of login on an OpenVZ system that I use on a remote host. That may give you some insite. john -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/1393255879.5430.2.ca...@beast.johnwfoster.com
Re: Am I paranoid?
On Mon, 24 Feb 2014 17:28:32 +0100 ha hiei.arh...@gmail.com wrote: debsums -ac -r /mnt Great, thanks! I didn't know about debsums. However, it does not report anything when started from the debian live usb. Well, that's good. Meaning, that's simply a misuse of root, not a rooted host. No reinstall in necessary, probably, simple removal of: /etc/init.d/vmtoolsd /etc/pam.d/vmtoolsd /usr/bin/vmtoolsd should do it. Don't forget to change the root password just in case. I will format disk and do the fresh install anyway, but I simply do not understand how something like this could be done. This is the first time I noticed something like this, simply because it is a fresh install. Three possible ways: 1) Unofficial install media. You won't believe what kind of strange gizmos people put into these ;) 2) Lack of physical security. Remove an HDD, place it into another host, copy some files, put back. 3) Someone has a root password, and that's not you. Or, you left root shell and an unlocked screen, someone has used it. By the way, do not have sshd installed (and there is no /usr/sbin/sshd). I mentioned sshd as an example. There are plenty of ways to do remote connection to the host (telnet, VNC, XDMCP), all of them can be used for the root access. Just to be on a safe side, scan your host with 'nmap -sT -sU 1-65535' for both ipv4 and ipv6. Consider blocking everything unneeded with iptables. And no suspicious users in /etc/passwd. That's good. Reco -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20140224210509.103123f0ed1df4043fbd6...@gmail.com
Re: netcat usage.
On 24/02/2014 10:21, Brian wrote: the OP could consider doing (as root) setcap cap_net_bind_service=+ep /usr/bin/ncat as a solution to his problem. If they do, they should be aware that would essentially permit any user on the machine to bind to any port; since nc is a redirection system it can be paired with any daemon or program. -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/530b7f2d.8040...@debian.org
Re: Am I paranoid?
2014-02-24 18:05 keltezéssel, Reco írta: Well, that's good. Meaning, that's simply a misuse of root, not a rooted host. No reinstall in necessary, probably, simple removal of: /etc/init.d/vmtoolsd /etc/pam.d/vmtoolsd /usr/bin/vmtoolsd should do it. Or simply apt-get purge open-vm-tools. Perhaps you can search in history files in /var/log/apt/ directory and find entry of the open-vm-tools package. -- --- Friczy --- 'Death is not a bug, it's a feature' -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/530b80c6.2080...@freemail.hu
Re: The case of the read-only USB sticks.
On Sat, 22 Feb 2014 15:40:01 +0100, Hendrik Boom wrote: I have a problem with my USB sticks mysteriously becoming read-only. I decided to investigate. I bought three identical 8G USB sticks, identical except for colour). None of them appear have any switches on them. The first I used my Linux laptop to write a file into the top-level directory of the first stick: I mounted it, wrote it, and unmounted it. I handed it to my wife, who was to read it on her Mac. She told me it failed to even notice there was a USB stick plugged in. But returned to me, I could mount it and read it. I put the second into my Linux laptop, mounted it, listed the top-level directory (it was empty), unmounted it. I passed it to my wife, who plugged it into her Mac, and it immediately noticed the USB stick and allowed her to look at its contents. It was, of course, empty. I'm running Debian testing on an ASUS netbook. Speculation: Now this doesn't tell me anything about how my USB sticks turn read- only. But it does tell me that something weird is happening to them. Perhaps the two OS's have different ieas as to how USB sticks are to be written or read? Perhaps one of the other machined in the house it writing the in such a was that Linux can't read them? What do I need to know to investigate this. Has anyone else had problems like this? Online all I found was some people on Windows with read-only USB sticks. One of them said that some friend using Linux had fixed them. No one else had any luck. I have no idea if their experience has any relevance. -- hendrik You said you wrote to the top level directory. I'm guessing you were running as root and wrote to a section that you shouldn't have tampered with. For example, a drive might appears both as /dev/sdd and /dev/sdd1. You don't want to mess with /dev/sdd - loosely speaking, that's just for the partition table (i.e. use fdisk or one of its kin to alter if necessary). Read/write/mount only the /dev/sdd1. Of course the drive could have failed, but it seems unlikely. Have you tried to fsck the drive? HTH-- -F -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/leg008$p6k$1...@dont-email.me
Re: Am I paranoid?
On Mon, 24 Feb 2014 18:26:30 +0100 Nemeth Gyorgy fri...@freemail.hu wrote: 2014-02-24 18:05 keltezéssel, Reco írta: Well, that's good. Meaning, that's simply a misuse of root, not a rooted host. No reinstall in necessary, probably, simple removal of: /etc/init.d/vmtoolsd /etc/pam.d/vmtoolsd /usr/bin/vmtoolsd should do it. Or simply apt-get purge open-vm-tools. Which OP doesn't have installed :) Reading all mails in the thread is a good habit - saves you these mistakes. Reco -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20140224214404.e06fdbe3b03162d4d31bc...@gmail.com
Re: Am I paranoid?
On Mon, 2014-02-24 at 09:51 -0600, y...@marupa.net wrote: Thank you. Using that command it'd be trivial to see if those files were installed by the package manager, maybe a dependency, which is more likely than being compromised, in all honesty. When something is installed as a dependency, then it would show up in the history. Assumed the OP isn't mistaken and the OP didn't install something that included those stuff, then somebody has got access to the machine. Somebody mentioned this already and I agree with this. I only wonder why somebody should install this. Perhaps it's something else, with this harmless, but faked name. I suspect the OP installed it, without being aware of it and didn't find it in the history or deleted parts of the history. In case of doubt only a new install is secure. -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/1393266209.1127.5.camel@archlinux
DHCP request IP address
Which file do you edit to request an IP address from a DHCP server? It's been awhile! Ric -- My father, Victor Moore (Vic) used to say: There are two Great Sins in the world... ..the Sin of Ignorance, and the Sin of Stupidity. Only the former may be overcome. R.I.P. Dad. /https://linuxcounter.net/cert/44256.png / -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/530b986a.3040...@gmail.com
Re: Am I paranoid?
On Mon 24 Feb 2014 at 19:23:29 +0100, Ralf Mardorf wrote: On Mon, 2014-02-24 at 09:51 -0600, y...@marupa.net wrote: Thank you. Using that command it'd be trivial to see if those files were installed by the package manager, maybe a dependency, which is more likely than being compromised, in all honesty. When something is installed as a dependency, then it would show up in the history. Assumed the OP isn't mistaken and the OP didn't install something that included those stuff, then somebody has got access to the machine. Somebody mentioned this already and I agree with this. I only wonder why somebody should install this. Perhaps it's something else, with this harmless, but faked name. I suspect the OP installed it, without being aware of it and didn't find it in the history or deleted parts of the history. In case of doubt only a new install is secure. apt-cache rdepends --no-breaks open-vm-tools gives Reverse Depends: open-vm-tools-dbg open-vm-toolbox open-vm-dkms Does that resolve the . . . . maybe a dependency question? -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/24022014185708.e78a1ed5c...@desktop.copernicus.demon.co.uk
very slow Xorg and/or bash
Hello. Since few days, say 4 or 5, my netbook is *really* slow when a terminal starts. After taking a look with top, it seems that it's bash itself which is the problem: it makes the terminal freezing for at least 15s on login, and almost the same when using auto-completion. There is also xorg, which uses constantly at least 10% of the CPU, if I trust top ( at least, means that it is the minimal value ). I have no idea about how to find the origin of the problem, this is why I am not giving any real hint or suppositions. I do not remember having updated anything particular ( but no doubt that I did, otherwise I could not have such kind of constant slowness ). I am using a testing/unstable/experimental debian, no DE. wheezy's packages have priority 900, unstable ones only 200, except for compilers ( Package: clang* gcc* g++* cpp* libgfortran* ) Running services are currently: # service --status-all [ + ] acpi-fakekey [ - ] acpi-support [ + ] acpid [ ? ] alsa-utils [ ? ] binfmt-support [ - ] bootlogs [ ? ] bootmisc.sh [ ? ] checkfs.sh [ ? ] checkroot-bootclean.sh [ - ] checkroot.sh [ - ] console-setup [ - ] cups [ + ] dbus [ ? ] hdparm [ - ] hostname.sh [ ? ] hwclock.sh [ - ] kbd [ - ] keyboard-setup [ ? ] killprocs [ ? ] kmod [ - ] motd [ ? ] mountall-bootclean.sh [ ? ] mountall.sh [ ? ] mountdevsubfs.sh [ ? ] mountkernfs.sh [ ? ] mountnfs-bootclean.sh [ ? ] mountnfs.sh [ + ] mpd [ ? ] networking [ - ] procps [ ? ] rc.local [ - ] rmnologin [ - ] rsync [ ? ] sendsigs [ - ] ssh [ - ] sudo [ + ] tor [ + ] udev [ ? ] umountfs [ ? ] umountnfs.sh [ ? ] umountroot [ - ] urandom [ + ] wicd [ - ] x11-common Any idea about the problem? Or at least any idea about what to look for to have one? I suspect some bash script, but the slowness is also with root, and I did not changed anything by hand that could affect root since at least 2 weeks. -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/86712e3ad1ea599954cd06dce49c2802.squir...@www.sud-ouest.org
Re: Wireless AP setup: RTL8188CUS
Hi Selim, Selim T. Erdogan se...@alumni.cs.utexas.edu writes: Csanyi Pal, 3.02.2014: Csanyi Pal csanyi...@gmail.com writes: Csanyi Pal csanyi...@gmail.com writes: Scott Ferguson scott.ferguson.debian.u...@gmail.com writes: On 02/02/14 09:14, Csanyi Pal wrote: Scott Ferguson scott.ferguson.debian.u...@gmail.com writes: On 01/02/14 21:57, Csanyi Pal wrote: Scott Ferguson scott.ferguson.debian.u...@gmail.com writes: On 31/01/14 04:53, Csanyi Pal wrote: I just bought an USB dongle nano Netis WF-2120 adapter. I want to set it up on my headless Debian Wheezy server as a Wireless Access Point. snipped However, I can't find the installed driver, and I don't know how can I load it as a kernel module? Had you read this wiki page about that chipset? https://wiki.debian.org/rtl819x Yes, I had. There I found that that my USB Wifi adapter is supported: when I plug in the WiFi usb adapter, lsusb shows the following: Bus 001 Device 004: ID 0bda:8176 Realtek Semiconductor Corp. RTL8188CUS 802.11n WLAN Adapter and on the webpage https://wiki.debian.org/rtl819x there is this davice listed: USB: 0BDA:8176 Realtek Semiconductor Corp. RTL8188CUS 802.11n WLAN Adapter On the web page: https://wiki.debian.org/rtl819x there I found the following information: rtl8192cu (supported devices) Supports USB devices based on the RTL8188CUS and RTL8192CU chips. Introduced in Linux 2.6.39, enabled at linux-2.6 2.6.39~rc7-1~experimental.1. So now what should I do to get this USB Wifi adapter works? Did you install the matching headers? I did install the linux-headers-2.6-powerpc. Do you get a match on the chipset series when greping through the likely modules after piping through string? When I run 'make menuconfig' in the kernel source directory, I found the Realtek RTL8192CU/RTL8188CU USB Wireless Network Adapter module in the Linux/powerpc 2.6.39.4-4 Kernel Configuration / \ Device Drivers / Network device support / Wireless LAN In menuconfig I saved the setup in to .config file. But when I run after 'make menuconfig' the 'make' command, I get error message: arch/powerpc/kernel/align.c: In function ‘fix_alignment’: arch/powerpc/kernel/align.c:704:33: error: variable ‘instruction’ set but not used [-Werror=unused-but-set-variable] cc1: all warnings being treated as errors make[1]: *** [arch/powerpc/kernel/align.o] Error 1 make: *** [arch/powerpc/kernel] Error 2 What could be the problem here? Sorry (again). But I don't have clue. I can tell you how to suppress the warning (--disable-werror):- http://gcc.gnu.org/onlinedocs/gcc/Warning-Options.html but not how to fix the problem that generates it. I'm trying to fix this problem with installing gcc-4.4 on my Debian Wheezy system. Now when I have installed the gcc-4.4, I made a symbolic link: ls -l /usr/bin/gcc lrwxrwxrwx 1 root root 16 febr 2 06:34 /usr/bin/gcc - /usr/bin/gcc-4.4 The gcc symbolic link are linked before this to the /usr/bin/gcc-4.6. Now I'm running the 'make' command in the kernel source file with the .config setup file. Sofar it is successfull, but it is ongoing yet. I'm waiting the make command to terminate successfull. It's done ( after 8 houers ): sudo dpkg -i bubba3-kernel-headers-powerpc_2.6.39.4-13_powerpc.deb bubba3-kernel_2.6.39.4-13_powerpc.deb (Adatbázis olvasása ... 76193 files and directories currently installed.) bubba3-kernel-headers-powerpc 1:2.6.39.4-13 cseréjének előkészítése (e csomaggal: bubba3-kernel-headers-powerpc_2.6.39.4-13_powerpc.deb) ... Csere kicsomagolása: bubba3-kernel-headers-powerpc ... Selecting previously unselected package bubba3-kernel. dpkg: considering removing bubba-kernel in favour of bubba3-kernel ... dpkg: yes, will remove bubba-kernel in favour of bubba3-kernel Kicsomagolás: bubba3-kernel innen: bubba3-kernel_2.6.39.4-13_powerpc.deb ... Beállítás: bubba3-kernel-headers-powerpc (1:2.6.39.4-13) ... Beállítás: bubba3-kernel (1:2.6.39.4-13) ... WARNING: could not open /lib/modules/2.6.39.4-13/modules.builtin: No such file or directory Well, about this WARNING at the end: is this serious? Should I reboot my Bubba box now safely? I did the followings. 1. dget -xu \ http://b3.update.excito.org/pool/main/l/linux/linux_2.6.39.4-13.dsc 2. cd linux-2.6.39.4/ 3. make menuconfig 4. Load the default excito configuration: From the menu, select Load an Alternate Configuration File and enter the following path: arch/powerpc/configs/bubbatwo_defconfig 5. I customize the kernel so I included the rtl8192cu driver as a Module. The resulting configuration are placed in arch/powerpc/configs/bubbatwo_defconfig 6. dpkg-buildpackage -us -uc -b -apowerpc 7. I get the resulting two packages in the parent directory:
Re: Wireless AP setup: RTL8188CUS
Csanyi Pal csanyi...@gmail.com writes: Hi Selim, Selim T. Erdogan se...@alumni.cs.utexas.edu writes: Csanyi Pal, 3.02.2014: Csanyi Pal csanyi...@gmail.com writes: Csanyi Pal csanyi...@gmail.com writes: Scott Ferguson scott.ferguson.debian.u...@gmail.com writes: On 02/02/14 09:14, Csanyi Pal wrote: Scott Ferguson scott.ferguson.debian.u...@gmail.com writes: On 01/02/14 21:57, Csanyi Pal wrote: Scott Ferguson scott.ferguson.debian.u...@gmail.com writes: On 31/01/14 04:53, Csanyi Pal wrote: I just bought an USB dongle nano Netis WF-2120 adapter. I want to set it up on my headless Debian Wheezy server as a Wireless Access Point. snipped However, I can't find the installed driver, and I don't know how can I load it as a kernel module? Had you read this wiki page about that chipset? https://wiki.debian.org/rtl819x Yes, I had. There I found that that my USB Wifi adapter is supported: when I plug in the WiFi usb adapter, lsusb shows the following: Bus 001 Device 004: ID 0bda:8176 Realtek Semiconductor Corp. RTL8188CUS 802.11n WLAN Adapter and on the webpage https://wiki.debian.org/rtl819x there is this davice listed: USB: 0BDA:8176 Realtek Semiconductor Corp. RTL8188CUS 802.11n WLAN Adapter On the web page: https://wiki.debian.org/rtl819x there I found the following information: rtl8192cu (supported devices) Supports USB devices based on the RTL8188CUS and RTL8192CU chips. Introduced in Linux 2.6.39, enabled at linux-2.6 2.6.39~rc7-1~experimental.1. So now what should I do to get this USB Wifi adapter works? Did you install the matching headers? I did install the linux-headers-2.6-powerpc. Do you get a match on the chipset series when greping through the likely modules after piping through string? When I run 'make menuconfig' in the kernel source directory, I found the Realtek RTL8192CU/RTL8188CU USB Wireless Network Adapter module in the Linux/powerpc 2.6.39.4-4 Kernel Configuration / \ Device Drivers / Network device support / Wireless LAN In menuconfig I saved the setup in to .config file. But when I run after 'make menuconfig' the 'make' command, I get error message: arch/powerpc/kernel/align.c: In function ‘fix_alignment’: arch/powerpc/kernel/align.c:704:33: error: variable ‘instruction’ set but not used [-Werror=unused-but-set-variable] cc1: all warnings being treated as errors make[1]: *** [arch/powerpc/kernel/align.o] Error 1 make: *** [arch/powerpc/kernel] Error 2 What could be the problem here? Sorry (again). But I don't have clue. I can tell you how to suppress the warning (--disable-werror):- http://gcc.gnu.org/onlinedocs/gcc/Warning-Options.html but not how to fix the problem that generates it. I'm trying to fix this problem with installing gcc-4.4 on my Debian Wheezy system. Now when I have installed the gcc-4.4, I made a symbolic link: ls -l /usr/bin/gcc lrwxrwxrwx 1 root root 16 febr 2 06:34 /usr/bin/gcc - /usr/bin/gcc-4.4 The gcc symbolic link are linked before this to the /usr/bin/gcc-4.6. Now I'm running the 'make' command in the kernel source file with the .config setup file. Sofar it is successfull, but it is ongoing yet. I'm waiting the make command to terminate successfull. It's done ( after 8 houers ): sudo dpkg -i bubba3-kernel-headers-powerpc_2.6.39.4-13_powerpc.deb bubba3-kernel_2.6.39.4-13_powerpc.deb (Adatbázis olvasása ... 76193 files and directories currently installed.) bubba3-kernel-headers-powerpc 1:2.6.39.4-13 cseréjének előkészítése (e csomaggal: bubba3-kernel-headers-powerpc_2.6.39.4-13_powerpc.deb) ... Csere kicsomagolása: bubba3-kernel-headers-powerpc ... Selecting previously unselected package bubba3-kernel. dpkg: considering removing bubba-kernel in favour of bubba3-kernel ... dpkg: yes, will remove bubba-kernel in favour of bubba3-kernel Kicsomagolás: bubba3-kernel innen: bubba3-kernel_2.6.39.4-13_powerpc.deb ... Beállítás: bubba3-kernel-headers-powerpc (1:2.6.39.4-13) ... Beállítás: bubba3-kernel (1:2.6.39.4-13) ... WARNING: could not open /lib/modules/2.6.39.4-13/modules.builtin: No such file or directory Well, about this WARNING at the end: is this serious? Should I reboot my Bubba box now safely? I did the followings. 1. dget -xu \ http://b3.update.excito.org/pool/main/l/linux/linux_2.6.39.4-13.dsc 2. cd linux-2.6.39.4/ 3. make menuconfig 4. Load the default excito configuration: From the menu, select Load an Alternate Configuration File and enter the following path: arch/powerpc/configs/bubbatwo_defconfig 5. I customize the kernel so I included the rtl8192cu driver as a Module. The resulting configuration are placed in arch/powerpc/configs/bubbatwo_defconfig 6. dpkg-buildpackage -us -uc -b -apowerpc 7. I get the resulting two packages in the
bandwidth whole use
Hi folks! I'm searching for a tool that evaluate a total bandwidth (i.e.) from month/year interval any idea about that tool? thanks! -- Pol -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/530ba1aa.5060...@fuckaround.org
Re: DHCP request IP address
Am Montag, 24. Februar 2014, 14:07:22 schrieb Ric Moore: Which file do you edit to request an IP address from a DHCP server? It's been awhile! Ric Try execute dhclient xxx0 IP-of-Server as root. For example dhclient eth0 192.168.1.1 or dhclient wlan0 192.168.1.1 you You can request each interface as needed. If you want it automatically at boot, edit /etc/network/interfaces. The syntax i.e. for eth0 is auto io eth0 iiface eth0 dhcp If you do so, each command /etc/network/interfaces restart let you request an IP from the dhcp-server. All interfaces named in the auto-line are initialized new then. Hope this helps. Good luck! Hans -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/11728386.aXZDe5IkkU@protheus7
Re: How to configure eth0 with static ip and eth1 dhcp
On 22-02-2014 23:57, Scott Ferguson wrote: On 23/02/14 13:09, Markos wrote: On 22-02-2014 20:11, Scott Ferguson wrote: On 23/02/14 09:58, Stephen Powell wrote: On Sat, 22 Feb 2014 17:22:16 -0500 (EST), Markos wrote: I'm trying to configure a machine with two network cards to share Internet access to an internal network the /etc/network/interface is: # The loopback network interface auto lo iface lo inet loopback auto eth0 iface eth0 inet static address 192.168.0.1 netmask 255.255.255.0 auto eth1 iface eth1 inet dhcp The card eth0 is used as gateway on the internal network with static IP 192.168.0.1 and eth1 is connected to the B-890 -53 Huawei modem. But the modem do not send an IP during initialization. The IP of modem is 192.168.1.1. The modem sends the IP address (192.168.0.4) to my laptop by wifi without problems. Any suggestions of what I should check? I'm afraid that I don't understand the problem. Is this a traditional async dial-up modem? If so, I would expect it to be configured with ppp, its interface name would be ppp0, and it would not be listed in /etc/network/interfaces at all. I don't get it. I'm guessing it's a cdc_ether device - probably running a web and dn server at 192.168.0.100. Hopefully the OP will correct my assumption (Vendor and Product codes from dmesg?). I'm not familiar with that particular model - but I've had to hack Linux support for the chipset either side of it (model number). Kind regards Dear Scot and Stephen, I am using this model of modem: http://www.4glterouter.de/huawei-b890-4g-lte-smart-hub.html Thanks - yes it's the chipset I was expecting. I just tested on another machine and the modem supplied the IP to my laptop via wireless and IP to a computer (with 1 NIC) via ethernet without problem. Yes. Tomorrow I'll change the network card (of the machine with 2 NICs) and test again to see if the problem is the network card. OK - I misunderstood - I didn't realise you had a second card installed and assumed you'd just noticed the USB modem cable is seen as a NIC, or that networkmanager had autoconfigured it for you (it should, if you have a recent version of usb-modeswitch installed). You don't need the 2nd network card unless you want to duplicate the routing functionality build into your modem/hub/router. Just connect the modem to that computer with the USB cable. Make sure you have usb_modeswitch installed and add the extra line I suggest (the gateway stanza). The modem should then be seen as /dev/eth1 by Debian and will be used as the gateway for your internet. You'll find that resolv.conf will automagically use the modem as the nameserver .i.e. /etc/resolv.conf will contain:- nameserver 192.18.1.1 You don't need to add netmask and broadcast stanzas to /etc/network/interfaces, you do need to change auto to hot-plug for the modem (yes it's USB but the system will see it as an eth device). Any other devices you connect to the modem should automagically (via DHCP) do the same - and by default will all be able to communicate with each other. NOTE: the route output I quoted (in the previous post) is from a box connected to a similar Huwaei modem in the same situation. /etc/network/interfaces # This file describes the network interfaces available on your system # and how to activate them. For more information, see interfaces(5). # The loopback network interface auto lo iface lo inet loopback # The primary network interface allow-hotplug eth0 iface eth0 inet static address 192.168.0.6 netmask 255.255.255.0 gateway 192.168.1.1 # dns-* options are implemented by the resolvconf package, if installed allow-hotplug eth1 iface eth1 inet dhcp # you could make this static, but more typing would be involved NOTE: network and broadcast stanzas are optional Thanks for your attention, Markos Kind regards Dear Scott Ferguson, Stephen Powell, Dan Purgert, Andrei POPESCU, Pascal Hambourg, Rod James Bio and Rob Owens, Thanks for your comments. As I said, I tested the modem at home, and it worked well. I imagine that the initial problem was related to the network adapter. The next day I changed the network card and realized the following: When I changed the network card the system started to assign the address to eth2 the new card and the modem sent the IP address for this card (eth2). Despite that the /etc/network/interfaces is: auto lo iface lo inet loopback auto eth0 iface eth0 inet static address 192.168.0.1 netmask 255.255.255.0 auto eth1 iface eth1 inet dhcp Then I replace the second NIC by another one and again the system assigned the number eth3 for this new card. And also the modem sent the IP number OK. Every time I change the card the system increment the number to the interface: eth2, eth3 etc.. I searched on the Web and
Re: Wireless AP setup: RTL8188CUS
Csanyi Pal csanyi...@gmail.com writes: Csanyi Pal csanyi...@gmail.com writes: Hi Selim, Selim T. Erdogan se...@alumni.cs.utexas.edu writes: Csanyi Pal, 3.02.2014: Csanyi Pal csanyi...@gmail.com writes: Csanyi Pal csanyi...@gmail.com writes: Scott Ferguson scott.ferguson.debian.u...@gmail.com writes: On 02/02/14 09:14, Csanyi Pal wrote: Scott Ferguson scott.ferguson.debian.u...@gmail.com writes: On 01/02/14 21:57, Csanyi Pal wrote: Scott Ferguson scott.ferguson.debian.u...@gmail.com writes: On 31/01/14 04:53, Csanyi Pal wrote: I just bought an USB dongle nano Netis WF-2120 adapter. I want to set it up on my headless Debian Wheezy server as a Wireless Access Point. snipped However, I can't find the installed driver, and I don't know how can I load it as a kernel module? Had you read this wiki page about that chipset? https://wiki.debian.org/rtl819x Yes, I had. There I found that that my USB Wifi adapter is supported: when I plug in the WiFi usb adapter, lsusb shows the following: Bus 001 Device 004: ID 0bda:8176 Realtek Semiconductor Corp. RTL8188CUS 802.11n WLAN Adapter and on the webpage https://wiki.debian.org/rtl819x there is this davice listed: USB: 0BDA:8176 Realtek Semiconductor Corp. RTL8188CUS 802.11n WLAN Adapter On the web page: https://wiki.debian.org/rtl819x there I found the following information: rtl8192cu (supported devices) Supports USB devices based on the RTL8188CUS and RTL8192CU chips. Introduced in Linux 2.6.39, enabled at linux-2.6 2.6.39~rc7-1~experimental.1. So now what should I do to get this USB Wifi adapter works? Did you install the matching headers? I did install the linux-headers-2.6-powerpc. Do you get a match on the chipset series when greping through the likely modules after piping through string? When I run 'make menuconfig' in the kernel source directory, I found the Realtek RTL8192CU/RTL8188CU USB Wireless Network Adapter module in the Linux/powerpc 2.6.39.4-4 Kernel Configuration / \ Device Drivers / Network device support / Wireless LAN In menuconfig I saved the setup in to .config file. But when I run after 'make menuconfig' the 'make' command, I get error message: arch/powerpc/kernel/align.c: In function ‘fix_alignment’: arch/powerpc/kernel/align.c:704:33: error: variable ‘instruction’ set but not used [-Werror=unused-but-set-variable] cc1: all warnings being treated as errors make[1]: *** [arch/powerpc/kernel/align.o] Error 1 make: *** [arch/powerpc/kernel] Error 2 What could be the problem here? Sorry (again). But I don't have clue. I can tell you how to suppress the warning (--disable-werror):- http://gcc.gnu.org/onlinedocs/gcc/Warning-Options.html but not how to fix the problem that generates it. I'm trying to fix this problem with installing gcc-4.4 on my Debian Wheezy system. Now when I have installed the gcc-4.4, I made a symbolic link: ls -l /usr/bin/gcc lrwxrwxrwx 1 root root 16 febr 2 06:34 /usr/bin/gcc - /usr/bin/gcc-4.4 The gcc symbolic link are linked before this to the /usr/bin/gcc-4.6. Now I'm running the 'make' command in the kernel source file with the .config setup file. Sofar it is successfull, but it is ongoing yet. I'm waiting the make command to terminate successfull. It's done ( after 8 houers ): sudo dpkg -i bubba3-kernel-headers-powerpc_2.6.39.4-13_powerpc.deb bubba3-kernel_2.6.39.4-13_powerpc.deb (Adatbázis olvasása ... 76193 files and directories currently installed.) bubba3-kernel-headers-powerpc 1:2.6.39.4-13 cseréjének előkészítése (e csomaggal: bubba3-kernel-headers-powerpc_2.6.39.4-13_powerpc.deb) ... Csere kicsomagolása: bubba3-kernel-headers-powerpc ... Selecting previously unselected package bubba3-kernel. dpkg: considering removing bubba-kernel in favour of bubba3-kernel ... dpkg: yes, will remove bubba-kernel in favour of bubba3-kernel Kicsomagolás: bubba3-kernel innen: bubba3-kernel_2.6.39.4-13_powerpc.deb ... Beállítás: bubba3-kernel-headers-powerpc (1:2.6.39.4-13) ... Beállítás: bubba3-kernel (1:2.6.39.4-13) ... WARNING: could not open /lib/modules/2.6.39.4-13/modules.builtin: No such file or directory Well, about this WARNING at the end: is this serious? Should I reboot my Bubba box now safely? I did the followings. 1. dget -xu \ http://b3.update.excito.org/pool/main/l/linux/linux_2.6.39.4-13.dsc 2. cd linux-2.6.39.4/ 3. make menuconfig 4. Load the default excito configuration: From the menu, select Load an Alternate Configuration File and enter the following path: arch/powerpc/configs/bubbatwo_defconfig 5. I customize the kernel so I included the rtl8192cu driver as a Module. The resulting configuration are placed in arch/powerpc/configs/bubbatwo_defconfig 6. dpkg-buildpackage -us -uc -b -apowerpc
Re: bandwidth whole use
On Monday, 24 February 2014 20:46:50 +0100, Pol Hallen wrote: Hi folks! Hi, Pol. I'm searching for a tool that evaluate a total bandwidth (i.e.) from month/year interval any idea about that tool? Take a look on Cacti. http://www.cacti.net/ It's in the Debian repositories. Regards, Daniel -- Daniel Bareiro Fingerprint: BFB3 08D6 B4D1 31B2 72B9 29CE 6696 BF1B 14E6 1D37 Powered by Debian GNU/Linux Wheezy - Linux user #188.598 signature.asc Description: Digital signature
Re: bandwidth whole use
Hi folks! I'm searching for a tool that evaluate a total bandwidth (i.e.) from month/year interval any idea about that tool? http://www.debian-administration.org/article/330/Monitoring_your_bandwidth_usage_with_vnstat Steve -- http://www.steve.org.uk/
Re: bandwidth whole use
Take a look on Cacti. http://www.cacti.net/ It's in the Debian repositories. Thanks Daniel :-) Pol -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/530ba93b.5090...@fuckaround.org
Re: cron.daily logrotate beating up my server
On Lu, 24 feb 14, 15:06:48, Tazman Deville wrote: On Mon, Feb 24, 2014 at 01:57:02PM +0100, Tazman Deville wrote: I have a little server running here in my office, and logrotate kept running at c. 7am, and using up 100% CPU. I changed the line in /etc/crontab to run cron.daily scripts at 4:15am, instead of 7:whateveritwas am. 15 4 * * * Also, in cron.daily/logrotate I added nice -n 15 I made these changes two days ago, and still, yesterday and today, logrotate is running at 7:30ami-ish, and using up almost 100% of CPU cycles. The server is an old refurbed eMachines box, 3.2ghz single core celeron with 2gb ram (was my work box from 2007 to 2011), and logrotate is beating it up. How do I get logrotate, first, to run at a time when the server is not busy with other stuff (I'm actively doing stuff on the server at 7am, but not at 4am, which is why I had made that change). and/or limit its abuse of CPU cycles? Why is it seemingly not honouring the changes I made to /etc/crontab and cron.daily/logrotate? Off-list someone suggested I restart the cron daemon, which I have done. I won't know if that helped until tomorrow morning, though. According to the manpage it is not necessary to restart the daemon, so this should not fix your problem. How about you attach your crontab and the relevant parts from syslog? Also check if you have anacron installed. Kind regards, Andrei -- http://wiki.debian.org/FAQsFromDebianUser Offtopic discussions among Debian users and developers: http://lists.alioth.debian.org/mailman/listinfo/d-community-offtopic http://nuvreauspam.ro/gpg-transition.txt signature.asc Description: Digital signature
Re: [Fwd: Re: Re: Third-Party Software Needs Non-Debian Format for Kernel Version]
What I'm wondering is whether I can get uname to return the desired format by somehow compiling a custom kernel. Yes you can, by getting the source code from kernel.org. If you simply copy the config from the Debians kernel, then IIRC # make-kpkg --initrd kernel-image kernel-headers won't use the Debians naming, but name the package and the output for uname -r and any string else as the original kernel.org name is. Thank you very much! That worked well and was easy! -- Thomas E. Vaughan -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/caao_ux-s-lz2rtcqmg1kjzdffzrmewogt7uwfyem1bpca03...@mail.gmail.com
Re: resolv.conf misbehaving
Danny a écrit : Warning : this setup is wrong and may not work as you expect. All listed nameservers should be equivalent. Multiple nameservers are only for redundancy, not to provide multiple sources. If you query the first server for an information out of its scope, it may reply negatively (status: NXDOMAIN or NOERROR, ANSWER: 0) and the next server won't be queried. So in the end you won't get your answer. However, what would be the point of giving resolv.conf multiple nameserver options then I wrote it : redundancy. if one cannot force (for lack of a better word) it, or even arbitrarily change the order in which servers can be queried? You can force or change the order of the nameservers. /etc/resolv.conf even has an option rotate to do round-robin among the listed nameservers. What you cannot do is expect the current resolver library to : - ask a given nameserver for a given type of queries (e.g. external names), and another nameserver for another given type of queries (e.g. internal names) ; - ask the next nameserver if the previous nameserver replied that the requested name does not exist or does not have a resource record for the requested type (aka negative answer). The setup I had (Debian 3.0) worked. Unfortunately smart devices and more wireless laptops demanded attention. So I upgraded (clean install) to Debian 7.0. All I want to do is for all wireless devices to get DHCP from Debian (not the router) and query Debian (not the router) for name resolution. Simple as that. Why then are you messing with the router's nameserver ? If you need to resolve both internal and external names, I suggest that you query only the Debian nameserver and configure it to reply to recursive queries, either by itself or by forwarding them to the router's nameserver. -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/530bbdaf.3090...@plouf.fr.eu.org